Prosba o kontrolu logu - nedaří se dokončit avast kontrolu

Zpráva

jibo · #1 Příspěvek od **jibo** » 10 led 2015 15:45

Zdravím, prosím o kontrolu a rdu k odvirování, avast se mi zasekne, spybot projel a nic, při pokusu stažení launchera frst hlásí avast malwer a zablokuje stažení. Děkuji!

Log RSIT64

Logfile of random's system information tool 1.10 (written by random/random)
Run by j at 2015-01-10 13:48:16
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 447 GB (62%) free of 715 GB
Total RAM: 3689 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:48:25, on 10.1.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
C:\Program Files\trend micro\j.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.tb.ask.com/index.jhtml?n=77 ... EF81CCAC00
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {93a3111f-4f74-4ed8-895e-d9708497629e} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - (no file)
O2 - BHO: (no name) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - (no file)
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - (no file)
O3 - Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - (no file)
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O3 - Toolbar: (no name) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - (no file)
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - c:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HTCMonitorService - Nero AG - C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9577 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"c:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe"
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
adb fork-server server
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
WLIDSvcM.exe 3032
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Users\j\Desktop\RSITx64.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\AmiUpdXp.job - C:\Users\j\AppData\Local\SwvUpdater\Updater.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core.job - C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA.job - C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll [2014-01-24 209504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-01-09 705448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-03-27 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-01-09 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll [2014-01-24 6126680]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17}
{2318C2B1-4965-11d4-9B18-009027A5CD4F}
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F}

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2011-03-14 2779024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenuEx]
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2011-08-04 1612920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2014-06-24 4101576]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-07-05 336384]
"amd_dc_opt"=C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-01-15 452016]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-01-09 5227112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-01-10 12:49:24 ----D---- C:\rsit
2015-01-10 12:49:24 ----D---- C:\Program Files\trend micro
2015-01-10 11:31:56 ----D---- C:\Program Files (x86)\FinalWire
2015-01-09 23:08:44 ----A---- C:\Windows\system32\sdnclean64.exe
2015-01-09 23:08:39 ----D---- C:\ProgramData\Spybot - Search & Destroy
2015-01-09 23:08:24 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-01-09 21:43:38 ----A---- C:\Windows\system32\aswBoot.exe
2015-01-09 21:43:32 ----A---- C:\Windows\avastSS.scr
2014-12-20 21:57:44 ----D---- C:\Program Files\FlatOut2
2014-12-19 09:33:06 ----D---- C:\Program Files (x86)\VirtualDJ
2014-12-18 20:51:27 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-12-18 20:51:26 ----A---- C:\Windows\system32\ieUnatt.exe
2014-12-12 22:46:31 ----D---- C:\Windows\system32\appraiser
2014-12-11 18:50:58 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-12-11 18:50:58 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-12-11 18:50:58 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-12-11 18:50:58 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-12-11 18:50:57 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-12-11 18:50:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-12-11 18:50:56 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-12-11 18:50:56 ----A---- C:\Windows\system32\iernonce.dll
2014-12-11 18:50:56 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-11 18:50:55 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-12-11 18:50:54 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-12-11 18:50:54 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-12-11 18:50:54 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-11 18:50:53 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-12-11 18:50:48 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-12-11 18:50:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-12-11 18:50:46 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-11 18:50:45 ----A---- C:\Windows\system32\urlmon.dll
2014-12-11 18:50:44 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-12-11 18:50:43 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-12-11 18:50:43 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-12-11 18:50:42 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-12-11 18:50:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-11 18:50:40 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-12-11 18:50:40 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-12-11 18:50:40 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-11 18:50:40 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-11 18:50:38 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-12-11 18:50:36 ----A---- C:\Windows\system32\iesetup.dll
2014-12-11 18:50:36 ----A---- C:\Windows\system32\ieapfltr.dll
2014-12-11 18:50:32 ----A---- C:\Windows\system32\iertutil.dll
2014-12-11 18:50:30 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-12-11 18:50:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-12-11 18:50:28 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-12-11 18:50:27 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-12-11 18:50:27 ----A---- C:\Windows\system32\jsproxy.dll
2014-12-11 18:50:25 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-12-11 18:50:25 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-12-11 18:50:22 ----A---- C:\Windows\system32\ieui.dll
2014-12-11 18:50:22 ----A---- C:\Windows\system32\dxtmsft.dll
2014-12-11 18:50:21 ----A---- C:\Windows\system32\ieframe.dll
2014-12-11 18:50:18 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-11 18:50:17 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-12-11 18:50:16 ----A---- C:\Windows\system32\jscript9diag.dll
2014-12-11 18:50:15 ----A---- C:\Windows\system32\jscript9.dll
2014-12-11 18:50:13 ----A---- C:\Windows\system32\vbscript.dll
2014-12-11 18:50:12 ----A---- C:\Windows\system32\wininet.dll
2014-12-11 18:50:09 ----A---- C:\Windows\system32\msrating.dll
2014-12-11 18:50:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-12-11 18:50:07 ----A---- C:\Windows\system32\mshtml.dll
2014-12-11 07:38:42 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-12-11 07:06:48 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-12-11 07:06:48 ----A---- C:\Windows\system32\mfpmp.exe
2014-12-11 07:06:48 ----A---- C:\Windows\system32\mferror.dll
2014-12-11 07:06:47 ----A---- C:\Windows\system32\rrinstaller.exe
2014-12-11 07:06:46 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-12-11 07:06:46 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-12-11 07:06:46 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-12-11 07:06:45 ----A---- C:\Windows\system32\mfps.dll
2014-12-11 07:06:44 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-12-11 07:06:40 ----A---- C:\Windows\system32\mf.dll

======List of files/folders modified in the last 1 month======

2015-01-10 13:47:33 ----D---- C:\Windows\Temp
2015-01-10 13:46:42 ----D---- C:\Windows
2015-01-10 13:44:30 ----D---- C:\Windows\system32\config
2015-01-10 13:11:33 ----D---- C:\Windows\Panther
2015-01-10 13:11:33 ----D---- C:\Windows\inf
2015-01-10 13:11:31 ----D---- C:\Windows\Logs
2015-01-10 13:11:31 ----D---- C:\Windows\debug
2015-01-10 13:04:28 ----D---- C:\Users\j\AppData\Roaming\DAEMON Tools Lite
2015-01-10 13:04:25 ----D---- C:\Users\j\AppData\Roaming\Skype
2015-01-10 12:59:02 ----SHD---- C:\Windows\Installer
2015-01-10 12:59:01 ----SHD---- C:\Config.Msi
2015-01-10 12:59:01 ----D---- C:\Windows\system32\Tasks
2015-01-10 12:49:24 ----D---- C:\Program Files
2015-01-10 12:15:15 ----D---- C:\Windows\rescache
2015-01-10 11:31:56 ----RD---- C:\Program Files (x86)
2015-01-09 23:08:57 ----SD---- C:\ProgramData\Microsoft
2015-01-09 23:08:44 ----D---- C:\Windows\System32
2015-01-09 23:08:39 ----HD---- C:\ProgramData
2015-01-09 21:45:48 ----D---- C:\Windows\system32\drivers
2015-01-09 21:42:02 ----D---- C:\Windows\system32\catroot2
2015-01-09 21:41:53 ----SHD---- C:\System Volume Information
2015-01-09 21:41:51 ----D---- C:\Program Files (x86)\Opera
2015-01-09 21:37:07 ----D---- C:\Windows\Prefetch
2015-01-09 21:34:32 ----D---- C:\Windows\system32\wbem
2015-01-09 21:09:55 ----D---- C:\Program Files (x86)\Sega
2015-01-09 21:06:04 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-01-09 20:55:56 ----D---- C:\Windows\SysWOW64
2015-01-09 20:55:56 ----D---- C:\Program Files (x86)\Global Graphics
2015-01-09 20:53:11 ----D---- C:\Program Files (x86)\Czech Soccer Manager 2002 FE
2015-01-09 20:50:01 ----D---- C:\Program Files (x86)\CoD RconTool
2015-01-09 20:48:47 ----D---- C:\Program Files (x86)\Microsoft
2015-01-09 20:47:12 ----D---- C:\Program Files (x86)\Bagger-Simulator 2011
2015-01-09 20:13:28 ----D---- C:\Windows\system32\DriverStore
2015-01-09 20:13:28 ----D---- C:\Windows\system32\catroot
2015-01-09 17:16:47 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-06 04:36:02 ----N---- C:\Windows\system32\MpSigStub.exe
2014-12-30 12:05:23 ----SD---- C:\Users\j\AppData\Roaming\Microsoft
2014-12-23 13:00:18 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-12-19 09:33:09 ----RSD---- C:\Windows\Fonts
2014-12-19 09:04:40 ----D---- C:\Windows\winsxs
2014-12-16 12:59:39 ----D---- C:\Windows\Minidump
2014-12-16 12:52:13 ----D---- C:\Users\j\AppData\Roaming\Seznam.cz
2014-12-16 07:36:36 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-12-16 07:36:36 ----D---- C:\Windows\system32\cs-CZ
2014-12-12 22:46:35 ----D---- C:\Program Files\Internet Explorer
2014-12-12 22:46:34 ----D---- C:\Windows\SYSWOW64\en-US
2014-12-12 22:46:34 ----D---- C:\Windows\PolicyDefinitions
2014-12-12 22:46:33 ----D---- C:\Windows\system32\en-US
2014-12-12 22:46:32 ----D---- C:\Windows\AppCompat
2014-12-12 22:46:32 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-12 22:46:31 ----SD---- C:\Windows\system32\CompatTel
2014-12-12 22:44:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-12 12:01:58 ----D---- C:\Windows\system32\MRT
2014-12-12 11:50:35 ----A---- C:\Windows\system32\MRT.exe
2014-12-11 07:22:59 ----D---- C:\ProgramData\Microsoft Help

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2011-04-16 79488]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2011-04-16 40064]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-01-09 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-01-09 267632]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-01-09 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-01-09 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-01-09 436624]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-01-15 279616]
R1 nethfdrv;nethfdrv; \??\C:\Windows\system32\drivers\nethfdrv.sys [2014-06-16 46160]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-01-09 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-01-09 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-01-09 116728]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-20 146432]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-07-05 9359872]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-07-05 309760]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver; C:\Windows\system32\DRIVERS\rtl8192Ce.sys [2011-06-15 1145960]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2010-11-29 44672]
S3 HTCAND64;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-11-02 33736]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2012-12-07 36928]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys []
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-07-05 204288]
R2 AMD FUEL Service;AMD FUEL Service; c:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-07-05 365568]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-01-09 50344]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 HTCMonitorService;HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [2014-04-02 87368]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-12-07 167424]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-06-24 1738168]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-06-27 2088408]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-04-25 171928]
R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
R2 wlidsvc;Windows Live ID Sign-in Assistant; c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-23 107912]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-12 267440]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-23 107912]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-09-06 194032]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-21 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

#2 Příspěvek od **altrok** » 10 led 2015 16:18

Zdravim

Odinstalujte

Spybot S&D
Google Toolbar
Skype Click to Call

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/

ukoncete vsechny programy
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Scan, pote na Clean
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

jibo · #3 Příspěvek od **jibo** » 10 led 2015 17:32

Děkuji za rady!
Odinstalace pomocí CCleanru provedena
ADWcleaner spuštěn a vymazáno, zde je log:

# AdwCleaner v4.107 - Report created 10/01/2015 at 17:21:40
# Updated 07/01/2015 by Xplode
# Database : 2015-01-03.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : j - J-PC
# Running from : C:\Users\j\Desktop\adwcleaner_4.107.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : nethfdrv

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\WinterSoft
Folder Deleted : C:\Program Files (x86)\DAEMON Tools Toolbar
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Program Files (x86)\VideoDownloadConverter_4z
Folder Deleted : C:\Users\j\AppData\Local\genienext
Folder Deleted : C:\Users\j\AppData\Local\Mobogenie
Folder Deleted : C:\Users\j\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\j\AppData\LocalLow\VideoDownloadConverter_4z
Folder Deleted : C:\Users\j\AppData\Roaming\newnext.me
Folder Deleted : C:\Users\j\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\j\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Folder Deleted : C:\Users\j\Documents\Mobogenie
File Deleted : C:\Windows\SysWOW64\hfpapi.dll
File Deleted : C:\Windows\SysWOW64\installd.exe
File Deleted : C:\Windows\System32\drivers\nethfdrv.sys
File Deleted : C:\Users\j\daemonprocess.txt

***** [ Scheduled Tasks ] *****

Task Deleted : AmiUpdXp

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@VideoDownloadConverter_4z.com/Plugin
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD2049E-E483-4425-8555-8E0775ACB631}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2D73F2D0-2FAB-458E-977D-2F9050E0ED60}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3E9469AF-E866-4476-B767-810630F1F6E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{47700C35-9E3E-4DAD-934C-0CE28A87237C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{716E443D-7CAA-44F1-866B-F45D00E712CC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72063D77-7590-4DA9-A7F8-F5ECAF3632C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7FC87AC5-FA93-476E-A32C-A941229DED0B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{192F487E-E812-40C0-B0DE-CB4BFA20F37B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2D3826A1-F3E8-45D6-94B5-C26D8EC0073B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{37923200-6887-4B44-95D4-CAE8F83ECFEE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3EE17DD1-E28B-4AED-A3B2-9C29CB2C19D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{79332472-47F3-4E32-B07F-CF8DF4C58499}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{886F93AD-3CBB-4424-8442-A7340243540F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{AA289DBC-59B6-40A5-AC7D-C90DF850289C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BC153A3C-0BB7-4EED-83AE-28E6E398F56E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{CA723163-6FAD-43D4-8B93-0D8C52BD9974}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F1F328EB-F5A5-432B-A54C-05F3EF5B0BD8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FE8DBB09-C3D3-4477-80CB-D38914B94BB8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1F6F39C1-00A8-4752-A94C-D0EA92D978B6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5354D921-3F52-47C5-938D-77A2FB6DEFE7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{71144427-1368-4D18-8DC9-2AE3CC4C4F83}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{ED345812-2722-4DCA-9976-D01832DB44EE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D429207-4689-492D-A0E5-CDC5DFBB5005}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{93A3111F-4F74-4ED8-895E-D9708497629E}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1AD2049E-E483-4425-8555-8E0775ACB631}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2D73F2D0-2FAB-458E-977D-2F9050E0ED60}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3E9469AF-E866-4476-B767-810630F1F6E7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{47700C35-9E3E-4DAD-934C-0CE28A87237C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{716E443D-7CAA-44F1-866B-F45D00E712CC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{72063D77-7590-4DA9-A7F8-F5ECAF3632C4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7FC87AC5-FA93-476E-A32C-A941229DED0B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKCU\Software\VideoDownloadConverter_4z
Key Deleted : HKCU\Software\AppDataLow\Software\VideoDownloadConverter_4z
Key Deleted : HKLM\SOFTWARE\dt soft\daemon tools toolbar
Key Deleted : HKLM\SOFTWARE\MediaBuzzV1
Key Deleted : HKLM\SOFTWARE\MediaPlayerV1
Key Deleted : HKLM\SOFTWARE\MediaViewerV1
Key Deleted : HKLM\SOFTWARE\MediaViewV1
Key Deleted : HKLM\SOFTWARE\MediaWatchV1
Key Deleted : HKLM\SOFTWARE\TrustMediaViewerV1
Key Deleted : HKLM\SOFTWARE\VideoDownloadConverter_4z
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\daemon tools toolbar
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17496

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v39.0.2171.95

[C:\Users\j\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.daemon-search.com/search?q={searchTerms}

-\\ Chromium v

[C:\Users\j\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.daemon-search.com/search?q={searchTerms}

-\\ Opera v26.0.1656.60

[C:\Users\j\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.daemon-search.com/search?q={searchTerms}

*************************

AdwCleaner[R0].txt - [7181 octets] - [10/01/2015 17:17:21]
AdwCleaner[S0].txt - [7132 octets] - [10/01/2015 17:21:40]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7192 octets] ##########

#4 Příspěvek od **altrok** » 10 led 2015 17:35

Nainstalujte MBAM a udelejte vlastni sken vsech disku - http://forum.viry.cz/viewtopic.php?f=29&t=137928

Upozorneni: tento sken zabere od 30 minut po nekolik hodin

jibo · #5 Příspěvek od **jibo** » 10 led 2015 21:38

Nějakou hodinku test potrval a zde je z MBAM log:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 10.1.2015
Scan Time: 17:56:22
Logfile: logMBAM.txt
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2015.01.10.14
Rootkit Database: v2015.01.07.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: j

