VIRY.CZ

Dobrý den, moc prosím o kontrolu logu, můj notebook je extrémně pomalý a nejvíc se to projevuje v prohlížečích na net. Předem moc děkuji

Logfile of random's system information tool 1.09 (written by random/random)
Run by Robin at 2015-02-13 19:58:07
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 26 GB (9%) free of 288 GB
Total RAM: 1976 MB (8% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:59:25, on 13.2.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Robin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;127.0.0.1:9421;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Sticky Password - res://C:\Program Files (x86)\Sticky Password\spIEBho.dll/616
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-137 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-137 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\AESTSr64.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Manager - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
O23 - Service: Bluetooth Media Service - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\audiosrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: MobilePre Audio Device Monitor (MobilePreIIAudioDevMon) - M-Audio - C:\Program Files (x86)\M-Audio\MobilePre\AudioDevMon.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\STacSV64.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12720 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\STacSV64.exe
C:\windows\servicing\TrustedInstaller.exe
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\AESTSr64.exe
"C:\Program Files\LSI SoftModem\agr64svc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\M-Audio\MobilePre\AudioDevMon.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\windows\SysWOW64\PnkBstrA.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2228
"C:\Program Files\Motorola\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
atieclxx
"taskhost.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files\Motorola\Bluetooth\btmshell.dll",TrayApp
C:\windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Motorola\Bluetooth\audiosrv.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe" -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe" -Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe" "<hpNotification><Toast><ID>3909</ID><Title>HP Wireless Assistant</Title><Text>Zařízení WLAN : Zapnuto
Rozhraní Bluetooth(r): Zapnuto</Text><IconPath>C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\images\wireless_on.ico</IconPath><Path>C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe</Path><Parameters>SHOWSTATUS</Parameters></Toast></hpNotification>"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3744.0.1353546508\958515652" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,18,39 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x2a42 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2057 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe" mode=windowless
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/PP_Ethersuggest_A3_Stable_R8/PasswordGeneration/Disabled/QUIC/EnabledForLargePopulation/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_07/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/UwSInterstitialStatus/Off/VoiceTrigger/Install/WebRTC-IPv6Default/Disabled/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="3744.5.610964272\1623336919" /prefetch:673131151
"C:\windows\system32\wuauclt.exe"
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
"C:\Users\Robin\Searches\Downloads\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\HPCeeScheduleForRobin.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Robin\AppData\Roaming\Mozilla\Firefox\Profiles\l1gd7yx1.default

prefs.js - "browser.search.useDBForOrder" - true

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\system32\Adobe\Director\np32dsw_1167637.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.31211.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.31211.0\npctrl.dll


C:\Program Files (x86)\Mozilla Firefox\components\
nsIBitCometAgent.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
npBitCometAgent.dll

C:\Users\Robin\AppData\Roaming\Mozilla\Firefox\Profiles\l1gd7yx1.default\extensions\
staged

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Progra [2012-10-30 6527128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Progra [2012-10-30 6527128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Progra [2012-10-30 6527128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Progra [2012-10-30 6527128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Progra [2012-10-30 6527128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Progra [2012-10-30 6527128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Progra [2012-10-30 6527128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Progra [2012-10-30 6527128]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Progra [2012-10-30 6527128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Progra [2012-10-30 6527128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Progra [2012-10-30 6527128]
"SynTPEnh"=C:\Progra [2012-10-30 6527128]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2010-03-25 166424]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2010-03-25 390680]
"Persistence"=C:\windows\system32\igfxpers.exe [2010-03-25 410136]
"BTMTrayAgent"=C:\Progra [2012-10-30 6527128]
"SysTrayApp"=C:\Progra [2012-10-30 6527128]
"AdobeAAMUpdater-1.0"=C:\Progra [2012-10-30 6527128]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"=C:\Progra [2012-10-30 6527128]
"LightScribe Control Panel"=C:\Progra [2012-10-30 6527128]
"DAEMON Tools Lite"=C:\Progra [2012-10-30 6527128]
"AdobeBridge"= []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Progra [2012-10-30 6527128]
"WirelessAssistant"=C:\Progra [2012-10-30 6527128]
"Microsoft Default Manager"=C:\Progra [2012-10-30 6527128]
"avast"=C:\Progra [2012-10-30 6527128]
"APSDaemon"=C:\Progra [2012-10-30 6527128]
"SwitchBoard"=C:\Progra [2012-10-30 6527128]
"AdobeCS6ServiceManager"=C:\Progra [2012-10-30 6527128]

C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2010-01-25 268800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Progra [2012-10-30 6527128]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux1"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux2"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux3"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-02-12 04:27:23 ----A---- C:\windows\system32\ntoskrnl.exe
2015-02-12 04:27:20 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2015-02-12 04:27:18 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2015-02-12 04:27:16 ----A---- C:\windows\system32\srcore.dll
2015-02-12 04:27:16 ----A---- C:\windows\system32\rstrui.exe
2015-02-12 04:27:15 ----A---- C:\windows\SYSWOW64\srclient.dll
2015-02-12 04:27:15 ----A---- C:\windows\system32\srclient.dll
2015-02-12 04:26:01 ----A---- C:\windows\system32\mstscax.dll
2015-02-12 04:25:59 ----A---- C:\windows\SYSWOW64\mstscax.dll
2015-02-12 04:25:57 ----A---- C:\windows\SYSWOW64\aaclient.dll
2015-02-12 04:24:34 ----A---- C:\windows\system32\schannel.dll
2015-02-12 04:24:33 ----A---- C:\windows\SYSWOW64\schannel.dll
2015-02-12 04:24:33 ----A---- C:\windows\SYSWOW64\kerberos.dll
2015-02-12 04:24:32 ----A---- C:\windows\system32\kerberos.dll
2015-02-12 04:24:31 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2015-02-12 04:24:31 ----A---- C:\windows\system32\wdigest.dll
2015-02-12 04:24:31 ----A---- C:\windows\system32\msv1_0.dll
2015-02-12 04:24:30 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2015-02-12 04:24:30 ----A---- C:\windows\system32\ncrypt.dll
2015-02-12 04:24:29 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2015-02-12 04:24:29 ----A---- C:\windows\system32\TSpkg.dll
2015-02-12 04:24:28 ----A---- C:\windows\SYSWOW64\wdigest.dll
2015-02-12 04:24:27 ----A---- C:\windows\SYSWOW64\credssp.dll
2015-02-12 04:24:27 ----A---- C:\windows\system32\credssp.dll
2015-02-12 04:23:46 ----A---- C:\windows\SYSWOW64\iernonce.dll
2015-02-12 04:23:46 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2015-02-12 04:23:46 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-02-12 04:23:46 ----A---- C:\windows\system32\ieetwcollector.exe
2015-02-12 04:23:45 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2015-02-12 04:23:45 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2015-02-12 04:23:44 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2015-02-12 04:23:44 ----A---- C:\windows\system32\iernonce.dll
2015-02-12 04:23:44 ----A---- C:\windows\system32\ie4uinit.exe
2015-02-12 04:23:43 ----A---- C:\windows\SYSWOW64\urlmon.dll
2015-02-12 04:23:43 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-02-12 04:23:42 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2015-02-12 04:23:42 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2015-02-12 04:23:42 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-02-12 04:23:41 ----A---- C:\windows\SYSWOW64\mshtml.dll
2015-02-12 04:23:39 ----A---- C:\windows\SYSWOW64\iesetup.dll
2015-02-12 04:23:39 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2015-02-12 04:23:38 ----A---- C:\windows\system32\iedkcs32.dll
2015-02-12 04:23:37 ----A---- C:\windows\SYSWOW64\iertutil.dll
2015-02-12 04:23:37 ----A---- C:\windows\system32\urlmon.dll
2015-02-12 04:23:36 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2015-02-12 04:23:36 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2015-02-12 04:23:36 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2015-02-12 04:23:36 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-02-12 04:23:35 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-02-12 04:23:34 ----A---- C:\windows\SYSWOW64\ieui.dll
2015-02-12 04:23:34 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2015-02-12 04:23:34 ----A---- C:\windows\system32\msfeeds.dll
2015-02-12 04:23:34 ----A---- C:\windows\system32\dxtrans.dll
2015-02-12 04:23:33 ----A---- C:\windows\SYSWOW64\ieframe.dll
2015-02-12 04:23:32 ----A---- C:\windows\system32\iesetup.dll
2015-02-12 04:23:32 ----A---- C:\windows\system32\ieapfltr.dll
2015-02-12 04:23:30 ----A---- C:\windows\system32\iertutil.dll
2015-02-12 04:23:29 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2015-02-12 04:23:29 ----A---- C:\windows\SYSWOW64\jscript9.dll
2015-02-12 04:23:28 ----A---- C:\windows\SYSWOW64\wininet.dll
2015-02-12 04:23:28 ----A---- C:\windows\SYSWOW64\vbscript.dll
2015-02-12 04:23:28 ----A---- C:\windows\system32\jsproxy.dll
2015-02-12 04:23:27 ----A---- C:\windows\SYSWOW64\msrating.dll
2015-02-12 04:23:27 ----A---- C:\windows\system32\ieUnatt.exe
2015-02-12 04:23:25 ----A---- C:\windows\system32\ieui.dll
2015-02-12 04:23:25 ----A---- C:\windows\system32\dxtmsft.dll
2015-02-12 04:23:24 ----A---- C:\windows\system32\ieframe.dll
2015-02-12 04:23:23 ----A---- C:\windows\system32\mshtmled.dll
2015-02-12 04:23:22 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-02-12 04:23:22 ----A---- C:\windows\system32\jscript9diag.dll
2015-02-12 04:23:21 ----A---- C:\windows\system32\jscript9.dll
2015-02-12 04:23:20 ----A---- C:\windows\system32\wininet.dll
2015-02-12 04:23:20 ----A---- C:\windows\system32\vbscript.dll
2015-02-12 04:23:17 ----A---- C:\windows\system32\msrating.dll
2015-02-12 04:23:17 ----A---- C:\windows\system32\MshtmlDac.dll
2015-02-12 04:23:15 ----A---- C:\windows\system32\mshtml.dll
2015-02-12 04:22:32 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-02-12 04:22:30 ----A---- C:\windows\SYSWOW64\WindowsCodecs.dll
2015-02-12 04:22:04 ----A---- C:\windows\system32\lsasrv.dll
2015-02-12 04:22:03 ----A---- C:\windows\system32\drivers\cng.sys
2015-02-12 04:22:02 ----A---- C:\windows\SYSWOW64\adtschema.dll
2015-02-12 04:22:02 ----A---- C:\windows\system32\adtschema.dll
2015-02-12 04:22:01 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-02-12 04:22:01 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-02-12 04:21:59 ----A---- C:\windows\SYSWOW64\auditpol.exe
2015-02-12 04:21:59 ----A---- C:\windows\system32\sspicli.dll
2015-02-12 04:21:59 ----A---- C:\windows\system32\auditpol.exe
2015-02-12 04:21:58 ----A---- C:\windows\system32\sspisrv.dll
2015-02-12 04:21:58 ----A---- C:\windows\system32\secur32.dll
2015-02-12 04:21:58 ----A---- C:\windows\system32\lsass.exe
2015-02-12 04:21:57 ----A---- C:\windows\SYSWOW64\sspicli.dll
2015-02-12 04:21:57 ----A---- C:\windows\SYSWOW64\secur32.dll
2015-02-12 04:21:56 ----A---- C:\windows\SYSWOW64\msobjs.dll
2015-02-12 04:21:56 ----A---- C:\windows\system32\msobjs.dll
2015-02-12 04:21:55 ----A---- C:\windows\SYSWOW64\msaudite.dll
2015-02-12 04:21:55 ----A---- C:\windows\system32\msaudite.dll
2015-02-12 04:21:00 ----A---- C:\windows\system32\crypt32.dll
2015-02-12 04:20:58 ----A---- C:\windows\SYSWOW64\crypt32.dll
2015-02-12 04:20:16 ----A---- C:\windows\SYSWOW64\oleaut32.dll
2015-02-12 04:20:16 ----A---- C:\windows\system32\oleaut32.dll
2015-02-12 04:14:57 ----A---- C:\windows\system32\scesrv.dll
2015-02-12 04:14:53 ----A---- C:\windows\SYSWOW64\scesrv.dll
2015-02-12 04:14:28 ----A---- C:\windows\system32\win32k.sys
2015-01-15 00:14:50 ----A---- C:\windows\system32\nlasvc.dll
2015-01-15 00:14:48 ----A---- C:\windows\SYSWOW64\ncsi.dll
2015-01-15 00:14:47 ----A---- C:\windows\SYSWOW64\nlaapi.dll
2015-01-15 00:14:37 ----A---- C:\windows\system32\TSWbPrxy.exe
2015-01-15 00:14:30 ----A---- C:\windows\system32\profsvc.dll
2015-01-15 00:14:16 ----A---- C:\windows\system32\drivers\mrxdav.sys

