stale zatizeny CPU velmi prosim o kontrolu logu

[r626]

Dobry den, zde vam zasilam log a prosim o jeho kontrolu. Vsimnul jsem si, ze mi CPU bezi neustale nad hranici 50% a nikdy neklesne pod tuto hranici.
Muze to byt zpusobeno nejakou haveti v systemu?
dekuji za rady.


Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-12-2014 01
Ran by richard (administrator) on RICHARD-PC on 07-12-2014 22:39:37
Running from C:\Users\uzivatel\Desktop
Loaded Profiles: richard & uzivatel (Available profiles: richard & uzivatel)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Windows\RTKAUDIOSERVICE.EXE
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 15.0.1\avp.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Sony Corporation) C:\Program Files\Sony\Network Utility\NSUService.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\Apoint.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Sony Corporation) C:\Program Files\Sony\Network Utility\LANUtil.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Media plus\VMpTtray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
(WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApntEx.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 15.0.1\avpui.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint\Apoint.exe [122880 2008-02-23] (Alps Electric Co., Ltd.)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [6111232 2008-04-29] (Realtek Semiconductor)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [2303256 2014-05-19] (Logitech, Inc.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
Winlogon\Notify\VESWinlogon: C:\Windows\system32\VESWinlogon.dll (Sony Corporation)
HKU\S-1-5-21-1480424937-3276313608-2334715895-1000\...\Run: [NSUFloatingUI] => C:\Program Files\Sony\Network Utility\LANUtil.exe [262144 2008-05-30] (Sony Corporation)
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\...\Run: [NSUFloatingUI] => C:\Program Files\Sony\Network Utility\LANUtil.exe [262144 2008-05-30] (Sony Corporation)
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\...\Run: [] => [X]
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\...\Run: [VMpTtray.exe] => C:\Program Files\Sony\VAIO Media plus\VMpTtray.exe [86016 2008-03-09] (Sony Corporation)
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\...\Run: [OfficeSyncProcess] => C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [720064 2014-10-14] (Microsoft Corporation)
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\...\Run: [iCloudDrive] => C:\Program Files\Common Files\Apple\Internet Services\iCloudDrive.exe
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\...\MountPoints2: {0a631dcf-2315-11e0-8804-001dba2044dd} - H:\unlock.exe autoplay=true
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\...\MountPoints2: {231abb21-79f4-11e4-b735-001e3df5252f} - H:\Startme.exe
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\...\MountPoints2: {281efd26-2cab-11e0-b38c-001dba2044dd} - G:\setup.exe
AppInit_DLLs: C:\PROGRA~1\SearchProtect\SearchProtect\bin\SPVC32Loader.dll => C:\PROGRA~1\SearchProtect\SearchProtect\bin\SPVC32Loader.dll File Not Found
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1480424937-3276313608-2334715895-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com
HKU\S-1-5-21-1480424937-3276313608-2334715895-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://partnerpage.google.com/eu.sony.com/uk
http://www.club-vaio.com/vbc
HKU\S-1-5-21-1480424937-3276313608-2334715895-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://partnerpage.google.com/eu.sony.com/uk
http://www.club-vaio.com/vbc
