Internet a reklamy

[Viruskill]

Jsem tady.

[Rudy]

OK. Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .

[Viruskill]

Předtím jsem si nainstaloval prohlížeč Google Chrome a uBlock Origin.

[Viruskill]

Tady je ten log a přiložený soubor.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:07-11-2015
Ran by Voyager (administrator) on DOMA-FF4904B4BC (07-11-2015 21:09:01)
Running from C:\Documents and Settings\Voyager\Dokumenty\Downloads
Loaded Profiles: Voyager (Available Profiles: Voyager & Administrator)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 6 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
Failed to access process -> op_mon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Program Files\Seznam.cz\postak.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(Atheros) C:\WINDOWS\system32\acs.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
Failed to access process -> acs.exe
(Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Space Sciences Laboratory) C:\Program Files\BOINC\boincmgr.exe
(Space Sciences Laboratory) C:\Program Files\BOINC\boinc.exe
(Acronis) C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [OutpostMonitor] => C:\Program Files\Agnitum\Outpost Firewall\op_mon.exe [2374464 2009-04-28] (Agnitum Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6133520 2015-11-06] (AVAST Software)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2013-09-06] (ATI Technologies Inc.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2009-07-20] (Logitech, Inc.)
Winlogon\Notify\WgaLogon:
HKLM\...\Policies\Explorer: [NoDrives] 57472
HKU\S-1-5-21-583907252-1979792683-682003330-1004\...\Run: [Seznam Postak] => C:\Program Files\Seznam.cz\postak.exe [488728 2010-10-06] ()
HKU\S-1-5-21-583907252-1979792683-682003330-1004\...\MountPoints2: {4ec4b143-54f2-11e5-b98c-fd50c61086f5} - G:\FindMx.exe
HKU\S-1-5-21-583907252-1979792683-682003330-1004\...\MountPoints2: {4ec4b145-54f2-11e5-b98c-fd50c61086f5} - H:\FindMx.exe
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SuperAdBlocker.com)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-09-18] (AVAST Software)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files\Acronis\TrueImageHome\tishell.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files\Acronis\TrueImageHome\tishell.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files\Acronis\TrueImageHome\tishell.dll [2014-09-09] (Acronis)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Emma Ad Blocker.lnk [2015-11-06]
ShortcutTarget: Emma Ad Blocker.lnk -> C:\Program Files\Emma Ad Blocker\EmmaAdSystray.exe (Emma Ad Blocker)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Logitech SetPoint.lnk [2015-09-02]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
BootExecute: autocheck autochk * autocheck autochk * pgdfgsvc C 1
GroupPolicyScripts: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0404C102-88AA-4851-B7BC-B8F7D92AA66F}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-583907252-1979792683-682003330-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: HKU\S-1-5-21-583907252-1979792683-682003330-1004 - Modul přiřazení adres URL - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-583907252-1979792683-682003330-1004 -> DefaultScope {E9DB9E7B-A275-41D1-8158-D0423FBEBDEB} URL = hxxp://www.google.com/cse?cx=partner-pub-3540673482024757:xbhdw8hkfz5&cof=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-583907252-1979792683-682003330-1004 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-583907252-1979792683-682003330-1004 -> {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
SearchScopes: HKU\S-1-5-21-583907252-1979792683-682003330-1004 -> {E9DB9E7B-A275-41D1-8158-D0423FBEBDEB} URL = hxxp://www.google.com/cse?cx=partner-pub-3540673482024757:xbhdw8hkfz5&cof=&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-18] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-18] (Oracle Corporation)
BHO: Ukazatel S-Rank -> {EA837F48-5AD1-443E-AE34-FFE03CBF3099} -> C:\Program Files\Seznam.cz\core.3.dll [2010-10-06] ()
Toolbar: HKU\.DEFAULT -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2014-02-25] (Společnost Microsoft)
Toolbar: HKU\S-1-5-21-583907252-1979792683-682003330-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2014-02-25] (Společnost Microsoft)
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2013-04-16] (Belarc, Inc.)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-11-07] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-11-07] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-583907252-1979792683-682003330-1004: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2015-01-09] (Google Inc.)
FF Plugin HKU\S-1-5-21-583907252-1979792683-682003330-1004: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2015-01-09] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-02] [not signed]

