prosím o preventivku-pomalé pc

Zpráva

SchelbyGT · #1 Příspěvek od **SchelbyGT** » 26 úno 2015 17:38

Dobrý den,
prosím o preventivku. Počítač je velmi pomalý a trvá velmi dlouho než se zapne.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Tomas at 2015-02-26 17:31:00
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 25 GB (10%) free of 238 GB
Total RAM: 4063 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:31:06, on 26.2.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
C:\Program Files (x86)\ICQ7.7\ICQ.exe
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
C:\Users\Tomas\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\Samsung\PanelMgr\SSMMgr.exe
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.69\opera_crashreporter.exe
C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe
C:\Program Files\trend micro\Tomas.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/#utm_source=icq&u ... um=generic
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\ssmmgr.exe /autorun
O4 - HKLM\..\Run: [Print2PDF Print Monitor] "C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe" /server
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [ICQ] "C:\Program Files (x86)\ICQ7.7\ICQ.exe" silent loginmode=4
O4 - Startup: Dropbox.lnk = Tomas\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HTCMonitorService - Nero AG - C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9762 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
winlogon.exe
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
C:\Windows\system32\Hpservice.exe
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe" -service
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
"C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe"
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
"C:\Program Files (x86)\Secunia\PSI\PSIA.exe" --start-service
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
adb fork-server server
"C:\Program Files (x86)\Secunia\PSI\sua.exe" --start-service
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\ICQ7.7\ICQ.exe" silent loginmode=4
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Secunia\PSI\psi_tray.exe"
"C:\Users\Tomas\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\Samsung\PanelMgr\SSMMgr.exe" /autorun
"C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe" /server
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\Windows\Samsung\PanelMgr\caller64.exe Samsung PanelMgr
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe" -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe" --ran-launcher
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe" --ran-launcher /crash-reporter-parent-id=4932
"C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe" --type=gpu-process --channel="4932.0.848785093\986359316" --enable-proprietary-media-types-playback --crash-reporter-pid=1344 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,19,40,49 --gpu-vendor-id=0x10de --gpu-device-id=0x0649 --gpu-driver-vendor=NVIDIA --gpu-driver-version=8.17.12.8562 --enable-proprietary-media-types-playback --crash-reporter-pid=1344 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --enable-deferred-image-decoding --lang=cs --enable-proprietary-media-types-playback --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=1344 --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="4932.3.1209155412\2041824127" /prefetch:673131151
"C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --enable-deferred-image-decoding --lang=cs --enable-proprietary-media-types-playback --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=1344 --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="4932.4.1875337757\1059594421" /prefetch:673131151
"C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --enable-deferred-image-decoding --lang=cs --enable-proprietary-media-types-playback --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=1344 --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="4932.7.82729107\703365534" /prefetch:673131151
"C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --enable-deferred-image-decoding --lang=cs --enable-proprietary-media-types-playback --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=1344 --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="4932.8.1868470415\1022649413" /prefetch:673131151
taskeng.exe {BCA05455-8FB3-48BD-9E69-970F419E96BE}
"C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe" --type=plugin --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll" --disable-direct-npapi-requests --lang=cs --channel="4932.9.143483424\114108789" --enable-proprietary-media-types-playback --crash-reporter-pid=1344 /prefetch:-390060480
"C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --enable-deferred-image-decoding --lang=cs --enable-proprietary-media-types-playback --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=1344 --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="4932.10.945998107\1955350719" /prefetch:673131151
taskeng.exe {D6BC4CEA-1450-4AB6-A9B4-583ADC52D6FA}
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Opera\27.0.1689.69\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --enable-deferred-image-decoding --lang=cs --enable-proprietary-media-types-playback --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=1344 --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="4932.11.1025015468\853210566" /prefetch:673131151
taskhost.exe $(Arg0)
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532

"C:\Users\Tomas\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\HPCeeScheduleForTomas.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForTomas (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2011-11-28 963064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-06 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-06 210856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 77576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-11-28 809040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2011-11-28 963064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-11-28 809040]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2009-07-21 450048]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-06-20 1533736]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2015-01-28 21720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-05-16 153136]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]
"ICQ"=C:\Program Files (x86)\ICQ7.7\ICQ.exe [2012-01-23 127040]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-11-28 3744552]
"WirelessAssistant"=C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"Samsung PanelMgr"=C:\Windows\Samsung\PanelMgr\ssmmgr.exe [2010-06-04 618496]
"Print2PDF Print Monitor"=C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [2011-10-04 220992]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-12-19 41208]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-02 946352]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Secunia PSI Tray.lnk - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe

C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Tomas\AppData\Roaming\Dropbox\bin\Dropbox.exe
OpenOffice.org 3.3.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-02-26 17:31:00 ----D---- C:\rsit
2015-02-16 22:07:26 ----D---- C:\Users\Tomas\AppData\Roaming\Dropbox
2015-02-16 20:04:59 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-02-16 20:04:57 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-02-16 20:04:57 ----A---- C:\Windows\system32\jscript9.dll
2015-02-16 20:04:56 ----A---- C:\Windows\system32\jscript9diag.dll
2015-02-12 21:08:12 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-02-12 21:08:12 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-02-12 21:08:12 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-02-12 21:08:11 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-02-12 21:08:11 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-02-12 21:08:10 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-02-12 21:08:10 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-12 21:08:09 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-02-12 21:08:09 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-02-12 21:08:09 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-02-12 21:08:09 ----A---- C:\Windows\system32\iernonce.dll
2015-02-12 21:08:08 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-02-12 21:08:08 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-02-12 21:08:08 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-12 21:08:07 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-02-12 21:08:05 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-02-12 21:08:04 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-02-12 21:08:03 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-12 21:08:02 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-02-12 21:08:02 ----A---- C:\Windows\system32\urlmon.dll
2015-02-12 21:08:01 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-02-12 21:08:01 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-02-12 21:08:00 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-02-12 21:08:00 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-12 21:07:59 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-02-12 21:07:59 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-02-12 21:07:59 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-12 21:07:59 ----A---- C:\Windows\system32\dxtrans.dll
2015-02-12 21:07:58 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-02-12 21:07:58 ----A---- C:\Windows\system32\iesetup.dll
2015-02-12 21:07:57 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-12 21:07:56 ----A---- C:\Windows\system32\iertutil.dll
2015-02-12 21:07:55 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-02-12 21:07:54 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-02-12 21:07:54 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-02-12 21:07:53 ----A---- C:\Windows\system32\jsproxy.dll
2015-02-12 21:07:53 ----A---- C:\Windows\system32\ieUnatt.exe
2015-02-12 21:07:52 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-02-12 21:07:50 ----A---- C:\Windows\system32\ieui.dll
2015-02-12 21:07:50 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-12 21:07:49 ----A---- C:\Windows\system32\ieframe.dll
2015-02-12 21:07:48 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-02-12 21:07:48 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-12 21:07:47 ----A---- C:\Windows\system32\wininet.dll
2015-02-12 21:07:47 ----A---- C:\Windows\system32\vbscript.dll
2015-02-12 21:07:46 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-12 21:07:45 ----A---- C:\Windows\system32\msrating.dll
2015-02-12 21:07:44 ----A---- C:\Windows\system32\mshtml.dll
2015-02-12 21:06:47 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-02-12 21:06:47 ----A---- C:\Windows\system32\schannel.dll
2015-02-12 21:06:46 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-02-12 21:06:46 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-02-12 21:06:46 ----A---- C:\Windows\system32\wdigest.dll
2015-02-12 21:06:46 ----A---- C:\Windows\system32\msv1_0.dll
2015-02-12 21:06:46 ----A---- C:\Windows\system32\kerberos.dll
2015-02-12 21:06:45 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-02-12 21:06:45 ----A---- C:\Windows\system32\ncrypt.dll
2015-02-12 21:06:43 ----A---- C:\Windows\system32\TSpkg.dll
2015-02-12 21:06:42 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-02-12 21:06:41 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-02-12 21:06:40 ----A---- C:\Windows\system32\credssp.dll
2015-02-12 21:06:39 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-02-12 21:02:00 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-02-12 21:02:00 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-12 21:01:48 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-12 21:01:47 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-12 21:01:47 ----A---- C:\Windows\system32\adtschema.dll
2015-02-12 21:01:46 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-02-12 21:01:46 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-12 21:01:46 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-02-12 21:01:45 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-02-12 21:01:45 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-02-12 21:01:45 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-02-12 21:01:45 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-02-12 21:01:45 ----A---- C:\Windows\system32\sspisrv.dll
2015-02-12 21:01:45 ----A---- C:\Windows\system32\sspicli.dll
2015-02-12 21:01:45 ----A---- C:\Windows\system32\secur32.dll
2015-02-12 21:01:45 ----A---- C:\Windows\system32\msobjs.dll
2015-02-12 21:01:45 ----A---- C:\Windows\system32\lsass.exe
2015-02-12 21:01:45 ----A---- C:\Windows\system32\auditpol.exe
2015-02-12 21:01:44 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-02-12 21:01:44 ----A---- C:\Windows\system32\msaudite.dll
2015-02-12 21:01:31 ----A---- C:\Windows\system32\wintrust.dll
2015-02-12 21:01:31 ----A---- C:\Windows\system32\cryptsvc.dll
2015-02-12 21:01:31 ----A---- C:\Windows\system32\crypt32.dll
2015-02-12 21:01:30 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-02-12 21:01:30 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-02-12 21:01:30 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-02-12 21:01:24 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-02-12 21:01:24 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-12 21:01:20 ----A---- C:\Windows\system32\mstscax.dll
2015-02-12 21:01:19 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-02-12 21:01:19 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-02-12 21:01:06 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-12 21:01:05 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-02-12 21:01:05 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-02-12 21:01:04 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-02-12 21:01:04 ----A---- C:\Windows\system32\srcore.dll
2015-02-12 21:01:04 ----A---- C:\Windows\system32\srclient.dll
2015-02-12 21:01:04 ----A---- C:\Windows\system32\rstrui.exe
2015-02-12 21:00:56 ----A---- C:\Windows\system32\scesrv.dll
2015-02-12 21:00:55 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-02-12 20:59:43 ----A---- C:\Windows\system32\win32k.sys
2015-02-09 19:45:06 ----D---- C:\Program Files (x86)\Microsoft Office
2015-02-09 19:44:26 ----D---- C:\Program Files (x86)\MSECache

