VIRY.CZ

Poprosím o kontrolu, Mozilla išla dosť pomaly spustil som Eset Online Scaner našiel a odstránil 2 trójske kone, ďakujem.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Martin at 2015-01-21 12:59:55
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 67 GB (67%) free of 100 GB
Total RAM: 2984 MB (23% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:00:04, on 21. 1. 2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files\ASUS\P4G\BatteryLife.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Bluetooth Suite\BtvStack.exe
C:\Program Files\Bluetooth Suite\AthBtTray.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\totalcmd\TOTALCMD.EXE
C:\RK Software\Fakturatik\Fakturatik.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Martin\Desktop\RSIT.exe
C:\Program Files\trend micro\Martin.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Browser Extensions - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Martin\AppData\Roaming\BrowserExtensions\Coupons.dll
O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [AmIcoSinglun] C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
O4 - HKLM\..\Run: [SynAsusAcpi] %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /SF3
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AtherosBtStack] "C:\Program Files\Bluetooth Suite\btvstack.exe"
O4 - HKLM\..\Run: [AthBtTray] "C:\Program Files\Bluetooth Suite\athbttray.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Martin\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files\Browny02\BrYNSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PDFProFiltSrvPP - Nuance Communications, Inc. - C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 7115 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\2pufn8zd.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "keyword.URL" - "https://search.yahoo.com/search?fr=gree ... =201117&p="

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.257 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_257.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\2pufn8zd.default\extensions\
sk@dictionaries.addons.mozilla.org

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}]
Browser Extensions - C:\Users\Martin\AppData\Roaming\BrowserExtensions\Coupons.dll [2014-12-08 608720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{551A852F-39A6-44A7-9C13-AFBEC9185A9D}]
PlusIEEventHelper Class - C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2009-02-06 249856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-07-25 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files\Bluetooth Suite\IEPlugIn.dll [2012-11-29 52352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-05-05 2262312]
"AmIcoSinglun"=C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe [2011-03-18 258048]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-05-05 83240]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2011-09-05 10992232]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [2011-08-16 1571432]
"ATKOSD2"=C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-12-22 318080]
"ATKMEDIA"=C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe [2011-10-24 174720]
"HControlUser"=C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-09-16 142616]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-09-16 177432]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-09-16 176408]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 974432]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"AtherosBtStack"=C:\Program Files\Bluetooth Suite\btvstack.exe [2012-11-29 877184]
"AthBtTray"=C:\Program Files\Bluetooth Suite\athbttray.exe [2012-11-29 696448]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Users\Martin\AppData\Roaming\uTorrent\uTorrent.exe [2014-07-03 1322832]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-12-11 30872168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Browser Extensions]
C:\Users\Martin\AppData\Roaming\BrowserExtensions\BEHelper.exe [2014-12-08 965584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BrStsMon00]
C:\Program Files\Browny02\Brother\BrStMonW.exe [2012-06-06 3076096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ControlCenter4]
C:\Program Files\ControlCenter4\BrCcBoot.exe [2012-09-06 143360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndexSearch]
C:\Program Files\Nuance\PaperPort\IndexSearch.exe [2010-03-08 46368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM]
C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2009-05-05 222496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD]
C:\Program Files\Nuance\PaperPort\pptd40nt.exe [2010-03-08 29984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF5 Registry Controller]
C:\Program Files\Nuance\PDF Viewer Plus\RegistryController.exe [2010-03-05 62752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDFHook]
C:\Program Files\Nuance\PDF Viewer Plus\pdfpro5hook.exe [2010-03-05 636192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PPort12reminder]
C:\Program Files\Nuance\PaperPort\Ereg\Ereg.exe [2010-02-09 328992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Search Protection]
C:\Users\Martin\AppData\Roaming\Search Protection\SP.EXE [2014-12-11 1128760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-09-16 294400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"msacm.ac3filter"=ac3filter.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-01-16 15:27:22 ----D---- C:\Users\Martin\AppData\Roaming\Opera Software
2015-01-14 09:05:38 ----A---- C:\Windows\system32\ntkrnlpa.exe
2015-01-14 09:05:37 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-01-14 09:05:23 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-14 09:05:23 ----A---- C:\Windows\system32\profsvc.dll
2015-01-14 09:05:20 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-14 09:05:12 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-01-13 23:13:44 ----D---- C:\Program Files\Mozilla Firefox
2015-01-11 22:54:47 ----D---- C:\Users\Martin\AppData\Roaming\PDF Architect 2
2015-01-08 14:36:40 ----D---- C:\ProgramData\PDF Architect 2
2015-01-08 14:36:31 ----D---- C:\Users\Martin\AppData\Roaming\pdfforge
2015-01-08 14:36:23 ----A---- C:\Windows\system32\pdfcmon.dll
2015-01-08 14:36:22 ----D---- C:\Program Files\PDFCreator
2015-01-07 00:22:55 ----D---- C:\Users\Martin\AppData\Roaming\BrowserExtensions
2015-01-07 00:22:19 ----D---- C:\Users\Martin\AppData\Roaming\Search Protection
2015-01-07 00:22:17 ----D---- C:\ProgramData\Auslogics
2015-01-07 00:22:03 ----D---- C:\Program Files\Auslogics
2015-01-07 00:09:58 ----A---- C:\Windows\system32\wbhelp2.dll
2015-01-07 00:09:57 ----D---- C:\Program Files\WinUtilities
2015-01-07 00:09:57 ----A---- C:\Windows\system32\W95INF32.DLL
2015-01-07 00:09:57 ----A---- C:\Windows\system32\W95INF16.DLL
2015-01-07 00:09:57 ----A---- C:\Windows\system32\unicows.dll
2015-01-07 00:09:57 ----A---- C:\Windows\system32\anim.dll
2015-01-07 00:09:24 ----D---- C:\Program Files\SpeedFan
2014-12-23 16:49:29 ----D---- C:\Users\Martin\AppData\Roaming\AIMP3
2014-12-23 16:49:12 ----D---- C:\Program Files\AIMP3

======List of files/folders modified in the last 1 month======

2015-01-21 13:00:04 ----D---- C:\Windows\Prefetch
2015-01-21 12:59:58 ----D---- C:\Program Files\trend micro
2015-01-21 12:59:42 ----D---- C:\Users\Martin\AppData\Roaming\uTorrent
2015-01-21 12:50:59 ----D---- C:\Windows\temp
2015-01-21 12:46:49 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2015-01-21 12:06:45 ----D---- C:\ProgramData\firebird
2015-01-21 10:45:53 ----D---- C:\Windows\System32
2015-01-21 10:45:52 ----D---- C:\Windows\inf
2015-01-21 09:03:09 ----D---- C:\Windows\system32\config
2015-01-21 08:44:05 ----A---- C:\Windows\system32\log.txt
2015-01-21 00:31:47 ----D---- C:\Users\Martin\AppData\Roaming\vlc
2015-01-18 17:15:49 ----SHD---- C:\System Volume Information
2015-01-17 15:27:32 ----D---- C:\Program Files\Opera
2015-01-17 13:38:46 ----D---- C:\Windows\system32\Tasks
2015-01-17 09:25:30 ----SHD---- C:\Windows\Installer
2015-01-17 09:25:30 ----D---- C:\Config.Msi
2015-01-17 09:25:29 ----RD---- C:\Program Files
2015-01-17 09:14:49 ----D---- C:\Windows
2015-01-16 15:29:25 ----D---- C:\Users\Martin\AppData\Roaming\Opera
2015-01-16 12:27:39 ----D---- C:\Windows\debug
2015-01-15 08:54:59 ----D---- C:\Windows\winsxs
2015-01-15 08:54:04 ----D---- C:\Windows\system32\drivers
2015-01-15 01:00:05 ----D---- C:\Windows\system32\MRT
2015-01-15 00:54:59 ----A---- C:\Windows\system32\MRT.exe
2015-01-14 20:01:27 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-01-14 18:51:35 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-14 09:05:04 ----D---- C:\Windows\system32\catroot
2015-01-14 09:05:01 ----D---- C:\Windows\system32\catroot2
2015-01-14 08:58:57 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-01-12 15:36:12 ----D---- C:\Program Files\Google
2015-01-12 15:35:16 ----D---- C:\Windows\Tasks
2015-01-08 14:36:40 ----D---- C:\ProgramData
2015-01-07 22:15:41 ----D---- C:\Windows\Panther
2014-12-31 12:13:47 ----N---- C:\Windows\system32\MpSigStub.exe
2014-12-28 12:57:04 ----D---- C:\Users\Martin\AppData\Roaming\XnView
2014-12-28 12:35:05 ----D---- C:\Program Files\CCleaner

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 461080]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 231800]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2012-12-29 24184]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi.sys [2011-09-07 14464]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-05-20 242240]
R1 MpKsl4d6c772d;MpKsl4d6c772d; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7ADB7B5B-FB0A-450D-9A7D-074237948C81}\MpKsl4d6c772d.sys [2015-01-21 39464]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys [2009-07-02 13880]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 95920]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-11-22 102888]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-11-22 313832]
R3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2012-11-29 35968]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2011-10-03 2205696]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2012-11-29 299648]
R3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2012-11-29 98432]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2012-11-29 25728]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2012-11-29 148096]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2012-11-29 60544]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2012-11-29 264704]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2012-11-29 470656]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2011-09-16 10843136]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2011-09-06 3663848]
R3 IntcDAud;Intel(R) Zvuk pre obrazovky; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-09-16 269824]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 13880]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x86.sys [2010-08-24 68208]
R3 MEI;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2010-10-19 41088]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-05-05 1344560]
R3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2011-03-18 46680]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 131072]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 36864]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2014-01-31 77808]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2014-01-31 74608]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2012-10-17 19072]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 27136]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 ASLDRService;ASLDR Service; C:\Program Files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2011-11-21 80512]
R2 AtherosSvc;AtherosSvc; C:\Program Files\Bluetooth Suite\adminservice.exe [2012-11-29 195200]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-20 325656]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 22192]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 PDFProFiltSrvPP;PDFProFiltSrvPP; C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe [2010-03-08 144672]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-20 2656280]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 288120]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-12 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-14 267440]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 BrYNSvc;BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [2012-06-05 266240]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-12 107912]
S3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 102912]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-13 114800]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-05-19 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]

-----------------EOF-----------------

Zdravim

Jeste tam cosik preziva

Doporucuji nahradit MSE antivirem, ktery vykazuje ve srovnavacich testech lepsi vysledky napr. avastem Free.

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/

• ukoncete vsechny programy
• kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
• kliknete na Scan, pote na Clean
• po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

# AdwCleaner v4.108 - Report created 21/01/2015 at 17:04:02
# Updated 17/01/2015 by Xplode
# Database : 2015-01-18.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : Martin - MARTIN-PC
# Running from : C:\Users\Martin\Desktop\adwcleaner_4.108.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Martin\AppData\Roaming\pdfforge
Folder Deleted : C:\Users\Martin\AppData\Roaming\Search Protection
Folder Deleted : C:\Users\Martin\AppData\Roaming\BrowserExtensions

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Classes\SettingsManagerIEHelper.DNSGuard.1
Key Deleted : HKLM\SOFTWARE\Classes\SettingsManagerIEHelper.DNSGuard
Key Deleted : HKLM\SOFTWARE\microsoft\shared tools\msconfig\startupreg\Browser Extensions
Key Deleted : HKLM\SOFTWARE\microsoft\shared tools\msconfig\startupreg\Search Protection
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AA760BA8-5862-4BC5-9263-4452CBC0B264}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93D511B5-143B-4A99-ABFC-B5B78AD0AE1B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}
Key Deleted : HKCU\Software\VIS
Key Deleted : HKCU\Software\AppDataLow\Software\Search Protection
Key Deleted : HKCU\Software\AppDataLow\Software\Browser Extensions
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3A787631-66A2-4634-B928-A37E73B58FB6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Search Protection

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17496


-\\ Mozilla Firefox v35.0 (x86 sk)

[2pufn8zd.default\prefs.js] - Line Deleted : user_pref("startpage.ntsearch_url", "hxxps://search.yahoo.com/search?fr=spigot-nt-ff&ei=utf-8&ilc=12&type=201117&p={searchTerms}");

-\\ Google Chrome v39.0.2171.99


-\\ Opera v26.0.1656.60


*************************

AdwCleaner[R0].txt - [2282 octets] - [10/04/2014 19:18:45]
AdwCleaner[R1].txt - [3159 octets] - [03/11/2014 19:08:01]
AdwCleaner[R2].txt - [3356 octets] - [21/01/2015 17:02:23]
AdwCleaner[S0].txt - [2379 octets] - [10/04/2014 19:19:40]
AdwCleaner[S1].txt - [3100 octets] - [03/11/2014 19:10:03]
AdwCleaner[S2].txt - [3127 octets] - [21/01/2015 17:04:02]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [3187 octets] ##########


Ďakujem, čo sa týka antivíru MS je asi len pre kľudný spánok, nevedel som čo naištalovať.
1. Avast som roky používal ku svojej spokojnosti ale po určitej aktualizácií začal strašne vyťažovať pc
2. Aviru - som skúšal pred rokmi ale neviem abg. a chcela potvrdiť asi aj čo som mal na večeru, tak som ju odinštaloval
3. skúsim niečo pozrieť.

avast a Avira patri k nejlepe hodnocenym mezi free antiviry... AVG se momentalne vyhnete (slabsi detekce). Pak me napada snad uz jenom Bitdefender.. stahujte ze stranek vyrobcu, at se vyhnete adwarum - typicky seznam software (listicka, postak) na slunecnici viz http://forum.viry.cz/viewtopic.php?p=1374436#p1374436 atd.

Tatry03 zde na foru serviruje statistiky a jine zajimave veci.. stoji za precteni http://forum.viry.cz/viewtopic.php?f=14 ... 8#p1367808

Dejte novy log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-01-2015
Ran by Martin (administrator) on MARTIN-PC on 21-01-2015 18:01:29
Running from C:\Users\Martin\Desktop
Loaded Profiles: Martin (Available profiles: Martin)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ASUS) C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Nuance Communications, Inc.) C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(Atheros) C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Alcor Micro Corp.) C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(ASUS) C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Atheros Communications) C:\Program Files\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\AthBtTray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2262312 2011-05-05] (Synaptics Incorporated)
HKLM\...\Run: [AmIcoSinglun] => C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe [258048 2011-03-18] (Alcor Micro Corp.)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [83240 2011-05-05] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10992232 2011-09-05] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [1571432 2011-08-16] (Realtek Semiconductor)
HKLM\...\Run: [ATKOSD2] => C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [318080 2011-12-22] (ASUSTek Computer Inc.)
HKLM\...\Run: [ATKMEDIA] => C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe [174720 2011-10-24] (ASUS)
HKLM\...\Run: [HControlUser] => C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files\Bluetooth Suite\btvstack.exe [877184 2012-11-29] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files\Bluetooth Suite\athbttray.exe [696448 2012-11-29] (Atheros Commnucations)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5225064 2015-01-21] (AVAST Software)
HKLM\...\RunOnce: [20150107] => C:\Program Files\AVAST Software\Avast\setup\emupdate\b7a51ac3-7967-4c6e-ad65-e7570ef55d02.exe [183232 2015-01-21] (AVAST Software)
HKU\S-1-5-21-616477033-3631907855-1866218665-1000\...\Run: [uTorrent] => C:\Users\Martin\AppData\Roaming\uTorrent\uTorrent.exe [1322832 2014-07-03] (BitTorrent Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-616477033-3631907855-1866218665-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-616477033-3631907855-1866218665-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/en-us/?pc=UP97&ocid=UP97DHP
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-616477033-3631907855-1866218665-1000 -> {7ED3AD89-F15C-4149-ADB8-BC764C076A15} URL = https://search.yahoo.com/search?fr=chr- ... earchTerms}
BHO: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\2pufn8zd.default
FF SelectedSearchEngine: Yahoo!
FF Keyword.URL: https://search.yahoo.com/search?fr=gree ... =201117&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Slovníky slovenského pravopisu - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\2pufn8zd.default\Extensions\sk@dictionaries.addons.mozilla.org [2014-10-28]
FF Extension: Add Bookmark Here ² - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\2pufn8zd.default\Extensions\abhere2@moztw.org.xpi [2014-09-03]
FF Extension: Save Text To File - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\2pufn8zd.default\Extensions\HighlightedTextToFile@bobbyrne01.org.xpi [2014-09-03]
FF Extension: Slovak (SK) Language Pack - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\2pufn8zd.default\Extensions\langpack-sk@firefox.mozilla.org.xpi [2014-09-03]
FF Extension: Image Zoom - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\2pufn8zd.default\Extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi [2014-09-03]
FF Extension: X-notifier - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\2pufn8zd.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2014-09-03]
FF Extension: Text Link - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\2pufn8zd.default\Extensions\{54BB9F3F-07E5-486c-9B39-C7398B99391C}.xpi [2014-09-03]
FF Extension: Adblock Plus - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\2pufn8zd.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-09-03]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-01-21]

Chrome:
=======
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentácie Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-12]
CHR Extension: (Dokumenty Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-12]
CHR Extension: (Disk Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-12]
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-12]
CHR Extension: (Hľadať v Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-12]
CHR Extension: (Tabuľky Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-12]
CHR Extension: (Peňaženka Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-12]
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-12]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-01-21]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASLDRService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [80512 2011-11-21] (ASUS)
R2 ATKGFNEXSrv; C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896 2011-11-21] (ASUS)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-21] (AVAST Software)
S3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
S3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44544 2008-12-03] (Hewlett-Packard) [File not signed]
R2 PDFProFiltSrvPP; C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-08] (Nuance Communications, Inc.)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2008-12-03] (Hewlett-Packard) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe [327296 2012-11-29] (Atheros)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [46680 2011-03-18] (Alcor Micro, Corp.)
R2 ASMMAP; C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys [13880 2009-07-02] (ASUS)
R3 asmthub3; C:\Windows\System32\DRIVERS\asmthub3.sys [102888 2011-11-22] (ASMedia Technology Inc)
R3 asmtxhci; C:\Windows\System32\DRIVERS\asmtxhci.sys [313832 2011-11-22] (ASMedia Technology Inc)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2015-01-21] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [73480 2015-01-21] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2015-01-21] (AVAST Software)
S0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2015-01-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [787800 2015-01-21] (AVAST Software)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423784 2015-01-21] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [91496 2015-01-21] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [206248 2015-01-21] ()
R3 AthBTPort; C:\Windows\System32\DRIVERS\btath_flt.sys [35968 2012-11-29] (Atheros)
R1 ATKWMIACPIIO; C:\Program Files\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi.sys [14464 2011-09-07] (ASUS)
R3 BTATH_A2DP; C:\Windows\System32\drivers\btath_a2dp.sys [299648 2012-11-29] (Atheros)
R3 btath_avdt; C:\Windows\System32\drivers\btath_avdt.sys [98432 2012-11-29] (Atheros)
R3 BTATH_BUS; C:\Windows\System32\DRIVERS\btath_bus.sys [25728 2012-11-29] (Atheros)
R3 BTATH_HCRP; C:\Windows\System32\DRIVERS\btath_hcrp.sys [148096 2012-11-29] (Atheros)
R3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [60544 2012-11-29] (Atheros)
R3 BTATH_RCP; C:\Windows\System32\DRIVERS\btath_rcp.sys [264704 2012-11-29] (Atheros)
R3 BtFilter; C:\Windows\System32\DRIVERS\btfilter.sys [470656 2012-11-29] (Atheros)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-05-20] (DT Soft Ltd)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [77808 2014-01-31] (FTDI Ltd.)
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () [File not signed]
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Intel Corporation)
R0 speedfan; C:\Windows\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [File not signed]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-21 18:01 - 2015-01-21 18:02 - 00016561 _____ () C:\Users\Martin\Desktop\FRST.txt
2015-01-21 18:01 - 2015-01-21 18:01 - 01118208 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2015-01-21 17:59 - 2015-01-21 17:59 - 00029696 _____ () C:\Users\Martin\AppData\Local\MSGBOX.EXE
2015-01-21 17:59 - 2015-01-21 17:59 - 00015327 _____ () C:\Users\Martin\Desktop\LM.bat
2015-01-21 17:57 - 2015-01-21 17:57 - 00002117 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-01-21 17:57 - 2015-01-21 17:57 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\AVAST Software
2015-01-21 17:57 - 2015-01-21 17:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-01-21 17:56 - 2015-01-21 17:57 - 00787800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-01-21 17:56 - 2015-01-21 17:57 - 00423784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-01-21 17:56 - 2015-01-21 17:57 - 00073480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2015-01-21 17:56 - 2015-01-21 17:56 - 00422760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1421859427395
2015-01-21 17:56 - 2015-01-21 17:56 - 00291352 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-01-21 17:56 - 2015-01-21 17:56 - 00206248 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-01-21 17:56 - 2015-01-21 17:56 - 00091496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-01-21 17:56 - 2015-01-21 17:56 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-01-21 17:56 - 2015-01-21 17:56 - 00070384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys.1421859429781
2015-01-21 17:56 - 2015-01-21 17:56 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-01-21 17:56 - 2015-01-21 17:56 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-01-21 17:56 - 2015-01-21 17:56 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-01-21 17:56 - 2015-01-21 17:55 - 00787800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1421859428830
2015-01-21 17:55 - 2015-01-21 17:55 - 00000000 ____D () C:\Program Files\AVAST Software
2015-01-21 17:54 - 2015-01-21 17:55 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-01-21 17:51 - 2015-01-21 17:51 - 00000000 ___RD () C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-01-21 17:36 - 2015-01-21 17:38 - 132469808 _____ (AVAST Software) C:\Users\Martin\Desktop\avast_free_antivirus_setup.exe
2015-01-21 17:36 - 2015-01-21 17:36 - 05040384 _____ (AVAST Software) C:\Users\Martin\Desktop\avastclear.exe
2015-01-21 17:31 - 2015-01-21 17:35 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\Dropbox
2015-01-21 17:02 - 2015-01-21 17:02 - 02186752 _____ () C:\Users\Martin\Desktop\adwcleaner_4.108.exe
2015-01-21 12:59 - 2015-01-21 12:59 - 01107968 _____ () C:\Users\Martin\Desktop\RSIT.exe
2015-01-17 16:09 - 2015-01-17 16:09 - 00007168 _____ () C:\Users\Martin\Downloads\Nová-položka-OpenDocument-Zošit.xlt
2015-01-17 13:38 - 2015-01-17 13:38 - 00001093 _____ () C:\Users\Public\Desktop\Opera.lnk
2015-01-17 13:38 - 2015-01-17 13:38 - 00001093 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-01-17 09:14 - 2015-01-21 17:51 - 00321194 _____ () C:\Windows\PFRO.log
2015-01-16 15:50 - 2015-01-21 17:51 - 00001064 _____ () C:\Windows\setupact.log
2015-01-16 15:50 - 2015-01-16 15:50 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-16 15:27 - 2015-01-16 15:27 - 00017541 _____ () C:\Users\Martin\Desktop\Opera 12 Notes.html
2015-01-16 15:27 - 2015-01-16 15:27 - 00001087 _____ () C:\Users\Public\Desktop\Opera 25.lnk
2015-01-16 15:27 - 2015-01-16 15:27 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\Opera Software
2015-01-16 15:27 - 2015-01-16 15:27 - 00000000 ____D () C:\Users\Martin\AppData\Local\Opera Software
2015-01-14 09:05 - 2014-12-19 03:43 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 09:05 - 2014-12-19 02:34 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 09:05 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-01-14 09:05 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 09:05 - 2014-12-11 18:47 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 09:05 - 2014-12-06 04:50 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-13 23:13 - 2015-01-13 23:14 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-01-12 15:36 - 2015-01-17 09:41 - 00002141 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-12 15:36 - 2015-01-12 15:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-01-12 15:35 - 2015-01-21 17:51 - 00000920 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-12 15:35 - 2015-01-21 17:40 - 00000924 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-11 22:54 - 2015-01-11 22:54 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\PDF Architect 2
2015-01-11 22:54 - 2015-01-11 22:54 - 00000000 ____D () C:\Users\Martin\AppData\Local\PDFCreator
2015-01-08 14:36 - 2015-01-16 12:30 - 00000000 ____D () C:\Program Files\PDFCreator
2015-01-08 14:36 - 2015-01-08 14:36 - 00000000 ____D () C:\ProgramData\PDF Architect 2
2015-01-08 14:36 - 2015-01-08 14:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2015-01-08 14:36 - 2014-12-16 20:01 - 00098488 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2015-01-07 00:22 - 2015-01-07 09:01 - 00000000 ____D () C:\Program Files\Auslogics
2015-01-07 00:22 - 2015-01-07 09:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2015-01-07 00:22 - 2015-01-07 00:23 - 00000000 ____D () C:\ProgramData\Auslogics
2015-01-07 00:22 - 2015-01-07 00:22 - 00001127 _____ () C:\Users\Martin\Desktop\Auslogics DiskDefrag.lnk
2015-01-07 00:10 - 2015-01-16 12:30 - 00000046 _____ () C:\Windows\system32\_WKERNEL.SYL
2015-01-07 00:10 - 2015-01-07 00:10 - 00000986 _____ () C:\Users\Public\Desktop\WinUtilities.lnk
2015-01-07 00:10 - 2015-01-07 00:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinUtilities
2015-01-07 00:09 - 2015-01-07 09:09 - 00000000 ____D () C:\Program Files\WinUtilities
2015-01-07 00:09 - 2015-01-07 00:13 - 00000000 ____D () C:\Program Files\SpeedFan
2015-01-07 00:09 - 2015-01-07 00:09 - 00000965 _____ () C:\Users\Martin\Desktop\SpeedFan.lnk
2015-01-07 00:09 - 2015-01-07 00:09 - 00000045 _____ () C:\Windows\system32\initdebug.nfo
2015-01-07 00:09 - 2015-01-07 00:09 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-01-07 00:09 - 2015-01-07 00:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-01-07 00:09 - 2010-07-25 22:23 - 00544768 _____ (Stardock Corporation) C:\Windows\system32\wbocx.ocx
2015-01-07 00:09 - 2010-07-25 22:23 - 00258352 _____ (Microsoft Corporation) C:\Windows\system32\unicows.dll
2015-01-07 00:09 - 2010-07-25 22:23 - 00056496 _____ (Stardock.Net, Inc) C:\Windows\system32\wbhelp2.dll
2015-01-07 00:09 - 2010-07-25 22:23 - 00033968 _____ (Neil Banfield) C:\Windows\system32\anim.dll
2015-01-07 00:09 - 2010-07-25 22:23 - 00004608 _____ (Microsoft Corporation) C:\Windows\system32\W95INF32.DLL
2015-01-07 00:09 - 2010-07-25 22:23 - 00002272 _____ (Microsoft Corporation) C:\Windows\system32\W95INF16.DLL
2014-12-23 16:49 - 2015-01-21 17:01 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\AIMP3
2014-12-23 16:49 - 2014-12-23 16:49 - 00000875 _____ () C:\Users\Public\Desktop\AIMP3.lnk
2014-12-23 16:49 - 2014-12-23 16:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
2014-12-23 16:49 - 2014-12-23 16:49 - 00000000 ____D () C:\Program Files\AIMP3

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-21 18:01 - 2014-11-04 19:15 - 00000000 ____D () C:\FRST
2015-01-21 18:01 - 2014-10-05 13:17 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-21 17:58 - 2009-07-14 05:34 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-21 17:58 - 2009-07-14 05:34 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-21 17:57 - 2013-05-19 14:17 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\uTorrent
2015-01-21 17:56 - 2013-05-19 13:34 - 01294615 _____ () C:\Windows\WindowsUpdate.log
2015-01-21 17:51 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-21 17:22 - 2013-05-19 14:23 - 00001912 _____ () C:\Windows\epplauncher.mif
2015-01-21 17:04 - 2014-04-10 19:18 - 00000000 ____D () C:\AdwCleaner
2015-01-21 17:00 - 2013-06-16 09:32 - 00000000 ____D () C:\ProgramData\firebird
2015-01-21 13:20 - 2013-05-19 14:16 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\Skype
2015-01-21 12:59 - 2013-07-14 14:32 - 00000000 ____D () C:\Program Files\trend micro
2015-01-21 00:31 - 2013-05-19 14:55 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\vlc
2015-01-20 21:49 - 2013-05-27 21:58 - 00000000 ____D () C:\Users\Martin\AppData\Local\CrashDumps
2015-01-17 15:27 - 2013-05-19 14:15 - 00000000 ____D () C:\Program Files\Opera
2015-01-16 15:29 - 2013-05-19 14:15 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\Opera
2015-01-16 15:29 - 2013-05-19 14:15 - 00000000 ____D () C:\Users\Martin\AppData\Local\Opera
2015-01-15 08:54 - 2009-07-14 05:53 - 00032576 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-01-15 01:00 - 2013-07-30 02:17 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-15 00:54 - 2013-05-19 14:59 - 110348472 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-14 20:01 - 2014-10-05 13:17 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-01-14 20:01 - 2014-10-05 13:17 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-01-14 18:51 - 2010-11-20 22:01 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-14 08:58 - 2014-09-03 08:56 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-01-12 15:36 - 2013-05-19 14:14 - 00000000 ____D () C:\Program Files\Google
2015-01-08 09:55 - 2013-05-19 14:28 - 00249488 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-01-07 22:15 - 2013-05-19 14:30 - 00000000 ____D () C:\Windows\Panther
2015-01-07 22:14 - 2013-05-19 13:39 - 00000000 ____D () C:\Users\Martin
2015-01-06 16:29 - 2014-09-03 18:43 - 00000418 _____ () C:\Users\Martin\Desktop\miro bug.txt
2015-01-01 11:57 - 2013-06-16 09:22 - 00000000 ____D () C:\Users\Martin\Documents\Fakturatik
2014-12-28 12:57 - 2013-05-20 19:08 - 00000000 ____D () C:\Users\Martin\AppData\Roaming\XnView
2014-12-28 12:35 - 2013-05-19 14:13 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-12-28 12:35 - 2013-05-19 14:13 - 00000000 ____D () C:\Program Files\CCleaner

==================== Files in the root of some directories =======
2015-01-21 17:59 - 2015-01-21 17:59 - 0029696 _____ () C:\Users\Martin\AppData\Local\MSGBOX.EXE
2014-09-13 12:54 - 2014-09-13 12:54 - 0001749 _____ () C:\Users\Martin\AppData\Local\recently-used.xbel
2013-10-18 14:35 - 2014-11-16 02:00 - 0007602 _____ () C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
2013-07-11 18:17 - 2013-07-11 18:17 - 0004986 _____ () C:\ProgramData\bkebzjep.nkt
2013-06-21 11:34 - 2013-09-11 14:39 - 0006062 _____ () C:\ProgramData\hpzinstall.log
2013-05-20 11:20 - 2013-05-20 11:20 - 0000113 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Files to move or delete:
====================
C:\Users\Martin\esetsmartinstaller_sky.exe


Some content of TEMP:
====================
C:\Users\Martin\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpyqduaq.dll
C:\Users\Martin\AppData\Local\temp\Quarantine.exe
C:\Users\Martin\AppData\Local\temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-14 09:47

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 19-01-2015
Ran by Martin at 2015-01-21 18:02:24
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-616477033-3631907855-1866218665-1000\...\uTorrent) (Version: 3.4.2.32126 - BitTorrent Inc.)
32 Bit HP CIO Components Installer (Version: 6.1.1 - Hewlett-Packard) Hidden
AC3Filter 2.5b (HKLM\...\AC3Filter_is1) (Version: 2.5b - Alexander Vigovsky)
Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.257 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Slovak (HKLM\...\{AC76BA86-7AD7-1051-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AIMP3 (HKLM\...\AIMP3) (Version: v3.60.1425 Beta 2, 19.09.2014 - AIMP DevTeam)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Alcor Micro USB Card Reader (HKLM\...\AmUStor) (Version: 1.2.0117.08443 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (Version: 1.2.0117.08443 - Alcor Micro Corp.) Hidden
Ashampoo Burning Studio 6 FREE v.6.83 (HKLM\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.8.3 - Ashampoo GmbH & Co. KG)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.14.4.0 - Asmedia Technology)
Astroburn Lite (HKLM\...\Astroburn Lite) (Version: 1.8.0.0182 - Disc Soft Ltd)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.1 - ASUS)
Atheros Bluetooth Suite (HKLM\...\{101A497C-7EF6-4001-834D-E5FA1C70FEFA}) (Version: 7.4.0.170 - Atheros)
ATK Package (HKLM\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0015 - ASUS)
Auslogics DiskDefrag (HKLM\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 5.1.0.0 - Auslogics Labs Pty Ltd)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software)
Brother MFL-Pro Suite DCP-7060D (HKLM\...\{3ACCCFB3-7B17-4E9F-ACB0-46868FCD4487}) (Version: 1.1.3.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
Fakturatik (HKLM\...\Fakturatik_is1) (Version: - Rastislav Korytár - RK Software)
GOM Player (HKLM\...\GOM Player) (Version: 2.2.64.5211 - Gretech Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.99 - Spoločnosť Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Intel(R) Control Center (HKLM\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2476 - Intel Corporation)
Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.670 - Oracle)
Kniha jázd - Speedy (HKLM\...\Kniha jázd - Speedy_is1) (Version: - Kamar software)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 35.0 (x86 sk) (HKLM\...\Mozilla Firefox 35.0 (x86 sk)) (Version: 35.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 32.0 - Mozilla)
MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nokia PC Suite (HKLM\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
Nokia PC Suite (Version: 7.1.180.94 - Nokia) Hidden
Nuance PaperPort 12 (HKLM\...\{DA715959-CFF1-48A2-B3BB-98B9E569C6AC}) (Version: 12.1.0000 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
Opera Stable 25.0.1614.50 (HKLM\...\Opera 25.0.1614.50) (Version: 25.0.1614.50 - Opera Software ASA)
Opera Stable 26.0.1656.60 (HKLM\...\Opera 26.0.1656.60) (Version: 26.0.1656.60 - Opera Software ASA)
PaperPort Image Printer (HKLM\...\{6EF2FDAB-7FBF-4AB9-92CD-594BDDB6A56B}) (Version: 1.00.0001 - Nuance Communications, Inc.)
PC Connectivity Solution (HKLM\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.0.1 - pdfforge)
PhotoFiltre (HKU\S-1-5-21-616477033-3631907855-1866218665-1000\...\PhotoFiltre) (Version: - )
PL-2303 USB-to-Serial (HKLM\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.3.0 - Prolific Technology INC)
Qualcomm Atheros WiFi Driver Installation (HKLM\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6454 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Scansoft PDF Professional (Version: - ) Hidden
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.6.0 - Synaptics Incorporated)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.01 - Ghisler Software GmbH)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Driver Package - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Windows Driver Package - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Windows Driver Package - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0) (HKLM\...\17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinRAR 4.20 (32-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinUtilities Free Edition 11.31 (HKLM\...\{FC274982-5AAD-4C20-848D-4424A5043010}_is1) (Version: 11.31 - YL Computing, Inc)
XnView 1.99.5 (HKLM\...\XnView_is1) (Version: 1.99.5 - Gougelet Pierre-e)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points =========================

16-01-2015 15:28:41 Revo Uninstaller's restore point - Opera 12.17
17-01-2015 09:24:02 Revo Uninstaller's restore point - PDF Architect 2
18-01-2015 12:00:40 Windows Update
21-01-2015 17:16:38 Windows Update
21-01-2015 17:25:13 avast! antivirus system restore point
21-01-2015 17:33:07 Revo Uninstaller's restore point - Dropbox
21-01-2015 17:54:52 avast! antivirus system restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2013-07-16 09:35 - 00000027 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {01518FF4-C349-4E85-9568-85ED35573AED} - System32\Tasks\{BDDB8326-C74A-462C-A527-7974F2C67A1D} => E:\Solaris Diagnostic & OBD\Solaris Diagnostic & OBD.exe
Task: {384D309D-C4DD-44F8-8A01-F9B7491BE666} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {49B6496F-80D0-43C6-984D-A9A0FD025EE1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-12] (Google Inc.)
Task: {4CE48090-B8C0-482C-BEEF-A2FB14D9763F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-12] (Google Inc.)
Task: {4DED6DC3-8107-4D80-88E6-BBD566525E58} - System32\Tasks\Adobe online update program => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {58369B9E-7B52-46D2-B914-BEF7A4303A01} - System32\Tasks\Opera scheduled Autoupdate 1421418446 => C:\Program Files\Opera\launcher.exe [2014-12-16] (Opera Software)
Task: {5C0F0F0B-5E0D-49A5-AC2E-516CFB03DD67} - System32\Tasks\{9CB2AF23-8C62-482A-9DFE-A868373D13CA} => E:\Solaris Diagnostic & OBD\Solaris Diagnostic & OBD.exe
Task: {73F87918-F6D1-4251-8E23-D1A8A2226303} - System32\Tasks\{AC551C3F-175A-4B27-A377-95C3FC4B01F3} => E:\Solaris Diagnostic & OBD\Solaris Diagnostic & OBD.exe
Task: {7D9576EB-24CA-40A7-B44A-352679225C36} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-14] (Adobe Systems Incorporated)
Task: {8665EF04-A747-410D-8733-8E7E103117DC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {94A64D76-5DBE-44F2-B868-A454A8838433} - System32\Tasks\{2A788FF9-4D75-4CEA-9163-DD0A8BC133C6} => E:\Solaris Diagnostic & OBD\Solaris Diagnostic & OBD.exe
Task: {95047614-969F-4422-A51A-406ACA05182B} - System32\Tasks\Opera scheduled Autoupdate 1421498323 => C:\Program Files\Opera\launcher.exe [2014-12-16] (Opera Software)
Task: {9831D92B-CD1F-4301-A2A1-E408558F22D7} - System32\Tasks\{85757314-5D2A-4105-AE25-6CE93C17DE97} => E:\Solaris Diagnostic & OBD\Solaris Diagnostic & OBD.exe
Task: {984F2D47-59BB-4C9E-9589-A3CBBE3C9818} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-02-15] (ASUS)
Task: {A1046A61-8DE8-4F6A-B045-9DC089DC2CC5} - System32\Tasks\{1CE7C1FF-1EC1-48FB-A46F-3E92927A01F9} => pcalua.exe -a "C:\vag IHR3040n\IHR3040n.exe" -d "C:\vag IHR3040n"
Task: {B5FCDF07-00BE-495F-9CDE-5CB2D93750C4} - System32\Tasks\AdobeAAMUpdater-1.0-Martin-PC-Martin => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-02-22] (Adobe Systems Incorporated)
Task: {CD348DF7-BC2A-46A1-8313-AAE8844A1AF2} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-01-21] (AVAST Software)
Task: {D7B07466-A310-4F32-9117-BF4238F7A3C1} - System32\Tasks\{5198652D-07B1-4B7F-A128-A4929DE1163E} => pcalua.exe -a D:\vag\IHR3040n.exe -d D:\vag
Task: {E774E177-BA7D-437C-B233-BEBC09AA365F} - System32\Tasks\ATKOSD2 => C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-12-22] (ASUSTek Computer Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-08-19 17:53 - 2010-05-10 12:26 - 00116736 _____ () C:\Windows\System32\qvredmonnt.dll
2010-07-14 15:12 - 2010-07-14 15:12 - 00021120 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2013-05-19 13:44 - 2011-05-05 13:32 - 00066856 _____ () C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll
2013-05-08 15:26 - 2011-09-16 10:38 - 00094208 _____ () C:\Windows\System32\IccLibDll.dll
2015-01-13 23:13 - 2015-01-13 23:13 - 03925104 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2015-01-21 17:56 - 2015-01-21 17:56 - 02900480 _____ () C:\Program Files\AVAST Software\Avast\defs\14110700\algo.dll
2015-01-21 17:58 - 2015-01-21 17:58 - 02911744 _____ () C:\Program Files\AVAST Software\Avast\defs\15012100\algo.dll
2015-01-21 17:56 - 2015-01-21 17:56 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:D928C9E8

