Prosím o kontrolu logu z HJT

Příspěvekod **jaro3** » 12 srp 2014 10:12

Lavasoft Ad-Watch Live! Anti-Virus
co tohle tam zase dělá?

Odinstaluj to a pak znovu Combofix.

Reklama

akiller · Příspěvekod **akiller** » 12 srp 2014 16:15

Jsem si naivně myslel, že je to jen nástroj na odstranění spywaru a podobné havěti. Netušil jsem, že to má takový rozsah působnosti :shock:

Už je pryč :-)

akiller · Příspěvekod **akiller** » 12 srp 2014 16:50

Zde je log z ComboFix:

ComboFix 14-08-12.01 - Petr 12.08.2014 16:30:49.11.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3326.1923 [GMT 2:00]
Spuštěný z: c:\users\Petr\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
FW: COMODO Firewall *Enabled* {7DB03214-694B-060B-1600-BD4715C36DBB}
SP: COMODO Defense+ *Disabled/Updated* {FEEA52D5-051E-08DD-07EF-2F009097607D}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-07-12 do 2014-08-12 )))))))))))))))))))))))))))))))
.
.
2014-08-12 14:44 . 2014-08-12 14:44 -------- d-----w- c:\users\Public\AppData\Local\temp
2014-08-12 14:44 . 2014-08-12 14:44 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-08-12 14:29 . 2014-08-12 14:29 39464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D647CA39-6C38-4B8A-8488-89B654D9AE73}\MpKsl84ee9652.sys
2014-08-12 11:23 . 2014-07-02 03:11 8217224 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D647CA39-6C38-4B8A-8488-89B654D9AE73}\mpengine.dll
2014-08-12 11:08 . 2014-07-02 03:11 8217224 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-08-11 14:44 . 2014-08-11 14:44 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2014-08-11 14:39 . 2014-08-11 14:39 -------- d-----w- c:\users\Petr\AppData\Local\Sunbelt Software
2014-08-11 14:34 . 2014-08-12 14:11 -------- d-----w- c:\programdata\Lavasoft
2014-08-10 11:40 . 2014-08-12 13:51 -------- d-----w- c:\users\Petr\AppData\Local\CrashDumps
2014-08-09 09:50 . 2014-08-09 09:50 -------- d-----w- c:\users\Petr\AppData\Local\Adobe
2014-08-05 11:50 . 2014-08-05 11:56 -------- d-----w- c:\program files\Grand Theft Auto Vice City Stories
2014-08-04 12:17 . 2014-05-02 14:07 765968 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C6715EC1-C34C-4C65-B6D2-391B1DDE6012}\gapaengine.dll
2014-08-01 09:01 . 2014-08-01 09:01 -------- d-----w- c:\users\Petr\AppData\Roaming\SUPERAntiSpyware.com
2014-08-01 09:01 . 2014-08-01 09:01 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2014-08-01 09:01 . 2014-08-01 09:02 -------- d-----w- c:\program files\SUPERAntiSpyware
2014-07-30 17:17 . 2014-07-30 19:03 -------- d-----w- c:\users\Petr\AppData\Local\Rockstar Games
2014-07-30 17:12 . 2014-07-30 17:12 -------- d-----w- c:\windows\system32\xlive
2014-07-30 17:12 . 2014-07-30 17:12 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2014-07-30 09:54 . 2014-07-02 17:39 609240 ----a-w- c:\windows\system32\nvStreaming.exe
2014-07-30 09:53 . 2014-07-02 19:42 2556360 ----a-w- c:\windows\system32\nvsvcr.dll
2014-07-30 09:39 . 2014-07-25 13:50 1291280 ----a-w- c:\windows\system32\nvspbridge.dll
2014-07-22 21:02 . 2014-07-22 21:02 -------- d-----w- c:\users\Petr\AppData\Roaming\Hulubulu
2014-07-22 21:02 . 2014-07-22 21:02 -------- d-----w- c:\program files\Advanced Renamer
2014-07-21 16:14 . 2014-07-21 16:15 -------- d-----w- C:\gravotte ramdisk
2014-07-21 16:10 . 2014-07-21 16:10 -------- d-----w- c:\program files\PPSOFT.DK
2014-07-21 16:10 . 1998-02-06 19:37 299520 ----a-w- c:\windows\uninst.exe
2014-07-21 15:58 . 2014-08-03 14:02 -------- d-----w- c:\program files\Zrychleni Pocitace
2014-07-21 15:29 . 2014-07-25 13:50 1126480 ----a-w- c:\windows\system32\nvspcap.dll
2014-07-21 15:29 . 2014-07-30 09:40 -------- d-----w- c:\users\Petr\AppData\Local\NVIDIA Corporation
2014-07-21 15:29 . 2014-07-21 15:37 -------- d-----w- c:\users\Petr\AppData\Local\NVIDIA
2014-07-21 15:28 . 2014-07-21 15:28 -------- d-----w- c:\program files\AGEIA Technologies
2014-07-21 15:27 . 2014-08-12 14:22 -------- d-----w- c:\programdata\NVIDIA
2014-07-21 15:26 . 2014-07-02 19:42 3063256 ----a-w- c:\windows\system32\nvsvc.dll
2014-07-21 15:26 . 2014-07-02 19:42 670552 ----a-w- c:\windows\system32\nvvsvc.exe
2014-07-21 15:26 . 2014-07-02 19:42 62936 ----a-w- c:\windows\system32\nvshext.dll
2014-07-21 15:26 . 2014-07-02 05:14 3826628 ----a-w- c:\windows\system32\nvcoproc.bin
2014-07-21 15:26 . 2014-07-02 19:42 4389848 ----a-w- c:\windows\system32\nvcpl.dll
2014-07-21 15:26 . 2014-07-02 19:42 377288 ----a-w- c:\windows\system32\nvmctray.dll
2014-07-21 15:26 . 2014-07-02 20:54 61728 ----a-w- c:\windows\system32\OpenCL.dll
2014-07-21 15:25 . 2014-07-21 15:35 -------- d-----w- c:\programdata\NVIDIA Corporation
2014-07-21 15:23 . 2014-03-31 16:42 34080 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2014-07-21 15:23 . 2014-03-31 16:42 34760 ----a-w- c:\windows\system32\nvaudcap32v.dll
2014-07-21 15:23 . 2014-07-02 20:54 846832 ----a-w- c:\windows\system32\nvumdshim.dll
2014-07-21 15:23 . 2014-07-02 20:54 16122344 ----a-w- c:\windows\system32\nvwgf2um.dll
2014-07-21 15:23 . 2014-07-02 20:54 14498552 ----a-w- c:\windows\system32\nvd3dum.dll
2014-07-21 15:23 . 2014-06-11 08:44 895264 ----a-w- c:\windows\system32\nvhdagenco3220103.dll
2014-07-21 15:23 . 2014-06-11 08:44 28448 ----a-w- c:\windows\system32\nvhdap32.dll
2014-07-21 15:23 . 2014-06-11 08:44 162592 ----a-w- c:\windows\system32\drivers\nvhda32v.sys
2014-07-21 15:23 . 2014-05-20 02:39 908744 ----a-w- c:\windows\system32\nvdispgenco3233788.dll
2014-07-21 15:23 . 2014-05-20 02:39 1056200 ----a-w- c:\windows\system32\nvdispco3233788.dll
2014-07-21 15:23 . 2014-07-02 20:54 2814656 ----a-w- c:\windows\system32\nvapi.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-08-12 11:01 . 2014-07-07 12:51 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-08-09 09:02 . 2014-06-08 19:01 29160 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2014-07-30 17:13 . 2011-11-11 07:39 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2014-07-22 20:15 . 2014-05-02 05:06 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-07-09 11:35 . 2012-04-02 20:26 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-09 11:35 . 2011-11-08 15:23 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-06-30 01:40 . 2014-07-09 15:28 404480 ----a-w- c:\windows\system32\aepdu.dll
2014-06-30 01:36 . 2014-07-09 15:28 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-06-18 23:56 . 2014-07-09 15:30 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-06-18 23:56 . 2014-07-09 15:30 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-06-18 23:38 . 2014-07-09 15:29 455168 ----a-w- c:\windows\system32\vbscript.dll
2014-06-18 23:37 . 2014-07-09 15:30 61952 ----a-w- c:\windows\system32\iesetup.dll
2014-06-18 23:36 . 2014-07-09 15:30 51200 ----a-w- c:\windows\system32\ieetwproxystub.dll
2014-06-18 23:35 . 2014-07-09 15:30 62464 ----a-w- c:\windows\system32\MshtmlDac.dll
2014-06-18 23:23 . 2014-07-09 15:30 112128 ----a-w- c:\windows\system32\ieUnatt.exe
2014-06-18 23:23 . 2014-07-09 15:30 108032 ----a-w- c:\windows\system32\ieetwcollector.exe
2014-06-18 23:22 . 2014-07-09 15:30 592896 ----a-w- c:\windows\system32\jscript9diag.dll
2014-06-18 23:16 . 2014-07-09 15:30 646144 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2014-06-18 23:06 . 2014-07-09 15:30 32256 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2014-06-18 22:52 . 2014-07-09 15:29 4254720 ----a-w- c:\windows\system32\jscript9.dll
2014-06-18 22:46 . 2014-07-09 15:30 1068032 ----a-w- c:\windows\system32\mshtmlmedia.dll
2014-06-18 22:45 . 2014-07-09 15:30 1964544 ----a-w- c:\windows\system32\inetcpl.cpl
2014-06-18 22:13 . 2014-07-09 15:30 1791488 ----a-w- c:\windows\system32\wininet.dll
2014-06-18 01:51 . 2014-07-09 15:29 646144 ----a-w- c:\windows\system32\osk.exe
2014-06-18 00:52 . 2014-07-09 15:29 2350080 ----a-w- c:\windows\system32\win32k.sys
2014-06-06 09:44 . 2014-07-09 15:29 509440 ----a-w- c:\windows\system32\qedit.dll
2014-06-05 14:26 . 2014-07-09 15:27 1059840 ----a-w- c:\windows\system32\lsasrv.dll
2014-05-30 07:52 . 2014-07-09 15:28 172032 ----a-w- c:\windows\system32\wdigest.dll
2014-05-30 07:52 . 2014-07-09 15:28 65536 ----a-w- c:\windows\system32\TSpkg.dll
2014-05-30 07:52 . 2014-07-09 15:28 247808 ----a-w- c:\windows\system32\schannel.dll
2014-05-30 07:52 . 2014-07-09 15:28 220160 ----a-w- c:\windows\system32\ncrypt.dll
2014-05-30 07:52 . 2014-07-09 15:28 259584 ----a-w- c:\windows\system32\msv1_0.dll
2014-05-30 07:52 . 2014-07-09 15:28 550912 ----a-w- c:\windows\system32\kerberos.dll
2014-05-30 07:52 . 2014-07-09 15:28 17408 ----a-w- c:\windows\system32\credssp.dll
2014-05-30 06:36 . 2014-07-09 15:28 338944 ----a-w- c:\windows\system32\drivers\afd.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"P17RunE"="P17RunE.dll" [2008-03-28 14848]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 951576]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2012-11-07 6756048]
"NvBackend"="c:\program files\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-07-25 2403104]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2014-06-16 224128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"ConsentPromptBehaviorAdmin"= 5 (0x5)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files\Stardock\Fences\FencesMenu.dll" [2009-10-02 128360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll c:\windows\System32\guard32.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^BitTorrent.lnk]
path=c:\users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BitTorrent.lnk
backup=c:\windows\pss\BitTorrent.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Registrace produktu.lnk]
path=c:\users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Registrace produktu.lnk
backup=c:\windows\pss\Logitech . Registrace produktu.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
path=c:\users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
backup=c:\windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
c:\program files\Common Files\Nokia\MPlatform\NokiaMServer [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2013-09-13 18:51 59720 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent]
2014-05-17 04:43 1242704 ----a-w- c:\users\Petr\AppData\Roaming\BitTorrent\BitTorrent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2011-11-10 09:17 3514176 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
2009-10-14 12:36 2793304 ----a-w- c:\program files\Logitech\Logitech WebCam Software\LWS.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMusic FastStart]
2011-10-21 11:19 2193000 ----a-w- c:\program files\Nokia\Nokia Music Player\NokiaMusicPlayer.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2014-01-17 15:24 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2014-05-08 07:51 21444224 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]
2014-06-10 17:46 6170168 ----a-w- c:\users\Petr\AppData\Roaming\Spotify\spotify.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
2014-06-10 17:46 1176632 ----a-w- c:\users\Petr\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
2010-12-14 20:02 2424560 ----a-w- c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe
.
R2 MBAMService;MBAMService;c:\program files\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-11-08 79360]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-04-26 2702848]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-06-18 108032]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys [2014-05-12 51928]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 104264]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2014-03-11 279776]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2012-10-26 104280]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-11-12 1343400]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2012-11-07 494416]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2012-11-07 36072]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-03-15 239168]
S1 MpKsl84ee9652;MpKsl84ee9652;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D647CA39-6C38-4B8A-8488-89B654D9AE73}\MpKsl84ee9652.sys [2014-08-12 39464]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2010-05-10 67656]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files\Common Files\MAGIX Services\Database\bin\FABS.exe [2012-01-23 1858048]
S2 FreemakeVideoCapture;FreemakeVideoCapture;c:\program files\Freemake\CaptureLib\CaptureLibService.exe [2013-07-16 8704]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2011-02-11 35088]
S2 NvNetworkService;NVIDIA Network Service;c:\program files\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-07-25 1720608]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-07-25 17536800]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 413128]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-05-12 23256]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-07-25 19232]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2014-03-31 34080]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MPKSL84EE9652
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-07-18 19:29 1104200 ----a-w- c:\program files\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-08-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-16 11:35]
.
.
------- Doplňkový sken -------
.
uStart Page = About:Blank
uInternet Settings,ProxyServer = localhost:8080
TCP: DhcpNameServer = 213.46.172.37 213.46.172.36
TCP: Interfaces\{C6846616-3E73-45D0-840E-DAE156DADA32}: NameServer = 8.26.56.26,156.154.70.22
FF - ProfilePath - c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*a*v*i*03Äf\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*a*v*i*j!4\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*a*v*i*„cD\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*e*[rř*Źg:\filmy\Simpsonovi\09. Ĺ™ada\09x03 Lizin saxofon.avi**xofon.avi]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*e*[rř*Źg:\filmy\Simpsonovi\09. Ĺ™ada\09x03 Lizin saxofon.avi**xofon.avi\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*i*ëéąg]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*i*ëéąg\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**Śfile:///G:/Filmy/Simpsonovi/11.%20%C5%99ada/11x02%20Bartovo%20napraveni.avi*avi*Ů!Čo]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**Śfile:///G:/Filmy/Simpsonovi/11.%20%C5%99ada/11x02%20Bartovo%20napraveni.avi*avi*Ů!Čo\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*AÄ/%]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*AÄ/%\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'lsass.exe'(636)
c:\windows\system32\guard32.dll
.
- - - - - - - > 'Explorer.exe'(1408)
c:\windows\system32\guard32.dll
c:\windows\System32\gameux.dll
c:\program files\Stardock\Fences\FencesMenu.dll
c:\program files\stardock\fences\DesktopDock.dll
.
Celkový čas: 2014-08-12 16:48:22
ComboFix-quarantined-files.txt 2014-08-12 14:48
ComboFix2.txt 2014-08-12 05:09
ComboFix3.txt 2014-08-11 14:02
ComboFix4.txt 2014-08-08 13:18
.
Před spuštěním: Volných bajtů: 46 812 725 248
Po spuštění: Volných bajtů: 46 727 647 232
.
- - End Of File - - 706C9590A79B9F7F537F1D2A92569CB4
A36C5E4F47E84449FF07ED3517B43A31