======List of files/folders modified in the last 1 month======

2015-02-26 17:31:04 ----D---- C:\Program Files\trend micro
2015-02-26 17:31:03 ----D---- C:\Windows\Temp
2015-02-26 17:28:37 ----D---- C:\Program Files (x86)\Opera
2015-02-26 17:28:36 ----D---- C:\Windows\system32\Tasks
2015-02-26 17:25:41 ----D---- C:\Windows\system32\config
2015-02-26 17:24:29 ----D---- C:\Windows\Prefetch
2015-02-26 17:21:24 ----D---- C:\Users\Tomas\AppData\Roaming\ICQ
2015-02-26 17:21:00 ----D---- C:\ProgramData
2015-02-26 17:21:00 ----A---- C:\ProgramData\HPWALog.txt
2015-02-26 13:05:42 ----SHD---- C:\System Volume Information
2015-02-22 21:19:28 ----D---- C:\Windows\rescache
2015-02-17 21:17:15 ----D---- C:\Users\Tomas\AppData\Roaming\vlc
2015-02-16 22:20:29 ----D---- C:\Windows\winsxs
2015-02-16 22:20:26 ----D---- C:\Windows\SYSWOW64\en-US
2015-02-16 22:20:26 ----D---- C:\Windows\SysWOW64
2015-02-16 22:20:26 ----D---- C:\Windows\system32\en-US
2015-02-16 22:20:26 ----D---- C:\Windows\System32
2015-02-16 22:20:21 ----SHD---- C:\Windows\Installer
2015-02-14 03:23:00 ----D---- C:\Windows\system32\catroot2
2015-02-14 03:15:27 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-02-14 03:15:27 ----D---- C:\Windows\system32\cs-CZ
2015-02-14 03:15:27 ----D---- C:\Program Files\Internet Explorer
2015-02-14 03:15:26 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-14 03:15:25 ----D---- C:\Windows\system32\drivers
2015-02-14 03:15:23 ----D---- C:\Windows\PolicyDefinitions
2015-02-12 20:59:20 ----D---- C:\Windows\system32\catroot
2015-02-09 19:51:58 ----SD---- C:\Users\Tomas\AppData\Roaming\Microsoft
2015-02-09 19:45:06 ----RD---- C:\Program Files (x86)
2015-02-07 20:07:27 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-02-05 19:07:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-02-02 20:00:49 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 30008]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-11-28 42328]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-11-28 591192]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-11-28 304472]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-11-28 58712]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-12-18 279616]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-11-28 24408]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-11-28 66904]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2009-11-17 11576]
R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 41272]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
R3 enecir;ENE CIR Receiver; C:\Windows\system32\DRIVERS\enecir.sys [2008-09-04 64000]
R3 NETw5s64;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETw5s64.sys [2010-01-13 7675392]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2011-07-08 174184]
R3 PSI;PSI; C:\Windows\system32\DRIVERS\psi_mf_amd64.sys [2013-02-07 18456]
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys [2009-07-21 487936]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-06-20 325680]
S2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 HTCAND64;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-11-02 33736]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2012-12-07 36928]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 64bitový systém Windows Vista; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [2009-03-02 89600]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-11-28 44768]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2009-07-08 30520]
R2 HTCMonitorService;HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [2013-01-29 87368]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-10-15 1640768]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-12-07 167424]
R2 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [2013-02-07 1223704]
R2 Secunia Update Agent;Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [2013-02-07 660504]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe [2009-07-21 240128]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-01-12 114688]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-18 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-04-13 792112]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-05-16 271920]
S4 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]

-----------------EOF-----------------

#2 Příspěvek od **Márty84** » 26 úno 2015 19:13

Zdravim

Minule jste kontrolu nedokoncil, proc?

SchelbyGT · #3 Příspěvek od **SchelbyGT** » 26 úno 2015 20:09

Teď na to koukám do historie že jsem to nedokončil. PC používám jen minimálně, takže jsem to celý rok neřešil. Teď marodím a jsem doma tak na to mám čas, myslel jsem že to zkusím.

#4 Příspěvek od **Márty84** » 26 úno 2015 21:00

Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

SchelbyGT · #5 Příspěvek od **SchelbyGT** » 27 úno 2015 09:07

# AdwCleaner v4.111 - Logfile created 27/02/2015 at 08:53:02
# Updated 18/02/2015 by Xplode
# Database : 2015-02-18.3 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x64)
# Username : Tomas - TOMAS-PC
# Running from : C:\Users\Tomas\Desktop\adwcleaner_4.111.exe
# Option : Cleaning

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\Program Files (x86)\driver-soft
Folder Deleted : C:\Program Files (x86)\Free Offers from Freeze.com
Folder Deleted : C:\Program Files (x86)\ICQ6Toolbar
Folder Deleted : C:\Program Files (x86)\smart pc cleaner
Folder Deleted : C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\yasearch@yandex.ru

***** [ Scheduled tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKCU\Software\1284caffbc680d34
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0388404D-6072-4CEB-B521-8F090FEAEE57}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\ICQ\ICQToolbar

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17631

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v

-\\ Google Chrome v

-\\ Opera v27.0.1689.76

*************************

AdwCleaner[R0].txt - [2586 bytes] - [27/02/2015 08:50:44]
AdwCleaner[S0].txt - [1983 bytes] - [27/02/2015 08:53:02]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2042 bytes] ##########

SchelbyGT · #6 Příspěvek od **SchelbyGT** » 27 úno 2015 09:08

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Professional SP1 [6.1 Build 7601] (x64)
Date : 2015/02/27 8:46:23

-- Controller Map ----------------------------------------------------------
- ATA Channel 4 (4) [ATA]
- ATA Channel 5 (5) [ATA]
+ Standardní řadič AHCI 1.0 s rozhraním Serial ATA [ATA]
+ ATA Channel 0 (0)
- Hitachi HTS543225L9A300 ATA Device
+ ATA Channel 1 (1)
- TSSTcorp CDDVDW TS-L633L ATA Device
- ATA Channel 4 (4)
- ATA Channel 5 (5)

