Prosím pomoc CPU 100% pomalé pc

[dart500]

Dobrý den rosím o kontrolu asi zavirované pc . CPU výkon stále 100%

děkuji zde je log :

Logfile of random's system information tool 1.10 (written by random/random)
Run by gagin at 2015-01-06 13:45:53
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 24 GB (24%) free of 100 GB
Total RAM: 3582 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:46:15, on 6.1.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\XTab\cmdshell.exe
C:\Windows\system32\PrintDisp.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\XTab\HPNotify.exe
C:\Windows\System32\CtHelper.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Users\gagin\AppData\Roaming\SkypEmoticons\SE.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskmgr.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\Downloads\RSIT.exe
C:\Program Files\trend micro\gagin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... 08N2MU08NX
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... 08N2MU08NX
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... 08N2MU08NX
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... 08N2MU08NX
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: youtubeadblocker - {3fddcb31-5509-4542-84b1-c5e987e73845} - C:\Program Files\youtubeadblocker\DSbkeylT1A1rh9.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: youtubeadblocker - {811489f3-0711-4477-b7b7-bff086e2e7e2} - C:\Program Files\youtubeadblocker\na66GJZadjBDYn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: unissalesa - {a486f08c-543d-4630-ade0-a530b6a3252b} - C:\Program Files\unissalesa\6WAQlD9Rf4uD2z.dll
O2 - BHO: unisaleuS - {b9144b05-7887-4edd-b344-4686fd7a5ff8} - C:\Program Files\unisaleuS\U1eZ45YnWRwg5H.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [PrintDisp] C:\Windows\system32\PrintDisp.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SE] "C:\Users\gagin\AppData\Roaming\SkypEmoticons\SE.exe" /minimized
O4 - HKCU\..\Run: [aliim] "C:\Program Files\TradeManager\AliIM.exe" /autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.alipay.com
O15 - Trusted Zone: http://*.alisoft.com
O15 - Trusted Zone: http://*.taobao.com
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: IHProtect Service - XTab system - C:\Program Files\XTab\ProtectService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Printer Control - ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM - C:\Windows\system32\PrintCtrl.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 6218 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3fddcb31-5509-4542-84b1-c5e987e73845}]
youtubeadblocker - C:\Program Files\youtubeadblocker\DSbkeylT1A1rh9.dll [2015-01-05 566272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-11-13 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{811489f3-0711-4477-b7b7-bff086e2e7e2}]
youtubeadblocker - C:\Program Files\youtubeadblocker\na66GJZadjBDYn.dll [2015-01-05 566272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-01-06 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a486f08c-543d-4630-ade0-a530b6a3252b}]
unissalesa - C:\Program Files\unissalesa\6WAQlD9Rf4uD2z.dll [2015-01-05 566272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b9144b05-7887-4edd-b344-4686fd7a5ff8}]
unisaleuS - C:\Program Files\unisaleuS\U1eZ45YnWRwg5H.dll [2015-01-05 566272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-11-13 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"CTHelper"=C:\Windows\system32\CTHELPER.EXE [2007-04-09 19456]
"CTxfiHlp"=C:\Windows\system32\CTXFIHLP.EXE [2007-04-09 19968]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-11-13 12021464]
"PrintDisp"=C:\Windows\system32\PrintDisp.exe [2012-10-29 870400]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-01-06 5226600]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-10-30 4826904]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"SE"=C:\Users\gagin\AppData\Roaming\SkypEmoticons\SE.exe [2015-01-05 5679008]
"aliim"=C:\Program Files\TradeManager\AliIM.exe [2014-10-13 293688]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-01-06 13:45:53 ----D---- C:\rsit
2015-01-06 13:45:53 ----D---- C:\Program Files\trend micro
2015-01-06 10:53:33 ----D---- C:\Users\gagin\AppData\Roaming\Dropbox
2015-01-06 10:46:51 ----D---- C:\Windows\system32\vbox
2015-01-06 10:46:45 ----D---- C:\Users\gagin\AppData\Roaming\AVAST Software
2015-01-06 10:46:21 ----D---- C:\Windows\system32\MRT
2015-01-06 10:46:18 ----A---- C:\Windows\system32\MRT.exe
2015-01-06 10:46:16 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2015-01-06 10:46:16 ----A---- C:\Windows\system32\drivers\aswStm.sys
2015-01-06 10:46:15 ----A---- C:\Windows\system32\drivers\aswsp.sys
2015-01-06 10:46:13 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2015-01-06 10:46:12 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2015-01-06 10:46:04 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2015-01-06 10:46:04 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2015-01-06 10:46:00 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2015-01-06 10:45:54 ----A---- C:\Windows\system32\aswBoot.exe
2015-01-06 10:45:51 ----A---- C:\Windows\avastSS.scr
2015-01-06 10:45:15 ----D---- C:\Program Files\AVAST Software
2015-01-06 10:44:57 ----D---- C:\ProgramData\AVAST Software
2015-01-06 08:37:39 ----D---- C:\ProgramData\23405448
2015-01-05 18:42:24 ----D---- C:\Users\gagin\AppData\Roaming\SkypEmoticons
2015-01-05 18:41:58 ----D---- C:\ProgramData\IHProtectUpDate
2015-01-05 18:41:58 ----D---- C:\Program Files\XTab
2015-01-05 18:40:20 ----D---- C:\Program Files\youtubeadblocker
2015-01-05 18:40:07 ----D---- C:\Program Files\unissalesa
2015-01-05 18:40:02 ----D---- C:\ProgramData\lpjhglanjnfgiecapabjegldddafpgpc
2015-01-05 18:40:00 ----D---- C:\Program Files\unisaleuS
2015-01-05 18:39:31 ----D---- C:\ProgramData\12079718257923815175
2015-01-05 18:39:30 ----D---- C:\Program Files\uneisales
2015-01-05 18:39:24 ----D---- C:\ProgramData\fbpbkfgmpghppiehlcapanbhmcimooad
2015-01-05 16:51:07 ----A---- C:\log.txt
2014-12-18 09:17:01 ----A---- C:\Windows\system32\ieUnatt.exe
2014-12-10 12:44:33 ----D---- C:\Windows\system32\appraiser
2014-12-10 12:41:36 ----A---- C:\Windows\system32\mfpmp.exe
2014-12-10 12:41:36 ----A---- C:\Windows\system32\mferror.dll
2014-12-10 12:41:35 ----A---- C:\Windows\system32\rrinstaller.exe
2014-12-10 12:41:35 ----A---- C:\Windows\system32\mfps.dll
2014-12-10 12:41:35 ----A---- C:\Windows\system32\mf.dll
2014-12-10 07:37:11 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-12-10 07:37:11 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-12-10 07:37:10 ----A---- C:\Windows\system32\appraiser.dll
2014-12-10 07:37:10 ----A---- C:\Windows\system32\aitstatic.exe
2014-12-10 07:37:10 ----A---- C:\Windows\system32\aepic.dll
2014-12-10 07:37:10 ----A---- C:\Windows\system32\aeinv.dll
2014-12-10 07:37:09 ----A---- C:\Windows\system32\invagent.dll
2014-12-10 07:37:09 ----A---- C:\Windows\system32\generaltel.dll
2014-12-10 07:37:09 ----A---- C:\Windows\system32\devinv.dll
2014-12-10 07:37:09 ----A---- C:\Windows\system32\aepdu.dll
2014-12-10 07:37:07 ----A---- C:\Windows\system32\wininet.dll
2014-12-10 07:37:07 ----A---- C:\Windows\system32\vbscript.dll
2014-12-10 07:37:07 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-10 07:37:07 ----A---- C:\Windows\system32\jsproxy.dll
2014-12-10 07:37:07 ----A---- C:\Windows\system32\jscript9diag.dll
2014-12-10 07:37:07 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-10 07:37:07 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-12-10 07:37:07 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-12-10 07:37:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-12-10 07:37:07 ----A---- C:\Windows\system32\dxtmsft.dll
2014-12-10 07:37:06 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-10 07:37:05 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-12-10 07:37:05 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-10 07:37:05 ----A---- C:\Windows\system32\ieui.dll
2014-12-10 07:37:04 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-12-10 07:37:04 ----A---- C:\Windows\system32\iertutil.dll
2014-12-10 07:37:03 ----A---- C:\Windows\system32\jscript9.dll
2014-12-10 07:37:02 ----A---- C:\Windows\system32\mshtml.dll
2014-12-10 07:37:01 ----A---- C:\Windows\system32\urlmon.dll
2014-12-10 07:37:01 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-10 07:37:01 ----A---- C:\Windows\system32\iernonce.dll
2014-12-10 07:37:01 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-10 07:37:01 ----A---- C:\Windows\system32\ieapfltr.dll
2014-12-10 07:37:01 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-10 07:37:00 ----A---- C:\Windows\system32\msrating.dll
2014-12-10 07:37:00 ----A---- C:\Windows\system32\iesetup.dll
2014-12-10 07:37:00 ----A---- C:\Windows\system32\ieframe.dll
2014-12-10 07:36:38 ----A---- C:\Windows\system32\tzres.dll
2014-12-10 07:36:32 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-12-10 07:36:32 ----A---- C:\Windows\system32\WsmSvc.dll
2014-12-10 07:36:32 ----A---- C:\Windows\system32\WsmAuto.dll
2014-12-10 07:36:32 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-10 07:36:32 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2014-12-10 07:36:32 ----A---- C:\Windows\system32\charmap.exe
2014-12-07 17:36:19 ----D---- C:\Program Files\Recuva
2014-12-07 16:55:42 ----D---- C:\Users\gagin\AppData\Roaming\Systweak
2014-12-07 16:55:38 ----D---- C:\Program Files\Advanced Disk Recovery
2014-12-07 16:04:15 ----D---- C:\Program Files\MacGo