Chrome:
=======
CHR Profile: C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-07]
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-07]
CHR Extension: (Disk Google) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-07]
CHR Extension: (YouTube) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-07]
CHR Extension: (uBlock Origin) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-11-07]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Tabulky Google) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-07]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-07]
CHR Extension: (Gmail) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-07]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-17]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [142648 2014-07-23] (SUPERAntiSpyware.com)
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [860136 2014-08-14] (Acronis)
R2 acs; C:\WINDOWS\system32\acs.exe [499796 2011-12-26] (Atheros) [File not signed]
R2 acssrv; C:\Program Files\Agnitum\Outpost Firewall\acs.exe [1195008 2009-04-28] (Agnitum Ltd.) [File not signed]
S2 Active@ Disk Monitor; C:\Program Files\LSoft Technologies Inc\Active@ Hard Disk Monitor\DiskMonitorService.exe [237792 2012-10-23] (LSoft Technologies Inc)
R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3988472 2015-06-09] (Acronis)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-18] (AVAST Software)
S2 Backupper Service; C:\Program Files\AOMEI Backupper\ABService.exe [29912 2015-09-15] (AOMEI Tech Co., Ltd.)
S4 BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [110592 2005-04-06] () [File not signed]
S2 DragonUpdater; C:\Program Files\Comodo\Dragon\dragon_updater.exe [1984696 2015-10-14] (Comodo)
S2 EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe [37416 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
S4 Freemake Improver; C:\Documents and Settings\All Users\Data aplikací\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-10-31] (Freemake) [File not signed]
S2 HDDC3Service; C:\Program Files\Ashampoo\Ashampoo HDD Control 3\HDDC3Service.exe [324456 2015-02-02] ()
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S2 ReflectService.exe; C:\Program Files\Macrium\Reflect\ReflectService.exe [2462160 2014-07-21] (Paramount Software UK Ltd)
R2 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [6854904 2014-08-20] (Acronis)
S2 WiseBootAssistant; C:\Program Files\Wise\Wise Care 365\BootTime.exe [580232 2014-10-28] (WiseCleaner.com) [File not signed]
S4 HDDlife HDD Access service; "C:\Program Files\Common Files\BinarySense\hldasvc.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 713xTVCard; C:\WINDOWS\System32\DRIVERS\SAA713x.sys [277504 2005-03-15] (Philips Semiconductors)
S2 713xTVTuner; C:\WINDOWS\System32\drivers\PhTVTune.sys [26368 2004-07-30] (Philips Semiconductors)
R3 afw; C:\WINDOWS\System32\DRIVERS\afw.sys [31128 2009-02-18] (Agnitum Ltd.)
R3 afwcore; C:\WINDOWS\System32\drivers\afwcore.sys [257432 2009-02-10] (Agnitum Ltd.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [26424 2015-02-25] () [File not signed]
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [129720 2015-02-25] () [File not signed]
S3 ampa; C:\WINDOWS\system32\ampa.sys [12656 2013-12-18] ()
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [14392 2015-02-25] () [File not signed]
R3 AR9271; C:\WINDOWS\System32\DRIVERS\athuw.sys [1763584 2012-10-18] (Atheros Communications, Inc.)
R2 Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [16877 2002-07-17] (Adaptec) [File not signed]
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2015-09-18] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [76000 2015-09-18] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55200 2015-09-18] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2015-09-18] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [794952 2015-11-06] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [435464 2015-11-06] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [157888 2015-09-18] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57888 2015-09-18] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [208664 2015-09-18] (AVAST Software)
R3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [96256 2013-07-09] (Advanced Micro Devices)
R1 BANTExt; C:\WINDOWS\System32\Drivers\BANTExt.sys [3840 2013-09-10] () [File not signed]
R3 BlueletAudio; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [31488 2006-06-23] (IVT Corporation) [File not signed]
R3 BlueletSCOAudio; C:\WINDOWS\System32\DRIVERS\BlueletSCOAudio.sys [20480 2005-08-31] (IVT Corporation) [File not signed]
S3 BT; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [10068 2006-01-19] (IVT Corporation) [File not signed]
S3 Btcsrusb; C:\WINDOWS\System32\Drivers\btcusb.sys [23040 2006-07-16] (IVT Corporation) [File not signed]
R3 BTHidEnum; C:\WINDOWS\System32\DRIVERS\vbtenum.sys [11988 2005-07-30] () [File not signed]
R0 BTHidMgr; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [28271 2005-05-01] (IVT Corporation) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 cpuz137; C:\Program Files\CPUID\PC Wizard 2013\pcwiz_x32.sys [26856 2014-02-17] (CPUID)
S3 DigiartyVirtualCDBus; C:\WINDOWS\System32\drivers\DigiartyVirtualCDBus.sys [163616 2015-03-02] (Digiarty Software, Inc.)
S3 dtlitescsibus; C:\WINDOWS\System32\DRIVERS\dtlitescsibus.sys [25104 2015-09-07] (Disc Soft Ltd)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-08-20] (Disc Soft Ltd)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [14944 2014-11-18] ()
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [52008 2014-12-14] (CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [40744 2014-12-14] ()
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [14888 2014-12-14] (CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [188328 2014-12-14] (CHENGDU YIWO Tech Development Co., Ltd)
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10208 2014-11-18] ()
R1 Eve; C:\WINDOWS\System32\DRIVERS\eve.sys [33624 2014-04-10] ()
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [214304 2015-06-09] (Acronis International GmbH)
S3 gdrv; C:\WINDOWS\gdrv.sys [16608 2015-04-03] (Windows (R) 2000 DDK provider)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
R0 hotcore; C:\WINDOWS\System32\drivers\hotcore.sys [18208 2005-04-29] (Paragon Software Group) [File not signed]
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [51024 2011-03-24] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16080 2011-03-24] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21456 2011-03-24] (HP)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [22688 2014-08-20] (REALiX(tm))
R3 JSWSCIMD; C:\WINDOWS\System32\DRIVERS\jswscimd.sys [57440 2011-12-26] (Atheros Communications, Inc.)
R3 LEqdUsb; C:\WINDOWS\System32\Drivers\LEqdUsb.Sys [40720 2009-06-17] (Logitech, Inc.)
R3 LHidEqd; C:\WINDOWS\System32\Drivers\LHidEqd.Sys [10384 2009-06-17] (Logitech, Inc.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2014-04-18] (Riverbed Technology, Inc.)
R0 oodrvled; C:\WINDOWS\System32\DRIVERS\oodrvled.sys [25680 2010-05-20] (O&O Software GmbH)
R1 PQNTDrv; C:\WINDOWS\system32\Drivers\PQNTDrv.sys [4228 2002-09-16] (PowerQuest Corporation) [File not signed]
R0 pssnap; C:\WINDOWS\System32\DRIVERS\pssnap.sys [13528 2014-07-21] ()
S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [17160 2015-03-05] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [13064 2015-03-05] ()
R1 SandBox; C:\WINDOWS\system32\drivers\SandBox.sys [704384 2009-04-06] (Agnitum Ltd.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 SI3132; C:\WINDOWS\System32\DRIVERS\SI3132.sys [80424 2007-10-03] (Silicon Image, Inc)
R0 SiFilter; C:\WINDOWS\System32\DRIVERS\SiWinAcc.sys [19240 2007-10-03] (Silicon Image, Inc)
R0 SiRemFil; C:\WINDOWS\System32\DRIVERS\SiRemFil.sys [15400 2007-10-03] (Silicon Image, Inc)
S3 SliceDisk5; C:\Program Files\A-FF Find and Mount\slicedisk.sys [26192 2011-02-25] (Atola) [File not signed]
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [15808 2014-06-04] (IObit)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [329384 2015-09-07] (Duplex Secure Ltd.)
S3 tap0901; C:\WINDOWS\System32\DRIVERS\tap0901.sys [33608 2014-04-09] (The OpenVPN Project)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [867968 2015-06-09] (Acronis International GmbH)
R0 tib_mounter; C:\WINDOWS\System32\DRIVERS\tib_mounter.sys [182560 2015-06-09] (Acronis International GmbH)
R1 UimBus; C:\WINDOWS\System32\DRIVERS\UimBus.sys [26672 2005-04-29] (Windows (R) 2000 DDK provider) [File not signed]
S1 Uim_DEVIM; C:\WINDOWS\System32\DRIVERS\uim_devim.sys [20616 2014-10-29] ()
R1 Uim_IM; C:\WINDOWS\System32\DRIVERS\uim_im.sys [120995 2005-04-27] () [File not signed]
R3 VComm; C:\WINDOWS\System32\DRIVERS\VComm.sys [61312 2004-10-19] (IVT Corporation) [File not signed]
R3 VcommMgr; C:\WINDOWS\System32\Drivers\VcommMgr.sys [84836 2006-02-28] (IVT Corporation) [File not signed]
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [58208 2011-12-26] (Atheros Communications, Inc.) [File not signed]
U3 a8heugbi; C:\WINDOWS\system32\Drivers\a8heugbi.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
U3 DfSdkS; no ImagePath
S3 mcdbus; system32\DRIVERS\mcdbus.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [File not signed]
U1 WS2IFSL; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-07 21:08 - 2015-11-07 21:09 - 00000000 ____D C:\FRST
2015-11-07 18:44 - 2015-11-07 18:44 - 00001819 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2015-11-07 18:44 - 2015-11-07 18:44 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2015-11-07 18:43 - 2015-11-07 20:48 - 00000942 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-07 18:43 - 2015-11-07 18:48 - 00000938 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-07 18:43 - 2015-11-07 18:44 - 00000000 ____D C:\Program Files\Google
2015-11-07 18:02 - 2015-11-07 18:12 - 00008490 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-07 18:02 - 2015-11-07 18:11 - 00000157 _____ C:\WINDOWS\wiadebug.log
2015-11-07 18:02 - 2015-11-07 18:11 - 00000049 _____ C:\WINDOWS\wiaservc.log
2015-11-07 18:02 - 2015-11-07 18:02 - 00000000 _____ C:\WINDOWS\Sti_Trace.log
2015-11-07 17:55 - 2015-11-07 17:55 - 00006272 _____ C:\Documents and Settings\Voyager\Dokumenty\AdwCleaner[S3].txt
2015-11-07 17:51 - 2015-11-07 18:08 - 00000000 ____D C:\AdwCleaner
2015-11-07 02:31 - 2015-11-07 03:00 - 00000465 _____ C:\Documents and Settings\Voyager\Dokumenty\Blokování reklam.txt
2015-11-07 01:36 - 2015-11-07 01:36 - 00000473 _____ C:\Documents and Settings\Voyager\Dokumenty\whitelist.txt
2015-11-06 19:01 - 2015-11-06 19:01 - 00000885 _____ C:\Documents and Settings\Voyager\Plocha\Comodo Dragon.lnk
2015-11-06 19:00 - 2015-11-06 19:00 - 00000000 ____D C:\Program Files\Comodo
2015-11-06 18:46 - 2015-11-07 18:11 - 2145386496 _____ C:\WINDOWS\MEMORY.DMP
2015-11-06 02:32 - 2015-11-06 02:32 - 00000000 ____D C:\Program Files\Emma Ad Blocker
2015-11-06 02:32 - 2015-11-06 02:32 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Emma Ad Blocker
2015-11-06 02:27 - 2014-06-21 01:15 - 00000784 __RSH C:\WINDOWS\system32\Drivers\etc\1106201551.txt
2015-11-06 02:18 - 2014-06-21 01:15 - 00000784 __RSH C:\WINDOWS\system32\Drivers\etc\1106201559.txt
2015-11-06 02:18 - 2014-06-21 01:15 - 00000784 __RSH C:\WINDOWS\system32\Drivers\etc\1106201520.txt
2015-11-06 02:18 - 2014-06-21 01:15 - 00000784 __RSH C:\WINDOWS\system32\Drivers\etc\1106201501.txt
2015-11-06 02:17 - 2014-06-21 01:15 - 00000784 __RSH C:\WINDOWS\system32\Drivers\etc\1106201528.txt
2015-11-06 02:13 - 2015-11-06 02:13 - 00000000 ____D C:\Program Files\Ad Muncher
2015-11-06 02:13 - 2015-11-06 02:13 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Ad Muncher
2015-11-06 00:33 - 2015-11-06 19:20 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Jaroslav Apeltauer
2015-11-03 17:19 - 2015-11-03 17:20 - 00000013 _____ C:\Documents and Settings\Voyager\Dokumenty\Email - tokoz.txt
2015-11-03 02:55 - 2015-11-03 02:55 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Obnova
2015-11-03 02:50 - 2015-11-07 02:00 - 00000382 _____ C:\WINDOWS\Tasks\Wise Turbo Checker.job
2015-11-03 02:37 - 2015-11-03 02:37 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Čas
2015-11-03 02:35 - 2015-11-03 02:46 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\PC
2015-11-03 02:33 - 2015-11-03 02:33 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Vesmír
2015-11-03 02:31 - 2015-11-03 02:32 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Kalkulátory
2015-11-03 00:21 - 2015-11-04 17:38 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Visací zámek
2015-11-03 00:12 - 2015-11-03 00:12 - 00000683 _____ C:\Documents and Settings\Voyager\Plocha\postak.exe.lnk
2015-11-02 18:54 - 2015-09-18 14:21 - 00313472 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-11-02 18:30 - 2015-11-02 18:37 - 00000000 ___HD C:\Documents and Settings\Voyager\Recent(3)
2015-10-31 20:56 - 2015-11-02 18:31 - 00000000 ____D C:\WINDOWS\MATS(2)
2015-10-31 20:56 - 2015-11-02 18:31 - 00000000 ____D C:\Program Files\Microsoft Fix it Center(2)
2015-10-30 23:04 - 2015-11-01 03:14 - 00065536 _____ C:\WINDOWS\system32\config\WindowsPowerShell.evt
2015-10-30 23:04 - 2015-10-31 01:29 - 00065536 _____ C:\WINDOWS\system32\config\EventForwarding-Operational.Evt
2015-10-30 22:44 - 2015-11-02 18:36 - 00000000 ___DC C:\WINDOWS\$968930Uinstall_KB968930$
2015-10-30 22:44 - 2015-10-30 22:44 - 00065536 _____ C:\WINDOWS\system32\config\Windows .evt
2015-10-30 22:44 - 2015-10-30 22:44 - 00065536 _____ C:\WINDOWS\system32\config\Microsof.evt
2015-10-30 22:44 - 2015-10-30 22:44 - 00000000 ____D C:\WINDOWS\system32\WindowsPowerShell
2015-10-30 22:16 - 2015-10-31 18:19 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Nová složka (7)
2015-10-27 20:57 - 2015-10-27 20:59 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\LED SMD žárovky
2015-10-26 00:48 - 2015-11-07 20:48 - 00032564 _____ C:\WINDOWS\SchedLgU.Txt
2015-10-26 00:28 - 2015-11-07 18:11 - 00000284 _____ C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job
2015-10-26 00:04 - 2015-10-26 00:05 - 00081144 _____ C:\Documents and Settings\Voyager\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2015-10-26 00:02 - 2015-11-02 18:43 - 00000000 ____D C:\Program Files\IObit
2015-10-25 23:36 - 2015-10-25 23:36 - 00307600 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-10-25 22:16 - 2004-08-18 15:00 - 00250048 ____N C:\ntldr
2015-10-25 22:09 - 2015-10-25 22:10 - 00000000 ____D C:\Původní ntldr
2015-10-25 18:45 - 2015-10-25 19:02 - 00000551 _____ C:\Documents and Settings\Voyager\Dokumenty\Vítejte.txt
2015-10-23 00:17 - 2015-10-23 00:17 - 00000909 _____ C:\Documents and Settings\All Users\Nabídka Start\Seznam Pošťák.lnk
2015-10-23 00:17 - 2015-10-23 00:17 - 00000000 ____D C:\Program Files\Seznam.cz
2015-10-20 20:15 - 2015-10-20 20:15 - 00000000 ____D C:\Program Files\Footprint
2015-10-20 20:15 - 2015-10-20 20:15 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Footprint
2015-10-20 20:15 - 1997-01-15 23:00 - 00192272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mci32.ocx