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: odserv => 3
MSCONFIG\Services: ose => 3
MSCONFIG\Services: ServiceLayer => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: TapiSrv => 3
MSCONFIG\startupreg: BrStsMon00 => C:\Program Files\Browny02\Brother\BrStMonW.exe /AUTORUN
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: ControlCenter4 => C:\Program Files\ControlCenter4\BrCcBoot.exe /autorun
MSCONFIG\startupreg: IndexSearch => "C:\Program Files\Nuance\PaperPort\IndexSearch.exe"
MSCONFIG\startupreg: ISUSPM => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
MSCONFIG\startupreg: PaperPort PTD => "C:\Program Files\Nuance\PaperPort\pptd40nt.exe"
MSCONFIG\startupreg: PDF5 Registry Controller => C:\Program Files\Nuance\PDF Viewer Plus\RegistryController.exe
MSCONFIG\startupreg: PDFHook => C:\Program Files\Nuance\PDF Viewer Plus\pdfpro5hook.exe
MSCONFIG\startupreg: PPort12reminder => "C:\Program Files\Nuance\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\12\Config\Ereg\Ereg.ini"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

========================= Accounts: ==========================

Administrator (S-1-5-21-616477033-3631907855-1866218665-500 - Administrator - Disabled)
Guest (S-1-5-21-616477033-3631907855-1866218665-501 - Limited - Disabled)
Martin (S-1-5-21-616477033-3631907855-1866218665-1000 - Administrator - Enabled) => C:\Users\Martin

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/21/2015 05:55:07 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Cryptographic Services zlyhala pri spracovávaní volania OnIdentity() v objekte System Writer.


Details:
AddLegacyDriverFiles: Unable to back up image of binary hcflhutv.

System Error:
Systém nemôže nájsť zadaný súbor.
.

Error: (01/21/2015 05:54:51 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Prístup je odmietnutý.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {7e916f81-2d5d-403a-8355-1c08a985a568}

Error: (01/21/2015 05:53:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/21/2015 05:06:28 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/21/2015 11:07:09 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (01/21/2015 08:43:31 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/20/2015 09:48:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybovej aplikácie: plugin-container.exe, verzia: 35.0.0.5486, časová značka: 0x54af7153
Názov chybového modulu: mozalloc.dll, verzia: 35.0.0.5486, časová značka: 0x54af69d4
Kód výnimky: 0x80000003
Odstup chyby: 0x00001425
Identifikácia chybného procesu: 0x1204
Čas spustenia chybnej aplikácie: 0xplugin-container.exe0
Cesta chybnej aplikácie: plugin-container.exe1
Cesta chybného modulu: plugin-container.exe2
Identifikácia hlásenia: plugin-container.exe3

Error: (01/20/2015 06:17:30 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STI BrtSTI: [2015/01/20 18:17:30.798]: [00002304]: CUsbScnDev: DeviceIoControl() failed. ErrorCode = 5

Error: (01/20/2015 05:31:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program firefox.exe version 35.0.0.5486 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 55c

Start Time: 01d034ca4ba0453a

Termination Time: 160

Application Path: C:\Program Files\Mozilla Firefox\firefox.exe

Report Id: d5b03b29-a0c1-11e4-b2d3-94dbc9b27048

Error: (01/20/2015 10:40:28 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (01/21/2015 05:51:31 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby Remote Access Connection Manager, od ktorej závisí služba Internet Connection Sharing (ICS), zlyhalo kvôli nasledujúcej chybe:
%%1068

Error: (01/21/2015 05:51:31 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby Telefonovanie, od ktorej závisí služba Remote Access Connection Manager, zlyhalo kvôli nasledujúcej chybe:
%%1058

Error: (01/21/2015 05:49:58 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Modul WLAN Extensibility Module sa nepodarilo spustiť.

Cesta k modulu: C:\Program Files\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll
Kód chyby: 21

Error: (01/21/2015 05:49:40 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nasledujúce ovládače pre spustenie zavedenia alebo spustenie systému zlyhali pri načítaní:
aswRvrt
aswSnx
aswSP
aswVmm
ATKWMIACPIIO
discache
spldr
Wanarpv6

Error: (01/21/2015 05:49:39 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby Remote Access Connection Manager, od ktorej závisí služba Internet Connection Sharing (ICS), zlyhalo kvôli nasledujúcej chybe:
%%1068

Error: (01/21/2015 05:49:39 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby Telefonovanie, od ktorej závisí služba Remote Access Connection Manager, zlyhalo kvôli nasledujúcej chybe:
%%1058

Error: (01/21/2015 05:18:06 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x80070643: Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.191.2937.0).

