VIRY.CZ

Zdravím, dneska jsem stáhnul aplikaci ListenToYoutube, nejspíš to byl vir. Teď mi nejde chrome, počítač je pomalý.

Předem děkuji.

RSIT

Logfile of random's system information tool 1.10 (written by random/random)
Run by user at 2015-06-15 22:49:14
Microsoft Windows 8.1
System drive C: has 59 GB (6%) free of 954 GB
Total RAM: 8131 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:49:15, on 15. 6. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files (x86)\Genius\Manticore\MTHid.exe
C:\Program Files (x86)\AVG\AVG2015\avgui.exe
C:\Program Files (x86)\Skillbrains\lightshot\5.2.0.17\Lightshot.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
C:\Program Files (x86)\Steam\GameOverlayUI.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\user.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [Manticore] C:\Program Files (x86)\Genius\Manticore\MThid.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [Lightshot] C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_4E874A737D5662A34EBBEADB3A9C4A09] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O8 - Extra context menu item: &NeoTrace It! - C:\PROGRA~2\NEOTRA~1\NTXcontext.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: NeoTrace It! - {9885224C-1217-4c5f-83C2-00002E6CEF2B} - C:\PROGRA~2\NEOTRA~1\NTXtoolbar.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9707 bytes

======Listing Processes======

c:\PROGRA~2\AVG\AVG2015\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe /pipeName=c2feea3f-0200-0000-85f2-476e6ab43753 /binaryPath="C:\Program Files (x86)\AVG\AVG2015\"

wininit.exe

winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
dashost.exe {70211243-7fb7-4abf-9297fcc957f367e5}
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" a030db2e-6aa9-48cb-9b37-277094cf9e8d 1
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgemca.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-90293a02-212f-4610-97e8-9337fffd6289 -SystemEventPortName:HostProcess-11b9c791-7003-4257-8680-b2ecc2fc9569 -IoCancelEventPortName:HostProcess-8a84269d-d7ad-4dd6-b0a7-52dd16ecf58c -NonStateChangingEventPortName:HostProcess-4c212b7a-a281-4bda-95ac-23d0611f86e4 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d4bdf2c9-bf75-4908-8113-1451bed112b3 -DeviceGroupId:WpdFsGroup
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-1c6359f7-36da-4ac4-a139-4fb32cfb85a3 -SystemEventPortName:HostProcess-5ebded91-3a5d-483f-95c4-de6653462326 -IoCancelEventPortName:HostProcess-ab7c9138-bdbc-4f4a-89c2-735168bb57c3 -NonStateChangingEventPortName:HostProcess-4cfcb3e7-9b21-49eb-adfa-82078c9b38c2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0ce69c24-3e58-4caa-8494-61e514ceb185 -DeviceGroupId:WudfDefaultDevicePool
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\Explorer.EXE
taskhostex.exe
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\WINDOWS\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
"C:\Program Files (x86)\Genius\Manticore\MTHid.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\Skillbrains\lightshot\5.2.0.17\Lightshot.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
ctfmon.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Steam\Steam.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\user\AppData\Local\Steam\htmlcache" -steampid 5572 -buildid 1433977716 -steamid "76561198055584743" --disable-gpu-compositing --disable-gpu --enable-threaded-compositing --disable-pinch-virtual-viewport --process-per-tab --disable-spell-checking --enable-direct-write
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --enable-pinch --enable-threaded-compositing --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en-US --product-version="Valve Steam Client" --disable-spell-checking --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5792 --enable-delegated-renderer --num-raster-threads=2 --disable-gpu-compositing --channel="5792.0.786613115\422329525" /prefetch:673131151
"C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe" -steam -game cstrike

C:\Program Files (x86)\Steam\GameOverlayUI.exe -pid 3792 -manuallyclearframes 0
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --enable-pinch --enable-threaded-compositing --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en-US --product-version="Valve Steam Client" --disable-spell-checking --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5792 --enable-delegated-renderer --num-raster-threads=2 --disable-gpu-compositing --channel="5792.2.497020951\1977695259" /prefetch:673131151
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --enable-pinch --enable-threaded-compositing --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en-US --product-version="Valve Steam Client" --disable-spell-checking --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5792 --enable-delegated-renderer --num-raster-threads=2 --disable-gpu-compositing --channel="5792.3.1847644821\1490373251" /prefetch:673131151
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3988 CREDAT:267521 /prefetch:2
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3988 CREDAT:78849 /prefetch:2
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1175257845-2453519272-1601990809-10012_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1175257845-2453519272-1601990809-10012 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3988 CREDAT:2757908 /prefetch:2
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\user\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\Bidaily Synchronize Task[973b].job - c:\programdata\{2a9eadfd-2c72-c225-2a9e-eadfd2c7b7f4}\tasty selection - episode #1 [best tasty electro house 2014 mix].exe --startup=1 --single
C:\WINDOWS\tasks\Norton Security Scan for user.job - C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe /scan-quick /scheduled