======List of files/folders modified in the last 1 month======

2015-02-13 19:59:13 ----D---- C:\Program Files\trend micro
2015-02-13 19:50:30 ----D---- C:\windows\Temp
2015-02-13 19:45:35 ----D---- C:\windows\system32\config
2015-02-13 19:45:34 ----D---- C:\windows\winsxs
2015-02-13 19:40:46 ----D---- C:\windows\SysWOW64
2015-02-13 19:40:45 ----D---- C:\windows\system32\cs-CZ
2015-02-13 19:40:45 ----AD---- C:\windows\System32
2015-02-13 19:40:43 ----D---- C:\Program Files\Internet Explorer
2015-02-13 19:40:42 ----D---- C:\windows\SYSWOW64\en-US
2015-02-13 19:40:42 ----D---- C:\windows\SYSWOW64\cs-CZ
2015-02-13 19:40:40 ----D---- C:\windows\system32\en-US
2015-02-13 19:40:38 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-13 19:40:36 ----D---- C:\windows\system32\drivers
2015-02-13 19:35:24 ----SHD---- C:\windows\Installer
2015-02-13 19:35:20 ----D---- C:\ProgramData\Microsoft Help
2015-02-13 19:22:30 ----SHD---- C:\System Volume Information
2015-02-12 04:03:07 ----D---- C:\windows\system32\catroot2
2015-02-05 03:27:44 ----D---- C:\windows\Prefetch
2015-02-05 02:50:29 ----RD---- C:\Program Files (x86)
2015-02-05 01:46:53 ----D---- C:\windows\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-01-08 409112]
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\windows\System32\Drivers\aswrdr2.sys [2012-10-15 54072]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2012-10-30 984144]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2012-10-30 370288]
R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2012-10-30 59728]
R1 avgtp;avgtp; \??\C:\windows\system32\drivers\avgtpx64.sys [2012-11-04 30568]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-03-01 254528]
R1 TsLwWfF;WiFi Capture Driver; C:\windows\system32\DRIVERS\TsLwWfF.sys [2009-11-12 26216]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; C:\windows\system32\drivers\aswFsBlk.sys [2012-10-30 25232]
R2 aswMonFlt;aswMonFlt; \??\C:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-11-02 1209856]
R3 BTMUSB;Motorola Bluetooth Radio Service; C:\windows\System32\Drivers\btmusb.sys [2010-07-08 3232768]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-02-16 25912]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2010-01-25 7842272]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\windows\system32\drivers\IntcHdmi.sys [2010-03-15 145408]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2013-04-04 25928]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\windows\system32\DRIVERS\netr28x.sys [2010-06-29 931168]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-05-03 331880]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2010-04-27 1803904]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt64.sys [2010-01-29 505856]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-01-22 305200]
S2 rismxdp;Ricoh xD-Picture Card Driver; C:\windows\system32\DRIVERS\rixdpx64.sys [2006-11-18 55296]
S3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 BTMCOM;Bluetooth Serial Port; C:\windows\System32\Drivers\btmcom.sys [2010-04-10 52736]
S3 MAUSBMOBILEPREII;Service for M-Audio MobilePre II; C:\windows\system32\DRIVERS\MAudioMobilePreII.sys [2010-06-21 484360]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\windows\system32\DRIVERS\netaapl64.sys [2012-09-10 22528]
S3 NETw5v64;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 64 Bit; C:\windows\system32\DRIVERS\NETw5v64.sys [2010-02-01 7520256]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 USBAAPL64;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 winbondcir;Winbond IR Transceiver; C:\windows\system32\DRIVERS\winbondcir.sys [2007-03-28 46592]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\AESTSr64.exe [2009-03-03 89600]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Progra [2012-10-30 6527128]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 Apple Mobile Device;Apple Mobile Device; C:\Progra [2012-10-30 6527128]
R2 avast! Antivirus;avast! Antivirus; C:\Progra [2012-10-30 6527128]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Progra [2012-10-30 6527128]
R2 Bonjour Service;Bonjour Service; C:\Progra [2012-10-30 6527128]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Progra [2012-10-30 6527128]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Progra [2012-10-30 6527128]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Progra [2012-10-30 6527128]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Progra [2012-10-30 6527128]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Progra [2012-10-30 6527128]
R2 MBAMService;MBAMService; C:\Progra [2012-10-30 6527128]
R2 MBAMScheduler;MBAMScheduler; C:\Progra [2012-10-30 6527128]
R2 MobilePreIIAudioDevMon;MobilePre Audio Device Monitor; C:\Progra [2012-10-30 6527128]
R2 pdfcDispatcher;PDF Document Manager; C:\Progra [2012-10-30 6527128]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2012-07-04 75064]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\STacSV64.exe [2010-01-29 244736]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Progra [2012-10-30 6527128]
R3 Bluetooth Device Manager;Bluetooth Device Manager; C:\Progra [2012-10-30 6527128]
R3 Bluetooth Media Service;Bluetooth Media Service; C:\Progra [2012-10-30 6527128]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Progra [2012-10-30 6527128]
R3 hpqwmiex;HP Software Framework Service; C:\Progra [2012-10-30 6527128]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Progra [2012-10-30 6527128]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Progra [2012-10-30 6527128]
S3 gupdatem;Služba Google Update (gupdatem); C:\Progra [2012-10-30 6527128]
S3 gusvc;Google Software Updater; C:\Progra [2012-10-30 6527128]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-01-12 114688]
S3 iPod Service;iPod Service; C:\Progra [2012-10-30 6527128]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Progra [2012-10-30 6527128]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Progra [2012-10-30 6527128]
S3 odserv;Microsoft Office Diagnostics Service; C:\Progra [2012-10-30 6527128]
S3 ose;Office Source Engine; C:\Progra [2012-10-30 6527128]
S3 stllssvr;stllssvr; c:\Progra [2012-10-30 6527128]
S3 SwitchBoard;SwitchBoard; C:\Progra [2012-10-30 6527128]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-03-13 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-22 262320]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Zdravím, přes Start >> Všechny programy >> Příslušenství >> Spustit >> napiš - services.msc >> Enter. Najdi službu :

Služba Google Update (gupdate)
Služba Google Update (gupdatem)
Google Software Updater (gusvc)
LightScribeService Direct Disc Labeling Service

dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.


