Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Mejnijak
Návštěvník
Návštěvník
Příspěvky: 26
Registrován: 02 pro 2014 15:50

Prosím o kontrolu logu

#1 Příspěvek od Mejnijak »

Dobrý den, prosím o kontrolu logu. Potřebuji z PC dostat vše co tam nepatří :-) Diky

FRST Log:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-04-2015
Ran by Radar (administrator) on RUZA-PC on 29-04-2015 14:25:03
Running from C:\Users\Radar\Desktop
Loaded Profiles: Radar (Available profiles: Radar)
Platform: Windows Vista (TM) Home Premium Service Pack 2 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\42.0.2311.39\remoting_host.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Realtek Semiconductor) C:\Windows\RAVCpl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\42.0.2311.39\remoting_host.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(HP) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Dropbox, Inc.) C:\Users\Radar\AppData\Roaming\Dropbox\bin\Dropbox.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
() C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\WpsSupplicant.exe
(Nullsoft, Inc.) D:\Program Files (x86)\Winamp\winampa.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\conime.exe
(Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1584184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RAVCpl64.exe [5429760 2007-10-11] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Windows\Skytel.exe [1826816 2007-10-11] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595336 2014-10-01] (ESET)
HKLM-x32\...\Run: [WinampAgent] => D:\Program Files (x86)\Winamp\winampa.exe [85600 2013-11-26] (Nullsoft, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [NCUpdateHelper] => "C:\Program Files (x86)\NCWest\NCLauncher\NCUpdateHelper.exe"
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HPUsageTrackingLEDM] => C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe [30264 2009-10-15] (Hewlett-Packard Company)
HKLM-x32\...\Run: [QuickTime Task] => D:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKU\S-1-5-21-1491071562-1929162529-3579147401-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31087200 2015-01-23] (Skype Technologies S.A.)
HKU\S-1-5-21-1491071562-1929162529-3579147401-1000\...\RunOnce: [Adobe Speed Launcher] => 1430284797
Startup: C:\Users\Radar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-02-13]
ShortcutTarget: Dropbox.lnk -> C:\Users\Radar\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp ... XX6VMBVX6L
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?typ ... earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp ... XX6VMBVX6L
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?typ ... earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1491071562-1929162529-3579147401-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
HKU\S-1-5-21-1491071562-1929162529-3579147401-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
HKU\S-1-5-21-1491071562-1929162529-3579147401-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?typ ... earchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?typ ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\S-1-5-21-1491071562-1929162529-3579147401-1000 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\S-1-5-21-1491071562-1929162529-3579147401-1000 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\S-1-5-21-1491071562-1929162529-3579147401-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?typ ... earchTerms}
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Winsock: Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176 2008-01-21] (Společnost Microsoft)
Winsock: Catalog5-x64 02 C:\Windows\system32\napinsp.dll [62976 2008-01-21] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 192.168.200.1

FireFox:
========
FF ProfilePath: C:\Users\Radar\AppData\Roaming\Mozilla\Firefox\Profiles\j2gk7mxv.default
FF DefaultSearchEngine: Seznam
FF DefaultSearchUrl: hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchEngineOrder.1: Seznam
FF SelectedSearchEngine: Seznam
FF Homepage: https://www.seznam.cz/?clid=22668
FF Keyword.URL: hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-15] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-25] (ESN Social Software AB)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> d:\Program Files (x86)\Winamp Detect\npwachk.dll [2013-11-26] (Nullsoft, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: samsung.com/SamsungLinkPCPlugin -> D:\Program Files (x86)\Samsung Link\utils\npSamsungLinkPCPlugin.dll No File
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-01-24] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-01-24] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-01-24] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-01-24] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-01-24] (Apple Inc.)
FF SearchPlugin: C:\Users\Radar\AppData\Roaming\Mozilla\Firefox\Profiles\j2gk7mxv.default\searchplugins\seznam-avast.xml [2014-11-09]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\webssearches.xml [2014-11-08]
FF Extension: Widevine Media Optimizer - C:\Users\Radar\AppData\Roaming\Mozilla\Firefox\Profiles\j2gk7mxv.default\Extensions\{2d3fbcf7-be69-4433-8858-c621a8d0e58d} [2015-02-12]
FF Extension: Seznam lištička - C:\Users\Radar\AppData\Roaming\Mozilla\Firefox\Profiles\j2gk7mxv.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-11-09]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-09-16]
FF HKLM-x32\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: SmartPrintButton - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2014-03-20]
FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\Radar\AppData\Roaming\Mozilla\Firefox\Profiles\j2gk7mxv.default\extensions\faststartff@gmail.com

