Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o preventivku

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Jackie
Návštěvník
Návštěvník
Příspěvky: 22
Registrován: 09 lis 2014 14:19

Prosím o preventivku

#1 Příspěvek od Jackie »

Zdravím Vás,

moc prosím o preventivní prohlídku logu. Počítač je v pořádku až na jednu maličkost. Občas se po probuzení nenastartuje a zůstane seklý na černé obrazovce, pak musím počítač natvrdo vypnout a pak zapnout.

Děkuji za odpověď.

Log:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-01-2015
Ran by Lenny (administrator) on LENNY-HP on 15-01-2015 14:11:22
Running from C:\Users\Lenny\Desktop
Loaded Profiles: Lenny (Available profiles: Lenny & Lenka Nosková & Guest)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXSPMGT.exe
(Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXTCS.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
() C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
(Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(ArcSoft, Inc.) C:\Windows\SysWOW64\ArcVCapRender\uArcCapture.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPConnectionManager.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
() C:\Windows\SysWOW64\C2MP\TrayMenu.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Lenny\Desktop\FRSTLauncher (1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [HPPowerAssistant] => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [3488640 2012-03-14] (Hewlett-Packard Company)
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2041192 2012-12-29] ()
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2013-09-13] (IDT, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2816240 2014-07-24] (Synaptics Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-11-07] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2014-08-16] (Intel Corporation)
HKLM-x32\...\Run: [File Sanitizer] => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [12313720 2012-08-07] (Hewlett-Packard)
HKLM-x32\...\Run: [IFXSPMGT] => c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1128312 2012-04-23] (Infineon Technologies AG)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [162408 2012-11-29] (Geek Software GmbH)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-03] (Apple Inc.)
HKLM-x32\...\Run: [HPConnectionManager] => C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [185144 2014-04-09] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-07-08] (Apple Inc.)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [336672 2014-05-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Codec Settings UAC Manager] => C:\windows\SysWOW64\C2MP\CodecUACManager.exe [60344 2014-12-21] ()
HKLM\...\RunOnce: [NCPluginUpdater] => c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe [21720 2014-12-16] (Hewlett-Packard)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKU\S-1-5-21-703456373-2756263576-1234366014-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-23] (Piriform Ltd)
Lsa: [Notification Packages] DPPassFilter scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackTrayMenu.lnk
ShortcutTarget: CodecPackTrayMenu.lnk -> C:\Windows\SysWOW64\C2MP\TrayMenu.exe ()
Startup: C:\Users\Lenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKU\S-1-5-21-703456373-2756263576-1234366014-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
BHO: STATISTICA Browser Helper -> {990A8747-93BF-4EF7-B72E-94A6884B98C2} -> C:\Program Files\StatSoft\STATISTICA 12\StaBHO.dll (StatSoft, Inc.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: STATISTICA Browser Helper -> {990A8747-93BF-4EF7-B72E-94A6884B98C2} -> C:\Program Files\StatSoft\STATISTICA 12\Support\StaBHO.dll (StatSoft, Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.co ... 5.13.0.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 160.217.1.10 160.217.161.1

FireFox:
========
FF ProfilePath: C:\Users\Lenny\AppData\Roaming\Mozilla\Firefox\Profiles\665mq0mc.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll (Digital Persona, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\webssearches.xml
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-01-04]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: DigitalPersona Extension - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-05-23]
FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox
FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox [2014-07-27]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-02-13]
CHR Extension: (Disk Google) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-02-13]
CHR Extension: (YouTube) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-02-13]
CHR Extension: (Vyhledávání Google) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-02-13]
CHR Extension: (AdBlock) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-10-07]
CHR Extension: (Facebook Unseen) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\iicapmagmhahddefgokbabbgieiogjop [2014-02-20]
CHR Extension: (Peněženka Google) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30]
CHR Extension: (Gmail) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-02-13]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [494456 2012-07-20] (DigitalPersona, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [477056 2012-01-31] (Hewlett-Packard Company)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-05-07] (Freemake) [File not signed]
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [683296 2014-05-16] (Hewlett-Packard Company)
R2 IFXSpMgtSrv; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1128312 2012-04-23] (Infineon Technologies AG)
R2 IFXTCS; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [984440 2012-04-23] (Infineon Technologies AG)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2013-11-07] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2013-11-07] (Intel Corporation)
R2 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1327104 2013-03-27] () [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-10-11] ()
R2 PersonalSecureDriveService; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [212344 2012-04-23] (Infineon Technologies AG)
R2 RoxioBurnLauncher; C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [536848 2012-03-21] ()
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2013-09-13] (IDT, Inc.) [File not signed]
R2 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [498352 2012-04-05] (ArcSoft, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3671792 2013-10-11] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 ARCVCAM; C:\Windows\System32\DRIVERS\ArcSoftVCapture.sys [42816 2012-02-03] (ArcSoft, Inc.)
R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [172760 2014-07-24] (Broadcom Corporation.)
S3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2012-02-02] (Broadcom Corporation.)
S3 DAMDrv; C:\Windows\System32\DRIVERS\DAMDrv64.sys [64312 2012-01-31] (Hewlett-Packard Company)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-12-18] (Symantec Corporation)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-09-01] (Intel Corporation)
R3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2013-07-06] (JMicron Technology Corp.)
R0 MfeEpeOpal; C:\Windows\System32\Drivers\MfeEpeOpal.sys [91432 2013-03-27] (McAfee, Inc.)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [158760 2013-03-27] (McAfee, Inc.)
R1 PersonalSecureDrive; C:\Windows\System32\drivers\psd.sys [44576 2010-01-26] (Infineon Technologies AG)
S3 SmbDrvAMDASF; C:\Windows\system32\drivers\Smb_driver_AMDASF.sys [25912 2012-05-19] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2014-07-24] (Synaptics Incorporated)
S3 SmbDrvIntel; C:\Windows\system32\drivers\Smb_driver_Intel.sys [34544 2014-07-24] (Synaptics Incorporated)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1866080 2012-11-20] ()