Příspěvekod **jaro3** » 12 srp 2014 18:51

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

RegLock::
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*a*v*i*03Äf\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*a*v*i* j!4\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*a*v*i*„cD\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*e*[r  ř *Źg:\filmy\Simpsonovi\09. Ĺ™ada\09x03 Lizin saxofon.avi**xofon.avi]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*e*[r  ř *Źg:\filmy\Simpsonovi\09. Ĺ™ada\09x03 Lizin saxofon.avi**xofon.avi\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*i*ëéąg]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*i*ëéąg\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**Śfile:///G:/Filmy/Simpsonovi/11.%20%C5%99ada/11x02%20Bartovo%20napraveni.avi*avi*Ů!Čo]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**Śfile:///G:/Filmy/Simpsonovi/11.%20%C5%99ada/11x02%20Bartovo%20napraveni.avi*avi*Ů!Čo\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*AÄ/%]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*AÄ/%\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

akiller · Příspěvekod **akiller** » 12 srp 2014 20:24

Zde je log z ComboFix:

ComboFix 14-08-12.01 - Petr 12.08.2014 19:46:48.12.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3326.2043 [GMT 2:00]
Spuštěný z: c:\users\Petr\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Petr\Desktop\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
FW: COMODO Firewall *Enabled* {7DB03214-694B-060B-1600-BD4715C36DBB}
SP: COMODO Defense+ *Disabled/Updated* {FEEA52D5-051E-08DD-07EF-2F009097607D}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-07-12 do 2014-08-12 )))))))))))))))))))))))))))))))
.
.
2014-08-12 17:58 . 2014-08-12 17:58 -------- d-----w- c:\users\Public\AppData\Local\temp
2014-08-12 17:58 . 2014-08-12 17:58 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-08-12 14:49 . 2014-07-02 03:11 8217224 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B926795B-8B32-4B08-93C1-AB4432833DAA}\mpengine.dll
2014-08-12 11:08 . 2014-07-02 03:11 8217224 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-08-11 14:44 . 2014-08-11 14:44 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2014-08-11 14:39 . 2014-08-11 14:39 -------- d-----w- c:\users\Petr\AppData\Local\Sunbelt Software
2014-08-11 14:34 . 2014-08-12 14:11 -------- d-----w- c:\programdata\Lavasoft
2014-08-10 11:40 . 2014-08-12 15:20 -------- d-----w- c:\users\Petr\AppData\Local\CrashDumps
2014-08-09 09:50 . 2014-08-09 09:50 -------- d-----w- c:\users\Petr\AppData\Local\Adobe
2014-08-05 11:50 . 2014-08-05 11:56 -------- d-----w- c:\program files\Grand Theft Auto Vice City Stories
2014-08-04 12:17 . 2014-05-02 14:07 765968 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C6715EC1-C34C-4C65-B6D2-391B1DDE6012}\gapaengine.dll
2014-08-01 09:01 . 2014-08-01 09:01 -------- d-----w- c:\users\Petr\AppData\Roaming\SUPERAntiSpyware.com
2014-08-01 09:01 . 2014-08-01 09:01 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2014-08-01 09:01 . 2014-08-01 09:02 -------- d-----w- c:\program files\SUPERAntiSpyware
2014-07-30 17:17 . 2014-07-30 19:03 -------- d-----w- c:\users\Petr\AppData\Local\Rockstar Games
2014-07-30 17:12 . 2014-07-30 17:12 -------- d-----w- c:\windows\system32\xlive
2014-07-30 17:12 . 2014-07-30 17:12 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2014-07-30 09:54 . 2014-07-02 17:39 609240 ----a-w- c:\windows\system32\nvStreaming.exe
2014-07-30 09:53 . 2014-07-02 19:42 2556360 ----a-w- c:\windows\system32\nvsvcr.dll
2014-07-30 09:39 . 2014-07-25 13:50 1291280 ----a-w- c:\windows\system32\nvspbridge.dll
2014-07-22 21:02 . 2014-07-22 21:02 -------- d-----w- c:\users\Petr\AppData\Roaming\Hulubulu
2014-07-22 21:02 . 2014-07-22 21:02 -------- d-----w- c:\program files\Advanced Renamer
2014-07-21 16:14 . 2014-07-21 16:15 -------- d-----w- C:\gravotte ramdisk
2014-07-21 16:10 . 2014-07-21 16:10 -------- d-----w- c:\program files\PPSOFT.DK
2014-07-21 16:10 . 1998-02-06 19:37 299520 ----a-w- c:\windows\uninst.exe
2014-07-21 15:58 . 2014-08-03 14:02 -------- d-----w- c:\program files\Zrychleni Pocitace
2014-07-21 15:29 . 2014-07-25 13:50 1126480 ----a-w- c:\windows\system32\nvspcap.dll
2014-07-21 15:29 . 2014-07-30 09:40 -------- d-----w- c:\users\Petr\AppData\Local\NVIDIA Corporation
2014-07-21 15:29 . 2014-07-21 15:37 -------- d-----w- c:\users\Petr\AppData\Local\NVIDIA
2014-07-21 15:28 . 2014-07-21 15:28 -------- d-----w- c:\program files\AGEIA Technologies
2014-07-21 15:27 . 2014-08-12 14:22 -------- d-----w- c:\programdata\NVIDIA
2014-07-21 15:26 . 2014-07-02 19:42 3063256 ----a-w- c:\windows\system32\nvsvc.dll
2014-07-21 15:26 . 2014-07-02 19:42 670552 ----a-w- c:\windows\system32\nvvsvc.exe
2014-07-21 15:26 . 2014-07-02 19:42 62936 ----a-w- c:\windows\system32\nvshext.dll
2014-07-21 15:26 . 2014-07-02 05:14 3826628 ----a-w- c:\windows\system32\nvcoproc.bin
2014-07-21 15:26 . 2014-07-02 19:42 4389848 ----a-w- c:\windows\system32\nvcpl.dll
2014-07-21 15:26 . 2014-07-02 19:42 377288 ----a-w- c:\windows\system32\nvmctray.dll
2014-07-21 15:26 . 2014-07-02 20:54 61728 ----a-w- c:\windows\system32\OpenCL.dll
2014-07-21 15:25 . 2014-07-21 15:35 -------- d-----w- c:\programdata\NVIDIA Corporation
2014-07-21 15:23 . 2014-03-31 16:42 34080 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2014-07-21 15:23 . 2014-03-31 16:42 34760 ----a-w- c:\windows\system32\nvaudcap32v.dll
2014-07-21 15:23 . 2014-07-02 20:54 846832 ----a-w- c:\windows\system32\nvumdshim.dll
2014-07-21 15:23 . 2014-07-02 20:54 16122344 ----a-w- c:\windows\system32\nvwgf2um.dll
2014-07-21 15:23 . 2014-07-02 20:54 14498552 ----a-w- c:\windows\system32\nvd3dum.dll
2014-07-21 15:23 . 2014-06-11 08:44 895264 ----a-w- c:\windows\system32\nvhdagenco3220103.dll
2014-07-21 15:23 . 2014-06-11 08:44 28448 ----a-w- c:\windows\system32\nvhdap32.dll
2014-07-21 15:23 . 2014-06-11 08:44 162592 ----a-w- c:\windows\system32\drivers\nvhda32v.sys
2014-07-21 15:23 . 2014-05-20 02:39 908744 ----a-w- c:\windows\system32\nvdispgenco3233788.dll
2014-07-21 15:23 . 2014-05-20 02:39 1056200 ----a-w- c:\windows\system32\nvdispco3233788.dll
2014-07-21 15:23 . 2014-07-02 20:54 2814656 ----a-w- c:\windows\system32\nvapi.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-08-12 17:21 . 2014-07-07 12:51 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-08-09 09:02 . 2014-06-08 19:01 29160 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2014-07-30 17:13 . 2011-11-11 07:39 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2014-07-22 20:15 . 2014-05-02 05:06 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-07-09 11:35 . 2012-04-02 20:26 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-09 11:35 . 2011-11-08 15:23 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-06-30 01:40 . 2014-07-09 15:28 404480 ----a-w- c:\windows\system32\aepdu.dll
2014-06-30 01:36 . 2014-07-09 15:28 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-06-18 23:56 . 2014-07-09 15:30 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-06-18 23:56 . 2014-07-09 15:30 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-06-18 23:38 . 2014-07-09 15:29 455168 ----a-w- c:\windows\system32\vbscript.dll
2014-06-18 23:37 . 2014-07-09 15:30 61952 ----a-w- c:\windows\system32\iesetup.dll
2014-06-18 23:36 . 2014-07-09 15:30 51200 ----a-w- c:\windows\system32\ieetwproxystub.dll
2014-06-18 23:35 . 2014-07-09 15:30 62464 ----a-w- c:\windows\system32\MshtmlDac.dll
2014-06-18 23:23 . 2014-07-09 15:30 112128 ----a-w- c:\windows\system32\ieUnatt.exe
2014-06-18 23:23 . 2014-07-09 15:30 108032 ----a-w- c:\windows\system32\ieetwcollector.exe
2014-06-18 23:22 . 2014-07-09 15:30 592896 ----a-w- c:\windows\system32\jscript9diag.dll
2014-06-18 23:16 . 2014-07-09 15:30 646144 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2014-06-18 23:06 . 2014-07-09 15:30 32256 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2014-06-18 22:52 . 2014-07-09 15:29 4254720 ----a-w- c:\windows\system32\jscript9.dll
2014-06-18 22:46 . 2014-07-09 15:30 1068032 ----a-w- c:\windows\system32\mshtmlmedia.dll
2014-06-18 22:45 . 2014-07-09 15:30 1964544 ----a-w- c:\windows\system32\inetcpl.cpl
2014-06-18 22:13 . 2014-07-09 15:30 1791488 ----a-w- c:\windows\system32\wininet.dll
2014-06-18 01:51 . 2014-07-09 15:29 646144 ----a-w- c:\windows\system32\osk.exe
2014-06-18 00:52 . 2014-07-09 15:29 2350080 ----a-w- c:\windows\system32\win32k.sys
2014-06-06 09:44 . 2014-07-09 15:29 509440 ----a-w- c:\windows\system32\qedit.dll
2014-06-05 14:26 . 2014-07-09 15:27 1059840 ----a-w- c:\windows\system32\lsasrv.dll
2014-05-30 07:52 . 2014-07-09 15:28 172032 ----a-w- c:\windows\system32\wdigest.dll
2014-05-30 07:52 . 2014-07-09 15:28 65536 ----a-w- c:\windows\system32\TSpkg.dll
2014-05-30 07:52 . 2014-07-09 15:28 247808 ----a-w- c:\windows\system32\schannel.dll
2014-05-30 07:52 . 2014-07-09 15:28 220160 ----a-w- c:\windows\system32\ncrypt.dll
2014-05-30 07:52 . 2014-07-09 15:28 259584 ----a-w- c:\windows\system32\msv1_0.dll
2014-05-30 07:52 . 2014-07-09 15:28 550912 ----a-w- c:\windows\system32\kerberos.dll
2014-05-30 07:52 . 2014-07-09 15:28 17408 ----a-w- c:\windows\system32\credssp.dll
2014-05-30 06:36 . 2014-07-09 15:28 338944 ----a-w- c:\windows\system32\drivers\afd.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"P17RunE"="P17RunE.dll" [2008-03-28 14848]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 951576]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2012-11-07 6756048]
"NvBackend"="c:\program files\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-07-25 2403104]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2014-06-16 224128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"ConsentPromptBehaviorAdmin"= 5 (0x5)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files\Stardock\Fences\FencesMenu.dll" [2009-10-02 128360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll c:\windows\System32\guard32.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^BitTorrent.lnk]
path=c:\users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BitTorrent.lnk
backup=c:\windows\pss\BitTorrent.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Registrace produktu.lnk]
path=c:\users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Registrace produktu.lnk
backup=c:\windows\pss\Logitech . Registrace produktu.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
path=c:\users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
backup=c:\windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
c:\program files\Common Files\Nokia\MPlatform\NokiaMServer [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2013-09-13 18:51 59720 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent]
2014-05-17 04:43 1242704 ----a-w- c:\users\Petr\AppData\Roaming\BitTorrent\BitTorrent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2011-11-10 09:17 3514176 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
2009-10-14 12:36 2793304 ----a-w- c:\program files\Logitech\Logitech WebCam Software\LWS.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMusic FastStart]
2011-10-21 11:19 2193000 ----a-w- c:\program files\Nokia\Nokia Music Player\NokiaMusicPlayer.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2014-01-17 15:24 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2014-05-08 07:51 21444224 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]
2014-06-10 17:46 6170168 ----a-w- c:\users\Petr\AppData\Roaming\Spotify\spotify.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
2014-06-10 17:46 1176632 ----a-w- c:\users\Petr\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
2010-12-14 20:02 2424560 ----a-w- c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe
.
R2 MBAMService;MBAMService;c:\program files\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-11-08 79360]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-04-26 2702848]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-06-18 108032]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-05-12 23256]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys [2014-05-12 51928]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 104264]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2014-03-11 279776]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2012-10-26 104280]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-11-12 1343400]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2012-11-07 494416]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2012-11-07 36072]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-03-15 239168]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2010-05-10 67656]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files\Common Files\MAGIX Services\Database\bin\FABS.exe [2012-01-23 1858048]
S2 FreemakeVideoCapture;FreemakeVideoCapture;c:\program files\Freemake\CaptureLib\CaptureLibService.exe [2013-07-16 8704]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2011-02-11 35088]
S2 NvNetworkService;NVIDIA Network Service;c:\program files\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-07-25 1720608]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-07-25 17536800]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 413128]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-07-25 19232]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2014-03-31 34080]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-07-18 19:29 1104200 ----a-w- c:\program files\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-08-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-16 11:35]
.
.
------- Doplňkový sken -------
.
uStart Page = About:Blank
uInternet Settings,ProxyServer = localhost:8080
TCP: DhcpNameServer = 213.46.172.37 213.46.172.36
TCP: Interfaces\{C6846616-3E73-45D0-840E-DAE156DADA32}: NameServer = 8.26.56.26,156.154.70.22
FF - ProfilePath - c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*a*v*i*03Äf\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*a*v*i*j!4\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*a*v*i*„cD\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*e*[rř*Źg:\filmy\Simpsonovi\09. Ĺ™ada\09x03 Lizin saxofon.avi**xofon.avi]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*e*[rř*Źg:\filmy\Simpsonovi\09. Ĺ™ada\09x03 Lizin saxofon.avi**xofon.avi\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*i*ëéąg]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*i*ëéąg\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**Śfile:///G:/Filmy/Simpsonovi/11.%20%C5%99ada/11x02%20Bartovo%20napraveni.avi*avi*Ů!Čo]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**Śfile:///G:/Filmy/Simpsonovi/11.%20%C5%99ada/11x02%20Bartovo%20napraveni.avi*avi*Ů!Čo\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*AÄ/%]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-1382680524-3974183494-2248916863-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*AÄ/%\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'lsass.exe'(636)
c:\windows\system32\guard32.dll
.
- - - - - - - > 'Explorer.exe'(4228)
c:\windows\system32\guard32.dll
c:\program files\Stardock\Fences\FencesMenu.dll
c:\program files\stardock\fences\DesktopDock.dll
c:\windows\System32\bthprops.cpl
.
Celkový čas: 2014-08-12 20:01:51
ComboFix-quarantined-files.txt 2014-08-12 18:01
ComboFix2.txt 2014-08-12 14:48
ComboFix3.txt 2014-08-12 05:09
ComboFix4.txt 2014-08-11 14:02
ComboFix5.txt 2014-08-12 17:45
.
Před spuštěním: Volných bajtů: 46 627 876 864
Po spuštění: Volných bajtů: 46 534 529 024
.
- - End Of File - - 6377F635C3D306183F65656409210B30
A36C5E4F47E84449FF07ED3517B43A31