Chrome:
=======
CHR HomePage: Default -> hxxp://google.cz/
CHR StartupUrls: Default -> "hxxp://istart.webssearches.com/?type=hp&ts=1415438176&from=cvs&uid=ST3500410SV_6VMBVX6LXXXX6VMBVX6L", "https://www.seznam.cz/?clid=22668"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-11]
CHR Extension: (Google Docs) - C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-11]
CHR Extension: (Google Drive) - C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-11]
CHR Extension: (YouTube) - C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-11]
CHR Extension: (Google Search) - C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-11]
CHR Extension: (Google Sheets) - C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-11]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2014-09-11]
CHR Extension: (Google Wallet) - C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-11]
CHR Extension: (Gmail) - C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-11]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\42.0.2311.39\remoting_host.exe [56648 2015-03-08] (Google Inc.)
S3 DAUpdaterSvc; d:\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [25832 2009-12-15] (BioWare)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation)
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [136192 2009-10-15] (HP) [File not signed]
S4 jswpsapi; C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [954368 2011-12-26] (Wireless) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1900400 2014-12-06] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-10-13] ()
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-21] (Microsoft Corporation)
R2 WpsSupplicant; C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\WpsSupplicant.exe [61440 2011-12-26] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 BIOS; C:\Windows\system32\drivers\BIOS64.sys [14136 2006-10-31] (BIOSTAR Group)
R1 BIOS; C:\Windows\SysWOW64\drivers\BIOS64.sys [14136 2006-10-31] (BIOSTAR Group)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241368 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [158968 2014-10-10] (ESET)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [275432 2009-04-11] (Společnost Microsoft)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [19968 2012-11-08] (Marvell Semiconductor, Inc.)
R3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [1513320 2013-03-03] (Společnost Microsoft)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-29 14:25 - 2015-04-29 14:25 - 00019070 _____ () C:\Users\Radar\Desktop\FRST.txt
2015-04-29 14:24 - 2015-04-29 14:25 - 00000000 ____D () C:\FRST
2015-04-29 14:24 - 2015-04-29 14:24 - 02101248 _____ (Farbar) C:\Users\Radar\Desktop\FRST64.exe
2015-04-21 14:34 - 2015-04-21 14:34 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-15 09:47 - 2015-04-15 09:47 - 301104505 _____ () C:\Users\Radar\Desktop\Zaloha_1.zip
2015-04-15 08:22 - 2015-03-14 04:22 - 01585248 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 08:22 - 2015-03-14 04:22 - 01168080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-15 08:22 - 2015-03-13 03:44 - 04691384 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 08:22 - 2015-03-13 03:44 - 00014336 _____ (Společnost Microsoft) C:\Windows\SysWOW64\ntvdm64.dll
2015-04-15 08:22 - 2015-03-13 03:44 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-04-15 08:22 - 2015-03-13 03:30 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-04-15 08:22 - 2015-03-13 03:30 - 00234496 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-04-15 08:22 - 2015-03-13 03:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-04-15 08:22 - 2015-03-13 03:30 - 00016384 _____ (Společnost Microsoft) C:\Windows\system32\ntvdm64.dll
2015-04-15 08:22 - 2015-03-13 02:08 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-04-15 08:22 - 2015-03-13 02:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-04-15 08:22 - 2015-03-13 02:08 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-04-15 08:22 - 2015-03-05 04:25 - 00304128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-04-15 08:22 - 2015-03-05 03:58 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-15 08:15 - 2015-03-05 04:23 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-15 08:15 - 2015-03-05 04:14 - 00360384 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 08:15 - 2015-03-05 03:58 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 08:14 - 2015-03-09 03:01 - 01249280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-04-15 08:14 - 2015-03-09 02:40 - 01869824 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-15 07:29 - 2015-03-10 02:31 - 17882112 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 07:29 - 2015-03-10 02:19 - 02339840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 07:29 - 2015-03-10 02:19 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-15 07:29 - 2015-03-10 02:18 - 10931200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 07:29 - 2015-03-10 02:14 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 07:29 - 2015-03-10 02:14 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 07:29 - 2015-03-10 02:13 - 02157568 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 07:29 - 2015-03-10 02:13 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-15 07:29 - 2015-03-10 02:13 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-04-15 07:29 - 2015-03-10 02:13 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 07:29 - 2015-03-10 02:13 - 00598528 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 07:29 - 2015-03-10 02:13 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-04-15 07:29 - 2015-03-10 02:13 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-15 07:29 - 2015-03-10 02:13 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-15 07:29 - 2015-03-10 02:12 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-15 07:29 - 2015-03-10 02:12 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-15 07:29 - 2015-03-10 02:12 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-15 07:29 - 2015-03-10 02:12 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-15 07:29 - 2015-03-10 02:12 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 07:29 - 2015-03-10 02:12 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-04-15 07:29 - 2015-03-10 02:12 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-04-15 07:29 - 2015-03-10 02:12 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-04-15 07:29 - 2015-03-10 01:06 - 12377600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-15 07:29 - 2015-03-10 01:03 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-04-15 07:29 - 2015-03-10 01:02 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-15 07:29 - 2015-03-10 01:00 - 09747968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-15 07:29 - 2015-03-10 00:57 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-15 07:29 - 2015-03-10 00:57 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-15 07:29 - 2015-03-10 00:56 - 01803264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-15 07:29 - 2015-03-10 00:56 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-04-15 07:29 - 2015-03-10 00:56 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-04-15 07:29 - 2015-03-10 00:56 - 00421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-15 07:29 - 2015-03-10 00:56 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-04-15 07:29 - 2015-03-10 00:56 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-04-15 07:29 - 2015-03-10 00:55 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-04-15 07:29 - 2015-03-10 00:55 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-15 07:29 - 2015-03-10 00:55 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-04-15 07:29 - 2015-03-10 00:55 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-04-15 07:29 - 2015-03-10 00:55 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-04-15 07:29 - 2015-03-10 00:55 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-04-15 07:29 - 2015-03-10 00:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-04-15 07:29 - 2015-03-10 00:55 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-04-15 07:29 - 2015-03-10 00:55 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-04-15 07:29 - 2015-03-10 00:55 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-29 14:20 - 2013-09-16 15:27 - 00000000 ____D () C:\Users\Radar\AppData\Roaming\Skype
2015-04-29 13:36 - 2015-02-05 18:31 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d04161253514b8.job
2015-04-29 13:36 - 2014-09-11 13:10 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-29 13:25 - 2013-09-20 07:16 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-29 13:19 - 2006-11-02 17:22 - 00004576 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-29 13:19 - 2006-11-02 17:22 - 00004576 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-29 07:25 - 2008-01-21 03:53 - 02062951 _____ () C:\Windows\WindowsUpdate.log
2015-04-29 07:21 - 2013-09-16 15:24 - 00000000 ___RD () C:\Users\Radar\Dropbox
2015-04-29 07:21 - 2013-09-16 15:22 - 00000000 ____D () C:\Users\Radar\AppData\Roaming\Dropbox
2015-04-29 07:19 - 2015-02-05 18:31 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0416124856851.job
2015-04-29 07:19 - 2014-09-11 13:10 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-29 07:19 - 2006-11-02 17:42 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-28 20:14 - 2006-11-02 17:42 - 00032524 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-04-27 19:12 - 2014-03-16 17:08 - 00000000 ____D () C:\Users\Radar\AppData\Local\ABC Business - offline client
2015-04-24 06:58 - 2008-01-21 11:32 - 01532722 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-24 06:58 - 2008-01-21 11:31 - 00645054 _____ () C:\Windows\system32\perfh005.dat
2015-04-24 06:58 - 2008-01-21 11:31 - 00137724 _____ () C:\Windows\system32\perfc005.dat
2015-04-24 06:57 - 2013-09-16 15:24 - 00000919 _____ () C:\Users\Radar\Desktop\Dropbox.lnk
2015-04-24 06:57 - 2013-09-16 15:23 - 00000000 ____D () C:\Users\Radar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-04-22 06:53 - 2013-09-16 14:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-19 10:12 - 2014-03-17 14:49 - 00161827 _____ () C:\Users\Radar\Documents\exportchiper.txt
2015-04-16 09:26 - 2013-09-20 07:16 - 00003766 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-04-15 19:26 - 2013-09-16 15:04 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-15 19:26 - 2013-09-16 15:04 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-15 08:20 - 2013-09-16 15:46 - 01509514 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-04-15 08:19 - 2013-09-16 17:46 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-15 08:15 - 2006-11-02 14:35 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-04-14 08:20 - 2014-05-02 18:56 - 00000000 ____D () C:\Users\Radar\Documents\PRODEJNY
2015-04-13 12:55 - 2014-04-07 12:34 - 00001009 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2015-04-08 20:54 - 2014-03-11 19:57 - 00000000 ____D () C:\Users\Radar\Desktop\Zálohy zach
2015-04-08 20:36 - 2013-09-16 15:10 - 00000000 ____D () C:\Program Files (x86)\Google
2015-04-05 19:53 - 2013-09-16 14:29 - 00122880 _____ () C:\Users\Radar\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-04-05 19:39 - 2014-11-03 19:30 - 00003156 _____ () C:\Windows\setupact.log
2015-04-04 08:29 - 2014-06-27 11:51 - 00000000 ____D () C:\Users\Radar\AppData\Local\Adobe

