Stránka není dostupná

Zpráva

Bosin · #1 Příspěvek od **Bosin** » 25 pro 2014 20:59

Ahoj/Dobrý den,

řeším problém na NTB mých rodičů. NTB je starý 1 měsíc WIN 8, originál. Posledních 14 dní neustále dochází k "vypadnutí internetu". Tedy na místo zadané www stránky se objeví google chrome hláška, že webová stránka není dostupná.

Pokud jsem připojen přes svůj NTB k jejich sítí, serfuji bez problémů.

- používáme Microsoft security essential a Windows Firewall

Děkuji za pomoc nebo rady

P.S: Omlouvám se, že otravuje 25.12., ale NTB budu mít doma jen 3 dny.

---------------------------------------- log z HJT -----------------------------------------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Bosákovi at 2014-12-25 20:33:41
Microsoft Windows 8.1
System drive C: has 179 GB (47%) free of 381 GB
Total RAM: 3982 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:34:38, on 25. 12. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
C:\Users\Bosákovi\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\PodoWeb\bin\PodoWeb.expext.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\PodoWeb\bin\PodoWeb.BOASHelper.exe
C:\WINDOWS\syswow64\wwahost.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\PodoWeb\bin\PodoWeb.BOASPRT.exe
C:\Program Files (x86)\PodoWeb\bin\PodoWeb.BOAS.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\PodoWeb\bin\PodoWeb.BrowserAdapter.exe
C:\Program Files\trend micro\Bosákovi.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: PodoWeb 1.0.0.6 - {980b8a8f-ea0b-4c24-a2e9-70635e2502e9} - C:\Program Files (x86)\PodoWeb\PodoWebBHO.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [StartW8Button] C:\Program Files (x86)\StartW8\bin\StartW8Button.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Bosákovi\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Bosákovi\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Asus WebStorage Windows Service - Unknown owner - C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MaintainerSvc6.89.573444 - Unknown owner - C:\ProgramData\01e58235-010d-43b1-8340-277d43a75321\maintainer.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StartW8Service - SODATSW spol. s .r.o. - C:\Program Files (x86)\StartW8\bin\StartW8Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Update PodoWeb - Unknown owner - C:\Program Files (x86)\PodoWeb\updatePodoWeb.exe
O23 - Service: Util PodoWeb - Unknown owner - C:\Program Files (x86)\PodoWeb\bin\utilPodoWeb.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 10398 bytes

======Listing Processes======

wininit.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\StartW8\bin\StartW8Service.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
dashost.exe {366f76f5-4c6f-48f2-87a9abaa76a70918}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\PodoWeb\bin\utilPodoWeb.exe"

"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet

C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\ProgramData\01e58235-010d-43b1-8340-277d43a75321\maintainer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
taskhost.exe $(Arg0)