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-16 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-16 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2012-11-19 6846096]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-01-31 36352]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-04-09 2673296]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2015-04-09 1570672]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-06-02 28787840]
"GoogleChromeAutoLaunch_4E874A737D5662A34EBBEADB3A9C4A09"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-06-05 813896]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2014-05-31 585048]
"Manticore"=C:\Program Files (x86)\Genius\Manticore\MThid.exe [2013-10-29 293376]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2015\avgui.exe [2015-06-05 3727824]
"Lightshot"=C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [2014-11-18 226560]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"VIDC.FPS1"=frapsv64.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-06-15 22:30:55 ----D---- C:\rsit
2015-06-15 22:21:49 ----D---- C:\Program Files (x86)\PricceMinus
2015-06-15 22:21:19 ----D---- C:\ProgramData\dbbeaikmdologmaijpkocopadlbojncb
2015-06-15 22:20:43 ----D---- C:\ProgramData\{2a9eadfd-2c72-c225-2a9e-eadfd2c7b7f4}
2015-06-13 09:15:02 ----D---- C:\Program Files\Common Files\AV
2015-06-10 06:37:06 ----A---- C:\WINDOWS\system32\invagent.dll
2015-06-10 06:37:06 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-06-10 06:37:06 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-06-10 06:37:06 ----A---- C:\WINDOWS\system32\aepic.dll
2015-06-10 06:37:06 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-06-10 06:37:05 ----A---- C:\WINDOWS\system32\devinv.dll
2015-06-10 06:37:05 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-06-10 06:37:05 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-06-10 06:36:52 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2015-06-10 06:36:52 ----A---- C:\WINDOWS\system32\puiobj.dll
2015-06-10 06:36:52 ----A---- C:\WINDOWS\system32\localspl.dll
2015-06-10 06:36:51 ----A---- C:\WINDOWS\system32\compstui.dll
2015-06-10 06:36:36 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2015-06-10 06:36:36 ----A---- C:\WINDOWS\system32\UtcResources.dll
2015-06-10 06:36:36 ----A---- C:\WINDOWS\system32\rastapi.dll
2015-06-10 06:36:36 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-06-10 06:36:34 ----A---- C:\WINDOWS\SYSWOW64\rgb9rast.dll
2015-06-10 06:36:34 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-06-10 06:36:34 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-06-10 06:34:22 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-06-10 06:34:22 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-06-10 06:34:22 ----A---- C:\WINDOWS\system32\tquery.dll
2015-06-10 06:34:22 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-06-10 06:34:22 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-06-10 06:34:22 ----A---- C:\WINDOWS\system32\mssph.dll
2015-06-10 06:34:21 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-06-10 06:34:21 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-06-10 06:34:21 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2015-06-10 06:34:21 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2015-06-10 06:34:21 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-06-10 06:34:21 ----A---- C:\WINDOWS\system32\mssvp.dll
2015-06-10 06:34:21 ----A---- C:\WINDOWS\system32\mssphtb.dll
2015-06-10 06:34:20 ----AC---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-06-10 06:34:20 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-06-10 06:34:20 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2015-06-10 06:34:20 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-06-10 06:34:20 ----A---- C:\WINDOWS\system32\authz.dll
2015-06-10 06:34:19 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2015-06-10 06:34:19 ----A---- C:\WINDOWS\system32\comctl32.dll
2015-06-10 06:34:16 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-06-10 06:34:16 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-06-10 06:34:15 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-06-10 06:34:14 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-06-10 06:34:14 ----A---- C:\WINDOWS\system32\wininet.dll
2015-06-10 06:34:13 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-06-10 06:34:12 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-06-10 06:34:11 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-06-10 06:34:11 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-06-10 06:34:10 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-06-10 06:34:10 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-06-10 06:34:10 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-06-10 06:34:09 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2015-06-10 06:34:09 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-06-10 06:34:09 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-06-10 06:34:08 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-06-10 06:34:08 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-06-10 06:34:07 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-06-10 06:34:07 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-06-10 06:34:07 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-06-10 06:34:07 ----A---- C:\WINDOWS\system32\jscript.dll
2015-06-10 06:34:07 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-06-10 06:34:06 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-06-10 06:34:06 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2015-06-10 06:34:06 ----A---- C:\WINDOWS\system32\webcheck.dll
2015-06-10 06:34:06 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2015-06-10 06:34:06 ----A---- C:\WINDOWS\system32\dxtrans.dll
2015-06-10 06:34:05 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2015-06-10 06:34:05 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-06-10 06:34:05 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2015-06-10 06:34:05 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-06-10 06:34:05 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-06-10 06:34:05 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-06-10 06:34:05 ----A---- C:\WINDOWS\system32\ieui.dll
2015-06-10 06:34:05 ----A---- C:\WINDOWS\system32\iepeers.dll
2015-06-10 06:34:05 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-06-10 06:33:06 ----A---- C:\WINDOWS\system32\win32k.sys
2015-06-04 15:27:46 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-06-04 15:27:46 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-06-04 15:22:41 ----D---- C:\WINDOWS\Migration
2015-05-19 09:52:58 ----A---- C:\WINDOWS\system32\drivers\avgidsdrivera.sys

======List of files/folders modified in the last 1 month======

Zdravim

Log neni kompletni, ale i tady je havet videt. Pro priste se prosim snazte zkopirovat cely obsah logu.

