zapinanie proxy servra asi sposobene virusom

[Zdenno]

Dobry vecer,
v internetovom prehliadaci (skusal som IE, Chrome, Firefox) mi nespusta stranky s https protokolom a hlasi NET::ERR_CERT_INVALID (Problem s certifikatom).
Zistil som ze v nastaveniach siete mi zapina proxy server pre LAN ale adresa proxy servra zostava prazdna, preto zrejme nefunguju stranky s https. Opakovane som tuto volbu zrusil a vzdy sa to po nejakom case zapne naspat. Mam podozrenie ze to robi nejaky virus. Cez Eset online scanner mi naslo potencialnu hrozbu: somoto.f.

pripajam RSIT log:

Logfile of random's system information tool 1.10 (written by random/random)
Run by User at 2014-10-29 18:52:31
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 11 GB (2%) free of 477 GB
Total RAM: 3327 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:53:09, on 29. 10. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Program Files\Search Extensions\Client.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\HTC\HTC Sync Manager\HTC Sync\adb.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\MagicTune Premium\GammaTray.exe
C:\Program Files\SEC\Natural Color Pro\NCProTray.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Steam\bin\steamwebhelper.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\User\Downloads\RSIT.exe
C:\Program Files\trend micro\User.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:49475;https=127.0.0.1:49475
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
O4 - HKLM\..\Run: ["C:\Program Files\D-Link\D-ViewCam\MainConsole.EXE"] "C:\Program Files\D-Link\D-ViewCam\MainConsole.EXE" RunWithWindows
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1440357454-3219766321-1955108111-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1440357454-3219766321-1955108111-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: Dropbox.lnk = User\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: GammaTray.lnk = ?
O4 - Global Startup: NCProTray.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {57AF0810-BDA7-47A5-B02D-FDA1073C04B0} (TunnelX Control) - https://eu.mydlink.com/8D/activeX//TunnelX.ocx
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\PROGRA~1\NVIDIA~1\NVSTRE~1\rxinput.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @C:\Program Files\Google\Chrome Remote Desktop\38.0.2125.9\remoting_core.dll,-101 (chromoting) - Spoločnosť Google Inc. - C:\Program Files\Google\Chrome Remote Desktop\38.0.2125.9\remoting_host.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HTCMonitorService - Nero AG - C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: MagicTuneEngine - Unknown owner - C:\Program Files\MagicTune Premium\MagicTuneEngine.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: upsMonitor - Acresso - C:\PROGRA~1\VIEWPO~1.10\UPSMON~1.EXE
O23 - Service: Apache Tomcat upsTomcat (upsTomcat) - Apache Software Foundation - C:\Program Files\ViewPower2.10\tomcat\bin\tomcat6.exe

--
End of file - 10433 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1440357454-3219766321-1955108111-1000Core.job - C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1440357454-3219766321-1955108111-1000UA.job - C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\urbr1dv5.default

"{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
"web2pdfextension@web2pdf.adobedotcom"=C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
"{0153E448-190B-4987-BDE1-F256CADA672F}"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
"{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=Doplnok iTunes Detector
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3508.0205]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files\real\realplayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Peppe rFlash Video Shim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.6.14]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.6.14]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprpplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@realnetworks.com/npdlplugin;version=1]
"Description"=RealDownloader Plugin
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\urbr1dv5.default\extensions\
ascsurfingprotection@iobit.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14 542376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-09-29 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2012-01-03 339872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]
Advanced SystemCare Browser Protection - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL [2014-02-20 669504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-09-29 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2012-01-03 339872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2012-01-03 339872]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"HDAudDeck"=C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [2010-10-08 1705584]
""= []
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 974432]
"Nvtmru"=C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-07-27 1028896]
""C:\Program Files\D-Link\D-ViewCam\MainConsole.EXE""=C:\Program Files\D-Link\D-ViewCam\MainConsole.EXE RunWithWindows []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-27 107912]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"AlcoholAutomount"=C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2009-09-18 205976]
"AdobeBridge"= []
"Steam"=C:\Program Files\Steam\steam.exe [2014-10-21 1938624]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2012-01-03 815512]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher]
C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2012-01-03 36760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-02-12 43848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2014-02-21 152392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
C:\Program Files\Samsung\Kies\KiesAirMessage.exe [2012-12-18 578560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]
C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2012-12-20 844296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
C:\Program Files\Samsung\Kies\Kies.exe [2012-12-20 1476104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2012-12-20 310280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2014-01-17 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
C:\Users\User\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-07-07 1178168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files\Real\RealPlayer\update\realsched.exe [2013-09-01 295512]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2011-12-09 74752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CineForm Status.lnk]
C:\PROGRA~1\CineForm\Tools\GOPROC~1.EXE []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
GammaTray.lnk - C:\Program Files\MagicTune Premium\GammaTray.exe
NCProTray.lnk - C:\Program Files\SEC\Natural Color Pro\NCProTray.exe

C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~1\NVIDIA~1\NVSTRE~1\rxinput.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-10-29 18:52:31 ----D---- C:\rsit
2014-10-29 18:52:31 ----D---- C:\Program Files\trend micro
2014-10-28 20:02:11 ----D---- C:\Program Files\ESET
2014-10-28 17:38:21 ----D---- C:\Users\User\AppData\Roaming\ParetoLogic
2014-10-28 17:38:21 ----D---- C:\Users\User\AppData\Roaming\DriverCure
2014-10-28 17:38:09 ----D---- C:\ProgramData\ParetoLogic
2014-10-28 17:19:23 ----D---- C:\Program Files\Search Extensions
2014-10-20 17:31:07 ----D---- C:\ProgramData\Package Cache
2014-10-20 17:30:36 ----D---- C:\Program Files\EmulationStation
2014-10-18 16:53:46 ----D---- C:\Windows\rescache
2014-10-15 16:54:23 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 16:54:23 ----A---- C:\Windows\system32\termsrv.dll
2014-10-15 16:54:22 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 16:54:22 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 16:54:21 ----A---- C:\Windows\system32\TSpkg.dll
2014-10-15 16:54:21 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 16:54:20 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 16:54:20 ----A---- C:\Windows\system32\credssp.dll
2014-10-15 16:54:14 ----A---- C:\Windows\system32\tsgqec.dll
2014-10-15 16:54:14 ----A---- C:\Windows\system32\mstsc.exe
2014-10-15 16:54:14 ----A---- C:\Windows\system32\aaclient.dll
2014-10-15 16:54:13 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 16:54:12 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 16:52:58 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 16:52:58 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 16:52:58 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 16:52:57 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 16:52:56 ----A---- C:\Windows\system32\mf.dll
2014-10-15 16:52:56 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 16:52:56 ----A---- C:\Windows\system32\ci.dll
2014-10-15 16:52:56 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-10-15 16:52:55 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 16:52:55 ----A---- C:\Windows\system32\winload.exe
2014-10-15 16:52:55 ----A---- C:\Windows\system32\ntkrnlpa.exe
2014-10-15 16:52:55 ----A---- C:\Windows\system32\EncDump.dll
2014-10-15 16:52:55 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 16:52:55 ----A---- C:\Windows\system32\AudioSes.dll
2014-10-15 16:52:54 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 16:52:54 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 16:52:54 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 16:52:54 ----A---- C:\Windows\system32\evr.dll
2014-10-15 16:52:54 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 16:52:54 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 16:52:53 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 16:52:53 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 16:52:53 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 16:52:53 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 16:52:53 ----A---- C:\Windows\system32\AudioEng.dll
2014-10-15 16:52:52 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 16:52:52 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 16:52:52 ----A---- C:\Windows\system32\audiosrv.dll
2014-10-15 16:52:52 ----A---- C:\Windows\system32\audiodg.exe
2014-10-15 16:52:51 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 16:52:51 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 16:52:51 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 16:52:50 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 16:52:49 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 16:52:49 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 16:52:48 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 16:52:48 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 16:52:48 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 16:52:47 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 16:52:47 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 16:52:47 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 16:52:47 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 16:52:10 ----A---- C:\Windows\system32\generaltel.dll
2014-10-15 16:52:10 ----A---- C:\Windows\system32\aepdu.dll
2014-10-15 16:52:09 ----A---- C:\Windows\system32\aeinv.dll
2014-10-15 16:52:08 ----A---- C:\Windows\system32\win32k.sys
2014-10-15 16:51:53 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 16:51:51 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-15 16:51:51 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-10-15 16:51:51 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-10-15 16:51:50 ----A---- C:\Windows\system32\vbscript.dll
2014-10-15 16:51:50 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-15 16:51:50 ----A---- C:\Windows\system32\jsproxy.dll
2014-10-15 16:51:50 ----A---- C:\Windows\system32\ieUnatt.exe
2014-10-15 16:51:50 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-10-15 16:51:50 ----A---- C:\Windows\system32\dxtmsft.dll
2014-10-15 16:51:49 ----A---- C:\Windows\system32\wininet.dll
2014-10-15 16:51:49 ----A---- C:\Windows\system32\dxtrans.dll
2014-10-15 16:51:48 ----A---- C:\Windows\system32\mshtmled.dll
2014-10-15 16:51:48 ----A---- C:\Windows\system32\ieui.dll
2014-10-15 16:51:47 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-10-15 16:51:47 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-10-15 16:51:47 ----A---- C:\Windows\system32\iertutil.dll
2014-10-15 16:51:46 ----A---- C:\Windows\system32\jscript9diag.dll
2014-10-15 16:51:45 ----A---- C:\Windows\system32\mshtml.dll
2014-10-15 16:51:45 ----A---- C:\Windows\system32\jscript9.dll
2014-10-15 16:51:44 ----A---- C:\Windows\system32\iernonce.dll
2014-10-15 16:51:44 ----A---- C:\Windows\system32\ie4uinit.exe
2014-10-15 16:51:43 ----A---- C:\Windows\system32\urlmon.dll
2014-10-15 16:51:43 ----A---- C:\Windows\system32\msfeeds.dll
2014-10-15 16:51:43 ----A---- C:\Windows\system32\iedkcs32.dll
2014-10-15 16:51:43 ----A---- C:\Windows\system32\ieapfltr.dll
2014-10-15 16:51:41 ----A---- C:\Windows\system32\msrating.dll
2014-10-15 16:51:41 ----A---- C:\Windows\system32\iesetup.dll
2014-10-15 16:51:40 ----A---- C:\Windows\system32\ieframe.dll
2014-10-15 16:48:53 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 16:48:52 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 16:48:52 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 16:42:47 ----A---- C:\Windows\system32\msi.dll
2014-10-15 16:41:04 ----A---- C:\Windows\system32\packager.dll
2014-10-01 16:21:06 ----A---- C:\Windows\system32\qdvd.dll
2014-09-30 12:06:34 ----D---- C:\Program Files\Activation
2014-09-30 12:06:00 ----D---- C:\Users\User\AppData\Roaming\DlinkViewCam