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\StartW8\bin\StartW8Button.exe"
taskhostex.exe
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
C:\Program Files (x86)\StartW8\bin\StartW8Menu.exe
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
C:\WINDOWS\Explorer.EXE
KBFiltr.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX3
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
szndesktop.exe default start
/ieg b8caa22d-a42d-4658-a8de-206d8f2165f1 /is smdvcz
"C:\Users\Bosákovi\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
/w 910 /h 100 /cg 25afa090-97f5-4fec-aa4f-fb0d1ccbec24 /gc 1 /ff 1 /ie 1 /is smdvcz
"C:\WINDOWS\syswow64\wwahost.exe" -ServerName:App.wwa
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2916.0.2087684969\1937476267" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,17,38 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3308 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\PodoWeb\bin\PodoWeb.BOASPRT.exe" /w 910 /h 100 /hw 197206 /g 25afa090-97f5-4fec-aa4f-fb0d1ccbec24 /is smdvcz
"C:\Program Files (x86)\PodoWeb\bin\PodoWeb.BOAS.exe" /w 910 /h 100 /hw 197206 /g 25afa090-97f5-4fec-aa4f-fb0d1ccbec24 /is smdvcz /bt 0 /ps \\.\pipe\boa{6B3F58C0-7109-4C5A-8921-9B00356105F2} /bv 39
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_45/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="2916.5.601648597\624979655" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_45/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="2916.6.1939185763\1734268101" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_45/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="2916.7.1124876288\2116219795" /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe13_ Global\UsGthrCtrlFltPipeMssGthrPipe13 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 600 604 612 65536 608
"C:\Users\Bosákovi\Downloads\RSITx64.exe"
"C:\Program Files (x86)\PodoWeb\updatePodoWeb.exe"
"C:\Program Files (x86)\PodoWeb\bin\PodoWeb.PurBrowse64.exe" /l false /s false /c "PodoWeb" /t "C:\Program Files (x86)\PodoWeb\bin\TEMP" /i "http://apipodowebnet-a.akamaihd.net/gsr ... 0000000000" /d {b2aa7bb9-5668-402a-97c7-7dabffe0f82d}Gw64 /p 880300f3-94a7-4b67-9099-3c0c1b2fce1e:chrome /p b8caa22d-a42d-4658-a8de-206d8f2165f1:iexplore /h cdn.sharedaddomain.com,cdn.sharedaddomain2.com 0 10 "C:\Program Files (x86)\PodoWeb\bin\bau" true
\??\C:\WINDOWS\system32\conhost.exe 0x4
/c 880300f3-94a7-4b67-9099-3c0c1b2fce1e /i b8caa22d-a42d-4658-a8de-206d8f2165f1 /z "n=PodoWeb&is=smdvcz&dpt=20"
/c 880300f3-94a7-4b67-9099-3c0c1b2fce1e /i b8caa22d-a42d-4658-a8de-206d8f2165f1 /z "n=PodoWeb&is=smdvcz&dpt=20"

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-03-27 66688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{980b8a8f-ea0b-4c24-a2e9-70635e2502e9}]
PodoWeb 1.0.0.6 - C:\Program Files (x86)\PodoWeb\PodoWebBHO.dll [2014-12-20 250096]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-10-01 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-10-01 771032]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-10-01 769496]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-05-30 13550152]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-05-20 1308232]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-03-27 132736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"cz.seznam.software.autoupdate"=C:\Users\Bosákovi\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Bosákovi\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2010-11-15 35736]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-15 932288]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2013-05-01 3187360]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [2012-12-19 3576784]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2013-03-08 95192]
"StartW8Button"=C:\Program Files (x86)\StartW8\bin\StartW8Button.exe [2014-06-05 59784]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-03-27 132736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-10-01 623104]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-12-25 20:33:42 ----D---- C:\Program Files\trend micro
2014-12-25 20:33:41 ----D---- C:\rsit
2014-12-13 17:45:12 ----D---- C:\WINDOWS\system32\appraiser
2014-12-10 20:40:08 ----A---- C:\WINDOWS\system32\poqexec.exe
2014-12-10 20:40:07 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2014-12-10 16:53:02 ----A---- C:\WINDOWS\SYSWOW64\DeviceSetupStatusProvider.dll
2014-12-10 16:53:02 ----A---- C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2014-12-10 16:52:49 ----A---- C:\WINDOWS\system32\crypt32.dll
2014-12-10 16:52:48 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2014-12-10 16:39:03 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2014-12-10 16:39:03 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2014-12-10 16:39:02 ----A---- C:\WINDOWS\system32\invagent.dll
2014-12-10 16:39:02 ----A---- C:\WINDOWS\system32\generaltel.dll
2014-12-10 16:39:02 ----A---- C:\WINDOWS\system32\devinv.dll
2014-12-10 16:39:02 ----A---- C:\WINDOWS\system32\appraiser.dll
2014-12-10 16:39:02 ----A---- C:\WINDOWS\system32\aepic.dll
2014-12-10 16:39:02 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-12-10 16:39:01 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-12-10 16:39:00 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-12-10 16:39:00 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-12-10 16:38:57 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-12-10 16:38:56 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-12-10 16:38:52 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-12-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-12-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-12-10 16:38:50 ----A---- C:\WINDOWS\system32\wininet.dll
2014-12-10 16:38:50 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-12-10 16:38:50 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-12-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-12-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-12-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-12-10 16:38:49 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-12-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-12-10 16:38:48 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-12-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-12-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-12-10 16:38:46 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-12-10 16:38:46 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-12-10 16:38:46 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-12-10 16:38:46 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-12-10 16:38:45 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-12-10 16:38:45 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-12-10 16:38:45 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-12-10 16:38:45 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-12-10 16:38:45 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-12-10 16:38:45 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-12-10 16:38:45 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-12-10 16:38:45 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-12-10 16:38:45 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-12-10 16:38:44 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-12-10 16:38:44 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-12-10 16:38:44 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-12-10 16:38:44 ----A---- C:\WINDOWS\system32\jscript.dll
2014-12-10 16:38:44 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-12-10 16:38:43 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-12-01 20:43:03 ----A---- C:\WINDOWS\system32\drivers\{b2aa7bb9-5668-402a-97c7-7dabffe0f82d}Gw64.sys
2014-11-28 21:16:47 ----A---- C:\WINDOWS\system32\drivers\{b9f73d40-1a45-43a0-9a38-3e55d05b3bd4}Gw64.sys
2014-11-27 10:38:54 ----A---- C:\WINDOWS\system32\drivers\{ab3b6fe8-8ffe-4d0c-aa1e-8030c4760982}Gw64.sys
2014-11-26 17:38:47 ----RD---- C:\WINDOWS\BrowserChoice
2014-11-26 17:32:25 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-11-26 17:32:25 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-11-26 17:32:25 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-11-26 17:32:25 ----A---- C:\WINDOWS\system32\schedsvc.dll
2014-11-26 17:32:24 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll

======List of files/folders modified in the last 1 month======

2014-12-25 20:33:52 ----D---- C:\Users\Bosákovi\AppData\Roaming\Seznam.cz
2014-12-25 20:33:42 ----RD---- C:\Program Files
2014-12-25 20:33:39 ----D---- C:\WINDOWS\Prefetch
2014-12-25 20:33:37 ----D---- C:\Program Files (x86)\PodoWeb
2014-12-25 20:33:37 ----A---- C:\WINDOWS\win.ini
2014-12-25 20:28:22 ----D---- C:\WINDOWS\system32\sru
2014-12-25 14:40:22 ----SD---- C:\Users\Bosákovi\AppData\Roaming\Microsoft
2014-12-25 13:10:26 ----RD---- C:\WINDOWS\System32
2014-12-25 13:10:26 ----D---- C:\WINDOWS\Inf
2014-12-25 13:10:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-25 13:06:30 ----D---- C:\WINDOWS\system32\wdi
2014-12-25 13:06:00 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-12-25 13:04:49 ----D---- C:\ProgramData\01e58235-010d-43b1-8340-277d43a75321
2014-12-25 13:04:21 ----D---- C:\ProgramData\StartW8
2014-12-25 13:04:05 ----D---- C:\WINDOWS\Temp
2014-12-25 13:03:22 ----RD---- C:\Program Files (x86)
2014-12-25 12:42:00 ----D---- C:\ProgramData\Norton
2014-12-25 12:41:35 ----D---- C:\WINDOWS\system32\drivers
2014-12-25 12:41:27 ----D---- C:\WINDOWS\Tasks
2014-12-25 12:41:27 ----D---- C:\WINDOWS\system32\Tasks
2014-12-25 08:06:47 ----SHD---- C:\System Volume Information
2014-12-25 08:00:49 ----D---- C:\WINDOWS\Microsoft.NET
2014-12-25 07:49:11 ----D---- C:\WINDOWS\AppReadiness
2014-12-21 08:37:37 ----D---- C:\WINDOWS\system32\config
2014-12-19 19:42:58 ----HD---- C:\Program Files\WindowsApps
2014-12-18 16:08:13 ----D---- C:\WINDOWS\CbsTemp
2014-12-18 16:08:12 ----D---- C:\WINDOWS\WinSxS
2014-12-15 18:07:07 ----D---- C:\WINDOWS\rescache
2014-12-15 17:02:06 ----D---- C:\WINDOWS\system32\DriverStore
2014-12-14 08:22:58 ----D---- C:\WINDOWS\system32\catroot
2014-12-13 17:45:12 ----SD---- C:\WINDOWS\system32\CompatTel
2014-12-13 17:45:12 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-12-13 17:45:12 ----D---- C:\WINDOWS\SysWOW64
2014-12-13 17:45:12 ----D---- C:\WINDOWS\system32\cs-CZ
2014-12-13 17:45:12 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-13 17:45:11 ----D---- C:\Program Files\Internet Explorer
2014-12-13 17:45:10 ----D---- C:\WINDOWS\PolicyDefinitions
2014-12-10 17:11:47 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2014-12-10 17:11:47 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2014-12-10 17:11:10 ----D---- C:\WINDOWS\system32\MRT
2014-12-10 17:09:03 ----A---- C:\WINDOWS\system32\MRT.exe
2014-12-10 17:08:55 ----SD---- C:\ProgramData\Microsoft
2014-12-07 16:00:34 ----D---- C:\Program Files (x86)\Common Files
2014-12-07 15:38:02 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-12-01 20:38:32 ----RD---- C:\WINDOWS\ToastData
2014-12-01 20:38:32 ----D---- C:\WINDOWS\system32\migration
2014-11-29 05:15:11 ----RSD---- C:\WINDOWS\assembly
2014-11-26 22:10:48 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-11-26 17:38:47 ----D---- C:\Windows
2014-11-26 17:17:00 ----D---- C:\WINDOWS\system32\catroot2
2014-11-26 17:11:07 ----D---- C:\WINDOWS\WinStore