2015-10-20 20:01 - 2015-11-02 18:44 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\EarthOrbitObjects
2015-10-20 20:01 - 2015-10-20 20:01 - 00000000 ____D C:\Program Files\Bluewing
2015-10-19 19:02 - 2015-10-19 19:02 - 00000000 ____D C:\Program Files\Orbitron
2015-10-18 22:23 - 2015-10-18 22:23 - 00000000 ____D C:\Program Files\Celestia
2015-10-18 22:23 - 2015-10-18 22:23 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Celestia
2015-10-18 01:17 - 2015-10-18 01:17 - 00000000 ____D C:\Program Files\Stellarium
2015-10-18 01:17 - 2015-10-18 01:17 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Stellarium
2015-10-17 22:19 - 2015-10-20 17:04 - 00000476 _____ C:\Documents and Settings\Voyager\Dokumenty\Doktor.txt
2015-10-17 00:21 - 2015-10-17 00:21 - 00000000 ____D C:\Program Files\PowerQuest
2015-10-17 00:21 - 2015-10-17 00:21 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\PowerQuest PartitionMagic 8.0
2015-10-16 19:14 - 2015-10-16 19:14 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Symantec
2015-10-16 17:34 - 2015-10-25 19:55 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\AOMEI Backupper
2015-10-16 17:33 - 2015-10-16 17:35 - 00000000 ____D C:\Program Files\AOMEI Backupper
2015-10-16 17:01 - 2005-04-29 00:47 - 00018208 _____ (Paragon Software Group) C:\WINDOWS\system32\Drivers\hotcore.sys
2015-10-16 17:01 - 2005-04-28 23:37 - 00159744 ____N () C:\WINDOWS\system32\UimExt.dll
2015-10-16 17:00 - 2015-10-16 17:01 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Paragon Hard Disk Manager 6.0
2015-10-15 23:58 - 2015-10-15 23:58 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Active@ Partition Manager
2015-10-15 23:40 - 2015-10-20 19:23 - 00000000 ____D C:\Program Files\AOMEI Partition Assistant Standard Edition 5.8
2015-10-15 23:40 - 2015-10-15 23:40 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\AOMEI Partition Assistant Standard Edition 5.8
2015-10-15 23:40 - 2015-09-24 15:57 - 01575536 _____ C:\WINDOWS\ampa.exe
2015-10-15 23:40 - 2013-12-18 10:33 - 00012656 _____ C:\WINDOWS\system32\ampa.sys
2015-10-15 18:59 - 2015-10-15 18:59 - 00000000 ____D C:\Documents and Settings\Voyager\.kchmviewer
2015-10-15 18:59 - 2015-10-15 18:59 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\chmview
2015-10-15 18:58 - 2015-10-15 18:58 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\logsaver
2015-10-15 18:57 - 2015-10-15 18:57 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\redistpart
2015-10-15 18:54 - 2015-10-15 18:54 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\viewlog
2015-10-14 00:32 - 2015-10-14 00:32 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Paragon Partition Manager™ 14 Free
2015-10-14 00:31 - 2015-10-16 17:00 - 00000000 ____D C:\Program Files\Paragon Software
2015-10-13 22:24 - 2015-10-13 22:24 - 00000000 ____D C:\Program Files\Tenorshare Partition Manager
2015-10-13 22:24 - 2015-10-13 22:24 - 00000000 ____D C:\Documents and Settings\Voyager\Nabídka Start\Programy\Tenorshare Partition Manager
2015-10-12 00:33 - 2015-10-13 17:22 - 00000104 _____ C:\Documents and Settings\Voyager\Dokumenty\CENA.txt
2015-10-11 14:29 - 2015-10-11 14:29 - 00000187 _____ C:\Documents and Settings\Voyager\Plocha\KINGSTON (Q).lnk
2015-10-09 19:35 - 2015-10-09 19:35 - 00000906 _____ C:\Documents and Settings\Voyager\Plocha\stvoy.exe.lnk
2015-10-09 17:40 - 2015-10-24 19:29 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Vrabec
2015-10-09 16:29 - 2015-10-09 16:32 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\S-Toner
2015-10-09 16:18 - 2015-11-04 02:59 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\LIDL
2015-10-09 16:04 - 2015-10-09 16:11 - 00000241 _____ C:\Documents and Settings\Voyager\Dokumenty\Kortikoidy.txt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-07 21:11 - 2014-06-13 00:39 - 00000000 ____D C:\Documents and Settings\Voyager\Local Settings\Temp
2015-11-07 21:10 - 2014-06-28 00:00 - 00537672 _____ C:\WINDOWS\system32\config\prcdrv.acl
2015-11-07 21:10 - 2014-06-28 00:00 - 00537422 _____ C:\WINDOWS\system32\config\prc.acl
2015-11-07 21:04 - 2015-08-13 00:12 - 00000958 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-11-07 21:03 - 2014-06-30 22:55 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\BOINC
2015-11-07 20:24 - 2014-11-27 15:05 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-07 20:23 - 2014-06-13 02:06 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-11-07 20:23 - 2014-06-13 02:06 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-11-07 19:00 - 2015-09-03 16:30 - 00000272 _____ C:\WINDOWS\Tasks\NUSchedule.job
2015-11-07 18:55 - 2014-06-13 01:47 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-11-07 18:48 - 2014-06-13 00:39 - 00000000 ___HD C:\Documents and Settings\Voyager\Local Settings\Data aplikací
2015-11-07 18:45 - 2014-11-06 22:24 - 00000000 ____D C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google
2015-11-07 18:15 - 2014-06-13 02:07 - 01259520 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-07 18:12 - 2014-11-22 16:44 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\Wise Care 365
2015-11-07 18:11 - 2015-09-03 16:30 - 00000280 _____ C:\WINDOWS\Tasks\NUAutoUpdate.job
2015-11-07 18:11 - 2014-06-13 00:38 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-07 18:09 - 2014-06-13 00:39 - 00000178 ___SH C:\Documents and Settings\Voyager\ntuser.ini
2015-11-07 18:09 - 2014-06-13 00:39 - 00000000 ____D C:\Documents and Settings\Voyager
2015-11-07 18:08 - 2014-06-13 02:06 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2015-11-07 18:08 - 2014-06-13 02:06 - 00000000 ___HD C:\Documents and Settings\All Users\Data aplikací
2015-11-07 18:08 - 2014-06-13 00:39 - 00000000 __RHD C:\Documents and Settings\Voyager\Data aplikací
2015-11-07 17:55 - 2014-06-13 00:39 - 00000000 ___RD C:\Documents and Settings\Voyager\Dokumenty
2015-11-07 03:11 - 2014-06-28 13:53 - 00396576 _____ C:\WINDOWS\system32\config\afw_db.conf
2015-11-07 01:23 - 2014-06-13 00:39 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha
2015-11-07 01:16 - 2014-06-28 13:53 - 00000664 _____ C:\WINDOWS\system32\config\afw_hm.conf
2015-11-07 01:16 - 2014-06-28 00:00 - 03776000 _____ C:\WINDOWS\system32\config\fsdb.sdb
2015-11-07 01:16 - 2014-06-13 01:32 - 00524288 _____ C:\WINDOWS\system32\config\ACS.evt
2015-11-07 01:13 - 2015-03-30 17:28 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\PrintScreen Files
2015-11-07 01:06 - 2015-08-17 16:45 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Nomisnaj
2015-11-06 22:10 - 2015-01-09 22:05 - 00000982 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-583907252-1979792683-682003330-1004Core1d02c50c390094.job
2015-11-06 22:10 - 2015-01-09 22:04 - 00000982 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-583907252-1979792683-682003330-1004Core.job
2015-11-06 19:01 - 2015-08-08 17:47 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Comodo
2015-11-06 18:47 - 2014-06-13 01:47 - 00794952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2015-11-06 18:47 - 2014-06-13 01:47 - 00435464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2015-11-06 02:32 - 2014-06-13 02:06 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2015-11-06 00:36 - 2014-12-14 18:37 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\vlc
2015-11-05 03:02 - 2015-01-01 18:58 - 00000773 _____ C:\Documents and Settings\Voyager\Nabídka Start\Programy\Internet Explorer.lnk
2015-11-05 03:01 - 2014-06-13 00:39 - 00000000 ___RD C:\Documents and Settings\Voyager\Oblíbené položky
2015-11-05 03:01 - 2014-06-13 00:39 - 00000000 ___RD C:\Documents and Settings\Voyager\Nabídka Start\Programy
2015-11-05 01:55 - 2014-06-13 18:58 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Harddisky
2015-11-04 20:19 - 2014-10-09 14:12 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\CanonIJPLM
2015-11-04 17:54 - 2014-10-31 15:10 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Pro videa
2015-11-04 17:19 - 2004-08-18 15:00 - 00011936 _____ C:\WINDOWS\system32\wpa.dbl
2015-11-03 17:54 - 2004-08-18 15:00 - 00000782 _____ C:\WINDOWS\win.ini
2015-11-03 04:14 - 2014-06-13 16:59 - 00131072 _____ C:\WINDOWS\system32\config\OAlerts.evt
2015-11-03 02:45 - 2014-06-14 16:51 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Zástupci
2015-11-02 18:59 - 2014-11-11 15:28 - 00001695 _____ C:\Documents and Settings\All Users\Plocha\Avast Free Antivirus.lnk
2015-11-02 18:51 - 2014-06-14 00:09 - 00000000 ____D C:\Documents and Settings\Administrator
2015-11-02 18:51 - 2014-06-13 00:38 - 00000000 __SHD C:\Documents and Settings\LocalService
2015-11-02 18:51 - 2014-06-13 00:32 - 00000000 __SHD C:\Documents and Settings\NetworkService
2015-11-02 18:50 - 2014-06-13 00:26 - 00000000 ____D C:\WINDOWS\Registration
2015-11-02 18:44 - 2015-09-19 00:09 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Xvid
2015-11-02 18:44 - 2015-01-13 01:06 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\PhotoScape
2015-11-02 18:44 - 2014-11-22 16:43 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Wise Care 365
2015-11-02 18:44 - 2014-10-31 17:22 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Přehrávače
2015-11-02 18:42 - 2014-11-04 17:42 - 00000000 ____D C:\Documents and Settings\Voyager\AppData\LocalLow\IObit
2015-11-02 18:42 - 2014-11-04 17:42 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\ProductData
2015-11-02 18:42 - 2014-11-04 17:39 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\IObit
2015-11-02 18:42 - 2014-11-04 17:38 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\IObit
2015-11-02 18:35 - 2015-09-08 17:09 - 00000000 ____D C:\Program Files\Yamicsoft
2015-11-02 18:30 - 2015-08-07 01:15 - 00000000 ____D C:\Program Files\CrystalDiskInfo
2015-11-02 18:27 - 2015-08-16 21:06 - 00000000 ____D C:\Program Files\Inno Setup 5
2015-11-02 00:47 - 2015-04-16 23:28 - 00000000 ____D C:\WinSnap
2015-10-31 01:23 - 2014-06-13 02:00 - 00000000 ___RD C:\WINDOWS\Web
2015-10-31 01:23 - 2014-06-13 00:40 - 00000000 ___RD C:\Documents and Settings\Voyager\Dokumenty\Obrázky
2015-10-31 01:10 - 2014-06-13 02:00 - 00000000 ____D C:\WINDOWS\system32\ias
2015-10-30 22:51 - 2014-06-13 02:00 - 00000000 ____D C:\WINDOWS\security
2015-10-30 22:45 - 2014-06-15 00:10 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2015-10-30 22:45 - 2014-06-13 00:24 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Příslušenství
2015-10-30 22:44 - 2015-05-06 00:20 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-10-30 22:44 - 2014-06-13 02:00 - 00000000 ____D C:\WINDOWS\Help
2015-10-30 18:36 - 2015-01-31 20:08 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Kovi
2015-10-29 00:20 - 2015-05-16 02:18 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\ALZA
2015-10-27 01:48 - 2015-03-04 20:08 - 00000874 _____ C:\Documents and Settings\Voyager\Dokumenty\FW.txt
2015-10-26 00:35 - 2014-10-24 16:57 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\MPC-HC
2015-10-26 00:28 - 2014-06-13 00:39 - 00000000 ___HD C:\Documents and Settings\Voyager\Šablony
2015-10-25 22:58 - 2014-12-27 01:42 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\XnView
2015-10-25 22:58 - 2014-07-05 15:53 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\DAEMON Tools Lite
2015-10-25 22:58 - 2014-06-13 16:54 - 00000000 __RHD C:\MSOCache
2015-10-25 19:55 - 2014-12-28 00:54 - 00000000 ___RD C:\Documents and Settings\Voyager\Plocha\Grafika
2015-10-25 19:17 - 2014-06-27 14:47 - 00000000 ____D C:\Program Files\MWSnap
2015-10-25 03:39 - 2014-07-03 18:03 - 00524288 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2015-10-23 00:17 - 2014-06-13 02:06 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start
2015-10-22 01:24 - 2014-08-05 17:49 - 17522688 _____ C:\Documents and Settings\Voyager\ntuser.rhk
2015-10-22 01:24 - 2014-08-05 17:49 - 00294912 _____ C:\Documents and Settings\NetworkService\NTUSER.rhk
2015-10-22 01:24 - 2014-08-05 17:49 - 00225280 _____ C:\Documents and Settings\LocalService\NTUSER.rhk
2015-10-22 01:24 - 2014-08-05 17:49 - 00024576 _____ C:\WINDOWS\system32\config\SAM.rhk
2015-10-22 01:24 - 2014-08-05 17:48 - 34455552 _____ C:\WINDOWS\system32\config\software.rhk
2015-10-22 01:24 - 2014-08-05 17:48 - 00266240 _____ C:\WINDOWS\system32\config\default.rhk
2015-10-22 01:23 - 2014-08-05 17:48 - 00053248 _____ C:\WINDOWS\system32\config\SECURITY.rhk
2015-10-20 19:23 - 2015-10-06 16:53 - 00001024 ____H C:\AMTAG.BIN
2015-10-18 01:18 - 2014-07-12 00:33 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\Stellarium
2015-10-18 01:16 - 2014-07-12 00:33 - 00000000 ____D C:\Documents and Settings\Voyager\Local Settings\Data aplikací\stellarium
2015-10-17 23:42 - 2015-06-24 16:45 - 00000000 ____D C:\Fraps
2015-10-17 22:04 - 2014-09-08 16:54 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\TXT
2015-10-17 01:24 - 2014-06-13 23:45 - 00780488 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-17 01:24 - 2014-06-13 23:45 - 00142536 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-10-17 01:17 - 2015-04-24 17:05 - 00000216 ___SH C:\boot.ini
2015-10-17 00:55 - 2014-08-03 00:23 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Ashampoo
2015-10-17 00:21 - 2014-06-13 01:31 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-10-16 23:55 - 2015-09-03 19:39 - 00000000 ____D C:\Program Files\CheckDrive
2015-10-16 19:15 - 2014-06-17 16:08 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\TEMP
2015-10-16 17:49 - 2015-04-27 01:46 - 00000000 ____D C:\Program Files\File Scavenger 3.0
2015-10-16 17:49 - 2015-04-27 01:46 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\File Scavenger 3.0
2015-10-16 17:44 - 2015-08-29 01:46 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Active@ Partition Recovery
2015-10-16 17:38 - 2014-09-06 17:14 - 00000000 ____D C:\Program Files\EASIS
2015-10-16 17:38 - 2014-09-06 17:14 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\EASIS
2015-10-16 17:35 - 2015-06-14 01:14 - 00001024 ____H C:\SYSTAG.BIN
2015-10-16 17:35 - 2014-08-23 15:06 - 00000082 _____ C:\WINDOWS\system32\winsevr.dat
2015-10-16 17:34 - 2014-08-23 15:05 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AomeiBR
2015-10-16 17:30 - 2014-06-16 17:00 - 00001379 _____ C:\Documents and Settings\Voyager\Plocha\Cmd.lnk
2015-10-16 17:21 - 2015-09-03 19:43 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Active@ Hard Disk Monitor
2015-10-15 23:49 - 2014-06-18 23:48 - 00000000 ____D C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Downloaded Installations
2015-10-13 23:57 - 2015-06-06 16:41 - 00228565 _____ C:\Documents and Settings\LocalService\objsrv.log
2015-10-13 23:53 - 2014-06-14 17:04 - 00000000 ____D C:\Documents and Settings\Voyager\.VirtualBox
2015-10-10 01:45 - 2014-08-23 00:49 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\HD Tune Pro
2015-10-10 01:44 - 2015-09-03 16:07 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\gsmartcontrol
2015-10-10 01:44 - 2015-09-03 16:06 - 00000000 ____D C:\Program Files\GSmartControl
2015-10-10 01:44 - 2014-08-15 22:17 - 00000000 ____D C:\Program Files\SpeedFan
2015-10-09 16:28 - 2015-06-18 23:47 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\TISK

