Prosím o kontrolu logu

Michales1 · Příspěvekod **Michales1** » 11 úno 2015 16:10

# DelFix v10.8 - Logfile created 11/02/2015 at 16:04:23
# Updated 29/07/2014 by Xplode
# Username : Michal - MICHAL-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\ComboFix.txt
Deleted : C:\zoek-results.log
Deleted : C:\Users\Michal\Desktop\aswMBR.txt
Deleted : C:\Users\Michal\Desktop\ComboFix – zástupce.lnk
Deleted : C:\Users\Michal\Desktop\JRT.exe
Deleted : C:\Users\Michal\Desktop\JRT.txt
Deleted : C:\Users\Michal\Desktop\hijackthis.log
Deleted : C:\Users\Michal\Desktop\MBR.dat
Deleted : C:\Users\Michal\Desktop\RKreport_DEL_02102015_143252.log
Deleted : C:\Users\Michal\Desktop\RogueKillerX64.exe
Deleted : C:\Users\Michal\Downloads\adwcleaner_4.110.exe
Deleted : C:\Users\Michal\Downloads\aswmbr.exe
Deleted : C:\Users\Michal\Downloads\hijackthis.exe
Deleted : C:\Users\Michal\Downloads\hijackthis.log
Deleted : C:\Users\Michal\Downloads\TFC.exe
Deleted : C:\Users\Michal\Downloads\zoek.exe
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR
Deleted : HKLM\SYSTEM\CurrentControlSet\Services\aswMBR

~ Cleaning system restore ...

Deleted : RP #91 [ComboFix created restore point | 02/11/2015 14:59:11]

New restore point created !

########## - EOF - ##########

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:09:40, on 11.2.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\BlueStacks\HD-Agent.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\Michal\Downloads\hijackthis.exe
C:\Windows\SysWOW64\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.4.4\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.6.12\bin\mysqld.exe
O23 - Service: wampmysqld64 - Unknown owner - c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8516 bytes

Firefox, už se nepokouší nic stahovat.
Ale stále se mi zdá že windows dlouho startuje. Určitě déle než po provedení combofix.

Reklama

Příspěvekod **jaro3** » 11 úno 2015 18:00

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

Michales1 · Příspěvekod **Michales1** » 11 úno 2015 18:13

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-02-2015 01
Ran by Michal (administrator) on MICHAL-PC on 11-02-2015 18:11:10
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available profiles: Michal)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595336 2014-10-01] (ESET)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [843480 2014-10-07] (BlueStack Systems, Inc.)
HKU\S-1-5-21-179919530-1806616006-2230002966-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-179919530-1806616006-2230002966-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7404312 2015-01-20] (Piriform Ltd)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-179919530-1806616006-2230002966-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-179919530-1806616006-2230002966-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-179919530-1806616006-2230002966-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 10.255.255.10 10.255.255.20

FireFox:
========
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\dqu0alk8.default
FF SearchEngineOrder.3: Bing
FF Homepage: https://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Extension: No Name - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\dqu0alk8.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [Not Found]
FF Extension: No Name - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\dqu0alk8.default\extensions\YoutubeDownloader@PeterOlayev.com.xpi [Not Found]