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-09-14 647736]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-12-10 32544]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2013-07-02 19768]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R3 AiCharger;ASUS Charger Driver; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [2012-09-18 17152]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 ATP;@oem3.inf,%PS2.DeviceDesc%;ASUS Input Device; C:\WINDOWS\System32\drivers\AsusTP.sys [2013-12-12 70928]
R3 BTATH_HCRP;@oem12.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-03-27 179432]
R3 BTATH_RCP;@oem16.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-03-27 136784]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-01-28 593000]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-09-24 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2014-09-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-09-24 81920]
R3 dtsoftbus01;@oem31.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-11-15 283064]
R3 HIDSwitch;@oem11.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [2013-10-08 20280]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2013-10-01 4177920]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-06-04 3441992]
R3 IntcDAud;@oem21.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2013-01-09 342528]
R3 iwdbus;@oem29.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-08-22 26008]
R3 kbfiltr;@oem14.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2012-08-02 14992]
R3 MEIx64;@oem13.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-12-10 12572960]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2014-09-24 167424]
R3 RSBASTOR;@oem4.inf,%Rts5208%;Realtek PCIE CardReader Driver - BA; C:\WINDOWS\system32\DRIVERS\RtsBaStor.sys [2012-10-08 298640]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 AthBTPort;@oem10.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-03-27 89168]
S3 BTATH_A2DP;@oem9.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-03-27 346192]
S3 btath_avdt;@oem9.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-03-27 115280]
S3 BTATH_LWFLT;@oem21.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-03-27 77464]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-09-24 1200640]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2012-05-28 197264]
S3 intaud_WaveExtensible;@oem28.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-08-22 39320]
S3 mfencbdc;McAfee Inc. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2012-11-02 328976]
S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2012-11-02 97208]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2013-09-09 111416]
R2 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [2012-12-19 72192]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-03-27 227968]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-09-13 2466448]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-06-27 129856]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 MaintainerSvc6.89.573444;MaintainerSvc6.89.573444; C:\ProgramData\01e58235-010d-43b1-8340-277d43a75321\maintainer.exe [2014-12-25 123632]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-10-23 922912]
R2 StartW8Service;StartW8Service; C:\Program Files (x86)\StartW8\bin\StartW8Service.exe [2014-06-05 620424]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R2 Update PodoWeb;Update PodoWeb; C:\Program Files (x86)\PodoWeb\updatePodoWeb.exe [2014-12-25 524528]
R2 Util PodoWeb;Util PodoWeb; C:\Program Files (x86)\PodoWeb\bin\utilPodoWeb.exe [2014-12-25 524528]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-14 107912]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-12-10 1364256]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2013-10-01 279000]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-14 107912]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