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )

ukoncete vsechny programy
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Scan, pote na Cleaning
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

# AdwCleaner v4.206 - Log vytvořen 15/06/2015 v 23:28:43
# Aktualizováno 01/06/2015 by Xplode
# Databáze : 2015-06-14.1 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : user - USER-PC
# Spuštěno z : C:\Users\user\Downloads\adwcleaner_4.206.exe
# Nastavení : Čištění

***** [ Služby ] *****

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\{2a9eadfd-2c72-c225-2a9e-eadfd2c7b7f4}
Složka Smazáno : C:\Program Files (x86)\PricceMinus
Složka Smazáno : C:\ProgramData\dbbeaikmdologmaijpkocopadlbojncb
Soubor Smazáno : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
Soubor Smazáno : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal

***** [ Naplánované úlohy ] *****

***** [ Zástupci ] *****

***** [ Registry ] *****

Klíč Smazáno : HKCU\Software\Avg Secure Update
Klíč Smazáno : HKU\.DEFAULT\Software\Avg Secure Update

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17840

-\\ Google Chrome v43.0.2357.124

[C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://www.dalesearch.com/?q={searchTerms}&bab ... 0&tsp=5029

-\\ Chromium v

-\\ Comodo Dragon v

-\\ Chrome Canary v

*************************

AdwCleaner[R2].txt - [1236 bytů] - [14/04/2015 22:49:42]
AdwCleaner[R3].txt - [1949 bytů] - [15/06/2015 23:27:34]
AdwCleaner[S2].txt - [1244 bytů] - [14/04/2015 22:51:35]
AdwCleaner[S3].txt - [1610 bytů] - [15/06/2015 23:28:43]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1668 bytů] ##########

Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-06-2015
Ran by user (administrator) on USER-PC on 15-06-2015 23:44:15
Running from C:\Users\user\Desktop
Loaded Profiles: user (Available Profiles: user)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(KYE) C:\Program Files (x86)\Genius\Manticore\MTHid.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.2.0.17\Lightshot.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
() C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
(Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6846096 2012-11-19] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-04-09] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [585048 2014-05-31] (Razer Inc.)
HKLM-x32\...\Run: [Manticore] => C:\Program Files (x86)\Genius\Manticore\MThid.exe [293376 2013-10-29] (KYE)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3727824 2015-06-05] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKU\S-1-5-21-1175257845-2453519272-1601990809-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [28787840 2015-06-02] (Skype Technologies S.A.)
HKU\S-1-5-21-1175257845-2453519272-1601990809-1001\...\Run: [GoogleChromeAutoLaunch_4E874A737D5662A34EBBEADB3A9C4A09] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896 2015-06-05] (Google Inc.)
HKU\S-1-5-21-1175257845-2453519272-1601990809-1001\...\MountPoints2: {40b5809e-9621-11e3-bf17-74d02b8f9a0e} - "H:\Startme.exe"
HKU\S-1-5-21-1175257845-2453519272-1601990809-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [11776 2014-10-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1175257845-2453519272-1601990809-1001 -> DefaultScope {2501C682-40EA-4C11-9F44-63AB85781AF7} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
SearchScopes: HKU\S-1-5-21-1175257845-2453519272-1601990809-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1175257845-2453519272-1601990809-1001 -> {2501C682-40EA-4C11-9F44-63AB85781AF7} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
SearchScopes: HKU\S-1-5-21-1175257845-2453519272-1601990809-1001 -> {49B06FC3-2262-4548-A5D2-4EF1C6539EE5} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_12454
SearchScopes: HKU\S-1-5-21-1175257845-2453519272-1601990809-1001 -> {4E118B4E-72F3-4317-BB60-0E1E351252CE} URL = http://encyklopedie.seznam.cz/search?q= ... arch_12454
SearchScopes: HKU\S-1-5-21-1175257845-2453519272-1601990809-1001 -> {6E690F89-6A29-4601-BB53-64EAC5E4DF09} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_12454
SearchScopes: HKU\S-1-5-21-1175257845-2453519272-1601990809-1001 -> {88A686A7-EC8F-4233-AC8B-2F7DA00D2E48} URL = http://www.mapy.cz/?query={searchTerms} ... arch_12454
SearchScopes: HKU\S-1-5-21-1175257845-2453519272-1601990809-1001 -> {A3771383-6A54-45DB-B845-5A939FCCF58E} URL = http://www.novinky.cz/hledej?w={searchT ... arch_12454
SearchScopes: HKU\S-1-5-21-1175257845-2453519272-1601990809-1001 -> {B29D237C-6311-478C-88C3-3A627BBEAA74} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_12454
SearchScopes: HKU\S-1-5-21-1175257845-2453519272-1601990809-1001 -> {E93B80D5-4276-4E28-AB06-3C33ED97ED31} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-16] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-16] (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll No File
FF Plugin: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-05] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-02-15] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-02-15] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-16] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-16] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npnxgameEU.dll [2014-02-15] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin HKU\S-1-5-21-1175257845-2453519272-1601990809-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\user\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-02-20] (Unity Technologies ApS)