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-15 14:11 - 2015-01-15 14:12 - 00024959 _____ () C:\Users\Lenny\Desktop\FRST.txt
2015-01-15 14:11 - 2015-01-15 14:11 - 00000000 ____D () C:\FRST
2015-01-15 14:09 - 2015-01-15 14:09 - 00112640 _____ (forum.viry.cz) C:\Users\Lenny\Desktop\FRSTLauncher (1).exe
2015-01-15 14:07 - 2015-01-15 14:07 - 02125312 _____ (Farbar) C:\Users\Lenny\Desktop\FRST64.exe
2015-01-15 14:07 - 2015-01-15 14:07 - 00112640 _____ (forum.viry.cz) C:\Users\Lenny\Downloads\Nepotvrzeno 344669.crdownload
2015-01-05 11:31 - 2015-01-05 11:40 - 08375525 _____ () C:\Users\Lenny\Downloads\V manelskej poradni video.wmv
2014-12-26 23:20 - 2014-12-26 23:20 - 00776319 _____ () C:\Users\Lenny\Downloads\prilohy_45379.zip
2014-12-26 21:04 - 2015-01-15 14:04 - 00000000 ____D () C:\Users\Lenny\AppData\Roaming\XnView
2014-12-26 21:04 - 2014-12-26 21:04 - 00000919 _____ () C:\Users\Lenny\Desktop\XnView.lnk
2014-12-26 21:04 - 2014-12-26 21:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2014-12-26 21:04 - 2014-12-26 21:04 - 00000000 ____D () C:\Program Files (x86)\XnView
2014-12-26 21:03 - 2014-12-26 21:03 - 11268892 _____ () C:\Users\Lenny\Downloads\XnView-win.exe
2014-12-24 12:48 - 2014-12-24 12:48 - 00003886 _____ () C:\windows\System32\Tasks\Adobe Acrobat Update Task
2014-12-21 06:55 - 2014-12-21 06:55 - 00047096 _____ () C:\windows\SysWOW64\DiscHandler.exe.new
2014-12-18 11:48 - 2014-12-13 06:09 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-12-18 11:48 - 2014-12-13 04:33 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-15 14:11 - 2012-06-19 20:19 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-01-15 14:03 - 2014-09-15 23:20 - 00000000 ____D () C:\windows\SysWOW64\C2MP
2015-01-15 14:00 - 2013-02-14 13:10 - 00000052 _____ () C:\windows\SysWOW64\DOErrors.log
2015-01-15 13:59 - 2013-03-09 23:53 - 00000000 _____ () C:\windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2015-01-15 13:43 - 2012-06-19 19:13 - 00670154 _____ () C:\windows\system32\perfh005.dat
2015-01-15 13:43 - 2012-06-19 19:13 - 00142280 _____ () C:\windows\system32\perfc005.dat
2015-01-15 13:43 - 2009-07-14 06:13 - 01587976 _____ () C:\windows\system32\PerfStringBackup.INI
2015-01-15 13:29 - 2012-11-10 17:53 - 01309554 ____N () C:\windows\WindowsUpdate.log
2015-01-15 12:42 - 2013-11-03 22:26 - 00000000 ____D () C:\windows\system32\MRT
2015-01-15 12:34 - 2009-07-14 05:45 - 00031536 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-15 12:34 - 2009-07-14 05:45 - 00031536 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-15 12:31 - 2013-11-03 22:26 - 113365784 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-01-15 12:26 - 2009-07-14 06:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-01-14 23:56 - 2013-09-17 19:01 - 00000000 ____D () C:\Users\Lenny\AppData\Roaming\vlc
2015-01-14 22:24 - 2013-09-17 19:01 - 00000000 ____D () C:\Users\Lenny\AppData\Roaming\dvdcss
2015-01-14 22:24 - 2012-06-19 19:08 - 00000000 ___RD () C:\Users\Public\Recorded TV
2015-01-14 20:07 - 2013-04-07 16:02 - 00000000 ____D () C:\Users\Lenny\Documents\filmíky
2015-01-14 18:11 - 2012-06-19 20:19 - 00701616 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2015-01-14 18:11 - 2012-06-19 20:19 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-14 18:11 - 2012-06-19 20:19 - 00003768 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2015-01-12 21:11 - 2014-08-15 09:48 - 00003186 _____ () C:\windows\System32\Tasks\HPCeeScheduleForLenny
2015-01-12 21:11 - 2014-08-15 09:48 - 00000332 _____ () C:\windows\Tasks\HPCeeScheduleForLenny.job
2015-01-05 12:31 - 2014-11-19 14:42 - 00000000 ____D () C:\Users\Lenny\Documents\Škola
2015-01-04 12:59 - 2014-11-25 14:36 - 00000406 ____H () C:\windows\Tasks\Norton Security Scan for Lenny.job
2014-12-26 21:14 - 2014-04-29 21:12 - 00010240 ___SH () C:\Users\Lenny\Thumbs.db
2014-12-25 19:13 - 2014-07-06 10:58 - 00000000 ____D () C:\Users\Lenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2014-12-17 14:07 - 2014-04-07 21:02 - 00000000 ____D () C:\Program Files (x86)\WinZip Driver Updater
2014-12-16 16:58 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\rescache
2014-12-16 10:14 - 2013-02-13 12:58 - 00000000 ____D () C:\ProgramData\Microsoft Help

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\HPCeeScheduleForLenny.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\windows\Tasks\Norton Security Scan for Lenny.job => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Lenny\Desktop" je 54 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
"Generalize_DisableSR"=dword:00000001


==================== End Of Log ==============================

V příloze posílam přiložený addition.
Přílohy
Addition.rar
(7.37 KiB) Staženo 52 x
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Prosím o preventivku

#2 Příspěvek od Márty84 »

Zdravim :)

:arrow: Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Jackie
Návštěvník
Návštěvník
Příspěvky: 22
Registrován: 09 lis 2014 14:19

Re: Prosím o preventivku

#3 Příspěvek od Jackie »

:) Ok, vše splněno, zde je log z AdwCleaneru: :)


# AdwCleaner v4.107 - Report created 16/01/2015 at 12:10:56
# Updated 07/01/2015 by Xplode
# Database : 2015-01-13.2 [Live]
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Lenny - LENNY-HP
# Running from : C:\Users\Lenny\Downloads\adwcleaner_4.107.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\GotClip
Folder Deleted : C:\Users\Lenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GotClip
Folder Deleted : C:\Users\Lenny\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aaaalipaokhkccgmgkdglfinfnfhflko
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\webssearches.xml
File Deleted : C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pelmeidfhdlhlbjimpabfcbnnojbboma_0.localstorage
File Deleted : C:\Users\Lenny\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_aaaalipaokhkccgmgkdglfinfnfhflko_0.localstorage

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKCU\Software\Mozilla\Extends

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17496


-\\ Mozilla Firefox v30.0 (cs)


-\\ Google Chrome v39.0.2171.99


-\\ Chromium v


-\\ Comodo Dragon v

[C:\Users\Lenny\AppData\Local\Comodo\Dragon\User Data\Default\preferences] - Deleted [Extension] : aaaalipaokhkccgmgkdglfinfnfhflko

-\\ Opera v0.0.0.0


*************************

AdwCleaner[R0].txt - [1769 octets] - [16/01/2015 12:08:07]
AdwCleaner[S0].txt - [1708 octets] - [16/01/2015 12:10:56]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1768 octets] ##########
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Prosím o preventivku

#4 Příspěvek od Márty84 »

:arrow: Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Jackie
Návštěvník
Návštěvník
Příspěvky: 22
Registrován: 09 lis 2014 14:19

Re: Prosím o preventivku

#5 Příspěvek od Jackie »

:?: Je toho víc než jsem čekal...výsledný log:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 16.1.2015
Scan Time: 12:30:52
Logfile: MBAM.txt
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2015.01.16.05
Rootkit Database: v2015.01.14.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Lenny

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 639920
Time Elapsed: 2 hr, 12 min, 39 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 1
PUP.Optional.FreeMakeConverter.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|fmconverter@gmail.com, C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\, , [7c99a25600891422b30388f1897a5fa1]

Registry Data: 0
(No malicious items detected)