V Plánovači úloh zakaž Google Update bude to tam několikrát.


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.


P.S. Mbam který tam máš, našel něco ?

# AdwCleaner v4.110 - Logfile created 13/02/2015 at 21:56:12
# Updated 05/02/2015 by Xplode
# Database : 2015-02-13.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Robin - ROBIN-HP
# Running from : C:\Users\Robin\Desktop\adwcleaner_4.110.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda
File Deleted : C:\Users\Robin\AppData\Local\Temp\Uninstall.exe

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A2D81E70-2A98-4A08-A628-94388B063C5E}
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local;127.0.0.1:9421;<local>

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17631


-\\ Mozilla Firefox v34.0.5 (x86 cs)


-\\ Google Chrome v40.0.2214.111

[C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www-search.net/search.aspx?s=Unknown&q={searchTerms}

-\\ Opera v0.0.0.0

[C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www-search.net/search.aspx?s=Unknown&q={searchTerms}

*************************

AdwCleaner[R0].txt - [22641 bytes] - [17/05/2014 11:20:45]
AdwCleaner[R10].txt - [1987 bytes] - [14/10/2014 18:49:05]
AdwCleaner[R11].txt - [1988 bytes] - [14/10/2014 18:49:56]
AdwCleaner[R12].txt - [2674 bytes] - [12/11/2014 01:17:06]
AdwCleaner[R13].txt - [2566 bytes] - [17/11/2014 00:09:42]
AdwCleaner[R14].txt - [2988 bytes] - [09/01/2015 00:39:53]
AdwCleaner[R15].txt - [2675 bytes] - [09/01/2015 01:02:29]
AdwCleaner[R16].txt - [3344 bytes] - [13/02/2015 21:53:24]
AdwCleaner[R1].txt - [1319 bytes] - [17/06/2014 20:38:44]
AdwCleaner[R2].txt - [1379 bytes] - [17/06/2014 21:55:26]
AdwCleaner[R3].txt - [1279 bytes] - [17/07/2014 18:56:59]
AdwCleaner[R4].txt - [4039 bytes] - [09/08/2014 08:51:07]
AdwCleaner[R5].txt - [1687 bytes] - [14/08/2014 09:54:19]
AdwCleaner[R6].txt - [1944 bytes] - [30/08/2014 11:20:42]
AdwCleaner[R7].txt - [2109 bytes] - [12/09/2014 07:12:26]
AdwCleaner[R8].txt - [2079 bytes] - [01/10/2014 08:54:32]
AdwCleaner[R9].txt - [2053 bytes] - [06/10/2014 16:47:07]
AdwCleaner[S0].txt - [20110 bytes] - [17/05/2014 11:24:29]
AdwCleaner[S10].txt - [2750 bytes] - [12/11/2014 01:22:50]
AdwCleaner[S11].txt - [2797 bytes] - [17/11/2014 00:16:05]
AdwCleaner[S12].txt - [1219 bytes] - [09/01/2015 00:44:01]
AdwCleaner[S13].txt - [2902 bytes] - [09/01/2015 01:05:47]
AdwCleaner[S14].txt - [2875 bytes] - [13/02/2015 21:56:12]
AdwCleaner[S1].txt - [1290 bytes] - [17/06/2014 21:57:34]
AdwCleaner[S2].txt - [1301 bytes] - [17/07/2014 19:28:29]
AdwCleaner[S3].txt - [3715 bytes] - [09/08/2014 09:01:18]
AdwCleaner[S4].txt - [1800 bytes] - [14/08/2014 10:02:25]
AdwCleaner[S5].txt - [2011 bytes] - [30/08/2014 11:23:47]
AdwCleaner[S6].txt - [2036 bytes] - [12/09/2014 07:19:35]
AdwCleaner[S7].txt - [2196 bytes] - [01/10/2014 09:00:04]
AdwCleaner[S8].txt - [2116 bytes] - [06/10/2014 16:53:31]
AdwCleaner[S9].txt - [2131 bytes] - [14/10/2014 21:55:00]

########## EOF - C:\AdwCleaner\AdwCleaner[S14].txt - [3466 bytes] ##########



a ano našel nějake infekční soubory, pokusil jsem se z toho vymámit nějaký log tak snad Vám to pomůže

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 13.2.2015
Čas skenování: 21:22:44
Protokol: malware.txt
Správce: Ano

Verze: 2.00.4.1028
Databáze malwaru: v2015.02.13.06
Databáze rootkitů: v2015.02.03.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Sebeobrany: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Robin

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 387787
Uplynulý čas: 28 min, 10 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Varovat
PUM: Zapnuto

Procesy: 0
(Žádné zákerné zjištěny položek)

Moduly: 0
(Žádné zákerné zjištěny položek)

Klíče registru: 5
PUP.Optional.Tuvaro, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{7F4EFF06-7032-458e-AE16-1C1D8255C28A}, , [f604dc414b3f54e2053c996c23e0da26],
PUP.Optional.GrabRez.A, HKLM\SOFTWARE\WOW6432NODE\GrabRez, , [39c10f0e434740f6c40e2fd5ba4bdb25],
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT, , [16e4cf4eec9edc5aaf6bed0729db7888],
PUP.Optional.GrabRez.A, HKU\S-1-5-21-170101940-3079598023-1448400411-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\GrabRez, , [32c88d906f1b3cfa9b367c8855b08977],
PUP.Optional.Goobzo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Search module, , [b74345d81a701a1c789d393cc241ba46],

Hodnoty registru: 1
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT|URL, , [16e4cf4eec9edc5aaf6bed0729db7888],

Data registru: 0
(Žádné zákerné zjištěny položek)

Složky: 4
PUP.Optional.CrossRider.A, C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_kfgaibfbmkjgmimhbbaikfnpkkjkpoan_0, , [d3270b12aedcc6706ee1a3b9887b6e92],
PUP.Optional.CrossRider.A, C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kfgaibfbmkjgmimhbbaikfnpkkjkpoan, , [48b230ed7d0d9d99e37078e44ab9ee12],
PUP.Optional.Goobzo, C:\Program Files\Common Files\Goobzo, , [b74345d81a701a1c789d393cc241ba46],
PUP.Optional.Goobzo, C:\Program Files\Common Files\Goobzo\GBUpdate, , [b74345d81a701a1c789d393cc241ba46],

Soubory: 16
PUP.Optional.CrossRider.A, C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kfgaibfbmkjgmimhbbaikfnpkkjkpoan_0.localstorage, , [c436da436d1de94da3975473e81b0af6],
PUP.Optional.CrossRider.A, C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kfgaibfbmkjgmimhbbaikfnpkkjkpoan_0.localstorage-journal, , [02f878a529615ed8d961a81f5da604fc],
PUP.Optional.CrossRider.A, C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_kfgaibfbmkjgmimhbbaikfnpkkjkpoan_0\63, , [d3270b12aedcc6706ee1a3b9887b6e92],
PUP.Optional.CrossRider.A, C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kfgaibfbmkjgmimhbbaikfnpkkjkpoan\000093.ldb, , [48b230ed7d0d9d99e37078e44ab9ee12],
PUP.Optional.CrossRider.A, C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kfgaibfbmkjgmimhbbaikfnpkkjkpoan\000096.log, , [48b230ed7d0d9d99e37078e44ab9ee12],
PUP.Optional.CrossRider.A, C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kfgaibfbmkjgmimhbbaikfnpkkjkpoan\CURRENT, , [48b230ed7d0d9d99e37078e44ab9ee12],
PUP.Optional.CrossRider.A, C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kfgaibfbmkjgmimhbbaikfnpkkjkpoan\LOCK, , [48b230ed7d0d9d99e37078e44ab9ee12],
PUP.Optional.CrossRider.A, C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kfgaibfbmkjgmimhbbaikfnpkkjkpoan\LOG, , [48b230ed7d0d9d99e37078e44ab9ee12],
PUP.Optional.CrossRider.A, C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kfgaibfbmkjgmimhbbaikfnpkkjkpoan\LOG.old, , [48b230ed7d0d9d99e37078e44ab9ee12],
PUP.Optional.CrossRider.A, C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kfgaibfbmkjgmimhbbaikfnpkkjkpoan\MANIFEST-000094, , [48b230ed7d0d9d99e37078e44ab9ee12],
PUP.Optional.Goobzo, C:\Program Files\Common Files\Goobzo\GBUpdate\SBIEBrowserHelperObject.dll, , [b74345d81a701a1c789d393cc241ba46],
PUP.Optional.Goobzo, C:\Program Files\Common Files\Goobzo\GBUpdate\sma.exe, , [b74345d81a701a1c789d393cc241ba46],
PUP.Optional.Goobzo, C:\Program Files\Common Files\Goobzo\GBUpdate\smi32.exe, , [b74345d81a701a1c789d393cc241ba46],
PUP.Optional.Goobzo, C:\Program Files\Common Files\Goobzo\GBUpdate\smi64.exe, , [b74345d81a701a1c789d393cc241ba46],
PUP.Optional.Goobzo, C:\Program Files\Common Files\Goobzo\GBUpdate\smw.sys, , [b74345d81a701a1c789d393cc241ba46],
PUP.Optional.Goobzo, C:\Program Files\Common Files\Goobzo\GBUpdate\un_smw.exe, , [b74345d81a701a1c789d393cc241ba46],