==================== Files in the root of some directories =======

2014-07-16 01:28 - 2015-03-03 22:28 - 0001323 _____ () C:\Documents and Settings\Voyager\Data aplikací\burnaware.ini
2014-10-23 23:31 - 2014-10-23 23:31 - 0087608 _____ () C:\Documents and Settings\Voyager\Data aplikací\inst.exe
2014-10-23 23:31 - 2014-10-23 23:31 - 0007887 _____ () C:\Documents and Settings\Voyager\Data aplikací\pcouffin.cat
2014-10-23 23:31 - 2014-10-23 23:31 - 0001144 _____ () C:\Documents and Settings\Voyager\Data aplikací\pcouffin.inf
2014-10-23 23:31 - 2014-10-23 23:31 - 0000055 _____ () C:\Documents and Settings\Voyager\Data aplikací\pcouffin.log
2014-10-23 23:31 - 2014-10-23 23:31 - 0047360 _____ (VSO Software) C:\Documents and Settings\Voyager\Data aplikací\pcouffin.sys
2014-08-01 01:14 - 2015-03-03 21:50 - 0000031 _____ () C:\Documents and Settings\Voyager\Local Settings\Data aplikací\burnaware.ini
2014-06-27 14:44 - 2014-06-27 14:44 - 0000058 _____ () C:\Documents and Settings\Voyager\Local Settings\Data aplikací\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2014-08-08 00:37 - 2015-03-03 01:10 - 0000026 _____ () C:\Documents and Settings\Voyager\Local Settings\Data aplikací\isoworkshop.ini
2015-08-18 00:28 - 2015-08-18 00:28 - 0001449 _____ () C:\Documents and Settings\Voyager\Local Settings\Data aplikací\recently-used.xbel

Some files in TEMP:
====================
C:\Documents and Settings\Voyager\Local Settings\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

[Rudy]

ADW cleaner už jste dělal, že? Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Policies\Explorer: [NoDrives] 57472
HKU\S-1-5-21-583907252-1979792683-682003330-1004\...\MountPoints2: {4ec4b143-54f2-11e5-b98c-fd50c61086f5} - G:\FindMx.exe
HKU\S-1-5-21-583907252-1979792683-682003330-1004\...\MountPoints2: {4ec4b145-54f2-11e5-b98c-fd50c61086f5} - H:\FindMx.exe
GroupPolicyScripts: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-583907252-1979792683-682003330-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-583907252-1979792683-682003330-1004 -> {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
U3 DfSdkS; no ImagePath
U1 WS2IFSL; no ImagePath
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-583907252-1979792683-682003330-1004Core1d02c50c390094.job
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-583907252-1979792683-682003330-1004Core.job
C:\Documents and Settings\Voyager\Local Settings\Temp
AlternateDataStreams: C:\Documents and Settings\All Users\DRM:مايكروسوفت
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:2BE9FEFC
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:39413AC3
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:55B41E6A
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:792D4CF1
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:C5760A8B
AlternateDataStreams: C:\Documents and Settings\LocalService\Dokumenty:{C17A9145-F482-476B-AC85-47EC7463D2E9
AlternateDataStreams: C:\Documents and Settings\NetworkService\Dokumenty:{C17A9145-F482-476B-AC85-47EC7463D2E9

ResetHosts:
End

[Viruskill]

Ano, ADW cleaner proběhl. S tím zkopírovaným textem mám dělat co? Děkuji za vysvětlení.