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.cz/
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://partnerpage.google.com/eu.sony.com/uk
http://www.club-vaio.com/vbc
HKU\S-1-5-21-1480424937-3276313608-2334715895-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
StartMenuInternet: IEXPLORE.EXE - \program files\Internet Explorer\iexplore.exe
SearchScopes: HKU\S-1-5-21-1480424937-3276313608-2334715895-1004 -> DefaultScope {67C334C0-408D-4E6D-B5A7-0ADD6AFFA252} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1480424937-3276313608-2334715895-1004 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =
SearchScopes: HKU\S-1-5-21-1480424937-3276313608-2334715895-1004 -> {657401D1-9F66-4BE9-B717-5AD5E9F30831} URL =
SearchScopes: HKU\S-1-5-21-1480424937-3276313608-2334715895-1004 -> {67C334C0-408D-4E6D-B5A7-0ADD6AFFA252} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1480424937-3276313608-2334715895-1004 -> {D2621B1F-2F0E-460F-AC5F-1880B5EA793E} URL = https://www.google.com/search?q={searchTerms}
BHO: Content Blocker Plugin -> {03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} -> C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 15.0.1\IEExt\ie_plugin.dll (Kaspersky Lab ZAO)
BHO: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Virtual Keyboard Plugin -> {B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} -> C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 15.0.1\IEExt\ie_plugin.dll (Kaspersky Lab ZAO)
BHO: CBrowserHelperObject Object -> {CA6319C0-31B7-401E-A518-A07C3DB8F777} -> C:\Program Files\Google BAE\BAE.dll (Your Company Name)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Safe Money Plugin -> {E3D96E85-529D-4269-AC6A-97CF9E2221E3} -> C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 15.0.1\IEExt\ie_plugin.dll (Kaspersky Lab ZAO)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1480424937-3276313608-2334715895-1000 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1480424937-3276313608-2334715895-1004 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1480424937-3276313608-2334715895-1004 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-1480424937-3276313608-2334715895-1004 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} http://quickscan.bitdefender.com/qsax/qsax.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoftware.com/activescan ... stubie.cab
DPF: {CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_239.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.7.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.9.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @kaspersky.com/content_blocker_6418E0D362104DADA084DC312DFA8ABC -> C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 15.0.1\FFExt\content_blocker@kaspersky.com ()
FF Plugin: @kaspersky.com/virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB -> C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 15.0.1\FFExt\virtual_keyboard@kaspersky.com ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014-11-13]
FF HKLM\...\Firefox\Extensions: [content_blocker_6418E0D362104DADA084DC312DFA8ABC@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 15.0.1\FFExt\content_blocker@kaspersky.com
FF Extension: Модуль блокування небезпечних веб-сайтів - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 15.0.1\FFExt\content_blocker@kaspersky.com [2014-12-03]
FF HKLM\...\Firefox\Extensions: [virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 15.0.1\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Віртуальна клавіатура - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 15.0.1\FFExt\virtual_keyboard@kaspersky.com [2014-12-03]