Chrome:
=======
CHR HomePage: Default -> hxxp://mail.google.com/?hl=cs
CHR StartupUrls: Default -> "https://mail.google.com/mail/u/0/?hl=cs"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-22]
CHR Extension: (Dokumenty Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-22]
CHR Extension: (Disk Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-22]
CHR Extension: (YouTube) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-22]
CHR Extension: (Vyhledávání Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-22]
CHR Extension: (Tabulky Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-22]
CHR Extension: (Peněženka Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-22]
CHR Extension: (Gmail) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-22]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-11-20] (Advanced Micro Devices, Inc.) [File not signed]
S4 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [409304 2014-10-07] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [388824 2014-10-07] (BlueStack Systems, Inc.)
S4 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [782040 2014-10-07] (BlueStack Systems, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S3 wampapache; c:\wamp\bin\apache\apache2.4.4\bin\httpd.exe [24576 2013-06-23] (Apache Software Foundation) [File not signed]
S3 wampmysqld; c:\wamp\bin\mysql\mysql5.6.12\bin\mysqld.exe [12867584 2013-06-23] () [File not signed]
S3 wampmysqld64; c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe [12942848 2014-05-01] () [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [122072 2014-10-07] (BlueStack Systems)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-11-17] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241368 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [158968 2014-10-10] (ESET)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S2 Dokan_NetDrive2; \??\C:\Program Files\NetDrive2\dokan.sys [X]
R3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-11 18:11 - 2015-02-11 18:11 - 00013418 _____ () C:\Users\Michal\Desktop\FRST.txt
2015-02-11 18:11 - 2015-02-11 18:11 - 00000000 ____D () C:\FRST
2015-02-11 18:10 - 2015-02-11 18:10 - 02134016 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2015-02-11 16:09 - 2015-02-11 16:09 - 00388608 _____ (Trend Micro Inc.) C:\Users\Michal\Downloads\hijackthis.exe
2015-02-11 16:09 - 2015-02-11 16:09 - 00008517 _____ () C:\Users\Michal\Desktop\hijackthis.log
2015-02-11 16:06 - 2015-02-11 16:06 - 00000056 _____ () C:\Windows\setupact.log
2015-02-11 16:06 - 2015-02-11 16:06 - 00000000 _____ () C:\Windows\setuperr.log
2015-02-11 16:05 - 2015-02-11 16:05 - 00000576 _____ () C:\Windows\PFRO.log
2015-02-11 16:04 - 2015-02-11 16:04 - 00001412 _____ () C:\DelFix.txt
2015-02-11 15:59 - 2015-02-11 15:59 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-02-11 15:59 - 2015-02-11 15:59 - 00000859 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-02-11 15:59 - 2015-02-11 15:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-02-11 15:59 - 2015-02-11 15:59 - 00000000 ____D () C:\Program Files\CCleaner
2015-02-11 10:00 - 2015-02-11 10:00 - 00000000 ____D () C:\ProgramData\Package Cache
2015-02-11 09:39 - 2015-02-11 09:39 - 00000000 ____D () C:\Users\Michal\AppData\Local\AlbumPlayer
2015-02-11 04:18 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-02-11 04:18 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-02-11 04:18 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-02-11 04:18 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-02-11 04:17 - 2015-01-14 06:47 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-11 04:17 - 2015-01-14 06:09 - 00342712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-11 04:17 - 2015-01-13 04:10 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-11 04:17 - 2015-01-13 03:49 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-11 04:17 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-11 04:17 - 2015-01-12 04:05 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-02-11 04:17 - 2015-01-12 04:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-02-11 04:17 - 2015-01-12 03:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-02-11 04:17 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-11 04:17 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-11 04:17 - 2015-01-12 03:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-02-11 04:17 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-11 04:17 - 2015-01-12 03:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-02-11 04:17 - 2015-01-12 03:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-02-11 04:17 - 2015-01-12 03:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-02-11 04:17 - 2015-01-12 03:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-02-11 04:17 - 2015-01-12 03:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-02-11 04:17 - 2015-01-12 03:33 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-02-11 04:17 - 2015-01-12 03:32 - 06041088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-11 04:17 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-11 04:17 - 2015-01-12 03:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-11 04:17 - 2015-01-12 03:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-02-11 04:17 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-11 04:17 - 2015-01-12 03:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 04:17 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-11 04:17 - 2015-01-12 03:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-02-11 04:17 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-11 04:17 - 2015-01-12 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-02-11 04:17 - 2015-01-12 03:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-02-11 04:17 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-11 04:17 - 2015-01-12 03:04 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-02-11 04:17 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-11 04:17 - 2015-01-12 03:00 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-02-11 04:17 - 2015-01-12 02:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-02-11 04:17 - 2015-01-12 02:57 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-02-11 04:17 - 2015-01-12 02:55 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-02-11 04:17 - 2015-01-12 02:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-02-11 04:17 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-11 04:17 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-11 04:17 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-11 04:17 - 2015-01-12 02:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-02-11 04:17 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-11 04:17 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-11 04:17 - 2015-01-12 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-11 04:17 - 2015-01-12 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-02-11 04:17 - 2015-01-12 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-02-11 04:17 - 2015-01-12 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-02-11 04:17 - 2015-01-12 02:29 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-11 04:17 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-11 04:17 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-11 04:17 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-11 04:17 - 2015-01-12 02:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-02-11 04:17 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-11 04:17 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-11 04:17 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-11 04:17 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-11 