-- Disk List ---------------------------------------------------------------
(1) Hitachi HTS543225L9A300 : 250,0 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) Hitachi HTS543225L9A300
----------------------------------------------------------------------------
Model : Hitachi HTS543225L9A300
Firmware : FBEOC44C
Serial Number : 080726FB0F00LLC41Z9B
Disk Size : 250,0 GB (8,4/137,4/250,0)
Buffer Size : 7114 KB
Queue Depth : 32
# of Sectors : 488397168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 3f
Transfer Mode : SATA/300
Power On Hours : 6349 hod.
Power On Count : 3614 krát
Temparature : 47 C (116 F)
Health Status : Pozor
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 4080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 _97 _62 000000000000 Počet chyb čtení
02 100 100 _40 000000000000 Průchodnost disku
03 253 100 _33 000400000000 Čas na roztočení ploten
04 _98 _98 __0 000000000EB5 Počet spuštění/zastavení
05 100 100 __5 000000030003 Počet přemapovaných sektorů
07 100 100 _67 000000000000 Počet chybných hledání
08 100 100 _40 000000000000 Čas potřebný na vyhledání
09 _86 _86 __0 0000000018CD Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _98 _98 __0 000000000E1E Počet cyklů zapnutí zařízení
B8 100 100 _97 000000000000 Ukončovacích chyb
BB 100 100 __0 037400010008 Ohlášeno neopravitelných chyb
BC _98 _67 __0 000000000E89 Časový limit příkazu
BE _53 _27 __0 02152F17002F Teplota toku vzduchu
BF 100 _98 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000AB00AB Počet vypnutí disku
C1 _93 _93 __0 000000012A1E Počet cyklů načítání/vymazání
C2 117 _76 __0 00490006002F Teplota
C4 100 100 __0 000000000003 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 3038 3037 3236 4642 3046 4C4C 4C4C 4334 315A 3942
020: 0003 3795 0004 4642 454F 3443 3443 4869 7461 6368
030: 6920 4854 5335 3433 3232 3941 3941 3330 3020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 0F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0100
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0D06 0D06 0000 004C 0040
080: 01FC 0042 706B 7C09 6123 BC09 BC09 6123 203F 0032
090: 0033 4080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 5970 1D1C 0000 0000 0000 0000 0000 8848 5000 CCA5
110: 66C1 D8E8 0000 0000 0000 0000 0000 0000 0000 4014
120: 4014 0000 0000 0000 0000 0000 0000 0000 0029 000B
130: 0003 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 4001 0000
150: 8000 0000 4548 0000 0000 0071 0071 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 003D 003D 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 F6A5

#7 Příspěvek od **Márty84** » 27 úno 2015 16:56

Disk je na tom spatne, mohla by to byt pricina problemu. Uvidime po docisteni.

Udelejte kontrolu programem HD Tune
Stahnete http://www.slunecnice.cz/sw/hd-tune/ , nainstalujte a spustte jako spravce (pokud vam pri instalaci nabidne nejaky doplnek, odmitnete ho!)
V tom okne kliknete na posledni zalozku - Error Scan (pokud bude zatrzeny quick scan, tak zatrzitko zruste) a kliknete na Start.
Kontrola bude nejakou dobu trvat. Dejte vedet, jestli tam bylo nejake cervene policko.
Taky se podivejte na zalozku Health a opiste mi (vyfotte), co se tam pise. Melo by tam byt OK http://www.google.cz/imgres?um=1&hl=cs& ... s:20,i:143

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

SchelbyGT · #8 Příspěvek od **SchelbyGT** » 27 úno 2015 23:14

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 27.2.2015
Čas skenování: 20:53:53
Protokol: AAA.txt
Správce: Ano

Verze: 2.00.4.1028
Databáze malwaru: v2015.02.27.07
Databáze rootkitů: v2015.02.25.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Sebeobrany: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Tomas

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 637339
Uplynulý čas: 2 hod, 14 min, 21 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Žádné zákerné zjištěny položek)

Moduly: 0
(Žádné zákerné zjištěny položek)

Klíče registru: 0
(Žádné zákerné zjištěny položek)

Hodnoty registru: 0
(Žádné zákerné zjištěny položek)

Data registru: 0
(Žádné zákerné zjištěny položek)

Složky: 7
PUP.Optional.CrossRider.A, C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_mpfapcdfbbledbojijcbcclmlieaoogk_0, , [5221ae7561291323dd823930bf442dd3],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\chrome, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\chrome\content, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\locale, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\locale\en-US, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin, , [d49f4dd6b7d32e08aa60fb80fb08768a],

Soubory: 27
PUP.Optional.CrossRider.A, C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_mpfapcdfbbledbojijcbcclmlieaoogk_0\3, , [5221ae7561291323dd823930bf442dd3],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\install.rdf, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\chrome\content\background.html, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\chrome\content\browser.xul, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\chrome\content\manage-apps-style.css, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\chrome\content\manage-apps.html, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\chrome\content\options.xul, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\chrome\content\push.html, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\chrome\content\search_dialog.xul, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\chrome\content\update.html, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\locale\en-US\translations.dtd, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\button1.png, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\button2.png, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\button3.png, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\button4.png, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\button5.png, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\crossrider_statusbar.png, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\icon128.png, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\icon16.png, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\icon24.png, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\icon48.png, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\panelarrow-up.png, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\popup.css, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\popup.html, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\popup_binding.xml, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\skin.css, , [d49f4dd6b7d32e08aa60fb80fb08768a],
PUP.Optional.CrossFire.A, C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\crossriderapp2258@crossrider.com\skin\update.css, , [d49f4dd6b7d32e08aa60fb80fb08768a],

Fyzické sektory: 0
(Žádné zákerné zjištěny položek)

(end)

SchelbyGT · #9 Příspěvek od **SchelbyGT** » 27 úno 2015 23:15

u HDTune vše ok a žádné červené políčko nebylo

#10 Příspěvek od **Márty84** » 27 úno 2015 23:17

SchelbyGT píše:u HDTune vše ok a žádné červené políčko nebylo

OK

Nalezy MBAM hodte do karanteny. Po restartu pc test zopakujte, at vime, jestli se to nevraci. Napiste vysledek testu a podle nej zvolim dalsi postup.

SchelbyGT · #11 Příspěvek od **SchelbyGT** » 28 úno 2015 10:43

Tak jsem to provedl znovu a nenašlo to žádné hrozby.

#12 Příspěvek od **Márty84** » 28 úno 2015 10:45

OK, MBAM odinstalujte.

Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach

SchelbyGT · #13 Příspěvek od **SchelbyGT** » 28 úno 2015 12:53

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-02-2015 01
Ran by Tomas (administrator) on TOMAS-PC on 28-02-2015 12:51:26
Running from C:\Users\Tomas\Desktop
Loaded Profiles: Tomas (Available profiles: Tomas & UpdatusUser)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe
(Hewlett-Packard) C:\Windows\System32\hpservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ICQ, LLC.) C:\Program Files (x86)\ICQ7.7\ICQ.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
() C:\Windows\Samsung\PanelMgr\SSMMgr.exe
(Software602) C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Dropbox, Inc.) C:\Users\Tomas\AppData\Roaming\Dropbox\bin\Dropbox.exe
() C:\Windows\Samsung\PanelMgr\caller64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
() C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
(Opera Software) C:\Program Files (x86)\Opera\27.0.1689.76_0\opera.exe
() C:\Program Files (x86)\Opera\27.0.1689.76_0\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\27.0.1689.76_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\27.0.1689.76_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\27.0.1689.76_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\27.0.1689.76_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\27.0.1689.76_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\27.0.1689.76_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\27.0.1689.76_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\27.0.1689.76_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\27.0.1689.76_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\27.0.1689.76_0\opera.exe
(forum.viry.cz) C:\Users\Tomas\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [450048 2009-07-21] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1533736 2008-06-20] (Synaptics, Inc.)
HKLM-x32\...\Run: [WirelessAssistant] => C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [499768 2009-09-01] (Hewlett-Packard)
HKLM-x32\...\Run: [Samsung PanelMgr] => C:\Windows\Samsung\PanelMgr\ssmmgr.exe [618496 2010-06-04] ()
HKLM-x32\...\Run: [Print2PDF Print Monitor] => C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [220992 2011-10-04] (Software602)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41208 2012-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-02] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-02-27] (AVAST Software)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2015-01-28] (Hewlett-Packard)
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [153136 2007-05-16] (Nero AG)
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3514176 2011-11-10] (DT Soft Ltd)
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\...\Run: [ICQ] => C:\Program Files (x86)\ICQ7.7\ICQ.exe [127040 2012-01-23] (ICQ, LLC.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Tomas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tomas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tomas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tomas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tomas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tomas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tomas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tomas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tomas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/#utm_source=icq&u ... um=generic
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2484612095-2419909722-3967816085-1000 -> {399a1442-7377-49e7-8d77-6dc9ed5968c1} URL = http://www.zbozi.cz/?q={searchTerms}&so ... earch_6826
SearchScopes: HKU\S-1-5-21-2484612095-2419909722-3967816085-1000 -> {5cf5d387-d87c-4408-9a6b-301b0713d62a} URL = http://www.mapy.cz/?query={searchTerms} ... earch_6826
SearchScopes: HKU\S-1-5-21-2484612095-2419909722-3967816085-1000 -> {eb97f7df-1773-4916-aae6-5af74da8c69d} URL = http://www.firmy.cz/phr/{searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.100.125

FireFox:
========
FF ProfilePath: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-12-15]