Chrome:
=======
CHR Profile: C:\Users\richard\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Peněženka Google) - C:\Users\richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-30]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/deta ... ojhbllhbho [Not Found]
CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx [Not Found]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx [Not Found]
CHR StartMenuInternet: Google Chrome - \Program Files\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP15.0.1; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 15.0.1\avp.exe [234520 2014-08-30] (Kaspersky Lab ZAO)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2008-05-16] (Macrovision Europe Ltd.) [File not signed]
S3 MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [53248 2007-11-28] (Sony Corporation) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [641832 2011-09-23] (Nero AG)
R2 NSUService; C:\Program Files\Sony\Network Utility\NSUService.exe [229376 2008-05-30] (Sony Corporation) [File not signed]
S3 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [53248 2007-11-28] (Sony Corporation) [File not signed]
R2 RtkHDMIService; C:\Windows\RtkAudioService.exe [98304 2008-04-29] (Realtek Semiconductor) [File not signed]
S2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 SOHCImp; C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe [104288 2008-03-05] (Sony Corporation)
S3 SOHDms; C:\Program Files\Sony\VAIO Media plus\SOHDms.exe [350048 2008-03-05] (Sony Corporation)
S3 SOHDs; C:\Program Files\Sony\VAIO Media plus\SOHDs.exe [63328 2008-03-05] (Sony Corporation)
S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [77824 2007-11-28] (Sony Corporation) [File not signed]
S3 VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe [73728 2008-02-15] (Sony Corporation) [File not signed]
R2 VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [182112 2008-05-13] (Sony Corporation)
S3 VcmIAlzMgr; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [333088 2008-03-03] (Sony Corporation)
R3 Vcsw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [274432 2008-02-15] (Sony Corporation) [File not signed]
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1228336 2014-02-28] (Sony Corporation)
R2 VzCdbSvc; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [184320 2008-02-15] (Sony Corporation) [File not signed]
R2 VzFw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe [147456 2008-02-15] (Sony Corporation) [File not signed]
R2 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [110592 2010-07-29] (WDC) [File not signed]
R2 WDFME; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [952832 2010-07-29] () [File not signed]
R2 WDSC; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [483840 2010-07-29] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 Afc; C:\Windows\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [189136 2013-01-14] (Kaspersky Lab UK Ltd)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [218688 2011-01-31] (DT Soft Ltd)
R1 eusk2par; C:\Windows\system32\Drivers\eusk2par.sys [25680 2008-12-18] (Aladdin Knowledge Systems Ltd.)
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [26328 2014-12-02] (Sony Mobile Communications)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [25280 2011-05-17] (LogMeIn, Inc.)
S3 ivusb; C:\Windows\System32\DRIVERS\ivusb.sys [25112 2010-07-28] (Initio Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [143968 2014-03-31] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [36928 2014-07-02] (Kaspersky Lab ZAO)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [119816 2014-12-03] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [36536 2014-08-12] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [673480 2014-12-03] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [25696 2014-02-25] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [24672 2014-03-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-08-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [14432 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [44992 2014-06-05] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [64200 2014-12-03] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [146240 2014-07-09] (Kaspersky Lab ZAO)
S3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus.sys [171520 2005-09-23] (Pinnacle Systems GmbH) [File not signed]
R3 NETwNs32; C:\Windows\System32\DRIVERS\NETwNs32.sys [7122944 2010-10-18] (Intel Corporation)
R3 RTHDMIAzAudService; C:\Windows\System32\drivers\RtHDMIV.sys [142624 2008-04-28] (Realtek Semiconductor Corp.)
S3 SBFWIMCL; C:\Windows\System32\DRIVERS\sbfwim.sys [94584 2011-09-29] (GFI Software)
S3 SBFWIMCLMP; C:\Windows\System32\DRIVERS\SBFWIM.sys [94584 2011-09-29] (GFI Software)
R3 WmBEnum; C:\Windows\System32\drivers\WmBEnum.sys [22856 2010-04-28] (Logitech Inc.)
S3 WmFilter; C:\Windows\System32\drivers\WmFilter.sys [37704 2010-04-27] (Logitech Inc.)
S3 WmVirHid; C:\Windows\System32\drivers\WmVirHid.sys [15048 2010-04-28] (Logitech Inc.)
R3 WmXlCore; C:\Windows\System32\drivers\WmXlCore.sys [66632 2010-04-28] (Logitech Inc.)
S3 DCamUSBEMPIA; system32\DRIVERS\emDevice.sys [X]
S3 emAudio; system32\drivers\emAudio.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 FiltUSBEMPIA; system32\DRIVERS\emFilter.sys [X]