04:17 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-11 04:17 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-11 04:17 - 2015-01-10 07:48 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-02-11 04:17 - 2015-01-10 07:48 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-11 04:17 - 2015-01-10 07:48 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-02-11 04:17 - 2015-01-10 07:48 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-02-11 04:17 - 2015-01-10 07:48 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-02-11 04:17 - 2015-01-10 07:48 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-02-11 04:17 - 2015-01-10 07:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-02-11 04:17 - 2015-01-10 07:27 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-02-11 04:17 - 2015-01-10 07:27 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-02-11 04:17 - 2015-01-10 07:27 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-11 04:17 - 2015-01-10 07:27 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-02-11 04:17 - 2015-01-10 07:27 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-02-11 04:17 - 2015-01-10 07:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-02-11 04:17 - 2015-01-10 07:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-02-11 04:16 - 2015-01-15 09:14 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-11 04:16 - 2015-01-15 09:14 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-02-11 04:16 - 2015-01-15 09:09 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-11 04:16 - 2015-01-15 09:09 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-02-11 04:16 - 2015-01-15 09:09 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-02-11 04:16 - 2015-01-15 09:09 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-02-11 04:16 - 2015-01-15 09:09 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-02-11 04:16 - 2015-01-15 09:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-02-11 04:16 - 2015-01-15 09:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-11 04:16 - 2015-01-15 09:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-02-11 04:16 - 2015-01-15 09:04 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-11 04:16 - 2015-01-15 08:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-02-11 04:16 - 2015-01-15 08:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-02-11 04:16 - 2015-01-15 08:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-02-11 04:16 - 2015-01-15 08:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-11 04:16 - 2015-01-15 08:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-02-11 04:16 - 2015-01-15 08:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-11 04:16 - 2015-01-15 05:22 - 00458824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-11 04:16 - 2014-10-04 03:10 - 03722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-02-11 04:16 - 2014-10-04 02:42 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-02-11 04:16 - 2014-10-04 02:42 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-02-11 04:15 - 2014-12-12 06:31 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-02-11 04:15 - 2014-12-12 06:07 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-02-11 04:15 - 2014-12-08 04:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-11 04:15 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-11 04:15 - 2014-11-26 04:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-11 04:15 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-11 04:15 - 2014-07-07 03:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-02-11 04:15 - 2014-07-07 03:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-02-11 04:15 - 2014-07-07 02:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-02-11 04:15 - 2014-07-07 02:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-02-11 04:14 - 2015-01-14 07:09 - 05554112 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-11 04:14 - 2015-01-14 07:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-02-11 04:14 - 2015-01-14 07:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-02-11 04:14 - 2015-01-14 07:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-02-11 04:14 - 2015-01-14 06:44 - 03972544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-02-11 04:14 - 2015-01-14 06:44 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-02-11 04:14 - 2015-01-14 06:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-02-11 04:14 - 2015-01-09 03:03 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-10 18:26 - 2015-02-11 15:59 - 00000000 ____D () C:\Windows\erdnt
2015-02-10 18:25 - 2015-02-10 18:25 - 00000000 ____D () C:\Users\Michal\Downloads\backups
2015-02-10 14:55 - 2015-02-10 14:35 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-02-10 04:43 - 2015-02-10 14:25 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-02-10 04:43 - 2015-02-10 04:43 - 00000000 ____D () C:\ProgramData\RogueKiller
2015-02-10 04:42 - 2015-02-10 04:42 - 00001251 _____ () C:\Users\Michal\Desktop\m.txt
2015-02-09 18:00 - 2015-02-09 18:00 - 00000626 _____ () C:\Users\Michal\Desktop\WampServer.lnk
2015-02-09 18:00 - 2015-02-09 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WampServer
2015-02-09 16:36 - 2015-02-09 16:36 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-02-09 16:33 - 2015-02-11 16:04 - 00000000 ____D () C:\AdwCleaner
2015-02-09 15:23 - 2015-02-09 15:24 - 39700423 _____ () C:\Users\Michal\Downloads\country.sql
2015-02-09 15:20 - 2010-12-31 09:40 - 00000190 _____ () C:\Users\Michal\Desktop\testmysql.php
2015-02-09 15:19 - 2015-02-09 18:00 - 00000000 ____D () C:\wamp
2015-02-08 16:13 - 2015-02-08 16:13 - 00014580 _____ () C:\Users\Michal\Downloads\Butch-Cassidy-a-Sundance-Kid-CZ-.avi.torrent
2015-02-08 14:11 - 2015-02-08 14:26 - 1469301578 _____ () C:\Users\Michal\Downloads\Butch-Cassidy-a-Sundance-Kid-CZ-.avi
2015-02-08 12:33 - 2015-02-08 12:33 - 00017599 _____ () C:\Users\Michal\Downloads\Hard_Boiled.avi.torrent
2015-02-08 11:03 - 2015-02-08 11:04 - 00751373 _____ () C:\Users\Michal\Downloads\word250112394659.sql
2015-02-07 18:42 - 2015-02-07 20:22 - 1787828224 _____ () C:\Users\Michal\Downloads\Hard_Boiled.avi
2015-02-07 18:10 - 2015-02-07 18:10 - 00011593 _____ () C:\Users\Michal\Downloads\Vezeni-v-plamenech-1987-AC3-DVDRip-XviD-czdub.avi.torrent
2015-02-07 15:30 - 2015-02-07 16:35 - 1153441792 _____ () C:\Users\Michal\Downloads\Vezeni-v-plamenech-1987-AC3-DVDRip-XviD-czdub.avi
2015-02-07 15:14 - 2015-02-07 15:14 - 00014979 _____ () C:\Users\Michal\Downloads\Buh-gambleru.mp4.torrent
2015-02-07 11:19 - 2015-02-07 11:21 - 756480944 _____ () C:\Users\Michal\Downloads\Buh-gambleru.mp4
2015-02-03 22:39 - 2015-02-03 22:39 - 00000000 ____D () C:\Windows\pss
2015-02-03 09:10 - 2015-02-03 09:10 - 00003154 _____ () C:\Windows\System32\Tasks\{0160AF7E-A556-4BF0-9F60-A6C7D10A9EED}
2015-01-31 16:15 - 2015-01-31 16:15 - 00009722 _____ () C:\Users\Michal\Desktop\details_f.php
2015-01-31 12:06 - 2015-02-03 22:34 - 00000000 ____D () C:\Program Files (x86)\Kingo ROOT
2015-01-31 12:06 - 2015-01-31 12:06 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Kingosoft
2015-01-31 12:06 - 2015-01-31 12:06 - 00000000 ____D () C:\Users\Michal\AppData\Local\Kingosoft
2015-01-31 11:26 - 2015-01-31 11:26 - 00002006 _____ () C:\Users\Public\Desktop\Samsung Kies 3.lnk
2015-01-31 11:26 - 2014-10-13 06:57 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2015-01-31 11:26 - 2014-10-13 06:57 - 00110336 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2015-01-31 11:25 - 2014-05-07 17:42 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\SysWOW64\secman.dll
2015-01-31 11:21 - 2015-01-31 11:21 - 00000000 ____D () C:\Program Files (x86)\ClockworkMod
