Prosím o kontrolu

nermitus · Příspěvekod **nermitus** » 04 pro 2014 23:02

Posledný týždeň sa mi dlhšie načitáva plocha po zapnutí pc.

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:58:38, on 4. 12. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)

FIREFOX: 33.1 (x86 sk)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Users\Marek\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: RzKLService - Razer Inc. - C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8496 bytes

Reklama

Příspěvekod **jaro3** » 05 pro 2014 10:31

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)
http://www.bleepingcomputer.com/download/adwcleaner/

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na b] Kopírovat do schránky [/b]a a vlož sem celý log.

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.

nermitus · Příspěvekod **nermitus** » 05 pro 2014 14:59

# AdwCleaner v4.104 - Report created 05/12/2014 at 14:38:19
# Updated 05/12/2014 by Xplode
# Database : 2014-12-03.1 [Live]
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Marek - MAREK-PC
# Running from : C:\Users\Marek\Downloads\adwcleaner_4.104.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\Bitberry
Key Found : HKCU\Software\Bitberry Software
Key Found : [x64] HKCU\Software\Bitberry
Key Found : [x64] HKCU\Software\Bitberry Software

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17420

-\\ Mozilla Firefox v33.1 (x86 sk)

-\\ Google Chrome v39.0.2171.71

-\\ Opera v26.0.1656.32

[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Found [Extension] : aaipilfmheplbcghignccoiiebekkdhe
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Found [Extension] : elchiiiejkobdbblfejjkbphbddgmljf
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Found [Extension] : ffhfoagmjcnkolneahbpagjcjjaeofbg
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Found [Extension] : hjghiofiijcepdnocbgefbdlbckjfheg
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Found [Extension] : iklgpchfbohgmghgfagediakopecfmbm
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Found [Extension] : kfgaibfbmkjgmimhbbaikfnpkkjkpoan
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Found [Extension] : lmnbobhffedhdhfpcjkjphcfpeeiocdn
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Found [Extension] : hoidflomjnnnbiemmkjdjkkialmhbago
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Found [Extension] : ekpibplnnkfdcafdpoekhoffegcajene

*************************

AdwCleaner[R0].txt - [802 octets] - [20/09/2014 13:07:24]
AdwCleaner[R1].txt - [918 octets] - [30/09/2014 12:19:25]
AdwCleaner[R2].txt - [1065 octets] - [11/10/2014 15:03:50]
AdwCleaner[R3].txt - [2184 octets] - [05/12/2014 14:38:19]
AdwCleaner[S0].txt - [862 octets] - [20/09/2014 13:09:14]
AdwCleaner[S1].txt - [1129 octets] - [11/10/2014 15:04:36]

########## EOF - C:\AdwCleaner\AdwCleaner[R3].txt - [2363 octets] ##########

nermitus · Příspěvekod **nermitus** » 05 pro 2014 15:01

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 5. 12. 2014
Scan Time: 14:40:52
Logfile: MWB.txt
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2014.12.05.05
Rootkit Database: v2014.12.03.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Marek

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 323555
Time Elapsed: 14 min, 37 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

Příspěvekod **jaro3** » 05 pro 2014 18:57

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

nermitus · Příspěvekod **nermitus** » 05 pro 2014 19:20

# AdwCleaner v4.104 - Report created 05/12/2014 at 19:06:06
# Updated 05/12/2014 by Xplode
# Database : 2014-12-03.1 [Live]
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Marek - MAREK-PC
# Running from : C:\Users\Marek\Downloads\adwcleaner_4.104.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKCU\Software\Bitberry Software
Key Deleted : HKCU\Software\Bitberry

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17420

-\\ Mozilla Firefox v33.1 (x86 sk)

-\\ Google Chrome v39.0.2171.71

-\\ Opera v26.0.1656.32

[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : aaipilfmheplbcghignccoiiebekkdhe
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : elchiiiejkobdbblfejjkbphbddgmljf
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ffhfoagmjcnkolneahbpagjcjjaeofbg
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : hjghiofiijcepdnocbgefbdlbckjfheg
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : iklgpchfbohgmghgfagediakopecfmbm
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : kfgaibfbmkjgmimhbbaikfnpkkjkpoan
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : lmnbobhffedhdhfpcjkjphcfpeeiocdn
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : hoidflomjnnnbiemmkjdjkkialmhbago
[C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ekpibplnnkfdcafdpoekhoffegcajene

*************************

AdwCleaner[R0].txt - [802 octets] - [20/09/2014 13:07:24]
AdwCleaner[R1].txt - [918 octets] - [30/09/2014 12:19:25]
AdwCleaner[R2].txt - [1065 octets] - [11/10/2014 15:03:50]
AdwCleaner[R3].txt - [2451 octets] - [05/12/2014 14:38:19]
AdwCleaner[R4].txt - [2511 octets] - [05/12/2014 19:04:24]
AdwCleaner[S0].txt - [862 octets] - [20/09/2014 13:09:14]
AdwCleaner[S1].txt - [1129 octets] - [11/10/2014 15:04:36]
AdwCleaner[S2].txt - [2361 octets] - [05/12/2014 19:06:06]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [2421 octets] ##########

nermitus · Příspěvekod **nermitus** » 05 pro 2014 19:20

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.0 (11.29.2014:1)
OS: Windows 7 Ultimate x64
Ran by Marek on pi 05. 12. 2014 at 19:11:34,12
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

~~~ Files

~~~ Folders

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on pi 05. 12. 2014 at 19:14:08,71
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

nermitus · Příspěvekod **nermitus** » 05 pro 2014 19:20

RogueKiller V10.0.8.0 (x64) [Nov 20 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Marek [Administrator]
Mode : Scan -- Date : 12/05/2014 19:17:41

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 4 ¤¤¤
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Found
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Found
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Found
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Found

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST500DM002-1BD142 ATA Device +++++
--- User ---
[MBR] b7cfbae41ab0322ba25a21ee4ec7991b
[BSP] 7f068d5fd8d181efd202cd38f332f64d : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 476929 MB
User = LL1 ... OK
User = LL2 ... OK