U4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X]
S2 LMIInfo; \??\C:\Program Files\LogMeIn\x86\RaInfo.sys [X]
S4 LMIRfsClientNP; No ImagePath
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S1 MpKslb9e17f3b; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CD31A5A7-F128-42E2-9AD9-E692A9F4D5D9}\MpKslb9e17f3b.sys [X]
S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [X]
S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [X]
S3 ScanUSBEMPIA; system32\DRIVERS\emScan.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 USB28xxBGA; system32\DRIVERS\emBDA.sys [X]
S3 USB28xxOEM; system32\DRIVERS\emOEM.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-07 22:39 - 2014-12-07 22:41 - 00023201 _____ () C:\Users\uzivatel\Desktop\FRST.txt
2014-12-07 22:39 - 2014-12-07 22:39 - 00000000 ____D () C:\FRST
2014-12-07 20:16 - 2014-12-07 20:16 - 01111040 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST.exe
2014-12-07 19:36 - 2014-12-07 19:36 - 05600430 _____ (Swearware) C:\Users\uzivatel\Desktop\xyz.exe
2014-12-07 11:05 - 2014-12-07 11:05 - 00000000 ____D () C:\Users\richard\AppData\Roaming\QuickScan
2014-12-07 10:40 - 2014-12-07 10:41 - 00080366 _____ () C:\Users\richard\Desktop\cc_20141207_104037.reg
2014-12-07 10:37 - 2014-12-07 10:37 - 00000000 __SHD () C:\Users\uzivatel\AppData\Local\EmieBrowserModeList
2014-12-03 08:59 - 2014-12-03 08:59 - 00002013 _____ () C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2014-12-03 08:59 - 2014-12-03 08:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus
2014-12-03 08:58 - 2014-12-07 22:36 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-12-03 08:58 - 2014-12-03 08:58 - 00000000 ____D () C:\Windows\ELAMBKUP
2014-12-03 08:58 - 2014-12-03 08:58 - 00000000 ____D () C:\Program Files\Kaspersky Lab
2014-12-03 08:57 - 2014-08-12 18:32 - 00036536 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klhk.sys
2014-12-03 08:47 - 2014-12-03 08:51 - 201527352 _____ (Kaspersky Lab) C:\Users\uzivatel\Downloads\kav15.0.1.415en.exe
2014-12-02 10:33 - 2014-12-02 10:33 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ggsomc_01009.Wdf
2014-12-02 10:33 - 2014-12-02 10:33 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ggflt_01009.Wdf
2014-12-02 10:25 - 2014-12-02 10:25 - 00026328 _____ (Sony Mobile Communications) C:\Windows\system32\Drivers\ggsomc.sys
2014-12-02 10:25 - 2014-12-02 10:25 - 00013528 _____ (Sony Mobile Communications) C:\Windows\system32\Drivers\ggflt.sys
2014-12-02 10:24 - 2014-12-02 10:44 - 00000000 ____D () C:\ProgramData\Sony Mobile
2014-12-02 10:24 - 2014-12-02 10:44 - 00000000 ____D () C:\Program Files\Sony Mobile
2014-12-02 10:15 - 2014-12-02 10:16 - 28112224 _____ (Sony Mobile Communications ) C:\Users\uzivatel\Downloads\Sony PC Companion_Web.exe
2014-12-01 12:54 - 2014-12-02 10:20 - 00156406 _____ () C:\Windows\DPINST.LOG
2014-12-01 12:00 - 2014-12-03 13:11 - 00000000 ____D () C:\Users\uzivatel\Desktop\detska party 2014
2014-11-30 20:46 - 2014-11-30 20:46 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-30 20:12 - 2014-11-30 20:12 - 00000000 ____D () C:\ProgramData\XoftSpySE
2014-11-30 19:16 - 2014-11-30 19:30 - 43652388 _____ () C:\Users\uzivatel\Downloads\com.navigon.NavigonEurope.ipa
2014-11-30 16:26 - 2014-11-30 16:26 - 44435904 _____ () C:\Users\uzivatel\Desktop\Pangu8_v1.2.1.exe
2014-11-30 13:15 - 2014-11-30 13:15 - 00000000 ____D () C:\Users\richard\AppData\Roaming\TuneUp Software
2014-11-30 13:11 - 2014-12-03 13:20 - 00000000 ____D () C:\ProgramData\MFAData
2014-11-30 13:11 - 2014-11-30 13:11 - 00000000 ____D () C:\Users\richard\AppData\Local\MFAData
2014-11-30 12:42 - 2014-11-30 12:42 - 00327921 _____ () C:\Users\uzivatel\Downloads\avgremover.log
2014-11-30 09:19 - 2014-11-30 09:19 - 00001105 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2014-11-30 07:58 - 2014-11-30 08:40 - 2085953369 _____ () C:\Users\uzivatel\Downloads\iPhone6,2_8.1_12B411_Restore.ipsw
2014-11-30 07:47 - 2014-12-01 11:47 - 00000000 ___RD () C:\Users\uzivatel\iCloudDrive
2014-11-30 07:47 - 2014-11-30 07:47 - 00000000 ____D () C:\Users\uzivatel\AppData\Local\Apple Inc
2014-11-30 07:45 - 2014-12-03 13:09 - 00000000 ____D () C:\Users\uzivatel\Desktop\detska party
2014-11-29 09:17 - 2014-11-29 09:19 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-11-29 09:17 - 2014-11-29 09:17 - 00002095 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-11-29 09:17 - 2014-11-29 09:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-11-29 09:17 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
2014-11-29 08:09 - 2014-11-29 08:11 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-11-20 10:27 - 2014-11-20 10:27 - 00000000 __SHD () C:\Users\richard\AppData\Local\EmieBrowserModeList
2014-11-19 12:29 - 2014-11-19 12:57 - 2086819650 _____ () C:\Users\uzivatel\Desktop\iPhone7,2_8.1_12B411_Restore.ipsw
2014-11-19 08:04 - 2014-11-30 16:27 - 00000000 ____D () C:\Users\richard\AppData\Local\pangu
2014-11-19 06:28 - 2014-11-19 06:44 - 00000000 ____D () C:\Users\uzivatel\AppData\Local\pangu
2014-11-18 19:32 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-18 19:32 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-13 16:21 - 2014-06-27 02:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-11-13 15:15 - 2014-11-13 15:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-11-13 15:15 - 2014-11-13 15:15 - 00000000 ____D () C:\Program Files\QuickTime