======List of files/folders modified in the last 1 month======

2015-01-06 13:45:56 ----D---- C:\Windows\Temp
2015-01-06 13:45:53 ----RD---- C:\Program Files
2015-01-06 13:43:50 ----D---- C:\Windows\System32
2015-01-06 13:41:50 ----D---- C:\Windows\Prefetch
2015-01-06 13:41:46 ----D---- C:\ProgramData\boost_interprocess
2015-01-06 11:19:25 ----D---- C:\Windows\inf
2015-01-06 11:19:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-06 11:16:54 ----D---- C:\Program Files\TradeManager
2015-01-06 11:11:04 ----D---- C:\Windows
2015-01-06 11:11:03 ----D---- C:\Windows\system32\drivers
2015-01-06 10:55:44 ----D---- C:\Windows\system32\config
2015-01-06 10:53:23 ----SHD---- C:\System Volume Information
2015-01-06 10:46:26 ----D---- C:\Windows\system32\Tasks
2015-01-06 10:46:21 ----D---- C:\Windows\debug
2015-01-06 10:45:58 ----D---- C:\Windows\winsxs
2015-01-06 10:44:57 ----HD---- C:\ProgramData
2015-01-06 10:43:59 ----D---- C:\Windows\Logs
2015-01-06 10:22:05 ----D---- C:\Users\gagin\AppData\Roaming\Skype
2015-01-06 09:53:38 ----D---- C:\Users\gagin\AppData\Roaming\vlc
2015-01-06 09:01:27 ----D---- C:\Windows\system32\catroot
2015-01-06 09:01:26 ----D---- C:\Windows\system32\DriverStore
2015-01-06 08:36:32 ----D---- C:\Users\gagin\AppData\Roaming\uTorrent
2015-01-06 08:30:12 ----D---- C:\Windows\system32\wbem
2015-01-05 16:51:08 ----SHD---- C:\Windows\Installer
2015-01-05 16:51:06 ----SD---- C:\Users\gagin\AppData\Roaming\Microsoft
2015-01-05 16:51:06 ----D---- C:\Program Files\AllWinnertech
2014-12-24 11:14:21 ----D---- C:\Windows\system32\catroot2
2014-12-19 17:29:51 ----D---- C:\ProgramData\SP_FT_Logs
2014-12-17 16:13:47 ----D---- C:\Program Files\Opera
2014-12-12 17:56:16 ----D---- C:\Windows\rescache
2014-12-12 15:55:36 ----D---- C:\Windows\system32\cs-CZ
2014-12-12 08:47:10 ----D---- C:\Windows\system32\wdi
2014-12-11 14:24:03 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-12-11 10:18:34 ----D---- C:\ProgramData\Skype
2014-12-11 10:18:33 ----RD---- C:\Program Files\Skype
2014-12-11 09:50:14 ----D---- C:\Windows\LiveKernelReports
2014-12-10 12:44:33 ----SD---- C:\Windows\system32\CompatTel
2014-12-10 12:44:33 ----D---- C:\Windows\AppCompat
2014-12-10 12:44:32 ----SD---- C:\ProgramData\Microsoft
2014-12-10 12:44:32 ----D---- C:\Windows\system32\en-US
2014-12-10 12:44:32 ----D---- C:\Windows\PolicyDefinitions
2014-12-10 12:44:31 ----D---- C:\Program Files\Internet Explorer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-01-06 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-01-06 206248]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2014-11-13 106296]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-01-06 81768]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-01-06 787800]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-01-06 423784]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-11-24 243128]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-01-06 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-01-06 70384]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-01-06 91496]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-01-06 218192]
R3 COMMONFX.DLL;COMMONFX.DLL; C:\Windows\system32\COMMONFX.DLL [2007-04-18 98600]
R3 ctaud2k;Creative Audio Driver (WDM); C:\Windows\system32\drivers\ctaud2k.sys [2007-04-10 520488]
R3 CTAUDFX.DLL;CTAUDFX.DLL; C:\Windows\system32\CTAUDFX.DLL [2007-04-12 546048]
R3 ctprxy2k;Creative Proxy Driver; C:\Windows\system32\drivers\ctprxy2k.sys [2007-04-10 14632]
R3 CTSBLFX.DLL;CTSBLFX.DLL; C:\Windows\system32\CTSBLFX.DLL [2007-04-12 560384]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\Windows\system32\drivers\ctsfm2k.sys [2007-04-10 157480]
R3 emupia;E-mu Plug-in Architecture Driver; C:\Windows\system32\drivers\emupia2k.sys [2007-04-10 92968]
R3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\Windows\system32\drivers\ha10kx2k.sys [2007-04-10 797992]
R3 hap16v2k;Creative P16V HAL Driver; C:\Windows\system32\drivers\hap16v2k.sys [2007-04-10 163112]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-11-13 3086040]
R3 ossrv;Creative OS Services Driver; C:\Windows\system32\drivers\ctoss2k.sys [2007-04-10 126760]
R3 pneteth;PdaNet Broadband; C:\Windows\system32\DRIVERS\pneteth.sys [2011-11-25 13440]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2014-11-13 719064]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-11-13 38768]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 CT20XUT.DLL;CT20XUT.DLL; C:\Windows\system32\CT20XUT.DLL [2007-04-12 164608]
S3 ctac32k;Creative AC3 Software Decoder; C:\Windows\system32\drivers\ctac32k.sys [2007-04-10 511272]
S3 ctdvda2k;Creative DVD-Audio Device Driver; C:\Windows\system32\drivers\ctdvda2k.sys [2007-04-10 347128]
S3 CTEAPSFX.DLL;CTEAPSFX.DLL; C:\Windows\system32\CTEAPSFX.DLL [2007-04-12 168192]
S3 CTEDSPFX.DLL;CTEDSPFX.DLL; C:\Windows\system32\CTEDSPFX.DLL [2007-04-12 280320]
S3 CTEDSPIO.DLL;CTEDSPIO.DLL; C:\Windows\system32\CTEDSPIO.DLL [2007-04-12 128768]
S3 CTEDSPSY.DLL;CTEDSPSY.DLL; C:\Windows\system32\CTEDSPSY.DLL [2007-04-12 323328]
S3 CTERFXFX.DLL;CTERFXFX.DLL; C:\Windows\system32\CTERFXFX.DLL [2007-04-12 94976]
S3 CTEXFIFX.DLL;CTEXFIFX.DLL; C:\Windows\system32\CTEXFIFX.DLL [2007-04-12 1317632]
S3 CTHWIUT.DLL;CTHWIUT.DLL; C:\Windows\system32\CTHWIUT.DLL [2007-04-12 66816]
S3 hap17v2k;Creative P17V HAL Driver; C:\Windows\system32\drivers\hap17v2k.sys [2007-04-10 189736]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\drivers\usb8023x.sys [2013-02-12 15872]
S3 usbser;USB Serial emulation modem driver; C:\Windows\system32\DRIVERS\usbser.sys [2013-08-29 28160]
S3 usbUDisc;usbUDisc; C:\Windows\system32\DRIVERS\USBDrv.sys [2013-01-25 14936]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUSB;Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-01-06 50344]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 IHProtect Service;IHProtect Service; C:\Program Files\XTab\ProtectService.exe [2014-12-29 158864]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 670552]
R2 Printer Control;Printer Control; C:\Windows\system32\PrintCtrl.exe [2012-10-21 102400]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-01-06 3192344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-11 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 102912]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[vyosek]

Zdravim

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Po spusteni probehne stazeni databaze
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  resethosts;
  emptyclsid;
  IEdefaults;
  FFdefaults;
  CHRdefaults;
  emptyIEcache;
  emptyFFcache;
  emptyCHRcache;
  emptyalltemp;
  emptyflash;
  emptyjava;
  emptyrecycle.bin;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[dart500]

Děkuji za pomoc zde jsou logy :

# AdwCleaner v4.106 - Report created 06/01/2015 at 14:17:34
# Updated 21/12/2014 by Xplode
# Database : 2015-01-03.1 [Live]
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : gagin - GAGIN-PC
# Running from : C:\Users\gagin\Downloads\adwcleaner_4.106.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : IHProtect Service

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\IHProtectUpDate
Folder Deleted : C:\ProgramData\12079718257923815175
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SkypEmoticons
Folder Deleted : C:\Users\gagin\AppData\Roaming\SkypEmoticons
Folder Deleted : C:\Users\gagin\AppData\Roaming\Systweak

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\Public\Desktop\Opera.lnk
Shortcut Disinfected : C:\Users\gagin\Desktop\Google Chrome.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
Shortcut Disinfected : C:\Users\gagin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\gagin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Shortcut Disinfected : C:\Users\gagin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Shortcut Disinfected : C:\Users\gagin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Shortcut Disinfected : C:\Users\gagin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\gagin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Opera.lnk
Shortcut Disinfected : C:\Users\gagin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Shortcut Disinfected : C:\Users\gagin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk

***** [ Registry ] *****

Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [se]
Key Deleted : HKLM\SOFTWARE\Classes\P3fddcb31_5509_4542_84b1_c5e987e73845_.P3fddcb31_5509_4542_84b1_c5e987e73845_
Key Deleted : HKLM\SOFTWARE\Classes\P3fddcb31_5509_4542_84b1_c5e987e73845_.P3fddcb31_5509_4542_84b1_c5e987e73845_.9
Key Deleted : HKLM\SOFTWARE\Classes\P811489f3_0711_4477_b7b7_bff086e2e7e2_.P811489f3_0711_4477_b7b7_bff086e2e7e2_
Key Deleted : HKLM\SOFTWARE\Classes\P811489f3_0711_4477_b7b7_bff086e2e7e2_.P811489f3_0711_4477_b7b7_bff086e2e7e2_.9
Key Deleted : HKLM\SOFTWARE\Classes\Pa486f08c_543d_4630_ade0_a530b6a3252b_.Pa486f08c_543d_4630_ade0_a530b6a3252b_
Key Deleted : HKLM\SOFTWARE\Classes\Pa486f08c_543d_4630_ade0_a530b6a3252b_.Pa486f08c_543d_4630_ade0_a530b6a3252b_.9
Key Deleted : HKLM\SOFTWARE\Classes\Pb9144b05_7887_4edd_b344_4686fd7a5ff8_.Pb9144b05_7887_4edd_b344_4686fd7a5ff8_
Key Deleted : HKLM\SOFTWARE\Classes\Pb9144b05_7887_4edd_b344_4686fd7a5ff8_.Pb9144b05_7887_4edd_b344_4686fd7a5ff8_.9
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3fddcb31-5509-4542-84b1-c5e987e73845}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{811489f3-0711-4477-b7b7-bff086e2e7e2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{a486f08c-543d-4630-ade0-a530b6a3252b}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{b9144b05-7887-4edd-b344-4686fd7a5ff8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3fddcb31-5509-4542-84b1-c5e987e73845}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{811489f3-0711-4477-b7b7-bff086e2e7e2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a486f08c-543d-4630-ade0-a530b6a3252b}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b9144b05-7887-4edd-b344-4686fd7a5ff8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3fddcb31-5509-4542-84b1-c5e987e73845}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{811489f3-0711-4477-b7b7-bff086e2e7e2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{a486f08c-543d-4630-ade0-a530b6a3252b}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{b9144b05-7887-4edd-b344-4686fd7a5ff8}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\SupDp
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\mystartsearchSoftware
Key Deleted : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2AA44AF4-C116-4219-B800-4573E7E6D421}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SkypEmoticons_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4CEE92A3-9F0C-51AB-ADC0-34EC24AD7B7E}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17496

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Google Chrome v

[C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Homepage] : hxxp://www.mystartsearch.com/?type=hp&ts=14204 ... 08N2MU08NX
[C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Startup_URLs] : hxxp://www.mystartsearch.com/?type=hp&ts=14204 ... 08N2MU08NX
[C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Homepage] : hxxp://www.mystartsearch.com/?type=hp&ts=14204 ... 08N2MU08NX
[C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Startup_URLs] : hxxp://www.mystartsearch.com/?type=hp&ts=14204 ... 08N2MU08NX

-\\ Opera v26.0.1656.60

[C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : aaipilfmheplbcghignccoiiebekkdhe
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : elchiiiejkobdbblfejjkbphbddgmljf
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ffhfoagmjcnkolneahbpagjcjjaeofbg
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : hjghiofiijcepdnocbgefbdlbckjfheg
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : iklgpchfbohgmghgfagediakopecfmbm
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : kfgaibfbmkjgmimhbbaikfnpkkjkpoan
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : lmnbobhffedhdhfpcjkjphcfpeeiocdn
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : kjpifmjicccpbkfjdkehimhgklfkbanh
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : hoidflomjnnnbiemmkjdjkkialmhbago
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ekpibplnnkfdcafdpoekhoffegcajene
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ipljmghelflfikejmgkmlmpjmehfjodc
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ejddjnilmdncjilbfjgameihlklfpohp
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : eagomcfjiefffhpaejnlpjccikpipdoe
[C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : aonedlchkbicmhepimiahfalheedjgbh

*************************

AdwCleaner[R0].txt - [9807 octets] - [06/01/2015 14:15:32]
AdwCleaner[S0].txt - [10775 octets] - [06/01/2015 14:17:34]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10836 octets] ##########




Zoek.exe v5.0.0.0 Updated 31-12-2014
Tool run by gagin on Łt 06.01.2015 at 14:24:07,18.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\gagin\Desktop\zoek.exe.com [Scan all users] [Script inserted]

==== System Restore Info ======================

6.1.2015 14:25:36 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\KASTNER software deleted successfully
C:\Users\gagin\AppData\Roaming\Kastner software deleted successfully
C:\Users\Administrator\AppData\Local\Comodo deleted successfully
C:\Users\Administrator\AppData\Local\Google deleted successfully
C:\Users\gagin\AppData\Local\Comodo deleted successfully
C:\Users\gagin\AppData\Local\CrashDumps deleted successfully
C:\Users\Guest\AppData\Local\Comodo deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome.6VTQ6NJRDJQBTUKE2PFC6CQXXI\shell\open\command]
@="C:\\Users\\gagin\\AppData\\Local\\Google\\Chrome\\Application\\chrome.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Opera.exe\shell\open\command]
@="C:\\Program Files\\Opera\\Opera.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\OperaStable\shell\open\command]
@="C:\\Program Files\\Opera\\Launcher.exe"