-----------------EOF-----------------

#2 Příspěvek od **Márty84** » 25 pro 2014 22:15

Zdravim

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

Bosin · #3 Příspěvek od **Bosin** » 26 pro 2014 14:21

Zdravím,

děkuji za pomoc a čas.

Provedeno ...., posílám LOG.

# AdwCleaner v4.106 - Report created 26/12/2014 at 14:13:38
# Updated 21/12/2014 by Xplode
# Database : 2014-12-21.4 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : Bosákovi - BOSÁCI
# Running from : C:\Users\Bosákovi\Downloads\adwcleaner_4.106.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : Util PodoWeb
[#] Service Deleted : Update PodoWeb
Service Deleted : MaintainerSvc6.89.573444
Service Deleted : {9642e31c-2703-4a31-ba45-9e8dfb693e38}Gw64
Service Deleted : {ab3b6fe8-8ffe-4d0c-aa1e-8030c4760982}Gw64
Service Deleted : {b0ff63b8-ba6f-45bb-b13c-8474c0d8fc94}Gw64
Service Deleted : {b2aa7bb9-5668-402a-97c7-7dabffe0f82d}Gw64
Service Deleted : {b9f73d40-1a45-43a0-9a38-3e55d05b3bd4}Gw64

***** [ Files / Folders ] *****

[!] Folder Deleted : C:\Program Files (x86)\PodoWeb
[!] Folder Deleted : C:\Program Files (x86)\PodoWeb
Folder Deleted : C:\Users\BOSKOV~1\AppData\Local\Temp\PodoWeb
File Deleted : C:\WINDOWS\System32\drivers\{9642e31c-2703-4a31-ba45-9e8dfb693e38}Gw64.sys
File Deleted : C:\WINDOWS\System32\drivers\{ab3b6fe8-8ffe-4d0c-aa1e-8030c4760982}Gw64.sys
File Deleted : C:\WINDOWS\System32\drivers\{b0ff63b8-ba6f-45bb-b13c-8474c0d8fc94}Gw64.sys
File Deleted : C:\WINDOWS\System32\drivers\{b2aa7bb9-5668-402a-97c7-7dabffe0f82d}Gw64.sys
File Deleted : C:\WINDOWS\System32\drivers\{b9f73d40-1a45-43a0-9a38-3e55d05b3bd4}Gw64.sys

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Update PodoWeb
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Util PodoWeb
Key Deleted : HKEY_USERS\.DEFAULT\Software\Microsoft\.NETFramework\SQM\Apps\updatePodoWeb.exe
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{980B8A8F-EA0B-4C24-A2E9-70635E2502E9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AEDAB5B0-022B-465C-A88B-1E8C2FAAA5A2}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{b3d6b511-4d77-44db-a459-938d9e6995f7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{980B8A8F-EA0B-4C24-A2E9-70635E2502E9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AEDAB5B0-022B-465C-A88B-1E8C2FAAA5A2}
Key Deleted : HKCU\Software\PodoWeb
Key Deleted : HKLM\SOFTWARE\PodoWeb
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PodoWeb

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

-\\ Google Chrome v39.0.2171.95

*************************

AdwCleaner[R0].txt - [4285 octets] - [26/12/2014 14:07:49]
AdwCleaner[S0].txt - [3454 octets] - [26/12/2014 14:13:38]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3514 octets] ##########

#4 Příspěvek od **Márty84** » 26 pro 2014 16:16

Postupujte podle navodu kolegy

vyosek píše: Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
Ulozte nejlepe na plochu

Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu

Probehne vytvoreni zalohy a nasledne prohledavani

Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Postupujte podle navodu kolegy

vyosek píše: Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize
Kód: Vybrat vše
autoclean;
autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;
Nasledne kliknete na Run Script

PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Bosin · #5 Příspěvek od **Bosin** » 26 pro 2014 21:24

Zdravím,

provedeno. Logy viz. níže.

Děkuji ....
-------------- JRT ----------------
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.0 (11.29.2014:1)
OS: Windows 8.1 x64
Ran by Bos kovi on p 26. 12. 2014 at 20:38:10,94
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

~~~ Files

~~~ Folders

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p 26. 12. 2014 at 20:44:09,09
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

---------------------zoek-results-----------------

Zoek.exe v5.0.0.0 Updated 24-12-2014
Tool run by Bos kovi on p 26. 12. 2014 at 20:47:16,24.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\BOSKOV~1\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

26. 12. 2014 20:48:47 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\Users\UpdatusUser\AppData\\LocalLow deleted successfully
C:\Users\BOSKOV~1\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3945439989-1375640755-1692752156-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\PROGRA~3\01e58235-010d-43b1-8340-277d43a75321 deleted
C:\PROGRA~3\SetStretch.VBS deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\WINDOWS\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\machine deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted

==== Chromium Look ======================

PodoWeb - BOSKOV~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofbadnfgflalgnlglgchfonmpoiiclig

==== Chromium Fix ======================

C:\Users\BOSKOV~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofbadnfgflalgnlglgchfonmpoiiclig deleted successfully
C:\Users\BOSKOV~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ofbadnfgflalgnlglgchfonmpoiiclig_0.localstorage deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://asus13.msn.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://asus13.msn.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\BOSKOV~1\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\BOSKOV~1\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\BOSKOV~1\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\BOSKOV~1\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\BOSKOV~1\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\BOSKOV~1\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\BOSKOV~1\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=13 folders=5 258208 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Users\BOSKOV~1\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\BOSKOV~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on p 26. 12. 2014 at 21:17:45,32 ======================

#6 Příspěvek od **Márty84** » 26 pro 2014 22:40

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Bosin · #7 Příspěvek od **Bosin** » 27 pro 2014 21:35

Zdravím,

tak provedeno, log tady:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 27. 12. 2014
Scan Time: 21:17:05
Logfile: log_malwarebytes.txt
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2014.12.27.07
Rootkit Database: v2014.12.23.02
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: BosA!kovi

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 363521
Time Elapsed: 10 min, 16 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 1
PUP.Optional.OpenCandy, C:\Users\BosA!kovi\Downloads\DTLite4491-0356.exe, , [3f94a8bfc0bc23131b5c9f0627de0cf4],

Physical Sectors: 0
(No malicious items detected)

(end)

#8 Příspěvek od **Márty84** » 27 pro 2014 22:29

Nalez hodte do karanteny. Po restartu pc udelejte novy test, ale tentokrat se spravnym nastavenim. Tohle nebylo podle navodu. Musite dat vlastni sken vsech disku, aby prolezl cely pocitac. Tohle byl jen sken hrozeb, ten prohlizi jen zlomek pc.

Bosin · #9 Příspěvek od **Bosin** » 28 pro 2014 14:51

Zrdavím,

omlouvám se, nový test a výsledek níže:

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 28. 12. 2014
Čas skenování: 13:10:17
Protokol: log_malwarebytes.txt
Správce: Ano

Verze: 2.00.4.1028
Databáze malwaru: v2014.12.28.05
Databáze rootkitů: v2014.12.23.02
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Sebeobrany: Vypnuto

OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: BosA!kovi

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 496238
Uplynulý čas: 1 hod, 37 min, 45 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Žádné zákerné zjištěny položek)