==================== Files in the root of some directories =======

2014-03-16 17:08 - 2014-12-01 18:16 - 0000053 _____ () C:\Users\Radar\AppData\Local\ABC Business - offline clientABCBoffline.txt
2014-01-15 19:35 - 2014-12-06 14:31 - 0000680 _____ () C:\Users\Radar\AppData\Local\d3d9caps.dat
2013-09-16 13:55 - 2013-09-25 13:08 - 0001460 _____ () C:\Users\Radar\AppData\Local\d3d9caps64.dat
2013-09-16 14:29 - 2015-04-05 19:53 - 0122880 _____ () C:\Users\Radar\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-06 20:23 - 2013-12-01 18:44 - 0407132 _____ () C:\Users\Radar\AppData\Local\dd_depcheck_NETFX_EXP_35.txt
2013-11-06 20:23 - 2013-11-06 20:23 - 0000002 _____ () C:\Users\Radar\AppData\Local\dd_dotnetfx35error.txt
2013-11-06 20:25 - 2013-11-06 20:25 - 0000002 _____ () C:\Users\Radar\AppData\Local\dd_dotnetfx35error_lp.txt
2013-11-06 20:23 - 2013-12-01 18:44 - 0397220 _____ () C:\Users\Radar\AppData\Local\dd_dotnetfx35install.txt
2013-11-06 20:25 - 2013-11-06 20:25 - 0084824 _____ () C:\Users\Radar\AppData\Local\dd_dotnetfx35install_lp.txt
2013-11-06 20:25 - 2013-11-06 20:25 - 0964318 _____ () C:\Users\Radar\AppData\Local\dd_NET_Framework35_LangPack_MSI31D0.txt
2013-11-06 20:24 - 2013-11-06 20:24 - 2812776 _____ () C:\Users\Radar\AppData\Local\dd_NET_Framework35_x64_MSI3133.txt
2013-12-01 18:41 - 2013-12-01 18:41 - 0417960 _____ () C:\Users\Radar\AppData\Local\dd_vcredistMSI03F3.txt
2013-11-07 20:32 - 2013-11-07 20:32 - 0356824 _____ () C:\Users\Radar\AppData\Local\dd_vcredistMSI059F.txt
2013-09-16 15:09 - 2013-09-16 15:09 - 0435864 _____ () C:\Users\Radar\AppData\Local\dd_vcredistMSI2F43.txt
2013-11-06 20:22 - 2013-11-06 20:22 - 0356354 _____ () C:\Users\Radar\AppData\Local\dd_vcredistMSI2FF3.txt
2013-11-06 17:43 - 2013-11-06 17:43 - 0354130 _____ () C:\Users\Radar\AppData\Local\dd_vcredistMSI3635.txt
2013-09-16 15:36 - 2013-09-16 15:36 - 0432194 _____ () C:\Users\Radar\AppData\Local\dd_vcredistMSI4418.txt
2013-09-19 18:57 - 2013-09-19 18:58 - 0455044 _____ () C:\Users\Radar\AppData\Local\dd_vcredistMSI47E6.txt
2013-09-19 18:58 - 2013-09-19 18:59 - 0461052 _____ () C:\Users\Radar\AppData\Local\dd_vcredistMSI48F5.txt
2013-12-01 18:41 - 2013-12-01 18:41 - 0011446 _____ () C:\Users\Radar\AppData\Local\dd_vcredistUI03F3.txt
2013-11-07 20:32 - 2013-11-07 20:32 - 0011238 _____ () C:\Users\Radar\AppData\Local\dd_vcredistUI059F.txt
2013-09-16 15:09 - 2013-09-16 15:09 - 0023392 _____ () C:\Users\Radar\AppData\Local\dd_vcredistUI2F43.txt
2013-11-06 20:22 - 2013-11-06 20:22 - 0012174 _____ () C:\Users\Radar\AppData\Local\dd_vcredistUI2FF3.txt
2013-11-06 17:43 - 2013-11-06 17:43 - 0011126 _____ () C:\Users\Radar\AppData\Local\dd_vcredistUI3635.txt
2013-09-16 15:36 - 2013-09-16 15:36 - 0017994 _____ () C:\Users\Radar\AppData\Local\dd_vcredistUI4418.txt
2013-09-19 18:56 - 2013-09-19 18:58 - 0011826 _____ () C:\Users\Radar\AppData\Local\dd_vcredistUI47E6.txt
2013-09-19 18:58 - 2013-09-19 18:59 - 0011794 _____ () C:\Users\Radar\AppData\Local\dd_vcredistUI48F5.txt
2013-11-06 20:23 - 2013-12-01 18:44 - 0005696 _____ () C:\Users\Radar\AppData\Local\uxeventlog.txt

Some content of TEMP:
====================
C:\Users\Radar\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp7qx3zi.dll
C:\Users\Radar\AppData\Local\Temp\InstHelper.exe
C:\Users\Radar\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Radar\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-29 07:31

==================== End Of Log ============================

Addition.txt :
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-04-2015
Ran by Radar at 2015-04-29 14:25:54
Running from C:\Users\Radar\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1491071562-1929162529-3579147401-500 - Administrator - Disabled)
Guest (S-1-5-21-1491071562-1929162529-3579147401-501 - Limited - Enabled)
Radar (S-1-5-21-1491071562-1929162529-3579147401-1000 - Administrator - Enabled) => C:\Users\Radar