akiller · Příspěvekod **akiller** » 12 srp 2014 20:26

Zde je log z HJT:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:25:52, on 12.8.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17207)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\Explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
G:\Instalačky\Správa počítače\HijackThis.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = About:Blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = localhost:8080
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre8\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre8\bin\jp2ssv.dll
O4 - HKLM\..\Run: [P17RunE] RunDll32 P17RunE.dll,RunDLLEntry
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{C6846616-3E73-45D0-840E-DAE156DADA32}: NameServer = 8.26.56.26,156.154.70.22
O17 - HKLM\System\CS2\Services\Tcpip\..\{C6846616-3E73-45D0-840E-DAE156DADA32}: NameServer = 8.26.56.26,156.154.70.22
O17 - HKLM\System\CS3\Services\Tcpip\..\{C6846616-3E73-45D0-840E-DAE156DADA32}: NameServer = 8.26.56.26,156.154.70.22
O20 - AppInit_DLLs: C:\Windows\System32\guard32.dll C:\Windows\System32\guard32.dll
O22 - SharedTaskScheduler: FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences\FencesMenu.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FreemakeVideoCapture - Ellora Assets Corp. - C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 5195 bytes

akiller · Příspěvekod **akiller** » 12 srp 2014 20:29

Zde je log z aswmbr:

aswMBR version 1.0.1.2041 Copyright(c) 2014 AVAST Software
Run date: 2014-08-12 20:27:51
-----------------------------
20:27:51.604 OS Version: Windows 6.1.7601 Service Pack 1
20:27:51.604 Number of processors: 2 586 0x1706
20:27:51.604 ComputerName: INTEL UserName: Petr
20:27:52.914 Initialize success
20:27:52.930 VM: initialized successfully
20:27:52.930 VM: Intel CPU supported
20:27:54.348 VM: disk I/O atapi.sys
20:27:58.189 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-4
20:27:58.189 Disk 0 Vendor: ST3320620AS 3.AAG Size: 305244MB BusType: 3
20:27:58.204 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T0L0-2
20:27:58.204 Disk 1 Vendor: ST1000DL002-9TT153 CC32 Size: 953868MB BusType: 3
20:27:58.204 Disk 0 MBR read successfully
20:27:58.204 Disk 0 MBR scan
20:27:58.220 Disk 0 Windows 7 default MBR code
20:27:58.251 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 149997 MB offset 63
20:27:58.251 Disk 0 default boot code
20:27:58.267 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 155245 MB offset 307195904
20:27:58.282 Disk 0 scanning sectors +625137664
20:27:58.329 Disk 0 scanning C:\Windows\system32\drivers
20:28:07.159 Service scanning
20:28:17.517 Service sptd C:\Windows\System32\Drivers\sptd.sys **LOCKED** 32
20:28:20.715 Modules scanning
20:28:40.465 Disk 0 trace - called modules:
20:28:40.496 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll >>UNKNOWN [0x85f2b1e8]<<
20:28:40.496 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86d6e030]
20:28:40.496 3 CLASSPNP.SYS[8cba759e] -> nt!IofCallDriver -> [0x85fbc640]
20:28:40.496 5 ACPI.sys[8c3b83d4] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-4[0x86c8b908]
20:28:40.512 \Driver\atapi[0x86c741c8] -> IRP_MJ_CREATE -> 0x85f2b1e8
20:28:40.512 Scan finished successfully
20:28:49.138 Disk 0 MBR has been saved successfully to "C:\Users\Petr\Desktop\MBR.dat"
20:28:49.138 The log file has been saved successfully to "C:\Users\Petr\Desktop\aswMBR.txt"

Příspěvekod **jaro3** » 12 srp 2014 21:45

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Co problémy?

akiller · Příspěvekod **akiller** » 13 srp 2014 19:32

Hotovo. A problémy... Pořád stejné :cry:

A dokonce bych řekl, že je to ještě horší :evil:

Příspěvekod **Orcus** » 13 srp 2014 23:00

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

akiller · Příspěvekod **akiller** » 13 srp 2014 23:18

Zde je addition:

Additional scan result of Farbar Recovery Scan Tool (x86) Version:13-08-2014
Ran by Petr at 2014-08-13 23:17:19
Running from C:\Users\Petr\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: COMODO Defense+ (Disabled - Up to date) {FEEA52D5-051E-08DD-07EF-2F009097607D}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
FW: COMODO Firewall (Enabled) {7DB03214-694B-060B-1600-BD4715C36DBB}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.1.0.5790 - Adobe Systems Inc.)
Adobe AIR (Version: 1.1.0.5790 - Adobe Systems Inc.) Hidden
Adobe Anchor Service CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Bridge CS4 (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe CMaps CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color - Photoshop Specific CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color EU Extra Settings CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color JA Extra Settings CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color NA Recommended Settings CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color Video Profiles CS CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe CSI CS4 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Default Language CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Device Central CS4 (Version: 2 - Adobe Systems Incorporated) Hidden
Adobe Drive CS4 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe Extension Manager CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Fonts All (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS4 (Version: 4.0.0 - Adobe Systems Incorporated) Hidden
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1 - Adobe Systems Incorporated)
Adobe Media Player (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe Output Module (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 (HKLM\...\Adobe_faf656ef605427ee2f42989c3ad31b8) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Photoshop CS4 (Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 Support (Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.07) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Search for Help (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Service Manager Extension (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Setup (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.1.151 - Adobe Systems, Inc.)
Adobe Type Support CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Update Manager CS4 (Version: 6.0.0 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin (Version: 1.1 - Adobe Systems Incorporated) Hidden
Adobe XMP Panels CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
AdobeColorCommonSetCMYK (Version: 2.0 - Adobe Systems Incorporated) Hidden
AdobeColorCommonSetRGB (Version: 2.0 - Adobe Systems Incorporated) Hidden
Aktualizace NVIDIA 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_HOMESTUDENTR_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_HOMESTUDENTR_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_HOMESTUDENTR_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audacity 1.3.12 (Unicode) (HKLM\...\Audacity 1.3 Beta (Unicode)_is1) (Version: - Audacity Team)
Avidemux 2.6 (32-bit) (HKLM\...\Avidemux 2.6) (Version: 2.6.8.9045 - )
Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\504244733D18C8F63FF584AEB290E3904E791693) (Version: 08/22/2008 7.0.0.0 - Nokia)
BitTorrent (HKCU\...\BitTorrent) (Version: 7.9.1.31141 - BitTorrent Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.4.0.2905 - CDBurnerXP)
CloneSpy 2.63 (HKLM\...\CloneSpy) (Version: - CloneSpy)
COMODO Internet Security (HKLM\...\{FD8E178D-8B4E-42DA-B434-EFF270329B1C}) (Version: 5.0.32580.1142 - COMODO Group Inc.)
Connect (Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden
Cookienator (HKLM\...\{BF307EDA-A176-4D83-9775-D337810CF7A7}) (Version: 2.6.41 - CodeFromThe70s.org)
Creative Audio Control Panel (HKLM\...\AudioCS) (Version: 2.56 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM\...\Creative Software AutoUpdate) (Version: 1.40 - Creative Technology Limited)
Creative Sound Blaster Properties (HKLM\...\Creative Sound Blaster Properties) (Version: 1.02 - Creative Technology Limited)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.45.1.0236 - DT Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.03 - Piriform)
DivX Web Player (HKLM\...\{B7050CBDB2504B34BC2A9CA0A692CC29}) (Version: 1.5.0 - DivX,Inc.)
EVEREST Home Edition v2.20 (HKLM\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Fences (HKLM\...\Fences) (Version: - Stardock Corporation)
Fences (Version: 0.95 - Stardock Corporation) Hidden
File Shredder 2.5 (HKLM\...\File Shredder_is1) (Version: - WipeSoft)
Firebird SQL Server - MAGIX Edition (HKLM\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
FormatFactory 3.00 (HKLM\...\FormatFactory) (Version: 3.00 - Free Time)
Freemake Video Converter verze 4.1.3 (HKLM\...\Freemake Video Converter_is1) (Version: 4.1.3 - Ellora Assets Corporation)
Freemake Video Downloader (HKLM\...\Freemake Video Downloader_is1) (Version: 3.5.2 - Ellora Assets Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
Google Updater (HKLM\...\Google Updater) (Version: 2.4.1808.5272 - Google Inc.)
Grand Theft Auto Vice City (HKLM\...\{4B35F00C-E63D-40DC-9839-DF15A33EAC46}) (Version: 1.00.000 - )
Grand Theft Auto Vice City Stories (HKLM\...\Grand Theft Auto Vice City Stories_is1) (Version: Beta 3 v. 1163 - )
ChromePlus (HKCU\...\ChromePlus) (Version: - Maple studio.)
Java 7 Update 55 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java 8 Update 11 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218011FF}) (Version: 8.0.110 - Oracle Corporation)
Java Auto Updater (Version: 2.8.11.12 - Oracle, Inc.) Hidden
Java DB 10.3.1.4 (HKLM\...\{CD49361E-3FE6-457E-90A1-9C59E29B5D02}) (Version: 10.3.1.4 - Sun Microsystems, Inc)
Java SE Development Kit 7 Update 15 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0170150}) (Version: 1.7.0.150 - Oracle)
Java SE Development Kit 8 Update 11 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180110}) (Version: 8.0.110 - Oracle Corporation)
Java(TM) 6 Update 29 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216021FF}) (Version: 6.0.290 - Oracle)
Java(TM) 6 Update 5 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160050}) (Version: 1.6.0.50 - Sun Microsystems, Inc.)
Java(TM) SE Development Kit 6 Update 5 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0160050}) (Version: 1.6.0.50 - Sun Microsystems, Inc.)
K-Lite Codec Pack 6.0.4 (Basic) (HKLM\...\KLiteCodecPack_is1) (Version: 6.0.4 - )
kuler (Version: 2.0 - Adobe Systems Incorporated) Hidden
Logitech Vid HD (HKLM\...\Logitech Vid) (Version: 7.2 (7259) - Logitech Inc..)
Logitech Webcam Software (HKLM\...\{C27BC2A2-30DD-4014-B22E-63EB0DB572F9}) (Version: 12.10.1113 - Logitech Inc.)
Magic FLAC to MP3 Converter 3.71 (HKLM\...\Magic FLAC to MP3 Converter_is1) (Version: - Magic Video)
MAGIX Burn routines (HKLM\...\{72945A77-20ED-4507-B267-4771EDE4EE58}) (Version: 11.0.0.233 - MAGIX AG)
MAGIX Content and Soundpools (HKLM\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Music Maker 2014 Premium (Demo songs) (HKLM\...\MX.{B807FEBE-E253-4B7E-B23F-364873478065}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Music Maker 2014 Premium (Demo songs) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2014 Premium (HKLM\...\MX.{088A4B09-8FB2-48D0-932A-7F90BE050543}) (Version: 20.0.2.35 - MAGIX AG)
MAGIX Music Maker 2014 Premium (Introductory videos) (HKLM\...\MX.{4BA5297E-60A6-4F18-9AAC-25A878C4E38C}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Music Maker 2014 Premium (Introductory videos) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2014 Premium (Synthesizer and effects) (HKLM\...\MX.{773A4DDC-3B52-42C7-8B7A-52369B9A390B}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Music Maker 2014 Premium (Synthesizer and effects) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2014 Premium (Version: 20.0.2.35 - MAGIX AG) Hidden
MAGIX Music Maker 2014 Premium (Visuals) (HKLM\...\MX.{A6A5590A-0FF9-4FD9-AD8D-17B5BCBE06F5}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Music Maker 2014 Premium (Visuals) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2014 Premium Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2014 Premium Update (Version: 20.0.3.45 - MAGIX AG) Hidden
MAGIX Music Maker 2014 Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Speed burnR (MSI) (HKLM\...\MAGIX_{5C375A31-ED71-4CA0-91E0-8FA47E72D56D}) (Version: 7.0.1.27 - MAGIX AG)
MAGIX Speed burnR (MSI) (Version: 7.0.1.27 - MAGIX AG) Hidden
Malwarebytes Anti-Malware verze 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (CSY) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Antimalware Service CS-CZ Language Pack (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Excel MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Shared MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Client CS-CZ Language Pack (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft WorldWide Telescope (HKLM\...\{AC65361C-7AD1-4811-834A-6AEF497F9927}) (Version: 4.1.74 - Microsoft Research)
Microsoft XML Parser (Version: 8.0.7820.0 - Microsoft Corporation) Hidden
Mozilla Firefox 31.0 (x86 cs) (HKLM\...\Mozilla Firefox 31.0 (x86 cs)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Music NFO Builder v1.20 (HKLM\...\Music NFO Builder_is1) (Version: - Pawel Piecuch)
NetBeans IDE 7.3 (HKLM\...\nbi-nb-base-7.3.0.0.201302132200) (Version: 7.3 - NetBeans.org)
Nokia Connectivity Cable Driver (HKLM\...\{25CFEF55-A945-41FC-86ED-76469F31DF37}) (Version: 7.1.41.0 - Nokia)
Nokia Music Player (HKLM\...\{4FCB1267-7380-4EBA-9A6C-69809C6E8227}) (Version: 2.5.11021 - Nokia Music Player)
Nokia_Multimedia_Common_Components_2_5 (HKLM\...\{25F61E72-AAA4-4607-95D2-1E5139C98FFB}) (Version: 2.7.69 - Nokia)
NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač 3D Vision 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA PhysX (Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA ShadowPlay 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Systémový software PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Update Core (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
OpenAL (HKLM\...\OpenAL) (Version: - )
Ovládací panel NVIDIA 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
PatchBeam v1.10 (HKLM\...\PatchBeam_is1) (Version: 1.00 - ConeXware, Inc.)
PC Connectivity Solution (HKLM\...\{4B28C077-9958-45F1-8BB4-CBF90A69AD4E}) (Version: 11.4.15.0 - Nokia)
PDF Settings CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw (Version: 5.0 - Adobe Systems Incorporated) Hidden
PowerArchiver 2010 (HKLM\...\{789495D8-AF08-4B7C-9022-5F624F3CFB0B}) (Version: 11.71.03 - ConeXware, Inc.)
PSPad editor (HKLM\...\PSPad editor_is1) (Version: - Jan Fiala)
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Ramdisk (HKLM\...\Ramdisk) (Version: - )
Readon TV Movie Radio Player 7.6.0.0 (HKLM\...\{80074966-5231-428D-9AE7-B7D5D2DC3246}) (Version: 7.6.0 - Readon Technology)
Recuva (HKLM\...\Recuva) (Version: 1.42 - Piriform)
Scorpions WinCheater (HKLM\...\Scorpions WinCheater 2.07 (s databází 148)_is1) (Version: - )
SHIELD Streaming (Version: 3.1.100 - NVIDIA Corporation) Hidden
Sibelius 6.1.0.3 Demo (HKLM\...\Sibelius 6 Demo_is1) (Version: - )
Sigil 0.7.4 (HKLM\...\Sigil_is1) (Version: - John Schember)
Skype™ 6.16 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Smart Tests (HKLM\...\Smart Tests) (Version: 1.0.165.0 - Vitware)
Spotify (HKCU\...\Spotify) (Version: 0.9.10.14.g578d350b - Spotify AB)
SQLite3 manager 5.1 lite, release 280207 (HKLM\...\SQLite3 manager LITE_is1) (Version: - Ivan Sivak - SOFTWARE)
