Prosím o překontrolování

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

maremarekk
Level 1.5
Level 1.5
Příspěvky: 144
Registrován: srpen 08
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o překontrolování

Příspěvekod maremarekk » 21 bře 2014 17:58

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2014 01
Ran by notebook at 2014-03-21 17:57:08
Running from C:\Users\notebook\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

µTorrent (HKLM\...\uTorrent) (Version: 3.3.0.29126 - BitTorrent Inc.)
Adobe Flash Media Live Encoder 3.2 (HKLM\...\{0659E943-DDF4-44FC-9FEE-A13B09F8BB08}) (Version: 3.2.0 - Adobe Systems Incorporated)
Adobe Flash Player 12 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader XI - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version: - Akamai Technologies, Inc)
AKVIS Coloriage (HKLM\...\{4833435D-7A4D-4D15-86F4-51C2D15549CF}) (Version: 9.0.1044.9177 - AKVIS)
Assassin's Creed (HKLM\...\{8CFA9151-6404-409A-AF22-4632D04582FD}) (Version: 1.01 - Ubisoft)
Assassin's Creed Brotherhood (HKLM\...\{BE4BA698-8533-4F77-9559-C7F3F78C0B05}) (Version: 1.00 - Ubisoft)
Assassin's Creed II (HKLM\...\{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}) (Version: 1.00 - Ubisoft)
ASUS Smart Gesture (HKLM\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 1.0.35 - ASUS)
ASUS Virtual Camera (HKLM\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.25 - ASUS)
Atheros Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.15.16 - Atheros Communications Inc.)
Audacity 2.0.5 (HKLM\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
avast! Free Antivirus (HKLM\...\Avast) (Version: 9.0.2013 - Avast Software)
Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment)
BitRaider Web Client (HKLM\...\BitRaider Web Client) (Version: 1.1.9.9 - BitRaider, LLC)
CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform)
Darksiders II (HKLM\...\Darksiders II_is1) (Version: - )
Folding@Home Services (HKLM\...\{DFD1CBF6-8C2B-4047-88B6-7E9FC4E0A14C}) (Version: 5.0.2.0 - Stanford University)
Fraps (remove only) (HKLM\...\Fraps) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Update Helper (Version: 1.3.22.5 - Google Inc.) Hidden
Harry Potter a Princ Dvojí Krve™ (HKLM\...\{FD1B1980-8CAB-4474-89F8-1245AF657AD1}) (Version: 1.0.0.0 - Electronic Arts)
Hearthstone (HKLM\...\Hearthstone) (Version: - Blizzard Entertainment)
HiJackThis (HKLM\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
HMA! Pro VPN 2.8.3.1 (HKLM\...\HMA! Pro VPN) (Version: 2.8.3.1 - )
IceChat 7.70 (Build 20101031) (HKLM\...\IceChat_is1) (Version: 7.70 - IceChat Networks)
Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3062 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
IPVanish (HKCU\...\80030f8e66f1b450) (Version: 1.3.1.17 - IPVanish.com)
Java 7 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.450 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
KMP Media Toolbar (HKLM\...\{4B4D5056-3700-A76A-76A7-A758B70C0A03}) (Version: 12.10.3.4602 - APN, LLC)
League of Legends (HKLM\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
LibreOffice 4.0.3.3 (HKLM\...\{F77ED0CD-2E5E-4FC7-82E0-BB7D461E739F}) (Version: 4.0.3.3 - The Document Foundation)
Machinima Studio (HKLM\...\{E104E5B6-0301-4540-9D9D-C57E564D8F61}) (Version: 1.0.0 - BC)
Malwarebytes Anti-Malware verze 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Marvel Heroes (HKLM\...\Steam App 226320) (Version: - Gazillion Entertainment)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Native Client (HKLM\...\{D9D937B0-E842-4130-9588-B948E876904A}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
MP3 Cutter 1.9 (HKLM\...\MP3 Cutter_is1) (Version: - Aiv Software)
Mumble 1.2.4 (HKLM\...\{FD8F9644-A572-44AD-84B0-21CA46CB7DC6}) (Version: 1.2.4 - Thorvald Natvig)
MyPublicWiFi 4.1 (HKLM\...\{C08D782B-9281-406B-ABCE-326DA70B8A1F}_is1) (Version: - TRUE Software)
MySQL Installer (HKLM\...\{0F623EFC-60D5-4B0A-8C91-5D16A53EAD4E}) (Version: 1.3.0.0 - Oracle Corporation)
MySQL Server 5.6 (HKLM\...\{FE1602A8-9B37-4C35-A716-9661444B669C}) (Version: 5.6.12 - Oracle Corporation)
Notepad++ (HKLM\...\Notepad++) (Version: 6.4.5 - Notepad++ Team)
NVIDIA PhysX (HKLM\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Open Broadcaster Software (HKLM\...\Open Broadcaster Software) (Version: - )
Opera 12.16 (HKLM\...\Opera 12.16.1860) (Version: 12.16.1860 - Opera Software ASA)
Opera Stable 19.0.1326.59 (HKLM\...\Opera 19.0.1326.59) (Version: 19.0.1326.59 - Opera Software ASA)
Pando Media Booster (HKLM\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.9 - Pando Networks Inc.)
PDF Architect (HKLM\...\{064A929A-4DE8-40CF-A901-BD40C14E4D25}) (Version: 1.1.83.9982 - pdfforge GmbH)
PDF Settings CS6 (Version: 11.0 - Adobe Systems Incorporated) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.0 - pdfforge)
Platform (Version: 1.39 - VIA Technologies, Inc.) Hidden
PowerISO (HKLM\...\PowerISO) (Version: 5.6 - Power Software Ltd)
PremiumSoft Navicat Lite 10.0 (HKLM\...\PremiumSoft Navicat Lite_is1) (Version: - PremiumSoft CyberTech Ltd.)
Proxifier version 3.15 (HKLM\...\Proxifier_is1) (Version: 3.15 - )
Psi (remove only) (HKLM\...\Psi) (Version: - )
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
Qualcomm Atheros WiFi Driver Installation (HKLM\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Qualcomm Atheros)
Skype™ 6.14 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.9.7.16.g4b197456 - Spotify AB)
Star Wars The Old Republic (HKLM\...\swtor_swtor) (Version: 7.0.0.29 - Bioware/EA)
Star Wars: The Old Republic (HKLM\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Subtitle Workshop 2.51 (HKLM\...\SubtitleWorkshop) (Version: - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.13.1 - TeamSpeak Systems GmbH)
The KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 3.6.0.87 - KMP Media co., Ltd)
Titulky 1.0.1.beta (HKLM\...\Titulky) (Version: 1.0.1.beta - )
TmNationsForever (HKLM\...\TmNationsForever_is1) (Version: - Nadeo)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.01 - Ghisler Software GmbH)
Ubisoft Game Launcher (HKLM\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
VIA Platforma Ovladače zařízení (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
Windows Driver Package - ASUS (ATP) Mouse (10/13/2012 1.0.0.146) (HKLM\...\19BB77B03643718D26B01876FD391DC93B189805) (Version: 10/13/2012 1.0.0.146 - ASUS)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wireless Console 3 (HKLM\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.30 - ASUS)
Wolf's Profi Miranda-Pack 1.5.0 (HKLM\...\{6C994474-67BD-499B-A99C-6ABF8F8732A2}_is1) (Version: - Wolf)
World of Warcraft (HKLM\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Public Test (HKLM\...\World of Warcraft Public Test) (Version: - Blizzard Entertainment)
XSplit (HKLM\...\{DAA18A0D-A57C-4611-B135-46EA06990E7D}) (Version: 1.2.1303.0101 - SplitMediaLabs)