2015-01-31 11:15 - 2015-01-31 11:15 - 00000000 ____D () C:\Users\Public\Documents\NativeFus_Log
2015-01-31 11:13 - 2015-01-31 11:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
2015-01-31 11:10 - 2015-01-31 11:10 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2015-01-31 11:09 - 2015-01-31 11:09 - 00000000 ____D () C:\Program Files (x86)\MarkAny
2015-01-31 11:07 - 2015-01-31 11:25 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Samsung
2015-01-31 11:07 - 2015-01-31 11:07 - 00000000 ____D () C:\Users\Michal\AppData\Local\Samsung
2015-01-31 11:06 - 2015-01-31 11:12 - 00002039 _____ () C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2015-01-31 11:06 - 2015-01-31 11:06 - 00002029 _____ () C:\Users\Public\Desktop\Samsung Kies.lnk
2015-01-31 10:44 - 2015-01-31 11:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2015-01-31 10:44 - 2013-06-14 19:57 - 04659712 _____ (Dmitry Streblechenko) C:\Windows\SysWOW64\Redemption.dll
2015-01-31 10:44 - 2013-06-14 19:56 - 00821824 _____ (Devguru Co., Ltd.) C:\Windows\SysWOW64\dgderapi.dll
2015-01-31 10:43 - 2015-01-31 11:25 - 00000000 ____D () C:\Program Files (x86)\Samsung
2015-01-31 10:43 - 2015-01-31 11:25 - 00000000 ____D () C:\Program Files (x86)\InstallShield Installation Information
2015-01-31 10:43 - 2015-01-31 11:05 - 00000000 ____D () C:\ProgramData\Samsung
2015-01-31 10:41 - 2015-01-31 10:41 - 00000000 ____D () C:\Users\Michal\AppData\Local\Downloaded Installations
2015-01-27 03:18 - 2015-01-27 03:18 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-26 05:51 - 2015-02-11 09:42 - 00000000 ____D () C:\AlbumPlayerData
2015-01-26 05:51 - 2015-01-26 05:54 - 00001010 _____ () C:\Users\Michal\Desktop\AlbumPlayer.lnk
2015-01-26 05:51 - 2015-01-26 05:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AlbumPlayer
2015-01-26 05:51 - 2015-01-26 05:54 - 00000000 ____D () C:\Program Files (x86)\AlbumPlayer
2015-01-26 05:51 - 2015-01-26 05:52 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\AlbumPlayer
2015-01-26 05:51 - 2015-01-26 05:51 - 00001038 _____ () C:\Users\Michal\Desktop\AlbumPlayer Mouse Mode.lnk
2015-01-26 05:51 - 2015-01-26 05:51 - 00001036 _____ () C:\Users\Michal\Desktop\AlbumPlayer Touch Mode.lnk
2015-01-26 05:51 - 2015-01-26 05:51 - 00000000 ____D () C:\ProgramData\AlbumPlayer
2015-01-26 05:29 - 2015-02-10 15:49 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\AIMP3
2015-01-23 18:17 - 2015-01-23 12:05 - 00000000 ____D () C:\Users\Michal\Desktop\site
2015-01-23 17:21 - 2015-01-23 17:21 - 00000000 ____D () C:\Users\Michal\Desktop\gregor
2015-01-22 18:18 - 2015-01-22 18:18 - 00002958 _____ () C:\Windows\System32\Tasks\{FFC4AB2C-F51B-4C32-B503-BEF1FACEC970}
2015-01-21 15:50 - 2015-01-21 15:50 - 00001819 _____ () C:\Users\Public\Desktop\Apps.lnk
2015-01-21 15:50 - 2015-01-21 15:50 - 00001807 _____ () C:\Users\Public\Desktop\Start BlueStacks.lnk
2015-01-21 15:49 - 2015-01-21 15:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
2015-01-21 15:49 - 2015-01-21 15:49 - 00000000 ____D () C:\ProgramData\BlueStacks
2015-01-21 15:49 - 2015-01-21 15:49 - 00000000 ____D () C:\Program Files (x86)\BlueStacks
2015-01-21 15:48 - 2015-02-11 16:01 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2015-01-21 15:48 - 2015-01-21 15:48 - 00000000 ____D () C:\Users\Michal\AppData\Local\Bluestacks
2015-01-21 08:52 - 2015-01-21 08:52 - 00000000 ____D () C:\Users\Michal\dwhelper
2015-01-20 08:35 - 2015-01-20 08:36 - 00040576 _____ () C:\Users\Michal\Downloads\logo.psd
2015-01-19 12:59 - 2015-01-19 12:59 - 00000000 ____D () C:\Users\Michal\Desktop\radio_2
2015-01-19 12:58 - 2015-01-19 12:58 - 00000000 ____D () C:\Users\Michal\Desktop\radio
2015-01-19 12:17 - 2015-01-19 12:43 - 00000774 _____ () C:\Users\Michal\Documents\petrov.php
2015-01-19 10:42 - 2015-01-19 10:42 - 00000011 _____ () C:\Users\Michal\Documents\index_3.php
2015-01-18 12:15 - 2015-01-19 12:07 - 00001227 _____ () C:\Users\Michal\Documents\refresh.php
2015-01-17 15:46 - 2015-01-17 15:46 - 00004601 _____ () C:\Users\Michal\Downloads\Ceska-radia-_Playlist-radii_.m3u
2015-01-16 12:15 - 2015-01-17 20:52 - 00004145 _____ () C:\Users\Michal\Documents\record_count.php
2015-01-16 08:25 - 2015-01-16 08:25 - 00113136 _____ () C:\Users\Michal\AppData\Local\GDIPFONTCACHEV1.DAT
2015-01-15 16:00 - 2015-01-15 16:00 - 00003166 _____ () C:\Windows\System32\Tasks\{52A7A195-570E-4F6C-9518-729C3D68272E}
2015-01-15 16:00 - 2015-01-15 16:00 - 00002966 _____ () C:\Windows\System32\Tasks\{88AB9FBA-AB00-4D8D-AA94-B56CB5F38475}
2015-01-15 15:58 - 2015-01-15 15:58 - 00003150 _____ () C:\Windows\System32\Tasks\{1EE75129-9D2F-49F2-8183-57476DACFCBC}
2015-01-15 15:50 - 2015-01-15 15:54 - 00000000 ____D () C:\W7P_Backups
2015-01-15 15:49 - 2015-01-15 16:06 - 00000000 ____D () C:\SkinPack
2015-01-15 11:00 - 1998-10-29 16:45 - 00306688 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2015-01-15 10:59 - 2015-01-15 10:59 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-01-15 10:57 - 2015-01-15 10:57 - 00000000 ____D () C:\Users\Michal\AppData\Local\2K Games
2015-01-15 10:56 - 2015-01-15 10:56 - 00000898 _____ () C:\Users\Public\Desktop\Mafia.lnk
2015-01-15 10:56 - 2015-01-15 10:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mafia
2015-01-15 10:56 - 2015-01-15 10:56 - 00000000 ____D () C:\Program Files (x86)\Cenega Czech
2015-01-15 10:55 - 2015-01-15 10:59 - 00000000 ____D () C:\Program Files (x86)\Mafia 2 Multiplayer
2015-01-15 10:55 - 2015-01-15 10:55 - 00001060 _____ () C:\Users\Public\Desktop\Mafia 2 Multiplayer.lnk
2015-01-15 10:55 - 2015-01-15 10:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mafia 2 Multiplayer
2015-01-15 10:54 - 2015-01-15 10:54 - 00000890 _____ () C:\Users\Michal\Desktop\Mafia II..lnk
2015-01-15 09:53 - 2015-01-15 09:53 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Python-Eggs
2015-01-15 09:53 - 2014-12-20 09:30 - 00215912 _____ (Bdrive Inc.) C:\Windows\system32\NetDrive2.nd2np.dll
2015-01-15 09:53 - 2014-12-20 09:30 - 00186728 _____ (Bdrive Inc.) C:\Windows\SysWOW64\NetDrive2.nd2np.dll
2015-01-14 17:32 - 2015-01-15 07:10 - 00000000 ____D () C:\Program Files (x86)\StationPlaylist
2015-01-14 07:06 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 07:06 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 07:06 - 2014-12-11 18:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 07:06 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 07:06 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-14 07:06 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-14 07:04 - 2015-01-14 07:04 - 00289337 _____ () C:\Users\Michal\Downloads\jwplayer.zip
2015-01-13 20:35 - 2015-01-16 11:29 - 00000000 ____D () C:\Users\Michal\Desktop\jwplayer
2015-01-13 13:42 - 2015-01-14 14:34 - 00000000 ____D () C:\Users\Michal\Downloads\radio
2015-01-13 13:42 - 2015-01-13 13:42 - 00000000 ____D () C:\Users\Michal\Downloads\radio_2
2015-01-13 10:24 - 2015-01-13 14:02 - 00006155 _____ () C:\Users\Michal\Documents\playlist1.xml
2015-01-13 10:20 - 2015-01-13 10:20 - 00021151 _____ () C:\Users\Michal\Downloads\mp3player.rar
2015-01-13 08:17 - 2015-01-13 08:36 - 00000000 ____D () C:\Users\Michal\Desktop\podklady
2015-01-12 18:37 - 2015-01-12 18:37 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Stellarium
2015-01-12 18:37 - 2015-01-12 18:37 - 00000000 ____D () C:\Users\Michal\AppData\Local\stellarium
2015-01-12 18:36 - 2015-01-12 18:36 - 00001720 _____ () C:\Users\Public\Desktop\Stellarium.lnk
2015-01-12 18:36 - 2015-01-12 18:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellarium
2015-01-12 18:36 - 2015-01-12 18:36 - 00000000 ____D () C:\Program Files\Stellarium
2015-01-12 16:51 - 2015-01-12 16:51 - 00000192 _____ () C:\Users\Michal\Documents\delete_news.php