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ABC Business - offline client (HKLM-x32\...\ABCBoffline) (Version: - )
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader X (10.1.13) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AA1000000001}) (Version: 10.1.13 - Adobe Systems Incorporated)
Afterfall InSanity Extended Edition (HKLM-x32\...\Steam App 224420) (Version: - Intoxicate Studios)
Aktualizace NVIDIA 16.18.9 (Version: 16.18.9 - NVIDIA Corporation) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Balíček ovladače systému Windows - Silicon Laboratories (silabenm) Ports (10/18/2013 6.6.1.0) (HKLM\...\F92C2D6CB4EA0EE558BDF5F8BDD69083DFC62179) (Version: 10/18/2013 6.6.1.0 - Silicon Laboratories)
Batman: Arkham Asylum GOTY Edition (HKLM-x32\...\Steam App 35140) (Version: - Rocksteady Studios)
Batman: Arkham City GOTY (HKLM-x32\...\Steam App 200260) (Version: - Rocksteady Studios)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.63.1071 - AB Team, d.o.o.)
Burnout™ Paradise: The Ultimate Box (HKLM-x32\...\{9A996B6A-846E-4A89-B9C4-17546B7BE49F}) (Version: 1.1.0.0 - Electronic Arts)
CCleaner (HKLM\...\CCleaner) (Version: 4.04 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP)
CipherLab Forge Batch (HKLM-x32\...\{1C5B3EA3-2CF6-4C06-8A70-41BD8FFBA2B4}) (Version: 1.00.0025 - CipherLab Co.,Ltd.)
Codec Pack - All In 1 6.0.3.0 (HKLM-x32\...\Cool's_Codec_pack_4.12) (Version: - )
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dragon Age: Prameny (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.04 - Electronic Arts, Inc.)
Dropbox (HKU\S-1-5-21-1491071562-1929162529-3579147401-1000\...\Dropbox) (Version: 3.4.4 - Dropbox, Inc.)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
ESET NOD32 Antivirus (HKLM\...\{AB1AA952-0F66-42B2-B8B0-6B94FC500132}) (Version: 8.0.304.1 - ESET, spol s r. o.)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
F.E.A.R. 3 (HKLM-x32\...\Steam App 21100) (Version: - Day 1 Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.90 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Gothic II: Gold Edition (HKLM-x32\...\Steam App 39510) (Version: - Piranha – Bytes)
Gothic III (HKLM-x32\...\{02B244A2-7F6A-42E8-A36F-8C385D7A1625}) (Version: 1.0.0 - JoWooD Productions Software AG)
Heroes of Newerth (HKLM-x32\...\hon) (Version: 2.3.0 - S2 Games)
HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version: - )
hppLaserJetService (x32 Version: 001.003.000145 - Hewlett-Packard) Hidden
hppM1130M1210SeriesLaserJetService (x32 Version: 001.003.00073 - Hewlett-Packard) Hidden
hppusgM1130M1210Series (x32 Version: 1.0.0.2 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Chrome Remote Desktop Host (HKLM-x32\...\{A1A724F3-F1A6-479C-AE98-208946717E2B}) (Version: 42.0.2311.39 - Google Inc.)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Mass Effect™ 2 (HKLM-x32\...\{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}) (Version: 1.2.1604.0 - Electronic Arts)
Mass Effect™ 3 (HKLM-x32\...\{534A31BD-20F4-46b0-85CE-09778379663C}) (Version: 1.05.0.0 - Electronic Arts)
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - csy) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Expression Web 4 (HKLM-x32\...\Web_4.0.1460.0) (Version: 4.0.1460.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 37.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 37.0.2 (x86 cs)) (Version: 37.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
NVIDIA GeForce Experience 2.1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.5 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.25 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
OpenOffice.org 3.4.1 (HKLM-x32\...\{1E0AF527-0B8E-4F8A-BA27-CB3C359998C6}) (Version: 3.41.9593 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.0.15.65 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 347.25 (Version: 347.25 - NVIDIA Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek 8169 8168 8101E 8102E Ethernet Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5497 - Realtek Semiconductor Corp.)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
SERD Obchod 1.09.09 RE3 (2014/III.) (HKLM-x32\...\SERD Obchod_is1) (Version: - SYSTEM-COMMERCE s.r.o.)
SHIELD Wireless Controller Driver (Version: 16.18.9 - NVIDIA Corporation) Hidden
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 1.0.0.0 - Electronic Arts)
Skype™ 7.1 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.13.1 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.41110 - TeamViewer)
The Lord of the Rings: War in the North (HKLM-x32\...\Steam App 32800) (Version: - Snowblind Studios)
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.57.62 - Electronic Arts)
The Sims™ 3 Luxusní bydlení – Kolekce (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
The Sims™ 3 Po setmění (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
TP-LINK 150Mbps Wireless N USB Adapter Driver (HKLM-x32\...\{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
Vcom_CDC (HKLM-x32\...\{E6F6F92B-C8BF-4D5C-A9A9-6008C695B998}) (Version: 1.00.0000 - Your Company Name)
War Thunder Launcher 1.0.1.322 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - 2013 Gaijin Entertainment Corporation)
webssearches uninstall (HKLM-x32\...\webssearches uninstall) (Version: - webssearches) <==== ATTENTION
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-1491071562-1929162529-3579147401-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Driver Package - FTDI CDM Driver Package - Bus/D2XX Driver (07/12/2013 2.08.30) (HKLM\...\22CCD58B53472BE3FCAFF05631111C4062959A43) (Version: 07/12/2013 2.08.30 - FTDI)
Windows Driver Package - FTDI CDM Driver Package - VCP Driver (07/12/2013 2.08.30) (HKLM\...\BD00013670D26C16E19F284BF8E15DAF813497C7) (Version: 07/12/2013 2.08.30 - FTDI)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1491071562-1929162529-3579147401-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Radar\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1491071562-1929162529-3579147401-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1491071562-1929162529-3579147401-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1491071562-1929162529-3579147401-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1491071562-1929162529-3579147401-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1491071562-1929162529-3579147401-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1491071562-1929162529-3579147401-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1491071562-1929162529-3579147401-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1491071562-1929162529-3579147401-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1491071562-1929162529-3579147401-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Radar\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points =========================

23-04-2015 08:16:48 Naplánovaný kontrolní bod
24-04-2015 07:28:50 Naplánovaný kontrolní bod
25-04-2015 08:59:30 Windows Update
26-04-2015 00:00:00 Naplánovaný kontrolní bod
27-04-2015 13:33:23 Naplánovaný kontrolní bod
28-04-2015 07:02:50 Naplánovaný kontrolní bod
29-04-2015 07:24:30 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2006-11-02 14:34 - 2006-09-18 23:37 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {27F77109-E340-4ABE-A59D-70AD0CF3D117} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-11] (Google Inc.)
Task: {34FB8EA1-7674-4368-AEEE-D253456C950E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {3C9494A7-DD1F-4FD1-BBB4-9B68C254350E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-07-22] (Piriform Ltd)
Task: {B1908F18-74CC-441C-A306-3038DA9FB6DB} - System32\Tasks\GoogleUpdateTaskMachineCore1d0416124856851 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-11] (Google Inc.)
Task: {BDBC923C-E274-4094-840B-A124021DD590} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\Windows\system32\RAServer.exe [2008-01-21] (Společnost Microsoft)
Task: {C9E9426E-B51A-484F-8A8C-D9C31B4F8DC7} - System32\Tasks\GoogleUpdateTaskMachineUA1d04161253514b8 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-11] (Google Inc.)
Task: {E1967A61-EC9A-4693-AA52-D413F5782A1C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15] (Adobe Systems Incorporated)
Task: {EDEC86C9-23E5-4CA2-A116-AB030B8810AD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-11] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0416124856851.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d04161253514b8.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2014-03-20 17:48 - 2012-09-29 14:25 - 00409088 _____ () C:\Windows\System32\HPM1210LM.DLL
2014-03-20 17:50 - 2012-09-29 14:25 - 00074240 _____ () C:\Windows\system32\spool\PRTPROCS\x64\HPM1210PP.dll
2013-10-11 17:30 - 2013-10-13 15:59 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-03-11 17:48 - 2011-12-26 15:47 - 00061440 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\WpsSupplicant.exe
2013-04-21 21:44 - 2013-04-21 21:44 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-04-21 21:44 - 2013-04-21 21:44 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2009-10-15 12:13 - 2009-10-15 12:13 - 00061440 _____ () C:\Program Files (x86)\HP\HPLaserJetService\HPTools.dll
2009-10-15 12:13 - 2009-10-15 12:13 - 00964096 _____ () C:\Program Files (x86)\HP\HPLaserJetService\LEDMXMLObjects.dll
2014-03-20 17:46 - 2012-11-08 05:00 - 00082944 _____ () C:\Windows\system32\mvusbews.dll
2015-04-29 07:20 - 2015-04-29 07:20 - 00043008 _____ () c:\users\radar\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp7qx3zi.dll
2015-03-04 23:45 - 2015-03-04 23:45 - 00750080 _____ () C:\Users\Radar\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-03-04 23:45 - 2015-03-04 23:45 - 00047616 _____ () C:\Users\Radar\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-03-04 23:45 - 2015-03-04 23:45 - 00865280 _____ () C:\Users\Radar\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-03-04 23:45 - 2015-03-04 23:45 - 00200704 _____ () C:\Users\Radar\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Radar\Desktop\Zálohy zach:com.dropbox.attributes