==== Deleting Files \ Folders ======================

C:\PROGRA~2\fbpbkfgmpghppiehlcapanbhmcimooad deleted
C:\PROGRA~2\lpjhglanjnfgiecapabjegldddafpgpc deleted
C:\PROGRA~2\23405448 deleted
C:\Users\gagin\.android deleted
C:\Program Files\youtubeadblocker deleted
C:\PROGRA~2\boost_interprocess deleted
C:\Windows\system32\config\systemprofile\Searches deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [06.01.2015 10:45]

==== Fake Chromium Profiles Check ======================

Fake profile C:\Users\Guest\AppData\Local\Google\Chrome SxS deleted

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[06.01.2015 10:45]

Avast Online Security - gagin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\gagin\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully

==== Empty IE Cache ======================

C:\Users\gagin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\gagin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\gagin\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=24 folders=8 1568089 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\gagin\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\gagin\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on Łt 06.01.2015 at 14:54:13,24 ======================

[vyosek]

Poprosim o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

[dart500]

zde je děkuji

:

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 06-01-2015
Ran by gagin at 2015-01-06 15:23:39
Running from C:\Users\gagin\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2944857353-2517545661-1454557399-1000\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
µTorrent CZ 1.8.1 (build 12639) (HKLM\...\µTorrent CZ_is1) (Version: - emc)
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DriverGenius (HKLM\...\{60413225-DF15-47BE-9993-4E87BA8754C3}) (Version: 1.0.0 - Driver-Soft)
Dropbox (HKU\S-1-5-21-2944857353-2517545661-1454557399-1000\...\Dropbox) (Version: 3.0.4 - Dropbox, Inc.)
Google Chrome (HKU\S-1-5-21-2944857353-2517545661-1454557399-1000\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Infix PDF Editor verze 6.1.9.0 (HKLM\...\83FFB914-6FA7-4F1F-807E-E0FFBA2E49E1_is1) (Version: 6.1.9.0 - Iceni Technology)
Java 7 Update 72 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217072FF}) (Version: 7.0.720 - Oracle)
Mac Blu-ray Player (HKLM\...\Mac Blu-ray Player) (Version: 2.10.12.1788 - Macgo Inc.)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 7 Ultra Edition (HKLM\...\{4F2CE68F-EDBB-4592-BF07-5AC930A51029}) (Version: 7.02.6446 - Nero AG)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.4 - NVIDIA Corporation)
NVIDIA PhysX (HKLM\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Opera 9.64 (HKLM\...\{E1BBBAC5-2857-4155-82A6-54492CE88620}) (Version: 9.64 - Opera Software ASA)
Opera Stable 26.0.1656.60 (HKLM\...\Opera 26.0.1656.60) (Version: 26.0.1656.60 - Opera Software ASA)
Ovládací panel NVIDIA 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
PdaNet+ for Android 4.12 (HKLM\...\PdaNet_is1) (Version: - June Fabrics Technology Inc)
PhoenixSuit (HKLM\...\{EBF1BED9-4321-40D7-8837-177AE54C457C}) (Version: 1.0.5 - AllWinnertech)
PhoenixUSBPro (HKLM\...\{013C24A4-F144-4D49-AD8D-71452D635621}) (Version: 1.0.0 - AllWinnertech)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.100 - Skype Technologies S.A.)
TradeManager 2014 Beta1 (HKLM\...\TradeManager) (Version: - Alibaba (China) Network Technology Co., Ltd.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Driver Package - Android (WUDFRd) WPD (04/07/2011 5.2.5326.4762) (HKLM\...\78917410BE8040E4932D812DC4AE7CA774A40096) (Version: 04/07/2011 5.2.5326.4762 - Android)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00001) (HKLM\...\450B7CBC371CAEC6A328083977AA7A09E7AE5D29) (Version: 08/27/2012 7.0.0000.00001 - Google, Inc.)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00001) (HKLM\...\8F9C586770119C5E2691CBF69E16EE1E8513B728) (Version: 08/27/2012 7.0.0000.00001 - Google, Inc.)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00001) (HKLM\...\947CB7152B060DC6E5778A4FA54EAF3B421890E4) (Version: 08/27/2012 7.0.0000.00001 - Google, Inc.)
Windows Driver Package - MediaTek Inc. (usbser) Ports (05/30/2011 1.1123.0) (HKLM\...\9F57DFB5B4E90E617CAF60510F56318C1F80CC8C) (Version: 05/30/2011 1.1123.0 - MediaTek Inc.)
Windows Driver Package - MediaTek Inc. (usbser) Ports (11/15/2007 5.1.2600.0) (HKLM\...\1C5CFF9BD49397D32DDD8D47E3AC26557809E1C5) (Version: 11/15/2007 5.1.2600.0 - MediaTek Inc.)
Windows Driver Package - USB Devices (usbUDisc) USB (01/24/2013 1.0.0.1) (HKLM\...\2968446D00DC8F0F77065B39E80E51761B9DEAC2) (Version: 01/24/2013 1.0.0.1 - USB Devices)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
XTab (HKLM\...\XTab) (Version: 4.0.2.1615 - XTab system)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\gagin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{00B7E0AB-817A-44AD-A04B-D1148D524136}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{017CE1A6-416F-4684-AE6A-02064420B30A}\InprocServer32 -> C:\Program Files\TradeManager\AliIMSSOLogin.dll (Alibaba software (Shanghai) Corporation.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{0E75A0CB-0072-450A-8AF2-D56B82045B4F}\InprocServer32 -> C:\Program Files\TradeManager\SDKDB.dll (Alibaba (China) Co., Ltd.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{26C3F8B0-0217-46A1-AB2D-A1B494E71402}\InprocServer32 -> C:\Program Files\TradeManager\AliIMSSOLogin.dll (Alibaba software (Shanghai) Corporation.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{4B4E7C37-8581-47A9-AFA1-E62E2B6AD857}\localserver32 -> C:\Program Files\TradeManager\AliDeskLoader.exe (Alibaba (China) Co., Ltd.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{4CEEAF57-0208-4CA4-A473-914C2D2FFC23}\InprocServer32 -> C:\Program Files\TradeManager\AliIMX.dll (Alibaba (China) Co., Ltd.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Users\gagin\AppData\Local\Google\Chrome\Application\38.0.2125.111\delegate_execute.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{5D09DD40-CDC4-4C56-B615-0D1E3B357C2B}\InprocServer32 -> C:\Program Files\TradeManager\AliIMX.dll (Alibaba (China) Co., Ltd.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{6777375D-DD17-46FF-A4E4-9650C00D5D92}\InprocServer32 -> C:\Program Files\TradeManager\SDKDB.dll (Alibaba (China) Co., Ltd.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{7C6E29BC-8B8B-4C3D-859E-AF6CD158BE0F}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{88D969C0-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{88D969C1-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{88D969C2-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{88D969C3-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{88D969C4-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{88D969C5-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{88D969C6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{88D969C8-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{88D969C9-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{88D969CA-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{88D969D6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{AC508439-4A53-4b60-B480-4A76B04400CD}\localserver32 -> C:\Program Files\TradeManager\aliapploader.exe (Alibaba (China) Co., Ltd.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{D4FEDB83-B705-497F-8707-6CA53D69FF9B}\InprocServer32 -> C:\Program Files\TradeManager\SDKDB.dll (Alibaba (China) Co., Ltd.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{E81FB43C-B144-4D30-8033-C9338AA0ECB8}\InprocServer32 -> C:\Program Files\TradeManager\AliIMSSOLogin.dll (Alibaba software (Shanghai) Corporation.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> C:\Users\gagin\AppData\Local\Temp\EAcF6F\temp\Phoenix Card 3 06.exe No File
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\gagin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\gagin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\gagin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\gagin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\gagin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\gagin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\gagin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\gagin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)