============================================
RKreport_DEL_12032014_171150.log - RKreport_SCN_12032014_171123.log

nermitus · Příspěvekod **nermitus** » 05 pro 2014 19:21

----------------------------------------------------------------------------
CrystalDiskInfo 6.2.1 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate SP1 [6.1 Build 7601] (x64)
Date : 2014/12/05 19:19:26

-- Controller Map ----------------------------------------------------------
+ Intel(R) 6 Series/C200 Series Chipset Family 4 port Serial ATA Storage Controller - 1C00 [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Intel(R) 6 Series/C200 Series Chipset Family 2 port Serial ATA Storage Controller - 1C08 [ATA]
+ ATA Channel 0 (0)
- ST500DM002-1BD142 ATA Device
- ATA Channel 1 (1)

-- Disk List ---------------------------------------------------------------
(1) ST500DM002-1BD142 : 500,1 GB [0/0/0, pd1] - st

----------------------------------------------------------------------------
(1) ST500DM002-1BD142
----------------------------------------------------------------------------
Model : ST500DM002-1BD142
Firmware : KC45
Serial Number : Z3T498FZ
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 9373 hours
Power On Count : 1998 count
Temperature : 38 C (100 F)
Health Status : Good
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : D0D0h [ON]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 103 _99 __6 000000042A98 Read Error Rate
03 100 _97 __0 000000000000 Spin-Up Time
04 _99 _99 _20 0000000007EA Start/Stop Count
05 100 100 _36 000000000000 Reallocated Sectors Count
07 _87 _60 _30 0000260BB2FE Seek Error Rate
09 _90 _90 __0 00000000249D Power-On Hours
0A 100 100 _97 000000000000 Spin Retry Count
0C _99 _99 _20 0000000007CE Power Cycle Count
B7 100 100 __0 000000000000 Vendor Specific
B8 100 100 _99 000000000000 End-to-End Error
BB 100 100 __0 000000000000 Reported Uncorrectable Errors
BC 100 100 __0 000000000000 Command Timeout
BD 100 100 __0 000000000000 High Fly Writes
BE _62 _49 _45 000026240026 Airflow Temperature
C2 _38 _51 __0 000E00000026 Temperature
C3 _53 _33 __0 000000042A98 Hardware ECC recovered
C5 100 100 __0 000000000000 Current Pending Sector Count
C6 100 100 __0 000000000000 Uncorrectable Sector Count
C7 200 200 __0 000000000000 UltraDMA CRC Error Count
F0 100 253 __0 326600002495 Head Flying Hours
F1 100 253 __0 0000DBF31F79 Total Host Writes
F2 100 253 __0 00002B8FC45A Total Host Reads

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 5A33 5434 3938 465A
020: 0000 8000 0004 4B43 3435 2020 2020 5354 3530 3044
030: 4D30 3032 2D31 4244 3134 3220 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 850E 0004 0048 0040
080: 01F0 0029 346B 7F01 4163 3469 BE01 4163 207F 002B
090: 002B 0000 FFFE 0000 D0D0 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 6003 0000 5000 C500
110: 4E45 ECB1 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6030
130: 3A38 6030 3A38 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 004F 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 3F00 99E0
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 303F 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1020 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 DFA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 67 63 98 2A 04 00 00 00 00 03 03
010: 00 64 61 00 00 00 00 00 00 00 04 32 00 63 63 EA
020: 07 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 57 3C FE B2 0B 26 00 00 00 09 32
040: 00 5A 5A 9D 24 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 63 63 CE 07 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 64 64 00
080: 00 00 00 00 00 00 BC 32 00 64 64 00 00 00 00 00
090: 00 00 BD 3A 00 64 64 00 00 00 00 00 00 00 BE 22
0A0: 00 3E 31 26 00 24 26 00 00 00 C2 22 00 26 33 26
0B0: 00 00 00 0E 00 00 C3 1A 00 35 21 98 2A 04 00 00
0C0: 00 00 C5 12 00 64 64 00 00 00 00 00 00 00 C6 10
0D0: 00 64 64 00 00 00 00 00 00 00 C7 3E 00 C8 C8 00
0E0: 00 00 00 00 00 00 F0 00 00 64 FD 95 24 00 00 66
0F0: 32 1E F1 00 00 64 FD 79 1F F3 DB 00 00 00 F2 00
100: 00 64 FD 5A C4 8F 2B 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 61 02 00 7B
170: 03 00 01 00 01 58 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 98 00 00 00 02 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 24 1A 08 D4 B0 1E 00 00
1B0: 00 00 00 00 01 00 AD 0B 79 1F F3 DB 0A 02 00 00
1C0: 5A C4 8F 2B B3 02 00 00 00 00 00 00 26 15 00 00
1D0: 00 00 00 00 00 00 00 00 3A 0E 00 00 14 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 11
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 D9

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 24 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 C2 00 00 00 00 00
0B0: 00 00 00 00 00 00 C3 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 F0 00 00 00 00 00 00 00 00 00
0F0: 00 00 F1 00 00 00 00 00 00 00 00 00 00 00 F2 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60

nermitus · Příspěvekod **nermitus** » 05 pro 2014 19:30

Po kontrole pomocou týchto programov mi začal MWB vypisovať non malware prikladám log