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-28]
CHR Extension: (Google Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-28]
CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-12]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-28]
CHR Extension: (Dota 2 / CS:GO lounge autobump) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cefaeceoipbbajophehdidoeamkmkhej [2015-03-17]
CHR Extension: (Steam inventory helper) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2014-10-17]
CHR Extension: (Google Search) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-28]
CHR Extension: (Lounge Assistant) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\enjonnlehciedbcidabdglnnihcncbml [2014-10-06]
CHR Extension: (Google Sheets) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-28]
CHR Extension: (LoungeDestroyer) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2014-10-09]
CHR Extension: (AdBlock) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-09-28]
CHR Extension: (Skype Click to Call) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-05-18]
CHR Extension: (Dingit Infinite HD App) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\llnhnfikffkjbdnfallfpgikamegbbag [2015-05-23]
CHR Extension: (Agario Extended – Enhance Agar.io Gameplay) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\mflicjopopjcpojfoefhbpdncmjbcbin [2015-05-24]
CHR Extension: (Twitch Now) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2015-04-04]
CHR Extension: (Google Wallet) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-12]
CHR Extension: (Enhanced Steam) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2014-10-09]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-28]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [Not Found]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-04] ()
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3461072 2015-06-05] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [312816 2015-06-05] (AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [448384 2014-12-03] ()
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-04-09] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-02-15] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-04-09] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-04-09] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-04] ()
R3 AU8168; C:\Windows\system32\DRIVERS\au630x64.sys [792648 2013-09-23] (Realtek )
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21152 2015-03-27] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [287200 2015-05-19] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [253408 2015-05-12] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [256992 2015-04-15] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [378336 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [224224 2015-05-12] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [285152 2015-05-12] (AVG Technologies CZ, s.r.o.)
S3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [489776 2015-05-29] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-09-09] (Symantec Corporation)
S3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-01-20] (LogMeIn Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-04-09] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-04-09] (NVIDIA Corporation)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [39080 2014-05-19] (Razer Inc)
R3 VCSVADHWSer; C:\Windows\system32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-15 23:44 - 2015-06-15 23:44 - 00019108 _____ C:\Users\user\Desktop\FRST.txt
2015-06-15 23:43 - 2015-06-15 23:44 - 00000000 ____D C:\FRST
2015-06-15 23:43 - 2015-06-15 23:43 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2015-06-15 23:43 - 2015-06-15 23:43 - 00029696 _____ C:\Users\user\AppData\Local\MSGBOX.EXE
2015-06-15 23:43 - 2015-06-15 23:43 - 00015327 _____ C:\Users\user\Desktop\LM.bat
2015-06-15 23:42 - 2015-06-15 23:42 - 02109952 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2015-06-15 23:26 - 2015-06-15 23:26 - 02231296 _____ C:\Users\user\Downloads\adwcleaner_4.206.exe
2015-06-15 22:49 - 2015-06-15 22:49 - 01222144 _____ C:\Users\user\Desktop\RSITx64.exe
2015-06-15 22:30 - 2015-06-15 22:30 - 00000000 ____D C:\rsit
2015-06-15 22:20 - 2015-06-15 22:36 - 00000456 _____ C:\WINDOWS\Tasks\Bidaily Synchronize Task[973b].job
2015-06-15 22:20 - 2015-06-15 22:20 - 00003340 _____ C:\WINDOWS\System32\Tasks\Bidaily Synchronize Task[973b]
2015-06-15 22:13 - 2015-06-15 22:16 - 00000000 ____D C:\Users\user\Desktop\x
2015-06-13 16:54 - 2015-06-13 16:54 - 00000000 ____D C:\Users\user\AppData\Local\GWX
2015-06-13 09:15 - 2015-06-13 09:15 - 00000000 ____D C:\Program Files\Common Files\AV
2015-06-12 16:52 - 2015-06-12 16:52 - 00000222 _____ C:\Users\user\Desktop\The Four Kings Casino and Slots.url
2015-06-10 06:37 - 2015-05-22 15:08 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-06-10 06:37 - 2015-05-21 15:08 - 01119232 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-06-10 06:37 - 2015-05-21 15:08 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-06-10 06:37 - 2015-05-21 15:08 - 00756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-06-10 06:37 - 2015-05-21 15:08 - 00422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-06-10 06:37 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2015-06-10 06:37 - 2015-05-21 15:08 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-06-10 06:37 - 2015-04-17 00:07 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-06-10 06:37 - 2015-04-09 00:07 - 00410336 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-06-10 06:36 - 2015-05-25 15:23 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-06-10 06:36 - 2015-05-25 15:07 - 01430528 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-06-10 06:36 