======List of files/folders modified in the last 1 month======

2014-10-29 18:52:44 ----D---- C:\Windows\Prefetch
2014-10-29 18:52:31 ----RD---- C:\Program Files
2014-10-29 18:47:28 ----D---- C:\Windows\system32\config
2014-10-29 18:34:15 ----D---- C:\Windows\Temp
2014-10-29 18:07:27 ----D---- C:\Users\User\AppData\Roaming\Dropbox
2014-10-29 18:05:42 ----D---- C:\Program Files\Steam
2014-10-29 18:05:25 ----D---- C:\Windows\system32\Tasks
2014-10-29 18:05:00 ----D---- C:\ProgramData\NVIDIA
2014-10-29 18:02:52 ----A---- C:\Windows\ntbtlog.txt
2014-10-29 17:52:06 ----HD---- C:\Program Files\InstallShield Installation Information
2014-10-29 17:45:48 ----SHD---- C:\System Volume Information
2014-10-28 23:01:57 ----D---- C:\Users\User\AppData\Roaming\Azureus
2014-10-28 20:02:12 ----D---- C:\Windows\Downloaded Program Files
2014-10-28 18:59:18 ----D---- C:\Program Files\Mozilla Firefox
2014-10-28 18:15:45 ----SD---- C:\Users\User\AppData\Roaming\Microsoft
2014-10-28 18:15:45 ----SD---- C:\ProgramData\Microsoft
2014-10-28 17:47:37 ----D---- C:\Windows\Tasks
2014-10-28 17:47:37 ----D---- C:\Program Files\Common Files
2014-10-28 17:38:09 ----HD---- C:\ProgramData
2014-10-27 17:46:31 ----D---- C:\Windows\System32
2014-10-27 17:46:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-10-27 17:46:30 ----D---- C:\Windows\inf
2014-10-22 21:23:11 ----SHD---- C:\Windows\Installer
2014-10-22 21:23:11 ----SHD---- C:\Config.Msi
2014-10-18 16:53:46 ----D---- C:\Windows
2014-10-16 17:56:37 ----D---- C:\Windows\Microsoft.NET
2014-10-16 17:51:52 ----RSD---- C:\Windows\assembly
2014-10-16 17:15:10 ----D---- C:\Windows\system32\catroot2
2014-10-16 17:11:32 ----D---- C:\Windows\winsxs
2014-10-16 17:08:27 ----SD---- C:\Windows\system32\CompatTel
2014-10-16 17:08:25 ----D---- C:\Windows\system32\en-US
2014-10-16 17:08:23 ----D---- C:\Program Files\Internet Explorer
2014-10-16 17:08:20 ----D---- C:\Windows\system32\sk-SK
2014-10-16 17:08:19 ----D---- C:\Windows\system32\drivers
2014-10-16 17:08:17 ----D---- C:\Windows\system32\Dism
2014-10-16 17:08:17 ----D---- C:\Program Files\Windows Media Player
2014-10-16 17:08:14 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 17:08:14 ----D---- C:\Windows\system32\Boot
2014-10-15 22:11:51 ----D---- C:\ProgramData\Microsoft Help
2014-10-15 22:08:38 ----D---- C:\Windows\system32\MRT
2014-10-15 22:03:02 ----A---- C:\Windows\system32\MRT.exe
2014-10-15 16:53:34 ----D---- C:\Windows\system32\catroot
2014-10-07 21:11:29 ----D---- C:\ProgramData\Protexis
2014-10-06 20:02:02 ----RSD---- C:\Windows\Fonts
2014-10-05 20:24:49 ----D---- C:\Users\User\AppData\Roaming\Mp3tag
2014-10-03 15:08:34 ----D---- C:\Users\User\AppData\Roaming\TeamViewer
2014-10-02 17:18:02 ----D---- C:\Program Files\Google

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 231800]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-05-06 722416]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 NCPro;NCPro; C:\Windows\system32\drivers\MTictwl.sys [2008-07-04 14208]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 95920]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x86.sys [2009-07-13 50688]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad32v.sys [2013-05-14 34592]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2010-10-02 1149552]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 ar8vpvk4;ar8vpvk4; C:\Windows\system32\drivers\ar8vpvk4.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2012-09-20 83168]
S3 HTCAND32;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-10-26 25088]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2013-10-17 23040]
S3 HtcVCom32;HTC Diagnostic Port; C:\Windows\system32\DRIVERS\HtcVComV32.sys [2009-10-27 105984]
S3 MagicTune;MagicTune; C:\Windows\system32\drivers\MTiCtwl.sys [2008-07-04 14208]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2012-09-20 181344]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2012-12-13 45056]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;YunOS USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-02-12 43336]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 HTCMonitorService;HTCMonitorService; C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe [2013-11-18 87368]
R2 chromoting;@C:\Program Files\Google\Chrome Remote Desktop\38.0.2125.9\remoting_core.dll,-101; C:\Program Files\Google\Chrome Remote Desktop\38.0.2125.9\remoting_host.exe [2014-08-21 51016]
R2 MagicTuneEngine;MagicTuneEngine; C:\Program Files\MagicTune Premium\MagicTuneEngine.exe [2007-08-23 45056]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 22192]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-07-27 14592288]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-06-21 640288]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-07-27 1889568]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2010-03-10 189728]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-08-14 39056]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-06-21 413472]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
R2 upsMonitor;upsMonitor; C:\PROGRA~1\VIEWPO~1.10\UPSMON~1.EXE [2014-08-06 116224]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 1713904]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 288120]
R3 upsTomcat;Apache Tomcat upsTomcat; C:\Program Files\ViewPower2.10\tomcat\bin\tomcat6.exe [2011-04-15 57344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-04-05 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2014-05-04 2152736]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-25 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-04-05 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-09-19 108032]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-02-21 553288]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2013-02-25 543144]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-03-17 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[vyosek]