Fyzické sektory: 0
(Žádné zákerné zjištěny položek)


(end)

To co Mbam našel nech smazat a pak jej odinstaluj.


Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.


V případě nejasností je ZDE obrázkový návod.

snad jsem to vse dal tak jak jsem měl

ComboFix 15-02-13.02 - Robin 15.02.2015 0:05.6.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.1976.855 [GMT 1:00]
Spuštěný z: c:\users\Robin\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-01-14 do 2015-02-14 )))))))))))))))))))))))))))))))
.
.
2015-02-14 00:09 . 2015-01-23 03:43 620032 ----a-w- c:\windows\SysWow64\jscript9diag.dll
2015-02-14 00:08 . 2015-01-23 03:17 4300800 ----a-w- c:\windows\SysWow64\jscript9.dll
2015-02-14 00:08 . 2015-01-23 04:41 6041600 ----a-w- c:\windows\system32\jscript9.dll
2015-02-14 00:08 . 2015-01-23 04:42 814080 ----a-w- c:\windows\system32\jscript9diag.dll
2015-02-13 23:46 . 2014-12-02 10:26 11870360 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{DCAA277E-AF5A-4B31-9074-E247FB56B119}\mpengine.dll
2015-02-12 03:27 . 2015-01-14 06:09 5554112 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-02-12 03:27 . 2015-01-14 05:44 3972544 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2015-02-12 03:27 . 2015-01-14 05:44 3917760 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2015-02-12 03:27 . 2015-01-14 06:05 503808 ----a-w- c:\windows\system32\srcore.dll
2015-02-12 03:27 . 2015-01-14 06:04 296960 ----a-w- c:\windows\system32\rstrui.exe
2015-02-12 03:27 . 2015-01-14 06:05 50176 ----a-w- c:\windows\system32\srclient.dll
2015-02-12 03:27 . 2015-01-14 05:41 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2015-02-12 03:26 . 2014-10-04 02:10 3722752 ----a-w- c:\windows\system32\mstscax.dll
2015-02-12 03:25 . 2014-10-04 01:42 3221504 ----a-w- c:\windows\SysWow64\mstscax.dll
2015-02-12 03:25 . 2014-10-04 01:42 131584 ----a-w- c:\windows\SysWow64\aaclient.dll
2015-02-12 03:23 . 2015-01-12 02:48 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll
2015-02-12 03:22 . 2015-01-13 03:10 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2015-02-12 03:22 . 2015-01-13 02:49 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2015-02-12 03:22 . 2015-01-15 08:09 1461760 ----a-w- c:\windows\system32\lsasrv.dll
2015-02-12 03:22 . 2015-01-15 04:22 458824 ----a-w- c:\windows\system32\drivers\cng.sys
2015-02-12 03:22 . 2015-01-15 08:04 686080 ----a-w- c:\windows\system32\adtschema.dll
2015-02-12 03:22 . 2015-01-15 07:37 686080 ----a-w- c:\windows\SysWow64\adtschema.dll
2015-02-12 03:22 . 2015-01-15 08:14 155072 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2015-02-12 03:22 . 2015-01-15 08:14 95680 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2015-02-12 03:20 . 2014-12-12 05:07 1174528 ----a-w- c:\windows\SysWow64\crypt32.dll
2015-02-12 03:20 . 2014-11-26 03:53 861696 ----a-w- c:\windows\system32\oleaut32.dll
2015-02-12 03:20 . 2014-11-26 03:32 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2015-02-12 03:14 . 2014-12-08 03:09 406528 ----a-w- c:\windows\system32\scesrv.dll
2015-02-12 03:14 . 2014-12-08 02:46 308224 ----a-w- c:\windows\SysWow64\scesrv.dll
2015-02-12 03:14 . 2015-01-09 02:03 3201536 ----a-w- c:\windows\system32\win32k.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-01-08 08:55 . 2011-04-07 09:20 298120 ------w- c:\windows\system32\MpSigStub.exe
2014-12-19 03:06 . 2015-01-14 23:14 210432 ----a-w- c:\windows\system32\profsvc.dll
2014-12-19 01:46 . 2015-01-14 23:14 141312 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2014-12-11 17:47 . 2015-01-14 23:14 52736 ----a-w- c:\windows\system32\TSWbPrxy.exe
2014-12-06 04:17 . 2015-01-14 23:14 303616 ----a-w- c:\windows\system32\nlasvc.dll
2014-12-06 03:50 . 2015-01-14 23:14 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll
2014-12-06 03:50 . 2015-01-14 23:14 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
2014-11-18 13:56 . 2014-11-18 13:56 1202848 ----a-w- c:\windows\SysWow64\FM20.DLL
2014-11-16 00:43 . 2014-11-16 00:43 6000640 ----a-w- c:\program files (x86)\GUT326E.tmp
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-02-10 1712184]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-01-22 2363392]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"="c:\program files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2010-03-01 256056]
"WirelessAssistant"="c:\program files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-09-01 499768]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2010-05-10 439568]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
.
c:\users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files (x86)\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2009-2-26 97680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MMCSS;Služba Plánovač multimédií;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R2 rismxdp;Ricoh xD-Picture Card Driver;c:\windows\system32\DRIVERS\rixdpx64.sys;c:\windows\SYSNATIVE\DRIVERS\rixdpx64.sys [x]
R2 sppsvc;Ochrana softwaru;c:\windows\system32\sppsvc.exe;c:\windows\SYSNATIVE\sppsvc.exe [x]
R3 1394ohci;Hostitelský řadič pro rozhraní OHCI standardu 1394;c:\windows\system32\drivers\1394ohci.sys;c:\windows\SYSNATIVE\drivers\1394ohci.sys [x]
R3 AcpiPmi;Ovladač měřiče napájení standardu ACPI;c:\windows\system32\drivers\acpipmi.sys;c:\windows\SYSNATIVE\drivers\acpipmi.sys [x]
R3 adp94xx;adp94xx;c:\windows\system32\DRIVERS\adp94xx.sys;c:\windows\SYSNATIVE\DRIVERS\adp94xx.sys [x]
R3 adpahci;adpahci;c:\windows\system32\DRIVERS\adpahci.sys;c:\windows\SYSNATIVE\DRIVERS\adpahci.sys [x]
R3 amdsata;amdsata;c:\windows\system32\drivers\amdsata.sys;c:\windows\SYSNATIVE\drivers\amdsata.sys [x]
R3 amdsbs;amdsbs;c:\windows\system32\DRIVERS\amdsbs.sys;c:\windows\SYSNATIVE\DRIVERS\amdsbs.sys [x]
R3 AppID;Ovladač AppID;c:\windows\system32\drivers\appid.sys;c:\windows\SYSNATIVE\drivers\appid.sys [x]
R3 AppIDSvc;Identita aplikace;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 arcsas;arcsas;c:\windows\system32\DRIVERS\arcsas.sys;c:\windows\SYSNATIVE\DRIVERS\arcsas.sys [x]
R3 atikmdag;atikmdag;c:\windows\system32\DRIVERS\atikmdag.sys;c:\windows\SYSNATIVE\DRIVERS\atikmdag.sys [x]
R3 b06bdrv;Broadcom NetXtreme II VBD;c:\windows\system32\DRIVERS\bxvbda.sys;c:\windows\SYSNATIVE\DRIVERS\bxvbda.sys [x]
R3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\b57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\b57nd60a.sys [x]
R3 BDESVC;Služba BitLocker Drive Encryption;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver;c:\windows\system32\DRIVERS\BrFiltLo.sys;c:\windows\SYSNATIVE\DRIVERS\BrFiltLo.sys [x]
R3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver;c:\windows\system32\DRIVERS\BrFiltUp.sys;c:\windows\SYSNATIVE\DRIVERS\BrFiltUp.sys [x]
R3 Brserid;Brother MFC Serial Port Interface Driver (WDM);c:\windows\System32\Drivers\Brserid.sys;c:\windows\SYSNATIVE\Drivers\Brserid.sys [x]
R3 BrSerWdm;Brother WDM Serial driver;c:\windows\System32\Drivers\BrSerWdm.sys;c:\windows\SYSNATIVE\Drivers\BrSerWdm.sys [x]
R3 BrUsbMdm;Brother MFC USB Fax Only Modem;c:\windows\System32\Drivers\BrUsbMdm.sys;c:\windows\SYSNATIVE\Drivers\BrUsbMdm.sys [x]
R3 BrUsbSer;Brother MFC USB Serial WDM Driver;c:\windows\System32\Drivers\BrUsbSer.sys;c:\windows\SYSNATIVE\Drivers\BrUsbSer.sys [x]
R3 BthEnum;Ovladač pro Bluetooth Request Block;c:\windows\system32\drivers\BthEnum.sys;c:\windows\SYSNATIVE\drivers\BthEnum.sys [x]