Folders: 84
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\avira, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\imesh, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\mindspark, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\plain, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\taskbar, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\v5parity, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\logo, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\search, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-ascom, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-nu-nl, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\amazon-navigation, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\ask-homepage, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\cnn, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\cnn\1.0, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\ebay_vanilla, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\facebook, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\facebook\3.0, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\map, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\map\1.0, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-abc, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-bbc, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-bbcsports, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-beppegrillo, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-corrieredellasera, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-elmundo, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-expansion, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-financialtimes, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-financialtimes.de, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-folha, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-g1, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-kicker, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-lagazzettadellosport, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-lemonde, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-lequipe, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-mtv.it, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-newsru, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-pbkdaily, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-programmetv, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-sportsnl, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-sportsru, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-todayinhistory, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-uol, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-voici, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\orkut, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\radio, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\radio\2.0, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\search-box-DLA, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\simple-email-list, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\toolbar-options, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\ultimosegundo, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\video, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\video\2.0, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\vk, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\weather, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\weather\4.0, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\wordoftheday, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\youtube, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\youtube\2.1, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\content_script, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\content_script\hack, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\shims, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\tb_ux, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\options, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\options\images, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\rebuttal, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\rebuttal\images, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\search-suggestion, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates\css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates\css\images, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates\js, , [fa1ba652107972c4365906489a6910f0],

Files: 208
PUP.Adware.Gotclip.ScamLotto, C:\AdwCleaner\Quarantine\C\Program Files (x86)\GotClip\Uninstall.exe.vir, , [af66f206c1c89d993d6c089c8a761fe1],
PUP.Optional.OneClickDownloader.A, C:\Users\Lenny\Downloads\Vejska[2014]DVDRip_XviD[esko] (1).exe, , [6baa7b7db4d5fc3ac0a69f9512ef50b0],
PUP.Optional.OneClickDownloader.A, C:\Users\Lenny\Downloads\Vejska[2014]DVDRip_XviD[esko].exe, , [e233d424fc8ded49a8be60d40100946c],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\icon.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\manifest.json, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\keywordSearch.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\background.html, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\background.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\browser-action.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\ChromeUtilPlugin.dll, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\cookies.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\feeds.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\fixup-jquery-for-ie.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\history.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\ie-bg-shim.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\init-bg-messaging.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\lifecycle.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\localStorage.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\OneTimeCode.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\popup.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\preference.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\rebuttal.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\registry.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\reporting.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\search.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\security.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\sideByside.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\tabs.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\background\utils.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\build.json, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\lang-config.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\tb-config.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\test-widget-config.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\widget-config.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\chrome-options.html, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\content-script.xul, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\init-tb-stuff.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\new-tab-page.html, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\newtab-overlay.xul, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\newtab-subscript.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\toolbar.html, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\toolbar.xul, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widget-bundled.xul, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widget-hosted.xul, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\chrome-options.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\containers.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\new-tab.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\searchbox.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\toolbar.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\avira\avira.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\imesh\imesh.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\mindspark\mindspark.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\mindspark\new-search-button-mid.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\mindspark\new-search-button-sides.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\plain\plain.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\taskbar\taskbar.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\css\themes\v5parity\v5parity.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\IDR_WEBSTORE_ICON.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\logo\ask_flat_20x.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\logo\logo_128x.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\logo\logo_19x.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\logo\logo_19x_grey.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\logo\logo_24x.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\logo\logo_32x.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\logo\toolbar-icons.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\search\btn_search_ask_taskbar.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\search\logo_cobrand_18px.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\search\logo_cobrand_24px.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\search\new-search-button-mid.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\search\new-search-button-sides.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\search\search-button-mid.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\search\search-button-sides.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\badge_1.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\badge_10.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\badge_10plus.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\badge_2.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\badge_3.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\badge_4.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\badge_5.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\badge_6.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\badge_7.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\badge_8.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\badge_9.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\badge_exclaim.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\badge_numbers.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\bdg-gradient.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\bg.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\curved-divider.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\images\vanilla\left-bg.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-ascom\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-nu-nl\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\amazon-navigation\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\ask-homepage\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\cnn\1.0\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\ebay_vanilla\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\facebook\3.0\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\blackjack_32.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\BubbleTown.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\game-3in1checkers-01.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\game-4balls-01.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\game-cubefield-01.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\game-doublewires-01.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\game-fishdom.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\game-goldminer-01.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\game-jewelsolitare-01.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\game-pacxon-01.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\game-supercollapse.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\game-tropix-01.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\games.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\SlingoSupreme.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\games-feed\sudoku_32.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\map\1.0\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-abc\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-bbc\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-bbcsports\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-beppegrillo\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-corrieredellasera\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-elmundo\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-expansion\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-financialtimes\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-financialtimes.de\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-folha\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-g1\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-kicker\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-lagazzettadellosport\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-lemonde\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-lequipe\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-mtv.it\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-newsru\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-pbkdaily\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-programmetv\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-sportsnl\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-sportsru\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-todayinhistory\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-uol\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\netvibes-voici\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\orkut\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\radio\2.0\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\simple-email-list\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\simple-email-list\gmail.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\simple-email-list\hotmail.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\simple-email-list\yahoo!.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\ultimosegundo\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\video\2.0\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\vk\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\weather\4.0\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\wordoftheday\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\config\skin\widgets\youtube\2.1\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\content_script\content-script.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\content_script\injector.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\content_script\inline-html.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\content_script\positioning.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\content_script\toolbar.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\content_script\widget-hosted.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\content_script\widget.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\content_script\hack\facebook.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\content_script\hack\relative.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\content_script\hack\static.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\browser-shim.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\constant.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\default-config.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\i18n.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\jquery.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\json.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\polyfill.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\protocol.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\state-machine.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\tb-message.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\widget-messaging.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\window-position.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\lib\shims\console.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\tb_ux\chrome-options.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\tb_ux\ieCS.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\tb_ux\IFrameButton.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\tb_ux\init-toolbar.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\tb_ux\new-tab-page.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\tb_ux\rebuttal.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\tb_ux\reel.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\tb_ux\searchbox.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\tb_ux\shimIE.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\tb_ux\SimpleButton.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\tb_ux\toolbar.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\options\options.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\options\options.html, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\options\options.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\options\images\button-blue-1x20.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\options\images\button-grey-1x26.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\options\images\button.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\options\images\icons.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\options\images\lightblue-1x43.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\rebuttal\rebuttal.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\rebuttal\rebuttal.html, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\rebuttal\rebuttal.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\rebuttal\images\warning.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\search-suggestion\search-suggestion.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\search-suggestion\search-suggestion.html, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\search-suggestion\search-suggestion.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates\feed.html, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates\menu.html, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates\css\menu.css, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates\css\images\footer_gradient.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates\css\images\footer_shadow.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates\css\images\image_placeholder.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates\css\images\item-bg.png, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates\js\api.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates\js\feed.js, , [fa1ba652107972c4365906489a6910f0],
PUP.Optional.ASK.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajfocmnnhjaajccaelhippajhaeod\21.52309_0\widgets\templates\js\menu.js, , [fa1ba652107972c4365906489a6910f0],

Physical Sectors: 0
(No malicious items detected)


(end)
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Prosím o preventivku

#6 Příspěvek od Márty84 »

Vsechny nalezy hodte do karanteny. Po restartu pc test zopakujte, at vime, jestli se to nevraci. Napiste vysledek testu a podle nej zvolim dalsi postup.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Jackie
Návštěvník
Návštěvník
Příspěvky: 22
Registrován: 09 lis 2014 14:19

Re: Prosím o preventivku

#7 Příspěvek od Jackie »

Vše jsem hodil do karantény, restartoval PC a test zopakoval...nyní to nic nenašlo :)
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Prosím o preventivku

#8 Příspěvek od Márty84 »

Vyborne, MBAM muzete odinstalovat.