Malwarebytes Anti-Malware
http://www.malwarebytes.org

Protection, 5. 12. 2014 9:30:58, SYSTEM, MAREK-PC, Protection, Malware Protection, Starting,
Protection, 5. 12. 2014 9:30:58, SYSTEM, MAREK-PC, Protection, Malware Protection, Started,
Update, 5. 12. 2014 9:31:34, SYSTEM, MAREK-PC, Manual, Malware Database, 2014.12.4.11, 2014.12.5.4,
Protection, 5. 12. 2014 9:31:34, SYSTEM, MAREK-PC, Protection, Refresh, Starting,
Protection, 5. 12. 2014 9:31:38, SYSTEM, MAREK-PC, Protection, Refresh, Success,
Protection, 5. 12. 2014 14:33:24, SYSTEM, MAREK-PC, Protection, Malware Protection, Starting,
Protection, 5. 12. 2014 14:33:24, SYSTEM, MAREK-PC, Protection, Malware Protection, Started,
Protection, 5. 12. 2014 14:34:44, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Starting,
Protection, 5. 12. 2014 14:35:21, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Started,
Update, 5. 12. 2014 14:40:52, SYSTEM, MAREK-PC, Manual, Malware Database, 2014.12.5.4, 2014.12.5.5,
Protection, 5. 12. 2014 14:40:52, SYSTEM, MAREK-PC, Protection, Refresh, Starting,
Protection, 5. 12. 2014 14:40:52, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Stopping,
Protection, 5. 12. 2014 14:40:52, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Stopped,
Protection, 5. 12. 2014 14:40:56, SYSTEM, MAREK-PC, Protection, Refresh, Success,
Protection, 5. 12. 2014 14:40:56, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Starting,
Protection, 5. 12. 2014 14:40:56, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Started,
Scan, 5. 12. 2014 14:55:32, SYSTEM, MAREK-PC, Manual, Start:5. 12. 2014 14:40:52, Duration:14 min 37 sec, Threat Scan, Completed, 0 Malware Detections, 0 Non-Malware Detections,
Update, 5. 12. 2014 15:29:16, SYSTEM, MAREK-PC, Scheduler, Malware Database, 2014.12.5.5, 2014.12.5.6,
Protection, 5. 12. 2014 15:29:16, SYSTEM, MAREK-PC, Protection, Refresh, Starting,
Protection, 5. 12. 2014 15:29:16, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Stopping,
Protection, 5. 12. 2014 15:29:17, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Stopped,
Protection, 5. 12. 2014 15:29:33, SYSTEM, MAREK-PC, Protection, Refresh, Success,
Protection, 5. 12. 2014 15:29:33, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Starting,
Protection, 5. 12. 2014 15:29:33, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Started,
Update, 5. 12. 2014 17:35:19, SYSTEM, MAREK-PC, Scheduler, Malware Database, 2014.12.5.6, 2014.12.5.7,
Protection, 5. 12. 2014 17:35:19, SYSTEM, MAREK-PC, Protection, Refresh, Starting,
Protection, 5. 12. 2014 17:35:19, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Stopping,
Protection, 5. 12. 2014 17:35:19, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Stopped,
Protection, 5. 12. 2014 17:35:36, SYSTEM, MAREK-PC, Protection, Refresh, Success,
Protection, 5. 12. 2014 17:35:36, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Starting,
Protection, 5. 12. 2014 17:35:37, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Started,
Update, 5. 12. 2014 18:37:05, SYSTEM, MAREK-PC, Scheduler, Malware Database, 2014.12.5.7, 2014.12.5.8,
Protection, 5. 12. 2014 18:37:05, SYSTEM, MAREK-PC, Protection, Refresh, Starting,
Protection, 5. 12. 2014 18:37:05, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Stopping,
Protection, 5. 12. 2014 18:37:05, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Stopped,
Protection, 5. 12. 2014 18:37:20, SYSTEM, MAREK-PC, Protection, Refresh, Success,
Protection, 5. 12. 2014 18:37:20, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Starting,
Protection, 5. 12. 2014 18:37:20, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Started,
Protection, 5. 12. 2014 19:09:07, SYSTEM, MAREK-PC, Protection, Malware Protection, Starting,
Protection, 5. 12. 2014 19:09:07, SYSTEM, MAREK-PC, Protection, Malware Protection, Started,
Protection, 5. 12. 2014 19:11:37, SYSTEM, MAREK-PC, Protection, Malware Protection, Stopping,
Protection, 5. 12. 2014 19:11:37, SYSTEM, MAREK-PC, Protection, Malware Protection, Stopped,
Protection, 5. 12. 2014 19:23:20, SYSTEM, MAREK-PC, Protection, Malware Protection, Starting,
Protection, 5. 12. 2014 19:23:20, SYSTEM, MAREK-PC, Protection, Malware Protection, Started,
Protection, 5. 12. 2014 19:23:23, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Starting,
Detection, 5. 12. 2014 19:23:31, Marek, MAREK-PC, Protection, Malware Protection, File, PUP.Optional.Linkey.A, C:\Program Files (x86)\Settings Manager\smdmf\tbicon.exe, Quarantine Failed, 5, Access is denied. , [7dbfe37c4537ac8ac0a6d3d06f92e917]
Protection, 5. 12. 2014 19:23:41, SYSTEM, MAREK-PC, Protection, Malicious Website Protection, Started,
Detection, 5. 12. 2014 19:23:47, SYSTEM, MAREK-PC, Protection, Malware Protection, File, PUP.Optional.Linkey.A, C:\Program Files (x86)\Settings Manager\smdmf\tbicon.exe, Quarantine Failed, 5, Access is denied. , [7dbfe37c4537ac8ac0a6d3d06f92e917]
Detection, 5. 12. 2014 19:24:16, SYSTEM, MAREK-PC, Protection, Malware Protection, File, PUP.Optional.Linkey.A, C:\Users\Marek\AppData\Local\Linkey\IEExtension\iedll.dll, Quarantine, [6bd12b34e993ee4872415c2bdc253ec2]
Detection, 5. 12. 2014 19:24:17, SYSTEM, MAREK-PC, Protection, Malware Protection, File, PUP.Optional.Linkey.A, C:\Users\Marek\AppData\Local\Linkey\IEExtension\iedll64.dll, Quarantine, [be7e92cd74082115c7ec256238c9718f]
Detection, 5. 12. 2014 19:25:16, SYSTEM, MAREK-PC, Protection, Malware Protection, File, PUP.Optional.Linkey.A, c:\users\marek\appdata\local\linkey\ieextension\iedll64.dll, Quarantine Failed, 2, The system cannot find the file specified. , [be7e92cd74082115c7ec256238c9718f]
Detection, 5. 12. 2014 19:26:16, SYSTEM, MAREK-PC, Protection, Malware Protection, File, PUP.Optional.Linkey.A, c:\users\marek\appdata\local\linkey\ieextension\iedll.dll, Quarantine Failed, 2, The system cannot find the file specified. , [6bd12b34e993ee4872415c2bdc253ec2]
Detection, 5. 12. 2014 19:27:02, SYSTEM, MAREK-PC, Protection, Malware Protection, File, PUP.Optional.Linkey.A, c:\users\marek\appdata\local\linkey\ieextension\iedll64.dll, Quarantine Failed, 2, The system cannot find the file specified. , [be7e92cd74082115c7ec256238c9718f]
Detection, 5. 12. 2014 19:27:16, SYSTEM, MAREK-PC, Protection, Malware Protection, File, PUP.Optional.Linkey.A, c:\users\marek\appdata\local\linkey\ieextension\iedll64.dll, Quarantine Failed, 2, The system cannot find the file specified. , [be7e92cd74082115c7ec256238c9718f]
Detection, 5. 12. 2014 19:28:16, SYSTEM, MAREK-PC, Protection, Malware Protection, File, PUP.Optional.Linkey.A, c:\users\marek\appdata\local\linkey\ieextension\iedll.dll, Quarantine Failed, 2, The system cannot find the file specified. , [6bd12b34e993ee4872415c2bdc253ec2]