Zdravim

Odinstalujte vse od IOBit - jsou to cinske smejdy a spise jen skodi nez jsou uzitkem. Hledaji nesmyslne a neexistujici problemy, databazi haveti ukradli jine renomovane spolecnosti

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Po spusteni probehne stazeni databaze
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  emptyclsid;
  iedefaults;
  FFdefaults;
  CHRdefaults;
  emptyalltemp;
  resethosts;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[Zdenno]

# AdwCleaner v4.002 - Report created 29/10/2014 at 21:43:10
# DB v2014-10-26.6
# Updated 27/10/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : User - USER-PC
# Running from : C:\Users\User\Desktop\adwcleaner_4.002.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\User\AppData\Roaming\DriverCure
Folder Deleted : C:\ProgramData\NCH Software
Folder Deleted : C:\Program Files\NCH Software
Folder Deleted : C:\ProgramData\ParetoLogic
Folder Deleted : C:\Users\User\AppData\Roaming\ParetoLogic
Folder Deleted : C:\Program Files\Search Extensions
Folder Deleted : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj
File Deleted : C:\END
File Deleted : C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\urbr1dv5.default\user.js

***** [ Scheduled Tasks ] *****

Task Deleted : RocketTab Update Task
Task Deleted : RocketTab

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKCU\Software\RocketTabInstalled
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Myfree Codec
Key Deleted : HKLM\SOFTWARE\ParetoLogic
Key Deleted : HKLM\SOFTWARE\RocketTab
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RocketTab
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17344


-\\ Mozilla Firefox v11.0 (sk)


-\\ Google Chrome v


*************************

AdwCleaner[R0].txt - [2914 octets] - [29/10/2014 21:40:16]
AdwCleaner[S0].txt - [2896 octets] - [29/10/2014 21:43:10]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2956 octets] ##########

[Zdenno]

Zoek.exe v5.0.0.0 Updated 28-10-2014
Tool run by User on st 29. 10. 2014 at 21:56:50,19.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\User\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

29. 10. 2014 21:57:26 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1440357454-3219766321-1955108111-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1440357454-3219766321-1955108111-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\urbr1dv5.default\prefs.js:

Added to C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\urbr1dv5.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

==== Deleting Files \ Folders ======================

C:\PROGRA~2\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} deleted
C:\Users\User\.android deleted
C:\Program Files\MyFree Codec deleted
C:\setup95.exe deleted
C:\PROGRA~2\ProductData deleted
C:\PROGRA~2\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec deleted
C:\Windows\wininit.ini deleted
C:\Windows\system32\config\systemprofile\Searches deleted
"C:\Program Files\ViewPower2.10\derby.log" not deleted
"C:\Program Files\ViewPower2.10\lax.jar" not deleted
"C:\Program Files\ViewPower2.10\upsMonitor.exe" deleted
"C:\Program Files\ViewPower2.10\datas\db.lck" not deleted
"C:\Program Files\ViewPower2.10\log\log4j.log" not deleted
"C:\Program Files\ViewPower2.10\monitor\commons-logging.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\derby.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\dom4j-1.6.1.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\iText-5.0.6.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\jaxen-full.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\log4j-1.2.14.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\mail.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\RXTXcomm.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\saxpath.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\snmp4j-1.11-javadoc.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\snmp4j-1.11.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\spring-beans.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\spring-core.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\viewpowermonitor.jar" not deleted
"C:\Program Files\ViewPower2.10\monitor\volModbus.jar" not deleted
"C:\Program Files\ViewPower2.10\console\lib\JTattoo.jar" not deleted
"C:\Program Files\ViewPower2.10\console\lib\SoftewareUpgrade.jar" not deleted
"C:\Program Files\ViewPower2.10\console\lib\ViewPowerConsole.jar" not deleted
"C:\Program Files\ViewPower2.10\datas\log\log21.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c10.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c121.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c130.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c141.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c1a60.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c1a71.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c1ae0.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c1af1.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c1b00.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c1b11.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c1b20.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c1b31.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c1b40.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c1b51.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c1b60.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c1b71.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c20.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c290.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c2c1.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c2d0.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c2e1.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c51.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c60.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c71.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\c90.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\ca1.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\cc0.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\cd1.dat" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0\cf0.dat" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\dt.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\htmlconverter.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\jconsole.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\tools.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\bin\hpi.dll" deleted
"C:\Program Files\ViewPower2.10\jdk\jre\bin\java.dll" deleted
"C:\Program Files\ViewPower2.10\jdk\jre\bin\management.dll" deleted
"C:\Program Files\ViewPower2.10\jdk\jre\bin\net.dll" deleted
"C:\Program Files\ViewPower2.10\jdk\jre\bin\rmi.dll" deleted
"C:\Program Files\ViewPower2.10\jdk\jre\bin\tcnative-1.dll" deleted
"C:\Program Files\ViewPower2.10\jdk\jre\bin\verify.dll" deleted
"C:\Program Files\ViewPower2.10\jdk\jre\bin\zip.dll" deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\alt-rt.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\charsets.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\deploy.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\javaws.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\jce.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\jsse.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\management-agent.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\plugin.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\resources.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\rt.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\bin\server\jvm.dll" deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\deploy\ffjcext.zip" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\ext\dnsns.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\ext\localedata.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\ext\sunjce_provider.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\ext\sunmscapi.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\ext\sunpkcs11.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\im\indicim.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\im\thaiim.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\security\local_policy.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\security\US_export_policy.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\core\core.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\core\org-openide-filesystems.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\docs\swing-layout-1.0.3-doc.zip" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\docs\swing-layout-1.0.3-src.zip" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\lib\boot.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\lib\org-openide-modules.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\lib\org-openide-util.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-jdesktop-layout.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-api-progress.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-api-visual.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core-execution.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core-multiview.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core-nativeaccess.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core-output2.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core-ui.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core-windows.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-applemenu.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-autoupdate-services.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-autoupdate-ui.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-core-kit.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-editor-mimelookup-impl.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-editor-mimelookup.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-favorites.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-javahelp.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-masterfs.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-options-api.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-options-keymap.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-progress-ui.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-queries.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-sendopts.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-settings.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-templates.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-spi-quicksearch.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-swing-outline.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-swing-plaf.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-swing-tabcontrol.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-actions.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-awt.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-compat.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-dialogs.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-execution.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-explorer.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-io.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-loaders.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-nodes.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-options.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-text.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-util-enumerations.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-windows.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\ext\jh-2.0_05.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\ext\swing-layout-1.0.3.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\ext\updater.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\lib\jfluid-server-15.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\lib\jfluid-server.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\modules\org-netbeans-lib-profiler-common.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\modules\org-netbeans-lib-profiler-ui.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\modules\org-netbeans-lib-profiler.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\modules\org-netbeans-modules-profiler.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\core\com-sun-tools-visualvm-modules-startup.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-application-views.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-application.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-attach.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-core.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-coredump.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-heapdump.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host-views.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jmx.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvm.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvmstat.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-modules-appui.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-profiler.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-sa.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-threaddump.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-tools.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\core\locale\core_visualvm.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\locale\org-netbeans-core-windows_visualvm.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\locale\org-netbeans-core_visualvm.jar" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\locale\org-netbeans-modules-profiler_visualvm.jar" not deleted
"C:\Program Files\ViewPower2.10\jre\bin\hpi.dll" deleted
"C:\Program Files\ViewPower2.10\jre\bin\java.dll" deleted
"C:\Program Files\ViewPower2.10\jre\bin\javaw.exe" deleted
"C:\Program Files\ViewPower2.10\jre\bin\management.dll" deleted
"C:\Program Files\ViewPower2.10\jre\bin\msvcr71.dll" deleted
"C:\Program Files\ViewPower2.10\jre\bin\net.dll" deleted
"C:\Program Files\ViewPower2.10\jre\bin\nio.dll" deleted
"C:\Program Files\ViewPower2.10\jre\bin\rmi.dll" deleted
"C:\Program Files\ViewPower2.10\jre\bin\rxtxSerial.dll" deleted
"C:\Program Files\ViewPower2.10\jre\bin\Shutdown.dll" deleted
"C:\Program Files\ViewPower2.10\jre\bin\USBDevice.dll" deleted
"C:\Program Files\ViewPower2.10\jre\bin\verify.dll" deleted
"C:\Program Files\ViewPower2.10\jre\bin\zip.dll" deleted
"C:\Program Files\ViewPower2.10\jre\lib\jce.jar" not deleted
"C:\Program Files\ViewPower2.10\jre\lib\resources.jar" not deleted
"C:\Program Files\ViewPower2.10\jre\lib\rt.jar" not deleted
"C:\Program Files\ViewPower2.10\jre\bin\client\jvm.dll" deleted
"C:\Program Files\ViewPower2.10\tomcat\bin\bootstrap.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\bin\commons-daemon.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\bin\msvcr71.dll" deleted
"C:\Program Files\ViewPower2.10\tomcat\bin\tomcat-juli.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\bin\tomcat6.exe" deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\annotations-api.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\catalina-ant.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\catalina-ha.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\catalina-tribes.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\catalina.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\el-api.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\jasper-el.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\jasper-jdt.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\jasper.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\jsp-api.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\servlet-api.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\tomcat-coyote.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\tomcat-dbcp.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\tomcat-i18n-es.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\tomcat-i18n-fr.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib\tomcat-i18n-ja.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\logs\jakarta_service_20141029.log" deleted
"C:\Program Files\ViewPower2.10\tomcat\logs\stderr_20141029.log" deleted
"C:\Program Files\ViewPower2.10\tomcat\logs\stdout_20141029.log" deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\backport-util-concurrent.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\commons-httpclient-3.0.1.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\commons-logging.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\dom4j-1.6.1.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-acrobat.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-common.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-core.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-data-req.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-data.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-opt.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-proxy.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-remoting.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\jaxen-full.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\log4j-1.2.14.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\viewpowerRMI.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\viewpowerweb.jar" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\volUtil.jar" not deleted
"C:\Program Files\ViewPower2.10" not deleted
"C:\Program Files\ViewPower2.10\console" not deleted
"C:\Program Files\ViewPower2.10\datas" not deleted
"C:\Program Files\ViewPower2.10\jdk" not deleted
"C:\Program Files\ViewPower2.10\jre" not deleted
"C:\Program Files\ViewPower2.10\log" not deleted
"C:\Program Files\ViewPower2.10\monitor" not deleted
"C:\Program Files\ViewPower2.10\tomcat" not deleted
"C:\Program Files\ViewPower2.10\console\lib" not deleted
"C:\Program Files\ViewPower2.10\datas\log" not deleted
"C:\Program Files\ViewPower2.10\datas\seg0" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\bin" deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\bin\server" deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\deploy" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\ext" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\im" not deleted
"C:\Program Files\ViewPower2.10\jdk\jre\lib\security" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\core" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\docs" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\lib" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\ext" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\lib" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\modules" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\core" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\core\locale" not deleted
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\locale" not deleted
"C:\Program Files\ViewPower2.10\jre\bin" not deleted
"C:\Program Files\ViewPower2.10\jre\lib" not deleted
"C:\Program Files\ViewPower2.10\jre\bin\client" not deleted
"C:\Program Files\ViewPower2.10\tomcat\bin" not deleted
"C:\Program Files\ViewPower2.10\tomcat\lib" not deleted
"C:\Program Files\ViewPower2.10\tomcat\logs" deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF" not deleted
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib" not deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}"="C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext" [01. 09. 2013 19:44]