Dejte novy log z FRST http://forum.viry.cz/viewtopic.php?f=30&t=133101
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Jackie
Návštěvník
Návštěvník
Příspěvky: 22
Registrován: 09 lis 2014 14:19

Re: Prosím o preventivku

#9 Příspěvek od Jackie »

:) MBAM odinstalovaný, zde je nový log:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-01-2015 01
Ran by Lenny (administrator) on LENNY-HP on 17-01-2015 13:05:06
Running from C:\Users\Lenny\Desktop
Loaded Profiles: Lenny (Available profiles: Lenny & Lenka Nosková & Guest)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXSPMGT.exe
(Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXTCS.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
() C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
(Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(ArcSoft, Inc.) C:\Windows\SysWOW64\ArcVCapRender\uArcCapture.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
() C:\Windows\SysWOW64\C2MP\TrayMenu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPConnectionManager.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Lenny\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [HPPowerAssistant] => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [3488640 2012-03-14] (Hewlett-Packard Company)
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2041192 2012-12-29] ()
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2013-09-13] (IDT, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2816240 2014-07-24] (Synaptics Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-11-07] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2014-08-16] (Intel Corporation)
HKLM-x32\...\Run: [File Sanitizer] => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [12313720 2012-08-07] (Hewlett-Packard)
HKLM-x32\...\Run: [IFXSPMGT] => c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1128312 2012-04-23] (Infineon Technologies AG)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [162408 2012-11-29] (Geek Software GmbH)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-03] (Apple Inc.)
HKLM-x32\...\Run: [HPConnectionManager] => C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [185144 2014-04-09] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-07-08] (Apple Inc.)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [336672 2014-05-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Codec Settings UAC Manager] => C:\windows\SysWOW64\C2MP\CodecUACManager.exe [60344 2014-12-21] ()
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-12-16] (Hewlett-Packard)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKU\S-1-5-21-703456373-2756263576-1234366014-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-23] (Piriform Ltd)
Lsa: [Notification Packages] DPPassFilter scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackTrayMenu.lnk
ShortcutTarget: CodecPackTrayMenu.lnk -> C:\Windows\SysWOW64\C2MP\TrayMenu.exe ()
Startup: C:\Users\Lenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: STATISTICA Browser Helper -> {990A8747-93BF-4EF7-B72E-94A6884B98C2} -> C:\Program Files\StatSoft\STATISTICA 12\StaBHO.dll (StatSoft, Inc.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: STATISTICA Browser Helper -> {990A8747-93BF-4EF7-B72E-94A6884B98C2} -> C:\Program Files\StatSoft\STATISTICA 12\Support\StaBHO.dll (StatSoft, Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.co ... 5.13.0.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 160.217.1.10 160.217.161.1

FireFox:
========
FF ProfilePath: C:\Users\Lenny\AppData\Roaming\Mozilla\Firefox\Profiles\665mq0mc.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll (Digital Persona, Inc.)
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-01-04]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: DigitalPersona Extension - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-05-23]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-02-13]
CHR Extension: (Disk Google) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-02-13]
CHR Extension: (YouTube) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-02-13]
CHR Extension: (Vyhledávání Google) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-02-13]
CHR Extension: (AdBlock) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-10-07]
CHR Extension: (Facebook Unseen) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\iicapmagmhahddefgokbabbgieiogjop [2014-02-20]
CHR Extension: (Peněženka Google) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30]
CHR Extension: (Gmail) - C:\Users\Lenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-02-13]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [494456 2012-07-20] (DigitalPersona, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [477056 2012-01-31] (Hewlett-Packard Company)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-05-07] (Freemake) [File not signed]
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [683296 2014-05-16] (Hewlett-Packard Company)
R2 IFXSpMgtSrv; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1128312 2012-04-23] (Infineon Technologies AG)
R2 IFXTCS; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [984440 2012-04-23] (Infineon Technologies AG)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2013-11-07] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2013-11-07] (Intel Corporation)
R2 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1327104 2013-03-27] () [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-10-11] ()
R2 PersonalSecureDriveService; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [212344 2012-04-23] (Infineon Technologies AG)
R2 RoxioBurnLauncher; C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [536848 2012-03-21] ()
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2013-09-13] (IDT, Inc.) [File not signed]
R2 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [498352 2012-04-05] (ArcSoft, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3671792 2013-10-11] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 ARCVCAM; C:\Windows\System32\DRIVERS\ArcSoftVCapture.sys [42816 2012-02-03] (ArcSoft, Inc.)
R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [172760 2014-07-24] (Broadcom Corporation.)
S3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2012-02-02] (Broadcom Corporation.)
S3 DAMDrv; C:\Windows\System32\DRIVERS\DAMDrv64.sys [64312 2012-01-31] (Hewlett-Packard Company)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-12-18] (Symantec Corporation)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-09-01] (Intel Corporation)
R3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2013-07-06] (JMicron Technology Corp.)
R0 MfeEpeOpal; C:\Windows\System32\Drivers\MfeEpeOpal.sys [91432 2013-03-27] (McAfee, Inc.)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [158760 2013-03-27] (McAfee, Inc.)
R1 PersonalSecureDrive; C:\Windows\System32\drivers\psd.sys [44576 2010-01-26] (Infineon Technologies AG)
S3 SmbDrvAMDASF; C:\Windows\system32\drivers\Smb_driver_AMDASF.sys [25912 2012-05-19] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2014-07-24] (Synaptics Incorporated)
S3 SmbDrvIntel; C:\Windows\system32\drivers\Smb_driver_Intel.sys [34544 2014-07-24] (Synaptics Incorporated)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1866080 2012-11-20] ()