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1491071562-1929162529-3579147401-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Radar\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.200.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TP-LINK Wireless Configuration Utility.lnk => C:\Windows\pss\TP-LINK Wireless Configuration Utility.lnk.CommonStartup
MSCONFIG\startupreg: Gaming 3 => "C:\Gaming Mouse\Gaming 3.exe" /hide

==================== FirewallRules (whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [TCP Query User{51729C39-0588-4042-9480-B5D70F59DF86}D:\program files (x86)\winamp\winamp.exe] => (Allow) D:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{6F298484-94CD-43D5-88A7-13266535AC5C}D:\program files (x86)\winamp\winamp.exe] => (Allow) D:\program files (x86)\winamp\winamp.exe
FirewallRules: [{7CD88B53-242B-47B7-8118-FB5C865622F4}] => (Allow) C:\Users\Radar\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{FB29AB88-03FD-4E69-9790-701C2CC7111A}] => (Allow) C:\Users\Radar\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{A9F3568B-B806-472D-989A-AA03492CD25E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{5D4AA02B-2E3A-49F9-AEAE-E27B98106F6B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{0FC78307-DDA8-48CA-B2F1-EDE396B17B9B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{68A76883-D6AD-4F27-9D97-3E1636D88D29}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{C54DAA7B-B321-4592-ADBD-046ED1AF04BA}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{AD702148-8A13-485C-9D8C-783B9F656AAF}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{A744E499-F73C-44B5-BFEC-14227844A70C}] => (Allow) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
FirewallRules: [{A9631AF8-B48A-4CEA-87B6-B8BC22BAA945}] => (Allow) LPort=80
FirewallRules: [{FA94011A-2294-4AAF-A1F5-372214F8344E}] => (Allow) LPort=80
FirewallRules: [{C61F25F6-17DB-4541-97E3-7EF98F0D7763}] => (Allow) LPort=80
FirewallRules: [{96C500BA-4B1D-4A15-86DC-9C622FC065F9}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{6B10EDC0-7FF2-4BF5-8C5F-28D46297EBEF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{848B7E8B-002C-4F4B-BFAA-82F374FBD81B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{2E38DDEF-7038-4397-B2F4-F32AA6AFFB73}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B4AD4E42-569B-4744-A497-927C376FB749}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2ADC7973-E78C-4A8A-8AFF-9F44EFFA166B}] => (Allow) D:\Program Files (x86)\Origin\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [{ACF7C372-D780-4D20-8534-C122D299E44D}] => (Allow) D:\Program Files (x86)\Origin\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [{A0414653-26F0-49B4-8A9D-C77DF7D9554F}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\AllShareFrameworkDMS.exe
FirewallRules: [{92ABED85-B436-48C4-A12E-BECA21E34EFD}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\AllShareFrameworkDMS.exe
FirewallRules: [{C3EE41C2-8F91-4894-8CAF-3FD8FC209EF9}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\AllShareFrameworkDMS.exe
FirewallRules: [{6E8FCFCA-7F05-4297-B2E3-CEADD94F48DF}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\AllShareFrameworkDMS.exe
FirewallRules: [{CE0ECA7A-0746-4956-A5C7-F117FAC08F0A}] => (Allow) LPort=8743
FirewallRules: [{98FC8A54-EE48-4D55-9079-4491B12828B4}] => (Allow) LPort=8643
FirewallRules: [{6EC69BB1-A4A1-486D-8326-E978AC93480B}] => (Allow) LPort=7676
FirewallRules: [{F01C9AA5-DEF5-4AD4-839C-77DDECF7E283}] => (Allow) LPort=7679
FirewallRules: [{3617AC8D-C649-4BD6-B4A5-44C660FC648E}] => (Allow) LPort=24234
FirewallRules: [{43EAA465-1CE9-49B0-933C-116C40FEF7A4}] => (Allow) LPort=7900
FirewallRules: [{E86CB1E2-1046-49D5-92E8-5DC57C96350D}] => (Allow) LPort=1900
FirewallRules: [{0525A102-EFCF-469E-821B-28A77FB8C5C3}] => (Allow) D:\Program Files (x86)\Origin\SimCity\SimCity\SimCity.exe
FirewallRules: [{952BCF16-4A6B-47C8-8062-1F791AD2F761}] => (Allow) D:\Program Files (x86)\Origin\SimCity\SimCity\SimCity.exe
FirewallRules: [{3D65876C-2FC3-4BD7-A733-A86B81246E87}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{29CF49A8-B150-4F9E-8F65-52E922D211F2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{1347BE8D-3CE6-4825-A18F-B8D711FDB2E9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{380B5D55-20BB-4AE3-BD32-9A778EB984B8}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{7B22AD44-C9B8-4A94-852B-C0D9C1AD6F8E}] => (Allow) D:\Program Files (x86)\Origin\Battlefield 3\bf3.exe
FirewallRules: [{838809B2-5EA3-490E-BB50-65055DB1D1DB}] => (Allow) D:\Program Files (x86)\Origin\Battlefield 3\bf3.exe
FirewallRules: [{241F0A0A-198E-41EF-B751-CBED07E4B42F}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{D09DA374-FDF4-4EEB-8017-3E28551E4BC3}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{DD3916A0-B1BD-4EE5-B39C-C224FDAED666}] => (Allow) D:\Program Files (x86)\Origin\Burnout Paradise\BurnoutParadise.exe
FirewallRules: [{7D903755-E26A-49B7-98C4-3DB87FE788A5}] => (Allow) D:\Program Files (x86)\Origin\Burnout Paradise\BurnoutParadise.exe
FirewallRules: [{6B5F9480-4388-4715-A12A-25ADE0AB5C06}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkDMS.exe
FirewallRules: [{1C9609DA-CAAF-48D4-A38F-E8A2B56D4B5B}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkDMS.exe
FirewallRules: [{98453FFA-A4A5-4619-BE51-945345D536E5}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkDMS.exe
FirewallRules: [{ACFA64B4-D6ED-4CA6-A771-018B0E5C6C47}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkDMS.exe
FirewallRules: [{8D56DC0E-5B14-439F-B632-F5784F43D787}] => (Allow) D:\Program Files (x86)\Dragon Age\DAOriginsLauncher.exe
FirewallRules: [{BFE5982B-BCBB-4041-8BBB-06CE1FCC457B}] => (Allow) D:\Program Files (x86)\Dragon Age\DAOriginsLauncher.exe
FirewallRules: [{D55A53A3-75E5-4A33-B9F2-870A7AA23164}] => (Allow) D:\Program Files (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe
FirewallRules: [{29EBA68D-A83A-4430-A7C6-7FA00FBEFBF9}] => (Allow) D:\Program Files (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe
FirewallRules: [{51684CCB-E7D7-41A5-9F71-BCD5B6E87F47}] => (Allow) D:\Program Files (x86)\Origin\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{6099225C-DFF3-4C44-98BA-3E3ECE2FE142}] => (Allow) D:\Program Files (x86)\Origin\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [TCP Query User{BAA678F0-58AB-4A57-B0F8-78D95DBC60A3}D:\program files (x86)\origin\mass effect 2\binaries\me2game.exe] => (Allow) D:\program files (x86)\origin\mass effect 2\binaries\me2game.exe
FirewallRules: [UDP Query User{32EB3E94-4960-43CC-83F7-D12583FAD5B9}D:\program files (x86)\origin\mass effect 2\binaries\me2game.exe] => (Allow) D:\program files (x86)\origin\mass effect 2\binaries\me2game.exe
FirewallRules: [{1C4C7EE7-7242-49D7-9356-7E4EE57B5754}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B6DB37A5-97B3-40B1-9363-476DB1D39E4C}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4A4C19EA-F304-4A0C-94FF-A3F44E482F48}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\War in the North\witn.exe
FirewallRules: [{3252B31B-09C8-4F5D-80CF-CAEDCA9FEF9D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\War in the North\witn.exe
FirewallRules: [{E1952FC2-7D9D-451F-A59F-67E91A68CCA6}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe
FirewallRules: [{03763513-7FEB-422F-B489-99FCFCA2EAFA}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe
FirewallRules: [{E457345E-DD25-4FC5-B851-B31F79C07CC4}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\RunLauncher.bat
FirewallRules: [{AC2AB4B4-37B1-4FC8-9B4A-49DC15347FD1}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\RunLauncher.bat
FirewallRules: [{B42F3F1D-9C71-4272-B74B-C83BBF4D6787}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\F.E.A.R. 3\F.E.A.R. 3.exe
FirewallRules: [{9FCABCCF-A2C6-493D-BD0A-6062865221DE}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\F.E.A.R. 3\F.E.A.R. 3.exe
FirewallRules: [{1D503960-EAF5-4137-872D-FAAFA1E41FBB}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe
FirewallRules: [{34113A4E-57A2-4388-9D73-BDB4AD413AF1}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe
FirewallRules: [TCP Query User{E06DA26C-4B26-41DD-BA08-C40670F239B7}D:\program files (x86)\steam\steamapps\common\batman arkham asylum goty\binaries\shippingpc-bmgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\batman arkham asylum goty\binaries\shippingpc-bmgame.exe
FirewallRules: [UDP Query User{0F053E9D-E065-4C79-8186-13DA756D1C38}D:\program files (x86)\steam\steamapps\common\batman arkham asylum goty\binaries\shippingpc-bmgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\batman arkham asylum goty\binaries\shippingpc-bmgame.exe
FirewallRules: [TCP Query User{9B762C4D-02E0-4DE1-BDF3-97DB4C1CE33E}C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe] => (Block) C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe
FirewallRules: [UDP Query User{59513AF9-72E1-4903-9827-AA1846C69F03}C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe] => (Block) C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe
FirewallRules: [{B721E397-FAD5-406B-BDFA-C9573D963DDE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{60F3AD52-0BB7-4809-82D4-B635BFE4ED6F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [TCP Query User{AAF16A1B-592B-4E28-9AA5-2A5C557F6ECD}C:\cipherlab\forge\batch\8 series\utilities\mobilelink.exe] => (Block) C:\cipherlab\forge\batch\8 series\utilities\mobilelink.exe
FirewallRules: [UDP Query User{A7BAD477-4C60-4F0B-A487-B2894E41CF3B}C:\cipherlab\forge\batch\8 series\utilities\mobilelink.exe] => (Block) C:\cipherlab\forge\batch\8 series\utilities\mobilelink.exe
FirewallRules: [{A3EFA734-3592-4B99-ABA7-04063389B81B}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Afterfall InSanity\Binaries\Win32\InSanity-Win32-Shipping.exe
FirewallRules: [{52AB0DA8-CB98-4C6A-967F-D52FA846446C}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Afterfall InSanity\Binaries\Win32\InSanity-Win32-Shipping.exe
FirewallRules: [{56F4C4EA-0ACA-4FF2-BA1A-AED4EFC0B7D5}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{45FE93F7-2334-4C9C-84A0-52544401AEEA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5D0E7F83-9B59-4C17-95E3-3935B6D7B863}] => (Allow) d:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{76984774-89CD-481A-AB27-D54BF024D253}] => (Allow) d:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{2AFF08EC-A42A-469B-AD98-DF42AEF7D4ED}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Gothic II\system\Gothic2.exe
FirewallRules: [{D3116DB7-3BC2-4B63-9E37-5F063D82137E}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Gothic II\system\Gothic2.exe
FirewallRules: [{E1AB995E-AC3A-4B58-95D1-7F7C44DCD45D}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkDMS.exe
FirewallRules: [{82626A47-509F-43CD-BA35-6A1F7EB35B1C}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkDMS.exe
FirewallRules: [{009E1277-C576-4A36-B8A0-3DCC0CCE3BE7}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkDMS.exe
FirewallRules: [{AC652AC5-6481-4DED-BD0A-5833997E4087}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkDMS.exe
FirewallRules: [{CF672C9D-20D5-4CB9-BBBD-5D677A650311}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
FirewallRules: [{F781B914-D5A0-4ACB-AE06-53EA7742A966}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
FirewallRules: [{EC5EC839-F653-4C0A-8D8E-F6A9835B7093}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
FirewallRules: [{6B1BF3D4-C9B8-4C0B-BF47-4431466C9E9C}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
FirewallRules: [{8CB51BFA-D78E-4802-9FE2-D9D13FE82D9B}] => (Allow) D:\Program Files (x86)\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{1F722D99-79B0-4417-B3F3-8D5925267C92}] => (Allow) D:\Program Files (x86)\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [TCP Query User{B14401D4-6653-4472-A567-49C7DB5C244F}D:\totalcmd\totalcmd64.exe] => (Allow) D:\totalcmd\totalcmd64.exe
FirewallRules: [UDP Query User{D0025A4B-264C-4DFE-96EA-2AC029E0CAF3}D:\totalcmd\totalcmd64.exe] => (Allow) D:\totalcmd\totalcmd64.exe
FirewallRules: [{307A15D8-ED7A-4212-957D-8B02113D8D5E}] => (Allow) D:\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{F851C02D-0749-4C3F-9224-365DAD7B220B}] => (Allow) D:\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{9EF9886F-4C76-4C1E-960D-9F05A5E5931E}] => (Allow) D:\Dragon Age\DAOriginsLauncher.exe
FirewallRules: [{88EA7D99-5B37-49CB-8266-F1E723EE37E6}] => (Allow) D:\Dragon Age\DAOriginsLauncher.exe
FirewallRules: [{8D4CF729-87D9-4430-A016-DDF25E42E2E9}] => (Allow) D:\Dragon Age\bin_ship\daupdatersvc.service.exe
FirewallRules: [{7A6C570A-A377-41C1-8A53-3B9CB438CA14}] => (Allow) D:\Dragon Age\bin_ship\daupdatersvc.service.exe
FirewallRules: [{95FD3EA3-883D-47B8-944E-5D6B9A7E3A6A}] => (Allow) D:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [{B2DD2899-B05C-4D94-9AE4-6D3741A15535}] => (Allow) D:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [TCP Query User{E9A94D5A-7A89-462D-A2FA-59A6234B8BCD}D:\program files (x86)\warthunder\aces.exe] => (Allow) D:\program files (x86)\warthunder\aces.exe
FirewallRules: [UDP Query User{4E49B8D0-12AB-4E60-9783-989EDB4A0931}D:\program files (x86)\warthunder\aces.exe] => (Allow) D:\program files (x86)\warthunder\aces.exe
FirewallRules: [{8D414119-CF5D-44CC-89BA-5E73758E57BA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0A2DF82D-4056-4ECB-9E68-CA95727F6746}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4749CF5D-AF1C-4036-B1BE-6824524EDA5A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{58A21BCB-63D1-47AA-9534-79CE30EC9A48}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{EAA5FF3A-EB6E-410B-B563-4F968B46E5E2}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{D9ADF9E1-43F3-4473-B640-82114EA2A7FB}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{CACDDE68-23D6-45AD-B8C6-22B1499DE9AF}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{60DECD53-ACF3-4AC4-9E0C-5E269F5E7D8D}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{70C41B17-0700-4799-80F3-C581AA5D81FB}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{EEB7A0E8-E47F-4652-874E-8DF5D052FACC}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [TCP Query User{6ED09295-C885-44E6-9EE1-7AAC4C89D35C}C:\users\radar\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\radar\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{ADFB57BA-C7F1-4F22-AB9C-BEC347D7214A}C:\users\radar\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\radar\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{99AAA260-ED10-4521-A46B-5D167A6C1C05}D:\dragon age\bin_ship\daorigins.exe] => (Block) D:\dragon age\bin_ship\daorigins.exe
FirewallRules: [UDP Query User{252E3EE4-9D8C-4841-8811-166DF917BE8F}D:\dragon age\bin_ship\daorigins.exe] => (Block) D:\dragon age\bin_ship\daorigins.exe
FirewallRules: [{62C824F2-7ADA-43DA-81FA-2C79472E3693}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{D27625BD-91A0-4B23-8046-948FC615C401}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{16DB2E3B-42E3-48B5-93F7-2F5A016FF0C9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{E39AF8A4-67B9-48A6-868C-047E09213C7A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [TCP Query User{F5FE9703-9CD2-4FCA-993A-590EFB950053}D:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) D:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{B37CF057-233E-43FA-8CD6-0371B7082D5A}D:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) D:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{680D3507-C3D9-4688-9743-DD45A91E8F1E}D:\program files (x86)\steam\steam.exe] => (Allow) D:\program files (x86)\steam\steam.exe
FirewallRules: [UDP Query User{37B909E3-7F57-4CDA-893F-A13F0E572F81}D:\program files (x86)\steam\steam.exe] => (Allow) D:\program files (x86)\steam\steam.exe
FirewallRules: [TCP Query User{D942FC98-915C-4D96-B35B-935C3F3F0C5E}C:\programdata\battle.net\agent\agent.3526\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.3526\agent.exe
FirewallRules: [UDP Query User{42C2E395-F0AB-456D-90DE-05053F1FB6FA}C:\programdata\battle.net\agent\agent.3526\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.3526\agent.exe
FirewallRules: [{418CCD25-9699-41CF-AC20-DC5592DABF2B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{0BD36C5E-8EAC-4CF4-9132-AC22788AA569}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A699EECF-9437-44BA-890F-DC1175287F59}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{BD3EE86A-A50B-4E5B-BE9C-4987BB6F564A}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{3D3336F4-9F4D-4124-97E4-DF05073429FE}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{BECC6103-A977-4BD8-822A-D3FBD0110A22}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\42.0.2311.39\remoting_host.exe
FirewallRules: [{83190803-52F0-46EA-88FA-8FA8EA81594F}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{D11CAE9D-DDDF-4708-92E0-B75EA1499F58}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{18B39B8B-C9F5-44EF-BA11-90F2628B5D80}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{AE676130-7FD9-4CB9-BE15-18C6DEED0BBB}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{1380F4AC-DBEE-4CF4-9BAE-1AB2631D44FB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/29/2015 07:21:13 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/28/2015 06:03:51 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/27/2015 08:43:47 PM) (Source: EventSystem) (EventID: 4621) (User: )
Description: 80070005EventSystem.EventSubscription{60042969-6CCA-46CD-81D4-22A056C989F3}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (04/27/2015 00:12:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/25/2015 08:40:55 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/24/2015 08:09:14 PM) (Source: EventSystem) (EventID: 4621) (User: )
Description: 80070005EventSystem.EventSubscription{60042969-6CCA-46CD-81D4-22A056C989F3}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (04/24/2015 06:53:51 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/23/2015 08:49:09 PM) (Source: EventSystem) (EventID: 4621) (User: )
Description: 80070005EventSystem.EventSubscription{60042969-6CCA-46CD-81D4-22A056C989F3}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (04/23/2015 10:49:16 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SERDObch.exe verze 1.9.9.328 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení problémů.
ID procesu: 10c8
Čas zahájení: 01d07da2473e883c
Čas ukončení: 7