==== Firefox Extensions ======================

ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\urbr1dv5.default
- Undetermined - C:\Program Files\IObit Apps Toolbar\FF
- SaveFrom.net asistan - %ProfilePath%\extensions\helper@savefrom.net.xpi

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\urbr1dv5.default
40AAE0A1A4F664828DF5A95875AEA1C8 - C:\Users\User\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll - Google Update
14D06C3796CE3F6BA8F43CDF3AD65D76 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U67
0A6E5E3BEF374AA2F47071E7374EAD7B - C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.670.1
DFC9460CC37E5C414DC4680B10C19E7A - C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll - Shockwave Flash
893BF7D2261C56C24F813405D9D018E0 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll - Silverlight Plug-In
6B34823748BD3C10EB2816858025AFE9 - C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - QuickTime Plug-in 7.7.5
233F187A5425045011A0DD51F8B48E0F - C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - QuickTime Plug-in 7.7.5
81CB790A6AD230090086C644DC871FC3 - C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - QuickTime Plug-in 7.7.5
4AD1613FEDB87B4B18CADE745235A625 - C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - QuickTime Plug-in 7.7.5
1FBB6E454767A5B43DD980C7DE5D89F6 - C:\Program Files\QuickTime\Plugins\npqtplugin.dll - QuickTime Plug-in 7.7.5
49CFBB2130C682FFDF2CEBEE9A2D556E - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector
3A9E1940B4459CC97FDCBB24FCB69004 - c:\program files\real\realplayer\Netscape6\nppl3260.dll - RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)
0FCEAA7D12B7B0BA825E5C770B1DCA48 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll - RealPlayer Download Plugin
BE126CB7049E89ED6F3038016668B502 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit)
EAC427FEF96A13058C1ACD17C38966CF - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit)
96B3689320E9B16EDF38B7A5001C35F0 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit)
F8CB60A5ACA5D73807ECBD9942A8BCB7 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin
545E63EE9B530BDD10AAF477A8DD7C63 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll - NVIDIA 3D Vision
7EE6B6E962FD9E02BBDBF15052E0576D - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll - NVIDIA 3D VISION
F833DD5D8F959819F44BC98F47B1B6BB - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
0D80C49D9A4A3E096296C67BD015F614 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Photo Gallery
555E65306A5D3A5978BE74E1DD62CDD9 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll - RealNetworks(tm) Chrome Background Extension Plug-In (32-bit)
E32771B0AE3F18CEFFC12D682025238A - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll - RealPlayer(tm) HTML5VideoShim Plug-In (32-bit)
8082F66DC9C8167FF1AA548736F58457 - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll - Adobe Acrobat
65D09D8BC91D74C8800725EB33D1EE1B - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat
40AAE0A1A4F664828DF5A95875AEA1C8 - C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll - Google Update
8DA2ED6B04EA33F2EAE8BA883F903729 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll - Microsoft® Silverlight


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
idhngdhcfkoamngbedgpaokgjbnpdiji - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[14. 08. 2013 14:24]

AdBlock - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
RealDownloader - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyServer"="http=127.0.0.1:49475;https=127.0.0.1:49475"
"ProxyOverride"="<-loopback>"
"ProxyEnable"=dword:00000001

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Empty IE Cache ======================