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-17 13:05 - 2015-01-17 13:05 - 00024396 _____ () C:\Users\Lenny\Desktop\FRST.txt
2015-01-17 13:04 - 2015-01-17 13:04 - 02125824 _____ (Farbar) C:\Users\Lenny\Desktop\FRST64.exe
2015-01-17 13:04 - 2015-01-17 13:04 - 00112640 _____ (forum.viry.cz) C:\Users\Lenny\Desktop\FRSTLauncher.exe
2015-01-16 12:49 - 2015-01-16 17:24 - 02504037 _____ () C:\Users\Lenny\Desktop\Preference základních složek potravy mravenci se zaměřením na - 2. prezentace.pptx
2015-01-16 12:27 - 2015-01-16 12:27 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-16 12:24 - 2015-01-16 12:26 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Lenny\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-16 12:12 - 2015-01-16 20:58 - 00129202 _____ () C:\windows\PFRO.log
2015-01-16 12:12 - 2015-01-16 20:58 - 00000336 _____ () C:\windows\setupact.log
2015-01-16 12:12 - 2015-01-16 12:12 - 00000000 _____ () C:\windows\setuperr.log
2015-01-16 12:06 - 2015-01-16 12:11 - 00000000 ____D () C:\AdwCleaner
2015-01-15 15:31 - 2015-01-15 15:40 - 00000375 _____ () C:\windows\system32\Drivers\etc\hosts.ics
2015-01-15 14:11 - 2015-01-17 13:05 - 00000000 ____D () C:\FRST
2015-01-14 21:57 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll
2015-01-14 21:57 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2015-01-14 21:57 - 2014-12-12 06:35 - 05553592 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-01-14 21:57 - 2014-12-12 06:31 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-01-14 21:57 - 2014-12-12 06:31 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-01-14 21:57 - 2014-12-12 06:31 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-01-14 21:57 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2015-01-14 21:57 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2015-01-14 21:57 - 2014-12-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2015-01-14 21:57 - 2014-12-11 18:47 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe
2015-01-14 21:57 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2015-01-14 21:57 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncsi.dll
2015-01-14 21:57 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlaapi.dll
2015-01-05 11:31 - 2015-01-05 11:40 - 08375525 _____ () C:\Users\Lenny\Downloads\V manelskej poradni video.wmv
2014-12-26 23:20 - 2014-12-26 23:20 - 00776319 _____ () C:\Users\Lenny\Downloads\prilohy_45379.zip
2014-12-26 21:04 - 2015-01-15 14:04 - 00000000 ____D () C:\Users\Lenny\AppData\Roaming\XnView
2014-12-26 21:04 - 2014-12-26 21:04 - 00000919 _____ () C:\Users\Lenny\Desktop\XnView.lnk
2014-12-26 21:04 - 2014-12-26 21:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2014-12-26 21:04 - 2014-12-26 21:04 - 00000000 ____D () C:\Program Files (x86)\XnView
2014-12-26 21:03 - 2014-12-26 21:03 - 11268892 _____ () C:\Users\Lenny\Downloads\XnView-win.exe
2014-12-24 12:48 - 2014-12-24 12:48 - 00003886 _____ () C:\windows\System32\Tasks\Adobe Acrobat Update Task
2014-12-21 06:55 - 2014-12-21 06:55 - 00047096 _____ () C:\windows\SysWOW64\DiscHandler.exe
2014-12-18 11:48 - 2014-12-13 06:09 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-12-18 11:48 - 2014-12-13 04:33 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-17 12:49 - 2012-06-19 20:19 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-01-16 23:40 - 2013-04-07 16:02 - 00000000 ____D () C:\Users\Lenny\Documents\filmíky
2015-01-16 21:11 - 2014-08-15 09:48 - 00003186 _____ () C:\windows\System32\Tasks\HPCeeScheduleForLenny
2015-01-16 21:11 - 2014-08-15 09:48 - 00000332 _____ () C:\windows\Tasks\HPCeeScheduleForLenny.job
2015-01-16 21:06 - 2012-11-10 17:53 - 01476566 _____ () C:\windows\WindowsUpdate.log
2015-01-16 21:06 - 2009-07-14 05:45 - 00031536 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-16 21:06 - 2009-07-14 05:45 - 00031536 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-16 21:04 - 2012-06-19 19:13 - 00670154 _____ () C:\windows\system32\perfh005.dat
2015-01-16 21:04 - 2012-06-19 19:13 - 00142280 _____ () C:\windows\system32\perfc005.dat
2015-01-16 21:04 - 2009-07-14 06:13 - 01587976 _____ () C:\windows\system32\PerfStringBackup.INI
2015-01-16 20:58 - 2009-07-14 06:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-01-16 20:58 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\security
2015-01-16 20:57 - 2014-11-25 14:36 - 00000406 ____H () C:\windows\Tasks\Norton Security Scan for Lenny.job
2015-01-15 22:37 - 2013-02-13 14:46 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-15 16:02 - 2013-09-17 19:01 - 00000000 ____D () C:\Users\Lenny\AppData\Roaming\vlc
2015-01-15 14:03 - 2014-09-15 23:20 - 00000000 ____D () C:\windows\SysWOW64\C2MP
2015-01-15 14:00 - 2013-02-14 13:10 - 00000052 _____ () C:\windows\SysWOW64\DOErrors.log
2015-01-15 13:59 - 2013-03-09 23:53 - 00000000 _____ () C:\windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2015-01-15 12:42 - 2013-11-03 22:26 - 00000000 ____D () C:\windows\system32\MRT
2015-01-15 12:31 - 2013-11-03 22:26 - 113365784 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-01-14 22:24 - 2013-09-17 19:01 - 00000000 ____D () C:\Users\Lenny\AppData\Roaming\dvdcss
2015-01-14 22:24 - 2012-06-19 19:08 - 00000000 ___RD () C:\Users\Public\Recorded TV
2015-01-14 18:11 - 2012-06-19 20:19 - 00701616 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2015-01-14 18:11 - 2012-06-19 20:19 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-14 18:11 - 2012-06-19 20:19 - 00003768 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2015-01-05 12:31 - 2014-11-19 14:42 - 00000000 ____D () C:\Users\Lenny\Documents\Škola
2014-12-26 21:14 - 2014-04-29 21:12 - 00010240 ___SH () C:\Users\Lenny\Thumbs.db
2014-12-25 19:13 - 2014-07-06 10:58 - 00000000 ____D () C:\Users\Lenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth

==================== Files in the root of some directories =======
2013-04-19 15:32 - 2014-04-26 21:43 - 0000952 ___SH () C:\ProgramData\KGyGaAvL.sys

Some content of TEMP:
====================
C:\Users\Lenny\AppData\Local\Temp\Quarantine.exe
C:\Users\Lenny\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\HPCeeScheduleForLenny.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\windows\Tasks\Norton Security Scan for Lenny.job => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Lenny\Desktop" je 64 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
"Generalize_DisableSR"=dword:00000001


==================== End Of Log ==============================
Přílohy
Addition.rar
(7.28 KiB) Staženo 47 x
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Prosím o preventivku

#10 Příspěvek od Márty84 »

:arrow: Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)



:arrow: Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-703456373-2756263576-1234366014-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-23] (Piriform Ltd)

BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

2015-01-16 12:27 - 2015-01-16 12:27 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-16 12:24 - 2015-01-16 12:26 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Lenny\Downloads\mbam-setup-2.0.4.1028.exe

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\HPCeeScheduleForLenny.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\windows\Tasks\Norton Security Scan for Lenny.job => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe
Task: {2FE0EB53-CF1E-45C9-A00A-E232E3E9FECD} - System32\Tasks\{283FD3E4-1494-4EA1-B775-6FAE171001B1} => pcalua.exe -a C:\Users\Lenny\AppData\Roaming\webssearches\UninstallManager.exe -c  -ptid=ild <==== ATTENTION

Hosts:
EmptyTemp:
Reboot:
End
Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Jackie
Návštěvník
Návštěvník
Příspěvky: 22
Registrován: 09 lis 2014 14:19

Re: Prosím o preventivku

#11 Příspěvek od Jackie »

:thumbsup: Vše provedeno. Mohu se jen zeptat, proč jste použil tento krok a k čemu to vlastně je dobré? Omlouvám se, ale jsem zvědavý a rád bych věděl co se svým počítačem vlastně dělám :?:

Opravený fixlog:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-01-2015
Ran by Lenny at 2015-01-18 12:42:42 Run:1
Running from C:\Users\Lenny\Desktop
Loaded Profiles: Lenny (Available profiles: Lenny & Lenka Nosková & Guest)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-703456373-2756263576-1234366014-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-23] (Piriform Ltd)

BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

2015-01-16 12:27 - 2015-01-16 12:27 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-16 12:24 - 2015-01-16 12:26 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Lenny\Downloads\mbam-setup-2.0.4.1028.exe

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\HPCeeScheduleForLenny.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\windows\Tasks\Norton Security Scan for Lenny.job => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe
Task: {2FE0EB53-CF1E-45C9-A00A-E232E3E9FECD} - System32\Tasks\{283FD3E4-1494-4EA1-B775-6FAE171001B1} => pcalua.exe -a C:\Users\Lenny\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=ild <==== ATTENTION

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKU\S-1-5-21-703456373-2756263576-1234366014-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => Key deleted successfully.
"HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}" => Key deleted successfully.
"HKCR\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}" => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value deleted successfully.
"HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value deleted successfully.
"HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => Key deleted successfully.
C:\ProgramData\Malwarebytes => Moved successfully.
C:\Users\Lenny\Downloads\mbam-setup-2.0.4.1028.exe => Moved successfully.
C:\windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\windows\Tasks\HPCeeScheduleForLenny.job => Moved successfully.
C:\windows\Tasks\Norton Security Scan for Lenny.job => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2FE0EB53-CF1E-45C9-A00A-E232E3E9FECD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2FE0EB53-CF1E-45C9-A00A-E232E3E9FECD}" => Key deleted successfully.
C:\Windows\System32\Tasks\{283FD3E4-1494-4EA1-B775-6FAE171001B1} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{283FD3E4-1494-4EA1-B775-6FAE171001B1}" => Key deleted successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 378 MB temporary data.