Chrome:
=======
CHR Profile: C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-02-27]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [89600 2009-03-02] (Andrea Electronics Corporation)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-02-27] (AVAST Software)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-01-29] (Nero AG)
S4 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-05-16] (Nero AG)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1223704 2013-02-07] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [660504 2013-02-07] (Secunia)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe [240128 2009-07-21] (IDT, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-02-27] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2015-02-27] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-02-27] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-02-27] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-02-27] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-02-27] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-02-27] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-02-27] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [279616 2011-12-18] (DT Soft Ltd)
S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [33736 2009-11-02] (HTC, Corporation) [File not signed]
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-02-07] (Secunia)
R2 SSPORT; C:\Windows\SysWOW64\Drivers\SSPORT.sys [11576 2009-10-28] (Samsung Electronics)
S2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [X]
R3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-28 12:51 - 2015-02-28 12:51 - 00016526 _____ () C:\Users\Tomas\Desktop\FRST.txt
2015-02-28 12:50 - 2015-02-28 12:51 - 00000000 ____D () C:\FRST
2015-02-28 12:50 - 2015-02-28 12:50 - 00112640 _____ (forum.viry.cz) C:\Users\Tomas\Desktop\FRSTLauncher.exe
2015-02-28 12:45 - 2015-02-28 12:45 - 02087936 _____ (Farbar) C:\Users\Tomas\Desktop\FRST64.exe
2015-02-27 20:52 - 2015-02-27 20:52 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-02-27 20:50 - 2015-02-27 20:51 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Tomas\Downloads\mbam-setup-2.0.4.1028.exe
2015-02-27 19:18 - 2015-02-27 19:18 - 00642632 _____ (EFD Software ) C:\Users\Tomas\Downloads\hdtune_255 (1).exe
2015-02-27 16:10 - 2015-02-27 16:11 - 16452056 _____ () C:\Users\Tomas\Downloads\Návrhy-z-PRO100.zip
2015-02-27 15:41 - 2015-02-27 18:40 - 00000000 ____D () C:\Users\Tomas\Desktop\kuch
2015-02-27 15:17 - 2015-02-27 16:03 - 430080077 _____ () C:\Users\Tomas\Downloads\Knihovny-PRO100.rar
2015-02-27 12:53 - 2015-02-27 14:24 - 00003285 _____ () C:\Users\Tomas\Desktop\PRO100.ini
2015-02-27 12:49 - 2015-02-27 12:49 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\AVAST Software
2015-02-27 12:44 - 2015-02-28 08:03 - 00184266 _____ () C:\Windows\PFRO.log
2015-02-27 09:06 - 2015-02-27 09:06 - 00001964 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-02-27 09:06 - 2015-02-27 09:05 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-02-27 09:06 - 2015-02-27 09:05 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-02-27 09:05 - 2015-02-27 09:05 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-02-27 09:05 - 2015-02-27 09:05 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-02-27 09:01 - 2015-02-27 09:05 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-02-27 09:01 - 2015-02-27 09:05 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-02-27 09:01 - 2015-02-27 09:05 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-02-27 08:59 - 2015-02-27 10:36 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-02-27 08:50 - 2015-02-27 08:53 - 00000000 ____D () C:\AdwCleaner
2015-02-27 08:48 - 2015-02-27 08:49 - 02126848 _____ () C:\Users\Tomas\Desktop\adwcleaner_4.111.exe
2015-02-27 08:45 - 2015-02-27 08:45 - 01496172 _____ () C:\Users\Tomas\Downloads\CrystalDiskInfo5_0_0.zip
2015-02-27 07:13 - 2015-02-28 08:04 - 00000280 _____ () C:\Windows\setupact.log
2015-02-27 07:13 - 2015-02-27 07:13 - 00000000 _____ () C:\Windows\setuperr.log
2015-02-26 21:44 - 2015-01-09 00:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
2015-02-26 21:44 - 2015-01-09 00:43 - 00419936 _____ () C:\Windows\system32\locale.nls
2015-02-26 20:14 - 2015-02-26 20:14 - 00642632 _____ (EFD Software ) C:\Users\Tomas\Downloads\hdtune_255.exe
2015-02-26 17:31 - 2015-02-26 17:31 - 00000000 ____D () C:\rsit
2015-02-26 17:30 - 2015-02-26 17:30 - 01222144 _____ () C:\Users\Tomas\Downloads\RSITx64.exe
2015-02-22 19:51 - 2015-02-22 20:31 - 1150441472 _____ () C:\Users\Tomas\Downloads\BAS2013CZ1.avi
2015-02-22 19:47 - 2015-02-22 20:30 - 773546800 _____ () C:\Users\Tomas\Downloads\Marmaduke-cz-(2011)-(#).avi
2015-02-22 19:43 - 2015-02-22 21:28 - 739009814 _____ () C:\Users\Tomas\Downloads\Hotel pro psy =2009-DVD-CZ.avi
2015-02-17 22:25 - 2015-02-17 21:19 - 02696181 _____ () C:\Users\Tomas\Downloads\aaaaaaa.txt
2015-02-17 20:00 - 2015-02-17 21:14 - 1475696208 _____ () C:\Users\Tomas\Downloads\Tri bratri (2014) DVDRip CZ Film.avi
2015-02-17 19:56 - 2015-02-17 19:56 - 00002368 _____ () C:\Users\Tomas\Downloads\error.php
2015-02-16 22:12 - 2015-02-28 08:09 - 00000000 ___RD () C:\Users\Tomas\Dropbox
2015-02-16 22:12 - 2015-02-16 22:12 - 00001125 _____ () C:\Users\Tomas\Desktop\Dropbox.lnk
2015-02-16 22:11 - 2015-02-16 22:11 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-02-16 22:07 - 2015-02-28 08:08 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\Dropbox
2015-02-16 22:02 - 2015-02-16 22:03 - 00355464 _____ (Dropbox, Inc.) C:\Users\Tomas\Downloads\DropboxInstaller.exe
2015-02-16 20:04 - 2015-01-23 05:42 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-02-16 20:04 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-16 20:04 - 2015-01-23 04:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-02-16 20:04 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-13 18:07 - 2015-02-13 20:49 - 1445668864 _____ () C:\Users\Tomas\Downloads\Annabelle(2014)cz.avi
2015-02-12 21:08 - 2015-01-14 06:47 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-12 21:08 - 2015-01-14 06:09 - 00342712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-12 21:08 - 2015-01-12 04:05 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-02-12 21:08 - 2015-01-12 04:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-02-12 21:08 - 2015-01-12 03:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-02-12 21:08 - 2015-01-12 03:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-02-12 21:08 - 2015-01-12 03:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-02-12 21:08 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-12 21:08 - 2015-01-12 03:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-12 21:08 - 2015-01-12 03:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-02-12 21:08 - 2015-01-12 03:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-12 21:08 - 2015-01-12 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-02-12 21:08 - 2015-01-12 03:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-02-12 21:08 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-12 21:08 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-12 21:08 - 2015-01-12 03:00 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-02-12 21:08 - 2015-01-12 02:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-02-12 21:08 - 2015-01-12 02:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-02-12 21:08 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-12 21:08 - 2015-01-12 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-12 21:08 - 2015-01-12 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-02-12 21:08 - 2015-01-12 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-02-12 21:08 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-12 21:08 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-12 21:08 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-12 21:08 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-12 21:08 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-12 21:07 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-12 21:07 - 2015-01-12 03:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-02-12 21:07 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-12 21:07 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-12 21:07 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-12 21:07 - 2015-01-12 03:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-02-12 21:07 - 2015-01-12 03:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-02-12 21:07 - 2015-01-12 03:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-02-12 21:07 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-12 21:07 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-12 21:07 - 2015-01-12 03:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-02-12 21:07 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-12 21:07 - 2015-01-12 03:04 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-02-12 21:07 - 2015-01-12 02:57 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-02-12 21:07 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-12 21:07 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-12 21:07 - 2015-01-12 02:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-02-12 21:07 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-12 21:07 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-12 21:07 - 2015-01-12 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-02-12 21:07 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-12 21:07 - 2015-01-12 02:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-02-12 21:07 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-12 21:07 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-12 21:07 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-12 21:06 - 2015-01-10 07:48 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-02-12 21:06 - 2015-01-10 07:48 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-12 21:06 - 2015-01-10 07:48 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-02-12 21:06 - 2015-01-10 07:48 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-02-12 21:06 - 2015-01-10 07:48 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-02-12 21:06 - 2015-01-10 07:48 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-02-12 21:06 - 2015-01-10 07:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-02-12 21:06 - 2015-01-10 07:27 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-02-12 21:06 - 2015-01-10 07:27 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-02-12 21:06 - 2015-01-10 07:27 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-12 21:06 - 2015-01-10 07:27 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-02-12 21:06 - 2015-01-10 07:27 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-02-12 21:06 - 2015-01-10 07:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-02-12 21:06 - 2015-01-10 07:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-02-12 21:02 - 2015-01-13 04:10 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-12 21:02 - 2015-01-13 03:49 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-12 21:01 - 2015-01-15 09:14 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-12 21:01 - 2015-01-15 09:14 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-02-12 21:01 - 2015-01-15 09:09 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-12 21:01 - 2015-01-15 09:09 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-02-12 21:01 - 2015-01-15 09:09 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-02-12 21:01 - 2015-01-15 09:09 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-02-12 21:01 - 2015-01-15 09:09 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-02-12 21:01 - 2015-01-15 09:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-02-12 21:01 - 2015-01-15 09:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-12 21:01 - 2015-01-15 09:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-02-12 21:01 - 2015-01-15 09:04 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-12 21:01 - 2015-01-15 08:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-02-12 21:01 - 2015-01-15 08:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-02-12 21:01 - 2015-01-15 08:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-02-12 21:01 - 2015-01-15 08:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-12 21:01 - 2015-01-15 08:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-02-12 21:01 - 2015-01-15 08:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-12 21:01 - 2015-01-15 05:22 - 00458824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-12 21:01 - 2015-01-14 07:09 - 05554112 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-12 21:01 - 2015-01-14 07:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-02-12 21:01 - 2015-01-14 07:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-02-12 21:01 - 2015-01-14 07:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-02-12 21:01 - 2015-01-14 06:44 - 03972544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-02-12 21:01 - 2015-01-14 06:44 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-02-12 21:01 - 2015-01-14 06:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-02-12 21:01 - 2014-12-12 06:31 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-02-12 21:01 - 2014-12-12 06:07 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-02-12 21:01 - 2014-11-26 04:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-12 21:01 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-12 21:01 - 2014-10-04 03:10 - 03722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-02-12 21:01 - 2014-10-04 02:42 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-02-12 21:01 - 2014-10-04 02:42 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-02-12 21:01 - 2014-07-07 03:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-02-12 21:01 - 2014-07-07 03:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-02-12 21:01 - 2014-07-07 02:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-02-12 21:01 - 2014-07-07 02:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-02-12 21:00 - 2014-12-08 04:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-12 21:00 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-12 20:59 - 2015-01-09 03:03 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-09 19:57 - 2015-02-09 19:57 - 39042128 _____ (Microsoft Corporation) C:\Users\Tomas\Downloads\FileFormatConverters (1).exe
2015-02-09 19:49 - 2015-02-09 19:50 - 39042128 _____ (Microsoft Corporation) C:\Users\Tomas\Downloads\FileFormatConverters.exe
2015-02-09 19:45 - 2015-02-09 19:51 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-02-09 19:45 - 2015-02-09 19:45 - 00002671 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Word Viewer 2003.lnk
2015-02-09 19:44 - 2015-02-09 19:50 - 00000000 ____D () C:\Program Files (x86)\MSECache
2015-02-09 19:43 - 2015-02-09 19:53 - 365374224 _____ (Microsoft Corporation) C:\Users\Tomas\Downloads\office2007sp3-kb2526086-fullfile-cs-cz.exe
2015-02-09 19:43 - 2015-02-09 19:44 - 25768544 _____ (Microsoft Corporation) C:\Users\Tomas\Downloads\wordview_cs-cz.exe
2015-02-07 20:00 - 2015-02-08 15:10 - 733788049 _____ () C:\Users\Tomas\Downloads\Marley-a-já---česky.avi
2015-01-31 22:50 - 2015-01-26 23:34 - 00000000 ____D () C:\Users\Tomas\Desktop\Sygic
2015-01-31 20:25 - 2015-01-31 21:56 - 224300659 _____ () C:\Users\Tomas\Downloads\SN_14.7.7_full_CZ-SK.rar
2015-01-31 19:29 - 2015-01-31 19:46 - 57115182 _____ () C:\Users\Tomas\Downloads\SN_14.7.7_nomap.rar