C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\User\AppData\Local\Mozilla\Firefox\Profiles\urbr1dv5.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2201 folders=172 315651377 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Users\User\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\User\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Program Files\ViewPower2.10\derby.log" not found
"C:\Program Files\ViewPower2.10\lax.jar" not found
"C:\Program Files\ViewPower2.10\datas\db.lck" not found
"C:\Program Files\ViewPower2.10\log\log4j.log" not found
"C:\Program Files\ViewPower2.10\monitor\commons-logging.jar" not found
"C:\Program Files\ViewPower2.10\monitor\derby.jar" not found
"C:\Program Files\ViewPower2.10\monitor\dom4j-1.6.1.jar" not found
"C:\Program Files\ViewPower2.10\monitor\iText-5.0.6.jar" not found
"C:\Program Files\ViewPower2.10\monitor\jaxen-full.jar" not found
"C:\Program Files\ViewPower2.10\monitor\log4j-1.2.14.jar" not found
"C:\Program Files\ViewPower2.10\monitor\mail.jar" not found
"C:\Program Files\ViewPower2.10\monitor\RXTXcomm.jar" not found
"C:\Program Files\ViewPower2.10\monitor\saxpath.jar" not found
"C:\Program Files\ViewPower2.10\monitor\snmp4j-1.11-javadoc.jar" not found
"C:\Program Files\ViewPower2.10\monitor\snmp4j-1.11.jar" not found
"C:\Program Files\ViewPower2.10\monitor\spring-beans.jar" not found
"C:\Program Files\ViewPower2.10\monitor\spring-core.jar" not found
"C:\Program Files\ViewPower2.10\monitor\viewpowermonitor.jar" not found
"C:\Program Files\ViewPower2.10\monitor\volModbus.jar" not found
"C:\Program Files\ViewPower2.10\console\lib\JTattoo.jar" not found
"C:\Program Files\ViewPower2.10\console\lib\SoftewareUpgrade.jar" not found
"C:\Program Files\ViewPower2.10\console\lib\ViewPowerConsole.jar" not found
"C:\Program Files\ViewPower2.10\datas\log\log21.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c10.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c121.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c130.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c141.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c1a60.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c1a71.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c1ae0.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c1af1.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c1b00.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c1b11.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c1b20.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c1b31.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c1b40.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c1b51.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c1b60.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c1b71.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c20.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c290.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c2c1.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c2d0.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c2e1.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c51.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c60.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c71.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\c90.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\ca1.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\cc0.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\cd1.dat" not found
"C:\Program Files\ViewPower2.10\datas\seg0\cf0.dat" not found
"C:\Program Files\ViewPower2.10\jdk\lib\dt.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\htmlconverter.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\jconsole.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\tools.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\alt-rt.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\charsets.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\deploy.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\javaws.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\jce.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\jsse.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\management-agent.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\plugin.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\resources.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\rt.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\deploy\ffjcext.zip" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\ext\dnsns.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\ext\localedata.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\ext\sunjce_provider.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\ext\sunmscapi.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\ext\sunpkcs11.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\im\indicim.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\im\thaiim.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\security\local_policy.jar" not found
"C:\Program Files\ViewPower2.10\jdk\jre\lib\security\US_export_policy.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\core\core.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\core\org-openide-filesystems.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\docs\swing-layout-1.0.3-doc.zip" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\docs\swing-layout-1.0.3-src.zip" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\lib\boot.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\lib\org-openide-modules.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\lib\org-openide-util.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-jdesktop-layout.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-api-progress.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-api-visual.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core-execution.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core-multiview.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core-nativeaccess.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core-output2.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core-ui.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core-windows.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-core.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-applemenu.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-autoupdate-services.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-autoupdate-ui.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-core-kit.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-editor-mimelookup-impl.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-editor-mimelookup.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-favorites.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-javahelp.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-masterfs.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-options-api.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-options-keymap.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-progress-ui.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-queries.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-sendopts.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-settings.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-modules-templates.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-spi-quicksearch.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-swing-outline.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-swing-plaf.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-netbeans-swing-tabcontrol.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-actions.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-awt.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-compat.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-dialogs.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-execution.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-explorer.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-io.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-loaders.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-nodes.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-options.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-text.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-util-enumerations.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\org-openide-windows.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\ext\jh-2.0_05.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\ext\swing-layout-1.0.3.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\platform9\modules\ext\updater.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\lib\jfluid-server-15.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\lib\jfluid-server.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\modules\org-netbeans-lib-profiler-common.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\modules\org-netbeans-lib-profiler-ui.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\modules\org-netbeans-lib-profiler.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\profiler3\modules\org-netbeans-modules-profiler.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\core\com-sun-tools-visualvm-modules-startup.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-application-views.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-application.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-attach.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-core.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-coredump.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-heapdump.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host-views.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jmx.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvm.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvmstat.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-modules-appui.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-profiler.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-sa.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-threaddump.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-tools.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\core\locale\core_visualvm.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\locale\org-netbeans-core-windows_visualvm.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\locale\org-netbeans-core_visualvm.jar" not found
"C:\Program Files\ViewPower2.10\jdk\lib\visualvm\visualvm\modules\locale\org-netbeans-modules-profiler_visualvm.jar" not found
"C:\Program Files\ViewPower2.10\jre\lib\jce.jar" not found
"C:\Program Files\ViewPower2.10\jre\lib\resources.jar" not found
"C:\Program Files\ViewPower2.10\jre\lib\rt.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\bin\bootstrap.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\bin\commons-daemon.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\bin\tomcat-juli.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\annotations-api.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\catalina-ant.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\catalina-ha.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\catalina-tribes.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\catalina.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\el-api.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\jasper-el.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\jasper-jdt.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\jasper.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\jsp-api.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\servlet-api.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\tomcat-coyote.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\tomcat-dbcp.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\tomcat-i18n-es.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\tomcat-i18n-fr.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\lib\tomcat-i18n-ja.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\backport-util-concurrent.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\commons-httpclient-3.0.1.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\commons-logging.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\dom4j-1.6.1.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-acrobat.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-common.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-core.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-data-req.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-data.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-opt.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-proxy.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\flex-messaging-remoting.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\jaxen-full.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\log4j-1.2.14.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\viewpowerRMI.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\viewpowerweb.jar" not found
"C:\Program Files\ViewPower2.10\tomcat\webapps\ViewPower\WEB-INF\lib\volUtil.jar" not found
"C:\Program Files\ViewPower2.10" not found

==== EOF on st 29. 10. 2014 at 22:15:15,34 ======================

[vyosek]

Pekna nam to procistily

Poprosim nyni o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

[Zdenno]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-10-2014 01
Ran by User (administrator) on USER-PC on 29-10-2014 22:29:47
Running from C:\Users\User\Desktop
Loaded Profiles: User & UpdatusUser (Available profiles: User & UpdatusUser)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Spoločnosť Google Inc.) C:\Program Files\Google\Chrome Remote Desktop\38.0.2125.9\remoting_host.exe
(Nero AG) C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Spoločnosť Google Inc.) C:\Program Files\Google\Chrome Remote Desktop\38.0.2125.9\remoting_host.exe
() C:\Program Files\MagicTune Premium\MagicTuneEngine.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Rocket Division Software) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Program Files\HTC\HTC Sync Manager\HTC Sync\adb.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(VIA) C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\RocketDock\RocketDock.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
() C:\Program Files\MagicTune Premium\GammaTray.exe
(Samsung) C:\Program Files\SEC\Natural Color Pro\NCProTray.exe
(Dropbox, Inc.) C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(forum.viry.cz) C:\Users\User\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [1705584 2010-10-08] (VIA)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [974432 2014-08-22] (Microsoft Corporation)
HKLM\...\Run: [Nvtmru] => C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-07-27] (NVIDIA Corporation)
HKLM\...\Run: ["C:\Program Files\D-Link\D-ViewCam\MainConsole.EXE"] => "C:\Program Files\D-Link\D-ViewCam\MainConsole.EXE" RunWithWindows
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\Run: [Google Update] => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-10-27] (Google Inc.)
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\Run: [RocketDock] => C:\Program Files\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\Run: [AlcoholAutomount] => C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [205976 2009-09-18] (Alcohol Soft Development Team)
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [1938624 2014-10-21] (Valve Corporation)
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\MountPoints2: {df3f214a-1c05-11e4-8000-8c89a565d1d7} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\MountPoints2: {e553aa72-1946-11e4-83fe-8c89a565d1d7} - E:\HTC_Sync_Manager_PC.exe
AppInit_DLLs: C:\PROGRA~1\NVIDIA~1\NVSTRE~1\rxinput.dll => C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll [593696 2013-07-27] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GammaTray.lnk
ShortcutTarget: GammaTray.lnk -> C:\Program Files\MagicTune Premium\GammaTray.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NCProTray.lnk
ShortcutTarget: NCProTray.lnk -> C:\Program Files\SEC\Natural Color Pro\NCProTray.exe (Samsung)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0AB1DB85CED7CD01
SearchScopes: HKCU - DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {57AF0810-BDA7-47A5-B02D-FDA1073C04B0} https://eu.mydlink.com/8D/activeX//TunnelX.ocx
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.50 10.0.0.50