The system needed a reboot.

==== End of Fixlog 12:43:19 ====


Crystal disk info:

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Professional SP1 [6.1 Build 7601] (x64)
Date : 2015/01/18 12:49:46

-- Controller Map ----------------------------------------------------------
+ Intel(R) Mobile Express Chipset SATA RAID Controller [SCSI]
- ATA Hitachi HTS72757 SCSI Disk Device
- hp BD E DS6E2SH SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) INTEL SSDMAEXC024G3H : 24,0 GB [X/0/2, cs] - il
(2) Hitachi HTS727575A9E364 : 750,1 GB [0/X/X, pd1]

----------------------------------------------------------------------------
(1) INTEL SSDMAEXC024G3H
----------------------------------------------------------------------------
Model : INTEL SSDMAEXC024G3H
Firmware : 9CV10379
Serial Number : CVHA236301LV024D
Disk Size : 24,0 GB (8,4/24,0/24,0)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 46905264
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300
Power On Hours : 154 hod.
Power On Count : 1392 krát
Host Reads : 959 GB
Host Writes : 709 GB
Temparature : Neznámy údaj
Health Status : Dobrý (100 %)
Features : S.M.A.R.T., 48bit LBA, NCQ, TRIM
APM Level : ----
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
03 100 100 __0 000000000000 Čas na roztočení ploten
04 100 100 __0 000000000000 Počet spuštění/zastavení
05 100 100 __0 000000000000 Počet přemapovaných sektorů
09 100 100 __0 00000000009A Zapnuto hodin
0C 100 100 __0 000000000570 Počet cyklů zapnutí zařízení
AA 100 100 _10 000000000000 Available Reserved Space
AB 100 100 __0 000000000000 Program Fail Count
AC 100 100 __0 000000000000 Erase Fail Count
B7 100 100 _10 000000000000 Neznámý
B8 100 100 _97 000000000000 End to End Error Detection Count
BB 100 100 __0 000000000000 Uncorrectable Error Count
C0 100 100 __0 000000000001 Unsafe Shutdown Count
C7 100 100 __0 000000000000 Neznámý
E1 100 100 __0 0000000058A3 Host Writes
E2 100 100 __0 00000000FFFF Timed Workload Media Wear
E3 100 100 __0 00000000FFFF Timed Workload Host Read/Write Ratio
E4 100 100 __0 00000000FFFF Timed Workload Timer
E8 100 100 _10 000000000000 Dostupný vyhrazený prostor
E9 100 100 __0 000000000000 Mediální indikátor poruch
F1 100 100 __0 0000000058A3 Total LBAs Written
F2 100 100 __0 0000000077F6 Total LBAs Read

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 4356 4841 3233 3633 3031 3032 3032 3444 2020 2020
020: 0000 0000 0000 3943 5631 3739 3739 494E 5445 4C20
030: 5353 444D 4145 5843 3032 3348 3348 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0000 0000 0007 3FFF 003F 003F FC10 00FB 0101
060: B7B0 02CB 0000 0007 0003 0078 0078 0078 0078 4020
070: 0000 0000 0000 0000 0000 0506 0506 0000 0048 0048
080: 01FC 0029 706B 7C01 4123 BC01 BC01 4123 047F 0001
090: 0001 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: B7B0 02CB 0000 0000 0000 4000 4000 0000 5001 517B
110: B2A5 E4D1 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0021 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0001
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 003D 003D 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 7DA5

----------------------------------------------------------------------------
(2) Hitachi HTS727575A9E364
----------------------------------------------------------------------------
Model : Hitachi HTS727575A9E364
Firmware : JF4OA0E0
Serial Number : J3740084HRWJ5E
Disk Size : 750,1 GB (8,4/137,4/750,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 1465149168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/300
Power On Hours : 4704 hod.
Power On Count : 1391 krát
Temparature : 29 C (84 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 4080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _62 000000000000 Počet chyb čtení
02 100 100 _40 000000000000 Průchodnost disku
03 189 _59 _33 001700000002 Čas na roztočení ploten
04 _97 _97 __0 0000000016F6 Počet spuštění/zastavení
05 100 100 __5 000000000000 Počet přemapovaných sektorů
07 100 100 _67 000000000000 Počet chybných hledání
08 100 100 _40 000000000000 Čas potřebný na vyhledání
09 _90 _90 __0 000000001260 Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 __0 00000000056F Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Neznámý
B8 100 100 _97 000000000000 Ukončovacích chyb
BB 100 100 __0 0047001F0000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000002 Časový limit příkazu
BE _71 _50 _45 0000131D001D Teplota toku vzduchu
BF _78 _78 __0 0000000016D5 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000200020 Počet vypnutí disku
C1 _89 _89 __0 00000001B179 Počet cyklů načítání/vymazání
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 100 100 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 4A33 3734 3834 3834 4852 574A 3545
020: 0003 8000 0004 4A46 344F 4530 4530 4869 7461 6368
030: 6920 4854 5337 3237 3537 3945 3945 3336 3420 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0D06 0D06 0000 004C 0048
080: 01FC 0028 706B 7C09 6123 BC09 BC09 6123 043F 004D
090: 004E 4080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 66F0 5754 0000 0000 0000 6003 6003 74DC 5000 CCA6
110: 8CD8 7EFB 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 000B
130: 0000 0000 2182 1CF1 3A00 4000 4000 0400 0109 0000
140: 0000 0307 0803 0406 0602 0000 0000 0000 0000 0000
150: 0000 0000 3448 4430 0000 0000 0000 5DAD 4718 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 003D 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 BFA5
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Prosím o preventivku

#12 Příspěvek od Márty84 »

Chtel jsem vedet, jestli to seknuti nema na svedomi disk, proto jsme pouzili CDI.
Tento disk Hitachi HTS727575A9E364 hlasi dost chyb a to muze zpusobovat potize.


No a skriptem pro FRST jsem povypinal, pripadne smazal brzdy a zbytecnosti.


:!: Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

:arrow:
vyosek píše: :arrow: DelFix https://toolslib.net/downloads/finish/2/
  • Stahnete a spustte
  • Ponechte zatrzitkou pouze u volby Remote disinfection tools
  • Kliknete na Run
:arrow: Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

:arrow: Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.