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 505234
Time Elapsed: 3 hr, 39 min, 44 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 8
PUP.Optional.MediaBuzz.A, HKLM\SOFTWARE\WOW6432NODE\MediaBuzzV1mode1738, , [22a4f302f792d66088ea07939a69a759],
PUP.Optional.MediaPlayerAlpha.A, HKLM\SOFTWARE\WOW6432NODE\MediaPlayerV1alpha132, , [09bdb93cb8d1fa3cd6872d7ea2617987],
PUP.Optional.MediaViewer.A, HKLM\SOFTWARE\WOW6432NODE\MediaViewerV1alpha695, , [0bbbde17cabf60d624bbcfd76b988779],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MediaViewV1alpha3063, , [a71f39bcaedb61d559de10969a69f808],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MediaViewV1alpha3479, , [01c546aff693db5bfc3b4f57e51ec838],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\MediaWatchV1home297, , [1fa720d5692035010ffead31c53f0bf5],
PUP.Optional.RichMediaView.A, HKLM\SOFTWARE\WOW6432NODE\RichMediaViewV1release7268, , [be087a7bb9d079bd7536b0e4e1222fd1],
PUP.Optional.TrustMediaViewer.A, HKLM\SOFTWARE\WOW6432NODE\TrustMediaViewerV1alpha5110, , [a52120d5d2b7e55159989aef956ec33d],

Registry Values: 8
PUP.Optional.MediaPlayerAlpha.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaPlayerV1alpha132.net, C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha132\ff, , [f4d28b6ac8c1e84e481604a717ecb947]
PUP.Optional.MediaViewer.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaViewerV1alpha695.net, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha695\ff, , [bd099a5b51381a1cffe19c0a09fa758b]
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaViewV1alpha3479.net, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3479\ff, , [1caa797c1b6e102689aff4b2c83b8d73]
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaViewV1alpha3063.net, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3063\ff, , [d6f0da1b7c0d57dfb385a402c34007f9]
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaWatchV1home297.net, C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home297\ff, , [0bbb5e970d7c58de66a85e809d6753ad]
PUP.Optional.MediaBuzz.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaBuzzV1mode1738.net, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1738\ff, , [c8fe21d4f69362d451221d7d729109f7]
PUP.Optional.RichMediaView.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@RichMediaViewV1release7268.net, C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7268\ff, , [596d718413766ec8a802a5ef0ff457a9]
PUP.Optional.TrustMediaViewer.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@TrustMediaViewerV1alpha5110.net, C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha5110\ff, , [55718b6acfbac2742bc7f099788b1ee2]

Registry Data: 0
(No malicious items detected)

Folders: 1
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config, , [5b6b1cd97f0a8fa74d31b5d244bf8b75],

Files: 19
PUP.Adware.Gotclip.ScamLotto, C:\Program Files (x86)\EA SPORTS\NHL 09\GotClip\Uninstall.exe, , [50764da8aadfa5919406ddc6c838a45c],
PUP.Optional.NetFilter, C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\hfpapi.dll.vir, , [f4d23db8048542f4f35e5b715aa745bb],
PUP.Optional.InstalleRex, C:\ProgramData\InstallMate\{270B6E72-ADD7-454B-A7A0-E5F5FCE84C84}\Custom.dll, , [4a7c896c8ffad75fe91b83d2a45d07f9],
PUP.Optional.InstalleRex, C:\ProgramData\InstallMate\{2A22DE61-A3F2-4DFA-AF11-EBD0F1C1FC97}\Custom.dll, , [f7cff8fd731654e224e05cf942bfe719],
PUP.Optional.InstalleRex, C:\ProgramData\InstallMate\{38458C43-41F2-4A57-A8BC-09D0E3A6AEB5}\Custom.dll, , [eadc5b9a99f092a4da2a87ce679af60a],
PUP.Optional.InstalleRex, C:\ProgramData\InstallMate\{4ECB8DCA-A6F4-48DB-AA30-EED69528AF3C}\Custom.dll, , [7353a74e3e4b67cf45bf89cc5fa22cd4],
PUP.Optional.InstalleRex, C:\ProgramData\InstallMate\{69268581-364F-4C69-AE82-7E6DB2C5A777}\Custom.dll, , [824404f1a6e3b48294709db8738eef11],
PUP.Optional.InstalleRex, C:\ProgramData\InstallMate\{699720A8-7144-4BD9-A932-3966B274025E}\Custom.dll, , [6d59be372069af87fe0683d215eccf31],
PUP.Optional.InstalleRex, C:\ProgramData\InstallMate\{750677C5-83C2-4200-A0EB-CBE0AEE55533}\Custom.dll, , [5571569f69201c1a9b6925308081df21],
PUP.Optional.InstalleRex, C:\ProgramData\InstallMate\{92BC2B8D-1AB4-4A57-A8BC-5296495F097B}\Custom.dll, , [aa1c29cc54352b0b2cd8a1b4689906fa],
PUP.Optional.InstalleRex, C:\ProgramData\InstallMate\{E33AB173-ADB1-4D07-AFEC-E59338D99385}\Custom.dll, , [3e885d988cfd43f3d331bc99dc2509f7],
PUP.Optional.InstalleRex, C:\ProgramData\InstallMate\{F60AE1E3-CAD9-466B-A480-82FB2DE9C315}\Custom.dll, , [16b0b243a4e579bdd133e86d5da4639d],
Trojan.Agent.CK, C:\System Volume Information\SystemRestore\FRStaging\Program Files (x86)\TNod User & Password Finder\uninst-tnod.exe, , [eed85c996821d46213f0cfd28a7ba759],
PUP.Optional.OpenCandy, C:\System Volume Information\SystemRestore\FRStaging\Users\j\Desktop\GAMES\F1 2010 (2010) [PC-DVD9][MULTi5][WwW.ZoNaTorrent.CoM]\DTLite4451-0236.exe, , [7056ac496d1c4ee8b5ff872ef60f2ad6],
PUP.Optional.MindSpark, C:\Users\j\Downloads\RadioRageSetup2.5.15.8.^ZX^man000^YYA^.exe, , [982eb540f9901d194fa9d4aca164fb05],
RiskWare.Tool.CK, C:\Users\j\Downloads\Microsoft office 2007 Enterprise s keygen\MS Office 2007 KeyGen\msoe2007kg.exe, , [7d49d0252168350139d9d57ec73b7f81],
PUP.Optional.NetFilter, C:\Windows\SysWOW64\hfnapi.dll, , [4086985dd8b194a254fcbf0def12aa56],
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config\ver.xml, , [5b6b1cd97f0a8fa74d31b5d244bf8b75],
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config\data.xml, , [5b6b1cd97f0a8fa74d31b5d244bf8b75],

Physical Sectors: 0
(No malicious items detected)

(end)

#6 Příspěvek od **altrok** » 10 led 2015 21:44

Vsechny nalezy presunte do karanteny/smazte.

Dejte novy log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

jibo · #7 Příspěvek od **jibo** » 10 led 2015 22:05

Zde je FRST log:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-01-2015
Ran by j (administrator) on J-PC on 10-01-2015 21:59:26
Running from C:\Users\j\Desktop
Loaded Profile: j (Available profiles: j)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
() C:\Program Files (x86)\Opera\26.0.1656.60\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-07-05] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-09] (AVAST Software)
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: E - E:\setup.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: G - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {597de7f5-9c70-11e3-850b-89c92605853e} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {5d36befa-2ed8-11e1-934b-ac8112b38c18} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {7f02dfab-67ac-11e1-be93-aa1240bddf2d} - F:\AutoRun.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {7f02dfc8-67ac-11e1-be93-aa1240bddf2d} - F:\AutoRun.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {edac0dfc-3f6b-11e1-9155-ac8112b38c18} - E:\setup.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => No File
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {1CC8154D-553F-4A0D-8CD1-35A8313EA498} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {24211972-974A-41D0-A39D-7014B0C2DF9F} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {537AD03F-50FD-4B18-9D4F-070A7AADD555} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {866D6C96-69F0-4CFA-ADEF-B360B6F81BAD} URL = http://encyklopedie.seznam.cz/search?q= ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {A3E60DB5-7311-49F6-BC09-354388F300C8} URL = http://www.novinky.cz/hledej?w={searchT ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {D118B49F-E0CF-454D-B7A1-53AF2D5DC418} URL = http://search.seznam.cz/?q={searchTerms ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {D6B0F597-46FA-46D1-AD72-668CBF333125} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {E1B02B2F-CB7F-4CFD-A740-A7FE6F5DF7A1} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {EADBA258-B4FB-4A90-8BA1-42F05AAF59CB} URL = http://www.mapy.cz/?query={searchTerms} ... arch_16194
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: No Name -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> No File
BHO-x32: No Name -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> No File
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Toolbar: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks-x32: - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - No File [ ]
Tcpip\Parameters: [DhcpNameServer] 10.70.100.1 77.48.233.12 208.67.222.222

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-622834961-1658247782-2454784526-1000: @tools.google.com/Google Update;version=3 -> C:\Users\j\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-622834961-1658247782-2454784526-1000: @tools.google.com/Google Update;version=9 -> C:\Users\j\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-03]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: No Name - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha132\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha695\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3479\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3063\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home297\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1738\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7268\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha5110\ff [Not Found]