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\urbr1dv5.default
FF NewTab: hxxp://www.google.com/
FF DefaultSearchEngine: Google
FF DefaultSearchUrl: hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\User\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\User\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\zoznam-sk.xml
FF Extension: SaveFrom.net helper - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\urbr1dv5.default\Extensions\helper@savefrom.net.xpi [2013-12-07]
FF HKLM\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-10-02]
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-08-09]
FF HKLM\...\Firefox\Extensions: [{0153E448-190B-4987-BDE1-F256CADA672F}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-01]
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: No Name - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\urbr1dv5.default\extensions\ascsurfingprotection@iobit.com [Not Found]
FF Extension: No Name - C:\Program Files\IObit Apps Toolbar\FF [Not Found]

Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-03-15]
CHR Extension: (Hľadať v Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-03-15]
CHR Extension: (Vzdialená plocha Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2014-04-16]
CHR Extension: (AdBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2012-03-15]
CHR Extension: (Google Keep – poznámky a zoznamy) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2014-07-09]
CHR Extension: (RealDownloader) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2012-12-27]
CHR Extension: (Save to Pocket) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2013-06-20]
CHR Extension: (Peňaženka Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-03-15]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR StartMenuInternet: Google Chrome - C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 chromoting; C:\Program Files\Google\Chrome Remote Desktop\38.0.2125.9\remoting_host.exe [51016 2014-08-21] (Spoločnosť Google Inc.)
R2 HTCMonitorService; C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-11-18] (Nero AG)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit)
R2 MagicTuneEngine; C:\Program Files\MagicTune Premium\MagicTuneEngine.exe [45056 2007-08-23] () [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22192 2014-08-22] (Microsoft Corporation)
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [769432 2012-07-13] (Nero AG)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [288120 2014-08-22] (Microsoft Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14592288 2013-07-27] (NVIDIA Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 StarWindServiceAE; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [275968 2007-05-28] (Rocket Division Software) [File not signed]
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 upsMonitor; C:\PROGRA~1\VIEWPO~1.10\UPSMON~1.EXE -zglaxservice upsMonitor [X]
S3 upsTomcat; "C:\Program Files\ViewPower2.10\tomcat\bin\tomcat6.exe" //RS//upsTomcat [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV32.sys [105984 2009-10-27] (QUALCOMM Incorporated)
S3 MagicTune; C:\Windows\System32\drivers\MTiCtwl.sys [14208 2008-07-04] (Samsung Electronics, Inc. ) [File not signed]
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231800 2014-07-17] (Microsoft Corporation)
R1 NCPro; C:\Windows\system32\drivers\MTictwl.sys [14208 2008-07-04] (Samsung Electronics, Inc. ) [File not signed]
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34592 2013-05-14] (NVIDIA Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [722416 2012-05-06] () [File not signed]
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1149552 2010-10-02] (VIA Technologies, Inc.)
U3 atb9eaaq; C:\Windows\system32\Drivers\atb9eaaq.sys [0 ] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-29 22:29 - 2014-10-29 22:30 - 00019633 _____ () C:\Users\User\Desktop\FRST.txt
2014-10-29 22:29 - 2014-10-29 22:29 - 00000000 ____D () C:\FRST
2014-10-29 22:26 - 2014-10-29 22:26 - 00112640 _____ (forum.viry.cz) C:\Users\User\Desktop\FRSTLauncher.exe
2014-10-29 22:24 - 2014-10-29 22:24 - 01104896 _____ (Farbar) C:\Users\User\Desktop\FRST.exe
2014-10-29 22:16 - 2014-10-29 22:16 - 00051392 _____ () C:\Users\User\Desktop\zoek-results.txt
2014-10-29 22:14 - 2014-10-29 22:14 - 00000000 ____D () C:\Users\User\.android
2014-10-29 22:12 - 2014-10-29 21:56 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-10-29 21:57 - 2014-10-29 22:15 - 00051392 _____ () C:\zoek-results.log
2014-10-29 21:54 - 2014-10-29 22:10 - 00000000 ____D () C:\zoek_backup
2014-10-29 21:53 - 2014-10-29 21:50 - 00000091 _____ () C:\Users\User\Desktop\script.txt
2014-10-29 21:49 - 2014-10-29 21:34 - 01290752 _____ () C:\Users\User\Desktop\zoek.exe
2014-10-29 21:40 - 2014-10-29 21:43 - 00000000 ____D () C:\AdwCleaner
2014-10-29 21:39 - 2014-10-29 21:32 - 01998336 _____ () C:\Users\User\Desktop\adwcleaner_4.002.exe
2014-10-29 18:59 - 2014-10-29 18:59 - 02347384 _____ (ESET) C:\Users\User\Downloads\esetsmartinstaller_sky.exe
2014-10-29 18:52 - 2014-10-29 18:53 - 00000000 ____D () C:\rsit
2014-10-29 18:52 - 2014-10-29 18:53 - 00000000 ____D () C:\Program Files\trend micro
2014-10-29 18:52 - 2014-10-29 18:50 - 01107968 _____ () C:\Users\User\Downloads\RSIT.exe
2014-10-28 20:02 - 2014-10-28 20:02 - 00000000 ____D () C:\Program Files\ESET
2014-10-21 18:00 - 2014-10-26 19:11 - 00000000 ____D () C:\Users\User\Downloads\_Emulators
2014-10-20 17:31 - 2014-10-20 17:31 - 00001065 _____ () C:\Users\User\Desktop\EmulationStation.lnk
2014-10-20 17:31 - 2014-10-20 17:31 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EmulationStation
2014-10-20 17:30 - 2014-10-20 21:20 - 00000000 ____D () C:\Users\User\.emulationstation
2014-10-20 17:30 - 2014-10-20 17:30 - 00000000 ____D () C:\Program Files\EmulationStation
2014-10-18 16:53 - 2014-10-18 17:28 - 00000000 ____D () C:\Windows\rescache
2014-10-15 16:54 - 2014-08-29 02:44 - 04922368 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-15 16:54 - 2014-08-29 02:44 - 02744320 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-15 16:54 - 2014-08-29 02:44 - 01050112 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-15 16:54 - 2014-08-29 02:44 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-10-15 16:54 - 2014-08-29 02:44 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-10-15 16:54 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-15 16:54 - 2014-07-17 02:39 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-15 16:54 - 2014-07-17 02:39 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-15 16:54 - 2014-07-17 02:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-15 16:54 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-15 16:54 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-15 16:54 - 2014-07-17 02:03 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-15 16:54 - 2014-07-17 02:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-15 16:52 - 2014-10-10 02:44 - 00396288 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-15 16:52 - 2014-10-10 02:44 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-15 16:52 - 2014-10-10 02:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-15 16:52 - 2014-09-29 01:41 - 02379264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-15 16:52 - 2014-08-19 03:41 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2014-10-15 16:52 - 2014-08-19 03:41 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2014-10-15 16:52 - 2014-08-19 03:41 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2014-10-15 16:52 - 2014-08-19 03:40 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 16:52 - 2014-08-19 03:40 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 16:52 - 2014-08-19 02:48 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2014-10-15 16:52 - 2014-07-07 02:40 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 03208704 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 01005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2014-10-15 16:52 - 2014-07-07 02:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-10-15 16:52 - 2014-07-07 02:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-10-15 16:52 - 2014-07-07 02:39 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-10-15 16:52 - 2014-07-07 02:39 - 03970488 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-10-15 16:52 - 2014-07-07 02:39 - 03914680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-10-15 16:52 - 2014-07-07 02:39 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-10-15 16:52 - 2014-07-07 02:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-10-15 16:52 - 2014-07-07 02:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-10-15 16:52 - 2014-07-07 02:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-10-15 16:52 - 2014-07-07 02:28 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2014-10-15 16:52 - 2014-06-28 01:21 - 00521384 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-10-15 16:52 - 2014-06-28 01:21 - 00455752 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-10-15 16:52 - 2014-06-28 01:21 - 00409272 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-10-15 16:51 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-15 16:51 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-15 16:51 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-15 16:51 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-15 16:51 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-15 16:51 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-15 16:51 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-15 16:51 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-15 16:51 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-15 16:51 - 2014-09-19 02:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-15 16:51 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-15 16:51 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-15 16:51 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-15 16:51 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-15 16:51 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-15 16:51 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-15 16:51 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-15 16:51 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-15 16:51 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-15 16:51 - 2014-09-19 01:50 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-15 16:51 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-15 16:51 - 2014-09-19 01:44 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-15 16:51 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-15 16:51 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-15 16:51 - 2014-09-19 01:20 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-15 16:51 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-15 16:51 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-15 16:51 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-15 16:51 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-15 16:51 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-15 16:51 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-15 16:48 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-15 16:48 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-15 16:48 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-15 16:42 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-15 16:41 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-01 16:21 - 2014-09-25 02:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-09-30 12:06 - 2014-09-30 12:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\DlinkViewCam
2014-09-30 12:06 - 2014-09-30 12:06 - 00000000 ____D () C:\Program Files\Activation
2014-09-29 20:29 - 2014-09-29 20:29 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-09-29 20:29 - 2014-09-29 20:28 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-09-29 20:28 - 2014-09-29 20:28 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-09-29 20:28 - 2014-09-29 20:28 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-09-29 20:28 - 2014-09-29 20:28 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-09-29 20:28 - 2014-09-29 20:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-09-29 20:25 - 2014-09-29 20:25 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-09-29 20:20 - 2014-09-29 20:20 - 00000000 ____D () C:\Program Files\D-Link
2014-09-29 20:17 - 2014-09-29 20:17 - 00000000 ____D () C:\Users\User\Downloads\DLink_Bundle_3_6_3_DP_1_6_0_20140805
2014-09-29 19:28 - 2014-09-29 19:28 - 00000000 ____D () C:\Users\User\AppData\Roaming\Oracle
2014-09-29 19:03 - 2014-09-29 20:29 - 00000000 ____D () C:\ProgramData\Oracle
2014-09-29 18:54 - 2014-09-29 18:54 - 00002480 _____ () C:\Users\User\Desktop\DCS-5020L(26096720).lnk
2014-09-29 18:54 - 2014-09-29 18:54 - 00002480 _____ () C:\Users\UpdatusUser\Desktop\DCS-5020L(26096720).lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-29 22:23 - 2014-04-16 20:59 - 00000924 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-29 22:22 - 2009-07-14 05:34 - 00025424 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-29 22:22 - 2009-07-14 05:34 - 00025424 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-29 22:20 - 2012-03-15 09:35 - 00787814 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-29 22:19 - 2012-03-15 09:30 - 01125056 _____ () C:\Windows\WindowsUpdate.log
2014-10-29 22:17 - 2012-09-13 21:10 - 00000000 ___RD () C:\Users\User\Dropbox
2014-10-29 22:17 - 2012-09-13 21:08 - 00000000 ____D () C:\Users\User\AppData\Roaming\Dropbox
2014-10-29 22:15 - 2014-05-19 20:31 - 00000000 ____D () C:\Users\User\AppData\Local\HTC MediaHub
2014-10-29 22:15 - 2012-09-15 16:29 - 00000000 ____D () C:\Program Files\Steam
2014-10-29 22:14 - 2014-08-17 17:35 - 00013608 _____ () C:\Windows\setupact.log
2014-10-29 22:14 - 2014-08-17 17:34 - 00147384 _____ () C:\Windows\PFRO.log
2014-10-29 22:14 - 2012-03-15 19:52 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-29 22:14 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-29 22:13 - 2012-03-15 19:10 - 00000942 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1440357454-3219766321-1955108111-1000UA.job
2014-10-29 22:03 - 2012-09-27 16:38 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-29 18:13 - 2012-03-15 19:10 - 00000890 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1440357454-3219766321-1955108111-1000Core.job
2014-10-29 17:52 - 2012-03-15 21:19 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-10-28 23:01 - 2012-03-17 02:31 - 00000000 ____D () C:\Users\User\AppData\Roaming\Azureus
2014-10-28 18:59 - 2012-03-17 16:48 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-10-22 21:18 - 2014-04-16 20:59 - 00000920 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-21 18:26 - 2013-01-24 19:43 - 00000000 ____D () C:\Users\User\Downloads\Update Samsung Galaxy Note 10.1 na FW DBT 4.1.2 návod
2014-10-21 18:26 - 2012-08-07 20:34 - 00000000 ____D () C:\Users\User\Downloads\_other pics
2014-10-18 13:56 - 2009-07-14 05:46 - 00001515 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-10-16 17:56 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-10-16 17:11 - 2009-07-14 03:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-16 17:10 - 2009-07-14 05:33 - 03911640 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-16 17:08 - 2014-05-06 22:19 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-16 17:08 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-10-15 22:11 - 2012-03-15 09:35 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-15 22:08 - 2013-08-14 21:25 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-15 22:03 - 2012-03-17 03:49 - 100290944 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-07 21:11 - 2012-10-09 22:04 - 00000000 ____D () C:\ProgramData\Protexis
2014-10-06 20:52 - 2012-03-15 19:09 - 00141136 _____ () C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-05 20:24 - 2013-12-09 18:23 - 00000000 ____D () C:\Users\User\AppData\Roaming\Mp3tag
2014-10-03 15:08 - 2014-09-24 20:47 - 00000000 ____D () C:\Users\User\AppData\Roaming\TeamViewer
2014-10-02 17:18 - 2014-04-16 20:59 - 00000000 ____D () C:\Program Files\Google
2014-09-29 20:28 - 2012-03-15 19:23 - 00000000 ____D () C:\Program Files\Java

Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp5ydw7t.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1440357454-3219766321-1955108111-1000Core.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1440357454-3219766321-1955108111-1000UA.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\TEMP:054203E4

==================== Security Center ==================

AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\User\Desktop" je 4 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0
"C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher
"C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0
"C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager
"C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon
"C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper
"C:\Program Files\iTunes\iTunesHelper.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage
C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR
C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload
C:\Program Files\Samsung\Kies\Kies.exe /preload [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task
"C:\Program Files\QuickTime\QTTask.exe" -atboottime [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper
"C:\Users\User\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard
C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
"C:\Program Files\Real\RealPlayer\update\realsched.exe" -osboot [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent
"C:\Program Files\Winamp\winampa.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CineForm Status.lnk
C:\PROGRA~1\CineForm\Tools\GOPROC~1.EXE [x]


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  CloseProcesses:
  
  HKLM\...\Run: [] => [X]
  HKLM\...\Run: [Nvtmru] => C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-07-27] (NVIDIA Corporation)
  HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
  HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\Run: [Google Update] => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-10-27] (Google Inc.)
  HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\Run: [AlcoholAutomount] => C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [205976 2009-09-18] (Alcohol Soft Development Team)
  HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\Run: [AdobeBridge] => [X]
  HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [1938624 2014-10-21] (Valve Corporation)
  HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\MountPoints2: {df3f214a-1c05-11e4-8000-8c89a565d1d7} - E:\HTC_Sync_Manager_PC.exe
  HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\MountPoints2: {e553aa72-1946-11e4-83fe-8c89a565d1d7} - E:\HTC_Sync_Manager_PC.exe
  Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GammaTray.lnk
  
  HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0AB1DB85CED7CD01
  
  FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
  FF Extension: No Name - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\urbr1dv5.default\extensions\ascsurfingprotection@iobit.com [Not Found]
  FF Extension: No Name - C:\Program Files\IObit Apps Toolbar\FF [Not Found]
  
  DisableService: NAUpdate
  
  S2 upsMonitor; C:\PROGRA~1\VIEWPO~1.10\UPSMON~1.EXE -zglaxservice upsMonitor [X]
  S3 upsTomcat; "C:\Program Files\ViewPower2.10\tomcat\bin\tomcat6.exe" //RS//upsTomcat [X]
  S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit)
  U3 atb9eaaq; C:\Windows\system32\Drivers\atb9eaaq.sys [0 ] (Microsoft Corporation)
  