2014-11-13 15:14 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-13 15:13 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-13 15:13 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-11-13 15:13 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-13 15:13 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-13 15:13 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-13 15:12 - 2014-11-13 15:12 - 00001713 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-11-13 15:12 - 2014-11-13 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-11-13 15:12 - 2014-10-10 01:45 - 02379264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-13 15:12 - 2014-10-03 02:44 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-13 15:12 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-13 15:12 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-13 15:12 - 2014-10-03 02:44 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-13 15:12 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-13 15:12 - 2014-09-25 02:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-11-13 15:12 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-13 15:12 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-13 15:12 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-13 15:12 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-13 15:12 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-13 15:12 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-13 15:12 - 2014-06-24 03:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-11-13 15:11 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-13 15:11 - 2014-08-29 02:44 - 02744320 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-11-13 15:11 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-11-13 15:11 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-11-13 15:11 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-11-13 15:11 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-11-13 15:10 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-11-13 15:10 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-11-13 15:10 - 2014-07-17 02:39 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-11-13 15:10 - 2014-07-17 02:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-11-13 15:10 - 2014-07-17 02:03 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-11-13 15:10 - 2014-07-17 02:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-11-13 15:09 - 2014-11-13 15:11 - 00000000 ____D () C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
2014-11-13 15:09 - 2014-11-13 15:09 - 00000000 ____D () C:\Program Files\iPod
2014-11-13 15:09 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-13 15:09 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-13 15:09 - 2014-11-06 04:28 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-13 15:09 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-13 15:09 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-13 15:09 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-13 15:09 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-13 15:09 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-13 15:09 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-13 15:09 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-13 15:09 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-13 15:09 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-13 15:09 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-13 15:09 - 2014-11-06 03:59 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-13 15:09 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-13 15:09 - 2014-11-06 03:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-13 15:09 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-13 15:09 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-13 15:09 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-13 15:09 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-13 15:09 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-13 15:09 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-13 15:09 - 2014-11-06 03:22 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-13 15:09 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-13 15:09 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-13 15:09 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-13 15:09 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-13 15:09 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-13 15:09 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-13 15:09 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-13 15:09 - 2014-10-14 02:56 - 00136632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-13 15:09 - 2014-10-14 02:50 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-13 15:09 - 2014-10-14 02:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-13 15:09 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-13 15:09 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-13 15:09 - 2014-09-09 22:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-11-13 14:51 - 2014-11-13 14:51 - 00000236 _____ () C:\Windows\LkmdfCoInst.log
2014-11-13 14:46 - 2014-11-13 14:51 - 00010796 _____ () C:\Windows\LDPINST.LOG