Error: (04/23/2015 10:48:31 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SERDObch.exe verze 1.9.9.328 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení problémů.
ID procesu: b94
Čas zahájení: 01d07d944146197b
Čas ukončení: 15


System errors:
=============
Error: (04/28/2015 06:03:52 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: HP LaserJet Service%%1053

Error: (04/28/2015 06:03:52 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: 30000HP LaserJet Service

Error: (04/25/2015 08:39:19 AM) (Source: Microsoft-Windows-ResourcePublication) (EventID: 1002) (User: NT AUTHORITY)
Description: Provider\Microsoft.Base.Publication/Publication/Computer

Error: (04/21/2015 06:55:49 AM) (Source: Print) (EventID: 19) (User: NT AUTHORITY)
Description: Nasdílení tiskárny HP LaserJet Professional M1132 MFP s názvem sdíleného prostředku HP LaserJet Professional M1132 MFP se pomocí služby zařazování tisku nezdařilo. Chyba 2114. Danou tiskárnu nemohou používat další uživatelé v síti.

Error: (04/19/2015 09:37:02 AM) (Source: Dhcp) (EventID: 1000) (User: )
Description: Zapůjčení adresy IP počítače 192.168.200.152 pro síťovou kartu se síťovou adresou C04A00123C2A bylo ukončeno.

Error: (04/15/2015 11:15:32 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Klient zásad skupiny

Error: (04/11/2015 08:03:52 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Hlavní prohledávač přijal oznámení serveru od počítače MEJNIJAK-PC,
který se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{6A8A062C-16B3-45AA-AA65-833AD247BD00}.
Hlavní prohledávač bude ukončen nebo bude vyvolána volba.