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-11 18:10 - 2015-01-08 16:19 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\uTorrent
2015-02-11 18:07 - 2014-11-17 13:38 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Skype
2015-02-11 17:37 - 2014-11-17 14:05 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-02-11 17:01 - 2014-11-17 13:03 - 01471285 _____ () C:\Windows\WindowsUpdate.log
2015-02-11 16:28 - 2015-01-09 14:42 - 00004966 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Michal-PC-Michal Michal-PC
2015-02-11 16:12 - 2009-07-14 05:45 - 00022464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-11 16:12 - 2009-07-14 05:45 - 00022464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-11 16:06 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-11 16:01 - 2014-11-17 18:00 - 00000000 ____D () C:\Windows\Minidump
2015-02-11 16:01 - 2014-11-17 17:15 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\DAEMON Tools Lite
2015-02-11 16:01 - 2009-09-15 11:23 - 00000000 ____D () C:\Windows\Panther
2015-02-11 14:58 - 2009-07-14 05:45 - 00437536 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-11 14:55 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2015-02-11 10:02 - 2014-11-17 16:26 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-02-11 10:02 - 2014-11-17 16:23 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-02-11 09:55 - 2009-07-14 03:34 - 00000580 _____ () C:\Windows\win.ini
2015-02-11 09:51 - 2014-11-17 15:19 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-11 09:48 - 2014-11-17 15:19 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-11 05:32 - 2014-11-17 14:46 - 00003978 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{02443232-CFD6-40C5-A064-EBAB4B939675}
2015-02-11 05:09 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2015-02-11 05:06 - 2009-07-14 03:34 - 77856768 _____ () C:\Windows\system32\config\SOFTWARE.bak
2015-02-11 05:06 - 2009-07-14 03:34 - 15466496 _____ () C:\Windows\system32\config\SYSTEM.bak
2015-02-11 05:06 - 2009-07-14 03:34 - 00524288 _____ () C:\Windows\system32\config\DEFAULT.bak
2015-02-11 05:06 - 2009-07-14 03:34 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2015-02-11 05:06 - 2009-07-14 03:34 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2015-02-11 04:54 - 2014-12-03 16:40 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-02-10 19:21 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2015-02-10 15:29 - 2014-12-04 16:03 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Posta
2015-02-10 14:50 - 2014-11-17 13:04 - 00000000 ____D () C:\Users\Michal
2015-02-10 14:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\GroupPolicy
2015-02-08 16:12 - 2014-11-22 13:58 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\vlc
2015-02-08 11:53 - 2014-12-23 11:23 - 00000000 ____D () C:\Users\Michal\Documents\Soubory aplikace Outlook
2015-02-07 11:14 - 2014-11-17 14:05 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-07 11:14 - 2014-11-17 14:05 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-07 11:14 - 2014-11-17 14:05 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-02-07 11:14 - 2014-11-17 14:04 - 00000000 ____D () C:\Users\Michal\AppData\Local\Adobe
2015-02-03 22:23 - 2009-07-14 06:08 - 00032538 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-02-03 09:07 - 2014-11-17 13:18 - 01557940 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-02-03 09:07 - 2009-07-14 16:18 - 00668542 _____ () C:\Windows\system32\perfh005.dat
2015-02-03 09:07 - 2009-07-14 16:18 - 00141202 _____ () C:\Windows\system32\perfc005.dat
2015-02-03 09:07 - 2009-07-14 06:13 - 01557940 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-02 12:23 - 2014-11-17 13:13 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Mozilla
2015-02-02 12:23 - 2014-11-17 13:13 - 00000000 ____D () C:\Users\Michal\AppData\Local\Mozilla
2015-02-01 18:21 - 2014-11-18 16:13 - 00626476 _____ () C:\Users\Michal\Desktop\Stahování.xlsx
2015-01-31 16:43 - 2014-11-17 17:47 - 00000000 ____D () C:\Users\Michal\Documents\samsung
2015-01-31 16:15 - 2015-01-11 10:30 - 00000000 ____D () C:\Users\Michal\Desktop\nový web
2015-01-31 11:26 - 2014-11-17 17:47 - 00000000 ____D () C:\Users\Michal\Documents\SelfMV
2015-01-28 04:02 - 2014-11-17 13:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-25 10:43 - 2014-11-17 13:37 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-25 10:43 - 2014-11-17 13:37 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-25 10:42 - 2014-11-17 13:38 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-01-23 18:51 - 2014-11-19 14:57 - 00000000 ____D () C:\ProgramData\Adobe
2015-01-23 18:27 - 2015-01-05 10:38 - 00000000 ____D () C:\Program Files (x86)\Artisteer 4 (2)
2015-01-22 09:12 - 2014-11-17 16:23 - 00000000 ____D () C:\Users\Michal\AppData\Local\Microsoft Help
2015-01-21 15:50 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
2015-01-16 12:12 - 2014-11-17 17:47 - 00003144 _____ () C:\Users\Michal\Documents\index_2.php
2015-01-16 09:07 - 2014-11-17 17:47 - 00001272 _____ () C:\Users\Michal\Documents\index.php
2015-01-15 15:54 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Cursors
2015-01-15 15:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\oobe
2015-01-14 12:56 - 2014-11-17 17:46 - 00000011 _____ () C:\Users\Michal\Documents\delete.php
2015-01-14 09:07 - 2014-11-17 13:26 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\WinRAR
2015-01-14 09:07 - 2014-11-17 13:26 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-14 09:07 - 2014-11-17 13:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-13 10:26 - 2014-11-17 17:47 - 00000592 _____ () C:\Users\Michal\Documents\index.html