R3 BthPan;Bluetooth Device (Personal Area Network);c:\windows\system32\DRIVERS\bthpan.sys;c:\windows\SYSNATIVE\DRIVERS\bthpan.sys [x]
R3 BTHPORT;Ovladač portu Bluetooth;c:\windows\System32\Drivers\BTHport.sys;c:\windows\SYSNATIVE\Drivers\BTHport.sys [x]
R3 bthserv;Služba pro podporu technologie Bluetooth;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth;c:\windows\System32\Drivers\BTHUSB.sys;c:\windows\SYSNATIVE\Drivers\BTHUSB.sys [x]
R3 BTMCOM;Bluetooth Serial Port;c:\windows\system32\Drivers\btmcom.sys;c:\windows\SYSNATIVE\Drivers\btmcom.sys [x]
R3 CertPropSvc;Šíření certifikátů;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 defragsvc;Defragmentace disku;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 ebdrv;Broadcom NetXtreme II 10 GigE VBD;c:\windows\system32\DRIVERS\evbda.sys;c:\windows\SYSNATIVE\DRIVERS\evbda.sys [x]
R3 EFS;Systém souborů EFS (Encrypting File System);c:\windows\System32\lsass.exe;c:\windows\SYSNATIVE\lsass.exe [x]
R3 ehRecvr;Služba přijímače aplikace Windows Media Center;c:\windows\ehome\ehRecvr.exe;c:\windows\ehome\ehRecvr.exe [x]
R3 ehSched;Služba plánování aplikace Windows Media Center;c:\windows\ehome\ehsched.exe;c:\windows\ehome\ehsched.exe [x]
R3 elxstor;elxstor;c:\windows\system32\DRIVERS\elxstor.sys;c:\windows\SYSNATIVE\DRIVERS\elxstor.sys [x]
R3 ErrDev;Ovladače chybového zařízení hardwaru Microsoft;c:\windows\system32\drivers\errdev.sys;c:\windows\SYSNATIVE\drivers\errdev.sys [x]
R3 Fax;Fax;c:\windows\system32\fxssvc.exe;c:\windows\SYSNATIVE\fxssvc.exe [x]
R3 Filetrace;Filetrace;c:\windows\system32\drivers\filetrace.sys;c:\windows\SYSNATIVE\drivers\filetrace.sys [x]
R3 FLEXnet Licensing Service;FLEXnet Licensing Service;c:\program files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe;c:\program files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [x]
R3 FsDepends;File System Dependency Minifilter;c:\windows\system32\drivers\FsDepends.sys;c:\windows\SYSNATIVE\drivers\FsDepends.sys [x]
R3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms;c:\windows\system32\DRIVERS\gagp30kx.sys;c:\windows\SYSNATIVE\DRIVERS\gagp30kx.sys [x]
R3 hcw85cir;Hauppauge Consumer Infrared Receiver;c:\windows\system32\drivers\hcw85cir.sys;c:\windows\SYSNATIVE\drivers\hcw85cir.sys [x]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio;c:\windows\system32\drivers\HdAudio.sys;c:\windows\SYSNATIVE\drivers\HdAudio.sys [x]
R3 HidBth;Microsoft Bluetooth HID Miniport;c:\windows\system32\DRIVERS\hidbth.sys;c:\windows\SYSNATIVE\DRIVERS\hidbth.sys [x]
R3 HidIr;Ovladač infračerveného portu HID Microsoft;c:\windows\system32\DRIVERS\hidir.sys;c:\windows\SYSNATIVE\DRIVERS\hidir.sys [x]
R3 HpSAMD;HpSAMD;c:\windows\system32\drivers\HpSAMD.sys;c:\windows\SYSNATIVE\drivers\HpSAMD.sys [x]
R3 iaStorV;Řadič Intel diskového pole RAID – Windows 7;c:\windows\system32\drivers\iaStorV.sys;c:\windows\SYSNATIVE\drivers\iaStorV.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 IPBusEnum;Rozpoznávací modul sběrnice PnP-X IP;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 IPMIDRV;IPMIDRV;c:\windows\system32\drivers\IPMIDrv.sys;c:\windows\SYSNATIVE\drivers\IPMIDrv.sys [x]
R3 iScsiPrt;Ovladač iScsiPort;c:\windows\system32\drivers\msiscsi.sys;c:\windows\SYSNATIVE\drivers\msiscsi.sys [x]
R3 KtmRm;Služba KTMRM pro koordinátor DTC;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 lltdsvc;Mapovač zjišťování topologie linkové vrstvy;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 LSI_FC;LSI_FC;c:\windows\system32\DRIVERS\lsi_fc.sys;c:\windows\SYSNATIVE\DRIVERS\lsi_fc.sys [x]
R3 LSI_SAS;LSI_SAS;c:\windows\system32\DRIVERS\lsi_sas.sys;c:\windows\SYSNATIVE\DRIVERS\lsi_sas.sys [x]
R3 LSI_SAS2;LSI_SAS2;c:\windows\system32\DRIVERS\lsi_sas2.sys;c:\windows\SYSNATIVE\DRIVERS\lsi_sas2.sys [x]
R3 LSI_SCSI;LSI_SCSI;c:\windows\system32\DRIVERS\lsi_scsi.sys;c:\windows\SYSNATIVE\DRIVERS\lsi_scsi.sys [x]
R3 MarvinBus;Pinnacle Marvin Bus 64;c:\windows\system32\DRIVERS\MarvinBus64.sys;c:\windows\SYSNATIVE\DRIVERS\MarvinBus64.sys [x]
R3 MAUSBMOBILEPREII;Service for M-Audio MobilePre II;c:\windows\system32\DRIVERS\MAudioMobilePreII.sys;c:\windows\SYSNATIVE\DRIVERS\MAudioMobilePreII.sys [x]
R3 megasas;megasas;c:\windows\system32\DRIVERS\megasas.sys;c:\windows\SYSNATIVE\DRIVERS\megasas.sys [x]
R3 MegaSR;MegaSR;c:\windows\system32\DRIVERS\MegaSR.sys;c:\windows\SYSNATIVE\DRIVERS\MegaSR.sys [x]
R3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service;c:\program files (x86)\Microsoft Office\Office12\GrooveAuditService.exe;c:\program files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 mpio;Ovladač sběrnice Microsoft Multi-Path;c:\windows\system32\drivers\mpio.sys;c:\windows\SYSNATIVE\drivers\mpio.sys [x]
R3 msahci;msahci;c:\windows\system32\drivers\msahci.sys;c:\windows\SYSNATIVE\drivers\msahci.sys [x]
R3 msdsm;Specifický modul zařízení Microsoft Multi-Path;c:\windows\system32\drivers\msdsm.sys;c:\windows\SYSNATIVE\drivers\msdsm.sys [x]
R3 mshidkmdf;Pass-through HID to KMDF Filter Driver;c:\windows\System32\drivers\mshidkmdf.sys;c:\windows\SYSNATIVE\drivers\mshidkmdf.sys [x]
R3 MSiSCSI;Služba iniciátoru iSCSI společnosti Microsoft;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 MsRPC;MsRPC; [x]
R3 MTConfig;Microsoft Input Configuration Driver;c:\windows\system32\DRIVERS\MTConfig.sys;c:\windows\SYSNATIVE\DRIVERS\MTConfig.sys [x]
R3 NdisCap;NDIS Capture LightWeight Filter;c:\windows\system32\DRIVERS\ndiscap.sys;c:\windows\SYSNATIVE\DRIVERS\ndiscap.sys [x]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys;c:\windows\SYSNATIVE\DRIVERS\netaapl64.sys [x]
R3 NETw5v64;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 64 Bit;c:\windows\system32\DRIVERS\NETw5v64.sys;c:\windows\SYSNATIVE\DRIVERS\NETw5v64.sys [x]
R3 nfrd960;nfrd960;c:\windows\system32\DRIVERS\nfrd960.sys;c:\windows\SYSNATIVE\DRIVERS\nfrd960.sys [x]
R3 nvstor;nvstor;c:\windows\system32\drivers\nvstor.sys;c:\windows\SYSNATIVE\drivers\nvstor.sys [x]
R3 odserv;Microsoft Office Diagnostics Service;c:\program files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE;c:\program files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [x]
R3 PerfHost;Hostitel knihoven DLL čítačů výkonu;c:\windows\SysWow64\perfhost.exe;c:\windows\SysWow64\perfhost.exe [x]
R3 pla;Výstrahy a protokolování výkonu;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 PNRPAutoReg;Služba publikování názvu počítače pomocí protokolu PNRP;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 ql2300;ql2300;c:\windows\system32\DRIVERS\ql2300.sys;c:\windows\SYSNATIVE\DRIVERS\ql2300.sys [x]
R3 ql40xx;ql40xx;c:\windows\system32\DRIVERS\ql40xx.sys;c:\windows\SYSNATIVE\DRIVERS\ql40xx.sys [x]
R3 QWAVE;Sada qWave (Quality Windows Audio Video Experience);c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 QWAVEdrv;Ovladač QWAVE;c:\windows\system32\drivers\qwavedrv.sys;c:\windows\SYSNATIVE\drivers\qwavedrv.sys [x]
R3 rdpbus;Remote Desktop Device Redirector Bus Driver;c:\windows\system32\DRIVERS\rdpbus.sys;c:\windows\SYSNATIVE\DRIVERS\rdpbus.sys [x]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI);c:\windows\system32\DRIVERS\rfcomm.sys;c:\windows\SYSNATIVE\DRIVERS\rfcomm.sys [x]
R3 sbp2port;Ovladač sběrnice pro přenos dat zařízení podporujícího protokol SBP-2;c:\windows\system32\drivers\sbp2port.sys;c:\windows\SYSNATIVE\drivers\sbp2port.sys [x]
R3 scfilter;Ovladač filtru čipových karet třídy PnP;c:\windows\system32\DRIVERS\scfilter.sys;c:\windows\SYSNATIVE\DRIVERS\scfilter.sys [x]
R3 SCPolicySvc;Zásady odebrání čipové karty;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 sdbus;sdbus;c:\windows\system32\drivers\sdbus.sys;c:\windows\SYSNATIVE\drivers\sdbus.sys [x]
R3 SDRSVC;Windows Zálohování;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 SensrSvc;Adaptivní jas;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 sermouse;Serial Mouse Driver;c:\windows\system32\DRIVERS\sermouse.sys;c:\windows\SYSNATIVE\DRIVERS\sermouse.sys [x]
R3 SessionEnv;Konfigurace vzdálené plochy;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 sffdisk;Ovladač třídy úložiště SFF;c:\windows\system32\drivers\sffdisk.sys;c:\windows\SYSNATIVE\drivers\sffdisk.sys [x]
R3 sffp_mmc;Ovladač protokolu úložiště SFF pro konzolu MMC;c:\windows\system32\drivers\sffp_mmc.sys;c:\windows\SYSNATIVE\drivers\sffp_mmc.sys [x]
R3 sffp_sd;Ovladač protokolu úložiště SFF pro paměť sběrnici SDBus;c:\windows\system32\drivers\sffp_sd.sys;c:\windows\SYSNATIVE\drivers\sffp_sd.sys [x]
R3 SiSRaid2;SiSRaid2;c:\windows\system32\DRIVERS\SiSRaid2.sys;c:\windows\SYSNATIVE\DRIVERS\SiSRaid2.sys [x]
R3 SiSRaid4;SiSRaid4;c:\windows\system32\DRIVERS\sisraid4.sys;c:\windows\SYSNATIVE\DRIVERS\sisraid4.sys [x]
R3 Smb;Protokol TCP/IP a TCP/IPv6 orientovaný na zprávy (relace SMB);c:\windows\system32\DRIVERS\smb.sys;c:\windows\SYSNATIVE\DRIVERS\smb.sys [x]
R3 SNMPTRAP;Zachytávání pro službu SNMP;c:\windows\System32\snmptrap.exe;c:\windows\SYSNATIVE\snmptrap.exe [x]
R3 sppuinotify;Služba Oznámení platformy SPP;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 stexstor;stexstor;c:\windows\system32\DRIVERS\stexstor.sys;c:\windows\SYSNATIVE\DRIVERS\stexstor.sys [x]
R3 stllssvr;stllssvr;c:\program files (x86)\Common Files\SureThing Shared\stllssvr.exe;c:\program files (x86)\Common Files\SureThing Shared\stllssvr.exe [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TabletInputService;Služba Vstupní panel počítače Tablet PC;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 TBS;Služba TPM Base Services;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 TCPIP6;Microsoft IPv6 Protocol Driver;c:\windows\system32\DRIVERS\tcpip.sys;c:\windows\SYSNATIVE\DRIVERS\tcpip.sys [x]
R3 THREADORDER;Server pro řazení podprocesů;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 TPM;TPM;c:\windows\system32\drivers\tpm.sys;c:\windows\SYSNATIVE\drivers\tpm.sys [x]
R3 TrustedInstaller;Instalační služba modulů systému Windows;c:\windows\servicing\TrustedInstaller.exe;c:\windows\servicing\TrustedInstaller.exe [x]
R3 tssecsrv;Remote Desktop Services Security Filter Driver;c:\windows\system32\DRIVERS\tssecsrv.sys;c:\windows\SYSNATIVE\DRIVERS\tssecsrv.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 uagp35;Microsoft AGPv3.5 Filter;c:\windows\system32\DRIVERS\uagp35.sys;c:\windows\SYSNATIVE\DRIVERS\uagp35.sys [x]
R3 UI0Detect;Zjišťování interaktivních služeb;c:\windows\system32\UI0Detect.exe;c:\windows\SYSNATIVE\UI0Detect.exe [x]
R3 uliagpkx;Filtr sběrnice Uli AGP;c:\windows\system32\drivers\uliagpkx.sys;c:\windows\SYSNATIVE\drivers\uliagpkx.sys [x]
R3 UmPass;Microsoft UMPass Driver;c:\windows\system32\DRIVERS\umpass.sys;c:\windows\SYSNATIVE\DRIVERS\umpass.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 usbcir;Infračervený přijímač eHome (USBCIR);c:\windows\system32\drivers\usbcir.sys;c:\windows\SYSNATIVE\drivers\usbcir.sys [x]
R3 usbvideo;Zobrazovací zařízení USB (WDM);c:\windows\System32\Drivers\usbvideo.sys;c:\windows\SYSNATIVE\Drivers\usbvideo.sys [x]
R3 VaultSvc;Správce pověření;c:\windows\system32\lsass.exe;c:\windows\SYSNATIVE\lsass.exe [x]
R3 vhdmp;vhdmp;c:\windows\system32\drivers\vhdmp.sys;c:\windows\SYSNATIVE\drivers\vhdmp.sys [x]
R3 vsmraid;vsmraid;c:\windows\system32\DRIVERS\vsmraid.sys;c:\windows\SYSNATIVE\DRIVERS\vsmraid.sys [x]
R3 WacomPen;Wacom Serial Pen HID Driver;c:\windows\system32\DRIVERS\wacompen.sys;c:\windows\SYSNATIVE\DRIVERS\wacompen.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 wbengine;Služba jádra pro zálohování dat na úrovni bloků;c:\windows\system32\wbengine.exe;c:\windows\SYSNATIVE\wbengine.exe [x]
R3 WbioSrvc;Biometrická služba systému Windows;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 wcncsvc;Technologie Windows Connect Now – Registrátor konfigurací;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 WcsPlugInService;Systém barev systému Windows;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 Wd;Wd;c:\windows\system32\DRIVERS\wd.sys;c:\windows\SYSNATIVE\DRIVERS\wd.sys [x]
R3 WdiSystemHost;Hostitel diagnostického systému;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 Wecsvc;Sběr událostí systému Windows;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 wercplsupport;Podpora ovládacího panelu Oznámení a řešení problémů;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 WerSvc;Služba Zasílání zpráv o chybách systému Windows;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 WIMMount;WIMMount;c:\windows\system32\drivers\wimmount.sys;c:\windows\SYSNATIVE\drivers\wimmount.sys [x]
R3 winbondcir;Winbond IR Transceiver;c:\windows\system32\DRIVERS\winbondcir.sys;c:\windows\SYSNATIVE\DRIVERS\winbondcir.sys [x]
R3 WinRM;Vzdálená správa systému Windows (WS-Management);c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 WinUsb;WinUsb;c:\windows\system32\DRIVERS\WinUsb.sys;c:\windows\SYSNATIVE\DRIVERS\WinUsb.sys [x]
R3 WPCSvc;Parental Controls;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 WPDBusEnum;Služba Výčet přenosných zařízení;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 WwanSvc;Automatická konfigurace sítě WWAN;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [x]
R4 gupdate;Služba Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe [x]
R4 gupdatem;Služba Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe [x]
R4 Mcx2Svc;Služba zařízení Media Center Extender;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R4 NetMsmqActivator;Adaptér naslouchání Net.Msmq;c:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [x]
R4 NetPipeActivator;Adaptér naslouchání Net.Pipe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [x]
R4 NetTcpActivator;Adaptér naslouchání Net.Tcp;c:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [x]
S0 amdxata;amdxata;c:\windows\system32\drivers\amdxata.sys;c:\windows\SYSNATIVE\drivers\amdxata.sys [x]
S0 CLFS;Systém souborů CLFS;c:\windows\System32\CLFS.sys;c:\windows\SYSNATIVE\CLFS.sys [x]
S0 CNG;CNG;c:\windows\System32\Drivers\cng.sys;c:\windows\SYSNATIVE\Drivers\cng.sys [x]
S0 FileInfo;File Information FS MiniFilter;c:\windows\system32\drivers\fileinfo.sys;c:\windows\SYSNATIVE\drivers\fileinfo.sys [x]
S0 fvevol;Ovladač filtru nástroje Bitlocker Drive Encryption;c:\windows\System32\DRIVERS\fvevol.sys;c:\windows\SYSNATIVE\DRIVERS\fvevol.sys [x]
S0 hwpolicy;Hardware Policy Driver;c:\windows\System32\drivers\hwpolicy.sys;c:\windows\SYSNATIVE\drivers\hwpolicy.sys [x]
S0 KSecPkg;KSecPkg;c:\windows\System32\Drivers\ksecpkg.sys;c:\windows\SYSNATIVE\Drivers\ksecpkg.sys [x]
S0 msisadrv;msisadrv;c:\windows\system32\drivers\msisadrv.sys;c:\windows\SYSNATIVE\drivers\msisadrv.sys [x]
S0 pcw;Performance Counters for Windows Driver;c:\windows\System32\drivers\pcw.sys;c:\windows\SYSNATIVE\drivers\pcw.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S0 rdyboost;ReadyBoost;c:\windows\System32\drivers\rdyboost.sys;c:\windows\SYSNATIVE\drivers\rdyboost.sys [x]