:arrow: Pak napiste, jak je na tom pc.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Jackie
Návštěvník
Návštěvník
Příspěvky: 22
Registrován: 09 lis 2014 14:19

Re: Prosím o preventivku

#13 Příspěvek od Jackie »

Vše jsem minule udělal dle návodu. Po chvilkovém používání PC mám bohužel pořád stejný problém a děje se to stále častěji :o Když chci notebook probrat z režimu spánku, většinou se sekne na černé obrazovce a nic víc se neděje. Pak ho musím natvrdo vypnout. Zajímavé ale je, že když počítač úplně vypnu, nestává se to. Jen z režimu spánku se seká. Nevíte čím jiným by to mohlo být? :?:

Děkuji za odpovědi.
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Prosím o preventivku

#14 Příspěvek od Márty84 »

Dejte oba logy z RSITx64 http://forum.viry.cz/viewtopic.php?f=30&t=130787
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Jackie
Návštěvník
Návštěvník
Příspěvky: 22
Registrován: 09 lis 2014 14:19

Re: Prosím o preventivku

#15 Příspěvek od Jackie »

Log:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Lenny at 2015-01-27 11:40:08
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 225 GB (33%) free of 692 GB
Total RAM: 8125 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:40:09, on 27.1.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Windows\SysWOW64\C2MP\TrayMenu.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\PDF24\pdf24.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\The KMPlayer\KMPlayer.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Lenny.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: STATISTICA Browser Helper - {990A8747-93BF-4EF7-B72E-94A6884B98C2} - C:\Program Files\StatSoft\STATISTICA 12\Support\StaBHO.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [File Sanitizer] c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IFXSPMGT] "c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe" /NotifyLogon
O4 - HKLM\..\Run: [PDFPrint] C:\Program Files (x86)\PDF24\pdf24.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [Codec Settings UAC Manager] "C:\windows\system32\C2MP\CodecUACManager.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: CodecPackTrayMenu.lnk = C:\Windows\SysWOW64\C2MP\TrayMenu.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.co ... 5.13.0.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Úložná technologie Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Roxio Burn Launcher (RoxioBurnLauncher) - Unknown owner - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
O23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 16876 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"

C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 25079616
\??\C:\windows\system32\conhost.exe "-183724021889777353067805325521258866276586150791881468945-1121791682-1353798644
taskeng.exe {621C7511-9888-472E-AEA2-1B15235D1D88}
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
C:\windows\system32\IProsetMonitor.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe"
"C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5010a8d8-bfe5-401b-b5d7-a1537ccf0e28 -SystemEventPortName:HostProcess-27b5166a-1d00-47b5-b684-516fda081dde -IoCancelEventPortName:HostProcess-e54e8cab-f07d-4290-bc22-3fb6ccef7c17 -NonStateChangingEventPortName:HostProcess-39e23022-b678-40f1-afb8-4d41a08d73a7 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d03ab98b-8bc2-425d-a90a-5a6d0a39bc99 -DeviceGroupId:
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-06df70b7-b3fc-4829-a00c-4f456c4b1563 -SystemEventPortName:HostProcess-d6bb02da-d2da-462f-8b57-95a0822867d2 -IoCancelEventPortName:HostProcess-dca45245-0a3f-4d78-930a-c05aa78a2648 -NonStateChangingEventPortName:HostProcess-d0f5cb32-b7a3-4e55-93f2-8d0c132bf514 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a25e9b8c-666f-46f0-b0eb-a6fb4354a7a2 -DeviceGroupId:WpdFsGroup
"taskhost.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Windows\SysWOW64\C2MP\TrayMenu.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE" /tsr
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\PDF24\pdf24.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\iPod\bin\iPodService.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4872.0.257111703\76136641" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,39,47 --disable-accelerated-video-decode --gpu-vendor-id=0x10de --gpu-device-id=0x0ffb --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.1090 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/MaterialDesignNTP/Default/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/NewSuggestType_A6_Stable_R2/PasswordGeneration/Disabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy31Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_90/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="4872.3.2134357680\1652239261" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/MaterialDesignNTP/Default/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/NewSuggestType_A6_Stable_R2/PasswordGeneration/Disabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy31Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_90/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="4872.4.1173794096\1931766427" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/MaterialDesignNTP/Default/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/NewSuggestType_A6_Stable_R2/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy31Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_90/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="4872.8.102295936\894260665" /prefetch:673131151
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\The KMPlayer\KMPlayer.exe" -Embedding
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
-Minimized
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" -startup
"C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/MaterialDesignNTP/Default/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/NewSuggestType_A6_Stable_R2/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy31Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_90/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="4872.18.1099794801\968972472" /prefetch:673131151
C:\windows\System32\svchost.exe -k WerSvcGroup
C:\windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Lenny\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\HPCeeScheduleForLenny.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForLenny (null)
C:\windows\tasks\Norton Security Scan for Lenny.job - C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe /scan-quick /scheduled

=========Mozilla firefox=========

ProfilePath - C:\Users\Lenny\AppData\Roaming\Mozilla\Firefox\Profiles\665mq0mc.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.296 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.296 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{990A8747-93BF-4EF7-B72E-94A6884B98C2}]
STATISTICA Browser Helper - C:\Program Files\StatSoft\STATISTICA 12\StaBHO.dll [2013-04-02 286800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-08-07 122488]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-06 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{990A8747-93BF-4EF7-B72E-94A6884B98C2}]
STATISTICA Browser Helper - C:\Program Files\StatSoft\STATISTICA 12\Support\StaBHO.dll [2013-04-01 238160]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-06 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2012-03-14 15232]
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2012-12-29 2041192]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-09-13 1664000]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-09-12 5618456]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-07-24 2816240]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2014-12-16 21720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-09-12 56128]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2013-11-07 134616]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-08-16 292088]
"File Sanitizer"=c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2012-08-07 12313720]
"IFXSPMGT"=c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2012-04-23 1128312]
"PDFPrint"=C:\Program Files (x86)\PDF24\pdf24.exe [2012-11-29 162408]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-07-03 43816]
"HPConnectionManager"=C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2014-04-09 185144]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-07-08 152392]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-05-16 336672]
"Codec Settings UAC Manager"=C:\windows\system32\C2MP\CodecUACManager.exe []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
CodecPackTrayMenu.lnk - C:\Windows\SysWOW64\C2MP\TrayMenu.exe

C:\Users\Lenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-01-27 11:35:11 ----D---- C:\Program Files\trend micro
2015-01-27 11:35:10 ----D---- C:\rsit
2015-01-18 14:06:39 ----D---- C:\Program Files\Defraggler
2015-01-14 21:57:40 ----A---- C:\windows\system32\TSWbPrxy.exe
2015-01-14 21:57:40 ----A---- C:\windows\system32\profsvc.dll
2015-01-14 21:57:39 ----A---- C:\windows\SYSWOW64\nlaapi.dll
2015-01-14 21:57:39 ----A---- C:\windows\SYSWOW64\ncsi.dll
2015-01-14 21:57:39 ----A---- C:\windows\system32\nlasvc.dll
2015-01-14 21:57:39 ----A---- C:\windows\system32\drivers\mrxdav.sys
2015-01-14 21:57:33 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2015-01-14 21:57:33 ----A---- C:\windows\system32\ntoskrnl.exe
2015-01-14 21:57:32 ----A---- C:\windows\SYSWOW64\srclient.dll
2015-01-14 21:57:32 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2015-01-14 21:57:32 ----A---- C:\windows\system32\srcore.dll
2015-01-14 21:57:32 ----A---- C:\windows\system32\srclient.dll
2015-01-14 21:57:32 ----A---- C:\windows\system32\rstrui.exe