==================== Restore Points =========================

23-12-2014 09:27:18 Windows Update
26-12-2014 11:16:44 Windows Update
30-12-2014 09:49:53 Windows Update
05-01-2015 16:48:51 安装了 PhoenixUSBPro
05-01-2015 16:51:11 Instalace balíčku ovladače zařízení: USB Devices Řadiče USB (Universal Serial Bus)
06-01-2015 08:33:07 Windows Update
06-01-2015 10:45:07 avast! antivirus system restore point
06-01-2015 10:45:57 Windows Update
06-01-2015 14:25:19 zoek.exe restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2015-01-06 14:25 - 00000840 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0C59B418-FC08-448F-A8A4-9CD711050299} - System32\Tasks\{8937208B-D34E-47BC-8511-FC38112263CC} => pcalua.exe -a "D:\Programy2\Nero 7 premium completo 2005\setup.exe" -d "D:\Programy2\Nero 7 premium completo 2005"
Task: {11691A0D-8F9C-4B67-BAAC-A9148E812297} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {40945069-5BCA-40C1-B372-C3011C20FCE7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-11] (Adobe Systems Incorporated)
Task: {46FDCD75-FBA5-4D1A-A141-8196275F1F33} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2944857353-2517545661-1454557399-1000Core => C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {61D6B0BD-FE66-44A6-851A-BC8E9E91CCD4} - System32\Tasks\{48C7322B-7DB2-47DC-B717-B89E2D27D8BF} => pcalua.exe -a "C:\Program Files\AllWinnertech\PhoenixUSBPro\drvinstaller_X86.exe" -d "C:\Program Files\AllWinnertech\PhoenixUSBPro" -c .\UsbDriver\usbdrv.inf
Task: {6EAB2FCA-7DB4-4779-BBBC-B3EAA4280417} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-01-06] (AVAST Software)
Task: {7F279D4B-E75E-47AA-A0D8-6F70A3250951} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-30] (Piriform Ltd)
Task: {80066E1C-4052-47E9-BE5A-8E64D1FD340D} - System32\Tasks\Opera scheduled Autoupdate 1415892289 => C:\Program Files\Opera\launcher.exe [2014-12-17] (Opera Software)
Task: {AF67A796-FACD-49E7-B616-33F5FDD63AA0} - System32\Tasks\{7679E1B6-E5BE-453C-85B2-D83F8EA7C866} => pcalua.exe -a "E:\ccccccccccccc\All MTK USB Driver 2014\All MTK Drivers\FeaturePhoneDriver\v1.1032.1\InstallDriver.exe" -d "E:\ccccccccccccc\All MTK USB Driver 2014\All MTK Drivers\FeaturePhoneDriver\v1.1032.1"
Task: {BC2BBBEC-33AA-4534-B657-A7D3D98147AF} - System32\Tasks\{3FD88A12-319C-4635-917A-1F4EB92C8458} => pcalua.exe -a D:\Programy2\seznam-firefox-win32-cs-3.6.11.exe -d D:\Programy2
Task: {BDAAB748-B2A3-4997-8957-D6E20CD3B431} - System32\Tasks\{B35250A1-F99B-4A9D-B6A9-3F3D78DEA990} => pcalua.exe -a C:\Users\gagin\AppData\Roaming\omiga-plus\UninstallManager.exe -c -ptid=adks
Task: {BE65A2C1-3F0F-4656-8DDE-27805088B4CF} - System32\Tasks\{24696CF4-29DD-43F4-9211-7F4BB1329ED6} => pcalua.exe -a C:\Users\gagin\Desktop\RCT\Set-English.exe -d C:\Users\gagin\Desktop\RCT
Task: {D8DCF658-FD5A-42C8-82C5-6C3FA08DF2CE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2944857353-2517545661-1454557399-1000UA => C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2015-01-06 10:46 - 2015-01-06 10:46 - 02909696 _____ () C:\Program Files\AVAST Software\Avast\defs\15010600\algo.dll
2015-01-06 10:45 - 2015-01-06 10:45 - 02151544 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxVMM.dll
2015-01-06 10:45 - 2015-01-06 10:45 - 00021488 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxREM.dll
2015-01-06 10:45 - 2015-01-06 10:45 - 04474224 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxRT.dll
2014-11-13 17:47 - 2014-07-02 20:42 - 00107992 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2015-01-06 10:45 - 2015-01-06 10:45 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-10-08 07:54 - 2014-10-08 07:54 - 00037176 _____ () C:\Program Files\TradeManager\rv2log.dll
2014-10-08 07:53 - 2014-10-08 07:53 - 00321336 _____ () C:\Program Files\TradeManager\rv2core.dll
2014-10-08 07:53 - 2014-10-08 07:53 - 00279864 _____ () C:\Program Files\TradeManager\pcre.dll
2014-10-08 04:12 - 2014-10-08 04:12 - 01554888 _____ () C:\Program Files\TradeManager\LIBEAY32.dll
2014-10-08 07:53 - 2014-10-08 07:53 - 00367928 _____ () C:\Program Files\TradeManager\rv2archive.dll
2014-10-08 04:11 - 2014-10-08 04:11 - 00322376 _____ () C:\Windows\system32\aliedit\aliedit.dll
2014-10-08 07:54 - 2014-10-08 07:54 - 00457016 _____ () C:\Program Files\TradeManager\uacagent.dll
2014-10-08 04:12 - 2014-10-08 04:12 - 00072192 _____ () C:\Program Files\TradeManager\zlibwapi.dll
2014-10-08 07:48 - 2014-10-08 07:48 - 00036664 _____ () C:\Program Files\TradeManager\aliupload.dll
2014-10-08 07:54 - 2014-10-08 07:54 - 00577848 _____ () C:\Program Files\TradeManager\unifiedconfig.dll
2014-10-23 20:19 - 2014-10-23 20:19 - 00043520 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2015-01-06 10:45 - 2015-01-06 10:45 - 00317632 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDDU.dll
2014-11-10 20:10 - 2014-10-22 05:04 - 01042760 _____ () C:\Users\gagin\AppData\Local\Google\Chrome\Application\38.0.2125.111\libglesv2.dll
2014-11-10 20:10 - 2014-10-22 05:04 - 00211272 _____ () C:\Users\gagin\AppData\Local\Google\Chrome\Application\38.0.2125.111\libegl.dll
2014-11-10 20:10 - 2014-10-22 05:04 - 08910664 _____ () C:\Users\gagin\AppData\Local\Google\Chrome\Application\38.0.2125.111\pdf.dll
2014-11-10 20:10 - 2014-10-22 05:04 - 01681224 _____ () C:\Users\gagin\AppData\Local\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll
2015-01-06 10:45 - 2015-01-06 10:45 - 00028712 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxSharedClipboard.DLL
2015-01-06 10:45 - 2015-01-06 10:45 - 00042616 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDragAndDropSvc.DLL
2015-01-06 10:45 - 2015-01-06 10:45 - 00040056 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxGuestControlSvc.DLL
2015-01-06 10:45 - 2015-01-06 10:45 - 01129784 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxREM64.DLL
2015-01-06 10:45 - 2015-01-06 10:45 - 01274448 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDD.DLL
2015-01-06 10:45 - 2015-01-06 10:45 - 00198152 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDD2.dll
2015-01-06 10:45 - 2015-01-06 10:45 - 00037984 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxSharedFolders.DLL
2014-11-10 20:10 - 2014-10-22 05:05 - 14902600 _____ () C:\Users\gagin\AppData\Local\Google\Chrome\Application\38.0.2125.111\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\gagin\Downloads\message_57909.eml:OECustomProperty

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-2944857353-2517545661-1454557399-500 - Administrator - Disabled)
gagin (S-1-5-21-2944857353-2517545661-1454557399-1000 - Administrator - Enabled) => C:\Users\gagin
Guest (S-1-5-21-2944857353-2517545661-1454557399-501 - Limited - Disabled)

==================== Faulty Device Manager Devices =============

Name: USB Device(VID_1f3a_PID_efe8)
Description: USB Device(VID_1f3a_PID_efe8)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: USB Devices
Service: usbUDisc
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Vstupní zařízení pro sběrnici PCI
Description: Vstupní zařízení pro sběrnici PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/06/2015 03:19:10 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1 se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (01/06/2015 10:45:07 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen.
.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.


Operace:
Shromažďování dat modulu pro zápis

Kontext:
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {d534510e-87ad-4666-b2f9-cafbcbfd1e41}

Error: (01/06/2015 08:36:13 AM) (Source: ESENT) (EventID: 454) (User: )
Description: taskhost (1768) WebCacheLocal: Při zotavení či obnovení databáze došlo k neočekávané chybě -1022.

Error: (01/06/2015 08:36:13 AM) (Source: ESENT) (EventID: 419) (User: )
Description: taskhost (1768) WebCacheLocal: Stránku 433 databáze C:\Users\gagin\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat nelze číst. Chyba -1022

Error: (01/06/2015 08:36:01 AM) (Source: ESENT) (EventID: 454) (User: )
Description: taskhost (1768) WebCacheLocal: Při zotavení či obnovení databáze došlo k neočekávané chybě -1022.

Error: (01/06/2015 08:36:01 AM) (Source: ESENT) (EventID: 419) (User: )
Description: taskhost (1768) WebCacheLocal: Stránku 433 databáze C:\Users\gagin\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat nelze číst. Chyba -1022

Error: (01/06/2015 08:35:49 AM) (Source: ESENT) (EventID: 454) (User: )
Description: taskhost (1768) WebCacheLocal: Při zotavení či obnovení databáze došlo k neočekávané chybě -1022.

Error: (01/06/2015 08:35:49 AM) (Source: ESENT) (EventID: 419) (User: )
Description: taskhost (1768) WebCacheLocal: Stránku 433 databáze C:\Users\gagin\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat nelze číst. Chyba -1022

Error: (01/06/2015 08:35:37 AM) (Source: ESENT) (EventID: 454) (User: )
Description: taskhost (1768) WebCacheLocal: Při zotavení či obnovení databáze došlo k neočekávané chybě -1022.

Error: (01/06/2015 08:35:37 AM) (Source: ESENT) (EventID: 419) (User: )
Description: taskhost (1768) WebCacheLocal: Stránku 433 databáze C:\Users\gagin\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat nelze číst. Chyba -1022


System errors:
=============
Error: (01/06/2015 03:18:27 PM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error: (01/06/2015 03:18:18 PM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error: (01/06/2015 03:18:12 PM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error: (01/06/2015 02:44:54 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/06/2015 02:44:54 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/06/2015 02:44:53 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/06/2015 02:44:52 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/06/2015 02:44:51 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/06/2015 02:30:36 PM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error: (01/06/2015 02:30:29 PM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E6550 @ 2.33GHz
Percentage of memory in use: 38%
Total physical RAM: 3582.49 MB
Available physical RAM: 2216.19 MB
Total Pagefile: 7163.27 MB
Available Pagefile: 5581.01 MB
Total Virtual: 2047.88 MB
Available Virtual: 1897.29 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.65 GB) (Free:22.71 GB) NTFS
Drive d: () (Fixed) (Total:200.43 GB) (Free:68.16 GB) NTFS
Drive e: () (Fixed) (Total:148.71 GB) (Free:72.17 GB) NTFS
Drive g: (Office_2007_cz_E) (CDROM) (Total:0.54 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 93F393F3)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=148.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: BBC58B91)
Partition 1: (Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200.4 GB) - (Type=OF Extended)

==================== End Of Log ============================

[vyosek]

Dejte i log FRST.txt

[dart500]

zde je děkuji

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-01-2015
Ran by gagin (administrator) on GAGIN-PC on 07-01-2015 09:08:19
Running from C:\Users\gagin\Downloads
Loaded Profile: gagin (Available profiles: gagin)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) C:\Windows\System32\PrintCtrl.exe
(ActMask Co.,Ltd - http://www.all2pdf.com) C:\Windows\System32\PrintDisp.exe
(Creative Technology Ltd) C:\Windows\System32\CtHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Google Inc.) C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
(Google Inc.) C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Google Inc.) C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Google Inc.) C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
(Opera Software) C:\Program Files\Opera\26.0.1656.60\opera.exe
() C:\Program Files\Opera\26.0.1656.60\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files\Opera\26.0.1656.60\opera.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [CTHelper] => CTHELPER.EXE
HKLM\...\Run: [CTxfiHlp] => CTXFIHLP.EXE
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12021464 2014-11-13] (Realtek Semiconductor)
HKLM\...\Run: [PrintDisp] => C:\Windows\system32\PrintDisp.exe [870400 2012-10-29] (ActMask Co.,Ltd - http://www.all2pdf.com)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5226600 2015-01-06] (AVAST Software)
HKU\S-1-5-21-2944857353-2517545661-1454557399-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-30] (Piriform Ltd)
HKU\S-1-5-21-2944857353-2517545661-1454557399-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2944857353-2517545661-1454557399-1000\...\Run: [aliim] => C:\Program Files\TradeManager\AliIM.exe [293688 2014-10-13] (Alibaba (China) Co., Ltd.)
HKU\S-1-5-21-2944857353-2517545661-1454557399-1000\...\MountPoints2: {7ae3e536-73af-11e4-9225-001a4d4a34f8} - G:\SETUP.EXE
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2944857353-2517545661-1454557399-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @alibaba.com/nptrademanager;version=1.0 -> C:\Program Files\TradeManager\nptrademanager.dll ( )
FF Plugin: @alibaba.com/npwangwang;version=1.0 -> C:\Program Files\TradeManager\npwangwang.dll ( )
FF Plugin: @java.com/DTPlugin,version=10.72.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.72.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2944857353-2517545661-1454557399-1000: @alibaba.com/npAliSSOLogin;version=1.0 -> C:\Program Files\TradeManager\npAliSSOLogin.dll (Alibaba software (Shanghai) Corporation.)
FF Plugin HKU\S-1-5-21-2944857353-2517545661-1454557399-1000: @alibaba.com/nptrademanager;version=1.0 -> "C:\Program Files\TradeManager\nptrademanager.dll" No File
FF Plugin HKU\S-1-5-21-2944857353-2517545661-1454557399-1000: @alibaba.com/npwangwang;version=1.0 -> "C:\Program Files\TradeManager\npwangwang.dll" No File
FF Plugin HKU\S-1-5-21-2944857353-2517545661-1454557399-1000: @tools.google.com/Google Update;version=3 -> C:\Users\gagin\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-2944857353-2517545661-1454557399-1000: @tools.google.com/Google Update;version=9 -> C:\Users\gagin\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll No File
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-01-06]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR DefaultSearchKeyword: Default -> D7789D76EE227FC2E91B4486E2BE509B8EEA6D2D6AA90879C48A91A3473DACAA
CHR DefaultSearchURL: Default -> B26F958A6D5E8CC1C4C2F6611ED9ED4D41C30BC919639B6834C173F3CF0072C9
CHR Profile: C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-23]
CHR Extension: (Dokumenty Google) - C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-23]
CHR Extension: (Disk Google) - C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-23]
CHR Extension: (YouTube) - C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-23]
CHR Extension: (Vyhledávání Google) - C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-23]
CHR Extension: (Tabulky Google) - C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-23]
CHR Extension: (Avast Online Security) - C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-01-06]
CHR Extension: (Gmail) - C:\Users\gagin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-23]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-01-06]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-06] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3192344 2015-01-06] (Avast Software)
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [File not signed]
R2 Printer Control; C:\Windows\system32\PrintCtrl.exe [102400 2012-10-21] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2015-01-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [70384 2015-01-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2015-01-06] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2015-01-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [787800 2015-01-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423784 2015-01-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [91496 2015-01-06] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [206248 2015-01-06] ()
R3 COMMONFX.DLL; C:\Windows\System32\COMMONFX.DLL [98600 2007-04-18] (Creative Technology Ltd)
S3 CT20XUT.DLL; C:\Windows\System32\CT20XUT.DLL [164608 2007-04-12] (Creative Technology Ltd.)
R3 CTAUDFX.DLL; C:\Windows\System32\CTAUDFX.DLL [546048 2007-04-12] (Creative Technology Ltd)
S3 ctdvda2k; C:\Windows\System32\drivers\ctdvda2k.sys [347128 2007-04-10] (Creative Technology Ltd)
S3 CTEAPSFX.DLL; C:\Windows\System32\CTEAPSFX.DLL [168192 2007-04-12] (Creative Technology Ltd)
S3 CTEDSPFX.DLL; C:\Windows\System32\CTEDSPFX.DLL [280320 2007-04-12] (Creative Technology Ltd)
S3 CTEDSPIO.DLL; C:\Windows\System32\CTEDSPIO.DLL [128768 2007-04-12] (Creative Technology Ltd)
S3 CTEDSPSY.DLL; C:\Windows\System32\CTEDSPSY.DLL [323328 2007-04-12] (Creative Technology Ltd)
S3 CTERFXFX.DLL; C:\Windows\System32\CTERFXFX.DLL [94976 2007-04-12] (Creative Technology Ltd)
S3 CTEXFIFX.DLL; C:\Windows\System32\CTEXFIFX.DLL [1317632 2007-04-12] (Creative Technology Ltd.)
S3 CTHWIUT.DLL; C:\Windows\System32\CTHWIUT.DLL [66816 2007-04-12] (Creative Technology Ltd.)
R3 CTSBLFX.DLL; C:\Windows\System32\CTSBLFX.DLL [560384 2007-04-12] (Creative Technology Ltd)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-11-24] (Disc Soft Ltd)
R3 ha10kx2k; C:\Windows\System32\drivers\ha10kx2k.sys [797992 2007-04-10] (Creative Technology Ltd)
R3 hap16v2k; C:\Windows\System32\drivers\hap16v2k.sys [163112 2007-04-10] (Creative Technology Ltd)
S3 hap17v2k; C:\Windows\System32\drivers\hap17v2k.sys [189736 2007-04-10] (Creative Technology Ltd)
R0 JRAID; C:\Windows\System32\DRIVERS\jraid.sys [106296 2014-11-13] (JMicron Technology Corp.)
R3 pneteth; C:\Windows\System32\DRIVERS\pneteth.sys [13440 2011-11-25] (June Fabrics Technology Inc.)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [38768 2014-11-13] (Synaptics Incorporated)
S3 usbUDisc; C:\Windows\System32\DRIVERS\USBDrv.sys [14936 2013-01-25] (Scott)
U4 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [218192 2015-01-06] (Avast Software)