S0 spldr;Security Processor Loader Driver; [x]
S0 vdrvroot;Ovladač rozpoznávacího modulu virtuální jednotky společnosti Microsoft;c:\windows\system32\drivers\vdrvroot.sys;c:\windows\SYSNATIVE\drivers\vdrvroot.sys [x]
S0 volmgr;Ovladač správce svazků;c:\windows\system32\drivers\volmgr.sys;c:\windows\SYSNATIVE\drivers\volmgr.sys [x]
S0 volmgrx;Správce dynamických svazků;c:\windows\System32\drivers\volmgrx.sys;c:\windows\SYSNATIVE\drivers\volmgrx.sys [x]
S0 Wdf01000;Služba Architektura ovladačů v režimu jádra;c:\windows\system32\drivers\Wdf01000.sys;c:\windows\SYSNATIVE\drivers\Wdf01000.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys;c:\windows\SYSNATIVE\drivers\avgtpx64.sys [x]
S1 blbdrive;blbdrive;c:\windows\system32\DRIVERS\blbdrive.sys;c:\windows\SYSNATIVE\DRIVERS\blbdrive.sys [x]
S1 DfsC;DFS Namespace Client Driver;c:\windows\system32\Drivers\dfsc.sys;c:\windows\SYSNATIVE\Drivers\dfsc.sys [x]
S1 discache;System Attribute Cache;c:\windows\system32\drivers\discache.sys;c:\windows\SYSNATIVE\drivers\discache.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 nsiproxy;NSI proxy service driver.;c:\windows\system32\drivers\nsiproxy.sys;c:\windows\SYSNATIVE\drivers\nsiproxy.sys [x]
S1 RDPENCDD;RDP Encoder Mirror Driver;c:\windows\system32\drivers\rdpencdd.sys;c:\windows\SYSNATIVE\drivers\rdpencdd.sys [x]
S1 RDPREFMP;Reflector Display Driver used to gain access to graphics data;c:\windows\system32\drivers\rdprefmp.sys;c:\windows\SYSNATIVE\drivers\rdprefmp.sys [x]
S1 tdx;Ovladač pro podporu zastaralého rozhraní TDI NetIO;c:\windows\system32\DRIVERS\tdx.sys;c:\windows\SYSNATIVE\DRIVERS\tdx.sys [x]
S1 TsLwWfF;WiFi Capture Driver;c:\windows\system32\DRIVERS\TsLwWfF.sys;c:\windows\SYSNATIVE\DRIVERS\TsLwWfF.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys;c:\windows\SYSNATIVE\DRIVERS\vwififlt.sys [x]
S1 Wanarpv6;Ovladač pro vzdálený přístup IPv6 ARP;c:\windows\system32\DRIVERS\wanarp.sys;c:\windows\SYSNATIVE\DRIVERS\wanarp.sys [x]
S1 WfpLwf;WFP Lightweight Filter;c:\windows\system32\DRIVERS\wfplwf.sys;c:\windows\SYSNATIVE\DRIVERS\wfplwf.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\AESTSr64.exe;c:\windows\SYSNATIVE\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\AESTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 Apple Mobile Device;Apple Mobile Device;c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe;c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 AudioEndpointBuilder;Koncové vytváření služby Windows Audio;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 BFE;Služba BFE (Base Filtering Engine);c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files\Motorola\Bluetooth\obexsrv.exe;c:\program files\Motorola\Bluetooth\obexsrv.exe [x]
S2 DPS;Služba DPS (Diagnostic Policy Service);c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 FDResPub;Publikování prostředků rozpoznávání funkcí;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 FontCache;Mezipaměť písem Windows;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 gpsvc;Klient zásad skupiny;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [x]
S2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe;c:\program files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [x]
S2 IAANTMON;Intel(R) Matrix Storage Event Monitor;c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe;c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [x]
S2 IKEEXT;Služba IKE and AuthIP IPsec Keying Modules;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 iphlpsvc;Pomocná služba protokolu IP;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver;c:\windows\system32\DRIVERS\lltdio.sys;c:\windows\SYSNATIVE\DRIVERS\lltdio.sys [x]
S2 luafv;Virtualizace souborů nástroje Řízení uživatelských účtů;c:\windows\system32\drivers\luafv.sys;c:\windows\SYSNATIVE\drivers\luafv.sys [x]
S2 MobilePreIIAudioDevMon;MobilePre Audio Device Monitor;c:\program files (x86)\M-Audio\MobilePre\AudioDevMon.exe;c:\program files (x86)\M-Audio\MobilePre\AudioDevMon.exe [x]
S2 MpsSvc;Brána Windows Firewall;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 NlaSvc;Sledování umístění v síti (NLA);c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 nsi;Služba rozhraní síťového úložiště;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 PcaSvc;Program Compatibility Assistant Service;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
S2 PEAUTH;PEAUTH;c:\windows\system32\drivers\peauth.sys;c:\windows\SYSNATIVE\drivers\peauth.sys [x]
S2 PnkBstrA;PnkBstrA;c:\windows\system32\PnkBstrA.exe;c:\windows\SYSNATIVE\PnkBstrA.exe [x]
S2 Power;Napájení;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 ProfSvc;Služba Profil uživatele;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 RpcEptMapper;Mapovač koncových bodů protokolu RPC;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 rspndr;Link-Layer Topology Discovery Responder;c:\windows\system32\DRIVERS\rspndr.sys;c:\windows\SYSNATIVE\DRIVERS\rspndr.sys [x]
S2 STacSV;Audio Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\STacSV64.exe;c:\windows\SYSNATIVE\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\STacSV64.exe [x]
S2 SysMain;Superfetch;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 tcpipreg;TCP/IP Registry Compatibility;c:\windows\system32\drivers\tcpipreg.sys;c:\windows\SYSNATIVE\drivers\tcpipreg.sys [x]
S2 UxSms;Správce relací správce oken plochy;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 WinDefend;Windows Defender;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 Wlansvc;Automatická konfigurace sítě WLAN;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 wlidsvc;Windows Live ID Sign-in Assistant;c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE;c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [x]
S2 WSearch;Windows Search;c:\windows\system32\SearchIndexer.exe;c:\windows\SYSNATIVE\SearchIndexer.exe [x]
S3 Appinfo;Informace o aplikaci;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S3 Bluetooth Device Manager;Bluetooth Device Manager;c:\program files\Motorola\Bluetooth\devmgrsrv.exe;c:\program files\Motorola\Bluetooth\devmgrsrv.exe [x]
S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files\Motorola\Bluetooth\audiosrv.exe;c:\program files\Motorola\Bluetooth\audiosrv.exe [x]
S3 bowser;Ovladač podpory prohlížeče;c:\windows\system32\DRIVERS\bowser.sys;c:\windows\SYSNATIVE\DRIVERS\bowser.sys [x]
S3 BTMUSB;Motorola Bluetooth Radio Service;c:\windows\system32\Drivers\btmusb.sys;c:\windows\SYSNATIVE\Drivers\btmusb.sys [x]
S3 circlass;Uživatelská infračervená zařízení;c:\windows\system32\DRIVERS\circlass.sys;c:\windows\SYSNATIVE\DRIVERS\circlass.sys [x]
S3 CompositeBus;Ovladač rozpoznávacího modulu složené sběrnice;c:\windows\system32\drivers\CompositeBus.sys;c:\windows\SYSNATIVE\drivers\CompositeBus.sys [x]
S3 DXGKrnl;LDDM Graphics Subsystem;c:\windows\System32\drivers\dxgkrnl.sys;c:\windows\SYSNATIVE\drivers\dxgkrnl.sys [x]
S3 fdPHost;Hostitel poskytovatele rozpoznávání funkce;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
S3 HomeGroupListener;Naslouchací proces domácí skupiny;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S3 HomeGroupProvider;Zprostředkovatel domácích skupin;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S3 HpqKbFiltr;HpqKbFilter Driver;c:\windows\system32\DRIVERS\HpqKbFiltr.sys;c:\windows\SYSNATIVE\DRIVERS\HpqKbFiltr.sys [x]