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2015-06-10 06:36 - 2015-04-02 00:42 - 03097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-06-10 06:36 - 2015-04-02 00:30 - 02483712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-06-10 06:36 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2015-06-10 06:36 - 2015-03-20 05:08 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-06-10 06:36 - 2015-03-20 04:37 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-06-10 06:36 - 2015-03-20 04:07 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-06-10 06:36 - 2015-03-02 03:43 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2015-06-10 06:36 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2015-06-10 06:34 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-06-10 06:34 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-06-10 06:34 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-06-10 06:34 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-06-10 06:34 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-06-10 06:34 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-06-10 06:34 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2015-06-10 06:34 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-06-10 06:34 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-06-10 06:34 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-06-10 06:34 - 2015-05-23 04:47 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-06-10 06:34 - 2015-05-23 04:43 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-06-10 06:34 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-06-10 06:34 - 2015-05-23 04:38 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-06-10 06:34 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-06-10 06:34 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-06-10 06:34 - 2015-05-23 04:28 - 01042944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-06-10 06:34 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-06-10 06:34 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-06-10 06:34 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-06-10 06:34 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-06-10 06:34 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-06-10 06:34 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-06-10 06:34 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-06-10 06:34 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-06-10 06:34 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-06-10 06:34 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-06-10 06:34 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-06-10 06:34 - 2015-05-22 20:23 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-06-10 06:34 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-06-10 06:34 - 2015-05-22 20:15 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-06-10 06:34 - 2015-05-22 20:09 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-06-10 06:34 - 2015-05-22 20:08 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-06-10 06:34 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-06-10 06:34 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-06-10 06:34 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-06-10 06:34 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-06-10 06:34 - 2015-05-22 19:49 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-06-10 06:34 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-06-10 06:34 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-06-10 06:34 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2015-06-10 06:34 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2015-06-10 06:34 - 2015-04-16 08:17 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-06-10 06:34 - 2015-04-14 00:37 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2015-06-10 06:34 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2015-06-10 06:34 - 2015-04-10 02:40 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-06-10 06:34 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-06-10 06:34 - 2015-04-01 06:21 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-06-10 06:34 - 2015-04-01 06:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2015-06-10 06:34 - 2015-04-01 06:17 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2015-06-10 06:34 - 2015-04-01 06:08 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2015-06-10 06:34 - 2015-04-01 05:46 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-06-10 06:34 - 2015-04-01 05:17 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-06-10 06:34 - 2015-04-01 05:17 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-06-10 06:34 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2015-06-10 06:34 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-06-10 06:34 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-06-10 06:34 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2015-06-10 06:34 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-06-10 06:34 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-06-10 06:33 - 2015-05-21 18:47 - 04177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-06-04 15:27 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-06-04 15:27 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-28 21:53 - 2015-05-28 22:18 - 00000000 ____D C:\Users\user\Desktop\nEophyte
2015-05-24 22:39 - 2015-06-13 16:48 - 00000352 _____ C:\Users\user\Desktop\Nový textový dokument.txt
2015-05-23 16:08 - 2015-05-23 16:08 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2015-05-22 16:32 - 2015-06-15 23:30 - 00005768 _____ C:\WINDOWS\setupact.log
2015-05-22 16:32 - 2015-05-22 16:32 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-05-19 09:52 - 2015-05-19 09:52 - 00287200 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdrivera.sys