======List of files/folders modified in the last 1 month======

2015-01-27 11:40:01 ----D---- C:\windows\Prefetch
2015-01-27 11:39:33 ----D---- C:\windows\system32\config
2015-01-27 11:35:11 ----RD---- C:\Program Files
2015-01-27 11:34:55 ----D---- C:\windows\Temp
2015-01-27 10:12:57 ----D---- C:\windows\System32
2015-01-27 10:12:57 ----D---- C:\windows\inf
2015-01-27 10:12:57 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-01-27 10:10:48 ----A---- C:\windows\SYSWOW64\log.txt
2015-01-27 00:11:12 ----D---- C:\windows\SysWOW64
2015-01-27 00:11:10 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2015-01-26 15:59:35 ----SHD---- C:\System Volume Information
2015-01-23 17:18:21 ----D---- C:\Users\Lenny\AppData\Roaming\XnView
2015-01-23 14:11:15 ----D---- C:\windows\Tasks
2015-01-22 13:30:41 ----A---- C:\windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2015-01-22 12:35:45 ----D---- C:\Windows
2015-01-20 02:08:41 ----D---- C:\Users\Lenny\AppData\Roaming\vlc
2015-01-19 23:31:04 ----D---- C:\Users\Lenny\AppData\Roaming\dvdcss
2015-01-18 14:00:37 ----A---- C:\DelFix.txt
2015-01-18 12:43:04 ----D---- C:\windows\system32\Tasks
2015-01-18 12:43:04 ----D---- C:\windows\system32\drivers\etc
2015-01-18 12:43:02 ----HD---- C:\ProgramData
2015-01-17 12:57:48 ----RD---- C:\Program Files (x86)
2015-01-17 12:57:48 ----D---- C:\windows\system32\drivers
2015-01-16 20:58:35 ----D---- C:\windows\security
2015-01-16 12:12:38 ----D---- C:\windows\winsxs
2015-01-15 14:04:10 ----D---- C:\windows\debug
2015-01-15 14:03:21 ----D---- C:\windows\SYSWOW64\C2MP
2015-01-15 12:42:08 ----D---- C:\windows\system32\MRT
2015-01-15 12:31:09 ----A---- C:\windows\system32\MRT.exe
2015-01-14 22:24:11 ----SD---- C:\Users\Lenny\AppData\Roaming\Microsoft
2015-01-14 21:57:24 ----D---- C:\windows\system32\catroot
2015-01-14 21:57:10 ----D---- C:\windows\system32\catroot2

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\windows\system32\DRIVERS\epfwwfp.sys [2013-09-17 62136]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2012-09-07 31040]
R0 iaStor;Intel RAID Controller; C:\windows\system32\drivers\iaStor.sys [2012-02-02 568600]
R0 iaStorA;iaStorA; C:\windows\system32\DRIVERS\iaStorA.sys [2012-09-01 647736]
R0 iaStorF;iaStorF; C:\windows\system32\DRIVERS\iaStorF.sys [2012-09-01 28216]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hcs.sys [2014-08-16 20464]
R0 MfeEpeOpal;MfeEpeOpal; C:\windows\system32\drivers\MfeEpeOpal.sys [2013-03-27 91432]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2013-03-27 158760]
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys [2012-03-08 58000]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2014-12-18 487216]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\windows\system32\DRIVERS\EpfwLWF.sys [2013-09-17 44120]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\windows\System32\drivers\psd.sys [2010-01-26 44576]
R2 epfw;epfw; C:\windows\system32\DRIVERS\epfw.sys [2013-09-17 220232]
R2 regi;regi; \??\C:\windows\system32\drivers\regi.sys [2007-04-17 14112]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2012-09-07 43328]
R3 AMPPAL;Virtuální adaptér Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\windows\system32\DRIVERS\AMPPAL.sys [2013-07-29 164832]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2012-02-03 42816]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\windows\system32\drivers\bcbtums.sys [2014-07-24 172760]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2012-06-19 80384]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\windows\system32\drivers\btwampfl.sys [2014-07-24 598808]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2014-07-24 184144]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\drivers\btwavdt.sys [2014-07-24 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2014-07-24 39976]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2014-07-24 21544]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\windows\system32\DRIVERS\e1c62x64.sys [2012-11-28 482128]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2013-11-19 26936]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hub.sys [2014-08-16 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3xhc.sys [2014-08-16 795632]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2013-11-07 176880]
R3 johci;JMicron 1394 Filter Driver; C:\windows\system32\DRIVERS\johci.sys [2013-07-06 26208]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\HECIx64.sys [2013-11-07 62784]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\windows\system32\DRIVERS\Netwsw00.sys [2013-08-22 11520512]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\windows\system32\drivers\nvhda64v.sys [2012-07-03 189288]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-07-24 34544]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2012-11-20 1866080]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-09-13 543744]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2014-07-24 555760]
R3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 AMPPALP;Protokol Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\windows\system32\DRIVERS\amppal.sys [2013-07-29 164832]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTWDPAN;Bluetooth Personal Area Network; C:\windows\system32\DRIVERS\btwdpan.sys [2012-02-02 89640]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2012-01-31 64312]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2013-08-20 103576]
S3 dmvsc;dmvsc; C:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SmbDrvAMDASF;SmbDrvAMDASF; C:\windows\system32\drivers\Smb_driver_AMDASF.sys [2012-05-19 25912]
S3 SmbDrvIntel;SmbDrvIntel; C:\windows\system32\drivers\Smb_driver_Intel.sys [2014-07-24 34544]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2013-08-20 204568]
S3 storvsc;storvsc; C:\windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 USBAAPL64;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2013-03-18 54784]
S3 vmbus;vmbus; C:\windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2013-07-29 772064]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-06-12 43336]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-09-12 135984]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2014-03-06 1008344]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2012-07-20 494456]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2013-09-12 1337752]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-10-11 631024]
R2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2014-05-07 108032]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2012-03-14 152992]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2014-05-16 683296]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2012-09-07 33600]
R2 IAStorDataMgrSvc;Úložná technologie Intel® Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-09-01 14904]
R2 IFXSpMgtSrv;Security Platform Management Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2012-04-23 1128312]
R2 IFXTCS;Trusted Platform Core Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [2012-04-23 984440]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-11-07 131032]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\windows\system32\IProsetMonitor.exe [2012-11-20 182088]
R2 IviRegMgr;IviRegMgr; C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2010-05-20 110736]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-11-07 165336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-11-07 279000]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2013-03-27 1327104]
R2 PersonalSecureDriveService;Personal Secure Drive Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [2012-04-23 212344]
R2 PSI_SVC_2;Protexis Licensing V2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2010-03-11 193824]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-10-11 154864]
R2 RoxioBurnLauncher;Roxio Burn Launcher; C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [2012-03-21 536848]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-09-13 327680]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2012-04-05 498352]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-11-07 366040]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2012-07-19 2714232]
R3 hpCMSrv;HP Connection Manager 4 Service; C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2014-04-09 1448248]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-07-08 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-13 116648]
S2 HPFSService;File Sanitizer for HP ProtectTools; c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2012-08-07 378488]
S2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2012-12-29 884152]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-27 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2012-01-31 477056]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-13 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-10-30 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-21 119408]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-10-11 284912]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM; C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2012-03-07 1118480]
S3 stllssvr;stllssvr; C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2011-12-08 76416]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2012-03-09 117552]

-----------------EOF-----------------
Nahoru
Zamčeno

Zpět na „Preventivní kontroly logů“