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-28 12:15 - 2011-12-15 20:56 - 01174279 _____ () C:\Windows\WindowsUpdate.log
2015-02-28 12:07 - 2012-03-29 20:15 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-02-28 08:13 - 2009-07-14 05:45 - 00021312 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-28 08:13 - 2009-07-14 05:45 - 00021312 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-28 08:09 - 2014-02-09 12:53 - 00000000 ____D () C:\Users\Tomas\Desktop\barák
2015-02-28 08:09 - 2011-12-20 18:32 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\ICQ
2015-02-28 08:05 - 2013-06-04 20:09 - 00000000 ____D () C:\Users\Tomas\AppData\Local\HTC MediaHub
2015-02-28 08:04 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-27 21:47 - 2011-12-15 21:32 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-02-27 19:18 - 2014-02-01 19:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
2015-02-27 19:18 - 2014-02-01 19:28 - 00000000 ____D () C:\Program Files (x86)\HD Tune
2015-02-27 09:17 - 2011-12-18 12:55 - 00000000 ____D () C:\Users\Tomas\Desktop\filmy
2015-02-27 09:14 - 2012-01-30 20:25 - 00000000 ____D () C:\Users\Tomas\Desktop\bazar
2015-02-27 09:05 - 2011-12-15 21:32 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-02-27 09:05 - 2011-12-15 21:32 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-02-27 09:01 - 2011-12-15 21:32 - 00000000 _____ () C:\Windows\SysWOW64\config.nt
2015-02-27 09:01 - 2011-12-15 21:31 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-02-27 08:53 - 2011-12-20 18:33 - 00000000 ____D () C:\ProgramData\ICQ
2015-02-26 19:57 - 2012-11-05 19:32 - 00003186 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForTomas
2015-02-26 19:57 - 2012-11-05 19:32 - 00000332 _____ () C:\Windows\Tasks\HPCeeScheduleForTomas.job
2015-02-26 18:39 - 2011-12-24 16:26 - 00000000 ____D () C:\FlatOut 3
2015-02-26 17:45 - 2014-01-03 20:10 - 00000000 ____D () C:\Users\Tomas\AppData\Local\Deployment
2015-02-26 17:31 - 2012-03-03 16:46 - 00000000 ____D () C:\Program Files\trend micro
2015-02-26 17:28 - 2015-01-21 18:57 - 00003830 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1421863035
2015-02-26 17:28 - 2011-12-15 21:58 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-02-22 21:19 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2015-02-17 21:17 - 2011-12-17 20:15 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\vlc
2015-02-16 22:12 - 2011-12-15 21:00 - 00000000 ____D () C:\Users\Tomas
2015-02-14 03:17 - 2009-07-14 05:45 - 00297424 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-14 03:15 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-02-07 20:07 - 2011-04-12 09:34 - 01253518 _____ () C:\Windows\system32\perfh005.dat
2015-02-07 20:07 - 2011-04-12 09:34 - 00348248 _____ () C:\Windows\system32\perfc005.dat
2015-02-07 20:07 - 2009-07-14 06:13 - 00006264 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-05 19:07 - 2012-03-29 20:15 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-05 19:07 - 2012-03-29 20:15 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-02-05 19:07 - 2011-12-15 22:50 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-02 20:01 - 2011-12-25 15:23 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2015-02-02 20:00 - 2012-01-03 10:03 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2015-02-01 16:19 - 2011-12-24 11:01 - 00000000 ____D () C:\Users\Tomas\Desktop\fotky