Chrome:
=======
CHR Profile: C:\Users\j\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Avast Online Security) - C:\Users\j\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-07-17]
CHR Extension: (Peněženka Google) - C:\Users\j\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-17]
CHR HKLM-x32\...\Chrome\Extension: [chgodlioneakghmomffnihcecghjclpp] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha695\ch\MediaViewerV1alpha695.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [epnbmkbnjkhmofeelbkbfamogagndobh] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3479\ch\MediaViewV1alpha3479.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-01-09]
CHR HKLM-x32\...\Chrome\Extension: [obmoiagkfhphbfpehaemkdmhpmcngalk] - C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha5110\ch\TrustMediaViewerV1alpha5110.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [oddjkpdhacpkbpnnpblgnabjghflidil] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1738\ch\MediaBuzzV1mode1738.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [olbpflbbgmgnlgomfppddbgbgedfiaca] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home297\ch\MediaWatchV1home297.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [pildneehhpeicimimgkglgnkclbjfani] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3063\ch\MediaViewV1alpha3063.crx [Not Found]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; c:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [365568 2011-07-05] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-09] (AVAST Software)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-04-02] (Nero AG)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-01-09] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2015-01-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-01-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-01-09] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-01-09] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-01-09] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-01-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-01-09] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [279616 2012-01-15] (DT Soft Ltd)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-01-10] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-10 21:59 - 2015-01-10 22:00 - 00017456 _____ () C:\Users\j\Desktop\FRST.txt
2015-01-10 17:52 - 2015-01-10 21:55 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-10 17:52 - 2015-01-10 17:52 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-10 17:52 - 2015-01-10 17:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-10 17:52 - 2015-01-10 17:52 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-10 17:52 - 2015-01-10 17:52 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-10 17:52 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-01-10 17:52 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-01-10 17:52 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-01-10 17:45 - 2015-01-10 17:47 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\j\Desktop\mbam-setup-2.0.4.1028 (1).exe
2015-01-10 17:45 - 2015-01-10 17:46 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\j\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-10 17:25 - 2015-01-10 17:25 - 02191360 _____ () C:\Users\j\Downloads\adwcleaner_4.107.exe
2015-01-10 17:23 - 2015-01-10 21:53 - 00011012 _____ () C:\Windows\PFRO.log
2015-01-10 17:17 - 2015-01-10 17:22 - 00000000 ____D () C:\AdwCleaner
2015-01-10 17:15 - 2015-01-10 17:15 - 02191360 _____ () C:\Users\j\Desktop\adwcleaner_4.107.exe
2015-01-10 17:10 - 2015-01-10 17:10 - 00000085 _____ () C:\Windows\wininit.ini
2015-01-10 15:27 - 2015-01-10 14:44 - 02124288 _____ (Farbar) C:\Users\j\Desktop\FRST64.exe
2015-01-10 15:26 - 2015-01-10 15:26 - 00013480 _____ () C:\Users\j\Downloads\FRSTLauncher.exe
2015-01-10 15:25 - 2015-01-10 15:25 - 00027853 _____ () C:\Users\j\Downloads\FRSTLauncher.rar
2015-01-10 15:00 - 2015-01-10 21:59 - 00000000 ____D () C:\FRST
2015-01-10 13:46 - 2015-01-10 21:53 - 00001182 _____ () C:\Windows\setupact.log
2015-01-10 13:46 - 2015-01-10 13:46 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-10 13:20 - 2015-01-10 13:20 - 00062330 _____ () C:\Users\j\Documents\cc_20150110_132020.reg
2015-01-10 12:59 - 2015-01-10 13:42 - 00003888 _____ () C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-01-10 12:49 - 2015-01-10 13:48 - 00000000 ____D () C:\Program Files\trend micro
2015-01-10 12:49 - 2015-01-10 12:49 - 00000000 ____D () C:\rsit
2015-01-10 12:46 - 2015-01-10 12:46 - 01222144 _____ () C:\Users\j\Desktop\RSITx64.exe
2015-01-10 12:41 - 2015-01-10 12:41 - 15569192 _____ (FinalWire Ltd. ) C:\Users\j\Downloads\aida64extreme500 (1).exe
2015-01-10 11:32 - 2015-01-10 11:32 - 00001175 _____ () C:\Users\j\Desktop\AIDA64 Extreme.lnk
2015-01-10 11:31 - 2015-01-10 11:31 - 00000000 ____D () C:\Program Files (x86)\FinalWire
2015-01-10 11:30 - 2015-01-10 11:31 - 15569192 _____ (FinalWire Ltd. ) C:\Users\j\Downloads\aida64extreme500.exe
2015-01-09 23:09 - 2015-01-09 23:09 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2015-01-09 23:08 - 2015-01-10 17:23 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-01-09 23:08 - 2015-01-10 17:10 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2015-01-09 23:06 - 2015-01-09 23:06 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\j\Downloads\spybot-2.4.exe
2015-01-09 21:44 - 2015-01-09 21:44 - 00001924 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-01-09 21:43 - 2015-01-09 21:43 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-01-09 21:43 - 2015-01-09 21:43 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-01-09 20:10 - 2015-01-09 20:10 - 00123370 _____ () C:\Users\j\Documents\cc_20150109_201008.reg
2015-01-09 16:37 - 2015-01-09 19:53 - 00000000 ___RD () C:\Users\j\Desktop\PONECHAT
2014-12-26 12:54 - 2014-12-26 12:54 - 00479678 _____ () C:\Users\j\Downloads\3d-lawn-darts.zip
2014-12-26 12:51 - 2014-12-26 12:51 - 00300363 _____ () C:\Users\j\Downloads\sipky.zip
2014-12-25 12:42 - 2014-12-25 12:42 - 00035328 _____ () C:\Users\j\Downloads\Adresář-rozhodčích_2014-15.xls
2014-12-25 12:42 - 2014-12-25 12:42 - 00035328 _____ () C:\Users\j\Downloads\Adresář-rozhodčích_2014-15 (1).xls
2014-12-20 21:57 - 2014-12-20 22:04 - 00000000 ____D () C:\Program Files\FlatOut2
2014-12-19 09:33 - 2014-12-19 11:15 - 00000000 ____D () C:\Users\j\Documents\VirtualDJ
2014-12-19 09:33 - 2014-12-19 09:33 - 00001046 _____ () C:\Users\j\Desktop\VirtualDJ Home FREE.lnk
2014-12-19 09:33 - 2014-12-19 09:33 - 00000000 ____D () C:\Users\j\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-12-19 09:33 - 2014-12-19 09:33 - 00000000 ____D () C:\Program Files (x86)\VirtualDJ
2014-12-19 09:30 - 2014-12-19 09:30 - 39178560 _____ (Atomix Productions) C:\Users\j\Downloads\install_virtualdj_home_v7-4-1.exe
2014-12-19 09:11 - 2014-12-19 09:11 - 00000000 ____D () C:\Users\j\Documents\Native Instruments
2014-12-19 09:09 - 2014-12-19 09:09 - 00000000 ____D () C:\Users\j\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Native Instruments
2014-12-19 09:09 - 2014-12-19 09:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
2014-12-19 09:08 - 2014-12-19 09:29 - 00000000 ____D () C:\Users\j\Documents\Traktor3
2014-12-19 09:05 - 2014-12-19 09:05 - 62322172 _____ () C:\Users\j\Downloads\Traktor3_341U_Win.zip
2014-12-18 20:51 - 2014-12-13 06:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-18 20:51 - 2014-12-13 04:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-12-14 17:57 - 2014-12-14 18:55 - 1042091722 _____ () C:\Users\j\Downloads\10-pravidel-jak-sbalit-holku-(2014)-(Česko)-(Komedie).avi
2014-12-14 14:10 - 2014-12-14 14:11 - 07888344 _____ () C:\Users\j\Downloads\Waka_Waka_Kid (1).wmv
2014-12-14 14:10 - 2014-12-14 14:10 - 00000276 _____ () C:\Users\j\Downloads\lera76.vcf
2014-12-14 14:10 - 2014-12-14 14:10 - 00000276 _____ () C:\Users\j\Downloads\lera76 (1).vcf
2014-12-12 22:46 - 2014-12-12 22:46 - 00000000 ____D () C:\Windows\system32\appraiser
2014-12-11 18:50 - 2014-11-27 02:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-11 18:50 - 2014-11-27 02:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-11 18:50 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-11 18:50 - 2014-11-22 04:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-11 18:50 - 2014-11-22 04:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-11 18:50 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-11 18:50 - 2014-11-22 03:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-11 18:50 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-11 18:50 - 2014-11-22 03:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-11 18:50 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-11 18:50 - 2014-11-22 03:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-11 18:50 - 2014-11-22 03:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-11 18:50 - 2014-11-22 03:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-11 18:50 - 2014-11-22 03:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-11 18:50 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-11 18:50 - 2014-11-22 03:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-11 18:50 - 2014-11-22 03:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-11 18:50 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-11 18:50 - 2014-11-22 03:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-11 18:50 - 2014-11-22 03:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-11 18:50 - 2014-11-22 03:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-11 18:50 - 2014-11-22 03:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-11 18:50 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-11 18:50 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-11 18:50 - 2014-11-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-11 18:50 - 2014-11-22 03:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-11 18:50 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-11 18:50 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-11 18:50 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-11 18:50 - 2014-11-22 02:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-11 18:50 - 2014-11-22 02:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-11 18:50 - 2014-11-22 02:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-12-11 18:50 - 2014-11-22 02:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-12-11 18:50 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-11 18:50 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-11 18:50 - 2014-11-22 02:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-11 18:50 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-11 18:50 - 2014-11-22 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-11 18:50 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-11 18:50 - 2014-11-22 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-11 18:50 - 2014-11-22 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-11 18:50 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-11 18:50 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-11 18:50 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-11 18:50 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-11 18:50 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-11 18:50 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-11 18:50 - 2014-11-22 02:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-11 18:50 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-11 18:50 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-11 18:50 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-11 18:50 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-11 18:50 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-11 18:50 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-11 07:38 - 2014-11-11 02:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-11 07:06 - 2014-10-18 03:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-11 07:06 - 2014-10-18 02:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-12-11 07:06 - 2014-07-07 03:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-12-11 07:06 - 2014-07-07 03:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-12-11 07:06 - 2014-07-07 03:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-12-11 07:06 - 2014-07-07 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-12-11 07:06 - 2014-07-07 02:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2014-12-11 07:06 - 2014-07-07 02:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2014-12-11 07:06 - 2014-07-07 02:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2014-12-11 07:06 - 2014-07-07 02:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-10 21:58 - 2010-03-11 16:33 - 01427778 _____ () C:\Windows\WindowsUpdate.log
2015-01-10 21:54 - 2014-07-06 21:37 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-10 21:54 - 2014-05-28 20:59 - 00000000 ____D () C:\Users\j\AppData\Local\HTC MediaHub
2015-01-10 21:53 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-10 21:53 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\L2Schemas
2015-01-10 17:31 - 2009-07-14 05:45 - 00023232 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-10 17:31 - 2009-07-14 05:45 - 00023232 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-10 17:28 - 2009-07-14 16:18 - 00672424 _____ () C:\Windows\system32\perfh005.dat
2015-01-10 17:28 - 2009-07-14 16:18 - 00142988 _____ () C:\Windows\system32\perfc005.dat
2015-01-10 17:28 - 2009-07-14 06:13 - 01593310 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-10 17:23 - 2012-01-30 20:13 - 00000000 ____D () C:\Program Files\Google
2015-01-10 17:23 - 2012-01-30 20:12 - 00000000 ____D () C:\Program Files (x86)\Google
2015-01-10 17:22 - 2010-03-11 16:52 - 00000000 ____D () C:\Users\j
2015-01-10 17:12 - 2012-01-30 20:12 - 00000000 ____D () C:\ProgramData\Google
2015-01-10 17:12 - 2011-12-21 10:34 - 00000000 ____D () C:\Users\j\AppData\Local\Google
2015-01-10 17:11 - 2012-01-12 19:07 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-01-10 13:46 - 2012-09-30 19:47 - 03876352 ___SH () C:\Users\j\Desktop\Thumbs.db
2015-01-10 13:46 - 2012-05-23 17:10 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-10 13:46 - 2012-01-30 20:13 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-10 13:46 - 2012-01-30 20:13 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-10 13:46 - 2011-12-21 10:34 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA.job
2015-01-10 13:46 - 2011-12-21 10:34 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core.job
2015-01-10 13:43 - 2014-06-03 11:18 - 00003824 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1393153081
2015-01-10 13:43 - 2014-02-19 22:23 - 00002974 _____ () C:\Windows\System32\Tasks\{0D0A8180-A90F-4466-ABC3-F165C9B7F869}
2015-01-10 13:43 - 2012-05-23 17:10 - 00003854 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-10 13:43 - 2012-01-30 20:13 - 00003960 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-01-10 13:43 - 2012-01-30 20:13 - 00003708 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-01-10 13:43 - 2011-12-21 10:34 - 00003924 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA
2015-01-10 13:43 - 2011-12-21 10:34 - 00003528 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core
2015-01-10 13:11 - 2010-03-11 16:27 - 00000000 ____D () C:\Windows\Panther
2015-01-10 13:04 - 2012-01-12 19:08 - 00000000 ____D () C:\Users\j\AppData\Roaming\Skype
2015-01-10 13:04 - 2011-12-26 10:45 - 00000000 ____D () C:\Users\j\AppData\Roaming\DAEMON Tools Lite
2015-01-10 12:15 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2015-01-10 11:32 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-01-09 21:43 - 2014-07-06 21:35 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-01-09 21:41 - 2014-02-23 11:58 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-01-09 21:38 - 2010-03-11 17:58 - 00109944 _____ () C:\Users\j\AppData\Local\GDIPFONTCACHEV1.DAT
2015-01-09 21:35 - 2009-07-14 05:45 - 00418080 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-09 21:09 - 2012-02-02 21:55 - 00000000 ____D () C:\Program Files (x86)\Sega
2015-01-09 21:09 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-09 21:06 - 2012-02-02 22:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sega
2015-01-09 21:06 - 2010-03-11 17:59 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-09 20:55 - 2014-09-06 12:18 - 00000000 ____D () C:\Program Files (x86)\Global Graphics
2015-01-09 20:53 - 2012-10-30 17:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Czech Soccer Manager 2002 FE
2015-01-09 20:53 - 2012-10-30 17:02 - 00000000 ____D () C:\Program Files (x86)\Czech Soccer Manager 2002 FE
2015-01-09 20:50 - 2011-12-25 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CoD RconTool
2015-01-09 20:50 - 2011-12-25 15:44 - 00000000 ____D () C:\Program Files (x86)\CoD RconTool
2015-01-09 20:47 - 2012-01-31 18:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bagger-Simulator 2011
2015-01-09 20:47 - 2012-01-31 18:01 - 00000000 ____D () C:\Program Files (x86)\Bagger-Simulator 2011
2015-01-09 16:45 - 2011-12-24 21:44 - 00000000 ___RD () C:\Users\j\Desktop\GAMES
2015-01-06 04:36 - 2011-12-21 10:06 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-12-23 13:00 - 2014-03-03 21:38 - 01611274 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-12-20 22:04 - 2011-12-24 21:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TopCD
2014-12-16 12:59 - 2012-04-04 08:15 - 00000000 ____D () C:\Windows\Minidump
2014-12-16 12:52 - 2014-01-10 18:42 - 00000000 ____D () C:\Users\j\AppData\Roaming\Seznam.cz
2014-12-12 22:46 - 2014-05-05 06:22 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-12-12 22:46 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-12 22:46 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2014-12-12 22:45 - 2014-07-23 12:20 - 00000000 ____D () C:\Users\j\AppData\Local\Adobe
2014-12-12 22:44 - 2012-05-23 17:10 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-12 22:44 - 2012-01-30 20:14 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-12 12:01 - 2013-07-29 06:04 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-12 11:50 - 2011-12-21 11:03 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-11 07:22 - 2012-01-12 17:59 - 00000000 ____D () C:\ProgramData\Microsoft Help

Some content of TEMP:
====================
C:\Users\j\AppData\Local\Temp\eauninstall.exe
C:\Users\j\AppData\Local\Temp\NBA LIVE 07_uninst.exe
C:\Users\j\AppData\Local\Temp\Quarantine.exe
C:\Users\j\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-01-10 11:57

==================== End Of Log ============================

jibo · #8 Příspěvek od **jibo** » 10 led 2015 22:05

Zde je FRST log:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-01-2015
Ran by j (administrator) on J-PC on 10-01-2015 21:59:26
Running from C:\Users\j\Desktop
Loaded Profile: j (Available profiles: j)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
() C:\Program Files (x86)\Opera\26.0.1656.60\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-07-05] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-09] (AVAST Software)
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: E - E:\setup.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: G - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {597de7f5-9c70-11e3-850b-89c92605853e} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {5d36befa-2ed8-11e1-934b-ac8112b38c18} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {7f02dfab-67ac-11e1-be93-aa1240bddf2d} - F:\AutoRun.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {7f02dfc8-67ac-11e1-be93-aa1240bddf2d} - F:\AutoRun.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {edac0dfc-3f6b-11e1-9155-ac8112b38c18} - E:\setup.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => No File
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {1CC8154D-553F-4A0D-8CD1-35A8313EA498} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {24211972-974A-41D0-A39D-7014B0C2DF9F} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {537AD03F-50FD-4B18-9D4F-070A7AADD555} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {866D6C96-69F0-4CFA-ADEF-B360B6F81BAD} URL = http://encyklopedie.seznam.cz/search?q= ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {A3E60DB5-7311-49F6-BC09-354388F300C8} URL = http://www.novinky.cz/hledej?w={searchT ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {D118B49F-E0CF-454D-B7A1-53AF2D5DC418} URL = http://search.seznam.cz/?q={searchTerms ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {D6B0F597-46FA-46D1-AD72-668CBF333125} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {E1B02B2F-CB7F-4CFD-A740-A7FE6F5DF7A1} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
SearchScopes: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> {EADBA258-B4FB-4A90-8BA1-42F05AAF59CB} URL = http://www.mapy.cz/?query={searchTerms} ... arch_16194
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: No Name -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> No File
BHO-x32: No Name -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> No File
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Toolbar: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks-x32: - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - No File [ ]
Tcpip\Parameters: [DhcpNameServer] 10.70.100.1 77.48.233.12 208.67.222.222

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-622834961-1658247782-2454784526-1000: @tools.google.com/Google Update;version=3 -> C:\Users\j\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-622834961-1658247782-2454784526-1000: @tools.google.com/Google Update;version=9 -> C:\Users\j\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-03]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: No Name - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha132\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha695\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3479\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3063\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home297\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1738\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7268\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha5110\ff [Not Found]