[Rudy]

Pardon, něco jsem zapoměl zkopírovat:

Uložte do C:\Documents and Settings\Voyager\Dokumenty\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Viruskill]

Rozumím a jak mám ten textový soubor pojmenovat? Děkuji.

[Viruskill]

Promiňte, píšete tam fixlist.txt.

[Viruskill]

Při ukládání Tvého textu do Poznámkového bloku mi vyskočí hláška. Přikládám screenshot té hlášky. Jaké budou pokyny?

[Rudy]

Pokračujte.

[Viruskill]

Koukal jsem na telku. Dal jsem FIX a komp se pak restartoval. Nic nevypadlo. Přikládám screen.

[Rudy]

Máte fixlist uložen v C:\Documents and Settings\Voyager\Dokumenty\Downloads , tj ve stejném adresáři jako FRST? Pokud ne, pak to nefunguje.

[Viruskill]

Poznámkový blok měl jiný název a proto to nefungovalo. Log je hotov a dávám ho sem.

[Viruskill]

Sken

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:07-11-2015
Ran by Voyager (administrator) on DOMA-FF4904B4BC (09-11-2015 00:24:47)
Running from C:\Documents and Settings\Voyager\Dokumenty\Downloads
Loaded Profiles: Voyager (Available Profiles: Voyager & Administrator)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 6 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(Atheros) C:\WINDOWS\system32\acs.exe
Failed to access process -> acs.exe
(Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
Failed to access process -> op_mon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Program Files\Seznam.cz\postak.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Space Sciences Laboratory) C:\Program Files\BOINC\boincmgr.exe
(Space Sciences Laboratory) C:\Program Files\BOINC\boinc.exe
() C:\Documents and Settings\All Users\Data aplikací\BOINC\projects\boinc.bakerlab.org_rosetta\minirosetta_3.65_windows_intelx86.exe
(NTWind Software) C:\Program Files\WinSnap\WinSnap.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [OutpostMonitor] => C:\Program Files\Agnitum\Outpost Firewall\op_mon.exe [2374464 2009-04-28] (Agnitum Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6133520 2015-11-06] (AVAST Software)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2013-09-06] (ATI Technologies Inc.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2009-07-20] (Logitech, Inc.)
Winlogon\Notify\WgaLogon:
HKLM\...\Policies\Explorer: [NoDrives] 57472
HKU\S-1-5-21-583907252-1979792683-682003330-1004\...\Run: [Seznam Postak] => C:\Program Files\Seznam.cz\postak.exe [488728 2010-10-06] ()
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SuperAdBlocker.com)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-09-18] (AVAST Software)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files\Acronis\TrueImageHome\tishell.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files\Acronis\TrueImageHome\tishell.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files\Acronis\TrueImageHome\tishell.dll [2014-09-09] (Acronis)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Emma Ad Blocker.lnk [2015-11-08]
ShortcutTarget: Emma Ad Blocker.lnk -> C:\Program Files\Emma Ad Blocker\EmmaAdSystray.exe (Emma Ad Blocker)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Logitech SetPoint.lnk [2015-11-08]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
BootExecute: autocheck autochk * autocheck autochk * pgdfgsvc C 1

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0404C102-88AA-4851-B7BC-B8F7D92AA66F}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: HKU\S-1-5-21-583907252-1979792683-682003330-1004 - Modul přiřazení adres URL - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-583907252-1979792683-682003330-1004 -> DefaultScope {E9DB9E7B-A275-41D1-8158-D0423FBEBDEB} URL = hxxp://www.google.com/cse?cx=partner-pub-3540673482024757:xbhdw8hkfz5&cof=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-583907252-1979792683-682003330-1004 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-583907252-1979792683-682003330-1004 -> {E9DB9E7B-A275-41D1-8158-D0423FBEBDEB} URL = hxxp://www.google.com/cse?cx=partner-pub-3540673482024757:xbhdw8hkfz5&cof=&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-18] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-18] (Oracle Corporation)
BHO: Ukazatel S-Rank -> {EA837F48-5AD1-443E-AE34-FFE03CBF3099} -> C:\Program Files\Seznam.cz\core.3.dll [2010-10-06] ()
Toolbar: HKU\.DEFAULT -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2014-02-25] (Společnost Microsoft)
Toolbar: HKU\S-1-5-21-583907252-1979792683-682003330-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2014-02-25] (Společnost Microsoft)
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2013-04-16] (Belarc, Inc.)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-583907252-1979792683-682003330-1004: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2015-01-09] (Google Inc.)
FF Plugin HKU\S-1-5-21-583907252-1979792683-682003330-1004: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2015-01-09] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-02] [not signed]