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-07 09:04 - 2015-01-07 09:04 - 00015327 _____ () C:\Users\gagin\Desktop\LM.bat
2015-01-07 09:03 - 2015-01-07 09:04 - 00029696 _____ () C:\Users\gagin\AppData\Local\MSGBOX.EXE
2015-01-07 09:03 - 2015-01-07 09:03 - 00112640 _____ (forum.viry.cz) C:\Users\gagin\Downloads\FRSTLauncher.exe
2015-01-07 09:02 - 2015-01-07 09:02 - 00112640 _____ (forum.viry.cz) C:\Users\gagin\Downloads\Nepotvrzeno 926302.crdownload
2015-01-07 09:02 - 2015-01-07 09:02 - 00112640 _____ (forum.viry.cz) C:\Users\gagin\Downloads\Nepotvrzeno 371512.crdownload
2015-01-07 08:54 - 2015-01-07 08:54 - 00025256 _____ () C:\Users\gagin\Desktop\FRSTLauncher.exe
2015-01-07 08:52 - 2015-01-07 08:52 - 01107968 _____ () C:\Users\gagin\Downloads\RSIT (1).exe
2015-01-06 15:23 - 2015-01-07 09:08 - 00012677 _____ () C:\Users\gagin\Downloads\FRST.txt
2015-01-06 15:23 - 2015-01-07 09:08 - 00000000 ____D () C:\FRST
2015-01-06 15:23 - 2015-01-07 09:07 - 00029323 _____ () C:\Users\gagin\Downloads\Addition.txt
2015-01-06 15:22 - 2015-01-06 15:22 - 01115136 _____ (Farbar) C:\Users\gagin\Downloads\FRST.exe
2015-01-06 14:56 - 2015-01-06 14:56 - 00000247 _____ () C:\Windows\system32\2015-01-06-13-56-47.099-aswFe.exe-1904.log
2015-01-06 14:56 - 2015-01-06 14:56 - 00000197 _____ () C:\Windows\system32\2015-01-06-13-56-44.091-AvastVBoxSVC.exe-3708.log
2015-01-06 14:54 - 2015-01-06 14:54 - 00000000 ____D () C:\ProgramData\boost_interprocess
2015-01-06 14:48 - 2014-02-13 23:59 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-01-06 14:25 - 2015-01-06 14:54 - 00007372 _____ () C:\zoek-results.log
2015-01-06 14:24 - 2015-01-06 14:44 - 00000000 ____D () C:\zoek_backup
2015-01-06 14:23 - 2015-01-06 14:23 - 04279080 _____ () C:\Users\gagin\Downloads\zoek (1).rar
2015-01-06 14:23 - 2014-12-07 23:06 - 01429293 _____ () C:\Users\gagin\Desktop\zoek.exe.com
2015-01-06 14:22 - 2015-01-06 14:22 - 04251253 _____ () C:\Users\gagin\Downloads\zoek.rar
2015-01-06 14:22 - 2015-01-06 14:22 - 04122786 _____ () C:\Users\gagin\Downloads\zoek.zip
2015-01-06 14:22 - 2015-01-06 14:22 - 00000247 _____ () C:\Windows\system32\2015-01-06-13-22-23.049-aswFe.exe-4016.log
2015-01-06 14:22 - 2015-01-06 14:22 - 00000197 _____ () C:\Windows\system32\2015-01-06-13-22-20.097-AvastVBoxSVC.exe-2408.log
2015-01-06 14:15 - 2015-01-06 14:17 - 00000000 ____D () C:\AdwCleaner
2015-01-06 14:14 - 2015-01-06 14:14 - 02173952 _____ () C:\Users\gagin\Downloads\adwcleaner_4.106.exe
2015-01-06 14:02 - 2015-01-06 14:02 - 00017168 _____ () C:\Users\gagin\Downloads\[CzT]CzechSpy_11_2014_CZ_.torrent
2015-01-06 14:02 - 2015-01-06 14:02 - 00010999 _____ () C:\Users\gagin\Downloads\[CzT]PublicPickUps_Alive_Bell_Russian_Nurse_Public_Sex_4_1_2015_.torrent
2015-01-06 13:45 - 2015-01-06 13:46 - 00000000 ____D () C:\rsit
2015-01-06 13:45 - 2015-01-06 13:46 - 00000000 ____D () C:\Program Files\trend micro
2015-01-06 13:45 - 2015-01-06 13:45 - 01107968 _____ () C:\Users\gagin\Downloads\RSIT.exe
2015-01-06 13:43 - 2015-01-06 13:43 - 00000197 _____ () C:\Windows\system32\2015-01-06-12-43-48.002-AvastVBoxSVC.exe-4076.log
2015-01-06 11:19 - 2015-01-06 11:20 - 00000247 _____ () C:\Windows\system32\2015-01-06-10-19-31.044-aswFe.exe-2748.log
2015-01-06 11:11 - 2015-01-06 14:53 - 00001188 _____ () C:\Windows\PFRO.log
2015-01-06 11:03 - 2015-01-06 11:03 - 00000247 _____ () C:\Windows\system32\2015-01-06-10-03-10.010-aswFe.exe-4148.log
2015-01-06 11:03 - 2015-01-06 11:03 - 00000197 _____ () C:\Windows\system32\2015-01-06-10-03-07.027-AvastVBoxSVC.exe-788.log
2015-01-06 11:01 - 2015-01-06 11:01 - 00000000 ____D () C:\Users\gagin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-01-06 10:53 - 2015-01-06 11:01 - 00000000 ____D () C:\Users\gagin\AppData\Roaming\Dropbox
2015-01-06 10:46 - 2015-01-06 10:55 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-06 10:46 - 2015-01-06 10:53 - 00000000 ____D () C:\Windows\system32\vbox
2015-01-06 10:46 - 2015-01-06 10:46 - 00787800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-01-06 10:46 - 2015-01-06 10:46 - 00423784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-01-06 10:46 - 2015-01-06 10:46 - 00002121 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-01-06 10:46 - 2015-01-06 10:46 - 00000000 ____D () C:\Users\gagin\AppData\Roaming\AVAST Software
2015-01-06 10:46 - 2015-01-06 10:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-01-06 10:46 - 2015-01-06 10:45 - 00206248 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-01-06 10:46 - 2015-01-06 10:45 - 00091496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-01-06 10:46 - 2015-01-06 10:45 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-01-06 10:46 - 2015-01-06 10:45 - 00070384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-01-06 10:46 - 2015-01-06 10:45 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-01-06 10:46 - 2015-01-06 10:45 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-01-06 10:46 - 2014-11-27 16:40 - 109818608 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-06 10:45 - 2015-01-06 10:45 - 00291352 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-01-06 10:45 - 2015-01-06 10:45 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-01-06 10:45 - 2015-01-06 10:45 - 00000000 ____D () C:\Program Files\AVAST Software
2015-01-06 10:44 - 2015-01-06 10:45 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-01-06 10:44 - 2015-01-06 10:44 - 05006864 _____ (AVAST Software) C:\Users\gagin\Downloads\avast_free_antivirus_setup_online.exe
2015-01-06 09:53 - 2015-01-06 09:54 - 00000000 ____D () C:\Users\gagin\Desktop\ft8 spojeí s pc
2015-01-06 09:35 - 2015-01-06 09:35 - 00000978 _____ () C:\Users\Public\Desktop\TradeManager.lnk
2015-01-06 09:35 - 2015-01-06 09:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TradeManager
2015-01-06 09:26 - 2015-01-06 09:27 - 32167904 _____ () C:\Users\gagin\Downloads\AliIM2014_ATM(7.10.01E).exe
2015-01-06 09:01 - 2015-01-06 14:53 - 00003432 _____ () C:\Windows\setupact.log
2015-01-06 09:01 - 2015-01-06 09:01 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-05 18:49 - 2015-01-05 18:49 - 00011156 _____ () C:\Users\gagin\Downloads\[CzT]The_Drop_2014_CZ_ (1).torrent
2015-01-05 18:47 - 2015-01-05 20:04 - 00000000 ____D () C:\Users\gagin\Desktop\PhoenixCard_V3.0.9_20121211
2015-01-05 18:47 - 2015-01-05 18:47 - 02052732 _____ () C:\Users\gagin\Downloads\PhoenixCard_V3.0.9_20121211 (1).rar
2015-01-05 18:41 - 2015-01-05 18:42 - 00000000 ____D () C:\Program Files\XTab
2015-01-05 18:40 - 2015-01-05 18:40 - 00000000 ____D () C:\Program Files\unissalesa
2015-01-05 18:40 - 2015-01-05 18:40 - 00000000 ____D () C:\Program Files\unisaleuS
2015-01-05 18:39 - 2015-01-05 18:39 - 00000000 ____D () C:\Program Files\uneisales
2015-01-05 18:38 - 2015-01-05 18:39 - 02052732 _____ () C:\Users\gagin\Downloads\PhoenixCard_V3.0.9_20121211.rar
2015-01-05 18:37 - 2015-01-05 18:37 - 01348096 _____ () C:\Users\gagin\Downloads\Phoenix Card 3 06.exe
2015-01-05 17:20 - 2015-01-05 17:20 - 03333189 _____ () C:\Users\gagin\Downloads\Drvwin05018x.exe
2015-01-05 16:51 - 2015-01-05 16:51 - 00003051 _____ () C:\Users\gagin\Desktop\PhoenixUSBPro.exe.lnk
2015-01-05 16:51 - 2015-01-05 16:51 - 00000000 ____D () C:\Users\gagin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhoenixPro
2015-01-05 16:34 - 2015-01-05 16:35 - 00000000 ____D () C:\Users\gagin\Desktop\Nová složka (8)
2015-01-05 16:30 - 2015-01-05 16:32 - 250443795 _____ () C:\Users\gagin\Downloads\a1001t_a10_4.04_ft5406_0308_gsensor_wifi8188eu.rar
2015-01-05 14:09 - 2015-01-05 14:10 - 00000000 ____D () C:\Users\gagin\Desktop\onda v988 case
2015-01-05 13:44 - 2015-01-05 13:44 - 00009099 _____ () C:\Users\gagin\Downloads\TaobaoChatRecord (2).htm
2015-01-05 13:40 - 2015-01-05 13:40 - 00007013 _____ () C:\Users\gagin\Downloads\TaobaoChatRecord (1).htm
2015-01-05 13:39 - 2015-01-05 13:39 - 00006809 _____ () C:\Users\gagin\Downloads\TaobaoChatRecord.htm
2015-01-05 11:04 - 2015-01-05 11:04 - 95344807 _____ () C:\Users\gagin\Downloads\FHD0017.rar
2015-01-04 20:07 - 2015-01-04 20:07 - 00011157 _____ () C:\Users\gagin\Downloads\[CzT]The_Drop_2014_CZ_.torrent
2015-01-04 20:06 - 2015-01-04 20:06 - 00017796 _____ () C:\Users\gagin\Downloads\[CzT]Out_of_the_Furnace_2013_CZ_.torrent
2015-01-04 15:43 - 2015-01-04 15:45 - 540009491 _____ () C:\Users\gagin\Downloads\mapan_f10b_atm7029b_bluetooth_kitkat_4.4_firmware_v12_bt20140825c.rar
2015-01-02 11:35 - 2015-01-02 11:35 - 00013053 _____ () C:\Users\gagin\Downloads\[CzT]NubileFilms_Winner_Takes_All_2014_.torrent
2015-01-02 11:26 - 2015-01-02 11:26 - 00077201 _____ () C:\Users\gagin\Downloads\prilohy_82351.zip
2014-12-30 15:40 - 2014-12-30 15:40 - 00013310 _____ () C:\Users\gagin\Downloads\[CzT]Czech_Mega_Swingers_18_part_7_2014_CZ_720pHD_.torrent
2014-12-30 15:37 - 2014-12-30 15:37 - 00011383 _____ () C:\Users\gagin\Downloads\[CzT]Czech_Garden_Party_1_2014_CZ_.torrent
2014-12-30 10:35 - 2014-12-30 10:35 - 00108357 _____ () C:\Users\gagin\Downloads\prilohy_80908.zip
2014-12-29 12:20 - 2014-12-29 12:21 - 18077219 _____ () C:\Users\gagin\Downloads\VID_20141224_120732.3gp
2014-12-29 11:55 - 2014-12-29 11:55 - 03415880 _____ () C:\Users\gagin\Downloads\prilohy_81899.zip
2014-12-28 13:50 - 2014-12-28 13:50 - 00019384 _____ () C:\Users\gagin\Downloads\[CzT]Tiger_Woods_PGA_Tour_14_Masters_Historic_Edition_XBOX_360_.torrent
2014-12-28 13:45 - 2014-12-28 13:45 - 00039241 _____ () C:\Users\gagin\Downloads\Tiger.Woods.PGA.Tour.13.%5BMULTI%5D%5BXBOX360%5D%5BRegion.Free%5D%5BiMARS%5D%5BWwW.GamesTorrents.CoM%5D.t8947.torrent
2014-12-24 12:07 - 2014-12-24 12:07 - 00000000 ____D () C:\Users\gagin\Desktop\Vroot_1.7
2014-12-24 12:04 - 2014-12-24 12:04 - 06135319 _____ () C:\Users\gagin\Downloads\Vroot_1.7.zip
2014-12-24 11:34 - 2014-12-24 11:34 - 00015459 _____ () C:\Users\gagin\Downloads\[CzT]Czech_Taxi_17_2014_CZ_.torrent
2014-12-24 11:33 - 2014-12-24 11:33 - 00013545 _____ () C:\Users\gagin\Downloads\[CzT]PubliPickUps_Angel_Blade_Hungarian_Babe_Is_Down_to_Fuck_2014_.torrent
2014-12-24 11:27 - 2014-12-24 11:28 - 00000000 ____D () C:\Users\gagin\Desktop\Nová složka (7)
2014-12-24 11:27 - 2014-12-24 11:27 - 12229382 _____ () C:\Users\gagin\Downloads\prilohy_81773.zip
2014-12-23 12:04 - 2014-12-23 12:10 - 436246859 _____ () C:\Users\gagin\Desktop\firmware elephone p3000.rar
2014-12-23 11:49 - 2014-12-23 12:04 - 00000000 ____D () C:\Users\gagin\Desktop\firmware elephone p3000
2014-12-21 21:08 - 2014-12-21 21:08 - 00012682 _____ () C:\Users\gagin\Downloads\[CzT]Zmizela_Gone_Girl_2014_CZ_ (1).torrent
2014-12-21 20:29 - 2014-12-21 20:29 - 00012682 _____ () C:\Users\gagin\Downloads\[CzT]Zmizela_Gone_Girl_2014_CZ_.torrent
2014-12-21 20:29 - 2014-12-21 20:29 - 00011162 _____ () C:\Users\gagin\Downloads\[CzT]Equalizer_The_Equalizer_2014_CZ_.torrent