Chrome:
=======
CHR Profile: C:\Users\j\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Avast Online Security) - C:\Users\j\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-07-17]
CHR Extension: (Peněženka Google) - C:\Users\j\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-17]
CHR HKLM-x32\...\Chrome\Extension: [chgodlioneakghmomffnihcecghjclpp] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha695\ch\MediaViewerV1alpha695.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [epnbmkbnjkhmofeelbkbfamogagndobh] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3479\ch\MediaViewV1alpha3479.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-01-09]
CHR HKLM-x32\...\Chrome\Extension: [obmoiagkfhphbfpehaemkdmhpmcngalk] - C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha5110\ch\TrustMediaViewerV1alpha5110.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [oddjkpdhacpkbpnnpblgnabjghflidil] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1738\ch\MediaBuzzV1mode1738.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [olbpflbbgmgnlgomfppddbgbgedfiaca] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home297\ch\MediaWatchV1home297.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [pildneehhpeicimimgkglgnkclbjfani] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3063\ch\MediaViewV1alpha3063.crx [Not Found]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; c:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [365568 2011-07-05] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-09] (AVAST Software)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-04-02] (Nero AG)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-01-09] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2015-01-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-01-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-01-09] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-01-09] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-01-09] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-01-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-01-09] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [279616 2012-01-15] (DT Soft Ltd)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-01-10] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-10 21:59 - 2015-01-10 22:00 - 00017456 _____ () C:\Users\j\Desktop\FRST.txt
2015-01-10 17:52 - 2015-01-10 21:55 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-10 17:52 - 2015-01-10 17:52 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-10 17:52 - 2015-01-10 17:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-10 17:52 - 2015-01-10 17:52 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-10 17:52 - 2015-01-10 17:52 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-10 17:52 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-01-10 17:52 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-01-10 17:52 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-01-10 17:45 - 2015-01-10 17:47 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\j\Desktop\mbam-setup-2.0.4.1028 (1).exe
2015-01-10 17:45 - 2015-01-10 17:46 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\j\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-10 17:25 - 2015-01-10 17:25 - 02191360 _____ () C:\Users\j\Downloads\adwcleaner_4.107.exe
2015-01-10 17:23 - 2015-01-10 21:53 - 00011012 _____ () C:\Windows\PFRO.log
2015-01-10 17:17 - 2015-01-10 17:22 - 00000000 ____D () C:\AdwCleaner
2015-01-10 17:15 - 2015-01-10 17:15 - 02191360 _____ () C:\Users\j\Desktop\adwcleaner_4.107.exe
2015-01-10 17:10 - 2015-01-10 17:10 - 00000085 _____ () C:\Windows\wininit.ini
2015-01-10 15:27 - 2015-01-10 14:44 - 02124288 _____ (Farbar) C:\Users\j\Desktop\FRST64.exe
2015-01-10 15:26 - 2015-01-10 15:26 - 00013480 _____ () C:\Users\j\Downloads\FRSTLauncher.exe
2015-01-10 15:25 - 2015-01-10 15:25 - 00027853 _____ () C:\Users\j\Downloads\FRSTLauncher.rar
2015-01-10 15:00 - 2015-01-10 21:59 - 00000000 ____D () C:\FRST
2015-01-10 13:46 - 2015-01-10 21:53 - 00001182 _____ () C:\Windows\setupact.log
2015-01-10 13:46 - 2015-01-10 13:46 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-10 13:20 - 2015-01-10 13:20 - 00062330 _____ () C:\Users\j\Documents\cc_20150110_132020.reg
2015-01-10 12:59 - 2015-01-10 13:42 - 00003888 _____ () C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-01-10 12:49 - 2015-01-10 13:48 - 00000000 ____D () C:\Program Files\trend micro
2015-01-10 12:49 - 2015-01-10 12:49 - 00000000 ____D () C:\rsit
2015-01-10 12:46 - 2015-01-10 12:46 - 01222144 _____ () C:\Users\j\Desktop\RSITx64.exe
2015-01-10 12:41 - 2015-01-10 12:41 - 15569192 _____ (FinalWire Ltd. ) C:\Users\j\Downloads\aida64extreme500 (1).exe
2015-01-10 11:32 - 2015-01-10 11:32 - 00001175 _____ () C:\Users\j\Desktop\AIDA64 Extreme.lnk
2015-01-10 11:31 - 2015-01-10 11:31 - 00000000 ____D () C:\Program Files (x86)\FinalWire
2015-01-10 11:30 - 2015-01-10 11:31 - 15569192 _____ (FinalWire Ltd. ) C:\Users\j\Downloads\aida64extreme500.exe
2015-01-09 23:09 - 2015-01-09 23:09 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2015-01-09 23:08 - 2015-01-10 17:23 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-01-09 23:08 - 2015-01-10 17:10 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2015-01-09 23:06 - 2015-01-09 23:06 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\j\Downloads\spybot-2.4.exe
2015-01-09 21:44 - 2015-01-09 21:44 - 00001924 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-01-09 21:43 - 2015-01-09 21:43 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-01-09 21:43 - 2015-01-09 21:43 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-01-09 20:10 - 2015-01-09 20:10 - 00123370 _____ () C:\Users\j\Documents\cc_20150109_201008.reg
2015-01-09 16:37 - 2015-01-09 19:53 - 00000000 ___RD () C:\Users\j\Desktop\PONECHAT
2014-12-26 12:54 - 2014-12-26 12:54 - 00479678 _____ () C:\Users\j\Downloads\3d-lawn-darts.zip
2014-12-26 12:51 - 2014-12-26 12:51 - 00300363 _____ () C:\Users\j\Downloads\sipky.zip
2014-12-25 12:42 - 2014-12-25 12:42 - 00035328 _____ () C:\Users\j\Downloads\Adresář-rozhodčích_2014-15.xls
2014-12-25 12:42 - 2014-12-25 12:42 - 00035328 _____ () C:\Users\j\Downloads\Adresář-rozhodčích_2014-15 (1).xls
2014-12-20 21:57 - 2014-12-20 22:04 - 00000000 ____D () C:\Program Files\FlatOut2
2014-12-19 09:33 - 2014-12-19 11:15 - 00000000 ____D () C:\Users\j\Documents\VirtualDJ
2014-12-19 09:33 - 2014-12-19 09:33 - 00001046 _____ () C:\Users\j\Desktop\VirtualDJ Home FREE.lnk
2014-12-19 09:33 - 2014-12-19 09:33 - 00000000 ____D () C:\Users\j\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-12-19 09:33 - 2014-12-19 09:33 - 00000000 ____D () C:\Program Files (x86)\VirtualDJ
2014-12-19 09:30 - 2014-12-19 09:30 - 39178560 _____ (Atomix Productions) C:\Users\j\Downloads\install_virtualdj_home_v7-4-1.exe
2014-12-19 09:11 - 2014-12-19 09:11 - 00000000 ____D () C:\Users\j\Documents\Native Instruments
2014-12-19 09:09 - 2014-12-19 09:09 - 00000000 ____D () C:\Users\j\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Native Instruments
2014-12-19 09:09 - 2014-12-19 09:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
2014-12-19 09:08 - 2014-12-19 09:29 - 00000000 ____D () C:\Users\j\Documents\Traktor3
2014-12-19 09:05 - 2014-12-19 09:05 - 62322172 _____ () C:\Users\j\Downloads\Traktor3_341U_Win.zip
2014-12-18 20:51 - 2014-12-13 06:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-18 20:51 - 2014-12-13 04:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-12-14 17:57 - 2014-12-14 18:55 - 1042091722 _____ () C:\Users\j\Downloads\10-pravidel-jak-sbalit-holku-(2014)-(Česko)-(Komedie).avi
2014-12-14 14:10 - 2014-12-14 14:11 - 07888344 _____ () C:\Users\j\Downloads\Waka_Waka_Kid (1).wmv
2014-12-14 14:10 - 2014-12-14 14:10 - 00000276 _____ () C:\Users\j\Downloads\lera76.vcf
2014-12-14 14:10 - 2014-12-14 14:10 - 00000276 _____ () C:\Users\j\Downloads\lera76 (1).vcf
2014-12-12 22:46 - 2014-12-12 22:46 - 00000000 ____D () C:\Windows\system32\appraiser
2014-12-11 18:50 - 2014-11-27 02:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-11 18:50 - 2014-11-27 02:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-11 18:50 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-11 18:50 - 2014-11-22 04:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-11 18:50 - 2014-11-22 04:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-11 18:50 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-11 18:50 - 2014-11-22 03:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-11 18:50 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-11 18:50 - 2014-11-22 03:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-11 18:50 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-11 18:50 - 2014-11-22 03:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-11 18:50 - 2014-11-22 03:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-11 18:50 - 2014-11-22 03:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-11 18:50 - 2014-11-22 03:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-11 18:50 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-11 18:50 - 2014-11-22 03:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-11 18:50 - 2014-11-22 03:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-11 18:50 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-11 18:50 - 2014-11-22 03:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-11 18:50 - 2014-11-22 03:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-11 18:50 - 2014-11-22 03:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-11 18:50 - 2014-11-22 03:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-11 18:50 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-11 18:50 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-11 18:50 - 2014-11-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-11 18:50 - 2014-11-22 03:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-11 18:50 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-11 18:50 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-11 18:50 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-11 18:50 - 2014-11-22 02:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-11 18:50 - 2014-11-22 02:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-11 18:50 - 2014-11-22 02:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-12-11 18:50 - 2014-11-22 02:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-12-11 18:50 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-11 18:50 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-11 18:50 - 2014-11-22 02:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-11 18:50 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-11 18:50 - 2014-11-22 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-11 18:50 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-11 18:50 - 2014-11-22 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-11 18:50 - 2014-11-22 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-11 18:50 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-11 18:50 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-11 18:50 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-11 18:50 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-11 18:50 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-11 18:50 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-11 18:50 - 2014-11-22 02:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-11 18:50 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-11 18:50 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-11 18:50 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-11 18:50 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-11 18:50 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-11 18:50 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-11 07:38 - 2014-11-11 02:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-11 07:06 - 2014-10-18 03:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-11 07:06 - 2014-10-18 02:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-12-11 07:06 - 2014-07-07 03:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-12-11 07:06 - 2014-07-07 03:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-12-11 07:06 - 2014-07-07 03:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-12-11 07:06 - 2014-07-07 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-12-11 07:06 - 2014-07-07 02:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2014-12-11 07:06 - 2014-07-07 02:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2014-12-11 07:06 - 2014-07-07 02:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2014-12-11 07:06 - 2014-07-07 02:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-10 21:58 - 2010-03-11 16:33 - 01427778 _____ () C:\Windows\WindowsUpdate.log
2015-01-10 21:54 - 2014-07-06 21:37 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-10 21:54 - 2014-05-28 20:59 - 00000000 ____D () C:\Users\j\AppData\Local\HTC MediaHub
2015-01-10 21:53 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-10 21:53 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\L2Schemas
2015-01-10 17:31 - 2009-07-14 05:45 - 00023232 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-10 17:31 - 2009-07-14 05:45 - 00023232 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-10 17:28 - 2009-07-14 16:18 - 00672424 _____ () C:\Windows\system32\perfh005.dat
2015-01-10 17:28 - 2009-07-14 16:18 - 00142988 _____ () C:\Windows\system32\perfc005.dat
2015-01-10 17:28 - 2009-07-14 06:13 - 01593310 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-10 17:23 - 2012-01-30 20:13 - 00000000 ____D () C:\Program Files\Google
2015-01-10 17:23 - 2012-01-30 20:12 - 00000000 ____D () C:\Program Files (x86)\Google
2015-01-10 17:22 - 2010-03-11 16:52 - 00000000 ____D () C:\Users\j
2015-01-10 17:12 - 2012-01-30 20:12 - 00000000 ____D () C:\ProgramData\Google
2015-01-10 17:12 - 2011-12-21 10:34 - 00000000 ____D () C:\Users\j\AppData\Local\Google
2015-01-10 17:11 - 2012-01-12 19:07 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-01-10 13:46 - 2012-09-30 19:47 - 03876352 ___SH () C:\Users\j\Desktop\Thumbs.db
2015-01-10 13:46 - 2012-05-23 17:10 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-10 13:46 - 2012-01-30 20:13 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-10 13:46 - 2012-01-30 20:13 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-10 13:46 - 2011-12-21 10:34 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA.job
2015-01-10 13:46 - 2011-12-21 10:34 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core.job
2015-01-10 13:43 - 2014-06-03 11:18 - 00003824 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1393153081
2015-01-10 13:43 - 2014-02-19 22:23 - 00002974 _____ () C:\Windows\System32\Tasks\{0D0A8180-A90F-4466-ABC3-F165C9B7F869}
2015-01-10 13:43 - 2012-05-23 17:10 - 00003854 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-10 13:43 - 2012-01-30 20:13 - 00003960 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-01-10 13:43 - 2012-01-30 20:13 - 00003708 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-01-10 13:43 - 2011-12-21 10:34 - 00003924 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA
2015-01-10 13:43 - 2011-12-21 10:34 - 00003528 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core
2015-01-10 13:11 - 2010-03-11 16:27 - 00000000 ____D () C:\Windows\Panther
2015-01-10 13:04 - 2012-01-12 19:08 - 00000000 ____D () C:\Users\j\AppData\Roaming\Skype
2015-01-10 13:04 - 2011-12-26 10:45 - 00000000 ____D () C:\Users\j\AppData\Roaming\DAEMON Tools Lite
2015-01-10 12:15 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2015-01-10 11:32 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-01-09 21:43 - 2014-07-06 21:35 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-01-09 21:43 - 2014-07-06 21:35 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-01-09 21:41 - 2014-02-23 11:58 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-01-09 21:38 - 2010-03-11 17:58 - 00109944 _____ () C:\Users\j\AppData\Local\GDIPFONTCACHEV1.DAT
2015-01-09 21:35 - 2009-07-14 05:45 - 00418080 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-09 21:09 - 2012-02-02 21:55 - 00000000 ____D () C:\Program Files (x86)\Sega
2015-01-09 21:09 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-09 21:06 - 2012-02-02 22:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sega
2015-01-09 21:06 - 2010-03-11 17:59 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-09 20:55 - 2014-09-06 12:18 - 00000000 ____D () C:\Program Files (x86)\Global Graphics
2015-01-09 20:53 - 2012-10-30 17:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Czech Soccer Manager 2002 FE
2015-01-09 20:53 - 2012-10-30 17:02 - 00000000 ____D () C:\Program Files (x86)\Czech Soccer Manager 2002 FE
2015-01-09 20:50 - 2011-12-25 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CoD RconTool
2015-01-09 20:50 - 2011-12-25 15:44 - 00000000 ____D () C:\Program Files (x86)\CoD RconTool
2015-01-09 20:47 - 2012-01-31 18:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bagger-Simulator 2011
2015-01-09 20:47 - 2012-01-31 18:01 - 00000000 ____D () C:\Program Files (x86)\Bagger-Simulator 2011
2015-01-09 16:45 - 2011-12-24 21:44 - 00000000 ___RD () C:\Users\j\Desktop\GAMES
2015-01-06 04:36 - 2011-12-21 10:06 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-12-23 13:00 - 2014-03-03 21:38 - 01611274 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-12-20 22:04 - 2011-12-24 21:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TopCD
2014-12-16 12:59 - 2012-04-04 08:15 - 00000000 ____D () C:\Windows\Minidump
2014-12-16 12:52 - 2014-01-10 18:42 - 00000000 ____D () C:\Users\j\AppData\Roaming\Seznam.cz
2014-12-12 22:46 - 2014-05-05 06:22 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-12-12 22:46 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-12 22:46 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2014-12-12 22:45 - 2014-07-23 12:20 - 00000000 ____D () C:\Users\j\AppData\Local\Adobe
2014-12-12 22:44 - 2012-05-23 17:10 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-12 22:44 - 2012-01-30 20:14 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-12 12:01 - 2013-07-29 06:04 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-12 11:50 - 2011-12-21 11:03 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-11 07:22 - 2012-01-12 17:59 - 00000000 ____D () C:\ProgramData\Microsoft Help

Some content of TEMP:
====================
C:\Users\j\AppData\Local\Temp\eauninstall.exe
C:\Users\j\AppData\Local\Temp\NBA LIVE 07_uninst.exe
C:\Users\j\AppData\Local\Temp\Quarantine.exe
C:\Users\j\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-01-10 11:57

==================== End Of Log ============================

jibo · #9 Příspěvek od **jibo** » 10 led 2015 22:07

A zde addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-01-2015
Ran by j at 2015-01-10 22:01:51
Running from C:\Users\j\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Flash Player 16 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\Adobe Shockwave Player) (Version: 10.2.0.22 - Adobe Systems, Inc.)
AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
ATI Catalyst Install Manager (HKLM\...\{6153098B-60DB-6A9F-EA0F-B006A96B57D5}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.1.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version: - Canon Inc.)
Canon MG5300 series On-screen Manual (HKLM-x32\...\Canon MG5300 series On-screen Manual) (Version: - )
Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version: - )
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - )
Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 4.07 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
CompressionPackage (HKLM-x32\...\{E848D976-CE38-43DC-9D22-5CBAC9130387}) (Version: 2.00.0000 - Linos Software)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.1.0236 - DT Soft Ltd)
Dropbox (HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
EA SPORTS online 2005 (HKLM-x32\...\82A44D22-9452-49FB-00FB-CEC7DCAF7E23) (Version: - )
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.1.1 - SCS Software)
FlatOut2 (HKLM-x32\...\{D4006E71-FF32-44FF-AD5A-B5EE4389B825}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
Football Manager 2012 (HKLM-x32\...\Football Manager 2012_is1) (Version: - )
Google Earth (HKLM-x32\...\{96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}) (Version: 7.1.1.1888 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.11.5 - HTC)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
Mafia (HKLM-x32\...\{C72D7008-266D-4DD8-BF3C-296B736127F6}) (Version: 1.02 - )
Mafia II DLC Joe's Adventures (HKLM-x32\...\Mafia II_is1) (Version: - )
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{57660847-B1F7-35BD-9118-F62EB863A598}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{F03CB3EF-DC16-35CE-B3C1-C68EA09E5E97}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Moorhuhnjagd (HKLM-x32\...\Moorhuhnjagd) (Version: - )
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NHL™ 09 (HKLM-x32\...\{827B97A9-B347-4110-9F89-37AF2B758F94}) (Version: 2.0.1.0 - Electronic Arts)
NVIDIA PhysX (HKLM-x32\...\{F9835182-794B-4F24-902A-E2CA9D43380F}) (Version: 9.10.0512 - NVIDIA Corporation)
Opera Stable 26.0.1656.60 (HKLM-x32\...\Opera 26.0.1656.60) (Version: 26.0.1656.60 - Opera Software ASA)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.11.0706 - REALTEK Semiconductor Corp.)
Registrace uživatele zařízení Canon MG5300 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG5300 series) (Version: - )
RTL Winter Games 2007 (HKLM-x32\...\{0938795F-85C6-4C77-B2EB-5834B5B8DE19}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
Seznam Software (HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\SeznamInstall) (Version: - Seznam.cz)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Some PDF to Word Converter 2.0 (HKLM-x32\...\Some PDF to Word Converter_is1) (Version: - SomePDF.com)
StarnetPlayer - testovací verze (HKLM-x32\...\{46926195-CA82-4C38-8B8F-49FC664E165B}) (Version: 1.14.10.13 - Starnet s.r.o.)
Traktor 2 (HKLM-x32\...\Traktor 2_is1) (Version: 1.0 - TopQer, s.r.o.)
Traktor Simulátor (HKLM-x32\...\Traktor Simulátor_is1) (Version: 1.0 - US-Action, s.r.o.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VirtualDJ Home FREE (HKLM-x32\...\{77C2D5D4-ADC5-49F9-B36E-5992FCF35EA3}) (Version: 7.4.1 - Atomix Productions)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
Youtube Downloader HD v. 2.9.5 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\j\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\j\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)

==================== Restore Points =========================

30-12-2014 08:11:09 Windows Update
02-01-2015 10:30:29 Windows Update
09-01-2015 16:45:30 Windows Update
09-01-2015 20:54:57 Removed gDoc PDF Server Macros 5
09-01-2015 20:56:20 Removed FIFA 08
09-01-2015 21:02:41 Removed GTA San Andreas
09-01-2015 21:04:52 Odstraněno Medieval II Total War
09-01-2015 21:40:31 avast! antivirus system restore point
10-01-2015 17:10:47 Removed Skype Click to Call