Chrome:
=======
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-07]
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-07]
CHR Extension: (Disk Google) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-07]
CHR Extension: (YouTube) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-07]
CHR Extension: (uBlock Origin) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-11-07]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Tabulky Google) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-07]
CHR Extension: (Dokumenty Google offline) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-08]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-07]
CHR Extension: (Gmail) - C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-07]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-17]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [142648 2014-07-23] (SUPERAntiSpyware.com)
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [860136 2014-08-14] (Acronis)
R2 acs; C:\WINDOWS\system32\acs.exe [499796 2011-12-26] (Atheros) [File not signed]
R2 acssrv; C:\Program Files\Agnitum\Outpost Firewall\acs.exe [1195008 2009-04-28] (Agnitum Ltd.) [File not signed]
R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3988472 2015-06-09] (Acronis)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-18] (AVAST Software)
S4 BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [110592 2005-04-06] () [File not signed]
S4 Freemake Improver; C:\Documents and Settings\All Users\Data aplikací\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-10-31] (Freemake) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S2 WiseBootAssistant; C:\Program Files\Wise\Wise Care 365\BootTime.exe [580232 2014-10-28] (WiseCleaner.com) [File not signed]
S2 Active@ Disk Monitor; C:\Program Files\LSoft Technologies Inc\Active@ Hard Disk Monitor\DiskMonitorService.exe [X]
S2 Backupper Service; C:\Program Files\AOMEI Backupper\ABService.exe [X]
S2 DragonUpdater; C:\Program Files\Comodo\Dragon\dragon_updater.exe [X]
S2 EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe [X]
S2 HDDC3Service; C:\Program Files\Ashampoo\Ashampoo HDD Control 3\HDDC3Service.exe [X]
S4 HDDlife HDD Access service; "C:\Program Files\Common Files\BinarySense\hldasvc.exe" [X]
S2 ReflectService.exe; "C:\Program Files\Macrium\Reflect\ReflectService.exe" [X]
S2 syncagentsrv; "C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 713xTVCard; C:\WINDOWS\System32\DRIVERS\SAA713x.sys [277504 2005-03-15] (Philips Semiconductors)
S2 713xTVTuner; C:\WINDOWS\System32\drivers\PhTVTune.sys [26368 2004-07-30] (Philips Semiconductors)
R3 afw; C:\WINDOWS\System32\DRIVERS\afw.sys [31128 2009-02-18] (Agnitum Ltd.)
R3 afwcore; C:\WINDOWS\System32\drivers\afwcore.sys [257432 2009-02-10] (Agnitum Ltd.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [26424 2015-02-25] () [File not signed]
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [129720 2015-02-25] () [File not signed]
S3 ampa; C:\WINDOWS\system32\ampa.sys [12656 2013-12-18] ()
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [14392 2015-02-25] () [File not signed]
R3 AR9271; C:\WINDOWS\System32\DRIVERS\athuw.sys [1763584 2012-10-18] (Atheros Communications, Inc.)
R2 Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [16877 2002-07-17] (Adaptec) [File not signed]
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2015-09-18] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [76000 2015-09-18] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55200 2015-09-18] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2015-09-18] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [794952 2015-11-06] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [435464 2015-11-06] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [157888 2015-09-18] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57888 2015-09-18] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [208664 2015-09-18] (AVAST Software)
R3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [96256 2013-07-09] (Advanced Micro Devices)
R1 BANTExt; C:\WINDOWS\System32\Drivers\BANTExt.sys [3840 2013-09-10] () [File not signed]
R3 BlueletAudio; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [31488 2006-06-23] (IVT Corporation) [File not signed]
R3 BlueletSCOAudio; C:\WINDOWS\System32\DRIVERS\BlueletSCOAudio.sys [20480 2005-08-31] (IVT Corporation) [File not signed]
S3 BT; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [10068 2006-01-19] (IVT Corporation) [File not signed]
S3 Btcsrusb; C:\WINDOWS\System32\Drivers\btcusb.sys [23040 2006-07-16] (IVT Corporation) [File not signed]
R3 BTHidEnum; C:\WINDOWS\System32\DRIVERS\vbtenum.sys [11988 2005-07-30] () [File not signed]
R0 BTHidMgr; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [28271 2005-05-01] (IVT Corporation) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 cpuz137; C:\Program Files\CPUID\PC Wizard 2013\pcwiz_x32.sys [26856 2014-02-17] (CPUID)
S3 DigiartyVirtualCDBus; C:\WINDOWS\System32\drivers\DigiartyVirtualCDBus.sys [163616 2015-03-02] (Digiarty Software, Inc.)
S3 dtlitescsibus; C:\WINDOWS\System32\DRIVERS\dtlitescsibus.sys [25104 2015-09-07] (Disc Soft Ltd)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-08-20] (Disc Soft Ltd)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [14944 2014-11-18] ()
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [52008 2014-12-14] (CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [40744 2014-12-14] ()
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [14888 2014-12-14] (CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [188328 2014-12-14] (CHENGDU YIWO Tech Development Co., Ltd)
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10208 2014-11-18] ()
R1 Eve; C:\WINDOWS\System32\DRIVERS\eve.sys [33624 2014-04-10] ()
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [214304 2015-06-09] (Acronis International GmbH)
S3 gdrv; C:\WINDOWS\gdrv.sys [16608 2015-04-03] (Windows (R) 2000 DDK provider)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
R0 hotcore; C:\WINDOWS\System32\drivers\hotcore.sys [18208 2005-04-29] (Paragon Software Group) [File not signed]
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [51024 2011-03-24] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16080 2011-03-24] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21456 2011-03-24] (HP)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [22688 2014-08-20] (REALiX(tm))
R3 JSWSCIMD; C:\WINDOWS\System32\DRIVERS\jswscimd.sys [57440 2011-12-26] (Atheros Communications, Inc.)
R3 LEqdUsb; C:\WINDOWS\System32\Drivers\LEqdUsb.Sys [40720 2009-06-17] (Logitech, Inc.)
R3 LHidEqd; C:\WINDOWS\System32\Drivers\LHidEqd.Sys [10384 2009-06-17] (Logitech, Inc.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2014-04-18] (Riverbed Technology, Inc.)
R0 oodrvled; C:\WINDOWS\System32\DRIVERS\oodrvled.sys [25680 2010-05-20] (O&O Software GmbH)
R1 PQNTDrv; C:\WINDOWS\system32\Drivers\PQNTDrv.sys [4228 2002-09-16] (PowerQuest Corporation) [File not signed]
R0 pssnap; C:\WINDOWS\System32\DRIVERS\pssnap.sys [13528 2014-07-21] ()
S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [17160 2015-03-05] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [13064 2015-03-05] ()
R1 SandBox; C:\WINDOWS\system32\drivers\SandBox.sys [704384 2009-04-06] (Agnitum Ltd.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 SI3132; C:\WINDOWS\System32\DRIVERS\SI3132.sys [80424 2007-10-03] (Silicon Image, Inc)
R0 SiFilter; C:\WINDOWS\System32\DRIVERS\SiWinAcc.sys [19240 2007-10-03] (Silicon Image, Inc)
R0 SiRemFil; C:\WINDOWS\System32\DRIVERS\SiRemFil.sys [15400 2007-10-03] (Silicon Image, Inc)
S3 SliceDisk5; C:\Program Files\A-FF Find and Mount\slicedisk.sys [26192 2011-02-25] (Atola) [File not signed]
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [15808 2014-06-04] (IObit)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [329384 2015-09-07] (Duplex Secure Ltd.)
S3 tap0901; C:\WINDOWS\System32\DRIVERS\tap0901.sys [33608 2014-04-09] (The OpenVPN Project)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [867968 2015-06-09] (Acronis International GmbH)
R0 tib_mounter; C:\WINDOWS\System32\DRIVERS\tib_mounter.sys [182560 2015-06-09] (Acronis International GmbH)
R1 UimBus; C:\WINDOWS\System32\DRIVERS\UimBus.sys [26672 2005-04-29] (Windows (R) 2000 DDK provider) [File not signed]
S1 Uim_DEVIM; C:\WINDOWS\System32\DRIVERS\uim_devim.sys [20616 2014-10-29] ()
R1 Uim_IM; C:\WINDOWS\System32\DRIVERS\uim_im.sys [120995 2005-04-27] () [File not signed]
R3 VComm; C:\WINDOWS\System32\DRIVERS\VComm.sys [61312 2004-10-19] (IVT Corporation) [File not signed]
R3 VcommMgr; C:\WINDOWS\System32\Drivers\VcommMgr.sys [84836 2006-02-28] (IVT Corporation) [File not signed]
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [58208 2011-12-26] (Atheros Communications, Inc.) [File not signed]
U3 ad4o4utz; C:\WINDOWS\system32\Drivers\ad4o4utz.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
S3 mcdbus; system32\DRIVERS\mcdbus.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-08 22:02 - 2015-11-08 22:05 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Viry fórum
2015-11-08 20:06 - 2015-11-09 00:25 - 00000000 ____D C:\Documents and Settings\Voyager\Local Settings\Temp
2015-11-08 20:06 - 2015-11-08 22:08 - 00008516 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-08 20:06 - 2015-11-08 20:06 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-11-08 20:06 - 2015-11-08 20:06 - 00000049 _____ C:\WINDOWS\wiaservc.log
2015-11-08 20:06 - 2015-11-08 20:06 - 00000000 _____ C:\WINDOWS\Sti_Trace.log
2015-11-08 17:35 - 2015-11-08 17:38 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Solarizace
2015-11-07 22:00 - 2015-11-07 22:01 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Internet
2015-11-07 21:58 - 2015-11-07 21:58 - 00000000 ____D C:\Program Files\NeoSmart Technologies
2015-11-07 21:58 - 2015-11-07 21:58 - 00000000 ____D C:\Documents and Settings\Voyager\Local Settings\Data aplikací\NeoSmart_Technologies
2015-11-07 21:58 - 2015-11-07 21:58 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\NeoSmart Technologies
2015-11-07 21:08 - 2015-11-09 00:24 - 00000000 ____D C:\FRST
2015-11-07 18:44 - 2015-11-07 18:44 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2015-11-07 18:43 - 2015-11-07 18:44 - 00000000 ____D C:\Program Files\Google
2015-11-07 17:55 - 2015-11-07 17:55 - 00006272 _____ C:\Documents and Settings\Voyager\Dokumenty\AdwCleaner[S3].txt
2015-11-07 17:51 - 2015-11-07 18:08 - 00000000 ____D C:\AdwCleaner
2015-11-07 02:31 - 2015-11-07 03:00 - 00000465 _____ C:\Documents and Settings\Voyager\Dokumenty\Blokování reklam.txt
2015-11-07 01:36 - 2015-11-07 01:36 - 00000473 _____ C:\Documents and Settings\Voyager\Dokumenty\whitelist.txt
2015-11-06 19:00 - 2015-11-06 19:00 - 00000000 ____D C:\Program Files\Comodo
2015-11-06 02:32 - 2015-11-06 02:32 - 00000000 ____D C:\Program Files\Emma Ad Blocker
2015-11-06 02:32 - 2015-11-06 02:32 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Emma Ad Blocker
2015-11-06 02:27 - 2014-06-21 01:15 - 00000784 __RSH C:\WINDOWS\system32\Drivers\etc\1106201551.txt
2015-11-06 02:18 - 2014-06-21 01:15 - 00000784 __RSH C:\WINDOWS\system32\Drivers\etc\1106201559.txt
2015-11-06 02:18 - 2014-06-21 01:15 - 00000784 __RSH C:\WINDOWS\system32\Drivers\etc\1106201520.txt
2015-11-06 02:18 - 2014-06-21 01:15 - 00000784 __RSH C:\WINDOWS\system32\Drivers\etc\1106201501.txt
2015-11-06 02:17 - 2014-06-21 01:15 - 00000784 __RSH C:\WINDOWS\system32\Drivers\etc\1106201528.txt
2015-11-06 02:13 - 2015-11-06 02:13 - 00000000 ____D C:\Program Files\Ad Muncher
2015-11-06 02:13 - 2015-11-06 02:13 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Ad Muncher
2015-11-06 00:33 - 2015-11-06 19:20 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Jaroslav Apeltauer
2015-11-03 17:19 - 2015-11-03 17:20 - 00000013 _____ C:\Documents and Settings\Voyager\Dokumenty\Email - tokoz.txt
2015-11-03 02:55 - 2015-11-03 02:55 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Obnova
2015-11-03 02:50 - 2015-11-08 02:00 - 00000382 _____ C:\WINDOWS\Tasks\Wise Turbo Checker.job
2015-11-03 02:37 - 2015-11-03 02:37 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Čas
2015-11-03 02:35 - 2015-11-07 22:01 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\PC
2015-11-03 02:33 - 2015-11-03 02:33 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Vesmír
2015-11-03 02:31 - 2015-11-03 02:32 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Kalkulátory
2015-11-03 00:21 - 2015-11-04 17:38 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Visací zámek
2015-11-03 00:12 - 2015-11-03 00:12 - 00000683 _____ C:\Documents and Settings\Voyager\Plocha\postak.exe.lnk
2015-11-02 18:54 - 2015-09-18 14:21 - 00313472 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-11-02 18:30 - 2015-11-02 18:37 - 00000000 ___HD C:\Documents and Settings\Voyager\Recent(3)
2015-10-31 20:56 - 2015-11-02 18:31 - 00000000 ____D C:\WINDOWS\MATS(2)
2015-10-31 20:56 - 2015-11-02 18:31 - 00000000 ____D C:\Program Files\Microsoft Fix it Center(2)
2015-10-30 23:04 - 2015-11-01 03:14 - 00065536 _____ C:\WINDOWS\system32\config\WindowsPowerShell.evt
2015-10-30 23:04 - 2015-10-31 01:29 - 00065536 _____ C:\WINDOWS\system32\config\EventForwarding-Operational.Evt
2015-10-30 22:44 - 2015-11-02 18:36 - 00000000 ___DC C:\WINDOWS\$968930Uinstall_KB968930$
2015-10-30 22:44 - 2015-10-30 22:44 - 00065536 _____ C:\WINDOWS\system32\config\Windows .evt
2015-10-30 22:44 - 2015-10-30 22:44 - 00065536 _____ C:\WINDOWS\system32\config\Microsof.evt
2015-10-30 22:44 - 2015-10-30 22:44 - 00000000 ____D C:\WINDOWS\system32\WindowsPowerShell
2015-10-30 22:16 - 2015-10-31 18:19 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Nová složka (7)
2015-10-27 20:57 - 2015-10-27 20:59 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\LED SMD žárovky
2015-10-26 00:48 - 2015-11-08 20:04 - 00032564 _____ C:\WINDOWS\SchedLgU.Txt
2015-10-26 00:28 - 2015-11-08 22:08 - 00000284 _____ C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job
2015-10-26 00:04 - 2015-10-26 00:05 - 00081144 _____ C:\Documents and Settings\Voyager\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2015-10-26 00:02 - 2015-11-02 18:43 - 00000000 ____D C:\Program Files\IObit
2015-10-25 23:36 - 2015-10-25 23:36 - 00307600 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-10-25 22:16 - 2004-08-18 15:00 - 00250048 ____N C:\ntldr
2015-10-25 22:09 - 2015-10-25 22:10 - 00000000 ____D C:\Původní ntldr
2015-10-25 18:45 - 2015-10-25 19:02 - 00000551 _____ C:\Documents and Settings\Voyager\Dokumenty\Vítejte.txt
2015-10-23 00:17 - 2015-10-23 00:17 - 00000909 _____ C:\Documents and Settings\All Users\Nabídka Start\Seznam Pošťák.lnk
2015-10-23 00:17 - 2015-10-23 00:17 - 00000000 ____D C:\Program Files\Seznam.cz