  C:\Program Files\IObit
  C:\Program Files\ViewPower2.10
  2014-10-29 22:29 - 2014-10-29 22:30 - 00019633 _____ () C:\Users\User\Desktop\FRST.txt
  2014-10-29 22:26 - 2014-10-29 22:26 - 00112640 _____ (forum.viry.cz) C:\Users\User\Desktop\FRSTLauncher.exe
  2014-10-29 22:16 - 2014-10-29 22:16 - 00051392 _____ () C:\Users\User\Desktop\zoek-results.txt
  2014-10-29 22:12 - 2014-10-29 21:56 - 00024064 _____ () C:\Windows\zoek-delete.exe
  2014-10-29 21:57 - 2014-10-29 22:15 - 00051392 _____ () C:\zoek-results.log
  2014-10-29 21:54 - 2014-10-29 22:10 - 00000000 ____D () C:\zoek_backup
  2014-10-29 21:53 - 2014-10-29 21:50 - 00000091 _____ () C:\Users\User\Desktop\script.txt
  2014-10-29 21:49 - 2014-10-29 21:34 - 01290752 _____ () C:\Users\User\Desktop\zoek.exe
  2014-10-29 21:40 - 2014-10-29 21:43 - 00000000 ____D () C:\AdwCleaner
  2014-10-29 21:39 - 2014-10-29 21:32 - 01998336 _____ () C:\Users\User\Desktop\adwcleaner_4.002.exe
  2014-10-29 18:59 - 2014-10-29 18:59 - 02347384 _____ (ESET) C:\Users\User\Downloads\esetsmartinstaller_sky.exe
  2014-10-29 18:52 - 2014-10-29 18:53 - 00000000 ____D () C:\rsit
  2014-10-29 18:52 - 2014-10-29 18:53 - 00000000 ____D () C:\Program Files\trend micro
  2014-10-29 18:52 - 2014-10-29 18:50 - 01107968 _____ () C:\Users\User\Downloads\RSIT.exe
  2014-10-28 20:02 - 2014-10-28 20:02 - 00000000 ____D () C:\Program Files\ESET
  
  Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1440357454-3219766321-1955108111-1000Core.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1440357454-3219766321-1955108111-1000UA.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
  
  AlternateDataStreams: C:\ProgramData\TEMP:054203E4
  
  Hosts:
  EmptyTemp:
  
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR" /f
  REG: reg delete "REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent" /f
  
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[Zdenno]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 29-10-2014 01
Ran by User at 2014-10-29 22:47:32 Run:1
Running from C:\Users\User\Desktop
Loaded Profiles: User & UpdatusUser (Available profiles: User & UpdatusUser)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
CloseProcesses:

HKLM\...\Run: [] => [X]
HKLM\...\Run: [Nvtmru] => C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-07-27] (NVIDIA Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\Run: [Google Update] => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-10-27] (Google Inc.)
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\Run: [AlcoholAutomount] => C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [205976 2009-09-18] (Alcohol Soft Development Team)
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [1938624 2014-10-21] (Valve Corporation)
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\MountPoints2: {df3f214a-1c05-11e4-8000-8c89a565d1d7} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\...\MountPoints2: {e553aa72-1946-11e4-83fe-8c89a565d1d7} - E:\HTC_Sync_Manager_PC.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GammaTray.lnk

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0AB1DB85CED7CD01

FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: No Name - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\urbr1dv5.default\extensions\ascsurfingprotection@iobit.com [Not Found]
FF Extension: No Name - C:\Program Files\IObit Apps Toolbar\FF [Not Found]

DisableService: NAUpdate

S2 upsMonitor; C:\PROGRA~1\VIEWPO~1.10\UPSMON~1.EXE -zglaxservice upsMonitor [X]
S3 upsTomcat; "C:\Program Files\ViewPower2.10\tomcat\bin\tomcat6.exe" //RS//upsTomcat [X]
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit)
U3 atb9eaaq; C:\Windows\system32\Drivers\atb9eaaq.sys [0 ] (Microsoft Corporation)

C:\Program Files\IObit
C:\Program Files\ViewPower2.10
2014-10-29 22:29 - 2014-10-29 22:30 - 00019633 _____ () C:\Users\User\Desktop\FRST.txt
2014-10-29 22:26 - 2014-10-29 22:26 - 00112640 _____ (forum.viry.cz) C:\Users\User\Desktop\FRSTLauncher.exe
2014-10-29 22:16 - 2014-10-29 22:16 - 00051392 _____ () C:\Users\User\Desktop\zoek-results.txt
2014-10-29 22:12 - 2014-10-29 21:56 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-10-29 21:57 - 2014-10-29 22:15 - 00051392 _____ () C:\zoek-results.log
2014-10-29 21:54 - 2014-10-29 22:10 - 00000000 ____D () C:\zoek_backup
2014-10-29 21:53 - 2014-10-29 21:50 - 00000091 _____ () C:\Users\User\Desktop\script.txt
2014-10-29 21:49 - 2014-10-29 21:34 - 01290752 _____ () C:\Users\User\Desktop\zoek.exe
2014-10-29 21:40 - 2014-10-29 21:43 - 00000000 ____D () C:\AdwCleaner
2014-10-29 21:39 - 2014-10-29 21:32 - 01998336 _____ () C:\Users\User\Desktop\adwcleaner_4.002.exe
2014-10-29 18:59 - 2014-10-29 18:59 - 02347384 _____ (ESET) C:\Users\User\Downloads\esetsmartinstaller_sky.exe
2014-10-29 18:52 - 2014-10-29 18:53 - 00000000 ____D () C:\rsit
2014-10-29 18:52 - 2014-10-29 18:53 - 00000000 ____D () C:\Program Files\trend micro
2014-10-29 18:52 - 2014-10-29 18:50 - 01107968 _____ () C:\Users\User\Downloads\RSIT.exe
2014-10-28 20:02 - 2014-10-28 20:02 - 00000000 ____D () C:\Program Files\ESET

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1440357454-3219766321-1955108111-1000Core.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1440357454-3219766321-1955108111-1000UA.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe

AlternateDataStreams: C:\ProgramData\TEMP:054203E4

Hosts:
EmptyTemp:

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR" /f
REG: reg delete "REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent" /f

Reboot:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Nvtmru => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => value deleted successfully.
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AlcoholAutomount => value deleted successfully.
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value deleted successfully.
HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Steam => value deleted successfully.
"HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{df3f214a-1c05-11e4-8000-8c89a565d1d7}" => Key deleted successfully.
"HKCR\CLSID\{df3f214a-1c05-11e4-8000-8c89a565d1d7}" => Key not found.
"HKU\S-1-5-21-1440357454-3219766321-1955108111-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e553aa72-1946-11e4-83fe-8c89a565d1d7}" => Key deleted successfully.
"HKCR\CLSID\{e553aa72-1946-11e4-83fe-8c89a565d1d7}" => Key not found.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GammaTray.lnk => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP => value deleted successfully.
HKLM\Software\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => value deleted successfully.
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\urbr1dv5.default\extensions\ascsurfingprotection@iobit.com => not found.
C:\Program Files\IObit Apps Toolbar\FF => not found.
NAUpdate service was disabled
upsMonitor => Service deleted successfully.
upsTomcat => Service deleted successfully.
LiveUpdateSvc => Service deleted successfully.
atb9eaaq => Service deleted successfully.
C:\Program Files\IObit => Moved successfully.
"C:\Program Files\ViewPower2.10" => File/Directory not found.
C:\Users\User\Desktop\FRST.txt => Moved successfully.
C:\Users\User\Desktop\FRSTLauncher.exe => Moved successfully.
"C:\Users\User\Desktop\zoek-results.txt" => File/Directory not found.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
"C:\Users\User\Desktop\script.txt" => File/Directory not found.
C:\Users\User\Desktop\zoek.exe => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\User\Desktop\adwcleaner_4.002.exe => Moved successfully.
C:\Users\User\Downloads\esetsmartinstaller_sky.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Users\User\Downloads\RSIT.exe => Moved successfully.
C:\Program Files\ESET => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1440357454-3219766321-1955108111-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1440357454-3219766321-1955108111-1000UA.job => Moved successfully.
C:\ProgramData\TEMP => ":054203E4" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========


========= reg delete "REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload" /f =========



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent" /f =========

Oper cia sa Łspeçne dokonźila.



========= End of Reg: =========

EmptyTemp: => Removed 94.5 MB temporary data.


The system needed a reboot.

==== End of Fixlog ====

[vyosek]

Tak jeste uklidime

DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remote disinfection tools
• Kliknete na Run

Stahnete Ccleaner https://www.piriform.com/ccleaner/download/standard
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

[Zdenno]

Dakujem velmi pekne za pomoc. Vsetko vyzera ze slape tak ako ma.

[vyosek]

Nemate zac, rad jsem pomohl Zase nekdy

A na zaklade Pravidla o zamykani temat