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {064D46DD-87FA-4CE4-BBA0-3417249BCBD5} - System32\Tasks\{0D0A8180-A90F-4466-ABC3-F165C9B7F869} => Chrome.exe
Task: {072C442E-AB25-49F6-A152-9D9F76F979FE} - System32\Tasks\Opera scheduled Autoupdate 1393153081 => C:\Program Files (x86)\Opera\launcher.exe [2014-12-16] (Opera Software)
Task: {1B288513-20C2-4565-9D9A-221E03CEDDE4} - System32\Tasks\{FC1C6445-6A65-4457-9A94-468CD8DD7B19} => C:\Users\j\Desktop\Youtube-Downloader-HD-Setup.exe
Task: {1ECE341A-D801-41DD-8C3C-98CBB73928FD} - System32\Tasks\{FEE4F837-FF97-4FBD-93BD-C59D5472C5C1} => pcalua.exe -a "C:\Users\j\Desktop\g6\Bluetooth Atheros.exe" -d C:\Users\j\Desktop\g6
Task: {2DD1E094-BB7E-4594-BE47-34CDEDA11BFA} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-01-09] (AVAST Software)
Task: {3A9D6F11-85BB-4CC9-9500-0CD7695A5705} - System32\Tasks\{06A4675B-0401-4878-85B3-11C330564233} => C:\Program Files (x86)\City Interactive\Crash Time II\BurningWheels.exe
Task: {4E746CAF-D131-4711-B9E3-94E48CBBF9E1} - System32\Tasks\{4188D104-5A5D-4FC8-A556-C292C7C2C5B6} => pcalua.exe -a E:\DotNet2Redistributable\dotnetfx.exe -d E:\DotNet2Redistributable
Task: {5304DCE0-8C8C-4977-BCA1-087C1B8048F5} - System32\Tasks\{FA41510F-F878-49BC-973B-B820B7F1CACA} => pcalua.exe -a "C:\Users\j\Desktop\Mafia 1 – Plna Verze Hry – CZ\Setup.exe" -d "C:\Users\j\Desktop\Mafia 1 – Plna Verze Hry – CZ"
Task: {5C71FD8E-53ED-4409-8757-BE532E35C176} - System32\Tasks\{6B89C1D0-FC7F-4C59-ACD4-7ADFF548AA37} => pcalua.exe -a "E:\Support\FIFA 11_code.exe" -d E:\Support
Task: {5E26FE30-A7E7-4919-9500-35AC9F94A583} - System32\Tasks\{83D79FBA-45D6-460E-896A-294FCB565E96} => C:\Users\j\Desktop\GAMES\nainstalované\nhl2009.exe
Task: {6DA337F7-F389-4657-AC39-1F96E9380442} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-24] (Google Inc.)
Task: {6E011516-E5CC-4BEA-A8DF-69B17670DCEF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-24] (Google Inc.)
Task: {6FF0A111-A711-427F-B553-81ED951709E3} - System32\Tasks\{C674C187-9DA8-44E8-9CE7-4672ED0518CB} => pcalua.exe -a "C:\Program Files (x86)\EA SPORTS\NHL 09\Support\NHL 09_uninst.exe" -d "C:\Program Files (x86)\EA SPORTS\NHL 09\Support"
Task: {8CAD1487-5C16-4450-A402-061A80402D26} - System32\Tasks\{F5752070-8469-4199-85AC-6C93E73D4838} => C:\Program Files (x86)\City Interactive\Crash Time II\BurningWheels.exe
Task: {912FE81A-5EBE-4DF3-A5F9-E25B79940BE3} - System32\Tasks\{CF7D21F9-AD81-4E8D-BBDD-9A3E90AE78B2} => C:\Users\j\Desktop\Youtube-Downloader-HD-Setup.exe
Task: {96490D7A-F0FF-49DA-BDA6-38F80FA9A11E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-23] (Google Inc.)
Task: {9C624CFD-5E83-40F1-A3DA-D803ABBF8397} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-23] (Google Inc.)
Task: {A572C13B-1478-4048-A53A-275685A15BA6} - System32\Tasks\{72E5BF71-2646-4147-BF75-86E5E1E14CFC} => pcalua.exe -a "C:\Program Files (x86)\EA SPORTS\NHL 09\Support\NHL 09_code.exe" -d "C:\Program Files (x86)\EA SPORTS\NHL 09\Support"
Task: {A8825E95-BA5A-4253-993F-0AA10A0F4B08} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {B6221442-3D07-4BC9-A4A3-850D4A30D4EF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-10-22] (Piriform Ltd)
Task: {CAA646E0-C3D4-44FB-8BE4-7F8EF6D4E976} - System32\Tasks\{2FC59DDE-4AD7-4CB5-9464-2F9B4DC639CC} => C:\Users\j\Desktop\GAMES\nainstalované\nhl2009.exe
Task: {DB8C0B04-B27F-4FC5-BDB0-CDB6EAE8B2EB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-12] (Adobe Systems Incorporated)
Task: {E8F59D5E-236C-4E65-98A6-B362CB0F47B5} - System32\Tasks\{00789F6F-168C-4984-8372-DEBBF4A9146D} => C:\Program Files (x86)\City Interactive\Crash Time II\BurningWheels.exe
Task: {EEED41BB-5956-4E1F-B5A0-AFA6348FCFB0} - System32\Tasks\{E1298F41-22FC-4345-8B29-128CC3563C30} => pcalua.exe -a D:\CRACK\269etina.exe -d D:\CRACK
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core.job => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA.job => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2011-07-05 11:27 - 2011-07-05 11:27 - 00073728 _____ () c:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-05-20 16:53 - 2014-05-20 16:53 - 00821600 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2012-12-07 18:27 - 2012-12-07 18:27 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2011-07-05 11:27 - 2011-07-05 11:27 - 00103424 _____ () c:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2011-07-05 11:13 - 2011-07-05 11:13 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-06-17 13:42 - 2011-06-17 13:42 - 00016384 _____ () c:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 00535160 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\opera_crashreporter.exe
2015-01-10 21:49 - 2015-01-10 21:49 - 02909696 _____ () C:\Program Files\AVAST Software\Avast\defs\15011002\algo.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-05-20 16:53 - 2014-05-20 16:53 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-05-20 16:55 - 2014-05-20 16:55 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2015-01-09 21:43 - 2015-01-09 21:43 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 01358456 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\libglesv2.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 00219256 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\libegl.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 09312888 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\pdf.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 00991352 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
MSCONFIG\startupreg: CanonSolutionMenuEx => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"

========================= Accounts: ==========================

Administrator (S-1-5-21-622834961-1658247782-2454784526-500 - Administrator - Disabled)
Guest (S-1-5-21-622834961-1658247782-2454784526-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-622834961-1658247782-2454784526-1005 - Limited - Enabled)
j (S-1-5-21-622834961-1658247782-2454784526-1000 - Administrator - Enabled) => C:\Users\j

==================== Faulty Device Manager Devices =============

Name: Síťový adaptér Ethernet
Description: Síťový adaptér Ethernet
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Zařízení PCI
Description: Zařízení PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (01/10/2015 00:05:29 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/10/2015 00:05:28 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/10/2015 00:05:22 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/10/2015 00:02:21 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/09/2015 11:32:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SDFiles.exe verze 2.4.40.135 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1344

Čas spuštění: 01d02c5bcd64fc7d

Čas ukončení: 172

Cesta k aplikaci: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exe

ID hlášení: 2bd3973d-984f-11e4-9ca4-bb7c84359231

Error: (01/06/2015 08:01:13 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\svchost.exe -k netsvcs; Popis = Windows Update; Chyba = 0x81000101).

Error: (12/16/2014 07:39:00 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Služba Šifrování neinicializovala databázi katalogu. Chyba součásti ESENT: -1305.

Error: (12/11/2014 07:03:23 AM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Sledování výkonu objektu indexování nebylo inicializováno, protože nejsou načteny čítače nebo nebyl otevřen sdílený objekt paměti. Tato skutečnost má vliv pouze na dostupnost čítačů výkonu. Restartujte počítač.

Kontext: aplikace , katalog SystemIndex

Error: (12/08/2014 04:03:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: POWERPNT.EXE, verze: 12.0.6600.1000, časové razítko: 0x4de50c7e
Název chybujícího modulu: MSSP3CZ.DLL, verze: 12.0.0.11, časové razítko: 0x44c9eaa0
Kód výjimky: 0xc0000005
Posun chyby: 0x000034c0
ID chybujícího procesu: 0x1760
Čas spuštění chybující aplikace: 0xPOWERPNT.EXE0
Cesta k chybující aplikaci: POWERPNT.EXE1
Cesta k chybujícímu modulu: POWERPNT.EXE2
ID zprávy: POWERPNT.EXE3

Error: (11/22/2014 07:45:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: szndesktop.exe, verze: 0.0.0.0, časové razítko: 0x5167c21b
Název chybujícího modulu: lightspeed.dll, verze: 0.0.0.0, časové razítko: 0x515061b5
Kód výjimky: 0xc0000005
Posun chyby: 0x0007c6c8
ID chybujícího procesu: 0xe4c
Čas spuštění chybující aplikace: 0xszndesktop.exe0
Cesta k chybující aplikaci: szndesktop.exe1
Cesta k chybujícímu modulu: szndesktop.exe2
ID zprávy: szndesktop.exe3

System errors:
=============
Error: (01/10/2015 09:52:27 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (01/10/2015 08:19:50 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {1F87137D-0E7C-44D5-8C73-4EFFB68962F2}

Error: (01/10/2015 08:16:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Zasílání zpráv o chybách systému Windows bylo dosaženo časového limitu (30000 ms).

Error: (01/10/2015 05:23:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby:
%%1069

Error: (01/10/2015 05:23:06 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WSearch se nemohla přihlásit jako NT AUTHORITY\SYSTEM s aktuálně konfigurovaným heslem z důvodu následující chyby:
%%50

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (01/10/2015 05:23:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Windows Media Player Network Sharing neuspěla při spuštění v důsledku následující chyby:
%%1069

Error: (01/10/2015 05:23:04 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WMPNetworkSvc se nemohla přihlásit jako NT AUTHORITY\NetworkService s aktuálně konfigurovaným heslem z důvodu následující chyby:
%%50

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (01/10/2015 05:22:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (01/10/2015 05:22:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (01/10/2015 05:22:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Instalační služba systému Windows byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Microsoft Office Sessions:
=========================
Error: (12/08/2014 04:03:39 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 204 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/11/2014 10:25:44 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 3368 seconds with 2820 seconds of active time. This session ended with a crash.

Error: (02/10/2014 10:32:43 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 864 seconds with 660 seconds of active time. This session ended with a crash.

Error: (12/04/2013 07:51:23 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 884 seconds with 240 seconds of active time. This session ended with a crash.

Error: (12/04/2013 07:36:09 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 10882 seconds with 2820 seconds of active time. This session ended with a crash.

Error: (10/23/2013 07:16:58 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1082 seconds with 660 seconds of active time. This session ended with a crash.

Error: (10/23/2013 02:26:52 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 470 seconds with 180 seconds of active time. This session ended with a crash.

CodeIntegrity Errors:
===================================
Date: 2012-01-07 14:18:42.566
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.519
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.269
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.222
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.176
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.098
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: AMD E-350 Processor
Percentage of memory in use: 44%
Total physical RAM: 3689.41 MB
Available physical RAM: 2061.34 MB
Total Pagefile: 7376.99 MB
Available Pagefile: 5024.98 MB
Total Virtual: 8192 MB
Available Virtual: 8191.86 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:698.54 GB) (Free:437.2 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 571E36D7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=698.5 GB) - (Type=07 NTFS)

==================== End Of Log ============================

jibo · #10 Příspěvek od **jibo** » 10 led 2015 22:07

A zde addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-01-2015
Ran by j at 2015-01-10 22:01:51
Running from C:\Users\j\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Flash Player 16 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\Adobe Shockwave Player) (Version: 10.2.0.22 - Adobe Systems, Inc.)
AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
ATI Catalyst Install Manager (HKLM\...\{6153098B-60DB-6A9F-EA0F-B006A96B57D5}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.1.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version: - Canon Inc.)
Canon MG5300 series On-screen Manual (HKLM-x32\...\Canon MG5300 series On-screen Manual) (Version: - )
Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version: - )
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - )
Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 4.07 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
CompressionPackage (HKLM-x32\...\{E848D976-CE38-43DC-9D22-5CBAC9130387}) (Version: 2.00.0000 - Linos Software)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.1.0236 - DT Soft Ltd)
Dropbox (HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
EA SPORTS online 2005 (HKLM-x32\...\82A44D22-9452-49FB-00FB-CEC7DCAF7E23) (Version: - )
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.1.1 - SCS Software)
FlatOut2 (HKLM-x32\...\{D4006E71-FF32-44FF-AD5A-B5EE4389B825}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
Football Manager 2012 (HKLM-x32\...\Football Manager 2012_is1) (Version: - )
Google Earth (HKLM-x32\...\{96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}) (Version: 7.1.1.1888 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.11.5 - HTC)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
Mafia (HKLM-x32\...\{C72D7008-266D-4DD8-BF3C-296B736127F6}) (Version: 1.02 - )
Mafia II DLC Joe's Adventures (HKLM-x32\...\Mafia II_is1) (Version: - )
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{57660847-B1F7-35BD-9118-F62EB863A598}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{F03CB3EF-DC16-35CE-B3C1-C68EA09E5E97}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Moorhuhnjagd (HKLM-x32\...\Moorhuhnjagd) (Version: - )
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NHL™ 09 (HKLM-x32\...\{827B97A9-B347-4110-9F89-37AF2B758F94}) (Version: 2.0.1.0 - Electronic Arts)
NVIDIA PhysX (HKLM-x32\...\{F9835182-794B-4F24-902A-E2CA9D43380F}) (Version: 9.10.0512 - NVIDIA Corporation)
Opera Stable 26.0.1656.60 (HKLM-x32\...\Opera 26.0.1656.60) (Version: 26.0.1656.60 - Opera Software ASA)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.11.0706 - REALTEK Semiconductor Corp.)
Registrace uživatele zařízení Canon MG5300 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG5300 series) (Version: - )
RTL Winter Games 2007 (HKLM-x32\...\{0938795F-85C6-4C77-B2EB-5834B5B8DE19}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
Seznam Software (HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\SeznamInstall) (Version: - Seznam.cz)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Some PDF to Word Converter 2.0 (HKLM-x32\...\Some PDF to Word Converter_is1) (Version: - SomePDF.com)
StarnetPlayer - testovací verze (HKLM-x32\...\{46926195-CA82-4C38-8B8F-49FC664E165B}) (Version: 1.14.10.13 - Starnet s.r.o.)
Traktor 2 (HKLM-x32\...\Traktor 2_is1) (Version: 1.0 - TopQer, s.r.o.)
Traktor Simulátor (HKLM-x32\...\Traktor Simulátor_is1) (Version: 1.0 - US-Action, s.r.o.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VirtualDJ Home FREE (HKLM-x32\...\{77C2D5D4-ADC5-49F9-B36E-5992FCF35EA3}) (Version: 7.4.1 - Atomix Productions)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
Youtube Downloader HD v. 2.9.5 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\j\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\j\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)

==================== Restore Points =========================

30-12-2014 08:11:09 Windows Update
02-01-2015 10:30:29 Windows Update
09-01-2015 16:45:30 Windows Update
09-01-2015 20:54:57 Removed gDoc PDF Server Macros 5
09-01-2015 20:56:20 Removed FIFA 08
09-01-2015 21:02:41 Removed GTA San Andreas
09-01-2015 21:04:52 Odstraněno Medieval II Total War
09-01-2015 21:40:31 avast! antivirus system restore point
10-01-2015 17:10:47 Removed Skype Click to Call