==================== Files in the root of some directories =======

2014-11-27 23:41 - 2014-11-27 23:41 - 0007602 _____ () C:\Users\Michal\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-02-03 07:41

==================== End Of Log ============================

Michales1 · Příspěvekod **Michales1** » 11 úno 2015 18:13

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-02-2015 01
Ran by Michal at 2015-02-11 18:11:51
Running from C:\Users\Michal\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AC3Filter 2.6.0b (HKLM-x32\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AlbumPlayer V5.0 Demo Edition (HKLM-x32\...\AlbumPlayer Demo Edition_is1) (Version: - Albumon)
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Any Video Converter 5.7.5 (HKLM-x32\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
Artisteer 4 (HKLM-x32\...\Artisteer 4) (Version: 4.1 - Extensoft)
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.9.4.4078 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{152E0B21-19D5-4772-9EF8-8E76074B0C0A}) (Version: 0.9.4.4078 - BlueStack Systems, Inc.)
Canon MP Navigator 3.0 (HKLM-x32\...\MP Navigator 3.0) (Version: - )
Canon MP Navigator 3.1 (HKLM-x32\...\MP Navigator 3.1) (Version: - )
Canon MP140 series (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP140_series) (Version: - )
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
EasyBCD 2.2 (HKLM-x32\...\EasyBCD) (Version: 2.2 - NeoSmart Technologies)
ESET NOD32 Antivirus (HKLM\...\{AB1AA952-0F66-42B2-B8B0-6B94FC500132}) (Version: 8.0.304.1 - ESET, spol s r. o.)
F1 2014 (HKLM-x32\...\RjEyMDE0_is1) (Version: 1 - )
Far Cry 3 - Complete Edition version 1.0.0 (HKLM-x32\...\Far Cry 3 - Complete Edition_is1) (Version: 1.0.0 - Ubisoft)
FastShare.cz verze 2.3.1 (HKLM-x32\...\FastShare.cz_is1) (Version: 2.3.1 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.65 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
K-Lite Codec Pack 10.9.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.9.0 - )
KMSnano 24 (HKLM\...\KMSnano 24_is1) (Version: KMSnano 24 - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Mafia (HKLM-x32\...\{C72D7008-266D-4DD8-BF3C-296B736127F6}) (Version: 1.02 - )
Mafia 2 - Directors Cut 1.00 (HKLM-x32\...\Mafia 2 - Directors Cut 1.00) (Version: 1.00 - 2K Games)
MediaInfo 0.7.71 (HKLM\...\MediaInfo) (Version: 0.7.71 - MediaArea.net)
Microsoft .NET Framework 4.5.3 Preview (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.53349 - Microsoft Corporation)
Microsoft .NET Framework 4.5.3 Preview (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.53349 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 CSY (HKLM\...\{0A8A841B-29C4-4947-BF59-241216B4D904}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 35.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 cs)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 33.1.1 - Mozilla)
Music NFO Builder v1.20 (HKLM-x32\...\Music NFO Builder_is1) (Version: - Pawel Piecuch)
MySQL Connector/ODBC 5.3 (HKLM\...\{A1991404-2634-47E1-BC45-8F3B5014B1D1}) (Version: 5.3.4 - Oracle Corporation)
MySQL For Excel 1.1.2 (HKLM-x32\...\{0473236A-8F49-4A6A-BBA6-319F91DD5AD4}) (Version: 1.1.2 - Oracle)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.5.8.2500 - Jan Fiala)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.0.13064_2 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.0.13064_2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15013.17 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.15013.17 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Stellarium 0.13.1 (HKLM\...\Stellarium_is1) (Version: 0.13.1 - Stellarium team)
Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
VisualSubSync (remove only) (HKLM-x32\...\VisualSubSync) (Version: - )
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VobSub v2.23 (Remove Only) (HKLM-x32\...\VobSub) (Version: - )
WampServer 2.4 (HKLM-x32\...\WampServer 2_is1) (Version: - Hervé Leclerc (HeL))
Webshare uploader (HKLM-x32\...\WebshareDLC) (Version: - Webshare)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
WRC 4 FIA World Rally Championship verzia 1.0u1 (HKLM-x32\...\WRC 4 FIA World Rally Championship_is1) (Version: 1.0u1 - CzTorrent.net)
x264vfw - H.264/MPEG-4 AVC codec (remove only) (HKLM-x32\...\x264vfw) (Version: - )
XnView 2.25 (HKLM-x32\...\XnView_is1) (Version: 2.25 - Gougelet Pierre-e)
Xvid MPEG-4 Video Codec 64-bit (HKLM\...\{5B52A9E2-0778-4356-93AF-25DBAC2FA365}_is1) (Version: 1.3.2 - XvidVideo.RU)
XviD Video Codec (remove only) (HKLM-x32\...\XviD Video Codec) (Version: - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-179919530-1806616006-2230002966-1001_Classes\CLSID\{869C14C8-1830-491F-B575-5F9AB40D2B42}\InprocServer32 -> C:\Program Files\MediaInfo\MediaInfo_InfoTip.dll (http://MediaArea.net/MediaInfo)
CustomCLSID: HKU\S-1-5-21-179919530-1806616006-2230002966-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll ()

==================== Restore Points =========================

11-02-2015 16:04:25 End of disinfection

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2015-02-11 05:08 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0046342E-BBB3-4098-92FF-57B44E115DA2} - System32\Tasks\{52A7A195-570E-4F6C-9518-729C3D68272E} => pcalua.exe -a C:\Windows\system32\pcwrun.exe -c "C:\Program Files (x86)\RocketDock\RocketDock.exe"
Task: {018ED62A-F8BB-4740-A173-DED63CC48D4A} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {04C41DF6-7851-4E84-8566-20F2EC96F43C} - System32\Tasks\{386B4545-A586-4205-A5B5-4A4206365F72} => Firefox.exe http://ui.skype.com/ui/0/6.22.81.104/cs ... Error=1618
Task: {27D5D582-1429-4060-8507-23E763EB3E3B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {2B9F1AFE-EE67-420B-B2A0-00BAD4A68BA8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {308F7279-C8EE-45CE-8303-27F275D9D74B} - System32\Tasks\{1EE75129-9D2F-49F2-8183-57476DACFCBC} => pcalua.exe -a C:\Users\Michal\Downloads\RocketDock-v1.3.5.exe -d C:\Users\Michal\Downloads
Task: {3C9FFDA4-8E75-4799-B0E9-6D09B0FDE6DF} - System32\Tasks\{0160AF7E-A556-4BF0-9F60-A6C7D10A9EED} => pcalua.exe -a C:\Users\Michal\Downloads\SRG2006.03.28.17.40.exe -d C:\Users\Michal\Downloads
Task: {582A4447-80C9-4733-8A0A-7E661D4414A7} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2014-12-12] ()
Task: {A10236C3-E6E5-4B25-93D3-D68E2D6DD9E5} - System32\Tasks\{88AB9FBA-AB00-4D8D-AA94-B56CB5F38475} => C:\Program Files (x86)\RocketDock\RocketDock.exe
Task: {A5EBC33D-55AC-4134-9FEE-B1899F09D671} - System32\Tasks\{3986B1A3-5341-444B-A9A9-01844424EF07} => Firefox.exe http://ui.skype.com/ui/0/6.22.81.104/cs ... Error=1618
Task: {A8DFCBB9-8C30-40A3-843F-6216EDD0D5C2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-07] (Adobe Systems Incorporated)
Task: {B1C8F6E8-EB6D-4BAE-834E-ACDCFA44919C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {BA58FB5C-B505-4540-9B3E-55BD3378A299} - System32\Tasks\{4B5F9CFF-D5BF-4072-81BD-750E2098705F} => pcalua.exe -a C:\Users\Michal\Downloads\VisualSubSync-1.0.1-Setup.exe -d C:\Users\Michal\Downloads
Task: {C4ECFDB5-2563-4B67-AC59-047E9137AD09} - System32\Tasks\{FFC4AB2C-F51B-4C32-B503-BEF1FACEC970} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11] (Skype Technologies S.A.)
Task: {D7F1D614-F45A-442B-89F1-93B73B71546F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {DAB8664F-2672-4A79-9BB1-2050289FEB95} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {E0ED60CE-B620-4212-8C49-6B1A4350A56B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {EA5AF766-DEF6-4F7E-B008-AABEA1DDFA6A} - System32\Tasks\{9EC2EA79-C7FD-4E98-B679-6EE97E62D95B} => D:\Downloads\Hry\Far Cry 4\bin\FarCry4.exe
Task: {EE04D33D-2A56-4A8F-899E-BC4A4B82DDBA} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Michal-PC-Michal Michal-PC => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2015-01-21] (Microsoft Corporation)
Task: {F3B93B59-9AC8-4502-95EB-740988AAAB8F} - System32\Tasks\{38E99BD8-1BFB-4FFB-8BC6-9FAB9B45AD4F} => Firefox.exe http://ui.skype.com/ui/0/6.22.81.104/cs ... Error=1618
Task: {F54D6683-57A2-42F3-B2B5-173BDF1AFD34} - System32\Tasks\Trigger KMS Activation => C:\Program Files\KMSnano\TriggerKMS.exe [2013-01-26] ()
Task: {FA96C427-B66F-4878-BD6E-CC7F30BA6413} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {FEFDD5FC-8A12-4EB9-8516-A5932A414808} - System32\Tasks\{84938685-05AF-4A2D-8226-F37E724A2AFB} => pcalua.exe -a "C:\Users\Michal\Desktop\Nová složka\AuxSetup.exe" -d "C:\Users\Michal\Desktop\Nová složka"
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) ==============