2015-10-20 20:15 - 2015-10-20 20:15 - 00000000 ____D C:\Program Files\Footprint
2015-10-20 20:15 - 2015-10-20 20:15 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Footprint
2015-10-20 20:15 - 1997-01-15 23:00 - 00192272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mci32.ocx
2015-10-20 20:01 - 2015-11-02 18:44 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\EarthOrbitObjects
2015-10-20 20:01 - 2015-10-20 20:01 - 00000000 ____D C:\Program Files\Bluewing
2015-10-19 19:02 - 2015-10-19 19:02 - 00000000 ____D C:\Program Files\Orbitron
2015-10-18 22:23 - 2015-10-18 22:23 - 00000000 ____D C:\Program Files\Celestia
2015-10-18 22:23 - 2015-10-18 22:23 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Celestia
2015-10-18 01:17 - 2015-10-18 01:17 - 00000000 ____D C:\Program Files\Stellarium
2015-10-18 01:17 - 2015-10-18 01:17 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Stellarium
2015-10-17 22:19 - 2015-10-20 17:04 - 00000476 _____ C:\Documents and Settings\Voyager\Dokumenty\Doktor.txt
2015-10-17 00:21 - 2015-10-17 00:21 - 00000000 ____D C:\Program Files\PowerQuest
2015-10-17 00:21 - 2015-10-17 00:21 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\PowerQuest PartitionMagic 8.0
2015-10-16 19:14 - 2015-10-16 19:14 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Symantec
2015-10-16 17:34 - 2015-10-25 19:55 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\AOMEI Backupper
2015-10-16 17:33 - 2015-10-16 17:35 - 00000000 ____D C:\Program Files\AOMEI Backupper
2015-10-16 17:01 - 2005-04-29 00:47 - 00018208 _____ (Paragon Software Group) C:\WINDOWS\system32\Drivers\hotcore.sys
2015-10-16 17:01 - 2005-04-28 23:37 - 00159744 ____N () C:\WINDOWS\system32\UimExt.dll
2015-10-16 17:00 - 2015-10-16 17:01 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Paragon Hard Disk Manager 6.0
2015-10-15 23:58 - 2015-10-15 23:58 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Active@ Partition Manager
2015-10-15 23:40 - 2015-10-20 19:23 - 00000000 ____D C:\Program Files\AOMEI Partition Assistant Standard Edition 5.8
2015-10-15 23:40 - 2015-10-15 23:40 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\AOMEI Partition Assistant Standard Edition 5.8
2015-10-15 23:40 - 2015-09-24 15:57 - 01575536 _____ C:\WINDOWS\ampa.exe
2015-10-15 23:40 - 2013-12-18 10:33 - 00012656 _____ C:\WINDOWS\system32\ampa.sys
2015-10-15 18:59 - 2015-10-15 18:59 - 00000000 ____D C:\Documents and Settings\Voyager\.kchmviewer
2015-10-15 18:59 - 2015-10-15 18:59 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\chmview
2015-10-15 18:58 - 2015-10-15 18:58 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\logsaver
2015-10-15 18:57 - 2015-10-15 18:57 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\redistpart
2015-10-15 18:54 - 2015-10-15 18:54 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\viewlog
2015-10-14 00:32 - 2015-10-14 00:32 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Paragon Partition Manager™ 14 Free
2015-10-14 00:31 - 2015-10-16 17:00 - 00000000 ____D C:\Program Files\Paragon Software
2015-10-13 22:24 - 2015-10-13 22:24 - 00000000 ____D C:\Program Files\Tenorshare Partition Manager
2015-10-13 22:24 - 2015-10-13 22:24 - 00000000 ____D C:\Documents and Settings\Voyager\Nabídka Start\Programy\Tenorshare Partition Manager
2015-10-12 00:33 - 2015-10-13 17:22 - 00000104 _____ C:\Documents and Settings\Voyager\Dokumenty\CENA.txt
2015-10-11 14:29 - 2015-10-11 14:29 - 00000187 _____ C:\Documents and Settings\Voyager\Plocha\KINGSTON (Q).lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-09 00:24 - 2014-11-27 15:05 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-09 00:22 - 2015-04-16 23:28 - 00000000 ____D C:\WinSnap
2015-11-09 00:15 - 2014-06-30 22:55 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\BOINC
2015-11-08 22:08 - 2015-09-03 16:30 - 00000280 _____ C:\WINDOWS\Tasks\NUAutoUpdate.job
2015-11-08 22:08 - 2014-06-28 00:00 - 00544670 _____ C:\WINDOWS\system32\config\prcdrv.acl
2015-11-08 22:08 - 2014-06-28 00:00 - 00544422 _____ C:\WINDOWS\system32\config\prc.acl
2015-11-08 22:08 - 2014-06-13 01:47 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-11-08 22:07 - 2014-06-13 00:39 - 00000178 ___SH C:\Documents and Settings\Voyager\ntuser.ini
2015-11-08 22:07 - 2014-06-13 00:39 - 00000000 ____D C:\Documents and Settings\Voyager
2015-11-08 22:03 - 2014-06-13 00:39 - 00000000 ___RD C:\Documents and Settings\Voyager\Dokumenty
2015-11-08 20:10 - 2014-06-13 02:07 - 01259520 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-08 20:07 - 2014-11-22 16:44 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\Wise Care 365
2015-11-08 20:06 - 2014-06-13 00:38 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-08 20:04 - 2014-06-28 13:53 - 00421398 _____ C:\WINDOWS\system32\config\afw_db.conf
2015-11-08 20:04 - 2014-06-28 13:53 - 00000664 _____ C:\WINDOWS\system32\config\afw_hm.conf
2015-11-08 20:04 - 2014-06-28 00:00 - 03776000 _____ C:\WINDOWS\system32\config\fsdb.sdb
2015-11-08 20:04 - 2014-06-13 01:32 - 00524288 _____ C:\WINDOWS\system32\config\ACS.evt
2015-11-08 19:59 - 2015-05-06 00:20 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-11-08 19:00 - 2015-09-03 16:30 - 00000272 _____ C:\WINDOWS\Tasks\NUSchedule.job
2015-11-08 18:04 - 2015-03-30 17:28 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\PrintScreen Files
2015-11-08 17:53 - 2014-06-13 00:39 - 00000000 ___HD C:\Documents and Settings\Voyager\Local Settings\Data aplikací
2015-11-08 01:01 - 2014-11-13 22:26 - 00004084 _____ C:\Documents and Settings\Voyager\Plocha\Serial.txt
2015-11-08 00:59 - 2014-12-14 18:37 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\vlc
2015-11-07 23:04 - 2015-08-13 00:12 - 00000958 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-11-07 22:01 - 2014-06-13 02:06 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-11-07 22:01 - 2014-06-13 00:39 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha
2015-11-07 21:58 - 2014-06-13 02:06 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-11-07 21:58 - 2014-06-13 02:06 - 00000000 ____D C:\Documents and Settings\All Users\Oblíbené položky
2015-11-07 18:45 - 2014-11-06 22:24 - 00000000 ____D C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Google
2015-11-07 18:08 - 2014-06-13 02:06 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2015-11-07 18:08 - 2014-06-13 02:06 - 00000000 ___HD C:\Documents and Settings\All Users\Data aplikací
2015-11-07 18:08 - 2014-06-13 00:39 - 00000000 __RHD C:\Documents and Settings\Voyager\Data aplikací
2015-11-07 01:06 - 2015-08-17 16:45 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Nomisnaj
2015-11-06 19:01 - 2015-08-08 17:47 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Comodo
2015-11-06 18:47 - 2014-06-13 01:47 - 00794952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2015-11-06 18:47 - 2014-06-13 01:47 - 00435464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2015-11-06 02:32 - 2014-06-13 02:06 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2015-11-05 03:02 - 2015-01-01 18:58 - 00000773 _____ C:\Documents and Settings\Voyager\Nabídka Start\Programy\Internet Explorer.lnk
2015-11-05 03:01 - 2014-06-13 00:39 - 00000000 ___RD C:\Documents and Settings\Voyager\Oblíbené položky
2015-11-05 03:01 - 2014-06-13 00:39 - 00000000 ___RD C:\Documents and Settings\Voyager\Nabídka Start\Programy
2015-11-05 01:55 - 2014-06-13 18:58 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Harddisky
2015-11-04 20:19 - 2014-10-09 14:12 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\CanonIJPLM
2015-11-04 17:54 - 2014-10-31 15:10 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Pro videa
2015-11-04 17:19 - 2004-08-18 15:00 - 00011936 _____ C:\WINDOWS\system32\wpa.dbl
2015-11-04 02:59 - 2015-10-09 16:18 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\LIDL
2015-11-03 17:54 - 2004-08-18 15:00 - 00000782 _____ C:\WINDOWS\win.ini
2015-11-03 04:14 - 2014-06-13 16:59 - 00131072 _____ C:\WINDOWS\system32\config\OAlerts.evt
2015-11-03 02:45 - 2014-06-14 16:51 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Zástupci
2015-11-02 18:59 - 2014-11-11 15:28 - 00001695 _____ C:\Documents and Settings\All Users\Plocha\Avast Free Antivirus.lnk
2015-11-02 18:51 - 2014-06-14 00:09 - 00000000 ____D C:\Documents and Settings\Administrator
2015-11-02 18:51 - 2014-06-13 00:38 - 00000000 __SHD C:\Documents and Settings\LocalService
2015-11-02 18:51 - 2014-06-13 00:32 - 00000000 __SHD C:\Documents and Settings\NetworkService
2015-11-02 18:50 - 2014-06-13 00:26 - 00000000 ____D C:\WINDOWS\Registration
2015-11-02 18:44 - 2015-09-19 00:09 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Xvid
2015-11-02 18:44 - 2015-01-13 01:06 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\PhotoScape
2015-11-02 18:44 - 2014-11-22 16:43 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Wise Care 365
2015-11-02 18:44 - 2014-10-31 17:22 - 00000000 ____D C:\Documents and Settings\Voyager\Plocha\Přehrávače
2015-11-02 18:42 - 2014-11-04 17:42 - 00000000 ____D C:\Documents and Settings\Voyager\AppData\LocalLow\IObit
2015-11-02 18:42 - 2014-11-04 17:42 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\ProductData
2015-11-02 18:42 - 2014-11-04 17:39 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\IObit
2015-11-02 18:42 - 2014-11-04 17:38 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\IObit
2015-11-02 18:35 - 2015-09-08 17:09 - 00000000 ____D C:\Program Files\Yamicsoft
2015-11-02 18:30 - 2015-08-07 01:15 - 00000000 ____D C:\Program Files\CrystalDiskInfo
2015-11-02 18:27 - 2015-08-16 21:06 - 00000000 ____D C:\Program Files\Inno Setup 5
2015-10-31 01:23 - 2014-06-13 02:00 - 00000000 ___RD C:\WINDOWS\Web
2015-10-31 01:23 - 2014-06-13 00:40 - 00000000 ___RD C:\Documents and Settings\Voyager\Dokumenty\Obrázky
2015-10-31 01:10 - 2014-06-13 02:00 - 00000000 ____D C:\WINDOWS\system32\ias
2015-10-30 22:51 - 2014-06-13 02:00 - 00000000 ____D C:\WINDOWS\security
2015-10-30 22:45 - 2014-06-15 00:10 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2015-10-30 22:45 - 2014-06-13 00:24 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Příslušenství
2015-10-30 22:44 - 2014-06-13 02:00 - 00000000 ____D C:\WINDOWS\Help
2015-10-30 18:36 - 2015-01-31 20:08 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Kovi
2015-10-29 00:20 - 2015-05-16 02:18 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\ALZA
2015-10-27 01:48 - 2015-03-04 20:08 - 00000874 _____ C:\Documents and Settings\Voyager\Dokumenty\FW.txt
2015-10-26 00:35 - 2014-10-24 16:57 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\MPC-HC
2015-10-26 00:28 - 2014-06-13 00:39 - 00000000 ___HD C:\Documents and Settings\Voyager\Šablony
2015-10-25 22:58 - 2014-12-27 01:42 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\XnView
2015-10-25 22:58 - 2014-07-05 15:53 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\DAEMON Tools Lite
2015-10-25 22:58 - 2014-06-13 16:54 - 00000000 __RHD C:\MSOCache
2015-10-25 19:55 - 2014-12-28 00:54 - 00000000 ___RD C:\Documents and Settings\Voyager\Plocha\Grafika
2015-10-25 19:17 - 2014-06-27 14:47 - 00000000 ____D C:\Program Files\MWSnap
2015-10-25 03:39 - 2014-07-03 18:03 - 00524288 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2015-10-24 19:29 - 2015-10-09 17:40 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\Vrabec
2015-10-23 00:17 - 2014-06-13 02:06 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start
2015-10-22 01:24 - 2014-08-05 17:49 - 17522688 _____ C:\Documents and Settings\Voyager\ntuser.rhk
2015-10-22 01:24 - 2014-08-05 17:49 - 00294912 _____ C:\Documents and Settings\NetworkService\NTUSER.rhk
2015-10-22 01:24 - 2014-08-05 17:49 - 00225280 _____ C:\Documents and Settings\LocalService\NTUSER.rhk
2015-10-22 01:24 - 2014-08-05 17:49 - 00024576 _____ C:\WINDOWS\system32\config\SAM.rhk
2015-10-22 01:24 - 2014-08-05 17:48 - 34455552 _____ C:\WINDOWS\system32\config\software.rhk
2015-10-22 01:24 - 2014-08-05 17:48 - 00266240 _____ C:\WINDOWS\system32\config\default.rhk
2015-10-22 01:23 - 2014-08-05 17:48 - 00053248 _____ C:\WINDOWS\system32\config\SECURITY.rhk
2015-10-20 19:23 - 2015-10-06 16:53 - 00001024 ____H C:\AMTAG.BIN
2015-10-18 01:18 - 2014-07-12 00:33 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\Stellarium
2015-10-18 01:16 - 2014-07-12 00:33 - 00000000 ____D C:\Documents and Settings\Voyager\Local Settings\Data aplikací\stellarium
2015-10-17 23:42 - 2015-06-24 16:45 - 00000000 ____D C:\Fraps
2015-10-17 22:04 - 2014-09-08 16:54 - 00000000 ____D C:\Documents and Settings\Voyager\Dokumenty\TXT
2015-10-17 01:24 - 2014-06-13 23:45 - 00780488 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-17 01:24 - 2014-06-13 23:45 - 00142536 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-10-17 01:17 - 2015-04-24 17:05 - 00000216 ___SH C:\boot.ini
2015-10-17 00:55 - 2014-08-03 00:23 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Ashampoo
2015-10-17 00:21 - 2014-06-13 01:31 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-10-16 23:55 - 2015-09-03 19:39 - 00000000 ____D C:\Program Files\CheckDrive
2015-10-16 19:15 - 2014-06-17 16:08 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\TEMP
2015-10-16 17:49 - 2015-04-27 01:46 - 00000000 ____D C:\Program Files\File Scavenger 3.0
2015-10-16 17:49 - 2015-04-27 01:46 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\File Scavenger 3.0
2015-10-16 17:44 - 2015-08-29 01:46 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Active@ Partition Recovery
2015-10-16 17:38 - 2014-09-06 17:14 - 00000000 ____D C:\Program Files\EASIS
2015-10-16 17:38 - 2014-09-06 17:14 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\EASIS
2015-10-16 17:35 - 2015-06-14 01:14 - 00001024 ____H C:\SYSTAG.BIN
2015-10-16 17:35 - 2014-08-23 15:06 - 00000082 _____ C:\WINDOWS\system32\winsevr.dat
2015-10-16 17:34 - 2014-08-23 15:05 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AomeiBR
2015-10-16 17:30 - 2014-06-16 17:00 - 00001379 _____ C:\Documents and Settings\Voyager\Plocha\Cmd.lnk
2015-10-16 17:21 - 2015-09-03 19:43 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Active@ Hard Disk Monitor
2015-10-15 23:49 - 2014-06-18 23:48 - 00000000 ____D C:\Documents and Settings\Voyager\Local Settings\Data aplikací\Downloaded Installations
2015-10-13 23:57 - 2015-06-06 16:41 - 00228565 _____ C:\Documents and Settings\LocalService\objsrv.log
2015-10-13 23:53 - 2014-06-14 17:04 - 00000000 ____D C:\Documents and Settings\Voyager\.VirtualBox
2015-10-10 01:45 - 2014-08-23 00:49 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\HD Tune Pro
2015-10-10 01:44 - 2015-09-03 16:07 - 00000000 ____D C:\Documents and Settings\Voyager\Data aplikací\gsmartcontrol
2015-10-10 01:44 - 2015-09-03 16:06 - 00000000 ____D C:\Program Files\GSmartControl
2015-10-10 01:44 - 2014-08-15 22:17 - 00000000 ____D C:\Program Files\SpeedFan