S3 hpqwmiex;HP Software Framework Service;c:\program files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe;c:\program files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [x]
S3 igfx;igfx;c:\windows\system32\DRIVERS\igdkmd64.sys;c:\windows\SYSNATIVE\DRIVERS\igdkmd64.sys [x]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys;c:\windows\SYSNATIVE\drivers\IntcHdmi.sys [x]
S3 KeyIso;Izolace klíče CNG;c:\windows\system32\lsass.exe;c:\windows\SYSNATIVE\lsass.exe [x]
S3 monitor;Služba ovladače funkce třídy monitorů Microsoft;c:\windows\system32\DRIVERS\monitor.sys;c:\windows\SYSNATIVE\DRIVERS\monitor.sys [x]
S3 mpsdrv;Ovladač ověření brány Windows Firewall;c:\windows\system32\drivers\mpsdrv.sys;c:\windows\SYSNATIVE\drivers\mpsdrv.sys [x]
S3 mrxsmb10;Mini-přesměrovač SMB 1.x;c:\windows\system32\DRIVERS\mrxsmb10.sys;c:\windows\SYSNATIVE\DRIVERS\mrxsmb10.sys [x]
S3 mrxsmb20;Mini-přesměrovač SMB 2.0;c:\windows\system32\DRIVERS\mrxsmb20.sys;c:\windows\SYSNATIVE\DRIVERS\mrxsmb20.sys [x]
S3 NativeWifiP;NativeWiFi Filter;c:\windows\system32\DRIVERS\nwifi.sys;c:\windows\SYSNATIVE\DRIVERS\nwifi.sys [x]
S3 netprofm;Služba seznamu sítí;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
S3 p2pimsvc;Správce identit sítě rovnocenných počítačů;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S3 p2psvc;Seskupování v sítích peer-to-peer;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S3 PNRPsvc;Protokol PNRP (Peer Name Resolution Protocol);c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S3 RasAgileVpn;WAN Miniport (IKEv2);c:\windows\system32\DRIVERS\AgileVpn.sys;c:\windows\SYSNATIVE\DRIVERS\AgileVpn.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 SNP2UVC;USB2.0 PC Camera (SNP2UVC);c:\windows\system32\DRIVERS\snp2uvc.sys;c:\windows\SYSNATIVE\DRIVERS\snp2uvc.sys [x]
S3 srv2;Ovladač pro server SMB 2.xxx;c:\windows\system32\DRIVERS\srv2.sys;c:\windows\SYSNATIVE\DRIVERS\srv2.sys [x]
S3 srvnet;srvnet;c:\windows\system32\DRIVERS\srvnet.sys;c:\windows\SYSNATIVE\DRIVERS\srvnet.sys [x]
S3 STHDA;IDT High Definition Audio CODEC;c:\windows\system32\DRIVERS\stwrt64.sys;c:\windows\SYSNATIVE\DRIVERS\stwrt64.sys [x]
S3 SynTP;Synaptics TouchPad Driver;c:\windows\system32\DRIVERS\SynTP.sys;c:\windows\SYSNATIVE\DRIVERS\SynTP.sys [x]
S3 tunnel;Microsoft Tunnel Miniport Adapter Driver;c:\windows\system32\DRIVERS\tunnel.sys;c:\windows\SYSNATIVE\DRIVERS\tunnel.sys [x]
S3 umbus;Ovladač sběrnice UMBus Enumerator;c:\windows\system32\drivers\umbus.sys;c:\windows\SYSNATIVE\drivers\umbus.sys [x]
S3 vwifibus;Virtual WiFi Bus Driver;c:\windows\system32\DRIVERS\vwifibus.sys;c:\windows\SYSNATIVE\DRIVERS\vwifibus.sys [x]
S3 WdiServiceHost;Hostitel diagnostické služby;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S3 WmiAcpi;Microsoft Windows Management Interface for ACPI;c:\windows\system32\drivers\wmiacpi.sys;c:\windows\SYSNATIVE\drivers\wmiacpi.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-01-22 18:06 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-02-07 03:53 1086280 ----a-w- c:\program files (x86)\Google\Chrome\Application\40.0.2214.111\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-02-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-14 09:10]
.
2015-02-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-09-24 06:54]
.
2015-02-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-09-24 06:54]
.
2015-02-12 c:\windows\Tasks\HPCeeScheduleForRobin.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 10:53]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2010-01-08 186904]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-03-25 166424]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-03-25 390680]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-03-25 410136]
"BTMTrayAgent"="c:\program files\Motorola\Bluetooth\btmshell.dll" [2010-06-10 24783624]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-01-29 487424]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Sticky Password - c:\program files (x86)\Sticky Password\spIEBho.dll/616
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files (x86)\ICQ7M\ICQ.exe
IE: {{bd707fe6-39f6-4bda-9265-86a76719bdc5} - c:\program files\Motorola\Bluetooth\btmiesend.htm
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //FWEvent.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Robin\AppData\Roaming\Mozilla\Firefox\Profiles\l1gd7yx1.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?btnG=Google+Search&q=
FF - prefs.js: browser.search.selectedEngine - Google
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Kalender - c:\windows\Uninstall_tkexe -kalender
AddRemove-{0886900B-B2F3-452C-B580-60F1253F7F80} - c:\programdata\{0CC51CB2-911C-40BB-BC1B-BD3CAC590222}\Controller Editor Setup.exe
AddRemove-{0B8565BA-BAD5-4732-B122-5FD78EFC50A9} - c:\programdata\{D7CFB71A-972A-44FF-AE44-8780EB53ABB2}\Service Center Setup.exe
AddRemove-{2930FB47-6452-4476-BF16-D77F748646DB} - c:\programdata\{4F32CAF7-963B-404D-BF13-C48BA3F5F6A7}\GuitarRig Mobile IO Driver Setup.exe
AddRemove-{7930FB47-6452-4476-BF16-D77F748646DB} - c:\programdata\{AC46DC4F-66BD-4733-A8B4-0B69418C12D0}\Session IO Driver Setup.exe
AddRemove-{B962AD08-335F-46f7-A182-257D37672E5C} - c:\programdata\{EC98E512-708C-4C3B-9F07-B58768C1DD8A}\Rig Kontrol 3 Driver Setup.exe
AddRemove-{C7FAFC98-5ECC-40FC-B440-A5D5FE3A6A6E} - c:\programdata\{D69A48BF-7653-4AA8-94BC-5847522A4573}\Guitar Rig 4 Setup PC.exe
AddRemove-{CA43FE4F-9FF2-4AD7-88F0-CC3BAC17B226} - c:\program files (x86)\InstallShield Installation Information\{CA43FE4F-9FF2-4AD7-88F0-CC3BAC17B226}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Celkový čas: 2015-02-15 00:35:37
ComboFix-quarantined-files.txt 2015-02-14 23:35
.
Před spuštěním: Volných bajtů: 28 291 067 904
Po spuštění: Volných bajtů: 28 102 066 176
.
- - End Of File - - 687E21CB1E42958EB26C48A0169F814F
A36C5E4F47E84449FF07ED3517B43A31

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.


Použij T-Cleaner, který smaže případné zbytky po aplikacích které jsme použili.

Jen před jeho stažením a při použití stopni antivir, protože ho muže detekovat jako vir ale není tomu tak.


Stáhni a spusť OTMoveIt

do levého okna aplikace pod Paste Instructions for Items to be Moved zkopíruj tento text:
klikni na MoveIt! a v pravém zeleném okně aplikace se Ti objeví info o provedene akci, obsah okna zkopíruj sem,

pokud aplikace bude požadovat restart, klikni na YES

v tom případě sem zkopíruj obsah logu uloženého na C:\_OTMoveIt\MovedFiles\

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
c:\program files (x86)\GUT326E.tmp moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: Robin
->Temp folder emptied: 54097 bytes
->Temporary Internet Files folder emptied: 829573 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 371708580 bytes
->Google Chrome cache emptied: 6872515 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 362.00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 02152015_234046

Files moved on Reboot...
C:\Users\Robin\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Robin\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\windows\SysWow64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Znovu spusť OTMoveIt a nahoře v aplikaci klini na CleanUP!

tímto po sobě uklidí.


Pak dej vědět jak se PC chová.