2014-11-17 17:06 - 2014-07-07 19:11 - 00027648 _____ () C:\Program Files (x86)\PSPad editor\pspshellx64.dll
2015-01-21 03:06 - 2015-01-21 03:06 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2014-11-20 21:23 - 2014-11-20 21:23 - 00102400 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2015-01-27 03:18 - 2015-01-27 03:18 - 03925104 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2015-02-07 11:14 - 2015-02-07 11:14 - 16852144 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll
2014-07-23 00:29 - 2014-07-23 00:29 - 00113171 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlc.dll
2014-07-23 00:29 - 2014-07-23 00:29 - 02396691 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlccore.dll
2014-07-23 00:29 - 2014-07-23 00:29 - 00268307 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
2014-07-23 00:29 - 2014-07-23 00:29 - 00027667 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
2014-07-23 00:29 - 2014-07-23 00:29 - 00031251 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
2014-07-23 00:29 - 2014-07-23 00:29 - 11148307 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
2014-07-23 00:29 - 2014-07-23 00:29 - 01248787 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\misc\libxml_plugin.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-179919530-1806616006-2230002966-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.255.255.10 - 10.255.255.20

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: BDESVC => 3
MSCONFIG\Services: BstHdAndroidSvc => 2
MSCONFIG\Services: BstHdLogRotatorSvc => 2
MSCONFIG\Services: BstHdUpdaterSvc => 2
MSCONFIG\Services: Fax => 3
MSCONFIG\startupfolder: C:^Users^Michal^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Odeslat do OneNote.lnk => C:\Windows\pss\Odeslat do OneNote.lnk.Startup
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup

==================== Accounts: =============================

Administrator (S-1-5-21-179919530-1806616006-2230002966-500 - Administrator - Disabled)
Guest (S-1-5-21-179919530-1806616006-2230002966-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-179919530-1806616006-2230002966-1002 - Limited - Enabled)
Michal (S-1-5-21-179919530-1806616006-2230002966-1001 - Administrator - Enabled) => C:\Users\Michal

==================== Faulty Device Manager Devices =============

Name: Adaptér tunelového režimu Microsoft Teredo
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (02/11/2015 04:04:26 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddWin32ServiceFiles: Unable to back up image of service wampapache64 since QueryServiceConfig API failed

System Error:
Systém nemůže nalézt uvedený soubor.
.

Error: (02/11/2015 04:04:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddWin32ServiceFiles: Unable to back up image of service DokanMounter_Dokan_NetDrive2 since QueryServiceConfig API failed

System Error:
Systém nemůže nalézt uvedený soubor.
.

Error: (02/11/2015 10:00:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: vcredist_x64.exe, verze: 11.0.61030.0, časové razítko: 0x5213face
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea8e7
Kód výjimky: 0xc0000005
Posun chyby: 0x00038e19
ID chybujícího procesu: 0xb04
Čas spuštění chybující aplikace: 0xvcredist_x64.exe0
Cesta k chybující aplikaci: vcredist_x64.exe1
Cesta k chybujícímu modulu: vcredist_x64.exe2
ID zprávy: vcredist_x64.exe3

Error: (02/11/2015 10:00:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: vcredist_x64.exe, verze: 11.0.61030.0, časové razítko: 0x5213face
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea8e7
Kód výjimky: 0xc0000005
Posun chyby: 0x00038e19
ID chybujícího procesu: 0x9fc
Čas spuštění chybující aplikace: 0xvcredist_x64.exe0
Cesta k chybující aplikaci: vcredist_x64.exe1
Cesta k chybujícímu modulu: vcredist_x64.exe2
ID zprávy: vcredist_x64.exe3

System errors:
=============
Error: (02/11/2015 10:02:50 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070013): Aktualizace systému Windows 7 pro systémy na platformě x64 (KB2952664).

Error: (02/11/2015 10:02:50 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070013): Aktualizace systému Windows 7 pro systémy na platformě x64 (KB2952664).

Error: (02/11/2015 10:02:34 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Windows Update se po přijetí pokynu pro vypnutí neukončila správně.

Error: (02/11/2015 10:00:56 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070643): Aktualizace pro redistribuovatelný balíček Microsoft Visual C++ 2012 Update 4 (KB3032622).

Error: (02/11/2015 06:09:01 AM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error: (02/11/2015 05:05:29 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/11/2015 05:04:29 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/11/2015 04:42:03 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/11/2015 04:41:43 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.

Error: (02/11/2015 04:41:43 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.