==================== Files in the root of some directories =======

2014-07-16 01:28 - 2015-03-03 22:28 - 0001323 _____ () C:\Documents and Settings\Voyager\Data aplikací\burnaware.ini
2014-10-23 23:31 - 2014-10-23 23:31 - 0087608 _____ () C:\Documents and Settings\Voyager\Data aplikací\inst.exe
2014-10-23 23:31 - 2014-10-23 23:31 - 0007887 _____ () C:\Documents and Settings\Voyager\Data aplikací\pcouffin.cat
2014-10-23 23:31 - 2014-10-23 23:31 - 0001144 _____ () C:\Documents and Settings\Voyager\Data aplikací\pcouffin.inf
2014-10-23 23:31 - 2014-10-23 23:31 - 0000055 _____ () C:\Documents and Settings\Voyager\Data aplikací\pcouffin.log
2014-10-23 23:31 - 2014-10-23 23:31 - 0047360 _____ (VSO Software) C:\Documents and Settings\Voyager\Data aplikací\pcouffin.sys
2014-08-01 01:14 - 2015-03-03 21:50 - 0000031 _____ () C:\Documents and Settings\Voyager\Local Settings\Data aplikací\burnaware.ini
2014-06-27 14:44 - 2014-06-27 14:44 - 0000058 _____ () C:\Documents and Settings\Voyager\Local Settings\Data aplikací\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2014-08-08 00:37 - 2015-03-03 01:10 - 0000026 _____ () C:\Documents and Settings\Voyager\Local Settings\Data aplikací\isoworkshop.ini
2015-08-18 00:28 - 2015-08-18 00:28 - 0001449 _____ () C:\Documents and Settings\Voyager\Local Settings\Data aplikací\recently-used.xbel

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================