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-15 23:42 - 2015-04-14 15:12 - 01677240 _____ C:\WINDOWS\WindowsUpdate.log
2015-06-15 23:35 - 2013-08-21 17:21 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1175257845-2453519272-1601990809-1001
2015-06-15 23:34 - 2013-09-03 17:44 - 00000000 ____D C:\Program Files (x86)\Steam
2015-06-15 23:31 - 2014-05-19 17:07 - 00000000 ___DO C:\Users\user\OneDrive
2015-06-15 23:30 - 2014-05-19 16:39 - 00000000 ____D C:\ProgramData\NVIDIA
2015-06-15 23:30 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-06-15 23:28 - 2015-04-14 22:47 - 00000000 ____D C:\AdwCleaner
2015-06-15 23:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-06-15 22:49 - 2015-04-14 15:16 - 00000000 ____D C:\Program Files\trend micro
2015-06-15 22:35 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-06-15 22:26 - 2014-12-16 21:01 - 00000000 __SHD C:\Users\user\AppData\Local\EmieBrowserModeList
2015-06-15 22:26 - 2014-05-30 21:14 - 00000000 __SHD C:\Users\user\AppData\Local\EmieUserList
2015-06-15 22:26 - 2014-05-30 21:14 - 00000000 __SHD C:\Users\user\AppData\Local\EmieSiteList
2015-06-15 22:19 - 2013-09-16 15:58 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype
2015-06-15 22:02 - 2013-11-23 17:36 - 00000000 ____D C:\Users\user\AppData\Roaming\TS3Client
2015-06-15 19:22 - 2014-05-30 21:14 - 00003962 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{8F0DD633-74E7-4AEF-9F87-94F643D35857}
2015-06-15 17:38 - 2015-02-01 14:44 - 00000000 ____D C:\Users\user\AppData\Roaming\.minecraft
2015-06-15 12:36 - 2014-09-24 17:57 - 00000000 ____D C:\ProgramData\MFAData
2015-06-15 10:48 - 2014-07-27 03:59 - 00000466 ____H C:\WINDOWS\Tasks\Norton Security Scan for user.job
2015-06-14 20:09 - 2015-04-14 16:16 - 00000080 _____ C:\Users\user\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-06-14 12:36 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-06-14 04:42 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-06-13 22:46 - 2014-05-19 17:54 - 02316800 ___SH C:\Users\user\Desktop\Thumbs.db
2015-06-13 20:43 - 2015-05-03 19:02 - 00000000 ____D C:\Users\user\Desktop\meme
2015-06-13 20:24 - 2015-04-07 22:08 - 00000000 ____D C:\Users\user\Desktop\FB projekt
2015-06-13 16:55 - 2013-09-16 15:58 - 00000000 ____D C:\ProgramData\Skype
2015-06-13 16:52 - 2013-08-22 16:44 - 05031600 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-06-13 16:49 - 2014-12-13 08:40 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-06-13 16:49 - 2014-07-09 03:11 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-06-13 16:49 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-06-13 16:49 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-06-13 09:14 - 2014-09-24 18:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-06-10 16:50 - 2015-04-03 00:57 - 00000000 ____D C:\Users\user\Desktop\HLDJ
2015-06-10 14:45 - 2015-04-14 16:14 - 00000000 ____D C:\Program Files\Rockstar Games
2015-06-10 14:45 - 2013-09-30 13:59 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-06-10 07:49 - 2013-08-21 17:50 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-06-10 07:49 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-06-10 07:44 - 2013-08-21 17:50 - 140135120 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-06-09 00:29 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-06-06 12:19 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-06-06 12:18 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-06-04 15:22 - 2015-04-04 03:29 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-06-04 15:22 - 2015-04-04 03:29 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-06-04 15:22 - 2014-06-08 00:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-06-04 15:21 - 2014-06-08 00:55 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-06-04 15:21 - 2014-06-08 00:55 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-06-04 15:19 - 2014-03-18 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2015-06-03 18:18 - 2013-08-22 17:38 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-06-03 18:18 - 2013-08-22 17:38 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-01 21:36 - 2014-03-18 17:33 - 01749406 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-06-01 21:36 - 2014-03-18 16:54 - 00739720 _____ C:\WINDOWS\system32\perfh005.dat
2015-06-01 21:36 - 2014-03-18 16:54 - 00151940 _____ C:\WINDOWS\system32\perfc005.dat
2015-06-01 08:19 - 2014-07-31 18:28 - 00000000 ____D C:\Users\user\AppData\Local\AVG
2015-05-17 18:00 - 2013-09-16 15:58 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-05-16 18:22 - 2015-04-06 14:56 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-05-16 18:21 - 2013-09-03 17:59 - 00000000 ____D C:\Program Files (x86)\Java