==================== Restore Points =========================


==================== Hosts content: ==========================

2014-03-20 08:27 - 2014-03-20 16:13 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {0B9DAB7F-E485-4FDF-8B1F-9C786626A84C} - System32\Tasks\ASUS Wireless Console 3 => C:\Program Files\ASUS\Wireless Console 3\wcourier.exe [2012-05-17] (ASUSTeK Computer Inc.)
Task: {29F94271-C3C5-4514-AE86-4A2928D4A390} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {36EDFE36-F6C2-4A48-A4C7-3D3A386BC33C} - System32\Tasks\ASUS Touchpad Launcher => C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLauncher.exe [2012-10-31] (AsusTek)
Task: {3F0375BE-5D01-4A87-8D99-327316874B1A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-02-20] (Piriform Ltd)
Task: {66AC26C4-96F5-42DA-852F-3FE30C46647E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {7E17B96B-793D-4CD3-96A4-61D29729C74C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12] (Adobe Systems Incorporated)
Task: {B0F85141-10BD-405F-A786-17A4B1EC7BA4} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-02-04] (AVAST Software)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2013-12-22 22:35 - 2012-04-02 19:24 - 00056424 _____ () C:\Windows\system32\PrxerNsp.dll
2014-03-21 00:18 - 2014-03-20 21:06 - 02189312 _____ () C:\Program Files\AVAST Software\Avast\defs\14032000\algo.dll
2014-03-21 17:14 - 2014-03-21 11:44 - 02189312 _____ () C:\Program Files\AVAST Software\Avast\defs\14032100\algo.dll
2013-09-10 15:04 - 2011-12-02 18:46 - 00597504 _____ () C:\Program Files\MyPublicWiFi\PublicWiFiService.exe
2013-05-21 16:42 - 2013-05-21 16:42 - 10923520 _____ () C:\Program Files\MySQL\MySQL Server 5.6\bin\mysqld.exe
2013-12-14 16:42 - 2013-12-14 16:42 - 00075136 _____ () C:\Windows\system32\PnkBstrA.exe
2010-01-09 20:18 - 2010-01-09 20:18 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-01-21 01:34 - 2010-01-21 01:34 - 08793952 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2013-05-10 00:41 - 2012-04-19 03:23 - 00080496 ____R () C:\Program Files\VIA\VIAudioi\VDeck\QsApoApi.dll
2013-05-10 00:41 - 2012-04-19 03:23 - 00113264 ____R () C:\Program Files\VIA\VIAudioi\VDeck\Dts2ApoApi.dll
2013-03-08 18:06 - 2013-03-08 18:06 - 00094208 _____ () C:\Windows\System32\IccLibDll.dll
2014-02-04 17:41 - 2014-02-04 17:41 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-03-15 19:36 - 2014-03-15 01:50 - 00051016 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\chrome_elf.dll
2014-03-15 19:36 - 2014-03-15 01:50 - 00716616 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\libglesv2.dll
2014-03-15 19:36 - 2014-03-15 01:50 - 00100168 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\libegl.dll
2014-03-15 19:36 - 2014-03-15 01:50 - 04061000 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\pdf.dll
2014-03-15 19:36 - 2014-03-15 01:50 - 00394568 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll
2014-03-15 19:36 - 2014-03-15 01:50 - 01647432 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\ffmpegsumo.dll
2014-03-15 19:36 - 2014-03-15 01:50 - 13637448 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll
2013-05-10 00:39 - 2012-06-25 09:41 - 01198912 _____ () C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:810B9F0D

==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: SM Bus Controller
Description: SM Bus Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/21/2014 05:11:43 PM) (Source: PublicWiFiService.exe) (User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:42 PM) (Source: PublicWiFiService.exe) (User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:41 PM) (Source: PublicWiFiService.exe) (User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:40 PM) (Source: PublicWiFiService.exe) (User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:39 PM) (Source: PublicWiFiService.exe) (User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:38 PM) (Source: PublicWiFiService.exe) (User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:37 PM) (Source: PublicWiFiService.exe) (User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:35 PM) (Source: PublicWiFiService.exe) (User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:34 PM) (Source: PublicWiFiService.exe) (User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:33 PM) (Source: PublicWiFiService.exe) (User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'


System errors:
=============
Error: (03/21/2014 05:13:23 PM) (Source: Service Control Manager) (User: )
Description: The atksgt service failed to start due to the following error:
%%1275

Error: (03/21/2014 05:13:23 PM) (Source: Application Popup) (User: )
Description: Driver atksgt.sys has been blocked from loading.