(end)

Vyskočila mi správa o ukončení skenovania

► Zobrazit spoiler

Příspěvekod **jaro3** » 06 pro 2014 11:11

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:

- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)

- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Vypni antivir
Stáhni
Zoek.exe

a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.

Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .

Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\Program Files (x86)\Settings Manager\smdmf\tbicon.exe
c:\users\marek\appdata\local\linkey\ieextension\iedll.dll
c:\users\marek\appdata\local\linkey\ieextension\iedll64.dll

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

nermitus · Příspěvekod **nermitus** » 06 pro 2014 12:14

RogueKiller V10.0.8.0 (x64) [Nov 20 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Marek [Administrator]
Mode : Delete -- Date : 12/06/2014 11:29:15

¤¤¤ Processes : 2 ¤¤¤
[PUP] (SVC) F06DEFF2-5B9C-490D-910F-35D3A9119622 -- \??\C:\Program Files (x86)\Settings Manager\smdmf\x64\smdmfmgrc2.cfg[7] -> ERROR [41c]
[PUP] (SVC) SmdmFService -- C:\Program Files (x86)\Settings Manager\smdmf\SmdmFService.exe[7] -> ERROR [41c]

¤¤¤ Registry : 18 ¤¤¤
[PUP] (X64) HKEY_CLASSES_ROOT\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} -> Deleted
[PUP] (X64) HKEY_CLASSES_ROOT\CLSID\{54739D49-AC03-4C57-9264-C5195596B3A1} -> Deleted
[PUP] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} -> Deleted
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} -> Deleted
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\F06DEFF2-5B9C-490D-910F-35D3A9119622 (\??\C:\Program Files (x86)\Settings Manager\smdmf\x64\smdmfmgrc2.cfg) -> ERROR [5]
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SmdmFService (C:\Program Files (x86)\Settings Manager\smdmf\SmdmFService.exe) -> ERROR [5]
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\F06DEFF2-5B9C-490D-910F-35D3A9119622 (\??\C:\Program Files (x86)\Settings Manager\smdmf\x64\smdmfmgrc2.cfg) -> ERROR [5]
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SmdmFService (C:\Program Files (x86)\Settings Manager\smdmf\SmdmFService.exe) -> ERROR [5]
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\F06DEFF2-5B9C-490D-910F-35D3A9119622 -> Deleted
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SmdmFService -> Deleted
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3296281421-397883660-745250294-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.default-search.net?sid=503&a ... 52&src=hmp -> Replaced (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3296281421-397883660-745250294-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.default-search.net?sid=503&a ... 52&src=hmp -> Replaced (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Replaced (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Replaced (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Replaced (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Replaced (0)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows | AppInit_DLLs : [x] -> Replaced ()
[Suspicious.Path] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows | AppInit_DLLs : [x] -> Replaced ()

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 2 ¤¤¤
[PUP][FIREFX:Addon] kbhmwv7t.default : Linkey for Firefox [extension@linkeyproject.com] -> Deleted
[PUM.HomePage][FIREFX:Config] kbhmwv7t.default : user_pref("browser.startup.homepage", "http://www.default-search.net?sid=503&aid=100&itype=n&ver=13986&tm=552&src=hmp"); -> Replaced (about:home)

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST500DM002-1BD142 ATA Device +++++
--- User ---
[MBR] b7cfbae41ab0322ba25a21ee4ec7991b
[BSP] 7f068d5fd8d181efd202cd38f332f64d : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 476929 MB
User = LL1 ... OK
User = LL2 ... OK

============================================
RKreport_DEL_12032014_171150.log - RKreport_SCN_12032014_171123.log - RKreport_SCN_12052014_191741.log - RKreport_SCN_12062014_112524.log
RKreport_DEL_12062014_112741.log - RKreport_DEL_12062014_112749.log

Zoek.exe v5.0.0.0 Updated 03-December-2014
Tool run by Marek on so 06. 12. 2014 at 11:34:25,62.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Marek\Desktop\zoek.exe [Scan all users] [Quick Scan] [Auto Clean]