==================== Files in the root of some directories =======

2014-09-26 15:03 - 2014-09-26 15:03 - 7487465 _____ () C:\Program Files (x86)\BebasNeue (1).zip
2014-07-03 17:53 - 2014-07-03 17:53 - 0000000 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2014-09-26 16:10 - 2014-09-26 16:07 - 7589125 _____ () C:\Program Files (x86)\SamoSansPro.zip
2014-02-05 00:51 - 2014-02-05 00:52 - 692137127 _____ () C:\Users\user\AppData\Roaming\minecraft.jar
2015-02-22 22:09 - 2015-02-22 17:16 - 0133190 _____ () C:\Users\user\AppData\Roaming\TMPsteam.txt
2015-06-15 23:43 - 2015-06-15 23:43 - 0029696 _____ () C:\Users\user\AppData\Local\MSGBOX.EXE
2014-05-22 22:47 - 2014-05-22 22:47 - 0000003 _____ () C:\Users\user\AppData\Local\updater.log
2014-05-22 22:47 - 2015-02-01 18:34 - 0000425 _____ () C:\Users\user\AppData\Local\UserProducts.xml

Some files in TEMP:
====================
C:\Users\user\AppData\Local\Temp\Quarantine.exe
C:\Users\user\AppData\Local\Temp\SkypeSetup.exe
C:\Users\user\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-06-15 03:03

==================== End of log ============================

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu bude na plose ulozen fixlog, jehoz obsah mi vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CloseProcesses:
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-04-09] (NVIDIA Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKU\S-1-5-21-1175257845-2453519272-1601990809-1001\...\MountPoints2: {40b5809e-9621-11e3-bf17-74d02b8f9a0e} - "H:\Startme.exe" 

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
FF Plugin: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll No File
FF Plugin: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll No File
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]

2015-06-15 23:43 - 2015-06-15 23:43 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2015-06-15 23:43 - 2015-06-15 23:43 - 00029696 _____ C:\Users\user\AppData\Local\MSGBOX.EXE
2015-06-15 23:43 - 2015-06-15 23:43 - 00015327 _____ C:\Users\user\Desktop\LM.bat
2015-06-15 23:26 - 2015-06-15 23:26 - 02231296 _____ C:\Users\user\Downloads\adwcleaner_4.206.exe
2015-06-15 22:49 - 2015-06-15 22:49 - 01222144 _____ C:\Users\user\Desktop\RSITx64.exe
2015-06-15 22:30 - 2015-06-15 22:30 - 00000000 ____D C:\rsit
2015-06-15 23:28 - 2015-04-14 22:47 - 00000000 ____D C:\AdwCleaner
2015-06-15 22:49 - 2015-04-14 15:16 - 00000000 ____D C:\Program Files\trend micro

Task: {32FCB3F0-BF19-4069-8F06-481CE1B2C868} - \0814tbUpdateInfo No Task File <==== ATTENTION
Task: {4A83C890-DC93-49B5-AF69-18F15A75334D} - \Sk-Enhancer-S-5499298658 No Task File <==== ATTENTION
Task: {AE139DFA-9D3C-4D84-89C6-203775470BD6} - System32\Tasks\Bidaily Synchronize Task[973b] => c:\programdata\{2a9eadfd-2c72-c225-2a9e-eadfd2c7b7f4}\tasty selection - episode #1 [best tasty electro house 2014 mix].exe <==== ATTENTION
c:\programdata\{2a9eadfd-2c72-c225-2a9e-eadfd2c7b7f4}
Task: {E38A3FDD-382C-479A-A153-84214358699E} - \GBUpdate-S-1409908878 No Task File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Bidaily Synchronize Task[973b].job => c:\programdata\{2a9eadfd-2c72-c225-2a9e-eadfd2c7b7f4}\tasty selection - episode #1 [best tasty electro house 2014 mix].exe <==== ATTENTION
c:\programdata\{2a9eadfd-2c72-c225-2a9e-eadfd2c7b7f4}
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
Hosts:
EmptyTemp:
End

Fix result of Farbar Recovery Scan Tool (x64) Version:13-06-2015
Ran by user at 2015-06-15 23:58:10 Run:1
Running from C:\Users\user\Desktop
Loaded Profiles: user (Available Profiles: user)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-04-09] (NVIDIA Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKU\S-1-5-21-1175257845-2453519272-1601990809-1001\...\MountPoints2: {40b5809e-9621-11e3-bf17-74d02b8f9a0e} - "H:\Startme.exe"

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll No File
FF Plugin: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll No File
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]

2015-06-15 23:43 - 2015-06-15 23:43 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2015-06-15 23:43 - 2015-06-15 23:43 - 00029696 _____ C:\Users\user\AppData\Local\MSGBOX.EXE
2015-06-15 23:43 - 2015-06-15 23:43 - 00015327 _____ C:\Users\user\Desktop\LM.bat
2015-06-15 23:26 - 2015-06-15 23:26 - 02231296 _____ C:\Users\user\Downloads\adwcleaner_4.206.exe
2015-06-15 22:49 - 2015-06-15 22:49 - 01222144 _____ C:\Users\user\Desktop\RSITx64.exe
2015-06-15 22:30 - 2015-06-15 22:30 - 00000000 ____D C:\rsit
2015-06-15 23:28 - 2015-04-14 22:47 - 00000000 ____D C:\AdwCleaner
2015-06-15 22:49 - 2015-04-14 15:16 - 00000000 ____D C:\Program Files\trend micro