Microsoft Office Sessions:
=========================
Error: (02/11/2015 04:04:26 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddWin32ServiceFiles: Unable to back up image of service wampapache64 since QueryServiceConfig API failed

System Error:
Systém nemůže nalézt uvedený soubor.

Error: (02/11/2015 04:04:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddWin32ServiceFiles: Unable to back up image of service DokanMounter_Dokan_NetDrive2 since QueryServiceConfig API failed

System Error:
Systém nemůže nalézt uvedený soubor.

Error: (02/11/2015 10:00:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: vcredist_x64.exe11.0.61030.05213facentdll.dll6.1.7601.18247521ea8e7c000000500038e19b0401d045d931cf409cC:\Windows\SoftwareDistribution\Download\Install\vcredist_x64.exeC:\Windows\SysWOW64\ntdll.dll792c4c67-b1cc-11e4-9692-4061860536f0

Error: (02/11/2015 10:00:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: vcredist_x64.exe11.0.61030.05213facentdll.dll6.1.7601.18247521ea8e7c000000500038e199fc01d045d931db277dC:\Windows\SoftwareDistribution\Download\Install\vcredist_x64.exeC:\Windows\SysWOW64\ntdll.dll792c2557-b1cc-11e4-9692-4061860536f0

CodeIntegrity Errors:
===================================
Date: 2015-02-11 04:41:43.294
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-11 04:41:43.184
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-11 04:41:43.044
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-11 04:41:42.934
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-11 04:33:45.369
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-11 04:33:45.259
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-11 04:33:45.103
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-11 04:33:44.987
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-10 18:38:08.116
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-10 18:38:08.016
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: AMD Athlon(tm) II X2 240 Processor
Percentage of memory in use: 39%
Total physical RAM: 4095.18 MB
Available physical RAM: 2483.74 MB
Total Pagefile: 8188.55 MB
Available Pagefile: 5972.87 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.66 GB) (Free:26.15 GB) NTFS
Drive d: () (Fixed) (Total:367.91 GB) (Free:291.94 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or

(Size: 465.8 GB) (Disk ID: FE04FF78)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=367.9 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Příspěvekod **jaro3** » 11 úno 2015 18:35

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-179919530-1806616006-2230002966-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-179919530-1806616006-2230002966-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
FF Extension: No Name - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\dqu0alk8.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [Not Found]
FF Extension: No Name - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\dqu0alk8.default\extensions\YoutubeDownloader@PeterOlayev.com.xpi [Not Found]
C:\Windows\System32\Tasks\{FFC4AB2C-F51B-4C32-B503-BEF1FACEC970}
C:\Windows\System32\Tasks\{52A7A195-570E-4F6C-9518-729C3D68272E}
C:\Windows\System32\Tasks\{88AB9FBA-AB00-4D8D-AA94-B56CB5F38475}
C:\Windows\System32\Tasks\{1EE75129-9D2F-49F2-8183-57476DACFCBC}

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt

Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

Stáhni si Registry Defrag

na svojí plochu a spusť ho. Program se nainstaluje a potom se spustí.
Zavři si nejprve všechny ostatní programy a prohlížeče a deaktivuj antivir.

Klikni na „Next“.
Program proskenuje registry a vytvoří nový bod obnovy. Poté restartuje PC. Po restartu program můžeš zavřít.

Michales1 · Příspěvekod **Michales1** » 12 úno 2015 15:03

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-02-2015 01
Ran by Michal at 2015-02-12 14:52:25 Run:1
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available profiles: Michal)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-179919530-1806616006-2230002966-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-179919530-1806616006-2230002966-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
FF Extension: No Name - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\dqu0alk8.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [Not Found]
FF Extension: No Name - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\dqu0alk8.default\extensions\YoutubeDownloader@PeterOlayev.com.xpi [Not Found]
C:\Windows\System32\Tasks\{FFC4AB2C-F51B-4C32-B503-BEF1FACEC970}
C:\Windows\System32\Tasks\{52A7A195-570E-4F6C-9518-729C3D68272E}
C:\Windows\System32\Tasks\{88AB9FBA-AB00-4D8D-AA94-B56CB5F38475}
C:\Windows\System32\Tasks\{1EE75129-9D2F-49F2-8183-57476DACFCBC}
*****************

"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-179919530-1806616006-2230002966-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-179919530-1806616006-2230002966-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => Key deleted successfully.
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => Key not found.
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\dqu0alk8.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} not found.
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\dqu0alk8.default\extensions\YoutubeDownloader@PeterOlayev.com.xpi not found.
C:\Windows\System32\Tasks\{FFC4AB2C-F51B-4C32-B503-BEF1FACEC970} => Moved successfully.
C:\Windows\System32\Tasks\{52A7A195-570E-4F6C-9518-729C3D68272E} => Moved successfully.
C:\Windows\System32\Tasks\{88AB9FBA-AB00-4D8D-AA94-B56CB5F38475} => Moved successfully.
C:\Windows\System32\Tasks\{1EE75129-9D2F-49F2-8183-57476DACFCBC} => Moved successfully.

==== End of Fixlog 14:52:25 ====

Příspěvekod **jaro3** » 12 úno 2015 18:40

Co problémy?

Michales1 · Příspěvekod **Michales1** » 13 úno 2015 04:09

Zdá se býti věe v pořádku. Díky

Příspěvekod **jaro3** » 13 úno 2015 09:22

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.

Michales1 · Příspěvekod **Michales1** » 13 úno 2015 14:35

# DelFix v10.8 - Logfile created 13/02/2015 at 14:34:56
# Updated 29/07/2014 by Xplode
# Username : Michal - MICHAL-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\Michal\Desktop\Addition.txt
Deleted : C:\Users\Michal\Desktop\Fixlog.txt
Deleted : C:\Users\Michal\Desktop\FRST.txt
Deleted : C:\Users\Michal\Desktop\FRST64.exe
Deleted : C:\Users\Michal\Desktop\hijackthis.log
Deleted : C:\Users\Michal\Downloads\hijackthis.exe

~ Cleaning system restore ...

Deleted : RP #94 [Windows Update | 02/12/2015 04:07:21]
Deleted : RP #95 [AusLogics RegDefrag before defragmentation. | 02/12/2015 14:00:19]
Deleted : RP #96 [Removed Samsung Kies | 02/12/2015 14:05:17]
Deleted : RP #97 [Windows Update | 02/12/2015 17:12:49]

New restore point created !

########## - EOF - ##########

Příspěvekod **Orcus** » 13 úno 2015 17:57

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Kdo je online