==================== Files in the root of some directories =======

2011-12-18 13:31 - 2015-02-28 08:07 - 0000177 _____ () C:\ProgramData\HPWALog.txt

Some content of TEMP:
====================
C:\Users\Tomas\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp4rqtix.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-02-27 16:43

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:232.79 GB) (Free:40.74 GB) NTFS

Available physical RAM: 2192.26 MB
Total physical RAM: 4063.21 MB
Percentage of memory in use: 46%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: AFA45F9D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\HPCeeScheduleForTomas.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Tomas\Desktop" je 122398 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#14 Příspěvek od **Márty84** » 28 úno 2015 13:48

Vypnete trvale Windows Defender.

SchelbyGT píše:***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Tomas\Desktop" je 122398 MB.

Velikost plochy by nemela preshovat 200 - 300 MB! Brzdi to chod pc. Cili ji trosku uklidte a na plochu dejte jen zastupce. Jen pozor na obcasnou chybu, ze uzivatele maji na plose slozku, v ni dalsi a v ni dalsi a do te to schovaji. To je sice hezke, ale plochu to nezmensi, jen je to v jinem supliku

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [Samsung PanelMgr] => C:\Windows\Samsung\PanelMgr\ssmmgr.exe [618496 2010-06-04] ()
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41208 2012-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-02] (Adobe Systems Incorporated)
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [153136 2007-05-16] (Nero AG)
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3514176 2011-11-10] (DT Soft Ltd)
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\...\Run: [ICQ] => C:\Program Files (x86)\ICQ7.7\ICQ.exe [127040 2012-01-23] (ICQ, LLC.)
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION

S4 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-05-16] (Nero AG)
R3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05 267440]
S4 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-04-13 792112]

2015-02-27 20:52 - 2015-02-27 20:52 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-02-27 20:50 - 2015-02-27 20:51 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Tomas\Downloads\mbam-setup-2.0.4.1028.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\HPCeeScheduleForTomas.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

Hosts:
EmptyTemp:
Reboot:
End

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

SchelbyGT · #15 Příspěvek od **SchelbyGT** » 28 úno 2015 16:18

Defender jsem vypnul.

plochu jsem pročistil. Nevěděl jsem že tam nesmí být tolik věcí, já tam měl snad vše.

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 25-02-2015 01
Ran by Tomas at 2015-02-28 14:03:26 Run:1
Running from C:\Users\Tomas\Desktop
Loaded Profiles: Tomas (Available profiles: Tomas & UpdatusUser)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [Samsung PanelMgr] => C:\Windows\Samsung\PanelMgr\ssmmgr.exe [618496 2010-06-04] ()
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41208 2012-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-02] (Adobe Systems Incorporated)
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [153136 2007-05-16] (Nero AG)
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3514176 2011-11-10] (DT Soft Ltd)
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\...\Run: [ICQ] => C:\Program Files (x86)\ICQ7.7\ICQ.exe [127040 2012-01-23] (ICQ, LLC.)
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION

S4 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-05-16] (Nero AG)
R3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05 267440]
S4 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-04-13 792112]

2015-02-27 20:52 - 2015-02-27 20:52 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-02-27 20:50 - 2015-02-27 20:51 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Tomas\Downloads\mbam-setup-2.0.4.1028.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\HPCeeScheduleForTomas.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Samsung PanelMgr => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\Software\Microsoft\Windows\CurrentVersion\Run\\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => value deleted successfully.
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value deleted successfully.
HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ICQ => value deleted successfully.
C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe => Moved successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-2484612095-2419909722-3967816085-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
NMIndexingService => Service deleted successfully.
MBAMSwissArmy => Service stopped successfully.
MBAMSwissArmy => Service deleted successfully.
AdobeFlashPlayerUpdateSvc => Service deleted successfully.
NBService => Service deleted successfully.
C:\ProgramData\Malwarebytes => Moved successfully.
C:\Users\Tomas\Downloads\mbam-setup-2.0.4.1028.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\HPCeeScheduleForTomas.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 575.3 MB temporary data.

The system needed a reboot.

==== End of Fixlog 14:04:22 ====

VIRY.CZ

prosím o preventivku-pomalé pc

prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc

Re: prosím o preventivku-pomalé pc