Error: (01/21/2015 05:17:51 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %%8604.6.0305.01.191.2930.07%%859NT AUTHORITYSYSTEMS-1-5-181%%8001%%8031.1.11302.00x80070643Počas inštalácie sa vyskytla kritická chyba. 3%%854http://www.microsoft.com

Error: (01/21/2015 05:04:54 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby Remote Access Connection Manager, od ktorej závisí služba Internet Connection Sharing (ICS), zlyhalo kvôli nasledujúcej chybe:
%%1068

Error: (01/21/2015 05:04:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby Telefonovanie, od ktorej závisí služba Remote Access Connection Manager, zlyhalo kvôli nasledujúcej chybe:
%%1058


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU B960 @ 2.20GHz
Percentage of memory in use: 48%
Total physical RAM: 2984.13 MB
Available physical RAM: 1529.21 MB
Total Pagefile: 5966.54 MB
Available Pagefile: 4355.49 MB
Total Virtual: 2047.88 MB
Available Virtual: 1910.12 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:64.16 GB) NTFS
Drive d: () (Fixed) (Total:97.66 GB) (Free:44.21 GB) NTFS
Drive e: () (Fixed) (Total:270.45 GB) (Free:25.74 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7C12E647)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=270.4 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Skúšam Avast ak nebude vyťažovať nie je o čom roky som ho využíval a bol fakt veľmi dobrý.

Funkčný je FRST označil ako vírus
Preto som pred Scanom vypol rezidenčný štít.

Niceho se nebojte... pouzivame zde jen overene utility, ktere pouzivaji i jina zahranicni bezpecnostni fora

• Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
• ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
• znovu spustte FRST a kliknete na Fix
• po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

  Kód: Vybrat vše

  Start
  CloseProcesses:
  HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
  HKLM\...\RunOnce: [20150107] => C:\Program Files\AVAST Software\Avast\setup\emupdate\b7a51ac3-7967-4c6e-ad65-e7570ef55d02.exe [183232 2015-01-21] (AVAST Software)
  
  SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-21-616477033-3631907855-1866218665-1000 -> {7ED3AD89-F15C-4149-ADB8-BC764C076A15} URL = https://search.yahoo.com/search?fr=chr- ... =201117&p={searchTerms}
  
  FF SelectedSearchEngine: Yahoo!
  FF Keyword.URL: https://search.yahoo.com/search?fr=gree ... =201117&p=
  FF Plugin: @microsoft.com/GENUINE -> disabled No File
  
  2015-01-21 18:01 - 2015-01-21 18:02 - 00016561 _____ () C:\Users\Martin\Desktop\FRST.txt
  2015-01-21 17:59 - 2015-01-21 17:59 - 00029696 _____ () C:\Users\Martin\AppData\Local\MSGBOX.EXE
  2015-01-21 17:59 - 2015-01-21 17:59 - 00015327 _____ () C:\Users\Martin\Desktop\LM.bat
  2015-01-21 17:02 - 2015-01-21 17:02 - 02186752 _____ () C:\Users\Martin\Desktop\adwcleaner_4.108.exe
  2015-01-21 12:59 - 2015-01-21 12:59 - 01107968 _____ () C:\Users\Martin\Desktop\RSIT.exe
  2015-01-21 17:04 - 2014-04-10 19:18 - 00000000 ____D () C:\AdwCleaner
  2015-01-21 12:59 - 2013-07-14 14:32 - 00000000 ____D () C:\Program Files\trend micro
  2013-07-11 18:17 - 2013-07-11 18:17 - 0004986 _____ () C:\ProgramData\bkebzjep.nkt
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
  AlternateDataStreams: C:\ProgramData\TEMP:D928C9E8
  Hosts:
  EmptyTemp:
  End
  

Jj viem že to bol falošný poplach.

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 19-01-2015
Ran by Martin at 2015-01-21 18:31:14 Run:2
Running from C:\Users\Martin\Desktop
Loaded Profiles: Martin (Available profiles: Martin)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\RunOnce: [20150107] => C:\Program Files\AVAST Software\Avast\setup\emupdate\b7a51ac3-7967-4c6e-ad65-e7570ef55d02.exe [183232 2015-01-21] (AVAST Software)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-616477033-3631907855-1866218665-1000 -> {7ED3AD89-F15C-4149-ADB8-BC764C076A15} URL = https://search.yahoo.com/search?fr=chr- ... =201117&p={searchTerms}

FF SelectedSearchEngine: Yahoo!
FF Keyword.URL: https://search.yahoo.com/search?fr=gree ... =201117&p=
FF Plugin: @microsoft.com/GENUINE -> disabled No File

2015-01-21 18:01 - 2015-01-21 18:02 - 00016561 _____ () C:\Users\Martin\Desktop\FRST.txt
2015-01-21 17:59 - 2015-01-21 17:59 - 00029696 _____ () C:\Users\Martin\AppData\Local\MSGBOX.EXE
2015-01-21 17:59 - 2015-01-21 17:59 - 00015327 _____ () C:\Users\Martin\Desktop\LM.bat
2015-01-21 17:02 - 2015-01-21 17:02 - 02186752 _____ () C:\Users\Martin\Desktop\adwcleaner_4.108.exe
2015-01-21 12:59 - 2015-01-21 12:59 - 01107968 _____ () C:\Users\Martin\Desktop\RSIT.exe
2015-01-21 17:04 - 2014-04-10 19:18 - 00000000 ____D () C:\AdwCleaner
2015-01-21 12:59 - 2013-07-14 14:32 - 00000000 ____D () C:\Program Files\trend micro
2013-07-11 18:17 - 2013-07-11 18:17 - 0004986 _____ () C:\ProgramData\bkebzjep.nkt
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\ProgramData\TEMP:D928C9E8
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\20150107 => value deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-616477033-3631907855-1866218665-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7ED3AD89-F15C-4149-ADB8-BC764C076A15}" => Key deleted successfully.
HKCR\CLSID\{7ED3AD89-F15C-4149-ADB8-BC764C076A15} => Key not found.
Firefox SelectedSearchEngine deleted successfully.
Firefox Keyword.URL deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
C:\Users\Martin\Desktop\FRST.txt => Moved successfully.
C:\Users\Martin\AppData\Local\MSGBOX.EXE => Moved successfully.
C:\Users\Martin\Desktop\LM.bat => Moved successfully.
C:\Users\Martin\Desktop\adwcleaner_4.108.exe => Moved successfully.
C:\Users\Martin\Desktop\RSIT.exe => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\ProgramData\bkebzjep.nkt => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\ProgramData\TEMP => ":D928C9E8" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 1.3 GB temporary data.


The system needed a reboot.

==== End of Fixlog 18:36:24 ====

Takze jeste uklidime.

• Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
• Oznacte jen moznost "Remove disinfection tools"
• kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

Všetko valí ako má ďakujem veľmi pekne

Nemate zac, rad jsem pomohl


Mejte se krasne a treba zase nekdy