Stellarium 0.11.4 (HKLM\...\Stellarium_is1) (Version: 0.11.4 - Stellarium team)
Suite Shared Configuration CS4 (Version: 1.0 - Adobe Systems Incorporated) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 4.47.1000 - SUPERAntiSpyware.com)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TapinRadio 1.18 (HKLM\...\TapinRadio_is1) (Version: - TapinRadio)
Text-To-Speech-Runtime (HKLM\...\{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}) (Version: 1.0.0.0 - Magix Development GmbH)
The Games Factory 2 Demo (HKLM\...\The Games Factory 2 Demo) (Version: - )
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: - )
TS Dějepis (HKLM\...\TS Dějepis) (Version: - )
TS Dějepis (plná instalace) (HKLM\...\TS Dějepis (plná instalace)) (Version: - )
Ucitilek (HKCU\...\9ead8755c3c1fd40) (Version: 1.0.7.128 - David Roško Usoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
VC80CRTRedist - 8.0.50727.762 (Version: 1.0.0 - DivX, Inc) Hidden
VisiPics V1.30 (HKLM\...\VisiPics_is1) (Version: - Ozone)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
Vita 2 (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita 2 add-on content (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Drum Engine (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Electric Piano (Version: 1.0.2.0 - MAGIX AG) Hidden
Vita Jazz Drums (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Pop Brass (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Power Guitar (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Vintage Organ (Version: 1.0.1.0 - MAGIX AG) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Word Manager (HKLM\...\Word Manager) (Version: 1.1.280.0 - Vitware.cz)
yBook (HKLM\...\yBook_is1) (Version: - Spacejock Software)
Yea Chess (HKLM\...\YeaChess) (Version: - )
Zoner Photo Studio 12 (HKLM\...\ZonerPhotoStudio12_CZ_is1) (Version: 12.0.1.7 - ZONER software)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1382680524-3974183494-2248916863-1001_Classes\CLSID\{513a5114-75ea-41c3-994b-712f23eab71f}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1382680524-3974183494-2248916863-1001_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files\Zoner\Photo Studio 12\Program\SHELLEXT.DLL (ZONER software)

==================== Restore Points =========================

13-08-2014 17:07:15 ComboFix created restore point
13-08-2014 19:24:05 Removed Sophos Virus Removal Tool.
13-08-2014 19:32:50 Removed Skype Click to Call
13-08-2014 19:33:55 Removed QuickTime 7

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-10-20 12:35 - 2014-08-12 07:02 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {07FF4B21-0D8E-4D65-A6C1-534AC4FEFC2F} - System32\Tasks\{7EE2D1FA-A015-4059-94A3-E8AE59D96553} => C:\Program Files\City Interactive\MOTORM4X Offroad Extreme\MOTORM4XOffroadExtremeCZ.exe
Task: {56A3D17D-06FF-434E-9074-D0E2B8937914} - System32\Tasks\{5D5F9B0A-15E4-4884-9696-E6824DBEA113} => C:\Program Files\Skype\\Phone\Skype.exe [2014-05-08] (Skype Technologies S.A.)
Task: {883A0EDC-B064-4AFB-BED6-BAB95C44196F} - System32\Tasks\{2E5EA928-3063-4C5C-B659-29D23548AACB} => C:\Users\Public\Sony Online Entertainment\Installed Games\Bullet Run\LaunchPad.exe [2012-08-07] (Sony Online Entertainment, LLC)
Task: {8C290109-7C7F-4E0C-B296-DEAD67CF3DF9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09] (Adobe Systems Incorporated)
Task: {C95CAA9A-B07B-48E5-9D0C-E02B79843611} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {CF09D4DE-463E-481F-9754-984C751F06FF} - System32\Tasks\{8612F7B7-C29D-4FD4-ACD0-94875E607165} => C:\Program Files\Rockstar Games\Grand Theft Auto Vice City\gta-vc.exe [2006-06-01] ()
Task: {E1BCCB3C-90EF-47B6-A190-506B7166DA76} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-04-17] (Piriform Ltd)
Task: {F86DE5E1-6B10-40C9-AD80-3EEB017200A7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2014-07-21 17:26 - 2014-07-02 21:42 - 00107992 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2012-07-10 08:48 - 2009-11-16 20:31 - 00069632 _____ () C:\Program Files\PSPad editor\PSPadShell.dll
2011-11-08 16:17 - 2009-02-06 19:52 - 00073728 _____ () C:\Windows\SYSTEM32\CmdRtr.DLL
2011-11-08 16:17 - 2009-03-26 15:46 - 00148480 _____ () C:\Windows\SYSTEM32\APOMngr.DLL
2014-07-22 21:55 - 2014-07-22 21:55 - 03800688 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00113171 _____ () C:\Program Files\VideoLAN\VLC\libvlc.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 02396691 _____ () C:\Program Files\VideoLAN\VLC\libvlccore.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00268307 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00027667 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00031251 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00066579 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 02043411 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00100371 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_bd_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00244243 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00076307 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_vdr_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00045587 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00060947 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00531475 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00708627 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00114195 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libzip_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00040467 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libstream_filter_rar_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00014867 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00133139 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 01512467 _____ () C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00296979 _____ () C:\Program Files\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 01248787 _____ () C:\Program Files\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00054291 _____ () C:\Program Files\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00038419 _____ () C:\Program Files\VideoLAN\VLC\plugins\control\libglobalhotkeys_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 11148307 _____ () C:\Program Files\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00189971 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00091667 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libavi_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00292371 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00017939 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 01280019 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00018451 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libdts_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00336403 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00344595 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00198675 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libflac_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00027155 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libg711_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00015891 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 01393171 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00146451 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00022035 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00733203 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00018963 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libmpeg_audio_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00026131 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00171027 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libopus_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00019475 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liba52_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00019987 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 10447379 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libavcodec_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00746515 _____ () C:\Program Files\VideoLAN\VLC\plugins\text_renderer\libfreetype_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00013843 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00026643 _____ () C:\Program Files\VideoLAN\VLC\plugins\sse2\libi420_yuy2_sse2_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00018963 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00130579 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmpgatofixed32_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00168979 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdtstofloat32_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00019987 _____ () C:\Program Files\VideoLAN\VLC\plugins\mmx\libi420_yuy2_mmx_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00058899 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\liba52tofloat32_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00587283 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_filter\libswscale_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 01496083 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00019475 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00113683 _____ () C:\Program Files\VideoLAN\VLC\plugins\sse2\libi420_rgb_sse2_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00013331 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\liba52tospdif_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00027667 _____ () C:\Program Files\VideoLAN\VLC\plugins\sse2\libi422_yuy2_sse2_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00014355 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdtstospdif_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00019987 _____ () C:\Program Files\VideoLAN\VLC\plugins\mmx\libi422_yuy2_mmx_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00014867 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00014355 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00015379 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00053779 _____ () C:\Program Files\VideoLAN\VLC\plugins\mmx\libi420_rgb_mmx_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00025619 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00016915 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuy2_i422_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00015379 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libgrey_yuv_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00032275 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00018963 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00020499 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuy2_i420_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00017427 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00015379 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_i420_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00015379 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_filter\libscale_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00013843 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_filter\libyuvp_plugin.dll
2014-07-23 01:29 - 2014-07-23 01:29 - 00068115 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d_plugin.dll
2014-07-09 13:35 - 2014-07-09 13:35 - 17029808 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:24051EFF
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34
AlternateDataStreams: C:\ProgramData\TEMP:8927A071

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^BitTorrent.lnk => C:\Windows\pss\BitTorrent.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Registrace produktu.lnk => C:\Windows\pss\Logitech . Registrace produktu.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk => C:\Windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk.Startup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: BitTorrent => "C:\Users\Petr\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: LogitechQuickCamRibbon => "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
MSCONFIG\startupreg: NokiaMServer => C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
MSCONFIG\startupreg: NokiaMusic FastStart => "C:\Program Files\Nokia\Nokia Music Player\NokiaMusicPlayer.exe" /command:faststart
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Spotify => "C:\Users\Petr\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Petr\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: SUPERAntiSpyware => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (08/13/2014 10:24:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvstreamsvc.exe, verze: 3.1.100.0, časové razítko: 0x53d25782
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea91c
Kód výjimky: 0xc0000005
Posun chyby: 0x000477a2
ID chybujícího procesu: 0x540
Čas spuštění chybující aplikace: 0xnvstreamsvc.exe0
Cesta k chybující aplikaci: nvstreamsvc.exe1
Cesta k chybujícímu modulu: nvstreamsvc.exe2
ID zprávy: nvstreamsvc.exe3

Error: (08/13/2014 10:24:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvstreamsvc.exe, verze: 3.1.100.0, časové razítko: 0x53d25782
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea91c
Kód výjimky: 0xc0000005
Posun chyby: 0x000477a2
ID chybujícího procesu: 0x148
Čas spuštění chybující aplikace: 0xnvstreamsvc.exe0
Cesta k chybující aplikaci: nvstreamsvc.exe1
Cesta k chybujícímu modulu: nvstreamsvc.exe2
ID zprávy: nvstreamsvc.exe3

Error: (08/13/2014 10:24:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvstreamsvc.exe, verze: 3.1.100.0, časové razítko: 0x53d25782
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea91c
Kód výjimky: 0xc0000005
Posun chyby: 0x000477a2
ID chybujícího procesu: 0x9e0
Čas spuštění chybující aplikace: 0xnvstreamsvc.exe0
Cesta k chybující aplikaci: nvstreamsvc.exe1
Cesta k chybujícímu modulu: nvstreamsvc.exe2
ID zprávy: nvstreamsvc.exe3

Error: (08/13/2014 10:23:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvstreamsvc.exe, verze: 3.1.100.0, časové razítko: 0x53d25782
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea91c
Kód výjimky: 0xc0000005
Posun chyby: 0x000477a2
ID chybujícího procesu: 0x107c
Čas spuštění chybující aplikace: 0xnvstreamsvc.exe0
Cesta k chybující aplikaci: nvstreamsvc.exe1
Cesta k chybujícímu modulu: nvstreamsvc.exe2
ID zprávy: nvstreamsvc.exe3

Error: (08/13/2014 10:23:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvstreamsvc.exe, verze: 3.1.100.0, časové razítko: 0x53d25782
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea91c
Kód výjimky: 0xc0000005
Posun chyby: 0x000477a2
ID chybujícího procesu: 0x4fc
Čas spuštění chybující aplikace: 0xnvstreamsvc.exe0
Cesta k chybující aplikaci: nvstreamsvc.exe1
Cesta k chybujícímu modulu: nvstreamsvc.exe2
ID zprávy: nvstreamsvc.exe3

Error: (08/13/2014 10:23:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvstreamsvc.exe, verze: 3.1.100.0, časové razítko: 0x53d25782
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea91c
Kód výjimky: 0xc0000005
Posun chyby: 0x000477a2
ID chybujícího procesu: 0x141c
Čas spuštění chybující aplikace: 0xnvstreamsvc.exe0
Cesta k chybující aplikaci: nvstreamsvc.exe1
Cesta k chybujícímu modulu: nvstreamsvc.exe2
ID zprávy: nvstreamsvc.exe3

Error: (08/13/2014 10:23:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvstreamsvc.exe, verze: 3.1.100.0, časové razítko: 0x53d25782
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea91c
Kód výjimky: 0xc0000005
Posun chyby: 0x000477a2
ID chybujícího procesu: 0x13e0
Čas spuštění chybující aplikace: 0xnvstreamsvc.exe0
Cesta k chybující aplikaci: nvstreamsvc.exe1
Cesta k chybujícímu modulu: nvstreamsvc.exe2
ID zprávy: nvstreamsvc.exe3

Error: (08/13/2014 10:23:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvstreamsvc.exe, verze: 3.1.100.0, časové razítko: 0x53d25782
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea91c
Kód výjimky: 0xc0000005
Posun chyby: 0x000477a2
ID chybujícího procesu: 0x470
Čas spuštění chybující aplikace: 0xnvstreamsvc.exe0
Cesta k chybující aplikaci: nvstreamsvc.exe1
Cesta k chybujícímu modulu: nvstreamsvc.exe2
ID zprávy: nvstreamsvc.exe3

Error: (08/13/2014 10:23:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvstreamsvc.exe, verze: 3.1.100.0, časové razítko: 0x53d25782
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea91c
Kód výjimky: 0xc0000005
Posun chyby: 0x000477a2
ID chybujícího procesu: 0x16e4
Čas spuštění chybující aplikace: 0xnvstreamsvc.exe0
Cesta k chybující aplikaci: nvstreamsvc.exe1
Cesta k chybujícímu modulu: nvstreamsvc.exe2
ID zprávy: nvstreamsvc.exe3

Error: (08/13/2014 10:23:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvstreamsvc.exe, verze: 3.1.100.0, časové razítko: 0x53d25782
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea91c
Kód výjimky: 0xc0000005
Posun chyby: 0x000477a2
ID chybujícího procesu: 0x1678
Čas spuštění chybující aplikace: 0xnvstreamsvc.exe0
Cesta k chybující aplikaci: nvstreamsvc.exe1
Cesta k chybujícímu modulu: nvstreamsvc.exe2
ID zprávy: nvstreamsvc.exe3

System errors:
=============
Error: (08/13/2014 11:07:35 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 40. Stav interní chyby: 252

Error: (08/13/2014 07:29:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (08/13/2014 07:29:58 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Windows Search ukončena s chybou %%-1073473535, specifickou pro službu.

Error: (08/13/2014 07:04:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Process Monitor byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (08/13/2014 06:37:05 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (08/12/2014 07:58:28 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (08/12/2014 07:52:02 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (08/12/2014 07:46:30 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (08/12/2014 04:44:51 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (08/12/2014 04:38:16 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E8200 @ 2.66GHz
Percentage of memory in use: 59%
Total physical RAM: 3326.49 MB
Available physical RAM: 1344.55 MB
Total Pagefile: 6651.27 MB
Available Pagefile: 4470.61 MB
Total Virtual: 2047.88 MB
Available Virtual: 1887.65 MB

==================== Drives ================================

Drive c: (win7) (Fixed) (Total:151.61 GB) (Free:47.78 GB) NTFS
Drive d: (winXP) (Fixed) (Total:146.48 GB) (Free:128.09 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (GTA VICE CITY) (CDROM) (Total:1.39 GB) (Free:0 GB) CDFS
Drive f: (Dokumenty) (Fixed) (Total:244.14 GB) (Free:128.53 GB) NTFS
Drive g: (Multimedia) (Fixed) (Total:687.37 GB) (Free:132.67 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or

(Size: 298 GB) (Disk ID: 4310430F)
Partition 1: (Active) - (Size=146 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=152 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 932 GB) (Disk ID: A2EBA2EB)
Partition 1: (Not Active) - (Size=244 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=687 GB) - (Type=07 NTFS)

==================== End Of Log ============================

akiller · Příspěvekod **akiller** » 13 srp 2014 23:19

Zde je FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:13-08-2014
Ran by Petr (administrator) on INTEL on 13-08-2014 23:16:42
Running from C:\Users\Petr\Desktop
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Creative Technology Ltd) C:\Program Files\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Ellora Assets Corp.) C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(MAGIX AG) C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

AppInit_DLLs: C:\Windows\System32\guard32.dll => C:\Windows\System32\guard32.dll [301264 2012-11-08] (COMODO)
AppInit_DLLs: C:\Windows\System32\guard32.dll => C:\Windows\System32\guard32.dll [301264 2012-11-08] (COMODO)
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: localhost:8080
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = About:Blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll (Oracle Corporation)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{C6846616-3E73-45D0-840E-DAE156DADA32}: [NameServer]8.26.56.26,156.154.70.22

FireFox:
========
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1211151.dll (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin: @java.com/DTPlugin,version=11.11.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.11.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @pack.google.com/Google Updater;version=14 -> C:\Program Files\Google\Google Updater\2.4.1808.5272\npCIDetect14.dll (Google)
FF Plugin: @pages.tvunetworks.com/WebPlayer -> C:\Program Files\TVUPlayer\npTVUAx.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\searchplugins\thepiratebayorg.xml
FF SearchPlugin: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\searchplugins\torrents-search.xml
FF SearchPlugin: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\searchplugins\wikipedia-eng.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: No Name - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2013-04-06]
FF Extension: Český slovník pro kontrolu pravopisu - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\cs@dictionaries.addons.mozilla.org [2014-02-06]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\ich@maltegoetz.de [2014-02-06]
FF Extension: Pocket - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\isreaditlater@ideashower.com [2014-07-03]
FF Extension: Empty Cache Button - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\{4cc4a13b-94a6-7568-370d-5f9de54a9c7f} [2014-05-08]
FF Extension: EPUBReader - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F} [2014-02-06]
FF Extension: Classic Theme Restorer - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2014-04-29]
FF Extension: Element Hiding Helper for Adblock Plus - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\elemhidehelper@adblockplus.org.xpi [2014-02-06]
FF Extension: Ghostery - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\firefox@ghostery.com.xpi [2014-02-06]
FF Extension: Thumbnail Zoom Plus - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\thumbnailZoom@dadler.github.com.xpi [2014-02-06]
FF Extension: Flagfox - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2014-03-08]
FF Extension: NoScript - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-02-06]
FF Extension: Download YouTube Videos as MP4 - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2014-02-07]
FF Extension: Adblock Plus - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-06]
FF Extension: Tab Mix Plus - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2014-02-06]
FF Extension: Download Manager Tweak - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\j8ivwl1h.default\Extensions\{F8A55C97-3DB6-4961-A81D-0DE0080E53CB}.xpi [2014-02-06]
FF HKLM\...\Firefox\Extensions: [fmdownloader@gmail.com] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com
FF Extension: Freemake Video Downloader Plugin - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com [2013-07-20]
FF HKLM\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com
FF Extension: Freemake Youtube Download Button - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com [2013-07-20]
FF HKLM\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox
FF Extension: Freemake Video Converter Plugin - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox [2014-02-07]

Chrome:
=======
CHR Extension: (No Name) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-06-03]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [1990464 2012-11-08] (COMODO)
S3 Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2011-11-08] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [307200 2008-11-18] (Creative Technology Ltd) [File not signed]
R2 Fabs; C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [File not signed]
R2 FreemakeVideoCapture; C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe [8704 2013-07-17] (Ellora Assets Corp.) [File not signed]
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2014-03-11] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [279776 2014-03-11] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [17536800 2014-07-25] (NVIDIA Corporation)
S4 ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [632832 2011-03-21] (Nokia) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [494416 2012-11-08] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [36072 2012-11-08] (COMODO)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [239168 2014-03-15] (DT Soft Ltd)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [82952 2012-11-08] (COMODO)
R3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2Mon.sys [25752 2009-10-07] ()
R3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [110296 2014-08-13] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-05-12] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231960 2014-01-25] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19232 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2014-03-31] (NVIDIA Corporation)
R3 P17; C:\Windows\System32\drivers\P17.sys [1147392 2009-04-21] (Creative Technology Ltd.)
R3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
R3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12872 2010-02-17] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67656 2010-05-10] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [428088 2011-12-27] () [File not signed]
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [31360 2013-02-08] (The OpenVPN Project)
U3 ag5f5io0; C:\Windows\system32\Drivers\ag5f5io0.sys [0 ] (Advanced Micro Devices)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
U4 npf; system32\drivers\npf.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-13 23:16 - 2014-08-13 23:17 - 00016251 _____ () C:\Users\Petr\Desktop\FRST.txt
2014-08-13 23:16 - 2014-08-13 23:16 - 00000000 ____D () C:\FRST
2014-08-13 23:08 - 2014-08-13 23:08 - 01092096 _____ (Farbar) C:\Users\Petr\Desktop\FRST.exe
2014-08-13 23:01 - 2014-08-13 23:01 - 00000000 ____D () C:\ProgramData\F-Secure
2014-08-13 19:58 - 2014-08-13 21:05 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-08-13 19:29 - 2014-08-13 19:29 - 00000168 _____ () C:\Windows\setupact.log
2014-08-13 19:29 - 2014-08-13 19:29 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-11 16:44 - 2014-08-11 16:44 - 00101720 _____ (Sunbelt Software) C:\Windows\system32\Drivers\SBREDrv.sys
2014-08-11 16:39 - 2014-08-11 16:39 - 00000000 ____D () C:\Users\Petr\AppData\Local\Sunbelt Software
2014-08-11 16:34 - 2014-08-12 16:11 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-08-10 13:40 - 2014-08-12 17:20 - 00000000 ____D () C:\Users\Petr\AppData\Local\CrashDumps
2014-08-09 11:50 - 2014-08-09 11:50 - 00000000 ____D () C:\Users\Petr\AppData\Local\Adobe
2014-08-08 14:48 - 2014-08-13 19:05 - 00000000 ____D () C:\Windows\erdnt
2014-08-05 13:56 - 2014-08-05 13:56 - 00001148 _____ () C:\Users\Petr\Desktop\Grand Theft Auto Vice City Stories.lnk
2014-08-05 13:56 - 2014-08-05 13:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto Vice City Stories
2014-08-05 13:50 - 2014-08-05 13:56 - 00000000 ____D () C:\Program Files\Grand Theft Auto Vice City Stories
2014-08-01 11:01 - 2014-08-01 11:02 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-08-01 11:01 - 2014-08-01 11:01 - 00001969 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-08-01 11:01 - 2014-08-01 11:01 - 00000000 ____D () C:\Users\Petr\AppData\Roaming\SUPERAntiSpyware.com
2014-08-01 11:01 - 2014-08-01 11:01 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-08-01 11:01 - 2014-08-01 11:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-07-30 20:50 - 2014-08-06 21:04 - 00000000 ____D () C:\Users\Petr\Documents\GTA Vice City Stories User Files
2014-07-30 19:19 - 2014-07-30 19:19 - 00000000 ____D () C:\Users\Petr\Documents\Rockstar Games
2014-07-30 19:17 - 2014-07-30 21:03 - 00000000 ____D () C:\Users\Petr\AppData\Local\Rockstar Games
2014-07-30 19:12 - 2014-07-30 19:12 - 00000000 ____D () C:\Windows\system32\xlive
2014-07-30 19:12 - 2014-07-30 19:12 - 00000000 ____D () C:\Program Files\Microsoft Games for Windows - LIVE
2014-07-30 11:54 - 2014-07-02 19:39 - 00609240 _____ (NVIDIA Corporation) C:\Windows\system32\nvStreaming.exe
2014-07-30 11:53 - 2014-07-02 21:42 - 02556360 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-07-30 11:49 - 2014-07-02 22:54 - 24198088 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll
2014-07-30 11:49 - 2014-07-02 22:54 - 15296456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-07-30 11:49 - 2014-07-02 22:54 - 11283344 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-07-30 11:49 - 2014-07-02 22:54 - 11222048 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-07-30 11:49 - 2014-07-02 22:54 - 10681176 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-07-30 11:49 - 2014-07-02 22:54 - 03988952 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-07-30 11:49 - 2014-07-02 22:54 - 01054552 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3234052.dll
2014-07-30 11:49 - 2014-07-02 22:54 - 00907552 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3234052.dll
2014-07-30 11:49 - 2014-07-02 22:54 - 00907096 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR.dll
2014-07-30 11:49 - 2014-07-02 22:54 - 00869152 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC.dll
2014-07-30 11:49 - 2014-07-02 22:54 - 00417752 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI.dll
2014-07-30 11:49 - 2014-07-02 22:54 - 00347936 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-07-30 11:49 - 2014-07-02 22:54 - 00305600 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim32.dll
2014-07-30 11:49 - 2014-07-02 22:54 - 00146480 _____ (NVIDIA Corporation) C:\Windows\system32\nvinit.dll
2014-07-30 11:39 - 2014-07-25 15:50 - 01291280 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge.dll
2014-07-22 23:02 - 2014-07-22 23:02 - 00000000 ____D () C:\Users\Petr\AppData\Roaming\Hulubulu
2014-07-22 22:16 - 2014-07-22 22:15 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-07-22 22:16 - 2014-07-22 22:15 - 00176552 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-07-22 22:16 - 2014-07-22 22:15 - 00176040 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-07-22 21:54 - 2014-07-22 21:55 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-07-21 18:14 - 2014-07-21 18:15 - 00000000 ____D () C:\gravotte ramdisk
2014-07-21 18:10 - 2014-07-21 18:10 - 00000000 ____D () C:\Program Files\PPSOFT.DK
2014-07-21 18:10 - 1998-02-06 21:37 - 00299520 _____ (InstallShield Corporation, Inc.) C:\Windows\uninst.exe
2014-07-21 17:58 - 2014-08-03 16:02 - 00000000 ____D () C:\Program Files\Zrychleni Pocitace
2014-07-21 17:58 - 2014-07-21 18:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zrychleni Pocitace
2014-07-21 17:29 - 2014-07-30 11:40 - 00000000 ____D () C:\Users\Petr\AppData\Local\NVIDIA Corporation
2014-07-21 17:29 - 2014-07-25 15:50 - 01126480 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap.dll
2014-07-21 17:29 - 2014-07-21 17:37 - 00000000 ____D () C:\Users\Petr\AppData\Local\NVIDIA
2014-07-21 17:28 - 2014-07-21 17:28 - 00000000 ____D () C:\Program Files\AGEIA Technologies
2014-07-21 17:27 - 2014-08-13 19:29 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-21 17:26 - 2014-07-02 22:54 - 00061728 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-07-21 17:26 - 2014-07-02 21:42 - 04389848 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-07-21 17:26 - 2014-07-02 21:42 - 03063256 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
2014-07-21 17:26 - 2014-07-02 21:42 - 00670552 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-07-21 17:26 - 2014-07-02 21:42 - 00377288 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-07-21 17:26 - 2014-07-02 21:42 - 00062936 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-07-21 17:26 - 2014-07-02 07:14 - 03826628 _____ () C:\Windows\system32\nvcoproc.bin
2014-07-21 17:25 - 2014-07-21 17:35 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-07-21 17:23 - 2014-07-02 22:54 - 16122344 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2um.dll
2014-07-21 17:23 - 2014-07-02 22:54 - 14498552 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dum.dll
2014-07-21 17:23 - 2014-07-02 22:54 - 02814656 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi.dll
2014-07-21 17:23 - 2014-07-02 22:54 - 00846832 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshim.dll
2014-07-21 17:23 - 2014-07-02 22:54 - 00021215 _____ () C:\Windows\system32\nvinfo.pb
2014-07-21 17:23 - 2014-06-11 10:44 - 00895264 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco3220103.dll
2014-07-21 17:23 - 2014-06-11 10:44 - 00162592 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda32v.sys
2014-07-21 17:23 - 2014-06-11 10:44 - 00028448 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap32.dll
2014-07-21 17:23 - 2014-05-20 04:39 - 01056200 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3233788.dll
2014-07-21 17:23 - 2014-05-20 04:39 - 00908744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3233788.dll
2014-07-21 17:23 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap32v.dll
2014-07-21 17:23 - 2014-03-31 18:42 - 00034080 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad32v.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-13 23:17 - 2014-08-13 23:16 - 00016251 _____ () C:\Users\Petr\Desktop\FRST.txt
2014-08-13 23:16 - 2014-08-13 23:16 - 00000000 ____D () C:\FRST
2014-08-13 23:08 - 2014-08-13 23:08 - 01092096 _____ (Farbar) C:\Users\Petr\Desktop\FRST.exe
2014-08-13 23:01 - 2014-08-13 23:01 - 00000000 ____D () C:\ProgramData\F-Secure
2014-08-13 22:35 - 2012-04-16 15:37 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-13 22:22 - 2011-11-08 15:48 - 01241987 _____ () C:\Windows\WindowsUpdate.log
2014-08-13 21:44 - 2014-07-07 14:51 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-13 21:33 - 2014-05-13 20:00 - 00000000 ___RD () C:\Program Files\Skype
2014-08-13 21:30 - 2011-11-09 11:26 - 00000000 ____D () C:\Program Files\Winamp
2014-08-13 21:05 - 2014-08-13 19:58 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-08-13 19:57 - 2014-07-07 14:50 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-13 19:36 - 2009-07-14 06:34 - 00013456 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-13 19:36 - 2009-07-14 06:34 - 00013456 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-13 19:29 - 2014-08-13 19:29 - 00000168 _____ () C:\Windows\setupact.log
2014-08-13 19:29 - 2014-08-13 19:29 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-13 19:29 - 2014-07-21 17:27 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-08-13 19:29 - 2012-04-08 14:24 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-13 19:05 - 2014-08-08 14:48 - 00000000 ____D () C:\Windows\erdnt
2014-08-12 21:41 - 2012-10-19 16:39 - 00000000 ____D () C:\Users\Petr\AppData\Roaming\vlc
2014-08-12 19:58 - 2009-07-14 04:04 - 00000215 _____ () C:\Windows\system.ini
2014-08-12 17:20 - 2014-08-10 13:40 - 00000000 ____D () C:\Users\Petr\AppData\Local\CrashDumps
2014-08-12 16:11 - 2014-08-11 16:34 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-08-12 07:00 - 2009-07-14 04:03 - 59404288 _____ () C:\Windows\system32\config\SOFTWARE.bak
2014-08-12 07:00 - 2009-07-14 04:03 - 26476544 _____ () C:\Windows\system32\config\SYSTEM.bak
2014-08-12 07:00 - 2009-07-14 04:03 - 04919296 _____ () C:\Windows\system32\config\DEFAULT.bak
2014-08-12 07:00 - 2009-07-14 04:03 - 00098304 _____ () C:\Windows\system32\config\SAM.bak
2014-08-12 07:00 - 2009-07-14 04:03 - 00028672 _____ () C:\Windows\system32\config\SECURITY.bak
2014-08-12 06:59 - 2011-11-08 16:09 - 00000000 ____D () C:\Users\Petr
2014-08-11 16:46 - 2009-07-14 06:53 - 00032602 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-11 16:44 - 2014-08-11 16:44 - 00101720 _____ (Sunbelt Software) C:\Windows\system32\Drivers\SBREDrv.sys
2014-08-11 16:39 - 2014-08-11 16:39 - 00000000 ____D () C:\Users\Petr\AppData\Local\Sunbelt Software
2014-08-09 11:50 - 2014-08-09 11:50 - 00000000 ____D () C:\Users\Petr\AppData\Local\Adobe
2014-08-09 11:02 - 2014-06-08 21:01 - 00029160 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-08-09 10:56 - 2014-03-22 11:09 - 00000000 ____D () C:\AdwCleaner
2014-08-08 21:57 - 2014-04-25 13:05 - 00000000 ____D () C:\Users\Petr\AppData\Roaming\avidemux
2014-08-08 18:55 - 2011-11-09 11:12 - 00000000 ____D () C:\Program Files\Google
2014-08-07 12:07 - 2011-11-16 06:48 - 00000000 ____D () C:\Users\Petr\TapinRadio
2014-08-06 21:04 - 2014-07-30 20:50 - 00000000 ____D () C:\Users\Petr\Documents\GTA Vice City Stories User Files
2014-08-05 13:56 - 2014-08-05 13:56 - 00001148 _____ () C:\Users\Petr\Desktop\Grand Theft Auto Vice City Stories.lnk
2014-08-05 13:56 - 2014-08-05 13:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto Vice City Stories
2014-08-05 13:56 - 2014-08-05 13:50 - 00000000 ____D () C:\Program Files\Grand Theft Auto Vice City Stories
2014-08-03 16:34 - 2011-11-20 17:15 - 00000000 ____D () C:\Users\Petr\AppData\Roaming\DAEMON Tools Lite
2014-08-03 16:02 - 2014-07-21 17:58 - 00000000 ____D () C:\Program Files\Zrychleni Pocitace
2014-08-01 21:54 - 2011-11-08 16:12 - 01609092 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-01 19:11 - 2011-11-16 06:51 - 00000000 ____D () C:\Users\Petr\Documents\Readon Player
2014-08-01 11:02 - 2014-08-01 11:01 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-08-01 11:01 - 2014-08-01 11:01 - 00001969 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-08-01 11:01 - 2014-08-01 11:01 - 00000000 ____D () C:\Users\Petr\AppData\Roaming\SUPERAntiSpyware.com
2014-08-01 11:01 - 2014-08-01 11:01 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-08-01 11:01 - 2014-08-01 11:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-07-30 21:07 - 2012-08-24 10:17 - 00000000 ____D () C:\Program Files\Rockstar Games
2014-07-30 21:07 - 2011-11-08 16:17 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-07-30 21:06 - 2012-08-24 10:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-07-30 21:05 - 2009-07-14 06:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-07-30 21:03 - 2014-07-30 19:17 - 00000000 ____D () C:\Users\Petr\AppData\Local\Rockstar Games
2014-07-30 20:40 - 2014-01-28 21:13 - 00000000 ____D () C:\Users\Petr\AppData\Roaming\uTorrent
2014-07-30 19:19 - 2014-07-30 19:19 - 00000000 ____D () C:\Users\Petr\Documents\Rockstar Games
2014-07-30 19:13 - 2011-11-11 09:39 - 00107888 _____ (Sony DADC Austria AG.) C:\Windows\system32\CmdLineExt.dll
2014-07-30 19:12 - 2014-07-30 19:12 - 00000000 ____D () C:\Windows\system32\xlive
2014-07-30 19:12 - 2014-07-30 19:12 - 00000000 ____D () C:\Program Files\Microsoft Games for Windows - LIVE
2014-07-30 11:55 - 2012-09-17 09:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-07-30 11:54 - 2011-11-08 16:19 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-07-30 11:40 - 2014-07-21 17:29 - 00000000 ____D () C:\Users\Petr\AppData\Local\NVIDIA Corporation
2014-07-25 15:50 - 2014-07-30 11:39 - 01291280 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge.dll
2014-07-25 15:50 - 2014-07-21 17:29 - 01126480 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap.dll
2014-07-24 16:42 - 2014-05-13 20:00 - 00000000 ____D () C:\Users\Petr\AppData\Roaming\Skype
2014-07-24 16:26 - 2011-11-11 09:40 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-24 09:25 - 2011-11-11 09:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-23 15:00 - 2014-02-06 19:57 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-07-22 23:50 - 2014-06-05 07:18 - 00000000 ____D () C:\Program Files\ReNamer
2014-07-22 23:02 - 2014-07-22 23:02 - 00000000 ____D () C:\Users\Petr\AppData\Roaming\Hulubulu
2014-07-22 22:16 - 2011-11-08 16:29 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-07-22 22:15 - 2014-07-22 22:16 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-07-22 22:15 - 2014-07-22 22:16 - 00176552 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-07-22 22:15 - 2014-07-22 22:16 - 00176040 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-07-22 22:15 - 2014-05-02 07:06 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-07-22 22:15 - 2011-11-08 16:29 - 00000000 ____D () C:\Program Files\Java
2014-07-22 21:55 - 2014-07-22 21:54 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-07-21 18:15 - 2014-07-21 18:14 - 00000000 ____D () C:\gravotte ramdisk
2014-07-21 18:10 - 2014-07-21 18:10 - 00000000 ____D () C:\Program Files\PPSOFT.DK
2014-07-21 18:03 - 2014-07-21 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zrychleni Pocitace
2014-07-21 17:37 - 2014-07-21 17:29 - 00000000 ____D () C:\Users\Petr\AppData\Local\NVIDIA
2014-07-21 17:35 - 2014-07-21 17:25 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-07-21 17:29 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-07-21 17:28 - 2014-07-21 17:28 - 00000000 ____D () C:\Program Files\AGEIA Technologies
2014-07-21 17:26 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Help
2014-07-15 15:01 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache

Some content of TEMP:
====================
C:\Users\Petr\AppData\Local\temp\cleanup_tool.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-08-11 03:24

==================== End Of Log ============================

Prosím o kontrolu logu z HJT Vyřešeno

Re: Prosím o kontrolu logu z HJT

Re: Prosím o kontrolu logu z HJT

Re: Prosím o kontrolu logu z HJT

Re: Prosím o kontrolu logu z HJT

Re: Prosím o kontrolu logu z HJT

Re: Prosím o kontrolu logu z HJT

Re: Prosím o kontrolu logu z HJT

Re: Prosím o kontrolu logu z HJT

Re: Prosím o kontrolu logu z HJT

Re: Prosím o kontrolu logu z HJT

Re: Prosím o kontrolu logu z HJT

Re: Prosím o kontrolu logu z HJT

Kdo je online