Prosím o kontrolu logu - zvýšený ping

TGVNeer · Příspěvekod **TGVNeer** » 22 dub 2015 15:17

Ahoj, poslední dobou mám problémy v prohlížeči s vyskakujícími stránkami a ve hrách (konkrétně Counter-Strike: Global Offensive) vyšší ping.
Přikládám zde tedy log z HJT.
Děkuji za pomoc. :)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:16:03, on 22.4.2015
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\WhatPulse2\whatpulse.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\SDILENA\Steam\steam.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Venki\Desktop\Skladiště blbin\old\Program Files\HP\HP LaserJet Professional CP1020 Series\HPCP1020STRAY.EXE
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\SDILENA\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 7\RealTimeProtector.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\WhatPulse2\whatpulse-watchdog.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Skillbrains\lightshot\5.2.1.1\Lightshot.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Venki\Desktop\Stažené z netu\hijackthis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [HP CP1020 System Tray] "C:\Users\Venki\Desktop\Skladiště blbin\old\Program Files\HP\HP LaserJet Professional CP1020 Series\HPCP1020STRAY.EXE"
O4 - HKLM\..\Run: [Lightshot] C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Raptr] "C:\Program Files (x86)\Raptr\raptrstub.exe" --startup
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [CCleaner] "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
O4 - HKCU\..\Run: [WhatPulse] "C:\Program Files (x86)\WhatPulse2\whatpulse.exe"
O4 - HKCU\..\Run: [Advanced SystemCare 7] "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Fiddler - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe" (file missing)
O9 - Extra 'Tools' menuitem: Fiddler - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe" (file missing)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 12186 bytes

Reklama

mople71 · Příspěvekod **mople71** » 22 dub 2015 15:24

Ahoj!

Rád Ti pomohu s tvým problémem. Čti prosím mé instrukce pozorně a pokud si něčím nebudeš jist, vždy se raději zeptej.

Než začneme, poprosím Tě o odinstalování tohoto programu, jelikož dělá v PC více problémů než užitku:

Kód: Vybrat vše

IObit Advanced SystemCare

Je možné, že budeš muset na chvíli vypnout svůj antivirus.
V rámci čištění budou vyprázdněny dočasné adresáře včetně Koše!

Stáhni si AdwCleaner: http://www.bleepingcomputer.com/download/adwcleaner/

Ulož na Plochu, spusť jako správce, klikni na Scan a poté Logfile, vyjede na tebe log, ten sem prosím přilož. AdwCleaner na chvíli zavři.

Po vložení logu sem si znovu otevři AdwCleaner, kde klikni na Scan a poté tentokrát na Clean. Po restartu PC na tebe vyjede další log, ten sem prosím vlož.

---------------------------------------------------------------------------

Stáhni si Zoek: http://download.bleepingcomputer.com/smeenk/zoek.exe

Ulož na Plochu, otevři jako správce, do otevřeného okna vlož tento kód:

Kód: Vybrat vše

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

A klikni na Run script, chvíli to potrvá. Po restartu PC prosím přilož jeho log.

TGVNeer · Příspěvekod **TGVNeer** » 22 dub 2015 15:30

AdwCleaner před čištěním:
# AdwCleaner v4.201 - Log vytvořen 22/04/2015 v 15:27:40
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-21.3 [Server]
# Operační system : Windows 7 Ultimate (x64)
# Uživatelské jméno : Venki - VENKI-PC
# Spuštěno z : C:\Users\Venki\Desktop\adwcleaner_4.201.exe
# Nastavení : Sken

***** [ Služby ] *****

***** [ Soubory / Složky ] *****

Složka Nalezeno : C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Soubor Nalezeno : C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
Soubor Nalezeno : C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
Soubor Nalezeno : C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage
Soubor Nalezeno : C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage-journal

***** [ Naplánované úlohy ] *****

Úloha Nalezeno : update-sys
Úloha Nalezeno : update-S-1-5-21-734116237-3699838629-408065000-1000
Úloha Nalezeno : update-sys

***** [ Zástupci ] *****

***** [ Registry ] *****

Klíč Nalezeno : HKCU\Software\Conduit
Klíč Nalezeno : HKCU\Software\Local AppWizard-Generated Applications
Klíč Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Klíč Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Klíč Nalezeno : [x64] HKCU\Software\Conduit
Klíč Nalezeno : [x64] HKCU\Software\Local AppWizard-Generated Applications
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}

***** [ Prohlížeče ] *****

-\\ Internet Explorer v8.0.7600.16385

-\\ Mozilla Firefox v32.0.2 (x86 cs)

-\\ Google Chrome v42.0.2311.90

[C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Web data] - Nalezeno [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&c ... 44EF4D8&q={searchTerms}&SSPV=
[C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Nalezeno [Extension] : gighmmpiobklfepjocnamgkkbiglidom

*************************

AdwCleaner[R2].txt - [2618 bytů] - [22/04/2015 15:27:40]

########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [2676 bytů] ##########

TGVNeer · Příspěvekod **TGVNeer** » 22 dub 2015 15:38

Po čištění a restartu:
# AdwCleaner v4.201 - Log vytvořen 22/04/2015 v 15:32:12
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-21.3 [Server]
# Operační system : Windows 7 Ultimate (x64)
# Uživatelské jméno : Venki - VENKI-PC
# Spuštěno z : C:\Users\Venki\Desktop\adwcleaner_4.201.exe
# Nastavení : Čištění

***** [ Služby ] *****

***** [ Soubory / Složky ] *****

[!] Složka Smazáno : C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Soubor Smazáno : C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage
Soubor Smazáno : C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage-journal
Soubor Smazáno : C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
Soubor Smazáno : C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal

***** [ Naplánované úlohy ] *****

Úloha Smazáno : update-sys
Úloha Smazáno : update-S-1-5-21-734116237-3699838629-408065000-1000

***** [ Zástupci ] *****

***** [ Registry ] *****

Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\Local AppWizard-Generated Applications

***** [ Prohlížeče ] *****

-\\ Internet Explorer v8.0.7600.16385

-\\ Mozilla Firefox v32.0.2 (x86 cs)

-\\ Google Chrome v42.0.2311.90

[C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&c ... 44EF4D8&q={searchTerms}&SSPV=
[C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : gighmmpiobklfepjocnamgkkbiglidom

*************************

AdwCleaner[R2].txt - [2762 bytů] - [22/04/2015 15:27:40]
AdwCleaner[R3].txt - [2820 bytů] - [22/04/2015 15:31:29]
AdwCleaner[S1].txt - [2584 bytů] - [22/04/2015 15:32:12]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2642 bytů] ##########

Příspěvekod **jerabina** » 22 dub 2015 16:12

Ahoj, co problémy?

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na Kopírovat do schránky a a vlož sem celý log.

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

===================================================

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

TGVNeer · Příspěvekod **TGVNeer** » 22 dub 2015 19:12

Mbam:
Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 22.4.2015
Čas skenování: 18:57:41
Protokol:
Správce: Ano

Verze: 2.01.6.1022
Databáze malwaru: v2015.03.09.05
Databáze rootkitů: v2015.02.25.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7
CPU: x64
Souborový systém: NTFS
Uživatel: Venki

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 350437
Uplynulý čas: 12 min, 38 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

(end)

mople71 · Příspěvekod **mople71** » 22 dub 2015 19:13

Zoek je kde?

TGVNeer · Příspěvekod **TGVNeer** » 22 dub 2015 19:28

JRT taky nic nenašel..
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.6.0 (04.20.2015:1)
OS: Windows 7 Ultimate x64
Ran by Venki on st 22.04.2015 at 19:19:15,56
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Tasks

~~~ Registry Values

~~~ Registry Keys

~~~ Files

~~~ Folders

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 22.04.2015 at 19:23:27,14
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

TGVNeer · Příspěvekod **TGVNeer** » 22 dub 2015 19:34

Zoek tady:

Zoek.exe v5.0.0.0 Updated 08-April-2015
Tool run by Venki on st 22.04.2015 at 15:40:00,66.
Microsoft Windows 7 Ultimate 6.1.7600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Venki\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

22.4.2015 15:41:23 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\Dying Light deleted successfully
C:\PROGRA~2\Hi-Rez Studios deleted successfully
C:\PROGRA~3\Hi-Rez Studios deleted successfully
C:\PROGRA~3\Splashtop deleted successfully
C:\PROGRA~3\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} deleted successfully
C:\Users\Venki\AppData\Roaming\Awesomium deleted successfully
C:\Users\Venki\AppData\Roaming\Little Inferno deleted successfully
C:\Users\Venki\AppData\Roaming\Publish Providers deleted successfully
C:\Users\Venki\AppData\Roaming\TEdit deleted successfully
C:\Users\Venki\AppData\Local\CrashDumps deleted successfully
C:\Users\Venki\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-734116237-3699838629-408065000-1000\Software\Microsoft\Internet Explorer\SearchScopes\{26D5A3CD-8779-4965-ABF2-52D04D8C4A80} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== FireFox Fix ======================

Deleted from C:\Users\Venki\AppData\Roaming\Mozilla\Firefox\Profiles\2o1jqjcb.default\prefs.js:

Added to C:\Users\Venki\AppData\Roaming\Mozilla\Firefox\Profiles\2o1jqjcb.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Dying Light not found
C:\PROGRA~2\Hi-Rez Studios not found
C:\PROGRA~3\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} not found
C:\Users\Venki\AppData\Roaming\.technic deleted
C:\found.001 deleted
C:\Users\Venki\AppData\Roaming\All CPU MeterV3_Settings.ini deleted
C:\Users\Venki\AppData\Roaming\GPU MeterV2_Settings.ini deleted
C:\Users\Venki\AppData\Roaming\Ping Monitor_Settings.ini deleted
C:\Users\Venki\AppData\Roaming\Scorch_Install.log deleted
C:\Users\Venki\AppData\Roaming\ProductData deleted
C:\Users\Venki\AppData\Roaming\Splashtop deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\WindowsFormsIntegration.resources.dll deleted
C:\PROGRA~3\BSD deleted
C:\PROGRA~3\ProductData deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Venki\AppData\Local\updater.log deleted
C:\Users\Venki\AppData\Local\CrashRpt deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\iedvtool.dll deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\System.Web.Extensions.Design.dll deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
"C:\Users\Venki\AppData\Local\LumaEmu" deleted
"C:\PROGRA~2\Skillbrains\lightshot\5.2.1.1\Lightshot.dll" deleted
"C:\PROGRA~2\Skillbrains\lightshot\5.2.1.1\Lightshot.exe" deleted
"C:\PROGRA~2\Skillbrains\lightshot\5.2.1.1\uploader.dll" deleted
"C:\PROGRA~2\Skillbrains" deleted
"C:\found.000" deleted
"C:\PROGRA~2\Skillbrains\lightshot" deleted
"C:\PROGRA~2\Skillbrains\lightshot\5.2.1.1" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Venki\AppData\Roaming\Mozilla\Firefox\Profiles\2o1jqjcb.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"fiddlerhook@fiddler2.com"="C:\Program Files (x86)\Fiddler2\FiddlerHook" [23.12.2014 16:04]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Venki\AppData\Roaming\Mozilla\Firefox\Profiles\2o1jqjcb.default
- FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Venki\AppData\Roaming\Mozilla\Firefox\Profiles\2o1jqjcb.default
9AE02005247DA91AB1743F5208DBEF76 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll - Shockwave Flash
5950D438CD3DDF2DD50D9FA4E07A6C1C - C:\Users\Venki\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player

==== Chromium Look ======================

Google Chrome Version: 42.0.2311.90 (Possible outdated, latest Stable version: 41.0.2272.118) [z-db]

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[22.03.2015 16:22]

Steam item search between friends. - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajlddciniccidokpjhppahkoefohkchg
Angry Birds - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj
Facebook - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm
SIH - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl
Gladiatus Crazy Add On - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfbmiedjenagoegiiabjfjpkhfocifkp
Tampermonkey - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo
Block site - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh
BetaFish Adblocker - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Bookmark Manager - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik
Don't Starve - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiledapehlkhdehbhppgmekfalnlfajc
1-click timer - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igloknlllonknnbkfgggfkigmeegmakf
Plug+ - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\jflocljnfndnnnlmfaamgbkbibnfmlkf
Steam Market Auto-Agree - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlicldafjdigokihkkdlbpfgehihjodl
Until AM Web App - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\kodigjkcpaoeodlnmcnekemakpnmegnk
S.T.H. - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhoahihokddepjlegpenefeaahdkojog
Auto Refresh Plus - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih
Steam Community Market Quick Buy - Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbfjlhfadijipchkejgenbnnoebonckm

==== Chromium Startpages ======================

C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Preferences
"startup_urls": [ "http://www.seznam.cz/", "https://www.google.cz/", "https://mail.google.com/mail/u/0/?shva=1#inbox", "https://www.youtube.com/", "http://www.facebook.com/home.php" ]

==== Chromium Fix ======================

C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully
C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully
C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbfjlhfadijipchkejgenbnnoebonckm deleted successfully
C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhoahihokddepjlegpenefeaahdkojog deleted successfully
C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lhoahihokddepjlegpenefeaahdkojog_0.localstorage deleted successfully
C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lhoahihokddepjlegpenefeaahdkojog_0.localstorage-journal deleted successfully
C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_lhoahihokddepjlegpenefeaahdkojog_0 deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{19D8867D-68B2-4465-9D53-DCC039B2C255} Google Url="http://www.google.com/cse?cx=partner-pub-3794288947762788%3A7941509802&ie=UTF-8&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A7941509802&q={searchTerms}"

==== Reset Google Chrome ======================

C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Web Data.ReadOnly was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoKMS deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Users\Venki\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Venki\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=24074 folders=2511 24483310326 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Venki\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Venki\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Users\Venki\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" deleted

==== EOF on st 22.04.2015 at 18:13:17,28 ======================

mople71 · Příspěvekod **mople71** » 22 dub 2015 20:03

Stáhni si prosím FRST: http://www.bleepingcomputer.com/downloa ... ool/dl/82/

Ulož na Plochu, spusť jako Správce, potvrď licenci a klikni na tlačítko Scan. Vše ponech v základním nastavení, nic nezatrhávej.

Po dokončení skenu na tebe vyjedou dva logy, oba sem prosím zkopíruj.

TGVNeer · Příspěvekod **TGVNeer** » 22 dub 2015 20:36

první log:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-04-2015
Ran by Venki (administrator) on VENKI-PC on 22-04-2015 20:33:44
Running from C:\Users\Venki\Downloads
Loaded Profiles: Venki (Available profiles: Venki)
Platform: Windows 7 Ultimate (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\WhatPulse2\whatpulse-watchdog.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\WhatPulse2\whatpulse.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12445288 2012-01-16] (Realtek Semiconductor)
HKLM\...\Run: [HP CP1020 System Tray] => C:\Program Files\HP\HP LaserJet Professional CP1020 Series\HPCP1020STRAY.EXE [3344384 2012-11-28] (HP)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-27] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5511352 2015-03-22] (Avast Software s.r.o.)
HKLM-x32\...\Run: [HP CP1020 System Tray] => "C:\Users\Venki\Desktop\Složky to je vše\old\Program Files\HP\HP LaserJet Professional CP1020 Series\HPCP1020STRAY.EXE"
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-02-11] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55568 2015-03-25] (Raptr, Inc)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3978600 2015-03-30] (LogMeIn Inc.)
HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [7404312 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\Run: [WhatPulse] => c:\program files (x86)\whatpulse2\whatpulse.exe [3563520 2014-12-08] ()
HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31087200 2015-01-23] (Skype Technologies S.A.)
HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7404312 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3095840 2014-10-27] (Nota Inc.)
HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\MountPoints2: {3e2f2ea6-f0a5-11e3-a239-902b341e743f} - F:\SISetup.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-03-22] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Venki\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Venki\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Venki\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Venki\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Venki\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Venki\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Venki\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Venki\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-734116237-3699838629-408065000-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-734116237-3699838629-408065000-1000 -> {19D8867D-68B2-4465-9D53-DCC039B2C255} URL = http://www.google.com/cse?cx=partner-pu ... 1509802&q={searchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2014-06-23] (IObit)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-23] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-03-22] (Avast Software s.r.o.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-23] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-03-22] (Avast Software s.r.o.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 8.8.8.8

FireFox:
========
FF ProfilePath: C:\Users\Venki\AppData\Roaming\Mozilla\Firefox\Profiles\2o1jqjcb.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-16] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-23] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-16] ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2011-12-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2011-12-01] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin HKU\S-1-5-21-734116237-3699838629-408065000-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Venki\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-12-05] (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-06-23]
FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook
FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2014-12-23]

Chrome:
=======
CHR HomePage: Default ->
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/", "https://www.google.cz/", "https://mail.google.com/mail/u/0/?shva=1#inbox", "https://www.youtube.com/", "hxxp://www.facebook.com/home.php", "https://www.seznam.cz/", "hxxp://google.cz/", "https://www.youtube.com/feed/subscriptions", "https://www.facebook.com/home.php", "hxxp://csgolounge.com/mytrades", "hxxp://steamcommunity.com/market"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Heartbeat) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\aailiojlhjbichheofhdpcongebcgcgm [2015-04-22]
CHR Extension: (Steam item search between friends.) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajlddciniccidokpjhppahkoefohkchg [2015-04-22]
CHR Extension: (Angry Birds) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2015-04-22]
CHR Extension: (Google Docs) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-06]
CHR Extension: (Google Drive) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-06]
CHR Extension: (YouTube) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-06]
CHR Extension: (Facebook) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2015-04-22]
CHR Extension: (Steam inventory helper) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2015-04-22]
CHR Extension: (Google Search) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-06]
CHR Extension: (Gladiatus Crazy Add On) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfbmiedjenagoegiiabjfjpkhfocifkp [2015-04-22]
CHR Extension: (Tampermonkey) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-04-22]
CHR Extension: (Block site) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh [2015-04-22]
CHR Extension: (Stopwatch) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggnidjbcahhbnleinchgobfnabopeioh [2015-04-22]
CHR Extension: (BetaFish Adblocker) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-04-22]
CHR Extension: (Bookmark Manager) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-22]
CHR Extension: (Avast Online Security) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-04-22]
CHR Extension: (CSGOLounge.com Prices) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgbdpagnjbkhoadnmjcaainaclkmhfla [2015-04-22]
CHR Extension: (1-click timer) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igloknlllonknnbkfgggfkigmeegmakf [2015-04-22]
CHR Extension: (Steam Market Auto-Agree) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlicldafjdigokihkkdlbpfgehihjodl [2015-04-22]
CHR Extension: (Until AM Web App) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\kodigjkcpaoeodlnmcnekemakpnmegnk [2015-04-22]
CHR Extension: (Steam Trader Helper) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhoahihokddepjlegpenefeaahdkojog [2015-04-22]
CHR Extension: (Google Wallet) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-06]
CHR Extension: (Dota2Lounge.com Prices) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\paifmhedgkaeboeoikgfamieodjljomh [2015-04-22]
CHR Extension: (Steam Community Market Quick Buy) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbfjlhfadijipchkejgenbnnoebonckm [2015-04-22]
CHR Extension: (Gmail) - C:\Users\Venki\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-06]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-22]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-03-22] (Avast Software s.r.o.)
S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [145920 2011-01-21] (HP) [File not signed]
R2 HPSIService; C:\Windows\system32\HPSIsvc.exe [124536 2012-12-25] (HP) [File not signed]
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-04-11] (Electronic Arts)
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-01-24] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-03-22] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [88408 2015-03-22] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-03-22] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-03-22] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-03-22] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [441728 2015-03-22] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [136752 2015-03-22] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [268640 2015-03-22] ()
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2014-06-20] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-04-22] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-11-28] (Marvell Semiconductor, Inc.)
S3 njaqwmec; No ImagePath
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-22 20:33 - 2015-04-22 20:34 - 00021527 _____ () C:\Users\Venki\Downloads\FRST.txt
2015-04-22 20:33 - 2015-04-22 20:33 - 00000000 ____D () C:\FRST
2015-04-22 20:28 - 2015-04-22 20:29 - 02099712 _____ (Farbar) C:\Users\Venki\Downloads\FRST64.exe
2015-04-22 19:47 - 2015-04-22 19:47 - 00000000 ____D () C:\Users\Venki\AppData\Roaming\Gyazo
2015-04-22 19:46 - 2015-04-22 19:46 - 00003746 _____ () C:\Windows\System32\Tasks\GyazoUpdateTaskMachine
2015-04-22 19:46 - 2015-04-22 19:46 - 00000982 _____ () C:\Users\Public\Desktop\Gyazo.lnk
2015-04-22 19:46 - 2015-04-22 19:46 - 00000982 _____ () C:\Users\Public\Desktop\Gyazo GIF.lnk
2015-04-22 19:46 - 2015-04-22 19:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2015-04-22 19:46 - 2015-04-22 19:46 - 00000000 ____D () C:\Program Files (x86)\Gyazo
2015-04-22 19:43 - 2015-04-22 19:45 - 09698760 _____ (Nota Inc. ) C:\Users\Venki\Downloads\Gyazo-2.3.0.exe
2015-04-22 19:23 - 2015-04-22 19:23 - 00000602 _____ () C:\Users\Venki\Desktop\JRT.txt
2015-04-22 19:13 - 2015-04-22 19:13 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-VENKI-PC-Windows-7-Ultimate-(64-bit).dat
2015-04-22 19:13 - 2015-04-22 19:13 - 00000000 ____D () C:\RegBackup
2015-04-22 18:57 - 2015-04-22 18:57 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-04-22 18:56 - 2015-04-22 19:00 - 02685507 _____ (Thisisu) C:\Users\Venki\Downloads\JRT.exe
2015-04-22 18:51 - 2015-04-22 18:57 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Venki\Downloads\mbam-setup-2.1.6.1022.exe
2015-04-22 18:14 - 2015-04-22 19:20 - 00000000 ____D () C:\Users\Venki\AppData\Local\CrashDumps
2015-04-22 18:14 - 2015-04-22 18:14 - 00000000 ____D () C:\Users\Venki\AppData\Roaming\ProductData
2015-04-22 18:13 - 2015-04-22 18:13 - 00000000 ____D () C:\Users\Venki\AppData\Local\CrashRpt
2015-04-22 15:41 - 2015-04-22 18:13 - 00014095 _____ () C:\zoek-results.log
2015-04-22 15:39 - 2015-04-22 16:23 - 00000000 ____D () C:\zoek_backup
2015-04-22 15:27 - 2015-04-22 15:32 - 00000000 ____D () C:\AdwCleaner
2015-04-22 15:26 - 2015-04-22 15:26 - 02217984 _____ () C:\Users\Venki\Desktop\adwcleaner_4.201.exe
2015-04-22 15:26 - 2015-04-22 15:26 - 01305600 _____ () C:\Users\Venki\Desktop\zoek.exe
2015-04-22 15:25 - 2015-04-22 15:25 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2015-04-22 15:08 - 2015-04-22 18:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2015-04-20 17:00 - 2015-04-20 17:00 - 00000000 ____D () C:\Users\Venki\Desktop\Prezentace chemie
2015-04-19 17:44 - 2015-04-19 17:45 - 00123480 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\OpenAL32.dll
2015-04-19 17:44 - 2004-01-14 00:34 - 00044032 _____ (NVIDIA Corporation) C:\Windows\system32\OpenAL32.dll
2015-04-19 17:29 - 2015-04-19 17:45 - 00000000 ____D () C:\Users\Venki\Desktop\Hotline Miami
2015-04-19 12:02 - 2015-04-19 12:02 - 00000746 _____ () C:\Users\Venki\Desktop\Hotline Miami 2.lnk
2015-04-17 16:01 - 2015-04-17 16:01 - 00000000 ____D () C:\Users\Venki\Desktop\Hotline Miami 2 - Wrong Number
2015-04-14 20:33 - 2015-04-14 20:33 - 00000000 _____ () C:\Users\Venki\Desktop\Nový Adobe Photoshop Image 13.psd
2015-03-31 16:19 - 2015-03-31 16:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-03-31 16:19 - 2015-03-31 16:19 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2015-03-30 15:25 - 2015-03-17 21:49 - 1431314408 _____ () C:\Users\Venki\Desktop\Interstellar.avi
2015-03-28 00:12 - 2015-04-07 17:23 - 00000000 ____D () C:\Users\Venki\AppData\Roaming\HandBrake
2015-03-28 00:11 - 2015-03-28 00:11 - 00000000 ____D () C:\Users\Venki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
2015-03-28 00:11 - 2015-03-28 00:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
2015-03-28 00:11 - 2015-03-28 00:11 - 00000000 ____D () C:\Program Files\Handbrake
2015-03-27 22:11 - 2015-04-07 17:19 - 00000000 ____D () C:\Users\Venki\AppData\Roaming\VC
2015-03-27 22:11 - 2015-04-03 22:05 - 00000968 _____ () C:\Users\Public\Desktop\TEncoder Video Converter.lnk
2015-03-27 22:11 - 2015-03-27 22:11 - 00000000 ____D () C:\Users\Venki\Documents\TEncoder
2015-03-27 22:11 - 2015-03-27 22:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TEncoder Video Converter
2015-03-27 22:11 - 2015-03-27 22:11 - 00000000 ____D () C:\Program Files\TEncoder Video Converter
2015-03-27 21:24 - 2015-04-07 16:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2015-03-27 21:24 - 2015-04-07 16:58 - 00000000 ____D () C:\Program Files (x86)\ffdshow
2015-03-27 21:24 - 2014-07-17 19:31 - 00112640 _____ () C:\Windows\SysWOW64\ff_vfw.dll
2015-03-27 21:24 - 2014-07-17 19:30 - 00047616 _____ () C:\Windows\SysWOW64\ff_acm.acm
2015-03-27 20:33 - 2015-03-27 20:34 - 00015840 _____ () C:\Users\Venki\Documents\Track 3 - 2.sfk
2015-03-27 20:33 - 2015-03-27 20:34 - 00001920 _____ () C:\Users\Venki\Documents\Track 3 - 1.sfk
2015-03-27 20:33 - 2015-03-27 20:33 - 02019466 _____ () C:\Users\Venki\Documents\Track 3 - 2.wav
2015-03-27 20:33 - 2015-03-27 20:33 - 00237950 _____ () C:\Users\Venki\Documents\Track 3 - 1.wav
2015-03-26 23:44 - 2015-03-26 23:58 - 22833727 _____ () C:\Users\Venki\Desktop\Señor Cleanfist Cyanide Happiness Shorts.mp4
2015-03-23 23:13 - 2015-04-22 18:57 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-03-23 22:07 - 2015-03-23 22:07 - 00000000 ____D () C:\Users\Venki\AppData\Roaming\AMD
2015-03-23 18:11 - 2015-03-23 18:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2015-03-23 18:11 - 2015-03-23 18:11 - 00000000 ____D () C:\ProgramData\ATI
2015-03-23 18:02 - 2015-04-22 19:18 - 00000000 ____D () C:\Users\Venki\AppData\Roaming\Raptr
2015-03-23 18:02 - 2015-03-26 17:29 - 00000000 ____D () C:\Program Files (x86)\Raptr
2015-03-23 18:02 - 2015-03-23 18:02 - 00053564 _____ () C:\Windows\SysWOW64\CCCInstall_201503231702091212.log
2015-03-23 18:02 - 2015-03-23 18:02 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2015-03-23 18:01 - 2015-03-23 18:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-22 20:31 - 2014-06-06 22:02 - 00000000 ____D () C:\Users\Venki\AppData\Local\WhatPulse
2015-04-22 20:22 - 2014-06-06 20:46 - 00000000 ____D () C:\Users\Venki\AppData\Roaming\Skype
2015-04-22 20:14 - 2014-06-06 19:45 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-22 20:04 - 2014-06-06 21:06 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-22 19:26 - 2009-07-14 06:45 - 00017168 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-22 19:26 - 2009-07-14 06:45 - 00017168 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-22 19:20 - 2015-02-04 18:57 - 00000000 ____D () C:\Users\Venki\AppData\Local\LogMeIn Hamachi
2015-04-22 19:20 - 2014-06-23 18:50 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-04-22 19:17 - 2014-06-06 19:44 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-22 19:16 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-22 18:57 - 2014-08-08 21:29 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-22 18:57 - 2014-08-08 21:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-04-22 18:11 - 2009-07-14 17:18 - 00671392 _____ () C:\Windows\system32\perfh005.dat
2015-04-22 18:11 - 2009-07-14 17:18 - 00141988 _____ () C:\Windows\system32\perfc005.dat
2015-04-22 18:11 - 2009-07-14 07:13 - 01590786 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-22 15:39 - 2014-06-06 19:39 - 00000000 ____D () C:\Users\Venki\Desktop\Stažené z netu
2015-04-22 15:08 - 2014-08-01 12:08 - 00000424 _____ () C:\Users\Venki\AppData\Local\UserProducts.xml
2015-04-22 14:44 - 2014-07-01 19:26 - 00000000 ____D () C:\Windows\Minidump
2015-04-20 14:09 - 2012-08-17 07:51 - 00000000 ____D () C:\SDILENA
2015-04-19 17:36 - 2014-06-10 16:36 - 00000000 ____D () C:\Users\Venki\Documents\My Games
2015-04-19 12:03 - 2014-06-06 19:49 - 00000000 ____D () C:\Users\Venki\Desktop\los školos
2015-04-18 10:31 - 2014-06-06 19:56 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-04-18 10:02 - 2014-06-06 19:45 - 00000000 ____D () C:\Users\Venki\Desktop\Obrázky z plochy
2015-04-16 20:08 - 2014-06-06 21:06 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-16 20:08 - 2014-06-06 21:06 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-16 20:08 - 2014-06-06 21:06 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-04-14 21:44 - 2014-06-07 16:23 - 00000132 _____ () C:\Users\Venki\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2015-04-14 21:44 - 2014-06-06 19:40 - 00000000 ____D () C:\Users\Venki\Desktop\Funny obrázky z Photoshopu na lidi ze třídy
2015-04-14 16:09 - 2014-08-08 23:00 - 00000000 ____D () C:\Users\Venki\AppData\Roaming\Notepad++
2015-04-14 09:37 - 2014-08-08 21:29 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-04-14 09:37 - 2014-08-08 21:29 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-04-14 09:37 - 2014-08-08 21:29 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-04-13 14:09 - 2014-06-06 19:27 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-13 13:58 - 2009-07-14 06:45 - 05034728 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-04-12 21:55 - 2014-06-06 19:28 - 00111240 _____ () C:\Users\Venki\AppData\Local\GDIPFONTCACHEV1.DAT
2015-04-12 15:36 - 2014-09-22 15:01 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-11 22:46 - 2014-09-14 17:17 - 00348672 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2015-04-11 22:46 - 2014-09-14 17:17 - 00348672 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2015-04-11 22:46 - 2014-09-14 17:17 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2015-04-11 21:56 - 2014-09-18 19:06 - 00000000 ____D () C:\ProgramData\Origin
2015-04-11 21:56 - 2014-09-18 19:06 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-04-10 14:59 - 2015-02-14 19:39 - 00007168 _____ () C:\Users\Venki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-04-09 15:38 - 2014-06-06 19:49 - 00000000 ____D () C:\Users\Venki\Desktop\Kyanid a Štěstí
2015-04-06 10:15 - 2009-07-14 07:08 - 00032618 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-03-30 15:25 - 2014-10-31 16:06 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-03-28 14:25 - 2014-06-06 19:43 - 00000000 ____D () C:\Users\Venki\AppData\Local\Deployment
2015-03-28 11:30 - 2015-03-06 15:47 - 00000000 ____D () C:\Users\Venki\AppData\Local\BlackHole
2015-03-26 23:42 - 2014-06-06 19:43 - 00000000 ____D () C:\Users\Venki\Desktop\Natáčení
2015-03-24 18:35 - 2015-03-22 16:23 - 00001749 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-03-24 15:35 - 2014-08-12 15:02 - 00000000 ____D () C:\Users\Venki\AppData\Roaming\TS3Client
2015-03-23 18:02 - 2014-06-07 20:43 - 00000000 ____D () C:\ProgramData\AMD
2015-03-23 18:01 - 2014-06-06 19:32 - 00000000 ____D () C:\Program Files (x86)\AMD
2015-03-23 18:00 - 2014-06-06 19:37 - 00000000 ____D () C:\Program Files\ATI Technologies
2015-03-23 17:52 - 2014-06-07 20:38 - 00000000 ____D () C:\Program Files\AMD
2015-03-23 16:51 - 2012-08-19 21:46 - 00000000 ____D () C:\AMD
2015-03-23 15:49 - 2014-12-23 13:52 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-03-23 15:48 - 2014-12-23 13:52 - 00000000 ____D () C:\Program Files\Java

==================== Files in the root of some directories =======

2015-02-24 16:49 - 2015-02-24 20:36 - 1418151869 _____ () C:\Program Files (x86)\GameforgeLive.rar
2014-06-07 16:23 - 2015-04-14 21:44 - 0000132 _____ () C:\Users\Venki\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2014-12-22 12:08 - 2014-12-22 12:08 - 155701891 _____ () C:\Users\Venki\AppData\Roaming\Roaming.rar
2015-02-14 19:39 - 2015-04-10 14:59 - 0007168 _____ () C:\Users\Venki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-06-06 22:10 - 2014-08-08 16:33 - 0007608 _____ () C:\Users\Venki\AppData\Local\Resmon.ResmonCfg
2014-08-01 12:08 - 2015-04-22 15:08 - 0000424 _____ () C:\Users\Venki\AppData\Local\UserProducts.xml

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-04-15 19:47

==================== End Of Log ============================

TGVNeer · Příspěvekod **TGVNeer** » 22 dub 2015 20:40

druhý log

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-04-2015
Ran by Venki at 2015-04-22 20:34:35
Running from C:\Users\Venki\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.24 - GIGABYTE)
µTorrent (HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.4.4 - Atheros Communications Inc.)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.7971 - DsNET Corp)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoGreen B12.0206.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B12.0206.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2214 - AVAST Software)
Bandicam (HKLM-x32\...\Bandicam) (Version: 2.0.3.674 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
BLACKHOLE (HKLM-x32\...\BLACKHOLE_is1) (Version: - FiolaSoft Studios)
Borderlands The Pre-Sequel, âĺđńč˙ 1.0.0.0 (HKLM-x32\...\Borderlands The Pre-Sequel_is1) (Version: 1.0.0.0 - RePack by SEYTER)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.66.1075 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Dostihy 3000 deluxe 1.1 (HKLM-x32\...\Dostihy 3000 deluxe) (Version: - )
Dropbox (HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
EA SPORTS™ FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 9.3.0.58666 - Electronic Arts, Inc.)
Easy Tune 6 B12.0402.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B12.0402.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
EasyBoost (HKLM-x32\...\InstallShield_{41910260-4532-4734-8181-3E8AFDBB05D7}) (Version: 1.0.7.1 - GIGABYTE)
EasyBoost (x32 Version: 1.0.7.1 - GIGABYTE) Hidden
ffdshow v1.3.4532 [2014-07-17] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4532.0 - )
Fiddler (HKLM-x32\...\Fiddler2) (Version: 4.4.9.7 - Telerik)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Gameforge Live 2.0.6 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.6 - Gameforge)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.90 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Gyazo 2.3 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
HandBrake 0.10.1 (HKLM-x32\...\HandBrake) (Version: 0.10.1 - )
Hero Editor V0.96 (HKLM-x32\...\ST6UNST #1) (Version: - )
HP LaserJet Professional CP1020 Series (HKLM\...\HP LaserJet Professional CP1020 Series) (Version: - )
HPLJUT (x32 Version: 1.00.0012 - HP) Hidden
hppcp1025LaserJetService (HKLM-x32\...\{F31BF057-0D5E-485E-ADFD-560314A27912}) (Version: 1.00.0000 - Hewlett-Packard)
hppLaserJetService (x32 Version: 007.015.00635 - Hewlett-Packard) Hidden
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{6199B534-A1B6-46ED-873B-97B0ECF8F81E}) (Version: 1.23.216.0 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 3.2.10.2466 - IObit)
Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation)
Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation)
Just Cause 2: Multiplayer Mod (HKLM-x32\...\Steam App 259080) (Version: - JC2-MP Team)
K-Lite Codec Pack 10.9.5 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.9.5 - )
Lightshot-5.2.1.1 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.2.1.1 - Skillbrains)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.328 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.328 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware verze 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Metin2 (HKLM-x32\...\Metin2_is1) (Version: - Gameforge 4D GmbH)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mini Metro (Beta 3)(2014) (HKLM-x32\...\Mini Metro (Beta 3)(2014)Beta 3) (Version: Beta 3 - Friends in War)
Mozilla Firefox 32.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 32.0.2 (x86 cs)) (Version: 32.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
MW3 Launcher version 2.51-Offline (HKLM-x32\...\{EDRA5B80B-CED4-2050-963C-BA2DE9A4453E}_is1) (Version: 2.51-Offline - Pingsoft and Teknogods)
Node.js (HKLM\...\{A744EE31-693F-43F2-AF73-A093264A9E1B}) (Version: 0.10.31 - Joyent, Inc. and other Node contributors)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.8 - Notepad++ Team)
Oddworld - New 'n' Tasty (HKLM-x32\...\1424782569_is1) (Version: 2.0.0.1 - GOG.com)
ON_OFF Charge B11.1102.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Ori and the Blind Forest (HKLM-x32\...\Ori and the Blind Forest_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Origin (HKLM-x32\...\Origin) (Version: 9.5.2.2829 - Electronic Arts, Inc.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.9 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6519 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6554 - Realtek Semiconductor Corp.)
Rusted.cz Klient 1.7 (HKLM-x32\...\Rusted.cz Klient 1.7) (Version: 1.7 - Rusted.cz)
Skype™ 7.1 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.)
Subtitle Workshop 2.51 (HKLM-x32\...\SubtitleWorkshop) (Version: - )
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.0 - IObit)
System Requirements Lab CYRI (HKLM-x32\...\{19B0831B-0C18-4103-86E4-90FCD04CD3B9}) (Version: 6.0.12.5 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29947 - TeamViewer)
TEdit 3 (HKLM-x32\...\{56642CE5-5D04-4A3D-B774-754499672E39}) (Version: 3.5.14228.27 - BinaryConstruct)
TEncoder Video Converter version 4.5.6 (HKLM-x32\...\{7B1F9D22-568D-4109-B128-040BF8A932FC}_is1) (Version: 4.5.6 - ozok)
The Sims 4 Deluxe Edition version 1.0 Update 1 (HKLM-x32\...\The Sims 4 Deluxe Edition_is1) (Version: 1.0 Update 1 - GMT-MAX.ORG)
Unity Web Player (HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\UnityWebPlayer) (Version: 4.6.1f1 - Unity Technologies ApS)
Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
Uplay (HKLM-x32\...\Uplay) (Version: 4.8 - Ubisoft)
WhatPulse version 2.4 (HKLM-x32\...\{95CC8D5F-90A1-4285-9B2D-8D0FBCFD8D0D}_is1) (Version: 2.4 - WhatPulse)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-734116237-3699838629-408065000-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Venki\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-734116237-3699838629-408065000-1000_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-734116237-3699838629-408065000-1000_Classes\CLSID\{5b55a44a-d008-49aa-9234-86fb7709bc0a}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-734116237-3699838629-408065000-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Venki\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-734116237-3699838629-408065000-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Venki\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-734116237-3699838629-408065000-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Venki\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-734116237-3699838629-408065000-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Venki\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)

==================== Restore Points =========================

12-04-2015 15:35:23 Removed Sibelius Scorch (Firefox, Opera, Netscape, Chrome only).
12-04-2015 21:49:39 Installed Hi-Rez Studios Games
13-04-2015 14:08:34 Removed Hi-Rez Studios Games
22-04-2015 15:41:06 zoek.exe restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-04-22 15:41 - 00000841 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {07A80944-72A6-40CA-B7F5-6CCA05D5BB7F} - System32\Tasks\{60C50E75-0473-4CDE-B5A9-DE272D9CF581} => Chrome.exe http://ui.skype.com/ui/0/6.16.0.105/cs/ ... =tsInstall
Task: {1799A3BC-73DB-4EEC-B742-557D664DB34F} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2014-05-06] (IObit)
Task: {4359E8BF-A092-4174-8DA2-22E7066C1C9D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-16] (Adobe Systems Incorporated)
Task: {947BA4A1-272B-4F8A-9E6C-12F926ED8363} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2014-07-03] ()
Task: {99B84215-2056-4C1F-B536-A2CBD3464AF1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {B4BF6ED3-4995-40C6-83C6-79B9F7F9793B} - System32\Tasks\{FE41E0F3-75A3-4A24-B88D-B594B3565434} => Chrome.exe http://www.skype.com/go/downloading?sou ... rror=12002
Task: {BE1B6E09-4E71-46AC-A684-91CD8D1AE966} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-06] (Google Inc.)
Task: {D9685349-C1A9-4462-8F19-9EA613570D13} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {DEDB66E1-8C29-4A16-B9F8-D9586A7C1B42} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-06] (Google Inc.)
Task: {E10EC20B-8A0F-4911-B426-7F8BB46E2C9E} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-03-22] (Avast Software s.r.o.)
Task: {FEA6AB01-55B2-41BB-BDA8-37BB4E2495CE} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2010-09-22] (Hewlett Packard)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2010-01-30 02:40 - 2010-01-30 02:40 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2015-01-21 04:06 - 2015-01-21 04:06 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2014-10-06 14:35 - 2014-09-27 17:24 - 00664064 _____ () C:\Program Files (x86)\WhatPulse2\whatpulse-watchdog.exe
2014-06-06 22:01 - 2014-12-08 15:55 - 03563520 _____ () c:\program files (x86)\whatpulse2\whatpulse.exe
2014-06-10 21:18 - 2012-11-28 12:18 - 00129024 _____ () C:\Windows\System32\HPCP1020LM.DLL
2014-06-06 20:06 - 2014-06-06 20:06 - 00012520 _____ () C:\Users\Venki\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\CoreTempReader.dll
2014-06-06 20:06 - 2014-06-06 20:06 - 00015080 _____ () C:\Users\Venki\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\GetCoreTempInfoNET.dll
2014-06-06 20:06 - 2014-06-06 20:06 - 00014056 _____ () C:\Users\Venki\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\SystemInfo.dll
2015-03-22 16:22 - 2015-03-22 16:22 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-03-22 16:22 - 2015-03-22 16:22 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-04-22 14:42 - 2015-04-22 14:42 - 02926080 _____ () C:\Program Files\AVAST Software\Avast\defs\15042201\algo.dll
2015-04-22 19:21 - 2015-04-22 19:21 - 02926080 _____ () C:\Program Files\AVAST Software\Avast\defs\15042202\algo.dll
2010-01-30 02:41 - 2010-01-30 02:41 - 04254560 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2015-03-22 16:22 - 2015-03-22 16:22 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-03-22 16:22 - 2015-03-22 16:22 - 01359872 _____ () C:\Program Files\AVAST Software\Avast\libglesv2.dll
2015-03-22 16:22 - 2015-03-22 16:22 - 00212992 _____ () C:\Program Files\AVAST Software\Avast\libegl.dll
2014-10-06 14:35 - 2014-09-03 23:26 - 00875520 _____ () C:\Program Files (x86)\WhatPulse2\platforms\qwindows.dll
2014-06-06 22:01 - 2013-04-08 10:34 - 00039936 _____ () c:\program files (x86)\whatpulse2\CrashRpt1402.dll
2014-10-06 14:35 - 2014-09-03 23:26 - 00875520 _____ () C:\program files (x86)\whatpulse2\platforms\qwindows.dll
2014-06-06 19:28 - 2011-12-16 10:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2015-04-18 10:31 - 2015-04-13 23:55 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\libglesv2.dll
2015-04-18 10:31 - 2015-04-13 23:55 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\libegl.dll
2015-04-18 10:31 - 2015-04-13 23:55 - 14980424 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-734116237-3699838629-408065000-1000\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-734116237-3699838629-408065000-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Venki\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1 - 8.8.8.8

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe
MSCONFIG\startupreg: AdobeCS6ServiceManager => "c:\program files (x86)\common files\adobe\cs6servicemanager\cs6servicemanager.exe" -launchedbylogin
MSCONFIG\startupreg: BCSSync => "c:\program files (x86)\microsoft office\office14\bcssync.exe" /delayservices
MSCONFIG\startupreg: IMSS => c:\program files (x86)\intel\intel(r) management engine components\imss\piconstartup.exe
MSCONFIG\startupreg: PWRISOVM.EXE => c:\program files\poweriso\pwrisovm.exe -startup
MSCONFIG\startupreg: SunJavaUpdateSched => c:\program files (x86)\common files\java\java update\jusched.exe
MSCONFIG\startupreg: SwitchBoard => c:\program files (x86)\common files\adobe\switchboard\switchboard.exe
MSCONFIG\startupreg: uTorrent => "c:\users\venki\appdata\roaming\utorrent\utorrent.exe" /minimized

==================== Accounts: =============================

Administrator (S-1-5-21-734116237-3699838629-408065000-500 - Administrator - Disabled)
Guest (S-1-5-21-734116237-3699838629-408065000-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-734116237-3699838629-408065000-1002 - Limited - Enabled)
jv (S-1-5-21-734116237-3699838629-408065000-1003 - Limited - Enabled)
ondra (S-1-5-21-734116237-3699838629-408065000-1004 - Limited - Enabled)
Venki (S-1-5-21-734116237-3699838629-408065000-1000 - Administrator - Enabled) => C:\Users\Venki

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (04/22/2015 08:32:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HPLaserJetService.exe, verze: 7.15.635.0, časové razítko: 0x4d39aa4e
Název chybujícího modulu: hppccompio.DLL, verze: 1.3.0.24, časové razítko: 0x4c9685d0
Kód výjimky: 0xc0000417
Posun chyby: 0x000073bf
ID chybujícího procesu: 0x394
Čas spuštění chybující aplikace: 0xHPLaserJetService.exe0
Cesta k chybující aplikaci: HPLaserJetService.exe1
Cesta k chybujícímu modulu: HPLaserJetService.exe2
ID zprávy: HPLaserJetService.exe3

Error: (04/22/2015 08:32:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HPLaserJetService.exe, verze: 7.15.635.0, časové razítko: 0x4d39aa4e
Název chybujícího modulu: hppccompio.DLL, verze: 1.3.0.24, časové razítko: 0x4c9685d0
Kód výjimky: 0xc0000417
Posun chyby: 0x000073bf
ID chybujícího procesu: 0xbe8
Čas spuštění chybující aplikace: 0xHPLaserJetService.exe0
Cesta k chybující aplikaci: HPLaserJetService.exe1
Cesta k chybujícímu modulu: HPLaserJetService.exe2
ID zprávy: HPLaserJetService.exe3

Error: (04/22/2015 08:31:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HPLaserJetService.exe, verze: 7.15.635.0, časové razítko: 0x4d39aa4e
Název chybujícího modulu: hppccompio.DLL, verze: 1.3.0.24, časové razítko: 0x4c9685d0
Kód výjimky: 0xc0000417
Posun chyby: 0x000073bf
ID chybujícího procesu: 0xa90
Čas spuštění chybující aplikace: 0xHPLaserJetService.exe0
Cesta k chybující aplikaci: HPLaserJetService.exe1
Cesta k chybujícímu modulu: HPLaserJetService.exe2
ID zprávy: HPLaserJetService.exe3

Error: (04/22/2015 08:31:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HPLaserJetService.exe, verze: 7.15.635.0, časové razítko: 0x4d39aa4e
Název chybujícího modulu: hppccompio.DLL, verze: 1.3.0.24, časové razítko: 0x4c9685d0
Kód výjimky: 0xc0000417
Posun chyby: 0x000073bf
ID chybujícího procesu: 0xa3c
Čas spuštění chybující aplikace: 0xHPLaserJetService.exe0
Cesta k chybující aplikaci: HPLaserJetService.exe1
Cesta k chybujícímu modulu: HPLaserJetService.exe2
ID zprávy: HPLaserJetService.exe3

Error: (04/22/2015 08:31:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HPLaserJetService.exe, verze: 7.15.635.0, časové razítko: 0x4d39aa4e
Název chybujícího modulu: hppccompio.DLL, verze: 1.3.0.24, časové razítko: 0x4c9685d0
Kód výjimky: 0xc0000417
Posun chyby: 0x000073bf
ID chybujícího procesu: 0x5b4
Čas spuštění chybující aplikace: 0xHPLaserJetService.exe0
Cesta k chybující aplikaci: HPLaserJetService.exe1
Cesta k chybujícímu modulu: HPLaserJetService.exe2
ID zprávy: HPLaserJetService.exe3

Error: (04/22/2015 08:31:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HPLaserJetService.exe, verze: 7.15.635.0, časové razítko: 0x4d39aa4e
Název chybujícího modulu: hppccompio.DLL, verze: 1.3.0.24, časové razítko: 0x4c9685d0
Kód výjimky: 0xc0000417
Posun chyby: 0x000073bf
ID chybujícího procesu: 0x39c
Čas spuštění chybující aplikace: 0xHPLaserJetService.exe0
Cesta k chybující aplikaci: HPLaserJetService.exe1
Cesta k chybujícímu modulu: HPLaserJetService.exe2
ID zprávy: HPLaserJetService.exe3

Error: (04/22/2015 08:31:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HPLaserJetService.exe, verze: 7.15.635.0, časové razítko: 0x4d39aa4e
Název chybujícího modulu: hppccompio.DLL, verze: 1.3.0.24, časové razítko: 0x4c9685d0
Kód výjimky: 0xc0000417
Posun chyby: 0x000073bf
ID chybujícího procesu: 0x1290
Čas spuštění chybující aplikace: 0xHPLaserJetService.exe0
Cesta k chybující aplikaci: HPLaserJetService.exe1
Cesta k chybujícímu modulu: HPLaserJetService.exe2
ID zprávy: HPLaserJetService.exe3

Error: (04/22/2015 08:31:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HPLaserJetService.exe, verze: 7.15.635.0, časové razítko: 0x4d39aa4e
Název chybujícího modulu: hppccompio.DLL, verze: 1.3.0.24, časové razítko: 0x4c9685d0
Kód výjimky: 0xc0000417
Posun chyby: 0x000073bf
ID chybujícího procesu: 0x13cc
Čas spuštění chybující aplikace: 0xHPLaserJetService.exe0
Cesta k chybující aplikaci: HPLaserJetService.exe1
Cesta k chybujícímu modulu: HPLaserJetService.exe2
ID zprávy: HPLaserJetService.exe3

Error: (04/22/2015 08:30:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HPLaserJetService.exe, verze: 7.15.635.0, časové razítko: 0x4d39aa4e
Název chybujícího modulu: hppccompio.DLL, verze: 1.3.0.24, časové razítko: 0x4c9685d0
Kód výjimky: 0xc0000417
Posun chyby: 0x000073bf
ID chybujícího procesu: 0x554
Čas spuštění chybující aplikace: 0xHPLaserJetService.exe0
Cesta k chybující aplikaci: HPLaserJetService.exe1
Cesta k chybujícímu modulu: HPLaserJetService.exe2
ID zprávy: HPLaserJetService.exe3

Error: (04/22/2015 08:30:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HPLaserJetService.exe, verze: 7.15.635.0, časové razítko: 0x4d39aa4e
Název chybujícího modulu: hppccompio.DLL, verze: 1.3.0.24, časové razítko: 0x4c9685d0
Kód výjimky: 0xc0000417
Posun chyby: 0x000073bf
ID chybujícího procesu: 0xbe4
Čas spuštění chybující aplikace: 0xHPLaserJetService.exe0
Cesta k chybující aplikaci: HPLaserJetService.exe1
Cesta k chybujícímu modulu: HPLaserJetService.exe2
ID zprávy: HPLaserJetService.exe3

System errors:
=============
Error: (04/22/2015 08:32:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP LaserJet Service byla neočekávaně ukončena. Tento stav nastal již 63krát.

Error: (04/22/2015 08:32:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP LaserJet Service byla neočekávaně ukončena. Tento stav nastal již 62krát.

Error: (04/22/2015 08:31:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP LaserJet Service byla neočekávaně ukončena. Tento stav nastal již 61krát.

Error: (04/22/2015 08:31:48 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP LaserJet Service byla neočekávaně ukončena. Tento stav nastal již 60krát.

Error: (04/22/2015 08:31:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP LaserJet Service byla neočekávaně ukončena. Tento stav nastal již 59krát.

Error: (04/22/2015 08:31:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP LaserJet Service byla neočekávaně ukončena. Tento stav nastal již 58krát.

Error: (04/22/2015 08:31:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP LaserJet Service byla neočekávaně ukončena. Tento stav nastal již 57krát.

Error: (04/22/2015 08:31:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP LaserJet Service byla neočekávaně ukončena. Tento stav nastal již 56krát.

Error: (04/22/2015 08:30:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP LaserJet Service byla neočekávaně ukončena. Tento stav nastal již 55krát.

Error: (04/22/2015 08:30:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP LaserJet Service byla neočekávaně ukončena. Tento stav nastal již 54krát.

Microsoft Office Sessions:
=========================
Error: (04/22/2015 08:32:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: HPLaserJetService.exe7.15.635.04d39aa4ehppccompio.DLL1.3.0.244c9685d0c0000417000073bf39401d07d2aab6a269eC:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exeC:\Windows\system32\hppccompio.DLLe98d5273-e91d-11e4-b4eb-902b341e743f

Error: (04/22/2015 08:32:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: HPLaserJetService.exe7.15.635.04d39aa4ehppccompio.DLL1.3.0.244c9685d0c0000417000073bfbe801d07d2aa4ae6b61C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exeC:\Windows\system32\hppccompio.DLLe2d2819a-e91d-11e4-b4eb-902b341e743f

Error: (04/22/2015 08:31:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: HPLaserJetService.exe7.15.635.04d39aa4ehppccompio.DLL1.3.0.244c9685d0c0000417000073bfa9001d07d2a9df2b023C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exeC:\Windows\system32\hppccompio.DLLdc14a374-e91d-11e4-b4eb-902b341e743f

Error: (04/22/2015 08:31:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: HPLaserJetService.exe7.15.635.04d39aa4ehppccompio.DLL1.3.0.244c9685d0c0000417000073bfa3c01d07d2a9736f4e6C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exeC:\Windows\system32\hppccompio.DLLd55bce72-e91d-11e4-b4eb-902b341e743f

Error: (04/22/2015 08:31:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: HPLaserJetService.exe7.15.635.04d39aa4ehppccompio.DLL1.3.0.244c9685d0c0000417000073bf5b401d07d2a907baedaC:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exeC:\Windows\system32\hppccompio.DLLce9df04d-e91d-11e4-b4eb-902b341e743f

Error: (04/22/2015 08:31:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: HPLaserJetService.exe7.15.635.04d39aa4ehppccompio.DLL1.3.0.244c9685d0c0000417000073bf39c01d07d2a89bc9830C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exeC:\Windows\system32\hppccompio.DLLc7e67adf-e91d-11e4-b4eb-902b341e743f

Error: (04/22/2015 08:31:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: HPLaserJetService.exe7.15.635.04d39aa4ehppccompio.DLL1.3.0.244c9685d0c0000417000073bf129001d07d2a83015225C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exeC:\Windows\system32\hppccompio.DLLc12408c9-e91d-11e4-b4eb-902b341e743f

Error: (04/22/2015 08:31:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: HPLaserJetService.exe7.15.635.04d39aa4ehppccompio.DLL1.3.0.244c9685d0c0000417000073bf13cc01d07d2a7c4596e8C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exeC:\Windows\system32\hppccompio.DLLba6937ef-e91d-11e4-b4eb-902b341e743f

Error: (04/22/2015 08:30:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: HPLaserJetService.exe7.15.635.04d39aa4ehppccompio.DLL1.3.0.244c9685d0c0000417000073bf55401d07d2a7589dbaaC:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exeC:\Windows\system32\hppccompio.DLLb3ae4004-e91d-11e4-b4eb-902b341e743f

Error: (04/22/2015 08:30:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: HPLaserJetService.exe7.15.635.04d39aa4ehppccompio.DLL1.3.0.244c9685d0c0000417000073bfbe401d07d2a6ece477dC:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exeC:\Windows\system32\hppccompio.DLLacf20f95-e91d-11e4-b4eb-902b341e743f

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-3450 CPU @ 3.10GHz
Percentage of memory in use: 69%
Total physical RAM: 4043.59 MB
Available physical RAM: 1251.04 MB
Total Pagefile: 8085.34 MB
Available Pagefile: 4805.82 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:110.21 GB) NTFS
Drive e: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: () (Removable) (Total:1.89 GB) (Free:1.35 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or

(Size: 465.8 GB) (Disk ID: 348C92E5)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 1.

==================== End Of Log ============================

Prosím o kontrolu logu - zvýšený ping

Prosím o kontrolu logu - zvýšený ping

Re: Prosím o kontrolu logu - zvýšený ping

Re: Prosím o kontrolu logu - zvýšený ping

Re: Prosím o kontrolu logu - zvýšený ping

Re: Prosím o kontrolu logu - zvýšený ping

Re: Prosím o kontrolu logu - zvýšený ping

Re: Prosím o kontrolu logu - zvýšený ping

Re: Prosím o kontrolu logu - zvýšený ping

Re: Prosím o kontrolu logu - zvýšený ping

Re: Prosím o kontrolu logu - zvýšený ping

Re: Prosím o kontrolu logu - zvýšený ping

Re: Prosím o kontrolu logu - zvýšený ping

Kdo je online