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-07 22:40 - 2011-01-16 21:16 - 01314827 _____ () C:\Windows\WindowsUpdate.log
2014-12-07 22:33 - 2013-01-22 16:17 - 00000342 _____ () C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job
2014-12-07 22:33 - 2011-01-16 18:26 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-07 22:32 - 2014-07-22 20:52 - 00268802 _____ () C:\Windows\setupact.log
2014-12-07 22:32 - 2011-01-18 18:03 - 00000304 ___SH () C:\Windows\Tasks\Lpnuff.job
2014-12-07 22:32 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-07 22:13 - 2011-04-26 14:40 - 00007608 _____ () C:\Users\richard\AppData\Local\Resmon.ResmonCfg
2014-12-07 21:50 - 2011-01-16 21:45 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-07 21:31 - 2012-08-11 19:32 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-12-07 10:50 - 2011-04-26 17:33 - 00000000 ____D () C:\Windows\pss
2014-12-07 10:36 - 2011-01-15 23:31 - 00000000 ____D () C:\Program Files\CCleaner
2014-12-07 10:33 - 2011-01-16 20:45 - 00000000 ____D () C:\Users\richard
2014-12-03 13:20 - 2014-08-16 08:32 - 00115336 _____ () C:\Windows\PFRO.log
2014-12-03 13:20 - 2012-11-07 17:31 - 00000000 ____D () C:\Program Files\AVG
2014-12-03 13:11 - 2011-01-16 21:26 - 01584626 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-03 09:03 - 2014-08-20 18:04 - 00673480 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2014-12-03 09:03 - 2014-08-18 14:43 - 00119816 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2014-12-03 09:03 - 2014-08-13 19:34 - 00064200 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klwtp.sys
2014-12-02 10:52 - 2011-01-16 21:21 - 00000000 __SHD () C:\Recovery
2014-12-02 10:41 - 2011-01-16 07:44 - 00000000 ____D () C:\ProgramData\Sony
2014-12-02 10:40 - 2008-05-16 21:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-12-02 10:40 - 2008-05-16 21:31 - 00000000 ____D () C:\Program Files\Sony
2014-12-02 10:40 - 2008-05-16 19:35 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-12-01 12:54 - 2011-01-18 18:14 - 00000000 ____D () C:\Update
2014-12-01 12:03 - 2011-03-02 15:32 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Apple Computer
2014-12-01 12:03 - 2011-03-02 15:27 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-12-01 11:44 - 2011-01-16 20:44 - 00010512 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-01 11:44 - 2011-01-16 20:44 - 00010512 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-30 20:59 - 2014-02-28 21:30 - 00290304 _____ (Microsoft Corporation) C:\Windows\system32\subinacl.exe
2014-11-30 20:20 - 2011-09-05 07:08 - 00000000 ____D () C:\ProgramData\ParetoLogic
2014-11-30 09:35 - 2014-07-22 21:19 - 00000000 ____D () C:\ProgramData\AVG
2014-11-30 09:35 - 2012-11-07 22:20 - 00000000 ____D () C:\Users\richard\AppData\Roaming\AVG
2014-11-30 09:19 - 2008-05-16 21:31 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-11-30 07:50 - 2012-11-19 20:49 - 00000000 ____D () C:\Users\uzivatel\Downloads\foto-kocar
2014-11-30 07:47 - 2011-01-16 22:04 - 00000000 ____D () C:\Users\uzivatel
2014-11-29 10:54 - 2011-04-18 08:42 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-11-29 09:17 - 2011-04-18 08:42 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-11-29 08:31 - 2012-08-11 19:32 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-11-29 08:31 - 2011-08-21 14:27 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-11-29 08:09 - 2008-05-16 21:28 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-11-29 08:09 - 2008-05-16 21:28 - 00000000 ____D () C:\Program Files\Adobe
2014-11-24 14:04 - 2011-01-16 21:37 - 00229000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-20 14:36 - 2014-07-22 21:23 - 00154640 _____ () C:\Users\richard\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-20 10:47 - 2014-01-12 18:05 - 00016293 _____ () C:\Users\uzivatel\Desktop\umbrella.log
2014-11-20 09:14 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-11-19 07:48 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-11-13 20:27 - 2014-07-22 20:52 - 00500056 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-13 19:07 - 2011-01-16 22:04 - 00154640 _____ () C:\Users\uzivatel\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-13 16:30 - 2011-01-16 07:18 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-13 16:13 - 2013-07-28 19:19 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-13 15:11 - 2013-11-19 18:11 - 00000000 ____D () C:\Program Files\iTunes
2014-11-13 15:08 - 2014-08-10 19:42 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-11-13 14:51 - 2011-01-18 16:38 - 00016400 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2014-11-13 14:51 - 2011-01-18 16:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-11-13 14:51 - 2011-01-18 16:37 - 00000000 ____D () C:\Program Files\Common Files\LogiShrd
2014-11-13 14:45 - 2011-01-18 16:37 - 00000000 ____D () C:\ProgramData\Logishrd
2014-11-13 14:44 - 2011-01-18 16:37 - 00000000 ____D () C:\Program Files\Logitech