Error: (03/21/2014 05:11:04 PM) (Source: ipnathlp) (User: )
Description: 0

Error: (03/21/2014 03:43:25 PM) (Source: DCOM) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (03/21/2014 02:47:41 PM) (Source: ipnathlp) (User: )
Description: 0

Error: (03/21/2014 02:21:02 PM) (Source: ipnathlp) (User: )
Description: 0

Error: (03/21/2014 02:21:00 PM) (Source: ipnathlp) (User: )
Description: 0

Error: (03/21/2014 01:18:42 PM) (Source: ipnathlp) (User: )
Description: 0

Error: (03/21/2014 01:14:54 PM) (Source: ipnathlp) (User: )
Description: 0

Error: (03/21/2014 00:55:54 PM) (Source: ipnathlp) (User: )
Description: 0


Microsoft Office Sessions:
=========================
Error: (03/21/2014 05:11:43 PM) (Source: PublicWiFiService.exe)(User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:42 PM) (Source: PublicWiFiService.exe)(User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:41 PM) (Source: PublicWiFiService.exe)(User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:40 PM) (Source: PublicWiFiService.exe)(User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:39 PM) (Source: PublicWiFiService.exe)(User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:38 PM) (Source: PublicWiFiService.exe)(User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:37 PM) (Source: PublicWiFiService.exe)(User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:35 PM) (Source: PublicWiFiService.exe)(User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:34 PM) (Source: PublicWiFiService.exe)(User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'

Error: (03/21/2014 05:11:33 PM) (Source: PublicWiFiService.exe)(User: )
Description: Windows-Socket-Fehler: An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full (10055), auf API 'connect'


==================== Memory info ===========================

Percentage of memory in use: 48%
Total physical RAM: 3033.68 MB
Available physical RAM: 1569.21 MB
Total Pagefile: 6065.64 MB
Available Pagefile: 3840.29 MB
Total Virtual: 2047.88 MB
Available Virtual: 1895.3 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:289.09 GB) (Free:55.25 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:9 GB) (Free:8.04 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 69B53599)
Partition 1: (Active) - (Size=289 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=9 GB) - (Type=07 NTFS)

==================== End Of Log ============================

------------------------------------------

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014 01
Ran by notebook (administrator) on NOTEBOOK-PC on 21-03-2014 17:56:19
Running from C:\Users\notebook\Downloads
Microsoft Windows 7 Home Premium (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Stanford University) C:\Program Files\Folding@Home #01\Folding@Home #01\FAH-Console.exe
(Stanford University) C:\Program Files\Folding@Home #01\Folding@Home #02\FAH-Console.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
() C:\Program Files\MyPublicWiFi\PublicWiFiService.exe
() C:\Program Files\MySQL\MySQL Server 5.6\bin\mysqld.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\ConversionService.exe
() C:\Windows\system32\PnkBstrA.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
(VIA) C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Akamai Technologies, Inc.) C:\Users\notebook\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\notebook\AppData\Local\Akamai\netsession_win.exe
(Spotify Ltd) C:\Users\notebook\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(BitTorrent Inc.) C:\Users\notebook\AppData\Roaming\uTorrent\uTorrent.exe
(AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLoader.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPCenter.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPHelper.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HDAudDeck] - C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [3926128 2012-04-19] (VIA)
HKLM\...\Run: [SwitchBoard] - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-01-21] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-02-04] (AVAST Software)
HKU\S-1-5-21-392365648-3270922795-3319143393-1000\...\Run: [Akamai NetSession Interface] - C:\Users\notebook\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKU\S-1-5-21-392365648-3270922795-3319143393-1000\...\Run: [Spotify Web Helper] - C:\Users\notebook\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171968 2014-03-09] (Spotify Ltd)
HKU\S-1-5-21-392365648-3270922795-3319143393-1000\...\Run: [uTorrent] - C:\Users\notebook\AppData\Roaming\uTorrent\uTorrent.exe [802136 2013-05-26] (BitTorrent Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 08 %SystemRoot%\system32\PrxerNsp.dll [56424] ()
Winsock: Catalog9 01 %SystemRoot%\system32\PrxerDrv.dll [70248] (Initex)
Winsock: Catalog9 02 %SystemRoot%\system32\PrxerDrv.dll [70248] (Initex)
Winsock: Catalog9 03 %SystemRoot%\system32\PrxerDrv.dll [70248] (Initex)
Winsock: Catalog9 04 %SystemRoot%\system32\PrxerDrv.dll [70248] (Initex)
Winsock: Catalog9 16 %SystemRoot%\system32\PrxerDrv.dll [70248] (Initex)
Tcpip\Parameters: [DhcpNameServer] 193.85.1.100 8.8.8.8

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR Extension: (Dokumenty Google) - C:\Users\notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-04]
CHR Extension: (AdBlock) - C:\Users\notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-03-11]
CHR Extension: (avast! Online Security) - C:\Users\notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-02-04]
CHR Extension: (Adblock Advisor) - C:\Users\notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\iplojogpbcbnjoemcalepfmbcpnkpjjo [2014-03-11]
CHR Extension: (Peněženka Google) - C:\Users\notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-04]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-02-04]

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-04] (AVAST Software)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2013-12-27] (BitRaider, LLC)
S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [279024 2013-03-22] (Intel Corporation)
R2 FAH-01; C:\Program Files\Folding@Home #01\Folding@Home #01\FAH-Console.exe [253952 2008-06-30] (Stanford University)
R2 FAH-02; C:\Program Files\Folding@Home #01\Folding@Home #02\FAH-Console.exe [253952 2008-06-30] (Stanford University)
R3 ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [169752 2012-04-24] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [462048 2012-04-20] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 MyPublicWiFiService; C:\Program Files\MyPublicWiFi\PublicWiFiService.exe [597504 2011-12-02] ()
R2 MySQL56; C:\ProgramData\MySQL\MySQL Server 5.6\my.ini [14251 2013-07-05] ()
S3 OpenVPNService; C:\Program Files\HMA! Pro VPN\bin\openvpnserv.exe [32568 2013-11-21] (The OpenVPN Project)
R2 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2013-12-14] ()
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-03-23] (VIA Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

S3 AIDA32Driver; C:\Program Files\AIDA32 - Enterprise System Information\aida32.sys [3584 2004-02-23] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-02-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [79720 2014-02-04] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-02-04] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [775952 2014-02-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [410784 2014-02-04] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [64168 2014-02-04] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180248 2014-02-04] ()
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [271360 2013-07-07] ()
R3 ATP; C:\Windows\System32\DRIVERS\AsusTP.sys [55680 2012-10-31] (ASUS Corporation)
S3 BRDriver; C:\ProgramData\BitRaider\BRDriver.sys [64808 2013-12-27] (BitRaider)
S3 EverestDriver; C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt [7168 2005-08-17] ()
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x86.sys [91760 2012-04-25] (Qualcomm Atheros Co., Ltd.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [18048 2013-07-07] ()
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [55104 2012-07-02] (Intel Corporation)
R1 ndisrd; C:\Windows\System32\DRIVERS\ndisrd.sys [26208 2011-02-22] (NT Kernel Resources)
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [113608 2013-04-15] (Power Software Ltd)
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [26624 2013-12-25] (The OpenVPN Project)
U3 TrueSight; C:\Windows\system32\TrueSight.sys [26624 2014-03-18] ()
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1830512 2012-03-23] (VIA Technologies, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\notebook\AppData\Local\Temp\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-21 17:56 - 2014-03-21 17:56 - 00011411 _____ () C:\Users\notebook\Downloads\FRST.txt
2014-03-21 17:56 - 2014-03-21 17:56 - 00000000 ____D () C:\FRST
2014-03-21 17:55 - 2014-03-21 17:55 - 01145856 _____ (Farbar) C:\Users\notebook\Downloads\FRST.exe
2014-03-21 17:55 - 2014-03-21 17:55 - 00001311 _____ () C:\Users\notebook\Desktop\Result.txt
2014-03-21 17:13 - 2014-03-21 17:13 - 00000056 _____ () C:\Windows\setupact.log
2014-03-21 17:13 - 2014-03-21 17:13 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-21 17:12 - 2014-03-21 17:12 - 00000590 _____ () C:\Windows\PFRO.log
2014-03-21 14:11 - 2014-03-21 14:11 - 00079360 _____ () C:\Users\notebook\Downloads\pp.ppt
2014-03-21 13:41 - 2014-03-21 14:36 - 00000000 ____D () C:\Users\notebook\Downloads\The Hobbit The Desolation of Smaug (2013)
2014-03-21 13:41 - 2014-03-21 13:41 - 00000000 ____D () C:\Users\notebook\Downloads\The Hobbit The Desolation of Smaug (2013) [1080p]
2014-03-21 11:11 - 2014-03-21 11:11 - 00232506 _____ () C:\Users\notebook\Desktop\cc_20140321_111135.reg
2014-03-21 11:04 - 2014-03-21 17:54 - 00001311 _____ () C:\Users\notebook\Downloads\Result.txt
2014-03-21 11:03 - 2014-03-21 11:03 - 00982016 _____ (Farbar) C:\Users\notebook\Downloads\MiniToolBox.exe
2014-03-21 11:03 - 2014-03-21 11:03 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-03-21 11:03 - 2014-03-21 11:03 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-21 11:02 - 2014-03-21 11:02 - 00000000 ____D () C:\32788R22FWJFW
2014-03-21 11:01 - 2014-03-21 11:02 - 04765152 _____ (Piriform Ltd) C:\Users\notebook\Downloads\ccsetup411.exe
2014-03-20 21:32 - 2014-03-20 21:34 - 00000000 ____D () C:\Users\notebook\Downloads\World of Warcraft - Cataclysm 4.3.4 (15595)
2014-03-20 16:19 - 2014-03-20 16:19 - 00002979 _____ () C:\Users\notebook\Desktop\HiJackThis.lnk
2014-03-20 16:18 - 2014-03-20 16:19 - 01402880 _____ () C:\Users\notebook\Downloads\HiJackThis.msi
2014-03-20 16:17 - 2014-03-20 16:17 - 00017834 _____ () C:\ComboFix.txt
2014-03-20 16:13 - 2014-03-21 17:13 - 00000374 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-03-20 16:01 - 2014-03-20 08:12 - 05190052 ____R (Swearware) C:\Users\notebook\Desktop\ComboFix.exe
2014-03-20 08:19 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-03-20 08:19 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-03-20 08:19 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-03-20 08:19 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-03-20 08:19 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-03-20 08:19 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-03-20 08:19 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-03-20 08:19 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-03-20 08:13 - 2014-03-20 16:17 - 00000000 ____D () C:\Qoobox
2014-03-20 08:11 - 2014-03-20 08:12 - 05190052 ____R (Swearware) C:\Users\notebook\Downloads\ComboFix.exe
2014-03-20 08:00 - 2014-03-20 08:02 - 00001798 _____ () C:\DelFix.txt
2014-03-19 19:29 - 2014-03-20 16:13 - 00000000 ____D () C:\Windows\erdnt
2014-03-19 14:00 - 2014-03-20 21:26 - 00000000 ____D () C:\WoW Cata 4.3.4 (Twinstar)
2014-03-19 13:58 - 2014-03-19 13:59 - 13231783 _____ () C:\Users\notebook\Downloads\WoW-Cata-4.3.4-(Twinstar).rar
2014-03-19 11:19 - 2014-03-18 04:40 - 00081625 _____ () C:\Users\notebook\Downloads\Bones.S09E17.HDTV.x264-EXCELLENCE.srt
2014-03-19 11:17 - 2014-03-19 11:17 - 00031906 _____ () C:\Users\notebook\Downloads\a9afc7737e37dd6e1c6792e514703a652607d775.zip
2014-03-19 10:40 - 2014-03-21 11:09 - 00000000 ____D () C:\Users\notebook\AppData\Local\CrashDumps
2014-03-19 10:37 - 2014-03-19 10:49 - 371297446 ____R () C:\Users\notebook\Downloads\Bones.S09E17.HDTV.x264-EXCELLENCE.mp4
2014-03-19 10:36 - 2014-03-19 10:36 - 00014684 _____ () C:\Users\notebook\Downloads\673E76E08E68AE81B104639A785ACF89BDF32E19.torrent
2014-03-18 23:06 - 2014-03-19 05:18 - 4060420096 ____R () C:\Users\notebook\Downloads\Enderova hra (2013).avi
2014-03-18 20:59 - 2014-03-18 20:59 - 00026624 _____ () C:\Windows\system32\TrueSight.sys
2014-03-18 20:18 - 2014-03-18 20:18 - 00019927 _____ () C:\Users\notebook\Downloads\[CzT]Enderova_hra_Ender_s_Game_2013_CZ_720pHD_.torrent
2014-03-18 19:13 - 2014-03-18 19:13 - 00000000 ____D () C:\Windows\ERUNT
2014-03-17 15:36 - 2014-03-19 15:05 - 00000000 ____D () C:\Users\notebook\Downloads\The Wolf of Wall Street (2013) [1080p]
2014-03-17 11:08 - 2014-03-17 12:26 - 00000000 ____D () C:\Users\notebook\AppData\Local\Adobe
2014-03-17 10:04 - 2014-03-17 10:05 - 00068205 _____ () C:\Users\notebook\Downloads\The.Mentalist.S06E14.HDTV.x264-LOL.srt
2014-03-17 09:46 - 2014-03-17 09:59 - 238292460 ____R () C:\Users\notebook\Downloads\The.Mentalist.S06E14.HDTV.x264-LOL.mp4
2014-03-17 09:43 - 2014-03-17 09:43 - 00009562 _____ () C:\Users\notebook\Downloads\D9F33784FA8AB42F23DE4B81D38B2291A5C7977C.torrent
2014-03-16 22:03 - 2014-03-17 19:10 - 00000000 ____D () C:\Users\notebook\AppData\Roaming\Audacity
2014-03-16 22:03 - 2014-03-16 22:03 - 00000965 _____ () C:\Users\Public\Desktop\Audacity.lnk
2014-03-16 22:02 - 2014-03-16 22:03 - 00000000 ____D () C:\Program Files\Audacity
2014-03-16 22:01 - 2014-03-16 22:02 - 22180353 _____ (Audacity Team ) C:\Users\notebook\Downloads\audacity-win-2.0.5.exe
2014-03-16 21:34 - 2014-03-16 21:34 - 00000000 ____D () C:\Users\notebook\AppData\Local\Skype
2014-03-16 21:33 - 2014-03-16 21:33 - 00002719 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-03-16 21:33 - 2014-03-16 21:33 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-03-16 21:30 - 2014-03-20 08:01 - 00000000 ____D () C:\AdwCleaner
2014-03-16 21:08 - 2014-03-16 21:08 - 00001067 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-16 21:08 - 2014-03-16 21:08 - 00000000 ____D () C:\Users\notebook\AppData\Roaming\Malwarebytes
2014-03-16 21:08 - 2014-03-16 21:08 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-16 21:08 - 2014-03-16 21:08 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-03-16 21:08 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-16 21:06 - 2014-03-16 21:07 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\notebook\Downloads\mbam-setup-1.75.0.1300.exe
2014-03-16 21:04 - 2014-03-16 21:04 - 00050688 _____ (Atribune.org) C:\Users\notebook\Downloads\ATF-Cleaner.exe
2014-03-16 14:28 - 2014-03-16 14:29 - 00000400 __RSH () C:\ProgramData\ntuser.pol
2014-03-16 13:40 - 2014-03-20 16:19 - 00000000 ____D () C:\Users\notebook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-03-16 13:40 - 2014-03-20 16:19 - 00000000 ____D () C:\Program Files\Trend Micro
2014-03-16 12:24 - 2014-03-16 14:26 - 00000000 ____D () C:\Users\notebook\Downloads\Windows_8.1_Pro_X64_Activated_Final
2014-03-11 13:15 - 2014-03-15 19:36 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-03-11 13:08 - 2014-03-11 13:09 - 00847816 _____ (Google Inc.) C:\Users\notebook\Downloads\ChromeSetup.exe
2014-03-11 10:42 - 2014-03-11 04:46 - 00080277 _____ () C:\Users\notebook\Downloads\Bones.S09E16.HDTV.x264-2HD.srt
2014-03-11 10:40 - 2014-03-11 10:40 - 00031265 _____ () C:\Users\notebook\Downloads\Bones.S09E16.HDTV.x264-2HD.zip
2014-03-11 09:52 - 2014-03-11 10:21 - 296659801 _____ () C:\Users\notebook\Downloads\Bones.S09E16.HDTV.x264-2HD.mp4
2014-03-10 06:20 - 2014-03-10 10:14 - 00000000 ____D () C:\Users\notebook\Downloads\The Mentalist S06E13 HDTV x264-LOL[ettv]
2014-03-09 18:53 - 2014-03-17 16:52 - 00000000 ____D () C:\Users\notebook\AppData\Local\Spotify
2014-03-09 18:53 - 2014-03-09 18:53 - 00001782 _____ () C:\Users\notebook\Desktop\Spotify.lnk
2014-03-09 18:53 - 2014-03-09 18:53 - 00001768 _____ () C:\Users\notebook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-03-09 18:51 - 2014-03-18 19:10 - 00000000 ____D () C:\Users\notebook\AppData\Roaming\Spotify
2014-03-09 18:50 - 2014-03-09 18:52 - 00127080 _____ (Spotify Ltd) C:\Users\notebook\Desktop\SpotifySetup.exe
2014-03-07 15:54 - 2014-03-07 16:11 - 140958379 ____R () C:\Users\notebook\Downloads\The.Big.Bang.Theory.S07E17.HDTV.x264-LOL.mp4
2014-03-03 17:19 - 2014-03-03 17:20 - 00000000 ____D () C:\Users\notebook\Downloads\The Script - #3 (Deluxe Version)
2014-03-03 15:52 - 2014-03-03 16:12 - 00000000 ____D () C:\Users\notebook\Downloads\The Big Bang Theory S07E16 HDTV x264-LOL[ettv]
2014-02-26 17:06 - 2014-03-07 15:49 - 00000000 ____D () C:\Users\notebook\Desktop\MSZ
2014-02-21 22:22 - 2014-02-21 22:23 - 13171952 _____ () C:\Users\notebook\Downloads\ucast-rodicu-a-pedagogu-pri-ergoterapii-deti-se-zdravotnim-postizenim.zip
2014-02-21 22:21 - 2014-02-21 22:21 - 09334818 _____ () C:\Users\notebook\Documents\Peter-wendsche-poraneni-patere-a-michy-komplexni-ostrovatelska-pece-u-para-a-kvadruplegiku.zip
2014-02-21 22:19 - 2014-02-21 22:20 - 15443626 _____ () C:\Users\notebook\Documents\MUDrJiri-Veselý-zaklady-pourzove-rehabilitace-ruky-standardnimi-metodami-.zip
2014-02-21 22:15 - 2014-02-21 22:18 - 50186942 _____ () C:\Users\notebook\Documents\Marcela-Lippertova-Grünerpva-neurorehabilitace.zip
2014-02-21 22:12 - 2014-02-21 22:14 - 42520794 _____ () C:\Users\notebook\Documents\krivosikova,Jelinkova-Ergoterapie.zip
2014-02-21 21:57 - 2014-02-21 22:02 - 84901389 _____ () C:\Users\notebook\Documents\Kolar-rehabilitace-v-klinicke-praxi.zip
2014-02-21 21:54 - 2014-02-21 21:56 - 28943608 _____ () C:\Users\notebook\Documents\Karolina-Friedlova-bazalni-stimulace-v-zakladni-osetrovatelske-peci.zip
2014-02-21 21:49 - 2014-02-21 21:52 - 54090724 _____ () C:\Users\notebook\Documents\jiri-votava--ucelena-rehabilitace-u-osob-se-zdravotnim-postizenim.zip

==================== One Month Modified Files and Folders =======

2014-03-21 17:56 - 2014-03-21 17:56 - 00011411 _____ () C:\Users\notebook\Downloads\FRST.txt
2014-03-21 17:56 - 2014-03-21 17:56 - 00000000 ____D () C:\FRST
2014-03-21 17:56 - 2013-05-10 18:58 - 00000000 ____D () C:\Users\notebook\AppData\Roaming\uTorrent
2014-03-21 17:55 - 2014-03-21 17:55 - 01145856 _____ (Farbar) C:\Users\notebook\Downloads\FRST.exe
2014-03-21 17:55 - 2014-03-21 17:55 - 00001311 _____ () C:\Users\notebook\Desktop\Result.txt
2014-03-21 17:54 - 2014-03-21 11:04 - 00001311 _____ () C:\Users\notebook\Downloads\Result.txt
2014-03-21 17:40 - 2013-07-04 12:02 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-21 17:18 - 2013-05-11 00:19 - 01146017 _____ () C:\Windows\WindowsUpdate.log
2014-03-21 17:18 - 2013-05-10 00:31 - 00778150 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-21 17:15 - 2013-05-10 00:33 - 00123928 _____ () C:\Users\notebook\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-21 17:13 - 2014-03-21 17:13 - 00000056 _____ () C:\Windows\setupact.log
2014-03-21 17:13 - 2014-03-21 17:13 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-21 17:13 - 2014-03-20 16:13 - 00000374 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-03-21 17:13 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-21 17:13 - 2009-07-14 05:33 - 03865472 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-21 17:12 - 2014-03-21 17:12 - 00000590 _____ () C:\Windows\PFRO.log
2014-03-21 14:36 - 2014-03-21 13:41 - 00000000 ____D () C:\Users\notebook\Downloads\The Hobbit The Desolation of Smaug (2013)
2014-03-21 14:11 - 2014-03-21 14:11 - 00079360 _____ () C:\Users\notebook\Downloads\pp.ppt
2014-03-21 13:41 - 2014-03-21 13:41 - 00000000 ____D () C:\Users\notebook\Downloads\The Hobbit The Desolation of Smaug (2013) [1080p]
2014-03-21 11:11 - 2014-03-21 11:11 - 00232506 _____ () C:\Users\notebook\Desktop\cc_20140321_111135.reg
2014-03-21 11:10 - 2013-05-15 16:57 - 00000000 ____D () C:\Program Files\PDFCreator
2014-03-21 11:10 - 2013-05-14 20:12 - 00000000 ____D () C:\Users\notebook\AppData\Roaming\TS3Client
2014-03-21 11:10 - 2013-05-11 17:07 - 00000000 ____D () C:\Program Files\Steam
2014-03-21 11:09 - 2014-03-19 10:40 - 00000000 ____D () C:\Users\notebook\AppData\Local\CrashDumps
2014-03-21 11:09 - 2013-05-11 10:11 - 00000000 ____D () C:\Windows\Panther
2014-03-21 11:09 - 2013-05-10 00:52 - 00000000 ____D () C:\Windows\Minidump
2014-03-21 11:03 - 2014-03-21 11:03 - 00982016 _____ (Farbar) C:\Users\notebook\Downloads\MiniToolBox.exe
2014-03-21 11:03 - 2014-03-21 11:03 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-03-21 11:03 - 2014-03-21 11:03 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-21 11:02 - 2014-03-21 11:02 - 00000000 ____D () C:\32788R22FWJFW
2014-03-21 11:02 - 2014-03-21 11:01 - 04765152 _____ (Piriform Ltd) C:\Users\notebook\Downloads\ccsetup411.exe
2014-03-21 09:42 - 2013-06-03 15:19 - 00000527 _____ () C:\Users\notebook\d3d_antilag.log
2014-03-20 21:34 - 2014-03-20 21:32 - 00000000 ____D () C:\Users\notebook\Downloads\World of Warcraft - Cataclysm 4.3.4 (15595)
2014-03-20 21:26 - 2014-03-19 14:00 - 00000000 ____D () C:\WoW Cata 4.3.4 (Twinstar)
2014-03-20 19:09 - 2013-12-25 17:22 - 00000000 ____D () C:\Users\notebook\AppData\Local\Apps\2.0
2014-03-20 16:19 - 2014-03-20 16:19 - 00002979 _____ () C:\Users\notebook\Desktop\HiJackThis.lnk
2014-03-20 16:19 - 2014-03-20 16:18 - 01402880 _____ () C:\Users\notebook\Downloads\HiJackThis.msi
2014-03-20 16:19 - 2014-03-16 13:40 - 00000000 ____D () C:\Users\notebook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-03-20 16:19 - 2014-03-16 13:40 - 00000000 ____D () C:\Program Files\Trend Micro
2014-03-20 16:17 - 2014-03-20 16:17 - 00017834 _____ () C:\ComboFix.txt
2014-03-20 16:17 - 2014-03-20 08:13 - 00000000 ____D () C:\Qoobox
2014-03-20 16:13 - 2014-03-19 19:29 - 00000000 ____D () C:\Windows\erdnt
2014-03-20 16:13 - 2009-07-14 03:04 - 00000215 _____ () C:\Windows\system.ini
2014-03-20 16:12 - 2009-07-14 03:03 - 40632320 _____ () C:\Windows\system32\config\SOFTWARE.bak
2014-03-20 16:12 - 2009-07-14 03:03 - 19660800 _____ () C:\Windows\system32\config\COMPON~1.bak
2014-03-20 16:12 - 2009-07-14 03:03 - 16777216 _____ () C:\Windows\system32\config\SYSTEM.bak
2014-03-20 16:12 - 2009-07-14 03:03 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2014-03-20 16:12 - 2009-07-14 03:03 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2014-03-20 16:12 - 2009-07-14 03:03 - 00262144 _____ () C:\Windows\system32\config\DEFAULT.bak
2014-03-20 16:10 - 2013-10-23 17:41 - 00000000 ___RD () C:\Program Files\Skype
2014-03-20 08:29 - 2009-07-14 03:37 - 00000000 __RHD () C:\Users\Default
2014-03-20 08:29 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Public
2014-03-20 08:12 - 2014-03-20 16:01 - 05190052 ____R (Swearware) C:\Users\notebook\Desktop\ComboFix.exe
2014-03-20 08:12 - 2014-03-20 08:11 - 05190052 ____R (Swearware) C:\Users\notebook\Downloads\ComboFix.exe
2014-03-20 08:02 - 2014-03-20 08:00 - 00001798 _____ () C:\DelFix.txt
2014-03-20 08:01 - 2014-03-16 21:30 - 00000000 ____D () C:\AdwCleaner
2014-03-19 15:05 - 2014-03-17 15:36 - 00000000 ____D () C:\Users\notebook\Downloads\The Wolf of Wall Street (2013) [1080p]
2014-03-19 13:59 - 2014-03-19 13:58 - 13231783 _____ () C:\Users\notebook\Downloads\WoW-Cata-4.3.4-(Twinstar).rar
2014-03-19 11:17 - 2014-03-19 11:17 - 00031906 _____ () C:\Users\notebook\Downloads\a9afc7737e37dd6e1c6792e514703a652607d775.zip
2014-03-19 10:49 - 2014-03-19 10:37 - 371297446 ____R () C:\Users\notebook\Downloads\Bones.S09E17.HDTV.x264-EXCELLENCE.mp4
2014-03-19 10:36 - 2014-03-19 10:36 - 00014684 _____ () C:\Users\notebook\Downloads\673E76E08E68AE81B104639A785ACF89BDF32E19.torrent
2014-03-19 05:18 - 2014-03-18 23:06 - 4060420096 ____R () C:\Users\notebook\Downloads\Enderova hra (2013).avi
2014-03-18 20:59 - 2014-03-18 20:59 - 00026624 _____ () C:\Windows\system32\TrueSight.sys
2014-03-18 20:18 - 2014-03-18 20:18 - 00019927 _____ () C:\Users\notebook\Downloads\[CzT]Enderova_hra_Ender_s_Game_2013_CZ_720pHD_.torrent
2014-03-18 19:13 - 2014-03-18 19:13 - 00000000 ____D () C:\Windows\ERUNT
2014-03-18 19:10 - 2014-03-09 18:51 - 00000000 ____D () C:\Users\notebook\AppData\Roaming\Spotify
2014-03-18 18:27 - 2009-07-14 05:34 - 00014528 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-18 18:27 - 2009-07-14 05:34 - 00014528 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-18 17:31 - 2013-10-23 17:41 - 00000000 ____D () C:\Users\notebook\AppData\Roaming\Skype
2014-03-18 04:40 - 2014-03-19 11:19 - 00081625 _____ () C:\Users\notebook\Downloads\Bones.S09E17.HDTV.x264-EXCELLENCE.srt
2014-03-17 19:10 - 2014-03-16 22:03 - 00000000 ____D () C:\Users\notebook\AppData\Roaming\Audacity
2014-03-17 16:52 - 2014-03-09 18:53 - 00000000 ____D () C:\Users\notebook\AppData\Local\Spotify
2014-03-17 12:26 - 2014-03-17 11:08 - 00000000 ____D () C:\Users\notebook\AppData\Local\Adobe
2014-03-17 11:08 - 2013-09-08 16:45 - 00000000 ____D () C:\Users\notebook\AppData\Local\Akamai
2014-03-17 10:05 - 2014-03-17 10:04 - 00068205 _____ () C:\Users\notebook\Downloads\The.Mentalist.S06E14.HDTV.x264-LOL.srt
2014-03-17 09:59 - 2014-03-17 09:46 - 238292460 ____R () C:\Users\notebook\Downloads\The.Mentalist.S06E14.HDTV.x264-LOL.mp4
2014-03-17 09:43 - 2014-03-17 09:43 - 00009562 _____ () C:\Users\notebook\Downloads\D9F33784FA8AB42F23DE4B81D38B2291A5C7977C.torrent
2014-03-16 22:03 - 2014-03-16 22:03 - 00000965 _____ () C:\Users\Public\Desktop\Audacity.lnk
2014-03-16 22:03 - 2014-03-16 22:02 - 00000000 ____D () C:\Program Files\Audacity
2014-03-16 22:02 - 2014-03-16 22:01 - 22180353 _____ (Audacity Team ) C:\Users\notebook\Downloads\audacity-win-2.0.5.exe
2014-03-16 21:34 - 2014-03-16 21:34 - 00000000 ____D () C:\Users\notebook\AppData\Local\Skype
2014-03-16 21:34 - 2013-10-23 17:40 - 00000000 ____D () C:\ProgramData\Skype
2014-03-16 21:33 - 2014-03-16 21:33 - 00002719 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-03-16 21:33 - 2014-03-16 21:33 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-03-16 21:08 - 2014-03-16 21:08 - 00001067 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-16 21:08 - 2014-03-16 21:08 - 00000000 ____D () C:\Users\notebook\AppData\Roaming\Malwarebytes
2014-03-16 21:08 - 2014-03-16 21:08 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-16 21:08 - 2014-03-16 21:08 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-03-16 21:07 - 2014-03-16 21:06 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\notebook\Downloads\mbam-setup-1.75.0.1300.exe
2014-03-16 21:04 - 2014-03-16 21:04 - 00050688 _____ (Atribune.org) C:\Users\notebook\Downloads\ATF-Cleaner.exe
2014-03-16 14:29 - 2014-03-16 14:28 - 00000400 __RSH () C:\ProgramData\ntuser.pol
2014-03-16 14:28 - 2009-07-14 03:37 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-03-16 14:26 - 2014-03-16 12:24 - 00000000 ____D () C:\Users\notebook\Downloads\Windows_8.1_Pro_X64_Activated_Final
2014-03-16 13:41 - 2013-05-10 00:28 - 00000000 ____D () C:\Users\notebook\AppData\Local\VirtualStore
2014-03-16 13:24 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-03-15 19:36 - 2014-03-11 13:15 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-03-12 18:40 - 2013-05-10 00:58 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-03-12 18:40 - 2013-05-10 00:58 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-03-11 13:09 - 2014-03-11 13:08 - 00847816 _____ (Google Inc.) C:\Users\notebook\Downloads\ChromeSetup.exe
2014-03-11 10:40 - 2014-03-11 10:40 - 00031265 _____ () C:\Users\notebook\Downloads\Bones.S09E16.HDTV.x264-2HD.zip
2014-03-11 10:21 - 2014-03-11 09:52 - 296659801 _____ () C:\Users\notebook\Downloads\Bones.S09E16.HDTV.x264-2HD.mp4
2014-03-11 04:46 - 2014-03-11 10:42 - 00080277 _____ () C:\Users\notebook\Downloads\Bones.S09E16.HDTV.x264-2HD.srt
2014-03-10 10:14 - 2014-03-10 06:20 - 00000000 ____D () C:\Users\notebook\Downloads\The Mentalist S06E13 HDTV x264-LOL[ettv]
2014-03-09 20:56 - 2013-05-11 09:09 - 00000000 ____D () C:\Games
2014-03-09 20:55 - 2014-02-10 19:52 - 00000000 ____D () C:\Program Files\Gazillion Entertainment
2014-03-09 18:53 - 2014-03-09 18:53 - 00001782 _____ () C:\Users\notebook\Desktop\Spotify.lnk
2014-03-09 18:53 - 2014-03-09 18:53 - 00001768 _____ () C:\Users\notebook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-03-09 18:52 - 2014-03-09 18:50 - 00127080 _____ (Spotify Ltd) C:\Users\notebook\Desktop\SpotifySetup.exe
2014-03-08 20:30 - 2013-05-11 08:03 - 00000000 ____D () C:\WoW WotLK
2014-03-07 16:11 - 2014-03-07 15:54 - 140958379 ____R () C:\Users\notebook\Downloads\The.Big.Bang.Theory.S07E17.HDTV.x264-LOL.mp4
2014-03-07 15:49 - 2014-02-26 17:06 - 00000000 ____D () C:\Users\notebook\Desktop\MSZ
2014-03-03 17:20 - 2014-03-03 17:19 - 00000000 ____D () C:\Users\notebook\Downloads\The Script - #3 (Deluxe Version)
2014-03-03 16:12 - 2014-03-03 15:52 - 00000000 ____D () C:\Users\notebook\Downloads\The Big Bang Theory S07E16 HDTV x264-LOL[ettv]
2014-02-26 17:12 - 2013-11-09 10:12 - 00000000 ____D () C:\Users\notebook\Desktop\Programy
2014-02-26 17:09 - 2013-11-16 11:37 - 00000000 ____D () C:\Users\notebook\Desktop\Photoshop
2014-02-21 22:23 - 2014-02-21 22:22 - 13171952 _____ () C:\Users\notebook\Downloads\ucast-rodicu-a-pedagogu-pri-ergoterapii-deti-se-zdravotnim-postizenim.zip
2014-02-21 22:21 - 2014-02-21 22:21 - 09334818 _____ () C:\Users\notebook\Documents\Peter-wendsche-poraneni-patere-a-michy-komplexni-ostrovatelska-pece-u-para-a-kvadruplegiku.zip
2014-02-21 22:20 - 2014-02-21 22:19 - 15443626 _____ () C:\Users\notebook\Documents\MUDrJiri-Veselý-zaklady-pourzove-rehabilitace-ruky-standardnimi-metodami-.zip
2014-02-21 22:18 - 2014-02-21 22:15 - 50186942 _____ () C:\Users\notebook\Documents\Marcela-Lippertova-Grünerpva-neurorehabilitace.zip
2014-02-21 22:14 - 2014-02-21 22:12 - 42520794 _____ () C:\Users\notebook\Documents\krivosikova,Jelinkova-Ergoterapie.zip
2014-02-21 22:02 - 2014-02-21 21:57 - 84901389 _____ () C:\Users\notebook\Documents\Kolar-rehabilitace-v-klinicke-praxi.zip
2014-02-21 21:56 - 2014-02-21 21:54 - 28943608 _____ () C:\Users\notebook\Documents\Karolina-Friedlova-bazalni-stimulace-v-zakladni-osetrovatelske-peci.zip
2014-02-21 21:52 - 2014-02-21 21:49 - 54090724 _____ () C:\Users\notebook\Documents\jiri-votava--ucelena-rehabilitace-u-osob-se-zdravotnim-postizenim.zip

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-20 23:26

==================== End Of Log ============================

Reklama
maremarekk
Level 1.5
Level 1.5
Příspěvky: 144
Registrován: srpen 08
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o překontrolování

Příspěvekod maremarekk » 21 bře 2014 17:58

MiniToolBox by Farbar Version: 23-01-2014
Ran by notebook (administrator) on 21-03-2014 at 17:54:50
Running from "C:\Users\notebook\Downloads"
Microsoft Windows 7 Home Premium (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= Devices: ================================

Name: SM Bus Controller
Description: SM Bus Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

========================= Minidump Files ==================================

No minidump file found


**** End of log ****

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43113
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o překontrolování

Příspěvekod jaro3 » 21 bře 2014 19:44

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

AlternateDataStreams: C:\ProgramData\TEMP:810B9F0D
S3 catchme; \??\C:\Users\notebook\AppData\Local\Temp\catchme.sys [X]
C:\32788R22FWJFW
C:\ComboFix.txt
C:\Windows\system32\Drivers\etc\hosts.ics


(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

Name: SM Bus Controller
Description: SM Bus Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


Zkus doinstalovat ty ovladače.

Source: PublicWiFiService.exe
zkus postupovat podle tohohle:
http://www.techsupportforum.com/forums/ ... 01994.html
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

maremarekk
Level 1.5
Level 1.5
Příspěvky: 144
Registrován: srpen 08
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o překontrolování

Příspěvekod maremarekk » 21 bře 2014 21:16

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 13-03-2014 01
Ran by notebook at 2014-03-21 21:11:00 Run:1
Running from C:\Users\notebook\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
AlternateDataStreams: C:\ProgramData\TEMP:810B9F0D
S3 catchme; \??\C:\Users\notebook\AppData\Local\Temp\catchme.sys [X]
C:\32788R22FWJFW
C:\ComboFix.txt
C:\Windows\system32\Drivers\etc\hosts.ics
*****************

C:\ProgramData\TEMP => ":810B9F0D" ADS removed successfully.
catchme => Service deleted successfully.
C:\32788R22FWJFW => Moved successfully.
C:\ComboFix.txt => Moved successfully.
C:\Windows\system32\Drivers\etc\hosts.ics => Moved successfully.

==== End of Fixlog ====


Odinstaloval jsem MyPublicWifi, tak uvidím jestli to zabere.

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43113
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o překontrolování

Příspěvekod jaro3 » 22 bře 2014 09:08

dej pak vědět.

kdyby to nezabralo:
Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt

Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

maremarekk
Level 1.5
Level 1.5
Příspěvky: 144
Registrován: srpen 08
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o překontrolování

Příspěvekod maremarekk » 22 bře 2014 12:42

Zatím jedu asi 8 hodin bez restartu, takže to vypadá, že už funguje :thumbup: Díky za pomoc. Kdyby se něco změnilo tak napíšu.

Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10645
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž
Stav:
Offline

Re: Prosím o překontrolování

Příspěvekod Orcus » 23 bře 2014 08:00

OK.
Láska hřeje, ale uhlí je uhlí. :fire:



Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 7 hostů