Error: (04/11/2015 08:02:42 AM) (Source: Microsoft-Windows-ResourcePublication) (EventID: 1002) (User: NT AUTHORITY)
Description: Provider\Microsoft.Base.Publication/Publication/Computer

Error: (04/10/2015 06:20:07 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (18:18:29, 10.4.2015) bylo neočekávané.

Error: (04/10/2015 05:56:53 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (17:55:08, 10.4.2015) bylo neočekávané.


Microsoft Office Sessions:
=========================
Error: (04/29/2015 07:21:13 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/28/2015 06:03:51 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/27/2015 08:43:47 PM) (Source: EventSystem) (EventID: 4621) (User: )
Description: 80070005EventSystem.EventSubscription{60042969-6CCA-46CD-81D4-22A056C989F3}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (04/27/2015 00:12:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/25/2015 08:40:55 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/24/2015 08:09:14 PM) (Source: EventSystem) (EventID: 4621) (User: )
Description: 80070005EventSystem.EventSubscription{60042969-6CCA-46CD-81D4-22A056C989F3}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (04/24/2015 06:53:51 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/23/2015 08:49:09 PM) (Source: EventSystem) (EventID: 4621) (User: )
Description: 80070005EventSystem.EventSubscription{60042969-6CCA-46CD-81D4-22A056C989F3}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (04/23/2015 10:49:16 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: SERDObch.exe1.9.9.32810c801d07da2473e883c7

Error: (04/23/2015 10:48:31 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: SERDObch.exe1.9.9.328b9401d07d944146197b15


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz
Percentage of memory in use: 58%
Total physical RAM: 4094.33 MB
Available physical RAM: 1711.56 MB
Total Pagefile: 8409.91 MB
Available Pagefile: 6197.93 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:121.09 GB) (Free:41.68 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:344.67 GB) (Free:143.67 GB) NTFS
Drive f: (Všechno) (Fixed) (Total:465.76 GB) (Free:101.22 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: B7A934E4)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: AD2C2404)
Partition 1: (Active) - (Size=121.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=344.7 GB) - (Type=07 NTFS)

==================== End Of Log ============================
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7320
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Prosím o kontrolu logu

#2 Příspěvek od altrok »

Krasny den Vam preju :bye:



:arrow: V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

:arrow: Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
  • ukoncete vsechny programy
  • kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
  • kliknete na Scan, pote na Cleaning
  • po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
Mejnijak
Návštěvník
Návštěvník
Příspěvky: 26
Registrován: 02 pro 2014 15:50

Re: Prosím o kontrolu logu

#3 Příspěvek od Mejnijak »

Log z AdwCleaneru:

# AdwCleaner v4.202 - Log vytvořen 29/04/2015 v 18:21:01
# Aktualizováno 23/04/2015 by Xplode
# Databáze : 2015-04-27.1 [Server]
# Operační system : Windows (TM) Vista Home Premium Service Pack 2 (x64)
# Uživatelské jméno : Radar - RUZA-PC
# Spuštěno z : C:\Users\Radar\Desktop\adwcleaner_4.202.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

[!] Složka Smazáno : C:\ProgramData\ParetoLogic
[!] Složka Smazáno : C:\Program Files (x86)\SupTab
[!] Složka Smazáno : C:\Users\Radar\AppData\Roaming\DriverCure
[!] Složka Smazáno : C:\Users\Radar\AppData\Roaming\ParetoLogic
[!] Složka Smazáno : C:\Users\Radar\AppData\Roaming\webssearches
[!] Složka Smazáno : C:\Users\Radar\AppData\Roaming\Mozilla\Firefox\Profiles\j2gk7mxv.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Soubor Smazáno : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\webssearches.xml
Soubor Smazáno : C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_istart.webssearches.com_0.localstorage
Soubor Smazáno : C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_istart.webssearches.com_0.localstorage-journal

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****

Zástupce Vyléčeno : C:\Users\Radar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
Zástupce Vyléčeno : C:\Users\Radar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Zástupce Vyléčeno : C:\Users\Radar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Zástupce Vyléčeno : C:\Users\Radar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Zástupce Vyléčeno : C:\Users\Radar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Zástupce Vyléčeno : C:\Users\Radar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk

***** [ Registry ] *****

Hodnota Smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Klíč Smazáno : HKCU\Software\Mozilla\Extends
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\ParetoLogic
Klíč Smazáno : HKCU\Software\Local AppWizard-Generated Applications
Klíč Smazáno : HKLM\SOFTWARE\Conduit
Klíč Smazáno : HKLM\SOFTWARE\ParetoLogic
Klíč Smazáno : HKLM\SOFTWARE\SupDp
Klíč Smazáno : HKLM\SOFTWARE\webssearchesSoftware
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\webssearches uninstall
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PCSU-SL_is1
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Smart Driver Updater_is1
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\webssearches uninstall
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\webssearches.com
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local

***** [ Prohlížeče ] *****

-\\ Internet Explorer v9.0.8112.16636

Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v37.0.2 (x86 cs)

[j2gk7mxv.default\prefs.js] - Řádek Smazáno : user_pref("extensions.quick_start.enable_search1", false);
[j2gk7mxv.default\prefs.js] - Řádek Smazáno : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);

-\\ Google Chrome v42.0.2311.90

[C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://istart.webssearches.com/web/?type=ds&ts=1415438176&from=cvs&uid=ST3500410SV_6VMBVX6LXXXX6VMBVX6L&q={searchTerms}
[C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://istart.webssearches.com/web/?type=ds&ts=1415438176&from=cvs&uid=ST3500410SV_6VMBVX6LXXXX6VMBVX6L&q={searchTerms}
[C:\Users\Radar\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Startup_URLs] : hxxp://istart.webssearches.com/?type=hp&ts=1415438176&from=cvs&uid=ST3500410SV_6VMBVX6LXXXX6VMBVX6L

*************************

AdwCleaner[R0].txt - [5924 bytů] - [29/04/2015 18:20:18]
AdwCleaner[S0].txt - [4925 bytů] - [29/04/2015 18:21:01]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4983 bytů] ##########
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7320
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Prosím o kontrolu logu

#4 Příspěvek od altrok »

:arrow: Nainstalujte MBAM a udelejte vlastni sken vsech disku - http://forum.viry.cz/viewtopic.php?f=29&t=137928
  • Upozorneni: tento sken zabere od 30 minut po nekolik hodin
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
Mejnijak
Návštěvník
Návštěvník
Příspěvky: 26
Registrován: 02 pro 2014 15:50

Re: Prosím o kontrolu logu

#5 Příspěvek od Mejnijak »

OK, MBAM už radši nechám na zítřek, kdyby to náhoudou chtělo trvat delší dobu. Zitra se ozvu, zatím děkuji. :-)
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7320
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Prosím o kontrolu logu

#6 Příspěvek od altrok »

Urcite se ozvete, at pocitac poradne vycistime. Zatim nemate zac :)
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“