Files to move or delete:
====================
C:\ProgramData\ezsid.dat


Some content of TEMP:
====================
C:\Users\uzivatel\AppData\Local\Temp\AMPing.exe
C:\Users\uzivatel\AppData\Local\Temp\InstallManager_BAB_BAB.exe
C:\Users\uzivatel\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-29 08:52

==================== End Of Log ============================

[altrok]

Zdravim

Ano, toto muze zpusobovat havet.

Nainstalujte MBAM a udelejte vlastni sken vsech disku - http://forum.viry.cz/viewtopic.php?f=29&t=137928

• Upozorneni: tento sken zabere od 30 minut po nekolik hodin

[r626]

uz to projizdim tim programem. mam sem hodit potom taky log po dokonceni scanu?

[altrok]

Presne tak. Je to napsane i v navodu. Pokud mozno po dokonceni skenu MBAM nezavirejte, at muzeme po kontrole nalezu ty skodlive smazat.

[r626]

tady mam další log.. bohužel bez nalezu

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 7.12.2014
Čas skenování: 23:01:06
Protokol: mbam.txt
Správce: Ano

Verze: 2.00.4.1028
Databáze malwaru: v2014.12.07.10
Databáze rootkitů: v2014.12.03.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Sebeobrany: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: richard

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 352874
Uplynulý čas: 16 min, 37 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Žádné zákerné zjištěny položek)

Moduly: 0
(Žádné zákerné zjištěny položek)

Klíče registru: 0
(Žádné zákerné zjištěny položek)

Hodnoty registru: 0
(Žádné zákerné zjištěny položek)

Data registru: 0
(Žádné zákerné zjištěny položek)

Složky: 0
(Žádné zákerné zjištěny položek)

Soubory: 0
(Žádné zákerné zjištěny položek)

Fyzické sektory: 0
(Žádné zákerné zjištěny položek)


(end)

[altrok]

Udelal jste pouze Sken hrozeb, ktery projizdi jen nekolik adresaru. V navodu je napsano Vlastni sken a vybrat vsechny disky. Takze prosim znovu a drzte se navodu

[r626]

uz na to koukam a projizdim to znovu.. omlouvam se, skoro spim, zatímco procesor je az moc aktivni ))

[r626]

zde je další log vlastního scanu

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 7.12.2014
Čas skenování: 23:24:07
Protokol: mbam2.txt
Správce: Ano

Verze: 2.00.4.1028
Databáze malwaru: v2014.12.07.10
Databáze rootkitů: v2014.12.03.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Sebeobrany: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: richard

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 673922
Uplynulý čas: 10 hod, 40 min, 53 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Žádné zákerné zjištěny položek)

Moduly: 0
(Žádné zákerné zjištěny položek)

Klíče registru: 0
(Žádné zákerné zjištěny položek)

Hodnoty registru: 0
(Žádné zákerné zjištěny položek)

Data registru: 0
(Žádné zákerné zjištěny položek)

Složky: 0
(Žádné zákerné zjištěny položek)

Soubory: 2
HackTool.Wpakill, C:\Users\uzivatel\AppData\Local\Chromium\User Data\Default\Cache\f_000173, , [fe0867f989f3ac8a20e45b0d9f61bf41],
HackTool.Wpakill, C:\Users\uzivatel\Downloads\Crack-windows7(nptechs.blogspot.com)\RemoveWAT.exe, , [2adc1f41ff7ded49e61e6cfc4cb40af6],

Fyzické sektory: 0
(Žádné zákerné zjištěny položek)

[altrok]

Jak jsme na tom s legalitou systemu? Pro domaci pouziti mit nejvyssi licenci Ultimate, jejiz funkce pravdepodobne nevyuzivate a shodou okolnosti jsou v logu i znamky cracku?

[r626]

Jen to notas co mi "prenechal" muj bracha.. Nicmene tyhle obtize se projevujou az posledni dobou,
Muze to s tim nejak souviset? Nebo jak postupovat dal?

[altrok]

Na bezpecnostnim foru nepodporujeme softwarove piratstvi - viz pravidla fora, takze jen kratce...

Vyzkousejte odinstalovat Spybot S&D a pokud jeste v PC je, tak i SpyHuntera, pripadne pouzit bod obnoveni k datu, kdy system korektne fungoval. Aktualne pouzivate Kasperskyho, takze na odstraneni zbytku AVG pouzijte oficialni odinstalator v nouzovem rezimu. Taky pouzijte AdwCleaner. Hodne stesti.

[r626]

Ja vim, uz jsem to tady nekde cetl.. Dekuji za pomoc. Udelal jsem vse jak jste psal, nyni to projedu tim awcleanerem. Pokud ani to nepomuze, jaka je dalsi moznost?
Odstranit uzivatelsky ucet?
Dekuji

[cernohous13]

Ja vim, uz jsem to tady nekde cetl...jaka je dalsi moznost?

Kolega to snad napsal dost srozumitelně - zakoupit a nainstalovat legální OS
pak nebudou porušována naše pravidla a pomoc bude poskytnuta bez probémů
zatím končíme