Task: {32FCB3F0-BF19-4069-8F06-481CE1B2C868} - \0814tbUpdateInfo No Task File <==== ATTENTION
Task: {4A83C890-DC93-49B5-AF69-18F15A75334D} - \Sk-Enhancer-S-5499298658 No Task File <==== ATTENTION
Task: {AE139DFA-9D3C-4D84-89C6-203775470BD6} - System32\Tasks\Bidaily Synchronize Task[973b] => c:\programdata\{2a9eadfd-2c72-c225-2a9e-eadfd2c7b7f4}\tasty selection - episode #1 [best tasty electro house 2014 mix].exe <==== ATTENTION
c:\programdata\{2a9eadfd-2c72-c225-2a9e-eadfd2c7b7f4}
Task: {E38A3FDD-382C-479A-A153-84214358699E} - \GBUpdate-S-1409908878 No Task File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Bidaily Synchronize Task[973b].job => c:\programdata\{2a9eadfd-2c72-c225-2a9e-eadfd2c7b7f4}\tasty selection - episode #1 [best tasty electro house 2014 mix].exe <==== ATTENTION
c:\programdata\{2a9eadfd-2c72-c225-2a9e-eadfd2c7b7f4}
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
"HKU\S-1-5-21-1175257845-2453519272-1601990809-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{40b5809e-9621-11e3-bf17-74d02b8f9a0e}" => key removed successfully
HKCR\CLSID\{40b5809e-9621-11e3-bf17-74d02b8f9a0e} => key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.65.2" => key removed successfully
"HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.65.2" => key removed successfully
gupdate => Service removed successfully
gupdatem => Service removed successfully
C:\Users\user\Desktop\FRSTLauncher.exe => moved successfully.
C:\Users\user\AppData\Local\MSGBOX.EXE => moved successfully.
C:\Users\user\Desktop\LM.bat => moved successfully.
C:\Users\user\Downloads\adwcleaner_4.206.exe => moved successfully.
C:\Users\user\Desktop\RSITx64.exe => moved successfully.
C:\rsit => moved successfully.
C:\AdwCleaner => moved successfully.
C:\Program Files\trend micro => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{32FCB3F0-BF19-4069-8F06-481CE1B2C868}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32FCB3F0-BF19-4069-8F06-481CE1B2C868}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\0814tbUpdateInfo" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4A83C890-DC93-49B5-AF69-18F15A75334D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A83C890-DC93-49B5-AF69-18F15A75334D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Sk-Enhancer-S-5499298658" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AE139DFA-9D3C-4D84-89C6-203775470BD6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AE139DFA-9D3C-4D84-89C6-203775470BD6}" => key removed successfully
C:\Windows\System32\Tasks\Bidaily Synchronize Task[973b] => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Bidaily Synchronize Task[973b]" => key removed successfully
"c:\programdata\{2a9eadfd-2c72-c225-2a9e-eadfd2c7b7f4}" => File/Folder not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E38A3FDD-382C-479A-A153-84214358699E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E38A3FDD-382C-479A-A153-84214358699E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GBUpdate-S-1409908878" => key removed successfully
C:\WINDOWS\Tasks\Bidaily Synchronize Task[973b].job => moved successfully.
"c:\programdata\{2a9eadfd-2c72-c225-2a9e-eadfd2c7b7f4}" => File/Folder not found.
C:\ProgramData\TEMP => ":373E1720" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully.
Hosts restored successfully.
EmptyTemp: => 870.8 MB temporary data Removed.

The system needed a reboot..

==== End of Fixlog 23:58:38 ====

Takze jeste uklidime.

Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
Oznacte jen moznost "Remove disinfection tools"
kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

Stále mi nejde spustit google chrome.

Zazalohujte zalozky napr. pomoci http://www.stahuj.centrum.cz/internet_a ... me-backup/
nasledne Chrome odinstalujte vcetne jeho profilu a pote jej znovu nainstalujte.

Chrome jsem odinstaloval, ale když se ho snažím znovu nainstalovat napíše to "Instalace se nezdařila. Instalační program aplikace Google Chrome se nespustil."

Odinstaloval jste jej vcetne profilu?
Vyzkousejte jej nainstalovat z tohoto alternativniho installeru https://support.google.com/installer/an ... 6299?hl=cs

Stále to samé. "Instalace se nezdařila. Instalační program aplikace Google Chrome se nespustil."

Zkuste na instalacni soubor kliknout pravym -> spustit jako spravce.
Pokud to nepujde, mam v hlave jeste nekolik zpusobu, ktere by mohly situaci vyresit, ale dame to dohromady zitra. Zatim dobrou noc.

Toto funguje.

Moc vám děkuji.

VIRY.CZ

stáhnul jsem špatnej program

stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program

Re: stáhnul jsem špatnej program