2014-12-21 16:08 - 2014-12-21 16:08 - 00018591 _____ () C:\Users\gagin\Downloads\[CzT]FuckStudies_Ferrera_Gomez_Schoolgirl_Sex_2014_CZ_.torrent
2014-12-19 17:29 - 2014-12-19 17:30 - 00000000 ____D () C:\Users\gagin\Desktop\SP_Flash_Tool_v5.1408.00
2014-12-19 17:29 - 2014-12-19 17:29 - 00000000 ____D () C:\Users\gagin\Desktop\dg900 - firmware
2014-12-19 17:20 - 2014-12-19 17:21 - 505361887 _____ () C:\Users\gagin\Downloads\DOOGEE-TURB02-DG900-Android4.4.zip
2014-12-19 17:20 - 2014-12-19 17:20 - 24985468 _____ () C:\Users\gagin\Downloads\SP_Flash_Tool_v5.1408.00.rar
2014-12-19 13:39 - 2014-12-19 13:39 - 00014209 _____ () C:\Users\gagin\Downloads\[CzT]PublicAgent_Kristina_CZ_1080p_.torrent
2014-12-19 13:39 - 2014-12-19 13:39 - 00010816 _____ () C:\Users\gagin\Downloads\[CzT]Czech_Harem_6_part_2_2014_CZ_.torrent
2014-12-19 13:38 - 2014-12-19 13:38 - 00020522 _____ () C:\Users\gagin\Downloads\[CzT]Mladucka_Janice_Griffith_ako_nevesta_2014_720pHD_.torrent
2014-12-19 11:14 - 2014-12-19 11:14 - 00000311 _____ () C:\Users\gagin\Downloads\Scan f001.pdf.URL
2014-12-18 12:39 - 2014-02-11 12:29 - 01671048 _____ () C:\Users\gagin\Desktop\DA_SWSEC.bin
2014-12-18 12:39 - 2014-02-11 12:29 - 01209344 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Users\gagin\Desktop\assistant.exe
2014-12-18 12:38 - 2014-06-05 17:57 - 00000000 ____D () C:\Users\gagin\Desktop\SP_Flash_Tool_v3.1304.0.119
2014-12-18 12:37 - 2014-12-18 12:38 - 14168170 _____ () C:\Users\gagin\Desktop\flysh tool strýy.rar
2014-12-18 11:48 - 2014-12-18 12:12 - 422463041 _____ () C:\Users\gagin\Downloads\Elephone_P10_4.4.2_Miui-4.8.29_fullota(reupload).zip
2014-12-18 11:02 - 2014-12-18 11:03 - 294362850 _____ () C:\Users\gagin\Downloads\HTM-L900.rar
2014-12-18 09:17 - 2014-12-13 04:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-17 16:53 - 2014-12-17 16:53 - 00015688 _____ () C:\Users\gagin\Downloads\[CzT]Obri_dobrodruzstvi_Tomma_a_Jerryho_Tom_and_Jerry_s_Giant_Adventure_2013_CZ_.torrent
2014-12-17 16:52 - 2014-12-17 16:52 - 00014412 _____ () C:\Users\gagin\Downloads\[CzT]Khumba_2013_CZ_.torrent
2014-12-17 16:51 - 2014-12-17 16:51 - 00019285 _____ () C:\Users\gagin\Downloads\[CzT]Hura_do_praveku_Dino_Time_2012_CZ_SK_.torrent
2014-12-17 16:50 - 2014-12-17 16:50 - 00014127 _____ () C:\Users\gagin\Downloads\[CzT]Hura_do_praveku_Dino_Time_2012_CZ_.torrent
2014-12-17 12:44 - 2014-12-17 12:44 - 25738268 _____ () C:\Users\gagin\Downloads\tool.rar
2014-12-17 12:13 - 2014-12-17 12:21 - 352701493 _____ () C:\Users\gagin\Downloads\atm7029b_sta1000_bt2_dualusb_8bitddr_20140722_英文斗牛 (1).7z
2014-12-17 12:13 - 2014-12-17 12:15 - 04956226 _____ () C:\Users\gagin\Downloads\BaiduYunGuanjia_5.1.0.exe.opdownload
2014-12-17 11:50 - 2014-12-17 11:57 - 352701493 _____ () C:\Users\gagin\Downloads\atm7029b_sta1000_bt2_dualusb_8bitddr_20140722_英文斗牛.7z
2014-12-16 18:42 - 2014-12-16 18:42 - 00022626 _____ () C:\Users\gagin\Downloads\[CzT]Tri_bratri_2014_CZ_ (1).torrent
2014-12-16 18:42 - 2014-12-16 18:42 - 00016925 _____ () C:\Users\gagin\Downloads\[CzT]Tri_bratri_2014_CZ_ (2).torrent
2014-12-16 17:37 - 2014-12-16 17:38 - 387663262 _____ () C:\Users\gagin\Downloads\Captain FW by iBullRay.zip
2014-12-16 17:22 - 2014-12-16 17:24 - 881787114 _____ () C:\Users\gagin\Downloads\2013.11.22.zip
2014-12-16 17:22 - 2014-12-16 17:23 - 326239233 _____ () C:\Users\gagin\Downloads\2013.08.12.zip
2014-12-16 17:21 - 2014-12-16 17:21 - 01240576 _____ () C:\Users\gagin\Downloads\atm7029_AINOL_SDK1119_NOVO102_2014-01-04.rar.exe
2014-12-16 11:16 - 2014-12-16 11:17 - 00000000 ____D () C:\Users\gagin\Desktop\p10 obrácený
2014-12-16 11:09 - 2014-12-23 12:04 - 00000000 ____D () C:\Users\gagin\Desktop\p10 3
2014-12-16 10:51 - 2014-12-16 10:55 - 362909165 _____ () C:\Users\gagin\Downloads\Elephone_P10_PC.zip
2014-12-16 10:31 - 2014-12-16 10:31 - 00006421 _____ () C:\Users\gagin\Downloads\message_57909.eml
2014-12-15 20:17 - 2014-12-15 20:17 - 00016925 _____ () C:\Users\gagin\Downloads\[CzT]Tri_bratri_2014_CZ_.torrent
2014-12-15 19:29 - 2014-12-15 19:29 - 00020553 _____ () C:\Users\gagin\Downloads\[CzT]Pod_zemi_As_Above_So_Below_2014_CZ_720pHD_.torrent
2014-12-15 18:26 - 2014-12-15 18:27 - 00000000 ____D () C:\Users\gagin\Desktop\jnays sw
2014-12-15 12:51 - 2014-12-15 12:51 - 00013493 _____ () C:\Users\gagin\Downloads\[CzT]PublicAgent_E252_Veronica_G_2014_CZ_1080p_.torrent
2014-12-15 12:51 - 2014-12-15 12:51 - 00011504 _____ () C:\Users\gagin\Downloads\[CzT]CzechCouples_12_720pHD_.torrent
2014-12-15 12:51 - 2014-12-15 12:51 - 00011406 _____ () C:\Users\gagin\Downloads\[CzT]Czech_Mega_Swingers_18_Part_7_2014_CZ_.torrent
2014-12-15 12:50 - 2014-12-15 12:50 - 00013452 _____ () C:\Users\gagin\Downloads\[CzT]CzechSuperModels_17_Jana_2014_CZ_720pLQ_.torrent
2014-12-15 10:12 - 2014-12-30 11:06 - 00000000 ____D () C:\Users\gagin\Desktop\doklady
2014-12-14 19:58 - 2014-12-14 19:58 - 00049965 _____ () C:\Users\gagin\Downloads\[CzT]V_oku_tornada_Into_the_Storm_2014_CZ_EN_1080pHD_ (3).torrent
2014-12-14 19:56 - 2014-12-14 19:56 - 00049966 _____ () C:\Users\gagin\Downloads\[CzT]V_oku_tornada_Into_the_Storm_2014_CZ_EN_1080pHD_ (2).torrent
2014-12-14 19:55 - 2014-12-14 19:55 - 00049966 _____ () C:\Users\gagin\Downloads\[CzT]V_oku_tornada_Into_the_Storm_2014_CZ_EN_1080pHD_.torrent
2014-12-14 19:55 - 2014-12-14 19:55 - 00049966 _____ () C:\Users\gagin\Downloads\[CzT]V_oku_tornada_Into_the_Storm_2014_CZ_EN_1080pHD_ (1).torrent
2014-12-13 14:40 - 2014-12-13 14:41 - 00000000 ____D () C:\Users\gagin\Desktop\Nová složka (6)
2014-12-12 11:12 - 2014-10-08 11:41 - 00000000 ____D () C:\Users\gagin\Desktop\Elephone P10 MTK6582-174171-20141008
2014-12-12 11:04 - 2014-12-12 11:08 - 313982668 _____ () C:\Users\gagin\Downloads\Elephone P10 MTK6582-174171-20141008(2).rar
2014-12-11 20:01 - 2014-12-11 20:01 - 00016698 _____ () C:\Users\gagin\Downloads\[CzT]Lucy_2014_CZ_.torrent
2014-12-11 16:40 - 2014-12-11 16:41 - 313972218 _____ () C:\Users\gagin\Downloads\Elephone-P10.rar
2014-12-10 17:54 - 2014-12-10 17:56 - 43429721 _____ () C:\Users\gagin\Downloads\Tami's-video.mp4
2014-12-10 12:44 - 2014-12-10 12:44 - 00000000 ____D () C:\Windows\system32\appraiser
2014-12-10 12:41 - 2014-10-18 02:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-10 12:41 - 2014-07-07 02:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-12-10 12:41 - 2014-07-07 02:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-12-10 12:41 - 2014-07-07 02:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-12-10 12:41 - 2014-07-07 02:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-12-10 12:32 - 2014-12-10 12:32 - 00002162 _____ () C:\Users\gagin\Documents\cc_20141210_123204.reg
2014-12-10 07:37 - 2014-12-04 05:38 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2014-12-10 07:37 - 2014-12-04 05:38 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2014-12-10 07:37 - 2014-12-04 05:38 - 00337920 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-12-10 07:37 - 2014-12-04 05:38 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-12-10 07:37 - 2014-12-04 05:38 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-12-10 07:37 - 2014-12-04 05:38 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-12-10 07:37 - 2014-12-04 05:34 - 00873984 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-12-10 07:37 - 2014-12-02 00:28 - 01160872 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2014-12-10 07:37 - 2014-11-27 02:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-10 07:37 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-10 07:37 - 2014-11-22 03:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-10 07:37 - 2014-11-22 03:20 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-10 07:37 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-10 07:37 - 2014-11-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-10 07:37 - 2014-11-22 03:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-10 07:37 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-10 07:37 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-10 07:37 - 2014-11-22 02:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-10 07:37 - 2014-11-22 02:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-10 07:37 - 2014-11-22 02:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-10 07:37 - 2014-11-22 02:55 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-10 07:37 - 2014-11-22 02:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-10 07:37 - 2014-11-22 02:48 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-10 07:37 - 2014-11-22 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-10 07:37 - 2014-11-22 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-10 07:37 - 2014-11-22 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-10 07:37 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-10 07:37 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-10 07:37 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-10 07:37 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-10 07:37 - 2014-11-22 02:23 - 00684544 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-10 07:37 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-10 07:37 - 2014-11-22 02:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-10 07:37 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-10 07:37 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-10 07:37 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-10 07:37 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-10 07:37 - 2014-11-11 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-10 07:37 - 2014-11-11 02:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-10 07:36 - 2014-11-08 03:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-12-10 07:36 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-12-10 07:36 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-12-10 07:36 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-10 07:36 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-12-10 07:36 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-12-10 07:36 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-12-09 11:06 - 2014-12-09 11:06 - 00032941 _____ () C:\Users\gagin\Downloads\5418573392INV.TIF
2014-12-09 10:23 - 2014-12-09 10:23 - 00000000 ____D () C:\Users\gagin\Desktop\Nová složka (5)
2014-12-08 16:41 - 2014-12-10 15:26 - 00000000 ____D () C:\Users\gagin\Desktop\Rockchip_Batch_Tool_v1.7
2014-12-08 16:41 - 2014-12-08 16:41 - 00914715 _____ () C:\Users\gagin\Downloads\Rockchip_Batch_Tool_v1.7.zip
2014-12-08 16:24 - 2014-12-08 16:43 - 00000000 ____D () C:\Users\gagin\Desktop\Nová složka (4)
2014-12-08 16:22 - 2014-12-08 16:24 - 327148115 _____ () C:\Users\gagin\Downloads\PiPo-S1-Pro-TNT-R1.zip