==== System Restore Info ======================

6. 12. 2014 11:35:50 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\AVG deleted successfully
C:\PROGRA~2\GMT-MAX.ORG deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\Program Files\ATI Technologies deleted successfully
C:\PROGRA~3\Origin deleted successfully
C:\PROGRA~3\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} deleted successfully
C:\Users\Marek\AppData\Roaming\DuplicateFilterLog deleted successfully
C:\Users\Marek\AppData\Roaming\Origin deleted successfully
C:\Users\Marek\AppData\Local\Unity deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3296281421-397883660-745250294-1001\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} deleted successfully
HKEY_USERS\S-1-5-21-3296281421-397883660-745250294-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} deleted successfully
HKEY_USERS\S-1-5-21-3296281421-397883660-745250294-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{54739D49-AC03-4C57-9264-C5195596B3A1} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{54739D49-AC03-4C57-9264-C5195596B3A1} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SmdmFService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\SmdmFService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\F06DEFF2-5B9C-490D-910F-35D3A9119622 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\F06DEFF2-5B9C-490D-910F-35D3A9119622 deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\kbhmwv7t.default

user.js not found
---- Lines search.net removed from prefs.js ----
user_pref("browser.search.defaultenginename", "default-search.net");
user_pref("browser.search.order.1", "default-search.net");
user_pref("browser.search.selectedEngine", "default-search.net");
user_pref("keyword.URL", "http://www.default-search.net/search?sid=503&aid=100&itype=n&ver=13986&tm=552&src=ds&p=");
---- FireFox user.js and prefs.js backups ----

prefs_201406.12._1145_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~3\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} not found
C:\Users\Marek\AppData\Roaming\FirefoxToolbar deleted
C:\PROGRA~3\smdmf deleted
C:\PROGRA~3\ProductData deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Marek\AppData\Local\Linkey deleted
C:\Windows\tasks\At1.job deleted
C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\kbhmwv7t.default\searchplugins\default-search.xml deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Marek\AppData\Local\Temp ====
2014-12-05 18:14:49 CAAAC014C5C56A69F710B5F1B836DE22 1732032 ----a-w- C:\Users\Marek\AppData\Local\Temp\dllnt_dump.dll
2014-12-05 18:10:44 E0DC8C6BBC787B972A9A468648DBFD85 1008128 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\libiconv2.dll
2014-12-05 18:10:44 D202BAA425176287017FFE1FB5D1B77C 103424 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\libintl3.dll
2014-12-05 18:10:44 57CAC848FA14AE38F14F9441F8933282 140288 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\pcre3.dll
2014-12-05 18:10:44 547C43567AB8C08EB30F6C6BACB479A3 79360 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\regex2.dll
2014-12-05 18:10:44 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\erunt\ERUNT.EXE
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-11-24 17:36:13 A042349B7208BF8BED858B1E9B48B06D 98216 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-11-23 13:15:26 D92FB5770CBDE049A4732B76A77F6864 103374192 ----a-w- C:\Windows\Sysnative\MRT.exe
====== C:\Windows\Sysnative\drivers =====
2014-12-03 16:07:38 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\Sysnative\drivers\TrueSight.sys
2014-11-13 14:21:12 41774FF331F609EF442B7398EE6202B1 155064 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-11-11 12:09:23 F17F84511E7DFDEEAB646F0699A006D7 37184 ----a-w- C:\Windows\Sysnative\drivers\rzpmgrk.sys
2014-11-09 11:47:38 FE571E088C2D83619D2D48D4E961BF41 212480 ----a-w- C:\Windows\Sysnative\drivers\rdpwd.sys
2014-11-09 11:47:38 E232A3B43A894BB327FC161529BD9ED1 39936 ----a-w- C:\Windows\Sysnative\drivers\tssecsrv.sys
2014-11-09 11:16:45 87CE5C8965E101CCCED1F4675557E868 985536 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys
2014-11-09 11:00:46 FA886682CFC5D36718D3E436AACF10B9 497152 ----a-w- C:\Windows\Sysnative\drivers\afd.sys
2014-11-09 10:55:52 3555BA97171CD153118F73FDCCC8BFDE 376768 ----a-w- C:\Windows\Sysnative\drivers\netio.sys
2014-11-09 10:55:52 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-11-09 10:55:52 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
2014-11-09 10:52:27 EBF28856F69CF094A902F884CF989706 458712 ----a-w- C:\Windows\Sysnative\drivers\cng.sys
2014-11-09 10:52:27 353009DEDF918B2A51414F330CF72DEC 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
2014-11-09 10:50:58 1A29A59A4C5BA6F8C85062A613B7E2B2 1684928 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys
2014-11-09 10:50:35 B3222734D80013D2C73841B0C549FA63 27584 ----a-w- C:\Windows\Sysnative\drivers\Diskdump.sys
2014-11-09 10:50:34 A3F0BC5897F9D3786A3CB695B163633A 190912 ----a-w- C:\Windows\Sysnative\drivers\storport.sys
2014-11-09 10:50:34 96BB922A0981BC7432C8CF52B5410FE6 274880 ----a-w- C:\Windows\Sysnative\drivers\msiscsi.sys
2014-11-09 10:43:30 FFA06EF43987ED0DD42AD59B260C0C78 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys
2014-11-09 10:43:30 DD253AFC3BC6CBA412342DE60C3647F3 30720 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys
2014-11-09 10:43:30 DCA68B0943D6FA415F0C56C92158A83A 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys
2014-11-09 10:43:30 8D1196CFBB223621F2C67D45710F25BA 343040 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys
2014-11-09 10:43:30 765A92D428A8DB88B960DA5A8D6089DC 25600 ----a-w- C:\Windows\Sysnative\drivers\usbohci.sys
2014-11-09 10:43:30 18A85013A3E0F7E1755365D287443965 53248 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys
2014-11-09 10:43:30 12FEB33791920678F8433701C822BCFD 325120 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys
2014-11-09 10:42:29 E0D3CD5841E5C7BE7B94BA946AF1E498 116736 ----a-w- C:\Windows\Sysnative\drivers\drmk.sys
2014-11-09 10:42:29 1E0B4CBBA91C6B041A14ECC2186F7E24 230400 ----a-w- C:\Windows\Sysnative\drivers\portcls.sys
2014-11-09 10:38:24 1A4F75E63C9FB84B85DFFC6B63FD5404 140800 ----a-w- C:\Windows\Sysnative\drivers\mrxdav.sys
2014-11-09 10:35:45 9661DA76B4531B2DA272ECCE25A8AF24 42496 ----a-w- C:\Windows\Sysnative\drivers\usbscan.sys
2014-11-09 10:35:44 856E76B3641746ABBC2946BED1372098 32896 ----a-w- C:\Windows\Sysnative\drivers\hidparse.sys
2014-11-09 10:35:44 597C3699384E53CC59587ED50CCE5CA2 76800 ----a-w- C:\Windows\Sysnative\drivers\hidclass.sys
2014-11-09 10:32:14 E2C933EDBC389386EBE6D2BA953F43D8 785624 ----a-w- C:\Windows\Sysnative\drivers\Wdf01000.sys
2014-11-09 10:32:04 80B0F7D5CCF86CEB5D402EAAF61FEC31 100864 ----a-w- C:\Windows\Sysnative\drivers\usbcir.sys
2014-11-08 09:19:33 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\Sysnative\drivers\49EF1305.sys
2014-11-07 06:17:09 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\Sysnative\drivers\20683949.sys
====== C:\Windows\Tasks ======
2014-11-11 12:08:12 EEA6C1EB875B42D4E7746AE1080D49B0 3172 ----a-w- C:\Windows\Sysnative\Tasks\Razer_Game_Booster_AutoUpdate
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-11-23 21:23:53 -------- d-----w- C:\Program Files\Microsoft Silverlight
======= C:\PROGRA~2 =====
2014-12-05 18:19:07 -------- d-----w- C:\PROGRA~2\CrystalDiskInfo
2014-12-04 17:25:11 -------- d-----w- C:\PROGRA~2\Duplicate Filter
2014-12-01 13:43:09 -------- d-----w- C:\PROGRA~2\BlueStacks
2014-11-29 14:12:58 -------- d-----w- C:\PROGRA~2\OCCTPT
2014-11-24 17:36:18 -------- d-----w- C:\PROGRA~2\COMMON~1\Java
2014-11-24 17:35:39 -------- d-----w- C:\PROGRA~2\Java
2014-11-24 17:28:57 -------- d-----w- C:\PROGRA~2\SystemRequirementsLab
2014-11-23 21:23:53 -------- d-----w- C:\PROGRA~2\Microsoft Silverlight
2014-11-12 14:59:11 -------- d-----w- C:\PROGRA~2\Dev-Cpp
2014-11-11 12:57:55 -------- d-----w- C:\PROGRA~2\SDA
2014-11-11 12:09:23 -------- d-----w- C:\PROGRA~2\Razer
======= C: =====
2014-12-05 13:38:08 E6F73B662D88C81785EDF5FAB94D5DBC 110 ----a-w- C:\AdwCleanerDebug.txt
2014-11-10 14:04:37 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\asc_rdflag
====== C:\Users\Marek\AppData\Roaming ======
2014-12-05 18:19:09 -------- d-----w- C:\Users\Marek\AppData\Roaming\IHlpr
2014-12-04 17:13:20 -------- d-----w- C:\Users\Marek\AppData\Local\CrashDumps
2014-12-01 13:42:41 -------- d-----w- C:\Users\Marek\AppData\Local\Bluestacks
2014-11-29 14:13:00 -------- d-----w- C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OCCT
2014-11-26 21:11:17 -------- d-----w- C:\Users\Marek\AppData\Local\Diagnostics
2014-11-26 17:49:35 -------- d-sh--w- C:\Users\Marek\AppData\Locallow\EmieUserList
2014-11-26 17:49:35 -------- d-sh--w- C:\Users\Marek\AppData\Locallow\EmieBrowserModeList
2014-11-26 17:49:22 -------- d-sh--w- C:\Users\Marek\AppData\Local\EmieUserList
2014-11-26 17:49:22 -------- d-sh--w- C:\Users\Marek\AppData\Local\EmieSiteList
2014-11-26 17:49:22 -------- d-sh--w- C:\Users\Marek\AppData\Local\EmieBrowserModeList
2014-11-26 17:49:19 -------- d-sh--w- C:\Users\Marek\AppData\Locallow\EmieSiteList
2014-11-12 15:00:27 -------- d-----w- C:\Users\Marek\AppData\Roaming\Dev-Cpp
2014-11-11 12:57:17 -------- d-----w- C:\Users\Marek\AppData\Local\Downloaded Installations
2014-11-11 12:09:42 -------- d-----w- C:\Users\Marek\AppData\Local\Razer_Inc
2014-11-11 12:09:25 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Razer
2014-11-11 12:06:59 -------- d-----w- C:\Users\Marek\AppData\Local\Razer
2014-11-10 16:40:42 -------- d-----w- C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-11-10 16:40:41 -------- d-----w- C:\Users\Marek\AppData\Local\TeamSpeak 3 Client
====== C:\Users\Marek ======
2014-12-05 18:19:08 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2014-12-05 18:18:43 084AF0AC91DE952846D79A3E74ABB0BE 2996728 ----a-w- C:\Users\Marek\Downloads\CrystalDiskInfo6_2_1-en.exe
2014-12-05 18:04:55 C254F3ECEB9B1AC795BA6B25DE008EBA 1707646 ----a-w- C:\Users\Marek\Desktop\JRT.exe
2014-12-05 13:40:05 AF506E0B71016682293AC3814A7D62BA 2153472 ----a-w- C:\Users\Marek\Downloads\adwcleaner_4.104 (1).exe
2014-12-05 13:37:44 AF506E0B71016682293AC3814A7D62BA 2153472 ----a-w- C:\Users\Marek\Downloads\adwcleaner_4.104.exe
2014-12-04 17:25:12 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Duplicate Filter
2014-12-04 16:52:30 6DD947991853486DE376C12FF20A42F7 709564 ----a-w- C:\Users\Marek\Desktop\delfix_10.8.exe
2014-12-04 16:50:36 788FCDDD88240A85039F7F561093B118 448512 ----a-w- C:\Users\Marek\Desktop\TFC.exe
2014-12-04 16:50:23 D9DE89F0FAF18019BC9595F0F47BCA61 50688 ----a-w- C:\Users\Marek\Desktop\ATF-Cleaner.exe
2014-12-03 16:07:36 -------- d-----w- C:\ProgramData\RogueKiller
2014-12-03 16:05:55 86D57AC9FEFD3B541F1A016C1A4ECFAC 18310232 ----a-w- C:\Users\Marek\Desktop\RogueKillerX64.exe
2014-12-01 13:43:09 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
2014-12-01 13:43:09 -------- d-----w- C:\ProgramData\BlueStacks
2014-12-01 13:41:19 3B77916FB8788BB5293117ED991F0075 13444288 ----a-w- C:\Users\Marek\Downloads\BlueStacks-SplitInstaller_native.exe
2014-11-29 17:53:28 038B75662205880BE56A8FFA9930F830 5162080 ----a-w- C:\Users\Marek\Downloads\ccsetup500 (2).exe
2014-11-29 17:44:39 038B75662205880BE56A8FFA9930F830 5162080 ----a-w- C:\Users\Marek\Downloads\ccsetup500 (1).exe
2014-11-29 17:42:02 038B75662205880BE56A8FFA9930F830 5162080 ----a-w- C:\Users\Marek\Downloads\ccsetup500.exe
2014-11-26 17:51:37 4C5797DE356D3F743A19F66A843E5315 18816752 ----a-w- C:\Users\Marek\Downloads\FreeFileViewerSetup.exe
2014-11-26 17:50:53 B3E421EA8C8C2148E0B53DCBB1DE3C55 1042680 ----a-w- C:\Users\Marek\Downloads\FreeFileViewerDMSetup.exe
2014-11-26 12:08:09 EB3AF094342327FAE3EF5C615CE2A656 3249480 ----a-w- C:\Users\Marek\Downloads\UnityWebPlayer (1).exe
2014-11-25 21:27:16 EB3AF094342327FAE3EF5C615CE2A656 3249480 ----a-w- C:\Users\Marek\Downloads\UnityWebPlayer.exe
2014-11-24 17:36:18 -------- d-----w- C:\ProgramData\Sun
2014-11-24 17:35:40 -------- d-----w- C:\ProgramData\Oracle
2014-11-24 17:34:26 3A582BF6FD39DC6A52AAF316126B40BA 638888 ----a-w- C:\Users\Marek\Downloads\chromeinstall-8u25.exe
2014-11-23 21:24:02 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-11-12 15:00:23 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++
2014-11-11 12:57:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDFormatter
2014-11-11 12:09:29 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-11-11 12:06:46 -------- d-----w- C:\ProgramData\Razer

====== C: exe-files ==
2014-12-05 18:19:11 9792C54A28FE25D507699C5369145984 8658800 ----a-w- C:\Users\Marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X2296EW0\SettingsManagerSetup[1].exe
2014-12-05 18:19:10 9792C54A28FE25D507699C5369145984 8658800 ----a-w- C:\Users\Marek\AppData\Roaming\IHlpr\D2BC746C70A34A588DA9B787250E409C\SettingsManagerSetup.exe
2014-12-05 18:19:08 D5F72F1D98858A34405211851558C9CE 2385016 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\DiskInfo.exe
2014-12-05 18:19:08 732529DB7C29A7E9C5A95DA93ACAA7DA 61048 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\AlertMail.exe
2014-12-05 18:19:08 1F3CF9F2EDA491E461A44D956033D7FF 178688 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\opus\opusdec.exe
2014-12-05 18:19:08 13EDEEF3C1B499A33CB5C9192E2FF881 61560 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\AlertMail4.exe
2014-12-05 18:19:07 51615B07FEE5FD3BD24700305FC7875E 1270515 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\unins000.exe
2014-12-05 18:18:43 084AF0AC91DE952846D79A3E74ABB0BE 2996728 ----a-w- C:\Users\Marek\Downloads\CrystalDiskInfo6_2_1-en.exe
2014-12-05 18:10:44 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\erunt\ERUNT.EXE
2014-12-05 18:04:55 C254F3ECEB9B1AC795BA6B25DE008EBA 1707646 ----a-w- C:\Users\Marek\Desktop\JRT.exe
2014-12-05 13:40:05 AF506E0B71016682293AC3814A7D62BA 2153472 ----a-w- C:\Users\Marek\Downloads\adwcleaner_4.104 (1).exe
2014-12-05 13:37:44 AF506E0B71016682293AC3814A7D62BA 2153472 ----a-w- C:\Users\Marek\Downloads\adwcleaner_4.104.exe
2014-12-04 17:25:11 D37CF713AC6F07821C6CA47EF3096940 715038 ----a-w- C:\Program Files (x86)\Duplicate Filter\unins000.exe
2014-12-04 17:25:11 934BCE037CAF64FD9694C9DD90C8839D 6130728 ----a-w- C:\Program Files (x86)\Duplicate Filter\DuplicateFilter.exe
2014-12-04 16:52:30 6DD947991853486DE376C12FF20A42F7 709564 ----a-w- C:\Users\Marek\Desktop\delfix_10.8.exe
2014-12-04 16:50:36 788FCDDD88240A85039F7F561093B118 448512 ----a-w- C:\Users\Marek\Desktop\TFC.exe
2014-12-04 16:50:23 D9DE89F0FAF18019BC9595F0F47BCA61 50688 ----a-w- C:\Users\Marek\Desktop\ATF-Cleaner.exe
2014-12-03 16:05:55 86D57AC9FEFD3B541F1A016C1A4ECFAC 18310232 ----a-w- C:\Users\Marek\Desktop\RogueKillerX64.exe
2014-12-03 08:17:29 EAD48CB8661E0B265547DE98F7809FFE 3228280 ----a-w- C:\Program Files (x86)\Opera\26.0.1656.32\opera_autoupdate.exe
2014-12-03 08:17:29 E495D8AB7E72271FDECFD80A9A96EB5D 50335864 ----a-w- C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
2014-12-03 08:17:29 C44993816EA633E59F25D8B7474DE408 535160 ----a-w- C:\Program Files (x86)\Opera\26.0.1656.32\opera_crashreporter.exe
2014-12-03 08:17:29 B057CE5933E510A58670641B6D72B7AD 73336 ----a-w- C:\Program Files (x86)\Opera\26.0.1656.32\wow_helper.exe
2014-12-03 08:17:28 7FAD4E5C6855E7EA69585B53F46FA063 1264760 ----a-w- C:\Program Files (x86)\Opera\26.0.1656.32\installer.exe
2014-12-01 13:41:19 3B77916FB8788BB5293117ED991F0075 13444288 ----a-w- C:\Users\Marek\Downloads\BlueStacks-SplitInstaller_native.exe
2014-11-29 17:53:28 038B75662205880BE56A8FFA9930F830 5162080 ----a-w- C:\Users\Marek\Downloads\ccsetup500 (2).exe
2014-11-29 17:44:39 038B75662205880BE56A8FFA9930F830 5162080 ----a-w- C:\Users\Marek\Downloads\ccsetup500 (1).exe
2014-11-29 17:42:02 038B75662205880BE56A8FFA9930F830 5162080 ----a-w- C:\Users\Marek\Downloads\ccsetup500.exe
2014-11-29 14:13:05 E088CE29D79E24AF8D5BD2DFD42525FE 94998 ----a-w- C:\Program Files (x86)\OCCTPT\uninst.exe
=== C: other files ==
2014-12-05 18:10:44 F56A319979F631C141F5FF02DF87FDB1 43563 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\prelim.bat
2014-12-05 18:10:44 EBAA7BD799FC68980A6A8594BB14A950 190569 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\misc.bat
2014-12-05 18:10:44 DD1E4D974B1672ABD09EFFB225791C4A 1230 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\TDL4.bat
2014-12-05 18:10:44 BC28D90D34DB7AC6BB5789BF3C9E8FDB 14957 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\get.bat
2014-12-05 18:10:44 AD2F52DC72B10AF331692E4A4DD80DFC 18670 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\medfos.bat
2014-12-05 18:10:44 AA0C656F898523BEDF2DA6923197BB80 1264 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\surfvox.bat
2014-12-05 18:10:44 8E6020C14F982CF11B3FE7DBB0CB8EDE 24738 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\searchlnk.bat
2014-12-05 18:10:44 86707BCE5CBB65D9B1C41E249B4423BA 152733 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\firefox.bat
2014-12-05 18:10:44 83F691D8398F0E37E71E9355BF730DB9 719 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\ev_clear.bat
2014-12-05 18:10:44 813FA9E2180EE3BB5EFCE744009B5611 10880 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\runvalues.bat
2014-12-05 18:10:44 38A0BDF322ACCC968B0A824C38D50157 29635 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\ask.bat
2014-12-05 18:10:44 335DFF8F23E5EC02B5426362F0F8509B 31401 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\iexplore.bat
2014-12-05 18:10:44 0C4649A62845AB5D5DBCC4998477FF6D 1813 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\delfolders.bat
2014-12-05 18:10:44 080CFDE64F31E7B50EECF4552033E84D 9937 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\mws.bat
2014-12-05 18:10:44 048407135C9B1FB6A355E256BD96160D 14192 ----a-w- C:\Users\Marek\AppData\Local\Temp\jrt\chrome.bat
2014-12-04 17:23:39 1DF6ACBB582AB37E5B2274CEB3F623FC 1944114 ----a-w- C:\Users\Marek\Downloads\DuplicateFilter.zip
2014-12-03 16:07:38 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\System32\drivers\TrueSight.sys
2014-12-01 13:50:13 D9B1EF6F7155A3A4778552314D69D705 191574125 ----a-w- C:\ProgramData\BlueStacksSetup\runtimedata_0.9.4.4078.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
"BlueStacks Agent"="C:\Program Files (x86)\BlueStacks\HD-Agent.exe"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CCleaner Monitoring"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\CCleaner\\CCleaner64.exe\" /MONITOR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SunJavaUpdateSched"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Marek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Screen Clipper and Launcher.lnk]
"item"="OneNote 2010 Screen Clipper and Launcher"
"path"="C:\\Users\\Marek\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OneNote 2010 Screen Clipper and Launcher.lnk"
"backup"="C:\\Windows\\pss\\OneNote 2010 Screen Clipper and Launcher.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\PROGRA~2\\MICROS~1\\Office14\\ONENOTEM.EXE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BstHdAndroidSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BstHdLogRotatorSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BstHdUpdaterSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\LiveUpdateSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SkypeUpdate]

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20. 09. 2014 12:17]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20. 09. 2014 12:17]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\Driver Booster SkipUAC (Marek)" [C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Opera scheduled Autoupdate 1411211768" [C:\Program Files (x86)\Opera\launcher.exe]
"C:\Windows\SysNative\tasks\Razer_Game_Booster_AutoUpdate" [C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe]
"C:\Windows\SysNative\tasks\Uninstaller_SkipUac_Administrator" [C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [20. 09. 2014 13:00]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [20. 09. 2014 13:00]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\kbhmwv7t.default
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\kbhmwv7t.default
67D325B5AEB28E381B84E8DE1A90C7A8 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll - Shockwave Flash

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
fpmeembnagmagppkgghhfjfdfajdfcah - C:\Users\Marek\AppData\Local\Linkey\ChromeExtension\ChromeExtension.crx[]

Google Slides - Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
AdBlock - Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Google Wallet - Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
AdBlock - Marek\AppData\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj
selector is not a valid CSS selector - Marek\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\fpmeembnagmagppkgghhfjfdfajdfcah deleted successfully
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Marek\AppData\Local\Mozilla\Firefox\Profiles\kbhmwv7t.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Marek\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=103 folders=44 94310455 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Marek\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Marek\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on so 06. 12. 2014 at 12:07:41,18 ======================

Skúšal som otestovať tie súbory ale nepodarilo sa mi ich nájsť.

Prosím o kontrolu Vyřešeno

Prosím o kontrolu Vyřešeno

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Kdo je online