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {064D46DD-87FA-4CE4-BBA0-3417249BCBD5} - System32\Tasks\{0D0A8180-A90F-4466-ABC3-F165C9B7F869} => Chrome.exe
Task: {072C442E-AB25-49F6-A152-9D9F76F979FE} - System32\Tasks\Opera scheduled Autoupdate 1393153081 => C:\Program Files (x86)\Opera\launcher.exe [2014-12-16] (Opera Software)
Task: {1B288513-20C2-4565-9D9A-221E03CEDDE4} - System32\Tasks\{FC1C6445-6A65-4457-9A94-468CD8DD7B19} => C:\Users\j\Desktop\Youtube-Downloader-HD-Setup.exe
Task: {1ECE341A-D801-41DD-8C3C-98CBB73928FD} - System32\Tasks\{FEE4F837-FF97-4FBD-93BD-C59D5472C5C1} => pcalua.exe -a "C:\Users\j\Desktop\g6\Bluetooth Atheros.exe" -d C:\Users\j\Desktop\g6
Task: {2DD1E094-BB7E-4594-BE47-34CDEDA11BFA} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-01-09] (AVAST Software)
Task: {3A9D6F11-85BB-4CC9-9500-0CD7695A5705} - System32\Tasks\{06A4675B-0401-4878-85B3-11C330564233} => C:\Program Files (x86)\City Interactive\Crash Time II\BurningWheels.exe
Task: {4E746CAF-D131-4711-B9E3-94E48CBBF9E1} - System32\Tasks\{4188D104-5A5D-4FC8-A556-C292C7C2C5B6} => pcalua.exe -a E:\DotNet2Redistributable\dotnetfx.exe -d E:\DotNet2Redistributable
Task: {5304DCE0-8C8C-4977-BCA1-087C1B8048F5} - System32\Tasks\{FA41510F-F878-49BC-973B-B820B7F1CACA} => pcalua.exe -a "C:\Users\j\Desktop\Mafia 1 – Plna Verze Hry – CZ\Setup.exe" -d "C:\Users\j\Desktop\Mafia 1 – Plna Verze Hry – CZ"
Task: {5C71FD8E-53ED-4409-8757-BE532E35C176} - System32\Tasks\{6B89C1D0-FC7F-4C59-ACD4-7ADFF548AA37} => pcalua.exe -a "E:\Support\FIFA 11_code.exe" -d E:\Support
Task: {5E26FE30-A7E7-4919-9500-35AC9F94A583} - System32\Tasks\{83D79FBA-45D6-460E-896A-294FCB565E96} => C:\Users\j\Desktop\GAMES\nainstalované\nhl2009.exe
Task: {6DA337F7-F389-4657-AC39-1F96E9380442} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-24] (Google Inc.)
Task: {6E011516-E5CC-4BEA-A8DF-69B17670DCEF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-24] (Google Inc.)
Task: {6FF0A111-A711-427F-B553-81ED951709E3} - System32\Tasks\{C674C187-9DA8-44E8-9CE7-4672ED0518CB} => pcalua.exe -a "C:\Program Files (x86)\EA SPORTS\NHL 09\Support\NHL 09_uninst.exe" -d "C:\Program Files (x86)\EA SPORTS\NHL 09\Support"
Task: {8CAD1487-5C16-4450-A402-061A80402D26} - System32\Tasks\{F5752070-8469-4199-85AC-6C93E73D4838} => C:\Program Files (x86)\City Interactive\Crash Time II\BurningWheels.exe
Task: {912FE81A-5EBE-4DF3-A5F9-E25B79940BE3} - System32\Tasks\{CF7D21F9-AD81-4E8D-BBDD-9A3E90AE78B2} => C:\Users\j\Desktop\Youtube-Downloader-HD-Setup.exe
Task: {96490D7A-F0FF-49DA-BDA6-38F80FA9A11E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-23] (Google Inc.)
Task: {9C624CFD-5E83-40F1-A3DA-D803ABBF8397} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-23] (Google Inc.)
Task: {A572C13B-1478-4048-A53A-275685A15BA6} - System32\Tasks\{72E5BF71-2646-4147-BF75-86E5E1E14CFC} => pcalua.exe -a "C:\Program Files (x86)\EA SPORTS\NHL 09\Support\NHL 09_code.exe" -d "C:\Program Files (x86)\EA SPORTS\NHL 09\Support"
Task: {A8825E95-BA5A-4253-993F-0AA10A0F4B08} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {B6221442-3D07-4BC9-A4A3-850D4A30D4EF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-10-22] (Piriform Ltd)
Task: {CAA646E0-C3D4-44FB-8BE4-7F8EF6D4E976} - System32\Tasks\{2FC59DDE-4AD7-4CB5-9464-2F9B4DC639CC} => C:\Users\j\Desktop\GAMES\nainstalované\nhl2009.exe
Task: {DB8C0B04-B27F-4FC5-BDB0-CDB6EAE8B2EB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-12] (Adobe Systems Incorporated)
Task: {E8F59D5E-236C-4E65-98A6-B362CB0F47B5} - System32\Tasks\{00789F6F-168C-4984-8372-DEBBF4A9146D} => C:\Program Files (x86)\City Interactive\Crash Time II\BurningWheels.exe
Task: {EEED41BB-5956-4E1F-B5A0-AFA6348FCFB0} - System32\Tasks\{E1298F41-22FC-4345-8B29-128CC3563C30} => pcalua.exe -a D:\CRACK\269etina.exe -d D:\CRACK
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core.job => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA.job => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2011-07-05 11:27 - 2011-07-05 11:27 - 00073728 _____ () c:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-05-20 16:53 - 2014-05-20 16:53 - 00821600 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2012-12-07 18:27 - 2012-12-07 18:27 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2011-07-05 11:27 - 2011-07-05 11:27 - 00103424 _____ () c:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2011-07-05 11:13 - 2011-07-05 11:13 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-06-17 13:42 - 2011-06-17 13:42 - 00016384 _____ () c:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 00535160 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\opera_crashreporter.exe
2015-01-10 21:49 - 2015-01-10 21:49 - 02909696 _____ () C:\Program Files\AVAST Software\Avast\defs\15011002\algo.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-05-20 16:53 - 2014-05-20 16:53 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-05-20 16:55 - 2014-05-20 16:55 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2015-01-09 21:43 - 2015-01-09 21:43 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 01358456 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\libglesv2.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 00219256 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\libegl.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 09312888 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\pdf.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 00991352 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
MSCONFIG\startupreg: CanonSolutionMenuEx => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"

========================= Accounts: ==========================

Administrator (S-1-5-21-622834961-1658247782-2454784526-500 - Administrator - Disabled)
Guest (S-1-5-21-622834961-1658247782-2454784526-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-622834961-1658247782-2454784526-1005 - Limited - Enabled)
j (S-1-5-21-622834961-1658247782-2454784526-1000 - Administrator - Enabled) => C:\Users\j

==================== Faulty Device Manager Devices =============

Name: Síťový adaptér Ethernet
Description: Síťový adaptér Ethernet
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Zařízení PCI
Description: Zařízení PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (01/10/2015 00:05:29 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/10/2015 00:05:28 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/10/2015 00:05:22 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/10/2015 00:02:21 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/09/2015 11:32:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SDFiles.exe verze 2.4.40.135 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1344

Čas spuštění: 01d02c5bcd64fc7d

Čas ukončení: 172

Cesta k aplikaci: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exe

ID hlášení: 2bd3973d-984f-11e4-9ca4-bb7c84359231

Error: (01/06/2015 08:01:13 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\svchost.exe -k netsvcs; Popis = Windows Update; Chyba = 0x81000101).

Error: (12/16/2014 07:39:00 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Služba Šifrování neinicializovala databázi katalogu. Chyba součásti ESENT: -1305.

Error: (12/11/2014 07:03:23 AM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Sledování výkonu objektu indexování nebylo inicializováno, protože nejsou načteny čítače nebo nebyl otevřen sdílený objekt paměti. Tato skutečnost má vliv pouze na dostupnost čítačů výkonu. Restartujte počítač.

Kontext: aplikace , katalog SystemIndex

Error: (12/08/2014 04:03:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: POWERPNT.EXE, verze: 12.0.6600.1000, časové razítko: 0x4de50c7e
Název chybujícího modulu: MSSP3CZ.DLL, verze: 12.0.0.11, časové razítko: 0x44c9eaa0
Kód výjimky: 0xc0000005
Posun chyby: 0x000034c0
ID chybujícího procesu: 0x1760
Čas spuštění chybující aplikace: 0xPOWERPNT.EXE0
Cesta k chybující aplikaci: POWERPNT.EXE1
Cesta k chybujícímu modulu: POWERPNT.EXE2
ID zprávy: POWERPNT.EXE3

Error: (11/22/2014 07:45:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: szndesktop.exe, verze: 0.0.0.0, časové razítko: 0x5167c21b
Název chybujícího modulu: lightspeed.dll, verze: 0.0.0.0, časové razítko: 0x515061b5
Kód výjimky: 0xc0000005
Posun chyby: 0x0007c6c8
ID chybujícího procesu: 0xe4c
Čas spuštění chybující aplikace: 0xszndesktop.exe0
Cesta k chybující aplikaci: szndesktop.exe1
Cesta k chybujícímu modulu: szndesktop.exe2
ID zprávy: szndesktop.exe3

System errors:
=============
Error: (01/10/2015 09:52:27 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (01/10/2015 08:19:50 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {1F87137D-0E7C-44D5-8C73-4EFFB68962F2}

Error: (01/10/2015 08:16:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Zasílání zpráv o chybách systému Windows bylo dosaženo časového limitu (30000 ms).

Error: (01/10/2015 05:23:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby:
%%1069

Error: (01/10/2015 05:23:06 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WSearch se nemohla přihlásit jako NT AUTHORITY\SYSTEM s aktuálně konfigurovaným heslem z důvodu následující chyby:
%%50

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (01/10/2015 05:23:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Windows Media Player Network Sharing neuspěla při spuštění v důsledku následující chyby:
%%1069

Error: (01/10/2015 05:23:04 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WMPNetworkSvc se nemohla přihlásit jako NT AUTHORITY\NetworkService s aktuálně konfigurovaným heslem z důvodu následující chyby:
%%50

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (01/10/2015 05:22:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (01/10/2015 05:22:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (01/10/2015 05:22:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Instalační služba systému Windows byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Microsoft Office Sessions:
=========================
Error: (12/08/2014 04:03:39 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 204 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/11/2014 10:25:44 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 3368 seconds with 2820 seconds of active time. This session ended with a crash.

Error: (02/10/2014 10:32:43 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 864 seconds with 660 seconds of active time. This session ended with a crash.

Error: (12/04/2013 07:51:23 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 884 seconds with 240 seconds of active time. This session ended with a crash.

Error: (12/04/2013 07:36:09 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 10882 seconds with 2820 seconds of active time. This session ended with a crash.

Error: (10/23/2013 07:16:58 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1082 seconds with 660 seconds of active time. This session ended with a crash.

Error: (10/23/2013 02:26:52 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 470 seconds with 180 seconds of active time. This session ended with a crash.

CodeIntegrity Errors:
===================================
Date: 2012-01-07 14:18:42.566
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.519
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.269
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.222
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.176
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.098
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: AMD E-350 Processor
Percentage of memory in use: 44%
Total physical RAM: 3689.41 MB
Available physical RAM: 2061.34 MB
Total Pagefile: 7376.99 MB
Available Pagefile: 5024.98 MB
Total Virtual: 8192 MB
Available Virtual: 8191.86 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:698.54 GB) (Free:437.2 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 571E36D7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=698.5 GB) - (Type=07 NTFS)

==================== End Of Log ============================

jibo · #11 Příspěvek od **jibo** » 10 led 2015 22:07

A zde addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-01-2015
Ran by j at 2015-01-10 22:01:51
Running from C:\Users\j\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Flash Player 16 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\Adobe Shockwave Player) (Version: 10.2.0.22 - Adobe Systems, Inc.)
AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
ATI Catalyst Install Manager (HKLM\...\{6153098B-60DB-6A9F-EA0F-B006A96B57D5}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.1.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version: - Canon Inc.)
Canon MG5300 series On-screen Manual (HKLM-x32\...\Canon MG5300 series On-screen Manual) (Version: - )
Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version: - )
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - )
Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 4.07 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
CompressionPackage (HKLM-x32\...\{E848D976-CE38-43DC-9D22-5CBAC9130387}) (Version: 2.00.0000 - Linos Software)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.1.0236 - DT Soft Ltd)
Dropbox (HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
EA SPORTS online 2005 (HKLM-x32\...\82A44D22-9452-49FB-00FB-CEC7DCAF7E23) (Version: - )
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.1.1 - SCS Software)
FlatOut2 (HKLM-x32\...\{D4006E71-FF32-44FF-AD5A-B5EE4389B825}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
Football Manager 2012 (HKLM-x32\...\Football Manager 2012_is1) (Version: - )
Google Earth (HKLM-x32\...\{96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}) (Version: 7.1.1.1888 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.11.5 - HTC)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
Mafia (HKLM-x32\...\{C72D7008-266D-4DD8-BF3C-296B736127F6}) (Version: 1.02 - )
Mafia II DLC Joe's Adventures (HKLM-x32\...\Mafia II_is1) (Version: - )
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{57660847-B1F7-35BD-9118-F62EB863A598}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{F03CB3EF-DC16-35CE-B3C1-C68EA09E5E97}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Moorhuhnjagd (HKLM-x32\...\Moorhuhnjagd) (Version: - )
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NHL™ 09 (HKLM-x32\...\{827B97A9-B347-4110-9F89-37AF2B758F94}) (Version: 2.0.1.0 - Electronic Arts)
NVIDIA PhysX (HKLM-x32\...\{F9835182-794B-4F24-902A-E2CA9D43380F}) (Version: 9.10.0512 - NVIDIA Corporation)
Opera Stable 26.0.1656.60 (HKLM-x32\...\Opera 26.0.1656.60) (Version: 26.0.1656.60 - Opera Software ASA)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.11.0706 - REALTEK Semiconductor Corp.)
Registrace uživatele zařízení Canon MG5300 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG5300 series) (Version: - )
RTL Winter Games 2007 (HKLM-x32\...\{0938795F-85C6-4C77-B2EB-5834B5B8DE19}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
Seznam Software (HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\SeznamInstall) (Version: - Seznam.cz)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Some PDF to Word Converter 2.0 (HKLM-x32\...\Some PDF to Word Converter_is1) (Version: - SomePDF.com)
StarnetPlayer - testovací verze (HKLM-x32\...\{46926195-CA82-4C38-8B8F-49FC664E165B}) (Version: 1.14.10.13 - Starnet s.r.o.)
Traktor 2 (HKLM-x32\...\Traktor 2_is1) (Version: 1.0 - TopQer, s.r.o.)
Traktor Simulátor (HKLM-x32\...\Traktor Simulátor_is1) (Version: 1.0 - US-Action, s.r.o.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VirtualDJ Home FREE (HKLM-x32\...\{77C2D5D4-ADC5-49F9-B36E-5992FCF35EA3}) (Version: 7.4.1 - Atomix Productions)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
Youtube Downloader HD v. 2.9.5 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\j\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\j\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-622834961-1658247782-2454784526-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\j\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)

==================== Restore Points =========================

30-12-2014 08:11:09 Windows Update
02-01-2015 10:30:29 Windows Update
09-01-2015 16:45:30 Windows Update
09-01-2015 20:54:57 Removed gDoc PDF Server Macros 5
09-01-2015 20:56:20 Removed FIFA 08
09-01-2015 21:02:41 Removed GTA San Andreas
09-01-2015 21:04:52 Odstraněno Medieval II Total War
09-01-2015 21:40:31 avast! antivirus system restore point
10-01-2015 17:10:47 Removed Skype Click to Call

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {064D46DD-87FA-4CE4-BBA0-3417249BCBD5} - System32\Tasks\{0D0A8180-A90F-4466-ABC3-F165C9B7F869} => Chrome.exe
Task: {072C442E-AB25-49F6-A152-9D9F76F979FE} - System32\Tasks\Opera scheduled Autoupdate 1393153081 => C:\Program Files (x86)\Opera\launcher.exe [2014-12-16] (Opera Software)
Task: {1B288513-20C2-4565-9D9A-221E03CEDDE4} - System32\Tasks\{FC1C6445-6A65-4457-9A94-468CD8DD7B19} => C:\Users\j\Desktop\Youtube-Downloader-HD-Setup.exe
Task: {1ECE341A-D801-41DD-8C3C-98CBB73928FD} - System32\Tasks\{FEE4F837-FF97-4FBD-93BD-C59D5472C5C1} => pcalua.exe -a "C:\Users\j\Desktop\g6\Bluetooth Atheros.exe" -d C:\Users\j\Desktop\g6
Task: {2DD1E094-BB7E-4594-BE47-34CDEDA11BFA} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-01-09] (AVAST Software)
Task: {3A9D6F11-85BB-4CC9-9500-0CD7695A5705} - System32\Tasks\{06A4675B-0401-4878-85B3-11C330564233} => C:\Program Files (x86)\City Interactive\Crash Time II\BurningWheels.exe
Task: {4E746CAF-D131-4711-B9E3-94E48CBBF9E1} - System32\Tasks\{4188D104-5A5D-4FC8-A556-C292C7C2C5B6} => pcalua.exe -a E:\DotNet2Redistributable\dotnetfx.exe -d E:\DotNet2Redistributable
Task: {5304DCE0-8C8C-4977-BCA1-087C1B8048F5} - System32\Tasks\{FA41510F-F878-49BC-973B-B820B7F1CACA} => pcalua.exe -a "C:\Users\j\Desktop\Mafia 1 – Plna Verze Hry – CZ\Setup.exe" -d "C:\Users\j\Desktop\Mafia 1 – Plna Verze Hry – CZ"
Task: {5C71FD8E-53ED-4409-8757-BE532E35C176} - System32\Tasks\{6B89C1D0-FC7F-4C59-ACD4-7ADFF548AA37} => pcalua.exe -a "E:\Support\FIFA 11_code.exe" -d E:\Support
Task: {5E26FE30-A7E7-4919-9500-35AC9F94A583} - System32\Tasks\{83D79FBA-45D6-460E-896A-294FCB565E96} => C:\Users\j\Desktop\GAMES\nainstalované\nhl2009.exe
Task: {6DA337F7-F389-4657-AC39-1F96E9380442} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-24] (Google Inc.)
Task: {6E011516-E5CC-4BEA-A8DF-69B17670DCEF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-24] (Google Inc.)
Task: {6FF0A111-A711-427F-B553-81ED951709E3} - System32\Tasks\{C674C187-9DA8-44E8-9CE7-4672ED0518CB} => pcalua.exe -a "C:\Program Files (x86)\EA SPORTS\NHL 09\Support\NHL 09_uninst.exe" -d "C:\Program Files (x86)\EA SPORTS\NHL 09\Support"
Task: {8CAD1487-5C16-4450-A402-061A80402D26} - System32\Tasks\{F5752070-8469-4199-85AC-6C93E73D4838} => C:\Program Files (x86)\City Interactive\Crash Time II\BurningWheels.exe
Task: {912FE81A-5EBE-4DF3-A5F9-E25B79940BE3} - System32\Tasks\{CF7D21F9-AD81-4E8D-BBDD-9A3E90AE78B2} => C:\Users\j\Desktop\Youtube-Downloader-HD-Setup.exe
Task: {96490D7A-F0FF-49DA-BDA6-38F80FA9A11E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-23] (Google Inc.)
Task: {9C624CFD-5E83-40F1-A3DA-D803ABBF8397} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-23] (Google Inc.)
Task: {A572C13B-1478-4048-A53A-275685A15BA6} - System32\Tasks\{72E5BF71-2646-4147-BF75-86E5E1E14CFC} => pcalua.exe -a "C:\Program Files (x86)\EA SPORTS\NHL 09\Support\NHL 09_code.exe" -d "C:\Program Files (x86)\EA SPORTS\NHL 09\Support"
Task: {A8825E95-BA5A-4253-993F-0AA10A0F4B08} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {B6221442-3D07-4BC9-A4A3-850D4A30D4EF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-10-22] (Piriform Ltd)
Task: {CAA646E0-C3D4-44FB-8BE4-7F8EF6D4E976} - System32\Tasks\{2FC59DDE-4AD7-4CB5-9464-2F9B4DC639CC} => C:\Users\j\Desktop\GAMES\nainstalované\nhl2009.exe
Task: {DB8C0B04-B27F-4FC5-BDB0-CDB6EAE8B2EB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-12] (Adobe Systems Incorporated)
Task: {E8F59D5E-236C-4E65-98A6-B362CB0F47B5} - System32\Tasks\{00789F6F-168C-4984-8372-DEBBF4A9146D} => C:\Program Files (x86)\City Interactive\Crash Time II\BurningWheels.exe
Task: {EEED41BB-5956-4E1F-B5A0-AFA6348FCFB0} - System32\Tasks\{E1298F41-22FC-4345-8B29-128CC3563C30} => pcalua.exe -a D:\CRACK\269etina.exe -d D:\CRACK
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core.job => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA.job => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2011-07-05 11:27 - 2011-07-05 11:27 - 00073728 _____ () c:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-05-20 16:53 - 2014-05-20 16:53 - 00821600 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2012-12-07 18:27 - 2012-12-07 18:27 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2011-07-05 11:27 - 2011-07-05 11:27 - 00103424 _____ () c:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2011-07-05 11:13 - 2011-07-05 11:13 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-06-17 13:42 - 2011-06-17 13:42 - 00016384 _____ () c:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 00535160 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\opera_crashreporter.exe
2015-01-10 21:49 - 2015-01-10 21:49 - 02909696 _____ () C:\Program Files\AVAST Software\Avast\defs\15011002\algo.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-05-20 16:52 - 2014-05-20 16:52 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-05-20 16:53 - 2014-05-20 16:53 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-05-20 16:55 - 2014-05-20 16:55 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2015-01-09 21:43 - 2015-01-09 21:43 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 01358456 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\libglesv2.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 00219256 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\libegl.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 09312888 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\pdf.dll
2014-12-17 21:20 - 2014-12-16 16:34 - 00991352 _____ () C:\Program Files (x86)\Opera\26.0.1656.60\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
MSCONFIG\startupreg: CanonSolutionMenuEx => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"

========================= Accounts: ==========================

Administrator (S-1-5-21-622834961-1658247782-2454784526-500 - Administrator - Disabled)
Guest (S-1-5-21-622834961-1658247782-2454784526-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-622834961-1658247782-2454784526-1005 - Limited - Enabled)
j (S-1-5-21-622834961-1658247782-2454784526-1000 - Administrator - Enabled) => C:\Users\j

==================== Faulty Device Manager Devices =============

Name: Síťový adaptér Ethernet
Description: Síťový adaptér Ethernet
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Zařízení PCI
Description: Zařízení PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (01/10/2015 00:05:29 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/10/2015 00:05:28 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/10/2015 00:05:22 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/10/2015 00:02:21 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/09/2015 11:32:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SDFiles.exe verze 2.4.40.135 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1344

Čas spuštění: 01d02c5bcd64fc7d

Čas ukončení: 172

Cesta k aplikaci: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exe

ID hlášení: 2bd3973d-984f-11e4-9ca4-bb7c84359231

Error: (01/06/2015 08:01:13 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\svchost.exe -k netsvcs; Popis = Windows Update; Chyba = 0x81000101).

Error: (12/16/2014 07:39:00 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Služba Šifrování neinicializovala databázi katalogu. Chyba součásti ESENT: -1305.

Error: (12/11/2014 07:03:23 AM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Sledování výkonu objektu indexování nebylo inicializováno, protože nejsou načteny čítače nebo nebyl otevřen sdílený objekt paměti. Tato skutečnost má vliv pouze na dostupnost čítačů výkonu. Restartujte počítač.

Kontext: aplikace , katalog SystemIndex

Error: (12/08/2014 04:03:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: POWERPNT.EXE, verze: 12.0.6600.1000, časové razítko: 0x4de50c7e
Název chybujícího modulu: MSSP3CZ.DLL, verze: 12.0.0.11, časové razítko: 0x44c9eaa0
Kód výjimky: 0xc0000005
Posun chyby: 0x000034c0
ID chybujícího procesu: 0x1760
Čas spuštění chybující aplikace: 0xPOWERPNT.EXE0
Cesta k chybující aplikaci: POWERPNT.EXE1
Cesta k chybujícímu modulu: POWERPNT.EXE2
ID zprávy: POWERPNT.EXE3

Error: (11/22/2014 07:45:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: szndesktop.exe, verze: 0.0.0.0, časové razítko: 0x5167c21b
Název chybujícího modulu: lightspeed.dll, verze: 0.0.0.0, časové razítko: 0x515061b5
Kód výjimky: 0xc0000005
Posun chyby: 0x0007c6c8
ID chybujícího procesu: 0xe4c
Čas spuštění chybující aplikace: 0xszndesktop.exe0
Cesta k chybující aplikaci: szndesktop.exe1
Cesta k chybujícímu modulu: szndesktop.exe2
ID zprávy: szndesktop.exe3

System errors:
=============
Error: (01/10/2015 09:52:27 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (01/10/2015 08:19:50 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {1F87137D-0E7C-44D5-8C73-4EFFB68962F2}

Error: (01/10/2015 08:16:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Zasílání zpráv o chybách systému Windows bylo dosaženo časového limitu (30000 ms).

Error: (01/10/2015 05:23:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby:
%%1069

Error: (01/10/2015 05:23:06 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WSearch se nemohla přihlásit jako NT AUTHORITY\SYSTEM s aktuálně konfigurovaným heslem z důvodu následující chyby:
%%50

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (01/10/2015 05:23:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Windows Media Player Network Sharing neuspěla při spuštění v důsledku následující chyby:
%%1069

Error: (01/10/2015 05:23:04 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WMPNetworkSvc se nemohla přihlásit jako NT AUTHORITY\NetworkService s aktuálně konfigurovaným heslem z důvodu následující chyby:
%%50

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (01/10/2015 05:22:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (01/10/2015 05:22:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (01/10/2015 05:22:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Instalační služba systému Windows byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Microsoft Office Sessions:
=========================
Error: (12/08/2014 04:03:39 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 204 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/11/2014 10:25:44 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 3368 seconds with 2820 seconds of active time. This session ended with a crash.

Error: (02/10/2014 10:32:43 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 864 seconds with 660 seconds of active time. This session ended with a crash.

Error: (12/04/2013 07:51:23 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 884 seconds with 240 seconds of active time. This session ended with a crash.

Error: (12/04/2013 07:36:09 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 10882 seconds with 2820 seconds of active time. This session ended with a crash.

Error: (10/23/2013 07:16:58 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1082 seconds with 660 seconds of active time. This session ended with a crash.

Error: (10/23/2013 02:26:52 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 470 seconds with 180 seconds of active time. This session ended with a crash.

CodeIntegrity Errors:
===================================
Date: 2012-01-07 14:18:42.566
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.519
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.269
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.222
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.176
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-01-07 14:18:42.098
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbehci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: AMD E-350 Processor
Percentage of memory in use: 44%
Total physical RAM: 3689.41 MB
Available physical RAM: 2061.34 MB
Total Pagefile: 7376.99 MB
Available Pagefile: 5024.98 MB
Total Virtual: 8192 MB
Available Virtual: 8191.86 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:698.54 GB) (Free:437.2 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 571E36D7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=698.5 GB) - (Type=07 NTFS)

==================== End Of Log ============================

#12 Příspěvek od **altrok** » 10 led 2015 22:15

Vypnete trvale Windows Defender - http://windows.microsoft.com/cs-cz/wind ... =windows-7

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CloseProcesses:
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: E - E:\setup.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: G - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {597de7f5-9c70-11e3-850b-89c92605853e} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {5d36befa-2ed8-11e1-934b-ac8112b38c18} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {7f02dfab-67ac-11e1-be93-aa1240bddf2d} - F:\AutoRun.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {7f02dfc8-67ac-11e1-be93-aa1240bddf2d} - F:\AutoRun.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {edac0dfc-3f6b-11e1-9155-ac8112b38c18} - E:\setup.exe
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => No File
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO-x32: No Name -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> No File
BHO-x32: No Name -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> No File
BHO-x32: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
Toolbar: HKLM-x32 - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Toolbar: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
ShellExecuteHooks-x32: - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - No File [ ]

FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Extension: No Name - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha132\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha695\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3479\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3063\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home297\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1738\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7268\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha5110\ff [Not Found]

CHR HKLM-x32\...\Chrome\Extension: [chgodlioneakghmomffnihcecghjclpp] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha695\ch\MediaViewerV1alpha695.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [epnbmkbnjkhmofeelbkbfamogagndobh] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3479\ch\MediaViewV1alpha3479.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [obmoiagkfhphbfpehaemkdmhpmcngalk] - C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha5110\ch\TrustMediaViewerV1alpha5110.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [oddjkpdhacpkbpnnpblgnabjghflidil] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1738\ch\MediaBuzzV1mode1738.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [olbpflbbgmgnlgomfppddbgbgedfiaca] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home297\ch\MediaWatchV1home297.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [pildneehhpeicimimgkglgnkclbjfani] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3063\ch\MediaViewV1alpha3063.crx [Not Found]

S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]

2015-01-10 21:59 - 2015-01-10 22:00 - 00017456 _____ () C:\Users\j\Desktop\FRST.txt
2015-01-10 17:45 - 2015-01-10 17:47 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\j\Desktop\mbam-setup-2.0.4.1028 (1).exe
2015-01-10 17:45 - 2015-01-10 17:46 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\j\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-10 17:25 - 2015-01-10 17:25 - 02191360 _____ () C:\Users\j\Downloads\adwcleaner_4.107.exe
2015-01-10 17:23 - 2015-01-10 21:53 - 00011012 _____ () C:\Windows\PFRO.log
2015-01-10 17:17 - 2015-01-10 17:22 - 00000000 ____D () C:\AdwCleaner
2015-01-10 17:15 - 2015-01-10 17:15 - 02191360 _____ () C:\Users\j\Desktop\adwcleaner_4.107.exe
2015-01-10 15:26 - 2015-01-10 15:26 - 00013480 _____ () C:\Users\j\Downloads\FRSTLauncher.exe
2015-01-10 15:25 - 2015-01-10 15:25 - 00027853 _____ () C:\Users\j\Downloads\FRSTLauncher.rar
2015-01-10 12:49 - 2015-01-10 13:48 - 00000000 ____D () C:\Program Files\trend micro
2015-01-10 12:49 - 2015-01-10 12:49 - 00000000 ____D () C:\rsit
2015-01-10 12:46 - 2015-01-10 12:46 - 01222144 _____ () C:\Users\j\Desktop\RSITx64.exe
2015-01-09 23:08 - 2015-01-10 17:23 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-01-09 23:08 - 2015-01-10 17:10 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2015-01-09 23:06 - 2015-01-09 23:06 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\j\Downloads\spybot-2.4.exe

Task: {5304DCE0-8C8C-4977-BCA1-087C1B8048F5} - System32\Tasks\{FA41510F-F878-49BC-973B-B820B7F1CACA} => pcalua.exe -a "C:\Users\j\Desktop\Mafia 1 – Plna Verze Hry – CZ\Setup.exe" -d "C:\Users\j\Desktop\Mafia 1 – Plna Verze Hry – CZ"
Task: {912FE81A-5EBE-4DF3-A5F9-E25B79940BE3} - System32\Tasks\{CF7D21F9-AD81-4E8D-BBDD-9A3E90AE78B2} => C:\Users\j\Desktop\Youtube-Downloader-HD-Setup.exe
Task: {EEED41BB-5956-4E1F-B5A0-AFA6348FCFB0} - System32\Tasks\{E1298F41-22FC-4345-8B29-128CC3563C30} => pcalua.exe -a D:\CRACK\269etina.exe -d D:\CRACK
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core.job => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA.job => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
End

jibo · #13 Příspěvek od **jibo** » 10 led 2015 22:32

Fixlog je tu:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-01-2015
Ran by j at 2015-01-10 22:26:33 Run:1
Running from C:\Users\j\Desktop
Loaded Profile: j (Available profiles: j)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: E - E:\setup.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: G - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {597de7f5-9c70-11e3-850b-89c92605853e} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {5d36befa-2ed8-11e1-934b-ac8112b38c18} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {7f02dfab-67ac-11e1-be93-aa1240bddf2d} - F:\AutoRun.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {7f02dfc8-67ac-11e1-be93-aa1240bddf2d} - F:\AutoRun.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {edac0dfc-3f6b-11e1-9155-ac8112b38c18} - E:\setup.exe
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => No File
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: No Name -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> No File
BHO-x32: No Name -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> No File
BHO-x32: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
Toolbar: HKLM-x32 - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Toolbar: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
ShellExecuteHooks-x32: - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - No File [ ]

FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Extension: No Name - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha132\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha695\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3479\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3063\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home297\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1738\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7268\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha5110\ff [Not Found]

CHR HKLM-x32\...\Chrome\Extension: [chgodlioneakghmomffnihcecghjclpp] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha695\ch\MediaViewerV1alpha695.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [epnbmkbnjkhmofeelbkbfamogagndobh] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3479\ch\MediaViewV1alpha3479.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [obmoiagkfhphbfpehaemkdmhpmcngalk] - C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha5110\ch\TrustMediaViewerV1alpha5110.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [oddjkpdhacpkbpnnpblgnabjghflidil] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1738\ch\MediaBuzzV1mode1738.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [olbpflbbgmgnlgomfppddbgbgedfiaca] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home297\ch\MediaWatchV1home297.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [pildneehhpeicimimgkglgnkclbjfani] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3063\ch\MediaViewV1alpha3063.crx [Not Found]

S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]

2015-01-10 21:59 - 2015-01-10 22:00 - 00017456 _____ () C:\Users\j\Desktop\FRST.txt
2015-01-10 17:45 - 2015-01-10 17:47 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\j\Desktop\mbam-setup-2.0.4.1028 (1).exe
2015-01-10 17:45 - 2015-01-10 17:46 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\j\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-10 17:25 - 2015-01-10 17:25 - 02191360 _____ () C:\Users\j\Downloads\adwcleaner_4.107.exe
2015-01-10 17:23 - 2015-01-10 21:53 - 00011012 _____ () C:\Windows\PFRO.log
2015-01-10 17:17 - 2015-01-10 17:22 - 00000000 ____D () C:\AdwCleaner
2015-01-10 17:15 - 2015-01-10 17:15 - 02191360 _____ () C:\Users\j\Desktop\adwcleaner_4.107.exe
2015-01-10 15:26 - 2015-01-10 15:26 - 00013480 _____ () C:\Users\j\Downloads\FRSTLauncher.exe
2015-01-10 15:25 - 2015-01-10 15:25 - 00027853 _____ () C:\Users\j\Downloads\FRSTLauncher.rar
2015-01-10 12:49 - 2015-01-10 13:48 - 00000000 ____D () C:\Program Files\trend micro
2015-01-10 12:49 - 2015-01-10 12:49 - 00000000 ____D () C:\rsit
2015-01-10 12:46 - 2015-01-10 12:46 - 01222144 _____ () C:\Users\j\Desktop\RSITx64.exe
2015-01-09 23:08 - 2015-01-10 17:23 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-01-09 23:08 - 2015-01-10 17:10 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2015-01-09 23:06 - 2015-01-09 23:06 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\j\Downloads\spybot-2.4.exe

Task: {5304DCE0-8C8C-4977-BCA1-087C1B8048F5} - System32\Tasks\{FA41510F-F878-49BC-973B-B820B7F1CACA} => pcalua.exe -a "C:\Users\j\Desktop\Mafia 1 – Plna Verze Hry – CZ\Setup.exe" -d "C:\Users\j\Desktop\Mafia 1 – Plna Verze Hry – CZ"
Task: {912FE81A-5EBE-4DF3-A5F9-E25B79940BE3} - System32\Tasks\{CF7D21F9-AD81-4E8D-BBDD-9A3E90AE78B2} => C:\Users\j\Desktop\Youtube-Downloader-HD-Setup.exe
Task: {EEED41BB-5956-4E1F-B5A0-AFA6348FCFB0} - System32\Tasks\{E1298F41-22FC-4345-8B29-128CC3563C30} => pcalua.exe -a D:\CRACK\269etina.exe -d D:\CRACK
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core.job => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA.job => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E" => Key deleted successfully.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G" => Key deleted successfully.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{597de7f5-9c70-11e3-850b-89c92605853e}" => Key deleted successfully.
HKCR\CLSID\{597de7f5-9c70-11e3-850b-89c92605853e} => Key not found.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5d36befa-2ed8-11e1-934b-ac8112b38c18}" => Key deleted successfully.
HKCR\CLSID\{5d36befa-2ed8-11e1-934b-ac8112b38c18} => Key not found.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7f02dfab-67ac-11e1-be93-aa1240bddf2d}" => Key deleted successfully.
HKCR\CLSID\{7f02dfab-67ac-11e1-be93-aa1240bddf2d} => Key not found.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7f02dfc8-67ac-11e1-be93-aa1240bddf2d}" => Key deleted successfully.
HKCR\CLSID\{7f02dfc8-67ac-11e1-be93-aa1240bddf2d} => Key not found.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{edac0dfc-3f6b-11e1-9155-ac8112b38c18}" => Key deleted successfully.
HKCR\CLSID\{edac0dfc-3f6b-11e1-9155-ac8112b38c18} => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 1 (GFS Unread Stub)" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7} => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2 (GFS Stub)" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399} => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 3 (GFS Folder)" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619} => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 4 (GFS Unread Mark)" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => Key not found.
HKLM\System\CurrentControlSet\Control\Session Manager\\BootExecute => Value was restored successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9} => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E} => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} => value deleted successfully.
HKCR\Wow6432Node\CLSID\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} => Key not found.
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value deleted successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Key not found.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{B5A7F190-DDA6-4420-B3BA-52453494E6CD} => value deleted successfully.
HKCR\Wow6432Node\CLSID\{B5A7F190-DDA6-4420-B3BA-52453494E6CD} => Key not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0" => Key deleted successfully.
C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha132\ff not found.
C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha695\ff not found.
C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3479\ff not found.
C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3063\ff not found.
C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home297\ff not found.
C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1738\ff not found.
C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7268\ff not found.
C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha5110\ff not found.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\chgodlioneakghmomffnihcecghjclpp" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\epnbmkbnjkhmofeelbkbfamogagndobh" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\obmoiagkfhphbfpehaemkdmhpmcngalk" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\oddjkpdhacpkbpnnpblgnabjghflidil" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\olbpflbbgmgnlgomfppddbgbgedfiaca" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pildneehhpeicimimgkglgnkclbjfani" => Key deleted successfully.
Huawei => Service deleted successfully.
hwdatacard => Service deleted successfully.
hwusbdev => Service deleted successfully.
C:\Users\j\Desktop\FRST.txt => Moved successfully.
C:\Users\j\Desktop\mbam-setup-2.0.4.1028 (1).exe => Moved successfully.
C:\Users\j\Downloads\mbam-setup-2.0.4.1028.exe => Moved successfully.
C:\Users\j\Downloads\adwcleaner_4.107.exe => Moved successfully.
C:\Windows\PFRO.log => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\j\Desktop\adwcleaner_4.107.exe => Moved successfully.
C:\Users\j\Downloads\FRSTLauncher.exe => Moved successfully.
C:\Users\j\Downloads\FRSTLauncher.rar => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\rsit => Moved successfully.
C:\Users\j\Desktop\RSITx64.exe => Moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy 2 => Moved successfully.
C:\ProgramData\Spybot - Search & Destroy => Moved successfully.
C:\Users\j\Downloads\spybot-2.4.exe => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5304DCE0-8C8C-4977-BCA1-087C1B8048F5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5304DCE0-8C8C-4977-BCA1-087C1B8048F5}" => Key deleted successfully.
C:\Windows\System32\Tasks\{FA41510F-F878-49BC-973B-B820B7F1CACA} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FA41510F-F878-49BC-973B-B820B7F1CACA}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{912FE81A-5EBE-4DF3-A5F9-E25B79940BE3}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{912FE81A-5EBE-4DF3-A5F9-E25B79940BE3}" => Key deleted successfully.
C:\Windows\System32\Tasks\{CF7D21F9-AD81-4E8D-BBDD-9A3E90AE78B2} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CF7D21F9-AD81-4E8D-BBDD-9A3E90AE78B2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EEED41BB-5956-4E1F-B5A0-AFA6348FCFB0}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EEED41BB-5956-4E1F-B5A0-AFA6348FCFB0}" => Key deleted successfully.
C:\Windows\System32\Tasks\{E1298F41-22FC-4345-8B29-128CC3563C30} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E1298F41-22FC-4345-8B29-128CC3563C30}" => Key deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 37.2 MB temporary data.

The system needed a reboot.

==== End of Fixlog 22:26:49 ====

jibo · #14 Příspěvek od **jibo** » 10 led 2015 22:32

Fixlog je tu:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-01-2015
Ran by j at 2015-01-10 22:26:33 Run:1
Running from C:\Users\j\Desktop
Loaded Profile: j (Available profiles: j)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: E - E:\setup.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: G - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {597de7f5-9c70-11e3-850b-89c92605853e} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {5d36befa-2ed8-11e1-934b-ac8112b38c18} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {7f02dfab-67ac-11e1-be93-aa1240bddf2d} - F:\AutoRun.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {7f02dfc8-67ac-11e1-be93-aa1240bddf2d} - F:\AutoRun.exe
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\...\MountPoints2: {edac0dfc-3f6b-11e1-9155-ac8112b38c18} - E:\setup.exe
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => No File
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: No Name -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> No File
BHO-x32: No Name -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> No File
BHO-x32: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
Toolbar: HKLM-x32 - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Toolbar: HKU\S-1-5-21-622834961-1658247782-2454784526-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
ShellExecuteHooks-x32: - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - No File [ ]

FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Extension: No Name - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha132\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha695\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3479\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3063\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home297\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1738\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7268\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha5110\ff [Not Found]

CHR HKLM-x32\...\Chrome\Extension: [chgodlioneakghmomffnihcecghjclpp] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha695\ch\MediaViewerV1alpha695.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [epnbmkbnjkhmofeelbkbfamogagndobh] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3479\ch\MediaViewV1alpha3479.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [obmoiagkfhphbfpehaemkdmhpmcngalk] - C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha5110\ch\TrustMediaViewerV1alpha5110.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [oddjkpdhacpkbpnnpblgnabjghflidil] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1738\ch\MediaBuzzV1mode1738.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [olbpflbbgmgnlgomfppddbgbgedfiaca] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home297\ch\MediaWatchV1home297.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [pildneehhpeicimimgkglgnkclbjfani] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3063\ch\MediaViewV1alpha3063.crx [Not Found]

S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]

2015-01-10 21:59 - 2015-01-10 22:00 - 00017456 _____ () C:\Users\j\Desktop\FRST.txt
2015-01-10 17:45 - 2015-01-10 17:47 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\j\Desktop\mbam-setup-2.0.4.1028 (1).exe
2015-01-10 17:45 - 2015-01-10 17:46 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\j\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-10 17:25 - 2015-01-10 17:25 - 02191360 _____ () C:\Users\j\Downloads\adwcleaner_4.107.exe
2015-01-10 17:23 - 2015-01-10 21:53 - 00011012 _____ () C:\Windows\PFRO.log
2015-01-10 17:17 - 2015-01-10 17:22 - 00000000 ____D () C:\AdwCleaner
2015-01-10 17:15 - 2015-01-10 17:15 - 02191360 _____ () C:\Users\j\Desktop\adwcleaner_4.107.exe
2015-01-10 15:26 - 2015-01-10 15:26 - 00013480 _____ () C:\Users\j\Downloads\FRSTLauncher.exe
2015-01-10 15:25 - 2015-01-10 15:25 - 00027853 _____ () C:\Users\j\Downloads\FRSTLauncher.rar
2015-01-10 12:49 - 2015-01-10 13:48 - 00000000 ____D () C:\Program Files\trend micro
2015-01-10 12:49 - 2015-01-10 12:49 - 00000000 ____D () C:\rsit
2015-01-10 12:46 - 2015-01-10 12:46 - 01222144 _____ () C:\Users\j\Desktop\RSITx64.exe
2015-01-09 23:08 - 2015-01-10 17:23 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-01-09 23:08 - 2015-01-10 17:10 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2015-01-09 23:06 - 2015-01-09 23:06 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\j\Downloads\spybot-2.4.exe

Task: {5304DCE0-8C8C-4977-BCA1-087C1B8048F5} - System32\Tasks\{FA41510F-F878-49BC-973B-B820B7F1CACA} => pcalua.exe -a "C:\Users\j\Desktop\Mafia 1 – Plna Verze Hry – CZ\Setup.exe" -d "C:\Users\j\Desktop\Mafia 1 – Plna Verze Hry – CZ"
Task: {912FE81A-5EBE-4DF3-A5F9-E25B79940BE3} - System32\Tasks\{CF7D21F9-AD81-4E8D-BBDD-9A3E90AE78B2} => C:\Users\j\Desktop\Youtube-Downloader-HD-Setup.exe
Task: {EEED41BB-5956-4E1F-B5A0-AFA6348FCFB0} - System32\Tasks\{E1298F41-22FC-4345-8B29-128CC3563C30} => pcalua.exe -a D:\CRACK\269etina.exe -d D:\CRACK
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core.job => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA.job => C:\Users\j\AppData\Local\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E" => Key deleted successfully.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G" => Key deleted successfully.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{597de7f5-9c70-11e3-850b-89c92605853e}" => Key deleted successfully.
HKCR\CLSID\{597de7f5-9c70-11e3-850b-89c92605853e} => Key not found.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5d36befa-2ed8-11e1-934b-ac8112b38c18}" => Key deleted successfully.
HKCR\CLSID\{5d36befa-2ed8-11e1-934b-ac8112b38c18} => Key not found.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7f02dfab-67ac-11e1-be93-aa1240bddf2d}" => Key deleted successfully.
HKCR\CLSID\{7f02dfab-67ac-11e1-be93-aa1240bddf2d} => Key not found.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7f02dfc8-67ac-11e1-be93-aa1240bddf2d}" => Key deleted successfully.
HKCR\CLSID\{7f02dfc8-67ac-11e1-be93-aa1240bddf2d} => Key not found.
"HKU\S-1-5-21-622834961-1658247782-2454784526-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{edac0dfc-3f6b-11e1-9155-ac8112b38c18}" => Key deleted successfully.
HKCR\CLSID\{edac0dfc-3f6b-11e1-9155-ac8112b38c18} => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 1 (GFS Unread Stub)" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7} => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2 (GFS Stub)" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399} => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 3 (GFS Folder)" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619} => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 4 (GFS Unread Mark)" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => Key not found.
HKLM\System\CurrentControlSet\Control\Session Manager\\BootExecute => Value was restored successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9} => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E} => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} => value deleted successfully.
HKCR\Wow6432Node\CLSID\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} => Key not found.
HKU\S-1-5-21-622834961-1658247782-2454784526-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value deleted successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Key not found.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{B5A7F190-DDA6-4420-B3BA-52453494E6CD} => value deleted successfully.
HKCR\Wow6432Node\CLSID\{B5A7F190-DDA6-4420-B3BA-52453494E6CD} => Key not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0" => Key deleted successfully.
C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha132\ff not found.
C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha695\ff not found.
C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3479\ff not found.
C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3063\ff not found.
C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home297\ff not found.
C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1738\ff not found.
C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7268\ff not found.
C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha5110\ff not found.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\chgodlioneakghmomffnihcecghjclpp" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\epnbmkbnjkhmofeelbkbfamogagndobh" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\obmoiagkfhphbfpehaemkdmhpmcngalk" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\oddjkpdhacpkbpnnpblgnabjghflidil" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\olbpflbbgmgnlgomfppddbgbgedfiaca" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pildneehhpeicimimgkglgnkclbjfani" => Key deleted successfully.
Huawei => Service deleted successfully.
hwdatacard => Service deleted successfully.
hwusbdev => Service deleted successfully.
C:\Users\j\Desktop\FRST.txt => Moved successfully.
C:\Users\j\Desktop\mbam-setup-2.0.4.1028 (1).exe => Moved successfully.
C:\Users\j\Downloads\mbam-setup-2.0.4.1028.exe => Moved successfully.
C:\Users\j\Downloads\adwcleaner_4.107.exe => Moved successfully.
C:\Windows\PFRO.log => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\j\Desktop\adwcleaner_4.107.exe => Moved successfully.
C:\Users\j\Downloads\FRSTLauncher.exe => Moved successfully.
C:\Users\j\Downloads\FRSTLauncher.rar => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\rsit => Moved successfully.
C:\Users\j\Desktop\RSITx64.exe => Moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy 2 => Moved successfully.
C:\ProgramData\Spybot - Search & Destroy => Moved successfully.
C:\Users\j\Downloads\spybot-2.4.exe => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5304DCE0-8C8C-4977-BCA1-087C1B8048F5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5304DCE0-8C8C-4977-BCA1-087C1B8048F5}" => Key deleted successfully.
C:\Windows\System32\Tasks\{FA41510F-F878-49BC-973B-B820B7F1CACA} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FA41510F-F878-49BC-973B-B820B7F1CACA}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{912FE81A-5EBE-4DF3-A5F9-E25B79940BE3}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{912FE81A-5EBE-4DF3-A5F9-E25B79940BE3}" => Key deleted successfully.
C:\Windows\System32\Tasks\{CF7D21F9-AD81-4E8D-BBDD-9A3E90AE78B2} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CF7D21F9-AD81-4E8D-BBDD-9A3E90AE78B2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EEED41BB-5956-4E1F-B5A0-AFA6348FCFB0}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EEED41BB-5956-4E1F-B5A0-AFA6348FCFB0}" => Key deleted successfully.
C:\Windows\System32\Tasks\{E1298F41-22FC-4345-8B29-128CC3563C30} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E1298F41-22FC-4345-8B29-128CC3563C30}" => Key deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-622834961-1658247782-2454784526-1000UA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 37.2 MB temporary data.

The system needed a reboot.

==== End of Fixlog 22:26:49 ====

#15 Příspěvek od **altrok** » 10 led 2015 22:37

Takze jeste uklidime.

Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
Oznacte jen moznost "Remove disinfection tools"
kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

VIRY.CZ

Prosba o kontrolu logu - nedaří se dokončit avast kontrolu

Prosba o kontrolu logu - nedaří se dokončit avast kontrolu

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro

Re: Prosba o kontrolu logu - nedaří se dokončit avast kontro