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-07 09:00 - 2014-11-11 08:57 - 00000000 ____D () C:\Users\gagin\AppData\Roaming\Skype
2015-01-07 08:43 - 2014-11-10 20:02 - 01060863 _____ () C:\Windows\WindowsUpdate.log
2015-01-07 08:42 - 2014-11-26 12:24 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-06 18:22 - 2014-11-10 20:12 - 01582262 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-06 15:11 - 2014-11-11 09:13 - 00000000 ____D () C:\Program Files\TradeManager
2015-01-06 15:01 - 2009-07-14 05:34 - 00025216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-06 15:01 - 2009-07-14 05:34 - 00025216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-06 14:54 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-06 14:45 - 2014-11-10 20:44 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2015-01-06 14:44 - 2014-11-10 20:06 - 00000000 ____D () C:\Users\gagin
2015-01-06 14:21 - 2014-11-10 20:10 - 00001495 _____ () C:\Users\gagin\Desktop\Google Chrome.lnk
2015-01-06 14:17 - 2014-11-13 14:02 - 00000891 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-01-06 14:17 - 2014-11-13 14:02 - 00000879 _____ () C:\Users\Public\Desktop\Opera.lnk
2015-01-06 14:17 - 2014-11-10 20:10 - 00000000 ____D () C:\Users\gagin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-01-06 14:17 - 2014-11-10 20:07 - 00001126 _____ () C:\Users\gagin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-01-06 14:15 - 2014-11-10 20:09 - 00000000 ____D () C:\Users\gagin\AppData\Roaming\uTorrent
2015-01-06 14:11 - 2014-11-12 15:01 - 00000000 ____D () C:\Users\gagin\AppData\Roaming\vlc
2015-01-05 16:51 - 2014-11-23 11:16 - 00000000 ____D () C:\Program Files\AllWinnertech
2015-01-05 15:38 - 2014-11-23 14:57 - 00000000 ____D () C:\Users\gagin\Desktop\elephone p3000 s
2014-12-20 09:58 - 2014-11-20 11:32 - 00000100 _____ () C:\Users\gagin\AppData\default.pls
2014-12-17 16:13 - 2014-11-13 14:02 - 00000000 ____D () C:\Program Files\Opera
2014-12-15 11:09 - 2014-12-02 10:09 - 00000000 ____D () C:\Users\gagin\Desktop\Nová složka
2014-12-15 10:25 - 2014-11-19 13:27 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-12 17:56 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-12-11 14:24 - 2014-11-11 12:24 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-12-11 14:24 - 2014-11-11 12:24 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-12-11 10:18 - 2014-11-11 09:08 - 00000000 ___RD () C:\Program Files\Skype
2014-12-11 10:18 - 2014-11-11 08:57 - 00000000 ____D () C:\ProgramData\Skype
2014-12-11 09:50 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-12-10 12:44 - 2014-11-11 08:46 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-12-10 12:44 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\AppCompat