Moduly: 0
(Žádné zákerné zjištěny položek)

Klíče registru: 0
(Žádné zákerné zjištěny položek)

Hodnoty registru: 0
(Žádné zákerné zjištěny položek)

Data registru: 0
(Žádné zákerné zjištěny položek)

Složky: 0
(Žádné zákerné zjištěny položek)

Soubory: 11
PUP.Optional.PodoWeb.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\PodoWeb\PodoWebBHO.dll.vir, , [8fa640280c70f0469e416b4de21ff709],
Adware.SwiftBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\PodoWeb\bin\{9642e31c-2703-4a31-ba45-9e8dfb693e38}.dll.vir, , [cf66afb9611b171ff5af30bdb64e827e],
Adware.SwiftBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\PodoWeb\bin\{ab3b6fe8-8ffe-4d0c-aa1e-8030c4760982}.dll.vir, , [171e17519fddc472446016d717ed8080],
Adware.SwiftBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\PodoWeb\bin\{b0ff63b8-ba6f-45bb-b13c-8474c0d8fc94}.dll.vir, , [6acb3a2e97e5e155f8ac47a63bc911ef],
Adware.SwiftBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\PodoWeb\bin\{b9f73d40-1a45-43a0-9a38-3e55d05b3bd4}.dll.vir, , [ce67a2c699e35bdbf7ad35b89c6803fd],
PUP.Optional.Sanbreel.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\PodoWeb\bin\plugins\PodoWeb.BOAS.dll.vir, , [0b2a84e4d1ab122482177f4d52affb05],
PUP.Optional.Sanbreel.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\PodoWeb\bin\plugins\PodoWeb.Bromon.dll.vir, , [5adb1355116b0036984f5377936e7b85],
PUP.Optional.Sanbreel.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\PodoWeb\bin\plugins\PodoWeb.BroStats.dll.vir, , [b08558100a72df5721c7b5156b9612ee],
PUP.Optional.Sanbreel.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\PodoWeb\bin\plugins\PodoWeb.CompatibilityChecker.dll.vir, , [53e2d692483441f58e58eddd926fb34d],
PUP.Optional.SwiftBrowse, C:\zoek_backup\C_PROGRA~3_01e58235-010d-43b1-8340-277d43a75321\maintainer.bak, , [87ae5b0d1963bf77d1a6c035a75ad42c],
PUP.Optional.SwiftBrowse, C:\zoek_backup\C_PROGRA~3_01e58235-010d-43b1-8340-277d43a75321\maintainer.exe, , [9e970a5e9fdd58de0f683fb6a45dfa06],

Fyzické sektory: 0
(Žádné zákerné zjištěny položek)

(end)

#10 Příspěvek od **Márty84** » 28 pro 2014 14:55

MBAM muzete odinstalovat (ty nalezy uz jsou v karantene pouzitych programu, takze jsou neskodne)

Dejte log podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100

Bosin · #11 Příspěvek od **Bosin** » 28 pro 2014 15:19

Zdravím,

děkuji za pomoc.

Dneska, za celý den, nenastala žádná chyba (nevyskočila hláška "Stránka není dostupná"). Proto bych toto téma uzavřel. Dnes NTB předám slavnostně rodičům a bude se modlit, že mi nezavolají, že to nefunguje

.

Ještě jednou, děkuji a přeji hodně zdaru do Nového roku.

#12 Příspěvek od **Márty84** » 28 pro 2014 17:36

Skoda, chtelo by to docistit.

Nemate zac!

Diky za prani

Vam tez vse nej

Mejte se a treba zase nekdy

VIRY.CZ

Stránka není dostupná

Stránka není dostupná

Re: Stránka není dostupná

Re: Stránka není dostupná

Re: Stránka není dostupná

Re: Stránka není dostupná

Re: Stránka není dostupná

Re: Stránka není dostupná

Re: Stránka není dostupná

Re: Stránka není dostupná

Re: Stránka není dostupná

Re: Stránka není dostupná

Re: Stránka není dostupná