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-04 16:18

==================== End Of Log ============================

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  CloseProcesses:
  CreateRestorePoint:
  
  HKU\S-1-5-21-2944857353-2517545661-1454557399-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
  HKU\S-1-5-21-2944857353-2517545661-1454557399-1000\...\MountPoints2: {7ae3e536-73af-11e4-9225-001a4d4a34f8} - G:\SETUP.EXE
  
  SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  
  CHR DefaultSearchKeyword: Default -> D7789D76EE227FC2E91B4486E2BE509B8EEA6D2D6AA90879C48A91A3473DACAA
  CHR DefaultSearchURL: Default -> B26F958A6D5E8CC1C4C2F6611ED9ED4D41C30BC919639B6834C173F3CF0072C9
  
  2015-01-07 09:04 - 2015-01-07 09:04 - 00015327 _____ () C:\Users\gagin\Desktop\LM.bat
  2015-01-07 09:03 - 2015-01-07 09:04 - 00029696 _____ () C:\Users\gagin\AppData\Local\MSGBOX.EXE
  2015-01-07 09:03 - 2015-01-07 09:03 - 00112640 _____ (forum.viry.cz) C:\Users\gagin\Downloads\FRSTLauncher.exe
  2015-01-07 09:02 - 2015-01-07 09:02 - 00112640 _____ (forum.viry.cz) C:\Users\gagin\Downloads\Nepotvrzeno 926302.crdownload
  2015-01-07 09:02 - 2015-01-07 09:02 - 00112640 _____ (forum.viry.cz) C:\Users\gagin\Downloads\Nepotvrzeno 371512.crdownload
  2015-01-07 08:54 - 2015-01-07 08:54 - 00025256 _____ () C:\Users\gagin\Desktop\FRSTLauncher.exe
  2015-01-07 08:52 - 2015-01-07 08:52 - 01107968 _____ () C:\Users\gagin\Downloads\RSIT (1).exe
  2015-01-06 15:23 - 2015-01-07 09:08 - 00012677 _____ () C:\Users\gagin\Downloads\FRST.txt
  2015-01-06 15:23 - 2015-01-07 09:07 - 00029323 _____ () C:\Users\gagin\Downloads\Addition.txt
  2015-01-06 14:56 - 2015-01-06 14:56 - 00000247 _____ () C:\Windows\system32\2015-01-06-13-56-47.099-aswFe.exe-1904.log
  2015-01-06 14:56 - 2015-01-06 14:56 - 00000197 _____ () C:\Windows\system32\2015-01-06-13-56-44.091-AvastVBoxSVC.exe-3708.log
  2015-01-06 14:48 - 2014-02-13 23:59 - 00024064 _____ () C:\Windows\zoek-delete.exe
  2015-01-06 14:25 - 2015-01-06 14:54 - 00007372 _____ () C:\zoek-results.log
  2015-01-06 14:24 - 2015-01-06 14:44 - 00000000 ____D () C:\zoek_backup
  2015-01-06 14:23 - 2015-01-06 14:23 - 04279080 _____ () C:\Users\gagin\Downloads\zoek (1).rar
  2015-01-06 14:23 - 2014-12-07 23:06 - 01429293 _____ () C:\Users\gagin\Desktop\zoek.exe.com
  2015-01-06 14:22 - 2015-01-06 14:22 - 04251253 _____ () C:\Users\gagin\Downloads\zoek.rar
  2015-01-06 14:22 - 2015-01-06 14:22 - 04122786 _____ () C:\Users\gagin\Downloads\zoek.zip
  2015-01-06 14:22 - 2015-01-06 14:22 - 00000247 _____ () C:\Windows\system32\2015-01-06-13-22-23.049-aswFe.exe-4016.log
  2015-01-06 14:22 - 2015-01-06 14:22 - 00000197 _____ () C:\Windows\system32\2015-01-06-13-22-20.097-AvastVBoxSVC.exe-2408.log
  2015-01-06 14:15 - 2015-01-06 14:17 - 00000000 ____D () C:\AdwCleaner
  2015-01-06 14:14 - 2015-01-06 14:14 - 02173952 _____ () C:\Users\gagin\Downloads\adwcleaner_4.106.exe
  2015-01-06 13:45 - 2015-01-06 13:46 - 00000000 ____D () C:\rsit
  2015-01-06 13:45 - 2015-01-06 13:46 - 00000000 ____D () C:\Program Files\trend micro
  2015-01-06 13:45 - 2015-01-06 13:45 - 01107968 _____ () C:\Users\gagin\Downloads\RSIT.exe
  2015-01-06 13:43 - 2015-01-06 13:43 - 00000197 _____ () C:\Windows\system32\2015-01-06-12-43-48.002-AvastVBoxSVC.exe-4076.log
  2015-01-06 11:19 - 2015-01-06 11:20 - 00000247 _____ () C:\Windows\system32\2015-01-06-10-19-31.044-aswFe.exe-2748.log
  2015-01-06 11:11 - 2015-01-06 14:53 - 00001188 _____ () C:\Windows\PFRO.log
  2015-01-06 11:03 - 2015-01-06 11:03 - 00000247 _____ () C:\Windows\system32\2015-01-06-10-03-10.010-aswFe.exe-4148.log
  2015-01-06 11:03 - 2015-01-06 11:03 - 00000197 _____ () C:\Windows\system32\2015-01-06-10-03-07.027-AvastVBoxSVC.exe-788.log
  2015-01-06 10:44 - 2015-01-06 10:44 - 05006864 _____ (AVAST Software) C:\Users\gagin\Downloads\avast_free_antivirus_setup_online.exe
  
  Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
  
  Hosts:
  EmptyTemp:
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[dart500]

Dobrý den omlouvám se za pozdní odpověď

zde je fixlog:


Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 11-01-2015
Ran by gagin at 2015-01-11 12:45:28 Run:1
Running from C:\Users\gagin\Desktop
Loaded Profile: gagin (Available profiles: gagin)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-2944857353-2517545661-1454557399-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2944857353-2517545661-1454557399-1000\...\MountPoints2: {7ae3e536-73af-11e4-9225-001a4d4a34f8} - G:\SETUP.EXE

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

CHR DefaultSearchKeyword: Default -> D7789D76EE227FC2E91B4486E2BE509B8EEA6D2D6AA90879C48A91A3473DACAA
CHR DefaultSearchURL: Default -> B26F958A6D5E8CC1C4C2F6611ED9ED4D41C30BC919639B6834C173F3CF0072C9

2015-01-07 09:04 - 2015-01-07 09:04 - 00015327 _____ () C:\Users\gagin\Desktop\LM.bat
2015-01-07 09:03 - 2015-01-07 09:04 - 00029696 _____ () C:\Users\gagin\AppData\Local\MSGBOX.EXE
2015-01-07 09:03 - 2015-01-07 09:03 - 00112640 _____ (forum.viry.cz) C:\Users\gagin\Downloads\FRSTLauncher.exe
2015-01-07 09:02 - 2015-01-07 09:02 - 00112640 _____ (forum.viry.cz) C:\Users\gagin\Downloads\Nepotvrzeno 926302.crdownload
2015-01-07 09:02 - 2015-01-07 09:02 - 00112640 _____ (forum.viry.cz) C:\Users\gagin\Downloads\Nepotvrzeno 371512.crdownload
2015-01-07 08:54 - 2015-01-07 08:54 - 00025256 _____ () C:\Users\gagin\Desktop\FRSTLauncher.exe
2015-01-07 08:52 - 2015-01-07 08:52 - 01107968 _____ () C:\Users\gagin\Downloads\RSIT (1).exe
2015-01-06 15:23 - 2015-01-07 09:08 - 00012677 _____ () C:\Users\gagin\Downloads\FRST.txt
2015-01-06 15:23 - 2015-01-07 09:07 - 00029323 _____ () C:\Users\gagin\Downloads\Addition.txt
2015-01-06 14:56 - 2015-01-06 14:56 - 00000247 _____ () C:\Windows\system32\2015-01-06-13-56-47.099-aswFe.exe-1904.log
2015-01-06 14:56 - 2015-01-06 14:56 - 00000197 _____ () C:\Windows\system32\2015-01-06-13-56-44.091-AvastVBoxSVC.exe-3708.log
2015-01-06 14:48 - 2014-02-13 23:59 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-01-06 14:25 - 2015-01-06 14:54 - 00007372 _____ () C:\zoek-results.log
2015-01-06 14:24 - 2015-01-06 14:44 - 00000000 ____D () C:\zoek_backup
2015-01-06 14:23 - 2015-01-06 14:23 - 04279080 _____ () C:\Users\gagin\Downloads\zoek (1).rar
2015-01-06 14:23 - 2014-12-07 23:06 - 01429293 _____ () C:\Users\gagin\Desktop\zoek.exe.com
2015-01-06 14:22 - 2015-01-06 14:22 - 04251253 _____ () C:\Users\gagin\Downloads\zoek.rar
2015-01-06 14:22 - 2015-01-06 14:22 - 04122786 _____ () C:\Users\gagin\Downloads\zoek.zip
2015-01-06 14:22 - 2015-01-06 14:22 - 00000247 _____ () C:\Windows\system32\2015-01-06-13-22-23.049-aswFe.exe-4016.log
2015-01-06 14:22 - 2015-01-06 14:22 - 00000197 _____ () C:\Windows\system32\2015-01-06-13-22-20.097-AvastVBoxSVC.exe-2408.log
2015-01-06 14:15 - 2015-01-06 14:17 - 00000000 ____D () C:\AdwCleaner
2015-01-06 14:14 - 2015-01-06 14:14 - 02173952 _____ () C:\Users\gagin\Downloads\adwcleaner_4.106.exe
2015-01-06 13:45 - 2015-01-06 13:46 - 00000000 ____D () C:\rsit
2015-01-06 13:45 - 2015-01-06 13:46 - 00000000 ____D () C:\Program Files\trend micro
2015-01-06 13:45 - 2015-01-06 13:45 - 01107968 _____ () C:\Users\gagin\Downloads\RSIT.exe
2015-01-06 13:43 - 2015-01-06 13:43 - 00000197 _____ () C:\Windows\system32\2015-01-06-12-43-48.002-AvastVBoxSVC.exe-4076.log
2015-01-06 11:19 - 2015-01-06 11:20 - 00000247 _____ () C:\Windows\system32\2015-01-06-10-19-31.044-aswFe.exe-2748.log
2015-01-06 11:11 - 2015-01-06 14:53 - 00001188 _____ () C:\Windows\PFRO.log
2015-01-06 11:03 - 2015-01-06 11:03 - 00000247 _____ () C:\Windows\system32\2015-01-06-10-03-10.010-aswFe.exe-4148.log
2015-01-06 11:03 - 2015-01-06 11:03 - 00000197 _____ () C:\Windows\system32\2015-01-06-10-03-07.027-AvastVBoxSVC.exe-788.log
2015-01-06 10:44 - 2015-01-06 10:44 - 05006864 _____ (AVAST Software) C:\Users\gagin\Downloads\avast_free_antivirus_setup_online.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKU\S-1-5-21-2944857353-2517545661-1454557399-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value deleted successfully.
"HKU\S-1-5-21-2944857353-2517545661-1454557399-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7ae3e536-73af-11e4-9225-001a4d4a34f8}" => Key deleted successfully.
HKCR\CLSID\{7ae3e536-73af-11e4-9225-001a4d4a34f8} => Key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
Chrome DefaultSearchKeyword not detected.
Chrome DefaultSearchURL not detected.
C:\Users\gagin\Desktop\LM.bat => Moved successfully.
C:\Users\gagin\AppData\Local\MSGBOX.EXE => Moved successfully.
C:\Users\gagin\Downloads\FRSTLauncher.exe => Moved successfully.
"C:\Users\gagin\Downloads\Nepotvrzeno 926302.crdownload" => File/Directory not found.
"C:\Users\gagin\Downloads\Nepotvrzeno 371512.crdownload" => File/Directory not found.
"C:\Users\gagin\Desktop\FRSTLauncher.exe" => File/Directory not found.
C:\Users\gagin\Downloads\RSIT (1).exe => Moved successfully.
C:\Users\gagin\Downloads\FRST.txt => Moved successfully.
C:\Users\gagin\Downloads\Addition.txt => Moved successfully.
C:\Windows\system32\2015-01-06-13-56-47.099-aswFe.exe-1904.log => Moved successfully.
C:\Windows\system32\2015-01-06-13-56-44.091-AvastVBoxSVC.exe-3708.log => Moved successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\gagin\Downloads\zoek (1).rar => Moved successfully.
C:\Users\gagin\Desktop\zoek.exe.com => Moved successfully.
C:\Users\gagin\Downloads\zoek.rar => Moved successfully.
C:\Users\gagin\Downloads\zoek.zip => Moved successfully.
C:\Windows\system32\2015-01-06-13-22-23.049-aswFe.exe-4016.log => Moved successfully.
C:\Windows\system32\2015-01-06-13-22-20.097-AvastVBoxSVC.exe-2408.log => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\gagin\Downloads\adwcleaner_4.106.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Users\gagin\Downloads\RSIT.exe => Moved successfully.
C:\Windows\system32\2015-01-06-12-43-48.002-AvastVBoxSVC.exe-4076.log => Moved successfully.
C:\Windows\system32\2015-01-06-10-19-31.044-aswFe.exe-2748.log => Moved successfully.
C:\Windows\PFRO.log => Moved successfully.
C:\Windows\system32\2015-01-06-10-03-10.010-aswFe.exe-4148.log => Moved successfully.
C:\Windows\system32\2015-01-06-10-03-07.027-AvastVBoxSVC.exe-788.log => Moved successfully.
C:\Users\gagin\Downloads\avast_free_antivirus_setup_online.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 346.4 MB temporary data.


The system needed a reboot.

==== End of Fixlog 12:46:21 ====

[vyosek]

Jak se chova PC???

[dart500]

Už je mnohem lepší moc děkuji

[vyosek]

Tak jeste uklidime

DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remote disinfection tools
• Kliknete na Run

Stahnete Ccleaner https://www.piriform.com/ccleaner/download/standard
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse