)
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Nevím si rady
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
czechboy123
- Návštěvník
- Příspěvky: 17
- Registrován: 08 kvě 2014 20:36
Nevím si rady
Dobrý den. Mám problém, z ničeho nic mi v pc skáčou errory z programů jako je třeba AMD catalyst control center,a pořád mi vyskakuje tabulka z řízení uživatelských učtů že pořád nějáké změny se schvost.com. Děkuji moc za odpověď.(Jsem amatér takže promiňte za ty neodborné výrazi )
)-
Rudy
- Site Admin
- Příspěvky: 119398
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nevím si rady
Zdravím!
Tam bude nějaké svinstvo. Zkuste tento postup: http://forum.viry.cz/viewtopic.php?f=24&t=132509 . Zároveň přesouvám váš topic do správné sekce.
Tam bude nějaké svinstvo. Zkuste tento postup: http://forum.viry.cz/viewtopic.php?f=24&t=132509 . Zároveň přesouvám váš topic do správné sekce.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
czechboy123
- Návštěvník
- Příspěvky: 17
- Registrován: 08 kvě 2014 20:36
Re: Nevím si rady
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-05-2014 02
Ran by Lubos (administrator) on KAREL-PC on 08-05-2014 21:58:04
Running from C:\Users\Lubos\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
() C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe
(Spigot, Inc.) C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
() C:\Program Files (x86)\Surftastic\updateSurftastic.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\Surftastic\bin\utilSurftastic.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
(IObit) C:\Users\Lubos\AppData\Local\Temp\3582-490\Monitor.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\systemku.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(forum.viry.cz) C:\Users\Lubos\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-12-28] (Realtek Semiconductor)
HKLM-x32\...\Run: [mskirsuvSrv] => C:\Windows\SysWOW64\mskirsuv.vbe [583 2013-12-10] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1103944 2014-05-08] ()
HKLM-x32\...\Run: [NBAgent] => C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1234216 2014-05-08] (Nero AG)
HKLM-x32\...\Run: [ApnUpdater] => C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1648264 2014-05-08] (Ask)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [807680 2014-05-08] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2014-05-08] (Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SearchSettings] => C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [1484608 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Lubos\AppData\Roaming\Seznam.cz\szninstall.exe [1103944 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [NextLive] => C:\Windows\SysWOW64\rundll32.exe "C:\Users\Lubos\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-06-17] (Hewlett-Packard Company)
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [SpeedUpMyComputer] => C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe [2096248 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3716824 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [PCSpeedUp] => C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe [319280 2014-05-08] ()
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsemngr.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browsermngr.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IFEO\cltmngsvc.exe: [Debugger] tasklist.exe
IFEO\delta babylon.exe: [Debugger] tasklist.exe
IFEO\delta tb.exe: [Debugger] tasklist.exe
IFEO\delta2.exe: [Debugger] tasklist.exe
IFEO\deltainstaller.exe: [Debugger] tasklist.exe
IFEO\deltasetup.exe: [Debugger] tasklist.exe
IFEO\deltatb.exe: [Debugger] tasklist.exe
IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\iminentsetup.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll [490000 2014-04-28] ()
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll [664592 2014-04-28] ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
URLSearchHook: HKCU - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE64.dll (Spigot, Inc.)
URLSearchHook: HKCU - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
URLSearchHook: HKCU - (No Name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... earchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... earchTerms}
SearchScopes: HKCU - DefaultScope {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.com/websearch/ref=bit ... earchTerms}
SearchScopes: HKCU - {0B69D94F-EDEF-4EC5-A8AE-926BEEE7EFF9} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKCU - {32A54656-AD6D-46B9-845A-B79F5497DD8A} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
SearchScopes: HKCU - {40DA3F64-68D2-44EF-A198-3C3DAB96BA45} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKCU - {529411A6-7036-46BE-8EF9-B46FF37CC561} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKCU - {5BF0509C-F974-43B1-8F4B-EE0B2A417A54} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {90DC8193-9063-4689-856A-9DDB37BDB643} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKCU - {91B28FEB-2414-435E-9C34-2ECFF9AACD16} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {92163A7C-CBEB-4EDC-8CFB-06021A9CBEF0} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKCU - {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.com/websearch/ref=bit ... earchTerms}
SearchScopes: HKCU - {E678D672-FA48-4309-996E-99AA51BBABAD} URL = http://www.mysearchresults.com/search?c ... earchTerms}
SearchScopes: HKCU - {F17E0493-030D-47CF-9BC0-8E4147EADAC6} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKCU - {F1E22D2F-71A3-4C7C-B8B5-D2AB09F87F4D} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKCU - {F63866A0-F31D-4E39-9075-67456BE20234} URL = www.buenosearch.com?babsrc=ext_WinjNw&a ... earchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: The Amazon 1Button App for IE - {26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} - C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonAppIE64.dll (Amazon Inc.)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons64.dll (Spigot, Inc.)
BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll (Aztec Media Inc)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: The Amazon 1Button App for IE - {26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} - C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonAppIE.dll (Amazon Inc.)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons.dll (Spigot, Inc.)
BHO-x32: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: DefaultTab Browser Helper - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll (Search Results LLC.)
BHO-x32: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files (x86)\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
Toolbar: HKLM - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE64.dll (Spigot, Inc.)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM-x32 - Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files (x86)\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
Toolbar: HKLM-x32 - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.46
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Lubos\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha51.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha51\ff
FF Extension: Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha51\ff [2014-03-18]
Chrome:
=======
CHR HomePage: hxxp://www.amazon.com/websearch/ref=bit_bds-p1 ... r_sp_cpuid
CHR StartupUrls: ""
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: default-search.net
CHR DefaultSearchURL: http://www.default-search.net/search?si ... earchTerms}
CHR DefaultNewTabURL:
CHR Extension: (McAfee Security Scan+) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-02-26]
CHR Extension: (uTorrentControl_v6) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\cflheckfmhopnialghigdlggahiomebp [2014-02-28]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-01]
CHR Extension: (Domain Error Assistant) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-01]
CHR Extension: (Slick Savings) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-03-19]
CHR Extension: (PenÄĂË€ºÄ¹Ä¾enka Google) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-01]
CHR Extension: (Media View) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbhnbophegacpjokipcjfienbhdpmokd [2014-03-18]
CHR HKCU\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Lubos\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKCU\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - C:\Program Files (x86)\Amazon\ABB\AmazonChrome-bds-amzn.crx [2014-01-31]
CHR HKLM-x32\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Lubos\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.1.crx [2013-10-14]
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.3.crx [2013-12-27]
CHR HKLM-x32\...\Chrome\Extension: [kdidombaedgpfiiedeimiebkmbilgmlc] - C:\Program Files (x86)\DefaultTab\DefaultTab.crx [2013-12-27]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.4.crx [2013-04-26]
CHR HKLM-x32\...\Chrome\Extension: [pbhnbophegacpjokipcjfienbhdpmokd] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha51\ch\MediaViewV1alpha51.crx [2014-02-26]
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx [2012-11-22]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [881952 2014-01-14] (IObit)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [158120 2014-05-08] ()
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [158120 2014-05-08] ()
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2192672 2014-05-08] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
S2 NAUpdate; C:\Program Files (x86)\Nero\Update\NASvc.exe [531752 2014-05-08] ()
R2 PCSUService; C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe [423728 2014-01-09] ()
S2 ProtectMonitor; C:\Program Files (x86)\PCData\StartHelp.exe [132140 2014-05-08] ()
S2 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [213152 2014-05-08] ()
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [613568 2014-05-08] ()
R2 SystemkService; C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe [3543056 2014-04-28] (Aztec Media Inc)
R2 Update Surftastic; C:\Program Files (x86)\Surftastic\updateSurftastic.exe [316328 2014-05-08] ()
S2 Updater Service for AMZN; C:\Program Files (x86)\Amazon Browser Bar\ToolbarUpdaterService.exe [263840 2014-05-08] ()
R2 Util Surftastic; C:\Program Files (x86)\Surftastic\bin\utilSurftastic.exe [316328 2014-05-08] ()
S2 DefaultTabUpdate; "C:\Users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe" [X]
==================== Drivers (Whitelisted) ====================
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-12-28] (Disc Soft Ltd)
R1 F06DEFF2-5B9C-490D-910F-35D3A91196222; C:\Program Files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg [36240 2014-04-28] (Aztec Media Inc)
S3 OSFMount; C:\Program Files (x86)\Counter-Strike Global Offensive\image\x64\OSFMount.sys [552888 2013-10-18] (PassMark Software)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
R1 wStLib64; C:\Windows\System32\drivers\wStLib64.sys [61120 2014-03-22] (StdLib)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-08 21:58 - 2014-05-08 21:58 - 00022603 _____ () C:\Users\Lubos\Desktop\FRST.txt
2014-05-08 21:56 - 2014-05-08 21:58 - 00000000 ____D () C:\FRST
2014-05-08 21:55 - 2014-05-08 21:55 - 00112640 _____ (forum.viry.cz) C:\Users\Lubos\Desktop\FRSTLauncher.exe
2014-05-08 21:53 - 2014-05-08 21:53 - 02063872 _____ (Farbar) C:\Users\Lubos\Desktop\FRST64.exe
2014-05-08 20:10 - 2014-05-08 20:10 - 00041472 _____ () C:\Windows\svchost.com
2014-05-08 20:03 - 2014-05-08 20:03 - 00000222 _____ () C:\Windows\SysWOW64\metin2.cfg
2014-05-08 18:50 - 2014-05-08 18:50 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Opera Software
2014-05-08 18:49 - 2014-05-08 18:49 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Opera Software
2014-05-08 18:48 - 2014-05-08 18:48 - 00003178 _____ () C:\Windows\System32\Tasks\{A58C9B9B-AFC6-4757-A097-8C43C8EBCAF8}
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieUserList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieSiteList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Adobe
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Google
2014-05-08 18:46 - 2014-05-08 18:50 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\IObit
2014-05-08 18:46 - 2014-05-08 18:47 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-08 18:46 - 2014-05-08 18:47 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-08 18:46 - 2014-05-08 18:46 - 00002255 _____ () C:\Users\Luboš\Desktop\Google Chrome.lnk
2014-05-08 18:46 - 2014-05-08 18:46 - 00000896 __RSH () C:\Users\Luboš\ntuser.pol
2014-05-08 18:46 - 2014-05-08 18:46 - 00000020 ___SH () C:\Users\Luboš\ntuser.ini
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Šablony
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Soubory cookie
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Poslední
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní tiskárny
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní síť
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Nabídka Start
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Dokumenty
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Obrázky
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Hudba
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Filmy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Local\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\TeamViewer
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Systweak
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Local\VirtualStore
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš
2014-05-08 18:46 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-08 18:46 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-08 18:14 - 2014-05-08 18:14 - 00003408 _____ () C:\Windows\System32\Tasks\{5065BBC8-F69C-423E-B865-9F7AE8252283}
2014-05-08 15:42 - 2014-05-08 20:51 - 00000280 _____ () C:\Windows\setupact.log
2014-05-08 15:42 - 2014-05-08 15:42 - 00005954 _____ () C:\Windows\PFRO.log
2014-05-08 15:42 - 2014-05-08 15:42 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-08 15:41 - 2014-05-08 15:41 - 00000000 _____ () C:\asc_rdflag
2014-05-08 14:56 - 2014-05-08 14:56 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\TeamViewer
2014-05-08 11:53 - 2014-05-08 21:58 - 00000123 _____ () C:\Windows\directx.sys
2014-05-08 11:50 - 2014-05-08 11:50 - 00000000 ____D () C:\Users\Lubos\Desktop\[www.fisierulmeu.ro] SwitchBot V3.1 by Padmak
2014-05-07 15:30 - 2014-05-08 18:34 - 00000000 ____D () C:\Users\Lubos\Desktop\The-Lost-Island
2014-05-06 22:11 - 2014-05-06 22:11 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\QuickScan
2014-05-06 13:21 - 2014-05-06 13:24 - 00000000 ____D () C:\Users\Lubos\Desktop\Switch Bot
2014-05-05 13:31 - 2014-05-05 13:35 - 00000000 ____D () C:\Users\Lubos\Desktop\Tkz 1.2.11
2014-05-05 07:42 - 2014-05-08 20:54 - 00000000 ____D () C:\ProgramData\systemk
2014-05-04 14:09 - 2014-05-07 09:12 - 00000000 ____D () C:\Users\Lubos\Desktop\Last-World
2014-05-04 09:10 - 2014-05-08 08:55 - 00003120 _____ () C:\Windows\System32\Tasks\Advanced System Protector_startup
2014-05-03 16:06 - 2014-04-15 19:53 - 00000000 ___RD () C:\Users\Lubos\Desktop\Unknown - World-Alfa Client
2014-05-01 14:47 - 2014-05-01 14:48 - 20155712 _____ (Gameforge ) C:\Users\Lubos\Downloads\Metin2_GameforgeLiveSetup.exe
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\IObit Apps Toolbar
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\Application Updater
2014-04-29 20:53 - 2014-04-29 20:54 - 00006144 ___SH () C:\Users\Karel\Downloads\Thumbs.db
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieUserList
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieSiteList
2014-04-28 12:53 - 2014-04-28 13:54 - 2872613677 _____ () C:\Users\Karel\Downloads\Call of Duty 2 Modern Warfare 2.rar
2014-04-28 12:52 - 2014-04-28 12:52 - 00034738 _____ () C:\Users\Karel\Downloads\[CzT]Call_of_Duty_Modern_Warfare_2_Multiplayer_.torrent
2014-04-28 11:58 - 2014-04-28 11:58 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieUserList
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieSiteList
2014-04-20 23:20 - 2014-04-20 23:20 - 00001086 _____ () C:\Users\Public\Desktop\Aureria Classic.lnk
2014-04-20 23:20 - 2014-04-20 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aureria Classic
2014-04-20 23:17 - 2014-04-20 23:44 - 00000000 ____D () C:\Program Files (x86)\Aureria Classic
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieUserList
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieSiteList
2014-04-18 19:33 - 2014-04-18 19:36 - 00000000 ____D () C:\Users\Karel\Downloads\Devils.Due.2014.BRRip.XviD.CZ-TreZzoR
2014-04-18 19:32 - 2014-04-18 19:32 - 00017611 _____ () C:\Users\Karel\Downloads\[CzT]Devil_s_Due_2014_CZ_.torrent
2014-04-18 13:57 - 2014-04-28 15:18 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2014-04-18 09:13 - 2014-04-18 09:13 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-18 09:07 - 2014-04-18 09:07 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-04-16 20:07 - 2014-04-16 20:07 - 00000981 _____ () C:\Users\Lubos\Desktop\Steam.lnk
2014-04-12 15:19 - 2014-05-08 11:55 - 07124424 _____ () C:\Users\Lubos\Downloads\Cs_1.6_Kz_Hack_downloader.exe
2014-04-11 07:47 - 2014-05-08 21:02 - 02023538 _____ () C:\Windows\WindowsUpdate.log
2014-04-09 09:24 - 2014-04-09 09:24 - 00035506 _____ () C:\Users\Lubos\Documents\cc_20140409_092403.reg
2014-04-09 09:17 - 2014-05-08 11:55 - 04833192 _____ () C:\Users\Lubos\Downloads\ccsetup412pro.exe
==================== One Month Modified Files and Folders =======
2014-05-08 21:58 - 2014-05-08 21:58 - 00022603 _____ () C:\Users\Lubos\Desktop\FRST.txt
2014-05-08 21:58 - 2014-05-08 21:56 - 00000000 ____D () C:\FRST
2014-05-08 21:58 - 2014-05-08 11:53 - 00000123 _____ () C:\Windows\directx.sys
2014-05-08 21:58 - 2009-07-14 04:34 - 00000678 _____ () C:\Windows\win.ini
2014-05-08 21:55 - 2014-05-08 21:55 - 00112640 _____ (forum.viry.cz) C:\Users\Lubos\Desktop\FRSTLauncher.exe
2014-05-08 21:53 - 2014-05-08 21:53 - 02063872 _____ (Farbar) C:\Users\Lubos\Desktop\FRST64.exe
2014-05-08 21:44 - 2013-12-28 23:09 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-08 21:37 - 2013-12-28 23:09 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-08 21:02 - 2014-04-11 07:47 - 02023538 _____ () C:\Windows\WindowsUpdate.log
2014-05-08 21:02 - 2009-07-14 06:45 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-08 21:02 - 2009-07-14 06:45 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-08 20:55 - 2014-03-23 14:17 - 00000000 ____D () C:\Program Files (x86)\Zrychleni Pocitace
2014-05-08 20:54 - 2014-05-05 07:42 - 00000000 ____D () C:\ProgramData\systemk
2014-05-08 20:51 - 2014-05-08 15:42 - 00000280 _____ () C:\Windows\setupact.log
2014-05-08 20:51 - 2013-12-28 23:09 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-08 20:51 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-08 20:10 - 2014-05-08 20:10 - 00041472 _____ () C:\Windows\svchost.com
2014-05-08 20:03 - 2014-05-08 20:03 - 00000222 _____ () C:\Windows\SysWOW64\metin2.cfg
2014-05-08 18:50 - 2014-05-08 18:50 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Opera Software
2014-05-08 18:50 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\IObit
2014-05-08 18:49 - 2014-05-08 18:49 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Opera Software
2014-05-08 18:48 - 2014-05-08 18:48 - 00003178 _____ () C:\Windows\System32\Tasks\{A58C9B9B-AFC6-4757-A097-8C43C8EBCAF8}
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieUserList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieSiteList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Adobe
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Google
2014-05-08 18:47 - 2014-05-08 18:46 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-08 18:47 - 2014-05-08 18:46 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-08 18:46 - 2014-05-08 18:46 - 00002255 _____ () C:\Users\Luboš\Desktop\Google Chrome.lnk
2014-05-08 18:46 - 2014-05-08 18:46 - 00000896 __RSH () C:\Users\Luboš\ntuser.pol
2014-05-08 18:46 - 2014-05-08 18:46 - 00000020 ___SH () C:\Users\Luboš\ntuser.ini
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Šablony
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Soubory cookie
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Poslední
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní tiskárny
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní síť
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Nabídka Start
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Dokumenty
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Obrázky
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Hudba
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Filmy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Local\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\TeamViewer
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Systweak
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Local\VirtualStore
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš
2014-05-08 18:34 - 2014-05-07 15:30 - 00000000 ____D () C:\Users\Lubos\Desktop\The-Lost-Island
2014-05-08 18:31 - 2014-01-12 17:16 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\newnext.me
2014-05-08 18:14 - 2014-05-08 18:14 - 00003408 _____ () C:\Windows\System32\Tasks\{5065BBC8-F69C-423E-B865-9F7AE8252283}
2014-05-08 15:42 - 2014-05-08 15:42 - 00005954 _____ () C:\Windows\PFRO.log
2014-05-08 15:42 - 2014-05-08 15:42 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-08 15:42 - 2013-12-28 21:32 - 73789440 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2014-05-08 15:41 - 2014-05-08 15:41 - 00000000 _____ () C:\asc_rdflag
2014-05-08 15:41 - 2014-01-01 21:09 - 00000000 ____D () C:\Users\Lubos
2014-05-08 15:41 - 2013-12-28 21:32 - 00249856 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2014-05-08 15:41 - 2013-12-28 21:32 - 00102400 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2014-05-08 15:41 - 2013-12-28 21:32 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2014-05-08 15:32 - 2014-01-08 01:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-05-08 15:31 - 2014-01-17 13:28 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-08 14:56 - 2014-05-08 14:56 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\TeamViewer
2014-05-08 12:03 - 2014-01-15 10:52 - 00000896 __RSH () C:\Users\Lubos\ntuser.pol
2014-05-08 11:56 - 2013-12-29 15:54 - 01768498 _____ () C:\Users\Karel\Downloads\uTorrent221.exe
2014-05-08 11:56 - 2013-12-28 20:52 - 02024896 _____ () C:\Users\Karel\Downloads\winrar-x64-500cz (1).exe
2014-05-08 11:55 - 2014-04-12 15:19 - 07124424 _____ () C:\Users\Lubos\Downloads\Cs_1.6_Kz_Hack_downloader.exe
2014-05-08 11:55 - 2014-04-09 09:17 - 04833192 _____ () C:\Users\Lubos\Downloads\ccsetup412pro.exe
2014-05-08 11:55 - 2014-03-29 10:36 - 03483000 _____ () C:\Users\Lubos\Downloads\AMD_Radeon_HD_6570_(OEM)_Ovladač_aktualizace_03-2014 (1).exe
2014-05-08 11:55 - 2014-03-29 10:35 - 03483000 _____ () C:\Users\Lubos\Downloads\AMD_Radeon_HD_6570_(OEM)_Ovladač_aktualizace_03-2014.exe
2014-05-08 11:55 - 2014-03-23 14:22 - 05070280 _____ () C:\Users\Lubos\Downloads\rcpsetup1_cpuid.exe
2014-05-08 11:55 - 2014-03-23 14:16 - 05525440 _____ () C:\Users\Lubos\Downloads\zrychlenipocitace_e85352c87547433582d8b66d15a18dca_.exe
2014-05-08 11:55 - 2014-03-19 17:08 - 00962472 _____ () C:\Users\Lubos\Downloads\chromeinstall-7u51.exe
2014-05-08 11:55 - 2014-03-19 13:55 - 04814219 _____ () C:\Users\Lubos\Desktop\GSplay.exe
2014-05-08 11:55 - 2014-03-04 19:05 - 00363104 _____ () C:\Users\Lubos\Downloads\Download.exe
2014-05-08 11:55 - 2014-03-04 18:38 - 01183152 _____ () C:\Users\Lubos\Downloads\SteamSetup (1).exe
2014-05-08 11:55 - 2014-03-02 17:33 - 00378408 _____ () C:\Users\Lubos\Downloads\GotClipDownloader__6629_i398433095_il4753234.exe
2014-05-08 11:55 - 2014-02-28 12:33 - 07749096 _____ () C:\Users\Lubos\Downloads\uTorrent-setup.exe
2014-05-08 11:55 - 2014-02-28 12:23 - 00263656 _____ () C:\Users\Lubos\Downloads\dfdownloader_ea761s_.exe
2014-05-08 11:55 - 2014-02-18 13:19 - 09708437 _____ () C:\Users\Lubos\Downloads\BitTorrent-setup (1).exe
2014-05-08 11:55 - 2014-02-17 09:50 - 00499880 _____ () C:\Users\Lubos\Downloads\VLCPlus_Setup.exe
2014-05-08 11:55 - 2014-02-17 09:45 - 01035072 _____ () C:\Users\Lubos\Downloads\DivXInstaller.exe
2014-05-08 11:55 - 2014-01-19 10:37 - 09708437 _____ () C:\Users\Lubos\Downloads\BitTorrent-setup.exe
2014-05-08 11:55 - 2014-01-12 18:17 - 00174592 _____ () C:\Users\Lubos\Downloads\VIP_Gamesites.exe
2014-05-08 11:55 - 2014-01-08 02:28 - 04410940 _____ () C:\Users\Lubos\Downloads\Tools by Unpublished.exe
2014-05-08 11:55 - 2014-01-05 22:33 - 05875520 _____ () C:\Users\Denča\Downloads\teamviewer_8.0.22298.exe
2014-05-08 11:55 - 2014-01-05 22:33 - 05438344 _____ () C:\Users\Denča\Downloads\Allin1ConvertSetup2.5.14.73.^AYY^man000^YYA^.exe
2014-05-08 11:55 - 2014-01-03 11:19 - 01091736 _____ () C:\Users\Lubos\Downloads\UnityWebPlayer.exe
2014-05-08 11:55 - 2014-01-01 21:33 - 01175024 _____ () C:\Users\Lubos\Downloads\SteamSetup.exe
2014-05-08 11:55 - 2013-12-28 22:46 - 00443528 _____ () C:\Users\Denča\Downloads\SoftonicDownloader_for_daemon-tools.exe
2014-05-08 11:50 - 2014-05-08 11:50 - 00000000 ____D () C:\Users\Lubos\Desktop\[www.fisierulmeu.ro] SwitchBot V3.1 by Padmak
2014-05-08 09:39 - 2013-12-28 23:09 - 00003946 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-08 09:39 - 2013-12-28 23:09 - 00003694 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-08 08:55 - 2014-05-04 09:10 - 00003120 _____ () C:\Windows\System32\Tasks\Advanced System Protector_startup
2014-05-08 08:54 - 2014-03-23 14:17 - 00000368 _____ () C:\Windows\Tasks\PC SpeedUp Service Deactivator.job
2014-05-08 08:40 - 2014-01-01 21:09 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\Seznam.cz
2014-05-07 09:12 - 2014-05-04 14:09 - 00000000 ____D () C:\Users\Lubos\Desktop\Last-World
2014-05-07 08:15 - 2013-12-28 20:07 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-05-06 22:11 - 2014-05-06 22:11 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\QuickScan
2014-05-06 22:08 - 2013-12-28 22:50 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\newnext.me
2014-05-06 22:06 - 2009-07-14 07:08 - 00032540 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-05-06 22:02 - 2014-01-05 22:59 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\uTorrent
2014-05-06 18:54 - 2014-01-15 18:06 - 00000896 __RSH () C:\Users\Denča\ntuser.pol
2014-05-06 18:54 - 2013-12-28 22:26 - 00000000 ____D () C:\Users\Denča
2014-05-06 13:24 - 2014-05-06 13:21 - 00000000 ____D () C:\Users\Lubos\Desktop\Switch Bot
2014-05-05 13:35 - 2014-05-05 13:31 - 00000000 ____D () C:\Users\Lubos\Desktop\Tkz 1.2.11
2014-05-03 16:13 - 2014-01-03 17:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2014-05-03 16:13 - 2014-01-03 17:27 - 00000000 ____D () C:\Hry
2014-05-03 15:48 - 2014-02-20 16:20 - 00000000 ____D () C:\Users\Lubos\AppData\Local\Razer
2014-05-03 15:48 - 2014-02-20 16:17 - 00000000 ____D () C:\ProgramData\Razer
2014-05-03 15:43 - 2013-12-28 21:05 - 00000000 ____D () C:\ProgramData\ProductData
2014-05-01 15:00 - 2014-01-15 22:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2014-05-01 14:48 - 2014-05-01 14:47 - 20155712 _____ (Gameforge ) C:\Users\Lubos\Downloads\Metin2_GameforgeLiveSetup.exe
2014-05-01 14:48 - 2014-01-08 01:59 - 00000000 ____D () C:\Users\Lubos\Downloads\Gameforge Live
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\IObit Apps Toolbar
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\Application Updater
2014-04-29 20:54 - 2014-04-29 20:53 - 00006144 ___SH () C:\Users\Karel\Downloads\Thumbs.db
2014-04-29 13:42 - 2013-12-29 15:45 - 00000000 ____D () C:\Users\Karel\AppData\Roaming\Seznam.cz
2014-04-29 13:37 - 2013-12-29 20:53 - 00000000 ____D () C:\Users\Karel\AppData\Roaming\newnext.me
2014-04-29 12:14 - 2014-01-24 10:37 - 00000896 __RSH () C:\Users\Karel\ntuser.pol
2014-04-29 12:14 - 2013-12-28 19:58 - 00000000 ____D () C:\Users\Karel
2014-04-29 11:37 - 2013-12-28 23:09 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-29 11:37 - 2013-12-28 23:09 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-29 11:37 - 2013-12-28 23:09 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-28 22:56 - 2013-12-29 15:55 - 00000000 ____D () C:\Users\Karel\AppData\Roaming\uTorrent
2014-04-28 22:25 - 2009-07-14 17:18 - 00668866 _____ () C:\Windows\system32\perfh005.dat
2014-04-28 22:25 - 2009-07-14 17:18 - 00141526 _____ () C:\Windows\system32\perfc005.dat
2014-04-28 22:25 - 2009-07-14 07:13 - 01584554 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieUserList
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieSiteList
2014-04-28 15:18 - 2014-04-18 13:57 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2014-04-28 13:54 - 2014-04-28 12:53 - 2872613677 _____ () C:\Users\Karel\Downloads\Call of Duty 2 Modern Warfare 2.rar
2014-04-28 12:52 - 2014-04-28 12:52 - 00034738 _____ () C:\Users\Karel\Downloads\[CzT]Call_of_Duty_Modern_Warfare_2_Multiplayer_.torrent
2014-04-28 11:58 - 2014-04-28 11:58 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-23 18:54 - 2014-03-16 22:28 - 00000000 ____D () C:\Users\Denča\Desktop\World of Warcraft
2014-04-20 23:44 - 2014-04-20 23:17 - 00000000 ____D () C:\Program Files (x86)\Aureria Classic
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieUserList
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieSiteList
2014-04-20 23:20 - 2014-04-20 23:20 - 00001086 _____ () C:\Users\Public\Desktop\Aureria Classic.lnk
2014-04-20 23:20 - 2014-04-20 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aureria Classic
2014-04-20 22:19 - 2014-01-01 21:09 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\IObit
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieUserList
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieSiteList
2014-04-20 09:56 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-04-18 19:36 - 2014-04-18 19:33 - 00000000 ____D () C:\Users\Karel\Downloads\Devils.Due.2014.BRRip.XviD.CZ-TreZzoR
2014-04-18 19:32 - 2014-04-18 19:32 - 00017611 _____ () C:\Users\Karel\Downloads\[CzT]Devil_s_Due_2014_CZ_.torrent
2014-04-18 15:43 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-18 13:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-18 09:13 - 2014-04-18 09:13 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-18 09:07 - 2014-04-18 09:07 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-04-16 20:07 - 2014-04-16 20:07 - 00000981 _____ () C:\Users\Lubos\Desktop\Steam.lnk
2014-04-15 19:53 - 2014-05-03 16:06 - 00000000 ___RD () C:\Users\Lubos\Desktop\Unknown - World-Alfa Client
2014-04-15 12:34 - 2014-01-16 14:39 - 00154591 _____ () C:\Users\Lubos\Desktop\Genesys Publiç ج س ب ب ص أ.rar
2014-04-12 18:15 - 2013-12-28 22:28 - 00000000 ____D () C:\Users\Denča\Desktop\blbosti
2014-04-12 09:03 - 2014-01-16 12:46 - 00000000 ____D () C:\Users\Lubos\AppData\Local\Adobe
2014-04-11 15:01 - 2013-12-30 21:06 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-11 14:59 - 2013-12-30 21:06 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-09 09:24 - 2014-04-09 09:24 - 00035506 _____ () C:\Users\Lubos\Documents\cc_20140409_092403.reg
2014-04-09 09:22 - 2014-03-02 16:39 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\DAEMON Tools Lite
Some content of TEMP:
====================
C:\Users\Denča\AppData\Local\Temp\bitool.dll
C:\Users\Denča\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\Denča\AppData\Local\Temp\Mobogenie_Setup_2-1-35_517.exe
C:\Users\Denča\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
C:\Users\Lubos\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-04-29 15:26
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:149.04 GB) (Free:12.12 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Available physical RAM: 776.59 MB
Total physical RAM: 2047.24 MB
Percentage of memory in use: 62%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 853A853A)
Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Lubos\Desktop" je 5406 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Ran by Lubos (administrator) on KAREL-PC on 08-05-2014 21:58:04
Running from C:\Users\Lubos\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
() C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe
(Spigot, Inc.) C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
() C:\Program Files (x86)\Surftastic\updateSurftastic.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\Surftastic\bin\utilSurftastic.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
(IObit) C:\Users\Lubos\AppData\Local\Temp\3582-490\Monitor.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\systemku.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(forum.viry.cz) C:\Users\Lubos\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-12-28] (Realtek Semiconductor)
HKLM-x32\...\Run: [mskirsuvSrv] => C:\Windows\SysWOW64\mskirsuv.vbe [583 2013-12-10] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1103944 2014-05-08] ()
HKLM-x32\...\Run: [NBAgent] => C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1234216 2014-05-08] (Nero AG)
HKLM-x32\...\Run: [ApnUpdater] => C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1648264 2014-05-08] (Ask)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [807680 2014-05-08] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2014-05-08] (Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SearchSettings] => C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [1484608 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Lubos\AppData\Roaming\Seznam.cz\szninstall.exe [1103944 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [NextLive] => C:\Windows\SysWOW64\rundll32.exe "C:\Users\Lubos\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-06-17] (Hewlett-Packard Company)
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [SpeedUpMyComputer] => C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe [2096248 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3716824 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [PCSpeedUp] => C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe [319280 2014-05-08] ()
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsemngr.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browsermngr.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IFEO\cltmngsvc.exe: [Debugger] tasklist.exe
IFEO\delta babylon.exe: [Debugger] tasklist.exe
IFEO\delta tb.exe: [Debugger] tasklist.exe
IFEO\delta2.exe: [Debugger] tasklist.exe
IFEO\deltainstaller.exe: [Debugger] tasklist.exe
IFEO\deltasetup.exe: [Debugger] tasklist.exe
IFEO\deltatb.exe: [Debugger] tasklist.exe
IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\iminentsetup.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll [490000 2014-04-28] ()
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll [664592 2014-04-28] ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
URLSearchHook: HKCU - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE64.dll (Spigot, Inc.)
URLSearchHook: HKCU - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
URLSearchHook: HKCU - (No Name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... earchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... earchTerms}
SearchScopes: HKCU - DefaultScope {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.com/websearch/ref=bit ... earchTerms}
SearchScopes: HKCU - {0B69D94F-EDEF-4EC5-A8AE-926BEEE7EFF9} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKCU - {32A54656-AD6D-46B9-845A-B79F5497DD8A} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
SearchScopes: HKCU - {40DA3F64-68D2-44EF-A198-3C3DAB96BA45} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKCU - {529411A6-7036-46BE-8EF9-B46FF37CC561} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKCU - {5BF0509C-F974-43B1-8F4B-EE0B2A417A54} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {90DC8193-9063-4689-856A-9DDB37BDB643} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKCU - {91B28FEB-2414-435E-9C34-2ECFF9AACD16} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {92163A7C-CBEB-4EDC-8CFB-06021A9CBEF0} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKCU - {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.com/websearch/ref=bit ... earchTerms}
SearchScopes: HKCU - {E678D672-FA48-4309-996E-99AA51BBABAD} URL = http://www.mysearchresults.com/search?c ... earchTerms}
SearchScopes: HKCU - {F17E0493-030D-47CF-9BC0-8E4147EADAC6} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKCU - {F1E22D2F-71A3-4C7C-B8B5-D2AB09F87F4D} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKCU - {F63866A0-F31D-4E39-9075-67456BE20234} URL = www.buenosearch.com?babsrc=ext_WinjNw&a ... earchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: The Amazon 1Button App for IE - {26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} - C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonAppIE64.dll (Amazon Inc.)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons64.dll (Spigot, Inc.)
BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll (Aztec Media Inc)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: The Amazon 1Button App for IE - {26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} - C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonAppIE.dll (Amazon Inc.)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons.dll (Spigot, Inc.)
BHO-x32: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: DefaultTab Browser Helper - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll (Search Results LLC.)
BHO-x32: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files (x86)\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
Toolbar: HKLM - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE64.dll (Spigot, Inc.)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM-x32 - Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files (x86)\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
Toolbar: HKLM-x32 - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.46
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Lubos\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha51.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha51\ff
FF Extension: Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha51\ff [2014-03-18]
Chrome:
=======
CHR HomePage: hxxp://www.amazon.com/websearch/ref=bit_bds-p1 ... r_sp_cpuid
CHR StartupUrls: ""
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: default-search.net
CHR DefaultSearchURL: http://www.default-search.net/search?si ... earchTerms}
CHR DefaultNewTabURL:
CHR Extension: (McAfee Security Scan+) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-02-26]
CHR Extension: (uTorrentControl_v6) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\cflheckfmhopnialghigdlggahiomebp [2014-02-28]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-01]
CHR Extension: (Domain Error Assistant) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-01]
CHR Extension: (Slick Savings) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-03-19]
CHR Extension: (PenÄĂË€ºÄ¹Ä¾enka Google) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-01]
CHR Extension: (Media View) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbhnbophegacpjokipcjfienbhdpmokd [2014-03-18]
CHR HKCU\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Lubos\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKCU\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - C:\Program Files (x86)\Amazon\ABB\AmazonChrome-bds-amzn.crx [2014-01-31]
CHR HKLM-x32\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Lubos\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.1.crx [2013-10-14]
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.3.crx [2013-12-27]
CHR HKLM-x32\...\Chrome\Extension: [kdidombaedgpfiiedeimiebkmbilgmlc] - C:\Program Files (x86)\DefaultTab\DefaultTab.crx [2013-12-27]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.4.crx [2013-04-26]
CHR HKLM-x32\...\Chrome\Extension: [pbhnbophegacpjokipcjfienbhdpmokd] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha51\ch\MediaViewV1alpha51.crx [2014-02-26]
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx [2012-11-22]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [881952 2014-01-14] (IObit)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [158120 2014-05-08] ()
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [158120 2014-05-08] ()
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2192672 2014-05-08] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
S2 NAUpdate; C:\Program Files (x86)\Nero\Update\NASvc.exe [531752 2014-05-08] ()
R2 PCSUService; C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe [423728 2014-01-09] ()
S2 ProtectMonitor; C:\Program Files (x86)\PCData\StartHelp.exe [132140 2014-05-08] ()
S2 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [213152 2014-05-08] ()
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [613568 2014-05-08] ()
R2 SystemkService; C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe [3543056 2014-04-28] (Aztec Media Inc)
R2 Update Surftastic; C:\Program Files (x86)\Surftastic\updateSurftastic.exe [316328 2014-05-08] ()
S2 Updater Service for AMZN; C:\Program Files (x86)\Amazon Browser Bar\ToolbarUpdaterService.exe [263840 2014-05-08] ()
R2 Util Surftastic; C:\Program Files (x86)\Surftastic\bin\utilSurftastic.exe [316328 2014-05-08] ()
S2 DefaultTabUpdate; "C:\Users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe" [X]
==================== Drivers (Whitelisted) ====================
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-12-28] (Disc Soft Ltd)
R1 F06DEFF2-5B9C-490D-910F-35D3A91196222; C:\Program Files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg [36240 2014-04-28] (Aztec Media Inc)
S3 OSFMount; C:\Program Files (x86)\Counter-Strike Global Offensive\image\x64\OSFMount.sys [552888 2013-10-18] (PassMark Software)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
R1 wStLib64; C:\Windows\System32\drivers\wStLib64.sys [61120 2014-03-22] (StdLib)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-08 21:58 - 2014-05-08 21:58 - 00022603 _____ () C:\Users\Lubos\Desktop\FRST.txt
2014-05-08 21:56 - 2014-05-08 21:58 - 00000000 ____D () C:\FRST
2014-05-08 21:55 - 2014-05-08 21:55 - 00112640 _____ (forum.viry.cz) C:\Users\Lubos\Desktop\FRSTLauncher.exe
2014-05-08 21:53 - 2014-05-08 21:53 - 02063872 _____ (Farbar) C:\Users\Lubos\Desktop\FRST64.exe
2014-05-08 20:10 - 2014-05-08 20:10 - 00041472 _____ () C:\Windows\svchost.com
2014-05-08 20:03 - 2014-05-08 20:03 - 00000222 _____ () C:\Windows\SysWOW64\metin2.cfg
2014-05-08 18:50 - 2014-05-08 18:50 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Opera Software
2014-05-08 18:49 - 2014-05-08 18:49 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Opera Software
2014-05-08 18:48 - 2014-05-08 18:48 - 00003178 _____ () C:\Windows\System32\Tasks\{A58C9B9B-AFC6-4757-A097-8C43C8EBCAF8}
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieUserList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieSiteList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Adobe
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Google
2014-05-08 18:46 - 2014-05-08 18:50 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\IObit
2014-05-08 18:46 - 2014-05-08 18:47 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-08 18:46 - 2014-05-08 18:47 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-08 18:46 - 2014-05-08 18:46 - 00002255 _____ () C:\Users\Luboš\Desktop\Google Chrome.lnk
2014-05-08 18:46 - 2014-05-08 18:46 - 00000896 __RSH () C:\Users\Luboš\ntuser.pol
2014-05-08 18:46 - 2014-05-08 18:46 - 00000020 ___SH () C:\Users\Luboš\ntuser.ini
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Šablony
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Soubory cookie
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Poslední
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní tiskárny
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní síť
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Nabídka Start
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Dokumenty
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Obrázky
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Hudba
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Filmy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Local\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\TeamViewer
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Systweak
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Local\VirtualStore
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš
2014-05-08 18:46 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-08 18:46 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-08 18:14 - 2014-05-08 18:14 - 00003408 _____ () C:\Windows\System32\Tasks\{5065BBC8-F69C-423E-B865-9F7AE8252283}
2014-05-08 15:42 - 2014-05-08 20:51 - 00000280 _____ () C:\Windows\setupact.log
2014-05-08 15:42 - 2014-05-08 15:42 - 00005954 _____ () C:\Windows\PFRO.log
2014-05-08 15:42 - 2014-05-08 15:42 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-08 15:41 - 2014-05-08 15:41 - 00000000 _____ () C:\asc_rdflag
2014-05-08 14:56 - 2014-05-08 14:56 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\TeamViewer
2014-05-08 11:53 - 2014-05-08 21:58 - 00000123 _____ () C:\Windows\directx.sys
2014-05-08 11:50 - 2014-05-08 11:50 - 00000000 ____D () C:\Users\Lubos\Desktop\[www.fisierulmeu.ro] SwitchBot V3.1 by Padmak
2014-05-07 15:30 - 2014-05-08 18:34 - 00000000 ____D () C:\Users\Lubos\Desktop\The-Lost-Island
2014-05-06 22:11 - 2014-05-06 22:11 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\QuickScan
2014-05-06 13:21 - 2014-05-06 13:24 - 00000000 ____D () C:\Users\Lubos\Desktop\Switch Bot
2014-05-05 13:31 - 2014-05-05 13:35 - 00000000 ____D () C:\Users\Lubos\Desktop\Tkz 1.2.11
2014-05-05 07:42 - 2014-05-08 20:54 - 00000000 ____D () C:\ProgramData\systemk
2014-05-04 14:09 - 2014-05-07 09:12 - 00000000 ____D () C:\Users\Lubos\Desktop\Last-World
2014-05-04 09:10 - 2014-05-08 08:55 - 00003120 _____ () C:\Windows\System32\Tasks\Advanced System Protector_startup
2014-05-03 16:06 - 2014-04-15 19:53 - 00000000 ___RD () C:\Users\Lubos\Desktop\Unknown - World-Alfa Client
2014-05-01 14:47 - 2014-05-01 14:48 - 20155712 _____ (Gameforge ) C:\Users\Lubos\Downloads\Metin2_GameforgeLiveSetup.exe
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\IObit Apps Toolbar
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\Application Updater
2014-04-29 20:53 - 2014-04-29 20:54 - 00006144 ___SH () C:\Users\Karel\Downloads\Thumbs.db
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieUserList
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieSiteList
2014-04-28 12:53 - 2014-04-28 13:54 - 2872613677 _____ () C:\Users\Karel\Downloads\Call of Duty 2 Modern Warfare 2.rar
2014-04-28 12:52 - 2014-04-28 12:52 - 00034738 _____ () C:\Users\Karel\Downloads\[CzT]Call_of_Duty_Modern_Warfare_2_Multiplayer_.torrent
2014-04-28 11:58 - 2014-04-28 11:58 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieUserList
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieSiteList
2014-04-20 23:20 - 2014-04-20 23:20 - 00001086 _____ () C:\Users\Public\Desktop\Aureria Classic.lnk
2014-04-20 23:20 - 2014-04-20 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aureria Classic
2014-04-20 23:17 - 2014-04-20 23:44 - 00000000 ____D () C:\Program Files (x86)\Aureria Classic
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieUserList
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieSiteList
2014-04-18 19:33 - 2014-04-18 19:36 - 00000000 ____D () C:\Users\Karel\Downloads\Devils.Due.2014.BRRip.XviD.CZ-TreZzoR
2014-04-18 19:32 - 2014-04-18 19:32 - 00017611 _____ () C:\Users\Karel\Downloads\[CzT]Devil_s_Due_2014_CZ_.torrent
2014-04-18 13:57 - 2014-04-28 15:18 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2014-04-18 09:13 - 2014-04-18 09:13 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-18 09:07 - 2014-04-18 09:07 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-04-16 20:07 - 2014-04-16 20:07 - 00000981 _____ () C:\Users\Lubos\Desktop\Steam.lnk
2014-04-12 15:19 - 2014-05-08 11:55 - 07124424 _____ () C:\Users\Lubos\Downloads\Cs_1.6_Kz_Hack_downloader.exe
2014-04-11 07:47 - 2014-05-08 21:02 - 02023538 _____ () C:\Windows\WindowsUpdate.log
2014-04-09 09:24 - 2014-04-09 09:24 - 00035506 _____ () C:\Users\Lubos\Documents\cc_20140409_092403.reg
2014-04-09 09:17 - 2014-05-08 11:55 - 04833192 _____ () C:\Users\Lubos\Downloads\ccsetup412pro.exe
==================== One Month Modified Files and Folders =======
2014-05-08 21:58 - 2014-05-08 21:58 - 00022603 _____ () C:\Users\Lubos\Desktop\FRST.txt
2014-05-08 21:58 - 2014-05-08 21:56 - 00000000 ____D () C:\FRST
2014-05-08 21:58 - 2014-05-08 11:53 - 00000123 _____ () C:\Windows\directx.sys
2014-05-08 21:58 - 2009-07-14 04:34 - 00000678 _____ () C:\Windows\win.ini
2014-05-08 21:55 - 2014-05-08 21:55 - 00112640 _____ (forum.viry.cz) C:\Users\Lubos\Desktop\FRSTLauncher.exe
2014-05-08 21:53 - 2014-05-08 21:53 - 02063872 _____ (Farbar) C:\Users\Lubos\Desktop\FRST64.exe
2014-05-08 21:44 - 2013-12-28 23:09 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-08 21:37 - 2013-12-28 23:09 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-08 21:02 - 2014-04-11 07:47 - 02023538 _____ () C:\Windows\WindowsUpdate.log
2014-05-08 21:02 - 2009-07-14 06:45 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-08 21:02 - 2009-07-14 06:45 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-08 20:55 - 2014-03-23 14:17 - 00000000 ____D () C:\Program Files (x86)\Zrychleni Pocitace
2014-05-08 20:54 - 2014-05-05 07:42 - 00000000 ____D () C:\ProgramData\systemk
2014-05-08 20:51 - 2014-05-08 15:42 - 00000280 _____ () C:\Windows\setupact.log
2014-05-08 20:51 - 2013-12-28 23:09 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-08 20:51 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-08 20:10 - 2014-05-08 20:10 - 00041472 _____ () C:\Windows\svchost.com
2014-05-08 20:03 - 2014-05-08 20:03 - 00000222 _____ () C:\Windows\SysWOW64\metin2.cfg
2014-05-08 18:50 - 2014-05-08 18:50 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Opera Software
2014-05-08 18:50 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\IObit
2014-05-08 18:49 - 2014-05-08 18:49 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Opera Software
2014-05-08 18:48 - 2014-05-08 18:48 - 00003178 _____ () C:\Windows\System32\Tasks\{A58C9B9B-AFC6-4757-A097-8C43C8EBCAF8}
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieUserList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieSiteList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Adobe
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Google
2014-05-08 18:47 - 2014-05-08 18:46 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-08 18:47 - 2014-05-08 18:46 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-08 18:46 - 2014-05-08 18:46 - 00002255 _____ () C:\Users\Luboš\Desktop\Google Chrome.lnk
2014-05-08 18:46 - 2014-05-08 18:46 - 00000896 __RSH () C:\Users\Luboš\ntuser.pol
2014-05-08 18:46 - 2014-05-08 18:46 - 00000020 ___SH () C:\Users\Luboš\ntuser.ini
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Šablony
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Soubory cookie
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Poslední
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní tiskárny
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní síť
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Nabídka Start
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Dokumenty
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Obrázky
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Hudba
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Filmy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Local\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\TeamViewer
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Systweak
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Local\VirtualStore
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš
2014-05-08 18:34 - 2014-05-07 15:30 - 00000000 ____D () C:\Users\Lubos\Desktop\The-Lost-Island
2014-05-08 18:31 - 2014-01-12 17:16 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\newnext.me
2014-05-08 18:14 - 2014-05-08 18:14 - 00003408 _____ () C:\Windows\System32\Tasks\{5065BBC8-F69C-423E-B865-9F7AE8252283}
2014-05-08 15:42 - 2014-05-08 15:42 - 00005954 _____ () C:\Windows\PFRO.log
2014-05-08 15:42 - 2014-05-08 15:42 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-08 15:42 - 2013-12-28 21:32 - 73789440 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2014-05-08 15:41 - 2014-05-08 15:41 - 00000000 _____ () C:\asc_rdflag
2014-05-08 15:41 - 2014-01-01 21:09 - 00000000 ____D () C:\Users\Lubos
2014-05-08 15:41 - 2013-12-28 21:32 - 00249856 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2014-05-08 15:41 - 2013-12-28 21:32 - 00102400 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2014-05-08 15:41 - 2013-12-28 21:32 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2014-05-08 15:32 - 2014-01-08 01:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-05-08 15:31 - 2014-01-17 13:28 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-08 14:56 - 2014-05-08 14:56 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\TeamViewer
2014-05-08 12:03 - 2014-01-15 10:52 - 00000896 __RSH () C:\Users\Lubos\ntuser.pol
2014-05-08 11:56 - 2013-12-29 15:54 - 01768498 _____ () C:\Users\Karel\Downloads\uTorrent221.exe
2014-05-08 11:56 - 2013-12-28 20:52 - 02024896 _____ () C:\Users\Karel\Downloads\winrar-x64-500cz (1).exe
2014-05-08 11:55 - 2014-04-12 15:19 - 07124424 _____ () C:\Users\Lubos\Downloads\Cs_1.6_Kz_Hack_downloader.exe
2014-05-08 11:55 - 2014-04-09 09:17 - 04833192 _____ () C:\Users\Lubos\Downloads\ccsetup412pro.exe
2014-05-08 11:55 - 2014-03-29 10:36 - 03483000 _____ () C:\Users\Lubos\Downloads\AMD_Radeon_HD_6570_(OEM)_Ovladač_aktualizace_03-2014 (1).exe
2014-05-08 11:55 - 2014-03-29 10:35 - 03483000 _____ () C:\Users\Lubos\Downloads\AMD_Radeon_HD_6570_(OEM)_Ovladač_aktualizace_03-2014.exe
2014-05-08 11:55 - 2014-03-23 14:22 - 05070280 _____ () C:\Users\Lubos\Downloads\rcpsetup1_cpuid.exe
2014-05-08 11:55 - 2014-03-23 14:16 - 05525440 _____ () C:\Users\Lubos\Downloads\zrychlenipocitace_e85352c87547433582d8b66d15a18dca_.exe
2014-05-08 11:55 - 2014-03-19 17:08 - 00962472 _____ () C:\Users\Lubos\Downloads\chromeinstall-7u51.exe
2014-05-08 11:55 - 2014-03-19 13:55 - 04814219 _____ () C:\Users\Lubos\Desktop\GSplay.exe
2014-05-08 11:55 - 2014-03-04 19:05 - 00363104 _____ () C:\Users\Lubos\Downloads\Download.exe
2014-05-08 11:55 - 2014-03-04 18:38 - 01183152 _____ () C:\Users\Lubos\Downloads\SteamSetup (1).exe
2014-05-08 11:55 - 2014-03-02 17:33 - 00378408 _____ () C:\Users\Lubos\Downloads\GotClipDownloader__6629_i398433095_il4753234.exe
2014-05-08 11:55 - 2014-02-28 12:33 - 07749096 _____ () C:\Users\Lubos\Downloads\uTorrent-setup.exe
2014-05-08 11:55 - 2014-02-28 12:23 - 00263656 _____ () C:\Users\Lubos\Downloads\dfdownloader_ea761s_.exe
2014-05-08 11:55 - 2014-02-18 13:19 - 09708437 _____ () C:\Users\Lubos\Downloads\BitTorrent-setup (1).exe
2014-05-08 11:55 - 2014-02-17 09:50 - 00499880 _____ () C:\Users\Lubos\Downloads\VLCPlus_Setup.exe
2014-05-08 11:55 - 2014-02-17 09:45 - 01035072 _____ () C:\Users\Lubos\Downloads\DivXInstaller.exe
2014-05-08 11:55 - 2014-01-19 10:37 - 09708437 _____ () C:\Users\Lubos\Downloads\BitTorrent-setup.exe
2014-05-08 11:55 - 2014-01-12 18:17 - 00174592 _____ () C:\Users\Lubos\Downloads\VIP_Gamesites.exe
2014-05-08 11:55 - 2014-01-08 02:28 - 04410940 _____ () C:\Users\Lubos\Downloads\Tools by Unpublished.exe
2014-05-08 11:55 - 2014-01-05 22:33 - 05875520 _____ () C:\Users\Denča\Downloads\teamviewer_8.0.22298.exe
2014-05-08 11:55 - 2014-01-05 22:33 - 05438344 _____ () C:\Users\Denča\Downloads\Allin1ConvertSetup2.5.14.73.^AYY^man000^YYA^.exe
2014-05-08 11:55 - 2014-01-03 11:19 - 01091736 _____ () C:\Users\Lubos\Downloads\UnityWebPlayer.exe
2014-05-08 11:55 - 2014-01-01 21:33 - 01175024 _____ () C:\Users\Lubos\Downloads\SteamSetup.exe
2014-05-08 11:55 - 2013-12-28 22:46 - 00443528 _____ () C:\Users\Denča\Downloads\SoftonicDownloader_for_daemon-tools.exe
2014-05-08 11:50 - 2014-05-08 11:50 - 00000000 ____D () C:\Users\Lubos\Desktop\[www.fisierulmeu.ro] SwitchBot V3.1 by Padmak
2014-05-08 09:39 - 2013-12-28 23:09 - 00003946 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-08 09:39 - 2013-12-28 23:09 - 00003694 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-08 08:55 - 2014-05-04 09:10 - 00003120 _____ () C:\Windows\System32\Tasks\Advanced System Protector_startup
2014-05-08 08:54 - 2014-03-23 14:17 - 00000368 _____ () C:\Windows\Tasks\PC SpeedUp Service Deactivator.job
2014-05-08 08:40 - 2014-01-01 21:09 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\Seznam.cz
2014-05-07 09:12 - 2014-05-04 14:09 - 00000000 ____D () C:\Users\Lubos\Desktop\Last-World
2014-05-07 08:15 - 2013-12-28 20:07 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-05-06 22:11 - 2014-05-06 22:11 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\QuickScan
2014-05-06 22:08 - 2013-12-28 22:50 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\newnext.me
2014-05-06 22:06 - 2009-07-14 07:08 - 00032540 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-05-06 22:02 - 2014-01-05 22:59 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\uTorrent
2014-05-06 18:54 - 2014-01-15 18:06 - 00000896 __RSH () C:\Users\Denča\ntuser.pol
2014-05-06 18:54 - 2013-12-28 22:26 - 00000000 ____D () C:\Users\Denča
2014-05-06 13:24 - 2014-05-06 13:21 - 00000000 ____D () C:\Users\Lubos\Desktop\Switch Bot
2014-05-05 13:35 - 2014-05-05 13:31 - 00000000 ____D () C:\Users\Lubos\Desktop\Tkz 1.2.11
2014-05-03 16:13 - 2014-01-03 17:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2014-05-03 16:13 - 2014-01-03 17:27 - 00000000 ____D () C:\Hry
2014-05-03 15:48 - 2014-02-20 16:20 - 00000000 ____D () C:\Users\Lubos\AppData\Local\Razer
2014-05-03 15:48 - 2014-02-20 16:17 - 00000000 ____D () C:\ProgramData\Razer
2014-05-03 15:43 - 2013-12-28 21:05 - 00000000 ____D () C:\ProgramData\ProductData
2014-05-01 15:00 - 2014-01-15 22:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2014-05-01 14:48 - 2014-05-01 14:47 - 20155712 _____ (Gameforge ) C:\Users\Lubos\Downloads\Metin2_GameforgeLiveSetup.exe
2014-05-01 14:48 - 2014-01-08 01:59 - 00000000 ____D () C:\Users\Lubos\Downloads\Gameforge Live
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\IObit Apps Toolbar
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\Application Updater
2014-04-29 20:54 - 2014-04-29 20:53 - 00006144 ___SH () C:\Users\Karel\Downloads\Thumbs.db
2014-04-29 13:42 - 2013-12-29 15:45 - 00000000 ____D () C:\Users\Karel\AppData\Roaming\Seznam.cz
2014-04-29 13:37 - 2013-12-29 20:53 - 00000000 ____D () C:\Users\Karel\AppData\Roaming\newnext.me
2014-04-29 12:14 - 2014-01-24 10:37 - 00000896 __RSH () C:\Users\Karel\ntuser.pol
2014-04-29 12:14 - 2013-12-28 19:58 - 00000000 ____D () C:\Users\Karel
2014-04-29 11:37 - 2013-12-28 23:09 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-29 11:37 - 2013-12-28 23:09 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-29 11:37 - 2013-12-28 23:09 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-28 22:56 - 2013-12-29 15:55 - 00000000 ____D () C:\Users\Karel\AppData\Roaming\uTorrent
2014-04-28 22:25 - 2009-07-14 17:18 - 00668866 _____ () C:\Windows\system32\perfh005.dat
2014-04-28 22:25 - 2009-07-14 17:18 - 00141526 _____ () C:\Windows\system32\perfc005.dat
2014-04-28 22:25 - 2009-07-14 07:13 - 01584554 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieUserList
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieSiteList
2014-04-28 15:18 - 2014-04-18 13:57 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2014-04-28 13:54 - 2014-04-28 12:53 - 2872613677 _____ () C:\Users\Karel\Downloads\Call of Duty 2 Modern Warfare 2.rar
2014-04-28 12:52 - 2014-04-28 12:52 - 00034738 _____ () C:\Users\Karel\Downloads\[CzT]Call_of_Duty_Modern_Warfare_2_Multiplayer_.torrent
2014-04-28 11:58 - 2014-04-28 11:58 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-23 18:54 - 2014-03-16 22:28 - 00000000 ____D () C:\Users\Denča\Desktop\World of Warcraft
2014-04-20 23:44 - 2014-04-20 23:17 - 00000000 ____D () C:\Program Files (x86)\Aureria Classic
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieUserList
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieSiteList
2014-04-20 23:20 - 2014-04-20 23:20 - 00001086 _____ () C:\Users\Public\Desktop\Aureria Classic.lnk
2014-04-20 23:20 - 2014-04-20 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aureria Classic
2014-04-20 22:19 - 2014-01-01 21:09 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\IObit
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieUserList
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieSiteList
2014-04-20 09:56 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-04-18 19:36 - 2014-04-18 19:33 - 00000000 ____D () C:\Users\Karel\Downloads\Devils.Due.2014.BRRip.XviD.CZ-TreZzoR
2014-04-18 19:32 - 2014-04-18 19:32 - 00017611 _____ () C:\Users\Karel\Downloads\[CzT]Devil_s_Due_2014_CZ_.torrent
2014-04-18 15:43 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-18 13:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-18 09:13 - 2014-04-18 09:13 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-18 09:07 - 2014-04-18 09:07 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-04-16 20:07 - 2014-04-16 20:07 - 00000981 _____ () C:\Users\Lubos\Desktop\Steam.lnk
2014-04-15 19:53 - 2014-05-03 16:06 - 00000000 ___RD () C:\Users\Lubos\Desktop\Unknown - World-Alfa Client
2014-04-15 12:34 - 2014-01-16 14:39 - 00154591 _____ () C:\Users\Lubos\Desktop\Genesys Publiç ج س ب ب ص أ.rar
2014-04-12 18:15 - 2013-12-28 22:28 - 00000000 ____D () C:\Users\Denča\Desktop\blbosti
2014-04-12 09:03 - 2014-01-16 12:46 - 00000000 ____D () C:\Users\Lubos\AppData\Local\Adobe
2014-04-11 15:01 - 2013-12-30 21:06 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-11 14:59 - 2013-12-30 21:06 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-09 09:24 - 2014-04-09 09:24 - 00035506 _____ () C:\Users\Lubos\Documents\cc_20140409_092403.reg
2014-04-09 09:22 - 2014-03-02 16:39 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\DAEMON Tools Lite
Some content of TEMP:
====================
C:\Users\Denča\AppData\Local\Temp\bitool.dll
C:\Users\Denča\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\Denča\AppData\Local\Temp\Mobogenie_Setup_2-1-35_517.exe
C:\Users\Denča\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
C:\Users\Lubos\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-04-29 15:26
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:149.04 GB) (Free:12.12 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Available physical RAM: 776.59 MB
Total physical RAM: 2047.24 MB
Percentage of memory in use: 62%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 853A853A)
Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Lubos\Desktop" je 5406 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
-
czechboy123
- Návštěvník
- Příspěvky: 17
- Registrován: 08 kvě 2014 20:36
Re: Nevím si rady
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-05-2014 02
Ran by Lubos (administrator) on KAREL-PC on 08-05-2014 21:58:04
Running from C:\Users\Lubos\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
() C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe
(Spigot, Inc.) C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
() C:\Program Files (x86)\Surftastic\updateSurftastic.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\Surftastic\bin\utilSurftastic.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
(IObit) C:\Users\Lubos\AppData\Local\Temp\3582-490\Monitor.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\systemku.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(forum.viry.cz) C:\Users\Lubos\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-12-28] (Realtek Semiconductor)
HKLM-x32\...\Run: [mskirsuvSrv] => C:\Windows\SysWOW64\mskirsuv.vbe [583 2013-12-10] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1103944 2014-05-08] ()
HKLM-x32\...\Run: [NBAgent] => C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1234216 2014-05-08] (Nero AG)
HKLM-x32\...\Run: [ApnUpdater] => C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1648264 2014-05-08] (Ask)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [807680 2014-05-08] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2014-05-08] (Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SearchSettings] => C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [1484608 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Lubos\AppData\Roaming\Seznam.cz\szninstall.exe [1103944 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [NextLive] => C:\Windows\SysWOW64\rundll32.exe "C:\Users\Lubos\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-06-17] (Hewlett-Packard Company)
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [SpeedUpMyComputer] => C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe [2096248 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3716824 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [PCSpeedUp] => C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe [319280 2014-05-08] ()
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsemngr.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browsermngr.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IFEO\cltmngsvc.exe: [Debugger] tasklist.exe
IFEO\delta babylon.exe: [Debugger] tasklist.exe
IFEO\delta tb.exe: [Debugger] tasklist.exe
IFEO\delta2.exe: [Debugger] tasklist.exe
IFEO\deltainstaller.exe: [Debugger] tasklist.exe
IFEO\deltasetup.exe: [Debugger] tasklist.exe
IFEO\deltatb.exe: [Debugger] tasklist.exe
IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\iminentsetup.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll [490000 2014-04-28] ()
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll [664592 2014-04-28] ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
URLSearchHook: HKCU - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE64.dll (Spigot, Inc.)
URLSearchHook: HKCU - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
URLSearchHook: HKCU - (No Name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... earchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... earchTerms}
SearchScopes: HKCU - DefaultScope {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.com/websearch/ref=bit ... earchTerms}
SearchScopes: HKCU - {0B69D94F-EDEF-4EC5-A8AE-926BEEE7EFF9} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKCU - {32A54656-AD6D-46B9-845A-B79F5497DD8A} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
SearchScopes: HKCU - {40DA3F64-68D2-44EF-A198-3C3DAB96BA45} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKCU - {529411A6-7036-46BE-8EF9-B46FF37CC561} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKCU - {5BF0509C-F974-43B1-8F4B-EE0B2A417A54} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {90DC8193-9063-4689-856A-9DDB37BDB643} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKCU - {91B28FEB-2414-435E-9C34-2ECFF9AACD16} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {92163A7C-CBEB-4EDC-8CFB-06021A9CBEF0} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKCU - {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.com/websearch/ref=bit ... earchTerms}
SearchScopes: HKCU - {E678D672-FA48-4309-996E-99AA51BBABAD} URL = http://www.mysearchresults.com/search?c ... earchTerms}
SearchScopes: HKCU - {F17E0493-030D-47CF-9BC0-8E4147EADAC6} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKCU - {F1E22D2F-71A3-4C7C-B8B5-D2AB09F87F4D} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKCU - {F63866A0-F31D-4E39-9075-67456BE20234} URL = www.buenosearch.com?babsrc=ext_WinjNw&a ... earchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: The Amazon 1Button App for IE - {26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} - C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonAppIE64.dll (Amazon Inc.)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons64.dll (Spigot, Inc.)
BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll (Aztec Media Inc)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: The Amazon 1Button App for IE - {26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} - C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonAppIE.dll (Amazon Inc.)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons.dll (Spigot, Inc.)
BHO-x32: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: DefaultTab Browser Helper - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll (Search Results LLC.)
BHO-x32: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files (x86)\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
Toolbar: HKLM - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE64.dll (Spigot, Inc.)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM-x32 - Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files (x86)\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
Toolbar: HKLM-x32 - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.46
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Lubos\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha51.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha51\ff
FF Extension: Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha51\ff [2014-03-18]
Chrome:
=======
CHR HomePage: hxxp://www.amazon.com/websearch/ref=bit_bds-p1 ... r_sp_cpuid
CHR StartupUrls: ""
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: default-search.net
CHR DefaultSearchURL: http://www.default-search.net/search?si ... earchTerms}
CHR DefaultNewTabURL:
CHR Extension: (McAfee Security Scan+) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-02-26]
CHR Extension: (uTorrentControl_v6) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\cflheckfmhopnialghigdlggahiomebp [2014-02-28]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-01]
CHR Extension: (Domain Error Assistant) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-01]
CHR Extension: (Slick Savings) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-03-19]
CHR Extension: (PenÄĂË€ºÄ¹Ä¾enka Google) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-01]
CHR Extension: (Media View) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbhnbophegacpjokipcjfienbhdpmokd [2014-03-18]
CHR HKCU\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Lubos\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKCU\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - C:\Program Files (x86)\Amazon\ABB\AmazonChrome-bds-amzn.crx [2014-01-31]
CHR HKLM-x32\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Lubos\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.1.crx [2013-10-14]
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.3.crx [2013-12-27]
CHR HKLM-x32\...\Chrome\Extension: [kdidombaedgpfiiedeimiebkmbilgmlc] - C:\Program Files (x86)\DefaultTab\DefaultTab.crx [2013-12-27]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.4.crx [2013-04-26]
CHR HKLM-x32\...\Chrome\Extension: [pbhnbophegacpjokipcjfienbhdpmokd] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha51\ch\MediaViewV1alpha51.crx [2014-02-26]
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx [2012-11-22]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [881952 2014-01-14] (IObit)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [158120 2014-05-08] ()
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [158120 2014-05-08] ()
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2192672 2014-05-08] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
S2 NAUpdate; C:\Program Files (x86)\Nero\Update\NASvc.exe [531752 2014-05-08] ()
R2 PCSUService; C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe [423728 2014-01-09] ()
S2 ProtectMonitor; C:\Program Files (x86)\PCData\StartHelp.exe [132140 2014-05-08] ()
S2 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [213152 2014-05-08] ()
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [613568 2014-05-08] ()
R2 SystemkService; C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe [3543056 2014-04-28] (Aztec Media Inc)
R2 Update Surftastic; C:\Program Files (x86)\Surftastic\updateSurftastic.exe [316328 2014-05-08] ()
S2 Updater Service for AMZN; C:\Program Files (x86)\Amazon Browser Bar\ToolbarUpdaterService.exe [263840 2014-05-08] ()
R2 Util Surftastic; C:\Program Files (x86)\Surftastic\bin\utilSurftastic.exe [316328 2014-05-08] ()
S2 DefaultTabUpdate; "C:\Users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe" [X]
==================== Drivers (Whitelisted) ====================
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-12-28] (Disc Soft Ltd)
R1 F06DEFF2-5B9C-490D-910F-35D3A91196222; C:\Program Files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg [36240 2014-04-28] (Aztec Media Inc)
S3 OSFMount; C:\Program Files (x86)\Counter-Strike Global Offensive\image\x64\OSFMount.sys [552888 2013-10-18] (PassMark Software)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
R1 wStLib64; C:\Windows\System32\drivers\wStLib64.sys [61120 2014-03-22] (StdLib)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-08 21:58 - 2014-05-08 21:58 - 00022603 _____ () C:\Users\Lubos\Desktop\FRST.txt
2014-05-08 21:56 - 2014-05-08 21:58 - 00000000 ____D () C:\FRST
2014-05-08 21:55 - 2014-05-08 21:55 - 00112640 _____ (forum.viry.cz) C:\Users\Lubos\Desktop\FRSTLauncher.exe
2014-05-08 21:53 - 2014-05-08 21:53 - 02063872 _____ (Farbar) C:\Users\Lubos\Desktop\FRST64.exe
2014-05-08 20:10 - 2014-05-08 20:10 - 00041472 _____ () C:\Windows\svchost.com
2014-05-08 20:03 - 2014-05-08 20:03 - 00000222 _____ () C:\Windows\SysWOW64\metin2.cfg
2014-05-08 18:50 - 2014-05-08 18:50 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Opera Software
2014-05-08 18:49 - 2014-05-08 18:49 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Opera Software
2014-05-08 18:48 - 2014-05-08 18:48 - 00003178 _____ () C:\Windows\System32\Tasks\{A58C9B9B-AFC6-4757-A097-8C43C8EBCAF8}
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieUserList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieSiteList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Adobe
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Google
2014-05-08 18:46 - 2014-05-08 18:50 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\IObit
2014-05-08 18:46 - 2014-05-08 18:47 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-08 18:46 - 2014-05-08 18:47 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-08 18:46 - 2014-05-08 18:46 - 00002255 _____ () C:\Users\Luboš\Desktop\Google Chrome.lnk
2014-05-08 18:46 - 2014-05-08 18:46 - 00000896 __RSH () C:\Users\Luboš\ntuser.pol
2014-05-08 18:46 - 2014-05-08 18:46 - 00000020 ___SH () C:\Users\Luboš\ntuser.ini
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Šablony
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Soubory cookie
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Poslední
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní tiskárny
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní síť
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Nabídka Start
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Dokumenty
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Obrázky
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Hudba
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Filmy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Local\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\TeamViewer
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Systweak
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Local\VirtualStore
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš
2014-05-08 18:46 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-08 18:46 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-08 18:14 - 2014-05-08 18:14 - 00003408 _____ () C:\Windows\System32\Tasks\{5065BBC8-F69C-423E-B865-9F7AE8252283}
2014-05-08 15:42 - 2014-05-08 20:51 - 00000280 _____ () C:\Windows\setupact.log
2014-05-08 15:42 - 2014-05-08 15:42 - 00005954 _____ () C:\Windows\PFRO.log
2014-05-08 15:42 - 2014-05-08 15:42 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-08 15:41 - 2014-05-08 15:41 - 00000000 _____ () C:\asc_rdflag
2014-05-08 14:56 - 2014-05-08 14:56 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\TeamViewer
2014-05-08 11:53 - 2014-05-08 21:58 - 00000123 _____ () C:\Windows\directx.sys
2014-05-08 11:50 - 2014-05-08 11:50 - 00000000 ____D () C:\Users\Lubos\Desktop\[www.fisierulmeu.ro] SwitchBot V3.1 by Padmak
2014-05-07 15:30 - 2014-05-08 18:34 - 00000000 ____D () C:\Users\Lubos\Desktop\The-Lost-Island
2014-05-06 22:11 - 2014-05-06 22:11 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\QuickScan
2014-05-06 13:21 - 2014-05-06 13:24 - 00000000 ____D () C:\Users\Lubos\Desktop\Switch Bot
2014-05-05 13:31 - 2014-05-05 13:35 - 00000000 ____D () C:\Users\Lubos\Desktop\Tkz 1.2.11
2014-05-05 07:42 - 2014-05-08 20:54 - 00000000 ____D () C:\ProgramData\systemk
2014-05-04 14:09 - 2014-05-07 09:12 - 00000000 ____D () C:\Users\Lubos\Desktop\Last-World
2014-05-04 09:10 - 2014-05-08 08:55 - 00003120 _____ () C:\Windows\System32\Tasks\Advanced System Protector_startup
2014-05-03 16:06 - 2014-04-15 19:53 - 00000000 ___RD () C:\Users\Lubos\Desktop\Unknown - World-Alfa Client
2014-05-01 14:47 - 2014-05-01 14:48 - 20155712 _____ (Gameforge ) C:\Users\Lubos\Downloads\Metin2_GameforgeLiveSetup.exe
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\IObit Apps Toolbar
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\Application Updater
2014-04-29 20:53 - 2014-04-29 20:54 - 00006144 ___SH () C:\Users\Karel\Downloads\Thumbs.db
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieUserList
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieSiteList
2014-04-28 12:53 - 2014-04-28 13:54 - 2872613677 _____ () C:\Users\Karel\Downloads\Call of Duty 2 Modern Warfare 2.rar
2014-04-28 12:52 - 2014-04-28 12:52 - 00034738 _____ () C:\Users\Karel\Downloads\[CzT]Call_of_Duty_Modern_Warfare_2_Multiplayer_.torrent
2014-04-28 11:58 - 2014-04-28 11:58 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieUserList
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieSiteList
2014-04-20 23:20 - 2014-04-20 23:20 - 00001086 _____ () C:\Users\Public\Desktop\Aureria Classic.lnk
2014-04-20 23:20 - 2014-04-20 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aureria Classic
2014-04-20 23:17 - 2014-04-20 23:44 - 00000000 ____D () C:\Program Files (x86)\Aureria Classic
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieUserList
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieSiteList
2014-04-18 19:33 - 2014-04-18 19:36 - 00000000 ____D () C:\Users\Karel\Downloads\Devils.Due.2014.BRRip.XviD.CZ-TreZzoR
2014-04-18 19:32 - 2014-04-18 19:32 - 00017611 _____ () C:\Users\Karel\Downloads\[CzT]Devil_s_Due_2014_CZ_.torrent
2014-04-18 13:57 - 2014-04-28 15:18 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2014-04-18 09:13 - 2014-04-18 09:13 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-18 09:07 - 2014-04-18 09:07 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-04-16 20:07 - 2014-04-16 20:07 - 00000981 _____ () C:\Users\Lubos\Desktop\Steam.lnk
2014-04-12 15:19 - 2014-05-08 11:55 - 07124424 _____ () C:\Users\Lubos\Downloads\Cs_1.6_Kz_Hack_downloader.exe
2014-04-11 07:47 - 2014-05-08 21:02 - 02023538 _____ () C:\Windows\WindowsUpdate.log
2014-04-09 09:24 - 2014-04-09 09:24 - 00035506 _____ () C:\Users\Lubos\Documents\cc_20140409_092403.reg
2014-04-09 09:17 - 2014-05-08 11:55 - 04833192 _____ () C:\Users\Lubos\Downloads\ccsetup412pro.exe
==================== One Month Modified Files and Folders =======
2014-05-08 21:58 - 2014-05-08 21:58 - 00022603 _____ () C:\Users\Lubos\Desktop\FRST.txt
2014-05-08 21:58 - 2014-05-08 21:56 - 00000000 ____D () C:\FRST
2014-05-08 21:58 - 2014-05-08 11:53 - 00000123 _____ () C:\Windows\directx.sys
2014-05-08 21:58 - 2009-07-14 04:34 - 00000678 _____ () C:\Windows\win.ini
2014-05-08 21:55 - 2014-05-08 21:55 - 00112640 _____ (forum.viry.cz) C:\Users\Lubos\Desktop\FRSTLauncher.exe
2014-05-08 21:53 - 2014-05-08 21:53 - 02063872 _____ (Farbar) C:\Users\Lubos\Desktop\FRST64.exe
2014-05-08 21:44 - 2013-12-28 23:09 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-08 21:37 - 2013-12-28 23:09 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-08 21:02 - 2014-04-11 07:47 - 02023538 _____ () C:\Windows\WindowsUpdate.log
2014-05-08 21:02 - 2009-07-14 06:45 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-08 21:02 - 2009-07-14 06:45 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-08 20:55 - 2014-03-23 14:17 - 00000000 ____D () C:\Program Files (x86)\Zrychleni Pocitace
2014-05-08 20:54 - 2014-05-05 07:42 - 00000000 ____D () C:\ProgramData\systemk
2014-05-08 20:51 - 2014-05-08 15:42 - 00000280 _____ () C:\Windows\setupact.log
2014-05-08 20:51 - 2013-12-28 23:09 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-08 20:51 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-08 20:10 - 2014-05-08 20:10 - 00041472 _____ () C:\Windows\svchost.com
2014-05-08 20:03 - 2014-05-08 20:03 - 00000222 _____ () C:\Windows\SysWOW64\metin2.cfg
2014-05-08 18:50 - 2014-05-08 18:50 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Opera Software
2014-05-08 18:50 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\IObit
2014-05-08 18:49 - 2014-05-08 18:49 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Opera Software
2014-05-08 18:48 - 2014-05-08 18:48 - 00003178 _____ () C:\Windows\System32\Tasks\{A58C9B9B-AFC6-4757-A097-8C43C8EBCAF8}
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieUserList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieSiteList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Adobe
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Google
2014-05-08 18:47 - 2014-05-08 18:46 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-08 18:47 - 2014-05-08 18:46 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-08 18:46 - 2014-05-08 18:46 - 00002255 _____ () C:\Users\Luboš\Desktop\Google Chrome.lnk
2014-05-08 18:46 - 2014-05-08 18:46 - 00000896 __RSH () C:\Users\Luboš\ntuser.pol
2014-05-08 18:46 - 2014-05-08 18:46 - 00000020 ___SH () C:\Users\Luboš\ntuser.ini
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Šablony
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Soubory cookie
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Poslední
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní tiskárny
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní síť
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Nabídka Start
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Dokumenty
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Obrázky
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Hudba
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Filmy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Local\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\TeamViewer
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Systweak
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Local\VirtualStore
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš
2014-05-08 18:34 - 2014-05-07 15:30 - 00000000 ____D () C:\Users\Lubos\Desktop\The-Lost-Island
2014-05-08 18:31 - 2014-01-12 17:16 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\newnext.me
2014-05-08 18:14 - 2014-05-08 18:14 - 00003408 _____ () C:\Windows\System32\Tasks\{5065BBC8-F69C-423E-B865-9F7AE8252283}
2014-05-08 15:42 - 2014-05-08 15:42 - 00005954 _____ () C:\Windows\PFRO.log
2014-05-08 15:42 - 2014-05-08 15:42 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-08 15:42 - 2013-12-28 21:32 - 73789440 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2014-05-08 15:41 - 2014-05-08 15:41 - 00000000 _____ () C:\asc_rdflag
2014-05-08 15:41 - 2014-01-01 21:09 - 00000000 ____D () C:\Users\Lubos
2014-05-08 15:41 - 2013-12-28 21:32 - 00249856 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2014-05-08 15:41 - 2013-12-28 21:32 - 00102400 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2014-05-08 15:41 - 2013-12-28 21:32 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2014-05-08 15:32 - 2014-01-08 01:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-05-08 15:31 - 2014-01-17 13:28 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-08 14:56 - 2014-05-08 14:56 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\TeamViewer
2014-05-08 12:03 - 2014-01-15 10:52 - 00000896 __RSH () C:\Users\Lubos\ntuser.pol
2014-05-08 11:56 - 2013-12-29 15:54 - 01768498 _____ () C:\Users\Karel\Downloads\uTorrent221.exe
2014-05-08 11:56 - 2013-12-28 20:52 - 02024896 _____ () C:\Users\Karel\Downloads\winrar-x64-500cz (1).exe
2014-05-08 11:55 - 2014-04-12 15:19 - 07124424 _____ () C:\Users\Lubos\Downloads\Cs_1.6_Kz_Hack_downloader.exe
2014-05-08 11:55 - 2014-04-09 09:17 - 04833192 _____ () C:\Users\Lubos\Downloads\ccsetup412pro.exe
2014-05-08 11:55 - 2014-03-29 10:36 - 03483000 _____ () C:\Users\Lubos\Downloads\AMD_Radeon_HD_6570_(OEM)_Ovladač_aktualizace_03-2014 (1).exe
2014-05-08 11:55 - 2014-03-29 10:35 - 03483000 _____ () C:\Users\Lubos\Downloads\AMD_Radeon_HD_6570_(OEM)_Ovladač_aktualizace_03-2014.exe
2014-05-08 11:55 - 2014-03-23 14:22 - 05070280 _____ () C:\Users\Lubos\Downloads\rcpsetup1_cpuid.exe
2014-05-08 11:55 - 2014-03-23 14:16 - 05525440 _____ () C:\Users\Lubos\Downloads\zrychlenipocitace_e85352c87547433582d8b66d15a18dca_.exe
2014-05-08 11:55 - 2014-03-19 17:08 - 00962472 _____ () C:\Users\Lubos\Downloads\chromeinstall-7u51.exe
2014-05-08 11:55 - 2014-03-19 13:55 - 04814219 _____ () C:\Users\Lubos\Desktop\GSplay.exe
2014-05-08 11:55 - 2014-03-04 19:05 - 00363104 _____ () C:\Users\Lubos\Downloads\Download.exe
2014-05-08 11:55 - 2014-03-04 18:38 - 01183152 _____ () C:\Users\Lubos\Downloads\SteamSetup (1).exe
2014-05-08 11:55 - 2014-03-02 17:33 - 00378408 _____ () C:\Users\Lubos\Downloads\GotClipDownloader__6629_i398433095_il4753234.exe
2014-05-08 11:55 - 2014-02-28 12:33 - 07749096 _____ () C:\Users\Lubos\Downloads\uTorrent-setup.exe
2014-05-08 11:55 - 2014-02-28 12:23 - 00263656 _____ () C:\Users\Lubos\Downloads\dfdownloader_ea761s_.exe
2014-05-08 11:55 - 2014-02-18 13:19 - 09708437 _____ () C:\Users\Lubos\Downloads\BitTorrent-setup (1).exe
2014-05-08 11:55 - 2014-02-17 09:50 - 00499880 _____ () C:\Users\Lubos\Downloads\VLCPlus_Setup.exe
2014-05-08 11:55 - 2014-02-17 09:45 - 01035072 _____ () C:\Users\Lubos\Downloads\DivXInstaller.exe
2014-05-08 11:55 - 2014-01-19 10:37 - 09708437 _____ () C:\Users\Lubos\Downloads\BitTorrent-setup.exe
2014-05-08 11:55 - 2014-01-12 18:17 - 00174592 _____ () C:\Users\Lubos\Downloads\VIP_Gamesites.exe
2014-05-08 11:55 - 2014-01-08 02:28 - 04410940 _____ () C:\Users\Lubos\Downloads\Tools by Unpublished.exe
2014-05-08 11:55 - 2014-01-05 22:33 - 05875520 _____ () C:\Users\Denča\Downloads\teamviewer_8.0.22298.exe
2014-05-08 11:55 - 2014-01-05 22:33 - 05438344 _____ () C:\Users\Denča\Downloads\Allin1ConvertSetup2.5.14.73.^AYY^man000^YYA^.exe
2014-05-08 11:55 - 2014-01-03 11:19 - 01091736 _____ () C:\Users\Lubos\Downloads\UnityWebPlayer.exe
2014-05-08 11:55 - 2014-01-01 21:33 - 01175024 _____ () C:\Users\Lubos\Downloads\SteamSetup.exe
2014-05-08 11:55 - 2013-12-28 22:46 - 00443528 _____ () C:\Users\Denča\Downloads\SoftonicDownloader_for_daemon-tools.exe
2014-05-08 11:50 - 2014-05-08 11:50 - 00000000 ____D () C:\Users\Lubos\Desktop\[www.fisierulmeu.ro] SwitchBot V3.1 by Padmak
2014-05-08 09:39 - 2013-12-28 23:09 - 00003946 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-08 09:39 - 2013-12-28 23:09 - 00003694 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-08 08:55 - 2014-05-04 09:10 - 00003120 _____ () C:\Windows\System32\Tasks\Advanced System Protector_startup
2014-05-08 08:54 - 2014-03-23 14:17 - 00000368 _____ () C:\Windows\Tasks\PC SpeedUp Service Deactivator.job
2014-05-08 08:40 - 2014-01-01 21:09 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\Seznam.cz
2014-05-07 09:12 - 2014-05-04 14:09 - 00000000 ____D () C:\Users\Lubos\Desktop\Last-World
2014-05-07 08:15 - 2013-12-28 20:07 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-05-06 22:11 - 2014-05-06 22:11 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\QuickScan
2014-05-06 22:08 - 2013-12-28 22:50 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\newnext.me
2014-05-06 22:06 - 2009-07-14 07:08 - 00032540 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-05-06 22:02 - 2014-01-05 22:59 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\uTorrent
2014-05-06 18:54 - 2014-01-15 18:06 - 00000896 __RSH () C:\Users\Denča\ntuser.pol
2014-05-06 18:54 - 2013-12-28 22:26 - 00000000 ____D () C:\Users\Denča
2014-05-06 13:24 - 2014-05-06 13:21 - 00000000 ____D () C:\Users\Lubos\Desktop\Switch Bot
2014-05-05 13:35 - 2014-05-05 13:31 - 00000000 ____D () C:\Users\Lubos\Desktop\Tkz 1.2.11
2014-05-03 16:13 - 2014-01-03 17:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2014-05-03 16:13 - 2014-01-03 17:27 - 00000000 ____D () C:\Hry
2014-05-03 15:48 - 2014-02-20 16:20 - 00000000 ____D () C:\Users\Lubos\AppData\Local\Razer
2014-05-03 15:48 - 2014-02-20 16:17 - 00000000 ____D () C:\ProgramData\Razer
2014-05-03 15:43 - 2013-12-28 21:05 - 00000000 ____D () C:\ProgramData\ProductData
2014-05-01 15:00 - 2014-01-15 22:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2014-05-01 14:48 - 2014-05-01 14:47 - 20155712 _____ (Gameforge ) C:\Users\Lubos\Downloads\Metin2_GameforgeLiveSetup.exe
2014-05-01 14:48 - 2014-01-08 01:59 - 00000000 ____D () C:\Users\Lubos\Downloads\Gameforge Live
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\IObit Apps Toolbar
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\Application Updater
2014-04-29 20:54 - 2014-04-29 20:53 - 00006144 ___SH () C:\Users\Karel\Downloads\Thumbs.db
2014-04-29 13:42 - 2013-12-29 15:45 - 00000000 ____D () C:\Users\Karel\AppData\Roaming\Seznam.cz
2014-04-29 13:37 - 2013-12-29 20:53 - 00000000 ____D () C:\Users\Karel\AppData\Roaming\newnext.me
2014-04-29 12:14 - 2014-01-24 10:37 - 00000896 __RSH () C:\Users\Karel\ntuser.pol
2014-04-29 12:14 - 2013-12-28 19:58 - 00000000 ____D () C:\Users\Karel
2014-04-29 11:37 - 2013-12-28 23:09 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-29 11:37 - 2013-12-28 23:09 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-29 11:37 - 2013-12-28 23:09 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-28 22:56 - 2013-12-29 15:55 - 00000000 ____D () C:\Users\Karel\AppData\Roaming\uTorrent
2014-04-28 22:25 - 2009-07-14 17:18 - 00668866 _____ () C:\Windows\system32\perfh005.dat
2014-04-28 22:25 - 2009-07-14 17:18 - 00141526 _____ () C:\Windows\system32\perfc005.dat
2014-04-28 22:25 - 2009-07-14 07:13 - 01584554 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieUserList
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieSiteList
2014-04-28 15:18 - 2014-04-18 13:57 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2014-04-28 13:54 - 2014-04-28 12:53 - 2872613677 _____ () C:\Users\Karel\Downloads\Call of Duty 2 Modern Warfare 2.rar
2014-04-28 12:52 - 2014-04-28 12:52 - 00034738 _____ () C:\Users\Karel\Downloads\[CzT]Call_of_Duty_Modern_Warfare_2_Multiplayer_.torrent
2014-04-28 11:58 - 2014-04-28 11:58 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-23 18:54 - 2014-03-16 22:28 - 00000000 ____D () C:\Users\Denča\Desktop\World of Warcraft
2014-04-20 23:44 - 2014-04-20 23:17 - 00000000 ____D () C:\Program Files (x86)\Aureria Classic
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieUserList
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieSiteList
2014-04-20 23:20 - 2014-04-20 23:20 - 00001086 _____ () C:\Users\Public\Desktop\Aureria Classic.lnk
2014-04-20 23:20 - 2014-04-20 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aureria Classic
2014-04-20 22:19 - 2014-01-01 21:09 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\IObit
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieUserList
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieSiteList
2014-04-20 09:56 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-04-18 19:36 - 2014-04-18 19:33 - 00000000 ____D () C:\Users\Karel\Downloads\Devils.Due.2014.BRRip.XviD.CZ-TreZzoR
2014-04-18 19:32 - 2014-04-18 19:32 - 00017611 _____ () C:\Users\Karel\Downloads\[CzT]Devil_s_Due_2014_CZ_.torrent
2014-04-18 15:43 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-18 13:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-18 09:13 - 2014-04-18 09:13 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-18 09:07 - 2014-04-18 09:07 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-04-16 20:07 - 2014-04-16 20:07 - 00000981 _____ () C:\Users\Lubos\Desktop\Steam.lnk
2014-04-15 19:53 - 2014-05-03 16:06 - 00000000 ___RD () C:\Users\Lubos\Desktop\Unknown - World-Alfa Client
2014-04-15 12:34 - 2014-01-16 14:39 - 00154591 _____ () C:\Users\Lubos\Desktop\Genesys Publiç ج س ب ب ص أ.rar
2014-04-12 18:15 - 2013-12-28 22:28 - 00000000 ____D () C:\Users\Denča\Desktop\blbosti
2014-04-12 09:03 - 2014-01-16 12:46 - 00000000 ____D () C:\Users\Lubos\AppData\Local\Adobe
2014-04-11 15:01 - 2013-12-30 21:06 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-11 14:59 - 2013-12-30 21:06 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-09 09:24 - 2014-04-09 09:24 - 00035506 _____ () C:\Users\Lubos\Documents\cc_20140409_092403.reg
2014-04-09 09:22 - 2014-03-02 16:39 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\DAEMON Tools Lite
Some content of TEMP:
====================
C:\Users\Denča\AppData\Local\Temp\bitool.dll
C:\Users\Denča\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\Denča\AppData\Local\Temp\Mobogenie_Setup_2-1-35_517.exe
C:\Users\Denča\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
C:\Users\Lubos\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-04-29 15:26
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:149.04 GB) (Free:12.12 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Available physical RAM: 776.59 MB
Total physical RAM: 2047.24 MB
Percentage of memory in use: 62%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 853A853A)
Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Lubos\Desktop" je 5406 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Ran by Lubos (administrator) on KAREL-PC on 08-05-2014 21:58:04
Running from C:\Users\Lubos\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
() C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe
(Spigot, Inc.) C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
() C:\Program Files (x86)\Surftastic\updateSurftastic.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\Surftastic\bin\utilSurftastic.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
(IObit) C:\Users\Lubos\AppData\Local\Temp\3582-490\Monitor.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\systemku.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.57\opera.exe
(forum.viry.cz) C:\Users\Lubos\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-12-28] (Realtek Semiconductor)
HKLM-x32\...\Run: [mskirsuvSrv] => C:\Windows\SysWOW64\mskirsuv.vbe [583 2013-12-10] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1103944 2014-05-08] ()
HKLM-x32\...\Run: [NBAgent] => C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1234216 2014-05-08] (Nero AG)
HKLM-x32\...\Run: [ApnUpdater] => C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1648264 2014-05-08] (Ask)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [807680 2014-05-08] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2014-05-08] (Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SearchSettings] => C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [1484608 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Lubos\AppData\Roaming\Seznam.cz\szninstall.exe [1103944 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [NextLive] => C:\Windows\SysWOW64\rundll32.exe "C:\Users\Lubos\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-06-17] (Hewlett-Packard Company)
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [SpeedUpMyComputer] => C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe [2096248 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3716824 2014-05-08] ()
HKU\S-1-5-21-1946532743-628846935-2501042635-1004\...\Run: [PCSpeedUp] => C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe [319280 2014-05-08] ()
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsemngr.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browsermngr.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IFEO\cltmngsvc.exe: [Debugger] tasklist.exe
IFEO\delta babylon.exe: [Debugger] tasklist.exe
IFEO\delta tb.exe: [Debugger] tasklist.exe
IFEO\delta2.exe: [Debugger] tasklist.exe
IFEO\deltainstaller.exe: [Debugger] tasklist.exe
IFEO\deltasetup.exe: [Debugger] tasklist.exe
IFEO\deltatb.exe: [Debugger] tasklist.exe
IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\iminentsetup.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll [490000 2014-04-28] ()
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll [664592 2014-04-28] ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
URLSearchHook: HKCU - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE64.dll (Spigot, Inc.)
URLSearchHook: HKCU - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
URLSearchHook: HKCU - (No Name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... earchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... earchTerms}
SearchScopes: HKCU - DefaultScope {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.com/websearch/ref=bit ... earchTerms}
SearchScopes: HKCU - {0B69D94F-EDEF-4EC5-A8AE-926BEEE7EFF9} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKCU - {32A54656-AD6D-46B9-845A-B79F5497DD8A} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
SearchScopes: HKCU - {40DA3F64-68D2-44EF-A198-3C3DAB96BA45} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKCU - {529411A6-7036-46BE-8EF9-B46FF37CC561} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKCU - {5BF0509C-F974-43B1-8F4B-EE0B2A417A54} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {90DC8193-9063-4689-856A-9DDB37BDB643} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKCU - {91B28FEB-2414-435E-9C34-2ECFF9AACD16} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {92163A7C-CBEB-4EDC-8CFB-06021A9CBEF0} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKCU - {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.com/websearch/ref=bit ... earchTerms}
SearchScopes: HKCU - {E678D672-FA48-4309-996E-99AA51BBABAD} URL = http://www.mysearchresults.com/search?c ... earchTerms}
SearchScopes: HKCU - {F17E0493-030D-47CF-9BC0-8E4147EADAC6} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKCU - {F1E22D2F-71A3-4C7C-B8B5-D2AB09F87F4D} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKCU - {F63866A0-F31D-4E39-9075-67456BE20234} URL = www.buenosearch.com?babsrc=ext_WinjNw&a ... earchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: The Amazon 1Button App for IE - {26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} - C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonAppIE64.dll (Amazon Inc.)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons64.dll (Spigot, Inc.)
BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll (Aztec Media Inc)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: The Amazon 1Button App for IE - {26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} - C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonAppIE.dll (Amazon Inc.)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons.dll (Spigot, Inc.)
BHO-x32: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: DefaultTab Browser Helper - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll (Search Results LLC.)
BHO-x32: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files (x86)\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
Toolbar: HKLM - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE64.dll (Spigot, Inc.)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM-x32 - Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files (x86)\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
Toolbar: HKLM-x32 - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.46
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Lubos\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha51.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha51\ff
FF Extension: Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha51\ff [2014-03-18]
Chrome:
=======
CHR HomePage: hxxp://www.amazon.com/websearch/ref=bit_bds-p1 ... r_sp_cpuid
CHR StartupUrls: ""
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: default-search.net
CHR DefaultSearchURL: http://www.default-search.net/search?si ... earchTerms}
CHR DefaultNewTabURL:
CHR Extension: (McAfee Security Scan+) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-02-26]
CHR Extension: (uTorrentControl_v6) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\cflheckfmhopnialghigdlggahiomebp [2014-02-28]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-01]
CHR Extension: (Domain Error Assistant) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-01-01]
CHR Extension: (Slick Savings) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-03-19]
CHR Extension: (PenÄĂË€ºÄ¹Ä¾enka Google) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-01]
CHR Extension: (Media View) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbhnbophegacpjokipcjfienbhdpmokd [2014-03-18]
CHR HKCU\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Lubos\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKCU\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - C:\Program Files (x86)\Amazon\ABB\AmazonChrome-bds-amzn.crx [2014-01-31]
CHR HKLM-x32\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Lubos\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.1.crx [2013-10-14]
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.3.crx [2013-12-27]
CHR HKLM-x32\...\Chrome\Extension: [kdidombaedgpfiiedeimiebkmbilgmlc] - C:\Program Files (x86)\DefaultTab\DefaultTab.crx [2013-12-27]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.4.crx [2013-04-26]
CHR HKLM-x32\...\Chrome\Extension: [pbhnbophegacpjokipcjfienbhdpmokd] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha51\ch\MediaViewV1alpha51.crx [2014-02-26]
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx [2012-11-22]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [881952 2014-01-14] (IObit)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [158120 2014-05-08] ()
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [158120 2014-05-08] ()
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2192672 2014-05-08] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
S2 NAUpdate; C:\Program Files (x86)\Nero\Update\NASvc.exe [531752 2014-05-08] ()
R2 PCSUService; C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe [423728 2014-01-09] ()
S2 ProtectMonitor; C:\Program Files (x86)\PCData\StartHelp.exe [132140 2014-05-08] ()
S2 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [213152 2014-05-08] ()
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [613568 2014-05-08] ()
R2 SystemkService; C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe [3543056 2014-04-28] (Aztec Media Inc)
R2 Update Surftastic; C:\Program Files (x86)\Surftastic\updateSurftastic.exe [316328 2014-05-08] ()
S2 Updater Service for AMZN; C:\Program Files (x86)\Amazon Browser Bar\ToolbarUpdaterService.exe [263840 2014-05-08] ()
R2 Util Surftastic; C:\Program Files (x86)\Surftastic\bin\utilSurftastic.exe [316328 2014-05-08] ()
S2 DefaultTabUpdate; "C:\Users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe" [X]
==================== Drivers (Whitelisted) ====================
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-12-28] (Disc Soft Ltd)
R1 F06DEFF2-5B9C-490D-910F-35D3A91196222; C:\Program Files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg [36240 2014-04-28] (Aztec Media Inc)
S3 OSFMount; C:\Program Files (x86)\Counter-Strike Global Offensive\image\x64\OSFMount.sys [552888 2013-10-18] (PassMark Software)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
R1 wStLib64; C:\Windows\System32\drivers\wStLib64.sys [61120 2014-03-22] (StdLib)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-08 21:58 - 2014-05-08 21:58 - 00022603 _____ () C:\Users\Lubos\Desktop\FRST.txt
2014-05-08 21:56 - 2014-05-08 21:58 - 00000000 ____D () C:\FRST
2014-05-08 21:55 - 2014-05-08 21:55 - 00112640 _____ (forum.viry.cz) C:\Users\Lubos\Desktop\FRSTLauncher.exe
2014-05-08 21:53 - 2014-05-08 21:53 - 02063872 _____ (Farbar) C:\Users\Lubos\Desktop\FRST64.exe
2014-05-08 20:10 - 2014-05-08 20:10 - 00041472 _____ () C:\Windows\svchost.com
2014-05-08 20:03 - 2014-05-08 20:03 - 00000222 _____ () C:\Windows\SysWOW64\metin2.cfg
2014-05-08 18:50 - 2014-05-08 18:50 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Opera Software
2014-05-08 18:49 - 2014-05-08 18:49 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Opera Software
2014-05-08 18:48 - 2014-05-08 18:48 - 00003178 _____ () C:\Windows\System32\Tasks\{A58C9B9B-AFC6-4757-A097-8C43C8EBCAF8}
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieUserList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieSiteList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Adobe
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Google
2014-05-08 18:46 - 2014-05-08 18:50 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\IObit
2014-05-08 18:46 - 2014-05-08 18:47 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-08 18:46 - 2014-05-08 18:47 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-08 18:46 - 2014-05-08 18:46 - 00002255 _____ () C:\Users\Luboš\Desktop\Google Chrome.lnk
2014-05-08 18:46 - 2014-05-08 18:46 - 00000896 __RSH () C:\Users\Luboš\ntuser.pol
2014-05-08 18:46 - 2014-05-08 18:46 - 00000020 ___SH () C:\Users\Luboš\ntuser.ini
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Šablony
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Soubory cookie
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Poslední
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní tiskárny
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní síť
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Nabídka Start
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Dokumenty
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Obrázky
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Hudba
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Filmy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Local\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\TeamViewer
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Systweak
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Local\VirtualStore
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš
2014-05-08 18:46 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-08 18:46 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-08 18:14 - 2014-05-08 18:14 - 00003408 _____ () C:\Windows\System32\Tasks\{5065BBC8-F69C-423E-B865-9F7AE8252283}
2014-05-08 15:42 - 2014-05-08 20:51 - 00000280 _____ () C:\Windows\setupact.log
2014-05-08 15:42 - 2014-05-08 15:42 - 00005954 _____ () C:\Windows\PFRO.log
2014-05-08 15:42 - 2014-05-08 15:42 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-08 15:41 - 2014-05-08 15:41 - 00000000 _____ () C:\asc_rdflag
2014-05-08 14:56 - 2014-05-08 14:56 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\TeamViewer
2014-05-08 11:53 - 2014-05-08 21:58 - 00000123 _____ () C:\Windows\directx.sys
2014-05-08 11:50 - 2014-05-08 11:50 - 00000000 ____D () C:\Users\Lubos\Desktop\[www.fisierulmeu.ro] SwitchBot V3.1 by Padmak
2014-05-07 15:30 - 2014-05-08 18:34 - 00000000 ____D () C:\Users\Lubos\Desktop\The-Lost-Island
2014-05-06 22:11 - 2014-05-06 22:11 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\QuickScan
2014-05-06 13:21 - 2014-05-06 13:24 - 00000000 ____D () C:\Users\Lubos\Desktop\Switch Bot
2014-05-05 13:31 - 2014-05-05 13:35 - 00000000 ____D () C:\Users\Lubos\Desktop\Tkz 1.2.11
2014-05-05 07:42 - 2014-05-08 20:54 - 00000000 ____D () C:\ProgramData\systemk
2014-05-04 14:09 - 2014-05-07 09:12 - 00000000 ____D () C:\Users\Lubos\Desktop\Last-World
2014-05-04 09:10 - 2014-05-08 08:55 - 00003120 _____ () C:\Windows\System32\Tasks\Advanced System Protector_startup
2014-05-03 16:06 - 2014-04-15 19:53 - 00000000 ___RD () C:\Users\Lubos\Desktop\Unknown - World-Alfa Client
2014-05-01 14:47 - 2014-05-01 14:48 - 20155712 _____ (Gameforge ) C:\Users\Lubos\Downloads\Metin2_GameforgeLiveSetup.exe
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\IObit Apps Toolbar
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\Application Updater
2014-04-29 20:53 - 2014-04-29 20:54 - 00006144 ___SH () C:\Users\Karel\Downloads\Thumbs.db
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieUserList
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieSiteList
2014-04-28 12:53 - 2014-04-28 13:54 - 2872613677 _____ () C:\Users\Karel\Downloads\Call of Duty 2 Modern Warfare 2.rar
2014-04-28 12:52 - 2014-04-28 12:52 - 00034738 _____ () C:\Users\Karel\Downloads\[CzT]Call_of_Duty_Modern_Warfare_2_Multiplayer_.torrent
2014-04-28 11:58 - 2014-04-28 11:58 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieUserList
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieSiteList
2014-04-20 23:20 - 2014-04-20 23:20 - 00001086 _____ () C:\Users\Public\Desktop\Aureria Classic.lnk
2014-04-20 23:20 - 2014-04-20 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aureria Classic
2014-04-20 23:17 - 2014-04-20 23:44 - 00000000 ____D () C:\Program Files (x86)\Aureria Classic
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieUserList
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieSiteList
2014-04-18 19:33 - 2014-04-18 19:36 - 00000000 ____D () C:\Users\Karel\Downloads\Devils.Due.2014.BRRip.XviD.CZ-TreZzoR
2014-04-18 19:32 - 2014-04-18 19:32 - 00017611 _____ () C:\Users\Karel\Downloads\[CzT]Devil_s_Due_2014_CZ_.torrent
2014-04-18 13:57 - 2014-04-28 15:18 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2014-04-18 09:13 - 2014-04-18 09:13 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-18 09:07 - 2014-04-18 09:07 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-04-16 20:07 - 2014-04-16 20:07 - 00000981 _____ () C:\Users\Lubos\Desktop\Steam.lnk
2014-04-12 15:19 - 2014-05-08 11:55 - 07124424 _____ () C:\Users\Lubos\Downloads\Cs_1.6_Kz_Hack_downloader.exe
2014-04-11 07:47 - 2014-05-08 21:02 - 02023538 _____ () C:\Windows\WindowsUpdate.log
2014-04-09 09:24 - 2014-04-09 09:24 - 00035506 _____ () C:\Users\Lubos\Documents\cc_20140409_092403.reg
2014-04-09 09:17 - 2014-05-08 11:55 - 04833192 _____ () C:\Users\Lubos\Downloads\ccsetup412pro.exe
==================== One Month Modified Files and Folders =======
2014-05-08 21:58 - 2014-05-08 21:58 - 00022603 _____ () C:\Users\Lubos\Desktop\FRST.txt
2014-05-08 21:58 - 2014-05-08 21:56 - 00000000 ____D () C:\FRST
2014-05-08 21:58 - 2014-05-08 11:53 - 00000123 _____ () C:\Windows\directx.sys
2014-05-08 21:58 - 2009-07-14 04:34 - 00000678 _____ () C:\Windows\win.ini
2014-05-08 21:55 - 2014-05-08 21:55 - 00112640 _____ (forum.viry.cz) C:\Users\Lubos\Desktop\FRSTLauncher.exe
2014-05-08 21:53 - 2014-05-08 21:53 - 02063872 _____ (Farbar) C:\Users\Lubos\Desktop\FRST64.exe
2014-05-08 21:44 - 2013-12-28 23:09 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-08 21:37 - 2013-12-28 23:09 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-08 21:02 - 2014-04-11 07:47 - 02023538 _____ () C:\Windows\WindowsUpdate.log
2014-05-08 21:02 - 2009-07-14 06:45 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-08 21:02 - 2009-07-14 06:45 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-08 20:55 - 2014-03-23 14:17 - 00000000 ____D () C:\Program Files (x86)\Zrychleni Pocitace
2014-05-08 20:54 - 2014-05-05 07:42 - 00000000 ____D () C:\ProgramData\systemk
2014-05-08 20:51 - 2014-05-08 15:42 - 00000280 _____ () C:\Windows\setupact.log
2014-05-08 20:51 - 2013-12-28 23:09 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-08 20:51 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-08 20:10 - 2014-05-08 20:10 - 00041472 _____ () C:\Windows\svchost.com
2014-05-08 20:03 - 2014-05-08 20:03 - 00000222 _____ () C:\Windows\SysWOW64\metin2.cfg
2014-05-08 18:50 - 2014-05-08 18:50 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Opera Software
2014-05-08 18:50 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\IObit
2014-05-08 18:49 - 2014-05-08 18:49 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Opera Software
2014-05-08 18:48 - 2014-05-08 18:48 - 00003178 _____ () C:\Windows\System32\Tasks\{A58C9B9B-AFC6-4757-A097-8C43C8EBCAF8}
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieUserList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 __SHD () C:\Users\Luboš\AppData\Local\EmieSiteList
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Adobe
2014-05-08 18:48 - 2014-05-08 18:48 - 00000000 ____D () C:\Users\Luboš\AppData\Local\Google
2014-05-08 18:47 - 2014-05-08 18:46 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-08 18:47 - 2014-05-08 18:46 - 00000000 ___RD () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-08 18:46 - 2014-05-08 18:46 - 00002255 _____ () C:\Users\Luboš\Desktop\Google Chrome.lnk
2014-05-08 18:46 - 2014-05-08 18:46 - 00000896 __RSH () C:\Users\Luboš\ntuser.pol
2014-05-08 18:46 - 2014-05-08 18:46 - 00000020 ___SH () C:\Users\Luboš\ntuser.ini
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Šablony
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Soubory cookie
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Poslední
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní tiskárny
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Okolní síť
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Nabídka Start
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Dokumenty
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Obrázky
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Hudba
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Documents\Filmy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 _SHDL () C:\Users\Luboš\AppData\Local\Data aplikací
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\TeamViewer
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Roaming\Systweak
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš\AppData\Local\VirtualStore
2014-05-08 18:46 - 2014-05-08 18:46 - 00000000 ____D () C:\Users\Luboš
2014-05-08 18:34 - 2014-05-07 15:30 - 00000000 ____D () C:\Users\Lubos\Desktop\The-Lost-Island
2014-05-08 18:31 - 2014-01-12 17:16 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\newnext.me
2014-05-08 18:14 - 2014-05-08 18:14 - 00003408 _____ () C:\Windows\System32\Tasks\{5065BBC8-F69C-423E-B865-9F7AE8252283}
2014-05-08 15:42 - 2014-05-08 15:42 - 00005954 _____ () C:\Windows\PFRO.log
2014-05-08 15:42 - 2014-05-08 15:42 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-08 15:42 - 2013-12-28 21:32 - 73789440 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2014-05-08 15:41 - 2014-05-08 15:41 - 00000000 _____ () C:\asc_rdflag
2014-05-08 15:41 - 2014-01-01 21:09 - 00000000 ____D () C:\Users\Lubos
2014-05-08 15:41 - 2013-12-28 21:32 - 00249856 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2014-05-08 15:41 - 2013-12-28 21:32 - 00102400 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2014-05-08 15:41 - 2013-12-28 21:32 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2014-05-08 15:32 - 2014-01-08 01:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-05-08 15:31 - 2014-01-17 13:28 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-08 14:56 - 2014-05-08 14:56 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\TeamViewer
2014-05-08 12:03 - 2014-01-15 10:52 - 00000896 __RSH () C:\Users\Lubos\ntuser.pol
2014-05-08 11:56 - 2013-12-29 15:54 - 01768498 _____ () C:\Users\Karel\Downloads\uTorrent221.exe
2014-05-08 11:56 - 2013-12-28 20:52 - 02024896 _____ () C:\Users\Karel\Downloads\winrar-x64-500cz (1).exe
2014-05-08 11:55 - 2014-04-12 15:19 - 07124424 _____ () C:\Users\Lubos\Downloads\Cs_1.6_Kz_Hack_downloader.exe
2014-05-08 11:55 - 2014-04-09 09:17 - 04833192 _____ () C:\Users\Lubos\Downloads\ccsetup412pro.exe
2014-05-08 11:55 - 2014-03-29 10:36 - 03483000 _____ () C:\Users\Lubos\Downloads\AMD_Radeon_HD_6570_(OEM)_Ovladač_aktualizace_03-2014 (1).exe
2014-05-08 11:55 - 2014-03-29 10:35 - 03483000 _____ () C:\Users\Lubos\Downloads\AMD_Radeon_HD_6570_(OEM)_Ovladač_aktualizace_03-2014.exe
2014-05-08 11:55 - 2014-03-23 14:22 - 05070280 _____ () C:\Users\Lubos\Downloads\rcpsetup1_cpuid.exe
2014-05-08 11:55 - 2014-03-23 14:16 - 05525440 _____ () C:\Users\Lubos\Downloads\zrychlenipocitace_e85352c87547433582d8b66d15a18dca_.exe
2014-05-08 11:55 - 2014-03-19 17:08 - 00962472 _____ () C:\Users\Lubos\Downloads\chromeinstall-7u51.exe
2014-05-08 11:55 - 2014-03-19 13:55 - 04814219 _____ () C:\Users\Lubos\Desktop\GSplay.exe
2014-05-08 11:55 - 2014-03-04 19:05 - 00363104 _____ () C:\Users\Lubos\Downloads\Download.exe
2014-05-08 11:55 - 2014-03-04 18:38 - 01183152 _____ () C:\Users\Lubos\Downloads\SteamSetup (1).exe
2014-05-08 11:55 - 2014-03-02 17:33 - 00378408 _____ () C:\Users\Lubos\Downloads\GotClipDownloader__6629_i398433095_il4753234.exe
2014-05-08 11:55 - 2014-02-28 12:33 - 07749096 _____ () C:\Users\Lubos\Downloads\uTorrent-setup.exe
2014-05-08 11:55 - 2014-02-28 12:23 - 00263656 _____ () C:\Users\Lubos\Downloads\dfdownloader_ea761s_.exe
2014-05-08 11:55 - 2014-02-18 13:19 - 09708437 _____ () C:\Users\Lubos\Downloads\BitTorrent-setup (1).exe
2014-05-08 11:55 - 2014-02-17 09:50 - 00499880 _____ () C:\Users\Lubos\Downloads\VLCPlus_Setup.exe
2014-05-08 11:55 - 2014-02-17 09:45 - 01035072 _____ () C:\Users\Lubos\Downloads\DivXInstaller.exe
2014-05-08 11:55 - 2014-01-19 10:37 - 09708437 _____ () C:\Users\Lubos\Downloads\BitTorrent-setup.exe
2014-05-08 11:55 - 2014-01-12 18:17 - 00174592 _____ () C:\Users\Lubos\Downloads\VIP_Gamesites.exe
2014-05-08 11:55 - 2014-01-08 02:28 - 04410940 _____ () C:\Users\Lubos\Downloads\Tools by Unpublished.exe
2014-05-08 11:55 - 2014-01-05 22:33 - 05875520 _____ () C:\Users\Denča\Downloads\teamviewer_8.0.22298.exe
2014-05-08 11:55 - 2014-01-05 22:33 - 05438344 _____ () C:\Users\Denča\Downloads\Allin1ConvertSetup2.5.14.73.^AYY^man000^YYA^.exe
2014-05-08 11:55 - 2014-01-03 11:19 - 01091736 _____ () C:\Users\Lubos\Downloads\UnityWebPlayer.exe
2014-05-08 11:55 - 2014-01-01 21:33 - 01175024 _____ () C:\Users\Lubos\Downloads\SteamSetup.exe
2014-05-08 11:55 - 2013-12-28 22:46 - 00443528 _____ () C:\Users\Denča\Downloads\SoftonicDownloader_for_daemon-tools.exe
2014-05-08 11:50 - 2014-05-08 11:50 - 00000000 ____D () C:\Users\Lubos\Desktop\[www.fisierulmeu.ro] SwitchBot V3.1 by Padmak
2014-05-08 09:39 - 2013-12-28 23:09 - 00003946 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-08 09:39 - 2013-12-28 23:09 - 00003694 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-08 08:55 - 2014-05-04 09:10 - 00003120 _____ () C:\Windows\System32\Tasks\Advanced System Protector_startup
2014-05-08 08:54 - 2014-03-23 14:17 - 00000368 _____ () C:\Windows\Tasks\PC SpeedUp Service Deactivator.job
2014-05-08 08:40 - 2014-01-01 21:09 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\Seznam.cz
2014-05-07 09:12 - 2014-05-04 14:09 - 00000000 ____D () C:\Users\Lubos\Desktop\Last-World
2014-05-07 08:15 - 2013-12-28 20:07 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-05-06 22:11 - 2014-05-06 22:11 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\QuickScan
2014-05-06 22:08 - 2013-12-28 22:50 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\newnext.me
2014-05-06 22:06 - 2009-07-14 07:08 - 00032540 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-05-06 22:02 - 2014-01-05 22:59 - 00000000 ____D () C:\Users\Denča\AppData\Roaming\uTorrent
2014-05-06 18:54 - 2014-01-15 18:06 - 00000896 __RSH () C:\Users\Denča\ntuser.pol
2014-05-06 18:54 - 2013-12-28 22:26 - 00000000 ____D () C:\Users\Denča
2014-05-06 13:24 - 2014-05-06 13:21 - 00000000 ____D () C:\Users\Lubos\Desktop\Switch Bot
2014-05-05 13:35 - 2014-05-05 13:31 - 00000000 ____D () C:\Users\Lubos\Desktop\Tkz 1.2.11
2014-05-03 16:13 - 2014-01-03 17:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2014-05-03 16:13 - 2014-01-03 17:27 - 00000000 ____D () C:\Hry
2014-05-03 15:48 - 2014-02-20 16:20 - 00000000 ____D () C:\Users\Lubos\AppData\Local\Razer
2014-05-03 15:48 - 2014-02-20 16:17 - 00000000 ____D () C:\ProgramData\Razer
2014-05-03 15:43 - 2013-12-28 21:05 - 00000000 ____D () C:\ProgramData\ProductData
2014-05-01 15:00 - 2014-01-15 22:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2014-05-01 14:48 - 2014-05-01 14:47 - 20155712 _____ (Gameforge ) C:\Users\Lubos\Downloads\Metin2_GameforgeLiveSetup.exe
2014-05-01 14:48 - 2014-01-08 01:59 - 00000000 ____D () C:\Users\Lubos\Downloads\Gameforge Live
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\IObit Apps Toolbar
2014-04-30 17:00 - 2014-04-30 17:00 - 00000000 ____D () C:\Program Files (x86)\Application Updater
2014-04-29 20:54 - 2014-04-29 20:53 - 00006144 ___SH () C:\Users\Karel\Downloads\Thumbs.db
2014-04-29 13:42 - 2013-12-29 15:45 - 00000000 ____D () C:\Users\Karel\AppData\Roaming\Seznam.cz
2014-04-29 13:37 - 2013-12-29 20:53 - 00000000 ____D () C:\Users\Karel\AppData\Roaming\newnext.me
2014-04-29 12:14 - 2014-01-24 10:37 - 00000896 __RSH () C:\Users\Karel\ntuser.pol
2014-04-29 12:14 - 2013-12-28 19:58 - 00000000 ____D () C:\Users\Karel
2014-04-29 11:37 - 2013-12-28 23:09 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-29 11:37 - 2013-12-28 23:09 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-29 11:37 - 2013-12-28 23:09 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-28 22:56 - 2013-12-29 15:55 - 00000000 ____D () C:\Users\Karel\AppData\Roaming\uTorrent
2014-04-28 22:25 - 2009-07-14 17:18 - 00668866 _____ () C:\Windows\system32\perfh005.dat
2014-04-28 22:25 - 2009-07-14 17:18 - 00141526 _____ () C:\Windows\system32\perfc005.dat
2014-04-28 22:25 - 2009-07-14 07:13 - 01584554 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieUserList
2014-04-28 16:51 - 2014-04-28 16:51 - 00000000 __SHD () C:\Users\Denča\AppData\Local\EmieSiteList
2014-04-28 15:18 - 2014-04-18 13:57 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2014-04-28 13:54 - 2014-04-28 12:53 - 2872613677 _____ () C:\Users\Karel\Downloads\Call of Duty 2 Modern Warfare 2.rar
2014-04-28 12:52 - 2014-04-28 12:52 - 00034738 _____ () C:\Users\Karel\Downloads\[CzT]Call_of_Duty_Modern_Warfare_2_Multiplayer_.torrent
2014-04-28 11:58 - 2014-04-28 11:58 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-23 18:54 - 2014-03-16 22:28 - 00000000 ____D () C:\Users\Denča\Desktop\World of Warcraft
2014-04-20 23:44 - 2014-04-20 23:17 - 00000000 ____D () C:\Program Files (x86)\Aureria Classic
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieUserList
2014-04-20 23:24 - 2014-04-20 23:24 - 00000000 __SHD () C:\Users\Lubos\AppData\Local\EmieSiteList
2014-04-20 23:20 - 2014-04-20 23:20 - 00001086 _____ () C:\Users\Public\Desktop\Aureria Classic.lnk
2014-04-20 23:20 - 2014-04-20 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aureria Classic
2014-04-20 22:19 - 2014-01-01 21:09 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\IObit
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieUserList
2014-04-20 10:01 - 2014-04-20 10:01 - 00000000 __SHD () C:\Users\Karel\AppData\Local\EmieSiteList
2014-04-20 09:56 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-04-18 19:36 - 2014-04-18 19:33 - 00000000 ____D () C:\Users\Karel\Downloads\Devils.Due.2014.BRRip.XviD.CZ-TreZzoR
2014-04-18 19:32 - 2014-04-18 19:32 - 00017611 _____ () C:\Users\Karel\Downloads\[CzT]Devil_s_Due_2014_CZ_.torrent
2014-04-18 15:43 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-18 13:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-18 09:13 - 2014-04-18 09:13 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-18 09:13 - 2014-04-18 09:13 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-18 09:13 - 2014-04-18 09:13 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-18 09:13 - 2014-04-18 09:13 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-18 09:13 - 2014-04-18 09:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-18 09:07 - 2014-04-18 09:07 - 44150784 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-04-16 20:07 - 2014-04-16 20:07 - 00000981 _____ () C:\Users\Lubos\Desktop\Steam.lnk
2014-04-15 19:53 - 2014-05-03 16:06 - 00000000 ___RD () C:\Users\Lubos\Desktop\Unknown - World-Alfa Client
2014-04-15 12:34 - 2014-01-16 14:39 - 00154591 _____ () C:\Users\Lubos\Desktop\Genesys Publiç ج س ب ب ص أ.rar
2014-04-12 18:15 - 2013-12-28 22:28 - 00000000 ____D () C:\Users\Denča\Desktop\blbosti
2014-04-12 09:03 - 2014-01-16 12:46 - 00000000 ____D () C:\Users\Lubos\AppData\Local\Adobe
2014-04-11 15:01 - 2013-12-30 21:06 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-11 14:59 - 2013-12-30 21:06 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-09 09:24 - 2014-04-09 09:24 - 00035506 _____ () C:\Users\Lubos\Documents\cc_20140409_092403.reg
2014-04-09 09:22 - 2014-03-02 16:39 - 00000000 ____D () C:\Users\Lubos\AppData\Roaming\DAEMON Tools Lite
Some content of TEMP:
====================
C:\Users\Denča\AppData\Local\Temp\bitool.dll
C:\Users\Denča\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\Denča\AppData\Local\Temp\Mobogenie_Setup_2-1-35_517.exe
C:\Users\Denča\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
C:\Users\Lubos\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-04-29 15:26
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:149.04 GB) (Free:12.12 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Available physical RAM: 776.59 MB
Total physical RAM: 2047.24 MB
Percentage of memory in use: 62%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 853A853A)
Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Lubos\Desktop" je 5406 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
-
czechboy123
- Návštěvník
- Příspěvky: 17
- Registrován: 08 kvě 2014 20:36
-
Rudy
- Site Admin
- Příspěvky: 119398
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nevím si rady
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKLM-x32\...\Run: [mskirsuvSrv] => C:\Windows\SysWOW64\mskirsuv.vbe [583 2013-12-10] ()
C:\Windows\SysWOW64\mskirsuv.vbe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2014-05-08] (Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SearchSettings] => C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [1484608 2014-05-08] ()
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsemngr.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browsermngr.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IFEO\cltmngsvc.exe: [Debugger] tasklist.exe
IFEO\delta babylon.exe: [Debugger] tasklist.exe
IFEO\delta tb.exe: [Debugger] tasklist.exe
IFEO\delta2.exe: [Debugger] tasklist.exe
IFEO\deltainstaller.exe: [Debugger] tasklist.exe
IFEO\deltasetup.exe: [Debugger] tasklist.exe
IFEO\deltatb.exe: [Debugger] tasklist.exe
IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\iminentsetup.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
C:\Program Files\McAfee Security Scan
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
SearchScopes: HKCU - DefaultScope {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.com/websearch/ref=bit ... uid&query={searchTerms}
SearchScopes: HKCU - {E678D672-FA48-4309-996E-99AA51BBABAD} URL = http://www.mysearchresults.com/search?c ... earchTerms}
SearchScopes: HKCU - {F63866A0-F31D-4E39-9075-67456BE20234} URL = http://www.buenosearch.com?babsrc=ext_W ... earchTerms}
BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons64.dll (Spigot, Inc.)
C:\Users\Karel\AppData\Roaming\Slick Savings
BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll (Aztec Media Inc)
C:\Program Files (x86)\Linkey\IEExtension
BHO-x32: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons.dll (Spigot, Inc.)
BHO-x32: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
C:\Program Files (x86)\Ask.com
BHO-x32: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files (x86)\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
C:\Program Files (x86)\AskTBar
Toolbar: HKLM-x32 - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: default-search.net
CHR DefaultSearchURL: http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
CHR DefaultNewTabURL:
CHR Extension: (McAfee Security Scan+) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-02-26]
C:\Windows\svchost.com
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Denča\AppData\Local\Temp
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
czechboy123
- Návštěvník
- Příspěvky: 17
- Registrován: 08 kvě 2014 20:36
-
czechboy123
- Návštěvník
- Příspěvky: 17
- Registrován: 08 kvě 2014 20:36
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 08-05-2014 02
Ran by Lubos at 2014-05-08 22:53:42 Run:1
Running from C:\Users\Lubos\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [mskirsuvSrv] => C:\Windows\SysWOW64\mskirsuv.vbe [583 2013-12-10] ()
C:\Windows\SysWOW64\mskirsuv.vbe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2014-05-08] (Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SearchSettings] => C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [1484608 2014-05-08] ()
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsemngr.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browsermngr.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IFEO\cltmngsvc.exe: [Debugger] tasklist.exe
IFEO\delta babylon.exe: [Debugger] tasklist.exe
IFEO\delta tb.exe: [Debugger] tasklist.exe
IFEO\delta2.exe: [Debugger] tasklist.exe
IFEO\deltainstaller.exe: [Debugger] tasklist.exe
IFEO\deltasetup.exe: [Debugger] tasklist.exe
IFEO\deltatb.exe: [Debugger] tasklist.exe
IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\iminentsetup.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
C:\Program Files\McAfee Security Scan
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
SearchScopes: HKCU - DefaultScope {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.com/websearch/ref=bit ... uid&query={searchTerms}
SearchScopes: HKCU - {E678D672-FA48-4309-996E-99AA51BBABAD} URL = http://www.mysearchresults.com/search?c ... earchTerms}
SearchScopes: HKCU - {F63866A0-F31D-4E39-9075-67456BE20234} URL = http://www.buenosearch.com?babsrc=ext_W ... =123841&q={searchTerms}
BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons64.dll (Spigot, Inc.)
C:\Users\Karel\AppData\Roaming\Slick Savings
BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll (Aztec Media Inc)
C:\Program Files (x86)\Linkey\IEExtension
BHO-x32: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons.dll (Spigot, Inc.)
BHO-x32: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
C:\Program Files (x86)\Ask.com
BHO-x32: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files (x86)\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
C:\Program Files (x86)\AskTBar
Toolbar: HKLM-x32 - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: default-search.net
CHR DefaultSearchURL: http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
CHR DefaultNewTabURL:
CHR Extension: (McAfee Security Scan+) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-02-26]
C:\Windows\svchost.com
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Denča\AppData\Local\Temp
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
End
*****************
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mskirsuvSrv => Value deleted successfully.
C:\Windows\SysWOW64\mskirsuv.vbe => Moved successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SearchSettings => Value deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bitguard.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bprotect.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bpsvc.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browsemngr.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browserdefender.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browsermngr.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browserprotect.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browsersafeguard.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bundlesweetimsetup.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\cltmngsvc.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\delta babylon.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\delta tb.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\delta2.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\deltainstaller.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\deltasetup.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\deltatb.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\deltatb_2501-c733154b.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\dprotectsvc.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\iminentsetup.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\jumpflip => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\protectedsearch.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\rjatydimofu.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchinstaller.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchprotection.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchprotector.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchsettings.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchsettings64.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\snapdo.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst32.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst64.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\sweetimsetup.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\tbdelta.exetoolbar783881609.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\umbrella.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\utiljumpflip.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\volaro => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\vonteera => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\websteroids.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\websteroidsservice.exe => Key deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk => Moved successfully.
C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe => Moved successfully.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk" => File/Directory not found.
C:\Program Files\McAfee Security Scan => Moved successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} => Key deleted successfully.
HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E678D672-FA48-4309-996E-99AA51BBABAD} => Key deleted successfully.
HKCR\CLSID\{E678D672-FA48-4309-996E-99AA51BBABAD} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F63866A0-F31D-4E39-9075-67456BE20234} => Key deleted successfully.
HKCR\CLSID\{F63866A0-F31D-4E39-9075-67456BE20234} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} => Key deleted successfully.
HKCR\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} => Key deleted successfully.
C:\Users\Karel\AppData\Roaming\Slick Savings => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} => Key deleted successfully.
HKCR\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} => Key deleted successfully.
C:\Program Files (x86)\Linkey\IEExtension => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key deleted successfully.
C:\Program Files (x86)\Ask.com => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063DB1-4EC0-403e-8DD8-394C54984B2C} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{FE063DB1-4EC0-403e-8DD8-394C54984B2C} => Key deleted successfully.
C:\Program Files (x86)\AskTBar => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} => Value deleted successfully.
HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{FE063DB9-4EC0-403E-8DD8-394C54984B2C} => Value deleted successfully.
HKCR\CLSID\{FE063DB9-4EC0-403E-8DD8-394C54984B2C} => Key not found.
HKLM\Software\MozillaPlugins\FF Plugin: @microsoft.com/GENUINE - disabled No File => Key not found.
"FF Plugin: @microsoft.com/GENUINE - disabled No File" => not found.
HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File => Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
CHR DefaultSearchKeyword: ask.com ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchProvider: default-search.net ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchURL: http://www.default-search.net/search?si ... &src=ds&p={searchTerms} ==> The Chrome "Settings" can be used to fix the entry.
C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh => Moved successfully.
C:\Windows\svchost.com => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Users\Denča\AppData\Local\Temp => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job not found.
The system needed a reboot.
==== End of Fixlog ====
Ran by Lubos at 2014-05-08 22:53:42 Run:1
Running from C:\Users\Lubos\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [mskirsuvSrv] => C:\Windows\SysWOW64\mskirsuv.vbe [583 2013-12-10] ()
C:\Windows\SysWOW64\mskirsuv.vbe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2014-05-08] (Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SearchSettings] => C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [1484608 2014-05-08] ()
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsemngr.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browsermngr.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IFEO\cltmngsvc.exe: [Debugger] tasklist.exe
IFEO\delta babylon.exe: [Debugger] tasklist.exe
IFEO\delta tb.exe: [Debugger] tasklist.exe
IFEO\delta2.exe: [Debugger] tasklist.exe
IFEO\deltainstaller.exe: [Debugger] tasklist.exe
IFEO\deltasetup.exe: [Debugger] tasklist.exe
IFEO\deltatb.exe: [Debugger] tasklist.exe
IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\iminentsetup.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
C:\Program Files\McAfee Security Scan
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
SearchScopes: HKCU - DefaultScope {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.com/websearch/ref=bit ... uid&query={searchTerms}
SearchScopes: HKCU - {E678D672-FA48-4309-996E-99AA51BBABAD} URL = http://www.mysearchresults.com/search?c ... earchTerms}
SearchScopes: HKCU - {F63866A0-F31D-4E39-9075-67456BE20234} URL = http://www.buenosearch.com?babsrc=ext_W ... =123841&q={searchTerms}
BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons64.dll (Spigot, Inc.)
C:\Users\Karel\AppData\Roaming\Slick Savings
BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll (Aztec Media Inc)
C:\Program Files (x86)\Linkey\IEExtension
BHO-x32: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Karel\AppData\Roaming\Slick Savings\Coupons.dll (Spigot, Inc.)
BHO-x32: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
C:\Program Files (x86)\Ask.com
BHO-x32: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files (x86)\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
C:\Program Files (x86)\AskTBar
Toolbar: HKLM-x32 - IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE.dll (Spigot, Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: default-search.net
CHR DefaultSearchURL: http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
CHR DefaultNewTabURL:
CHR Extension: (McAfee Security Scan+) - C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-02-26]
C:\Windows\svchost.com
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Denča\AppData\Local\Temp
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
End
*****************
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mskirsuvSrv => Value deleted successfully.
C:\Windows\SysWOW64\mskirsuv.vbe => Moved successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SearchSettings => Value deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bitguard.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bprotect.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bpsvc.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browsemngr.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browserdefender.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browsermngr.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browserprotect.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browsersafeguard.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bundlesweetimsetup.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\cltmngsvc.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\delta babylon.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\delta tb.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\delta2.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\deltainstaller.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\deltasetup.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\deltatb.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\deltatb_2501-c733154b.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\dprotectsvc.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\iminentsetup.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\jumpflip => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\protectedsearch.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\rjatydimofu.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchinstaller.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchprotection.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchprotector.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchsettings.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchsettings64.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\snapdo.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst32.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst64.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\sweetimsetup.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\tbdelta.exetoolbar783881609.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\umbrella.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\utiljumpflip.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\volaro => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\vonteera => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\websteroids.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\websteroidsservice.exe => Key deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk => Moved successfully.
C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe => Moved successfully.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk" => File/Directory not found.
C:\Program Files\McAfee Security Scan => Moved successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} => Key deleted successfully.
HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E678D672-FA48-4309-996E-99AA51BBABAD} => Key deleted successfully.
HKCR\CLSID\{E678D672-FA48-4309-996E-99AA51BBABAD} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F63866A0-F31D-4E39-9075-67456BE20234} => Key deleted successfully.
HKCR\CLSID\{F63866A0-F31D-4E39-9075-67456BE20234} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} => Key deleted successfully.
HKCR\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} => Key deleted successfully.
C:\Users\Karel\AppData\Roaming\Slick Savings => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} => Key deleted successfully.
HKCR\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} => Key deleted successfully.
C:\Program Files (x86)\Linkey\IEExtension => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key deleted successfully.
C:\Program Files (x86)\Ask.com => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063DB1-4EC0-403e-8DD8-394C54984B2C} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{FE063DB1-4EC0-403e-8DD8-394C54984B2C} => Key deleted successfully.
C:\Program Files (x86)\AskTBar => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} => Value deleted successfully.
HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{FE063DB9-4EC0-403E-8DD8-394C54984B2C} => Value deleted successfully.
HKCR\CLSID\{FE063DB9-4EC0-403E-8DD8-394C54984B2C} => Key not found.
HKLM\Software\MozillaPlugins\FF Plugin: @microsoft.com/GENUINE - disabled No File => Key not found.
"FF Plugin: @microsoft.com/GENUINE - disabled No File" => not found.
HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File => Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
CHR DefaultSearchKeyword: ask.com ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchProvider: default-search.net ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchURL: http://www.default-search.net/search?si ... &src=ds&p={searchTerms} ==> The Chrome "Settings" can be used to fix the entry.
C:\Users\Lubos\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh => Moved successfully.
C:\Windows\svchost.com => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Users\Denča\AppData\Local\Temp => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job not found.
The system needed a reboot.
==== End of Fixlog ====
-
Rudy
- Site Admin
- Příspěvky: 119398
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nevím si rady
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
czechboy123
- Návštěvník
- Příspěvky: 17
- Registrován: 08 kvě 2014 20:36
Změna nenastala.Vysvětlím vám to ještě jednou.. Pokaždé když kliknu třeba na prohlížeč,nějákou hru atd. tak mi to vyhodí tu tabulku Řízení uživatelských učtů ten "schvost.com" ,ale to ani nemusím na nic klikat a ta tabulka vyskočí aj tak co chvíly. A druhý problém je že jak je ta šipka dole na liště kliknu na ní a jsou tam jenom 2 procesy což je Team_Viewer a Nero, ale není tam třeba ten realtek hd studio nebo lightscribe control panel nebo již zmiňovaný AMD CCC. A při zapnutí PC vyskočí několik Errorů že to nemůže najít tamten soubour blabla.
-
Rudy
- Site Admin
- Příspěvky: 119398
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nevím si rady
OK. Dejte log ComboFix:
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se
jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine
aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,
pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k
nezadoucim kolizim s rezidentem antispyware.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
czechboy123
- Návštěvník
- Příspěvky: 17
- Registrován: 08 kvě 2014 20:36
Re: Nevím si rady
Děkuji že jse ještě snažíte o vyřešení mého problému.
Tady je ten log:
ComboFix 14-05-07.03 - Lubos 10.05.2014 9:32.1.2 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.2047.1156 [GMT 2:00]
Spuštěný z: c:\users\Lubos\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\MediaViewV1
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\chrome.manifest
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\chrome\content\ffMediaViewV1alpha51.js
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\chrome\content\ffMediaViewV1alpha51ffaction.js
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\chrome\content\icons\default\MediaViewV1alpha51_32.png
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\chrome\content\icons\Thumbs.db
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\chrome\content\overlay.xul
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\install.rdf
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ch\MediaViewV1alpha51.crx
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\uninstall.exe
c:\program files (x86)\Seznam.cz\distribution\szninstall.exe
c:\users\Lubos\AppData\Local\MSGBOX.EXE
c:\users\Lubos\AppData\Roaming\DefaultTab\DefaultTab
c:\users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll
c:\users\Lubos\AppData\Roaming\Seznam.cz\szninstall.exe
c:\windows\svchost.com
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_PCSUService
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-04-10 do 2014-05-10 )))))))))))))))))))))))))))))))
.
.
2014-05-10 07:47 . 2014-05-10 07:47 -------- d-----w- c:\users\Karel\AppData\Local\temp
2014-05-10 07:14 . 2014-05-10 07:23 -------- d-----w- c:\windows\SysWow64\pack
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\miles
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\mark
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\screenshot
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\upload
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\lib
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\icon
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\hshield
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\BGM
2014-05-09 22:16 . 2014-05-09 22:16 -------- d-----w- c:\users\Lubos\AppData\Local\morpheus
2014-05-09 21:28 . 2014-05-09 21:28 53760 ----a-w- c:\windows\system32\AxInterop.WMPLib.dll
2014-05-09 21:28 . 2014-05-09 21:28 331264 ----a-w- c:\windows\system32\Interop.WMPLib.dll
2014-05-09 21:28 . 2014-05-09 21:28 3757568 ----a-w- c:\windows\system32\SpaceWorldLauncher.exe
2014-05-09 06:49 . 2014-04-17 03:31 10651704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EF5E15E4-1946-4DFE-9704-13B1E0E8E7E3}\mpengine.dll
2014-05-08 21:17 . 2014-05-08 21:17 -------- d-----w- c:\windows\SysWow64\errorlogs
2014-05-08 19:56 . 2014-05-08 20:53 -------- d-----w- C:\FRST
2014-05-08 16:46 . 2014-05-08 16:46 -------- d-----w- c:\users\Luboš
2014-05-08 12:56 . 2014-05-08 12:56 -------- d-----w- c:\users\Lubos\AppData\Roaming\TeamViewer
2014-05-08 09:53 . 2014-05-10 07:49 0 ----a-w- c:\windows\directx.sys
2014-05-06 20:11 . 2014-05-06 20:11 -------- d-----w- c:\users\Denča\AppData\Roaming\QuickScan
2014-05-05 05:42 . 2014-05-10 07:47 -------- d-----w- c:\programdata\systemk
2014-04-30 15:00 . 2014-04-30 15:00 -------- d-----w- c:\program files (x86)\Application Updater
2014-04-30 15:00 . 2014-04-30 15:00 -------- d-----w- c:\program files (x86)\IObit Apps Toolbar
2014-04-30 14:51 . 2014-04-30 14:51 -------- d-----w- c:\users\Lubos\AppData\Local\Diagnostics
2014-04-28 14:51 . 2014-04-28 14:51 -------- d-sh--w- c:\users\Denča\AppData\Local\EmieUserList
2014-04-28 14:51 . 2014-04-28 14:51 -------- d-sh--w- c:\users\Denča\AppData\Local\EmieSiteList
2014-04-28 09:58 . 2014-04-28 09:58 -------- d-s---w- c:\windows\system32\CompatTel
2014-04-28 09:58 . 2014-04-28 09:58 465408 ----a-w- c:\windows\system32\aepdu.dll
2014-04-28 09:58 . 2014-04-28 09:58 424448 ----a-w- c:\windows\system32\aeinv.dll
2014-04-20 21:24 . 2014-04-20 21:24 -------- d-sh--w- c:\users\Lubos\AppData\Local\EmieUserList
2014-04-20 21:24 . 2014-04-20 21:24 -------- d-sh--w- c:\users\Lubos\AppData\Local\EmieSiteList
2014-04-20 21:17 . 2014-04-20 21:44 -------- d-----w- c:\program files (x86)\Aureria Classic
2014-04-20 08:01 . 2014-04-20 08:01 -------- d-sh--w- c:\users\Karel\AppData\Local\EmieUserList
2014-04-20 08:01 . 2014-04-20 08:01 -------- d-sh--w- c:\users\Karel\AppData\Local\EmieSiteList
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-29 09:37 . 2013-12-28 21:09 70832 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-04-29 09:37 . 2013-12-28 21:09 692400 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-04-11 12:59 . 2013-12-30 19:06 90655440 ----a-w- c:\windows\system32\MRT.exe
2014-03-31 07:35 . 2013-12-28 18:16 270496 ------w- c:\windows\system32\MpSigStub.exe
2014-03-22 08:12 . 2014-03-22 08:12 61120 ----a-w- c:\windows\system32\drivers\wStLib64.sys
2014-03-21 10:20 . 2014-03-21 10:20 624128 ----a-w- c:\windows\system32\qedit.dll
2014-03-21 10:20 . 2014-03-21 10:20 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2014-03-21 10:19 . 2014-03-21 10:19 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-03-21 10:18 . 2014-03-21 10:18 484864 ----a-w- c:\windows\system32\wer.dll
2014-03-21 10:18 . 2014-03-21 10:18 381440 ----a-w- c:\windows\SysWow64\wer.dll
2014-03-21 10:18 . 2014-03-21 10:18 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-03-21 10:18 . 2014-03-21 10:18 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2014-03-21 10:18 . 2014-03-21 10:18 48640 ----a-w- c:\windows\system32\wwanprotdim.dll
2014-03-21 10:18 . 2014-03-21 10:18 228864 ----a-w- c:\windows\system32\wwansvc.dll
2014-03-21 10:17 . 2014-03-21 10:17 87040 ----a-w- c:\windows\SysWow64\secproc_ssp_isv.dll
2014-03-21 10:17 . 2014-03-21 10:17 87040 ----a-w- c:\windows\SysWow64\secproc_ssp.dll
2014-03-21 10:17 . 2014-03-21 10:17 658432 ----a-w- c:\windows\system32\RMActivate_isv.exe
2014-03-21 10:17 . 2014-03-21 10:17 626176 ----a-w- c:\windows\system32\RMActivate.exe
2014-03-21 10:17 . 2014-03-21 10:17 594944 ----a-w- c:\windows\SysWow64\RMActivate_isv.exe
2014-03-21 10:17 . 2014-03-21 10:17 572416 ----a-w- c:\windows\SysWow64\RMActivate.exe
2014-03-21 10:17 . 2014-03-21 10:17 553984 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2014-03-21 10:17 . 2014-03-21 10:17 552960 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2014-03-21 10:17 . 2014-03-21 10:17 528384 ----a-w- c:\windows\system32\msdrm.dll
2014-03-21 10:17 . 2014-03-21 10:17 510976 ----a-w- c:\windows\SysWow64\RMActivate_ssp.exe
2014-03-21 10:17 . 2014-03-21 10:17 508928 ----a-w- c:\windows\SysWow64\RMActivate_ssp_isv.exe
2014-03-21 10:17 . 2014-03-21 10:17 488448 ----a-w- c:\windows\system32\secproc.dll
2014-03-21 10:17 . 2014-03-21 10:17 485888 ----a-w- c:\windows\system32\secproc_isv.dll
2014-03-21 10:17 . 2014-03-21 10:17 428032 ----a-w- c:\windows\SysWow64\secproc.dll
2014-03-21 10:17 . 2014-03-21 10:17 423936 ----a-w- c:\windows\SysWow64\secproc_isv.dll
2014-03-21 10:17 . 2014-03-21 10:17 390144 ----a-w- c:\windows\SysWow64\msdrm.dll
2014-03-21 10:17 . 2014-03-21 10:17 123392 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2014-03-21 10:17 . 2014-03-21 10:17 123392 ----a-w- c:\windows\system32\secproc_ssp.dll
2014-03-21 10:16 . 2014-03-21 10:16 376768 ----a-w- c:\windows\system32\drivers\netio.sys
2014-03-21 10:16 . 2014-03-21 10:16 335360 ----a-w- c:\windows\system32\msieftp.dll
2014-03-21 10:16 . 2014-03-21 10:16 301568 ----a-w- c:\windows\SysWow64\msieftp.dll
2014-03-21 10:16 . 2014-03-21 10:16 14631424 ----a-w- c:\windows\system32\wmp.dll
2014-03-21 10:16 . 2014-03-21 10:16 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2014-03-21 10:16 . 2014-03-21 10:16 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2014-03-21 10:15 . 2014-03-21 10:15 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2014-03-21 10:15 . 2014-03-21 10:15 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2014-03-21 10:15 . 2014-03-21 10:15 197120 ----a-w- c:\windows\system32\credui.dll
2014-03-21 10:15 . 2014-03-21 10:15 1930752 ----a-w- c:\windows\system32\authui.dll
2014-03-21 10:15 . 2014-03-21 10:15 190464 ----a-w- c:\windows\system32\SmartcardCredentialProvider.dll
2014-03-21 10:15 . 2014-03-21 10:15 1796096 ----a-w- c:\windows\SysWow64\authui.dll
2014-03-21 10:15 . 2014-03-21 10:15 168960 ----a-w- c:\windows\SysWow64\credui.dll
2014-03-21 10:15 . 2014-03-21 10:15 152576 ----a-w- c:\windows\SysWow64\SmartcardCredentialProvider.dll
2014-03-21 10:14 . 2014-03-21 10:14 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2014-03-21 10:14 . 2014-03-21 10:14 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2014-03-21 10:14 . 2014-03-21 10:14 81920 ----a-w- c:\windows\SysWow64\davclnt.dll
2014-03-21 10:14 . 2014-03-21 10:14 259584 ----a-w- c:\windows\system32\WebClnt.dll
2014-03-21 10:14 . 2014-03-21 10:14 205824 ----a-w- c:\windows\SysWow64\WebClnt.dll
2014-03-21 10:14 . 2014-03-21 10:14 140800 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2014-03-21 10:14 . 2014-03-21 10:14 102400 ----a-w- c:\windows\system32\davclnt.dll
2014-03-21 10:14 . 2014-03-21 10:14 461312 ----a-w- c:\windows\system32\scavengeui.dll
2014-03-21 10:13 . 2014-03-21 10:13 62976 ----a-w- c:\windows\system32\TSWbPrxy.exe
2014-03-21 10:13 . 2014-03-21 10:13 57856 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys
2014-03-21 10:13 . 2014-03-21 10:13 5773824 ----a-w- c:\windows\system32\mstscax.dll
2014-03-21 10:13 . 2014-03-21 10:13 54272 ----a-w- c:\windows\system32\MsRdpWebAccess.dll
2014-03-21 10:13 . 2014-03-21 10:13 4916224 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-03-21 10:13 . 2014-03-21 10:13 46592 ----a-w- c:\windows\SysWow64\MsRdpWebAccess.dll
2014-03-21 10:13 . 2014-03-21 10:13 44032 ----a-w- c:\windows\system32\tsgqec.dll
2014-03-21 10:13 . 2014-03-21 10:13 43520 ----a-w- c:\windows\system32\TsUsbGDCoInstaller.dll
2014-03-21 10:13 . 2014-03-21 10:13 384000 ----a-w- c:\windows\system32\wksprt.exe
2014-03-21 10:13 . 2014-03-21 10:13 37376 ----a-w- c:\windows\SysWow64\tsgqec.dll
2014-03-21 10:13 . 2014-03-21 10:13 322560 ----a-w- c:\windows\system32\aaclient.dll
2014-03-21 10:13 . 2014-03-21 10:13 3174912 ----a-w- c:\windows\system32\rdpcorets.dll
2014-03-21 10:13 . 2014-03-21 10:13 269312 ----a-w- c:\windows\SysWow64\aaclient.dll
2014-03-21 10:13 . 2014-03-21 10:13 243200 ----a-w- c:\windows\system32\rdpudd.dll
2014-03-21 10:13 . 2014-03-21 10:13 228864 ----a-w- c:\windows\system32\rdpendp_winip.dll
2014-03-21 10:13 . 2014-03-21 10:13 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2014-03-21 10:13 . 2014-03-21 10:13 192000 ----a-w- c:\windows\SysWow64\rdpendp_winip.dll
2014-03-21 10:13 . 2014-03-21 10:13 18432 ----a-w- c:\windows\system32\wksprtPS.dll
2014-03-21 10:13 . 2014-03-21 10:13 16896 ----a-w- c:\windows\SysWow64\wksprtPS.dll
2014-03-21 10:13 . 2014-03-21 10:13 15360 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2014-03-21 10:13 . 2014-03-21 10:13 13312 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-03-21 10:13 . 2014-03-21 10:13 13312 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-03-21 10:13 . 2014-03-21 10:13 1123840 ----a-w- c:\windows\system32\mstsc.exe
2014-03-21 10:13 . 2014-03-21 10:13 1048064 ----a-w- c:\windows\SysWow64\mstsc.exe
2014-03-21 10:12 . 2014-03-21 10:12 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2014-03-21 10:06 . 2014-03-21 10:06 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2014-03-21 10:06 . 2014-03-21 10:06 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2014-03-21 10:06 . 2014-03-21 10:06 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2014-03-21 10:06 . 2014-03-21 10:06 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2014-03-21 10:06 . 2014-03-21 10:06 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2014-03-21 10:06 . 2014-03-21 10:06 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2014-03-21 09:54 . 2014-03-21 09:54 55296 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2014-03-21 09:54 . 2014-03-21 09:54 44032 ----a-w- c:\windows\SysWow64\dhcpcsvc6.dll
2014-03-21 09:54 . 2014-03-21 09:54 226816 ----a-w- c:\windows\system32\dhcpcore6.dll
2014-03-21 09:54 . 2014-03-21 09:54 193536 ----a-w- c:\windows\SysWow64\dhcpcore6.dll
2014-03-21 09:53 . 2014-03-21 09:53 70656 ----a-w- c:\windows\system32\nlaapi.dll
2014-03-21 09:53 . 2014-03-21 09:53 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
2014-03-21 09:53 . 2014-03-21 09:53 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll
2014-03-21 09:53 . 2014-03-21 09:53 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2014-03-21 09:53 . 2014-03-21 09:53 303104 ----a-w- c:\windows\system32\nlasvc.dll
2014-03-21 09:53 . 2014-03-21 09:53 246272 ----a-w- c:\windows\system32\netcorehc.dll
2014-03-21 09:53 . 2014-03-21 09:53 216576 ----a-w- c:\windows\system32\ncsi.dll
2014-03-21 09:53 . 2014-03-21 09:53 18944 ----a-w- c:\windows\SysWow64\netevent.dll
2014-03-21 09:53 . 2014-03-21 09:53 18944 ----a-w- c:\windows\system32\netevent.dll
2014-03-21 09:53 . 2014-03-21 09:53 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
2014-03-21 09:53 . 2014-03-21 09:53 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-01 19:38 1720976 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-01 19:38 1720976 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-01 19:38 1720976 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NextLive"="c:\users\Lubos\AppData\Roaming\newnext.me\nengine.dll" [2013-11-14 1283584]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2014-05-10 2404864]
"SpeedUpMyComputer"="c:\program files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe" [2014-05-08 2096248]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2014-05-08 3716824]
"PCSpeedUp"="c:\program files (x86)\Zrychleni Pocitace\PCSUNotifier.exe" [2014-05-08 319280]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2014-05-10 807680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 DefaultTabUpdate;DefaultTabUpdate;c:\users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe;c:\users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R2 NAUpdate;NAUpdate;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
R2 ProtectMonitor;Protect Monitor;c:\program files (x86)\PCData\StartHelp.exe;c:\program files (x86)\PCData\StartHelp.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 SystemkService;Systemk Service;c:\program files (x86)\Settings Manager\systemk\SystemkService.exe;c:\program files (x86)\Settings Manager\systemk\SystemkService.exe [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.8.141\McCHSvc.exe;c:\program files\McAfee Security Scan\3.8.141\McCHSvc.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 OSFMount;OSFMount;c:\program files (x86)\Counter-Strike Global Offensive\image\x64\OSFMount.sys;c:\program files (x86)\Counter-Strike Global Offensive\image\x64\OSFMount.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys;c:\windows\SYSNATIVE\Drivers\SmartDefragDriver.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 F06DEFF2-5B9C-490D-910F-35D3A91196222;F06DEFF2-5B9C-490D-910F-35D3A91196222;c:\program files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg;c:\program files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg [x]
S1 wStLib64;wStLib64;c:\windows\system32\drivers\wStLib64.sys;c:\windows\SYSNATIVE\drivers\wStLib64.sys [x]
S2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 Application Updater;Application Updater;c:\program files (x86)\Application Updater\ApplicationUpdater.exe;c:\program files (x86)\Application Updater\ApplicationUpdater.exe [x]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S2 Update Surftastic;Update Surftastic;c:\program files (x86)\Surftastic\updateSurftastic.exe;c:\program files (x86)\Surftastic\updateSurftastic.exe [x]
S2 Util Surftastic;Util Surftastic;c:\program files (x86)\Surftastic\bin\utilSurftastic.exe;c:\program files (x86)\Surftastic\bin\utilSurftastic.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2014-05-08 09:52 493344 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-05-08 09:53 1119560 ----a-w- c:\program files (x86)\Google\Chrome\Application\34.0.1847.131\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-05-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-28 09:37]
.
2014-05-09 c:\windows\Tasks\PC SpeedUp Service Deactivator.job
- c:\program files (x86)\Zrychleni Pocitace\PCSUSD.exe [2014-03-23 12:51]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-03-21 15:28 2471744 ----a-w- c:\program files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{03EB0E9C-7A91-4381-A220-9B52B641CDB1}"= "c:\program files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE64.dll" [2014-04-25 1997120]
.
[HKEY_CLASSES_ROOT\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-01 19:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-01 19:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-01 19:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-12-28 13662936]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/?clid=13415
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~1\Office15\ONBttnIE.dll/105
TCP: DhcpNameServer = 213.46.172.37 213.46.172.46
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
.
.
------- Asociace souborů -------
.
exefile=c:\windows\svchost.com "%1" %*
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{03EB0E9C-7A91-4381-A220-9B52B641CDB1} - (no file)
URLSearchHooks-{9CB65206-89C4-402c-BA80-02D8C59F9B1D} - c:\program files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
BHO-{7F6AFBF1-E065-4627-A2FD-810366367D01} - c:\users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll
Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
Toolbar-10 - (no file)
Wow6432Node-HKCU-Run-cz.seznam.software.autoupdate - c:\users\Lubos\AppData\Roaming\Seznam.cz\szninstall.exe
Wow6432Node-HKLM-Run-seznam-listicka-distribuce - c:\program files (x86)\Seznam.cz\distribution\szninstall.exe
Wow6432Node-HKLM-Run-ApnUpdater - c:\program files (x86)\Ask.com\Updater\Updater.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-10 - (no file)
AddRemove-DefaultTab - c:\users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\uninstalldt.exe
AddRemove-MediaViewV1alpha51 - c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\uninstall.exe
AddRemove-{3A787631-66A2-4634-B928-A37E73B58FB6} - c:\users\Karel\AppData\Roaming\Slick Savings\uninstall.exe
AddRemove-SeznamInstall - c:\users\Lubos\AppData\Roaming\Seznam.cz\szninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\F06DEFF2-5B9C-490D-910F-35D3A91196222]
"ImagePath"="\??\c:\program files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\TeamViewer\Version8\TeamViewer.exe
c:\users\Lubos\AppData\Local\Temp\3582-490\Monitor.exe
.
**************************************************************************
.
Celkový čas: 2014-05-10 09:55:24 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-05-10 07:55
.
Před spuštěním: Volných bajtů: 10 626 654 208
Po spuštění: Volných bajtů: 18 905 382 912
.
- - End Of File - - 28816BD9CD9D468F1C0D647CE80D83C0
A36C5E4F47E84449FF07ED3517B43A31
Tady je ten log:
ComboFix 14-05-07.03 - Lubos 10.05.2014 9:32.1.2 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.2047.1156 [GMT 2:00]
Spuštěný z: c:\users\Lubos\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\MediaViewV1
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\chrome.manifest
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\chrome\content\ffMediaViewV1alpha51.js
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\chrome\content\ffMediaViewV1alpha51ffaction.js
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\chrome\content\icons\default\MediaViewV1alpha51_32.png
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\chrome\content\icons\Thumbs.db
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\chrome\content\overlay.xul
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ff\install.rdf
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\ch\MediaViewV1alpha51.crx
c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\uninstall.exe
c:\program files (x86)\Seznam.cz\distribution\szninstall.exe
c:\users\Lubos\AppData\Local\MSGBOX.EXE
c:\users\Lubos\AppData\Roaming\DefaultTab\DefaultTab
c:\users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll
c:\users\Lubos\AppData\Roaming\Seznam.cz\szninstall.exe
c:\windows\svchost.com
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_PCSUService
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-04-10 do 2014-05-10 )))))))))))))))))))))))))))))))
.
.
2014-05-10 07:47 . 2014-05-10 07:47 -------- d-----w- c:\users\Karel\AppData\Local\temp
2014-05-10 07:14 . 2014-05-10 07:23 -------- d-----w- c:\windows\SysWow64\pack
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\miles
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\mark
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\screenshot
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\upload
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\lib
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\icon
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\hshield
2014-05-10 07:14 . 2014-05-10 07:14 -------- d-----w- c:\windows\SysWow64\BGM
2014-05-09 22:16 . 2014-05-09 22:16 -------- d-----w- c:\users\Lubos\AppData\Local\morpheus
2014-05-09 21:28 . 2014-05-09 21:28 53760 ----a-w- c:\windows\system32\AxInterop.WMPLib.dll
2014-05-09 21:28 . 2014-05-09 21:28 331264 ----a-w- c:\windows\system32\Interop.WMPLib.dll
2014-05-09 21:28 . 2014-05-09 21:28 3757568 ----a-w- c:\windows\system32\SpaceWorldLauncher.exe
2014-05-09 06:49 . 2014-04-17 03:31 10651704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EF5E15E4-1946-4DFE-9704-13B1E0E8E7E3}\mpengine.dll
2014-05-08 21:17 . 2014-05-08 21:17 -------- d-----w- c:\windows\SysWow64\errorlogs
2014-05-08 19:56 . 2014-05-08 20:53 -------- d-----w- C:\FRST
2014-05-08 16:46 . 2014-05-08 16:46 -------- d-----w- c:\users\Luboš
2014-05-08 12:56 . 2014-05-08 12:56 -------- d-----w- c:\users\Lubos\AppData\Roaming\TeamViewer
2014-05-08 09:53 . 2014-05-10 07:49 0 ----a-w- c:\windows\directx.sys
2014-05-06 20:11 . 2014-05-06 20:11 -------- d-----w- c:\users\Denča\AppData\Roaming\QuickScan
2014-05-05 05:42 . 2014-05-10 07:47 -------- d-----w- c:\programdata\systemk
2014-04-30 15:00 . 2014-04-30 15:00 -------- d-----w- c:\program files (x86)\Application Updater
2014-04-30 15:00 . 2014-04-30 15:00 -------- d-----w- c:\program files (x86)\IObit Apps Toolbar
2014-04-30 14:51 . 2014-04-30 14:51 -------- d-----w- c:\users\Lubos\AppData\Local\Diagnostics
2014-04-28 14:51 . 2014-04-28 14:51 -------- d-sh--w- c:\users\Denča\AppData\Local\EmieUserList
2014-04-28 14:51 . 2014-04-28 14:51 -------- d-sh--w- c:\users\Denča\AppData\Local\EmieSiteList
2014-04-28 09:58 . 2014-04-28 09:58 -------- d-s---w- c:\windows\system32\CompatTel
2014-04-28 09:58 . 2014-04-28 09:58 465408 ----a-w- c:\windows\system32\aepdu.dll
2014-04-28 09:58 . 2014-04-28 09:58 424448 ----a-w- c:\windows\system32\aeinv.dll
2014-04-20 21:24 . 2014-04-20 21:24 -------- d-sh--w- c:\users\Lubos\AppData\Local\EmieUserList
2014-04-20 21:24 . 2014-04-20 21:24 -------- d-sh--w- c:\users\Lubos\AppData\Local\EmieSiteList
2014-04-20 21:17 . 2014-04-20 21:44 -------- d-----w- c:\program files (x86)\Aureria Classic
2014-04-20 08:01 . 2014-04-20 08:01 -------- d-sh--w- c:\users\Karel\AppData\Local\EmieUserList
2014-04-20 08:01 . 2014-04-20 08:01 -------- d-sh--w- c:\users\Karel\AppData\Local\EmieSiteList
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-29 09:37 . 2013-12-28 21:09 70832 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-04-29 09:37 . 2013-12-28 21:09 692400 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-04-11 12:59 . 2013-12-30 19:06 90655440 ----a-w- c:\windows\system32\MRT.exe
2014-03-31 07:35 . 2013-12-28 18:16 270496 ------w- c:\windows\system32\MpSigStub.exe
2014-03-22 08:12 . 2014-03-22 08:12 61120 ----a-w- c:\windows\system32\drivers\wStLib64.sys
2014-03-21 10:20 . 2014-03-21 10:20 624128 ----a-w- c:\windows\system32\qedit.dll
2014-03-21 10:20 . 2014-03-21 10:20 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2014-03-21 10:19 . 2014-03-21 10:19 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-03-21 10:18 . 2014-03-21 10:18 484864 ----a-w- c:\windows\system32\wer.dll
2014-03-21 10:18 . 2014-03-21 10:18 381440 ----a-w- c:\windows\SysWow64\wer.dll
2014-03-21 10:18 . 2014-03-21 10:18 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-03-21 10:18 . 2014-03-21 10:18 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2014-03-21 10:18 . 2014-03-21 10:18 48640 ----a-w- c:\windows\system32\wwanprotdim.dll
2014-03-21 10:18 . 2014-03-21 10:18 228864 ----a-w- c:\windows\system32\wwansvc.dll
2014-03-21 10:17 . 2014-03-21 10:17 87040 ----a-w- c:\windows\SysWow64\secproc_ssp_isv.dll
2014-03-21 10:17 . 2014-03-21 10:17 87040 ----a-w- c:\windows\SysWow64\secproc_ssp.dll
2014-03-21 10:17 . 2014-03-21 10:17 658432 ----a-w- c:\windows\system32\RMActivate_isv.exe
2014-03-21 10:17 . 2014-03-21 10:17 626176 ----a-w- c:\windows\system32\RMActivate.exe
2014-03-21 10:17 . 2014-03-21 10:17 594944 ----a-w- c:\windows\SysWow64\RMActivate_isv.exe
2014-03-21 10:17 . 2014-03-21 10:17 572416 ----a-w- c:\windows\SysWow64\RMActivate.exe
2014-03-21 10:17 . 2014-03-21 10:17 553984 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2014-03-21 10:17 . 2014-03-21 10:17 552960 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2014-03-21 10:17 . 2014-03-21 10:17 528384 ----a-w- c:\windows\system32\msdrm.dll
2014-03-21 10:17 . 2014-03-21 10:17 510976 ----a-w- c:\windows\SysWow64\RMActivate_ssp.exe
2014-03-21 10:17 . 2014-03-21 10:17 508928 ----a-w- c:\windows\SysWow64\RMActivate_ssp_isv.exe
2014-03-21 10:17 . 2014-03-21 10:17 488448 ----a-w- c:\windows\system32\secproc.dll
2014-03-21 10:17 . 2014-03-21 10:17 485888 ----a-w- c:\windows\system32\secproc_isv.dll
2014-03-21 10:17 . 2014-03-21 10:17 428032 ----a-w- c:\windows\SysWow64\secproc.dll
2014-03-21 10:17 . 2014-03-21 10:17 423936 ----a-w- c:\windows\SysWow64\secproc_isv.dll
2014-03-21 10:17 . 2014-03-21 10:17 390144 ----a-w- c:\windows\SysWow64\msdrm.dll
2014-03-21 10:17 . 2014-03-21 10:17 123392 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2014-03-21 10:17 . 2014-03-21 10:17 123392 ----a-w- c:\windows\system32\secproc_ssp.dll
2014-03-21 10:16 . 2014-03-21 10:16 376768 ----a-w- c:\windows\system32\drivers\netio.sys
2014-03-21 10:16 . 2014-03-21 10:16 335360 ----a-w- c:\windows\system32\msieftp.dll
2014-03-21 10:16 . 2014-03-21 10:16 301568 ----a-w- c:\windows\SysWow64\msieftp.dll
2014-03-21 10:16 . 2014-03-21 10:16 14631424 ----a-w- c:\windows\system32\wmp.dll
2014-03-21 10:16 . 2014-03-21 10:16 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2014-03-21 10:16 . 2014-03-21 10:16 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2014-03-21 10:15 . 2014-03-21 10:15 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2014-03-21 10:15 . 2014-03-21 10:15 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2014-03-21 10:15 . 2014-03-21 10:15 197120 ----a-w- c:\windows\system32\credui.dll
2014-03-21 10:15 . 2014-03-21 10:15 1930752 ----a-w- c:\windows\system32\authui.dll
2014-03-21 10:15 . 2014-03-21 10:15 190464 ----a-w- c:\windows\system32\SmartcardCredentialProvider.dll
2014-03-21 10:15 . 2014-03-21 10:15 1796096 ----a-w- c:\windows\SysWow64\authui.dll
2014-03-21 10:15 . 2014-03-21 10:15 168960 ----a-w- c:\windows\SysWow64\credui.dll
2014-03-21 10:15 . 2014-03-21 10:15 152576 ----a-w- c:\windows\SysWow64\SmartcardCredentialProvider.dll
2014-03-21 10:14 . 2014-03-21 10:14 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2014-03-21 10:14 . 2014-03-21 10:14 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2014-03-21 10:14 . 2014-03-21 10:14 81920 ----a-w- c:\windows\SysWow64\davclnt.dll
2014-03-21 10:14 . 2014-03-21 10:14 259584 ----a-w- c:\windows\system32\WebClnt.dll
2014-03-21 10:14 . 2014-03-21 10:14 205824 ----a-w- c:\windows\SysWow64\WebClnt.dll
2014-03-21 10:14 . 2014-03-21 10:14 140800 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2014-03-21 10:14 . 2014-03-21 10:14 102400 ----a-w- c:\windows\system32\davclnt.dll
2014-03-21 10:14 . 2014-03-21 10:14 461312 ----a-w- c:\windows\system32\scavengeui.dll
2014-03-21 10:13 . 2014-03-21 10:13 62976 ----a-w- c:\windows\system32\TSWbPrxy.exe
2014-03-21 10:13 . 2014-03-21 10:13 57856 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys
2014-03-21 10:13 . 2014-03-21 10:13 5773824 ----a-w- c:\windows\system32\mstscax.dll
2014-03-21 10:13 . 2014-03-21 10:13 54272 ----a-w- c:\windows\system32\MsRdpWebAccess.dll
2014-03-21 10:13 . 2014-03-21 10:13 4916224 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-03-21 10:13 . 2014-03-21 10:13 46592 ----a-w- c:\windows\SysWow64\MsRdpWebAccess.dll
2014-03-21 10:13 . 2014-03-21 10:13 44032 ----a-w- c:\windows\system32\tsgqec.dll
2014-03-21 10:13 . 2014-03-21 10:13 43520 ----a-w- c:\windows\system32\TsUsbGDCoInstaller.dll
2014-03-21 10:13 . 2014-03-21 10:13 384000 ----a-w- c:\windows\system32\wksprt.exe
2014-03-21 10:13 . 2014-03-21 10:13 37376 ----a-w- c:\windows\SysWow64\tsgqec.dll
2014-03-21 10:13 . 2014-03-21 10:13 322560 ----a-w- c:\windows\system32\aaclient.dll
2014-03-21 10:13 . 2014-03-21 10:13 3174912 ----a-w- c:\windows\system32\rdpcorets.dll
2014-03-21 10:13 . 2014-03-21 10:13 269312 ----a-w- c:\windows\SysWow64\aaclient.dll
2014-03-21 10:13 . 2014-03-21 10:13 243200 ----a-w- c:\windows\system32\rdpudd.dll
2014-03-21 10:13 . 2014-03-21 10:13 228864 ----a-w- c:\windows\system32\rdpendp_winip.dll
2014-03-21 10:13 . 2014-03-21 10:13 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2014-03-21 10:13 . 2014-03-21 10:13 192000 ----a-w- c:\windows\SysWow64\rdpendp_winip.dll
2014-03-21 10:13 . 2014-03-21 10:13 18432 ----a-w- c:\windows\system32\wksprtPS.dll
2014-03-21 10:13 . 2014-03-21 10:13 16896 ----a-w- c:\windows\SysWow64\wksprtPS.dll
2014-03-21 10:13 . 2014-03-21 10:13 15360 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2014-03-21 10:13 . 2014-03-21 10:13 13312 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-03-21 10:13 . 2014-03-21 10:13 13312 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-03-21 10:13 . 2014-03-21 10:13 1123840 ----a-w- c:\windows\system32\mstsc.exe
2014-03-21 10:13 . 2014-03-21 10:13 1048064 ----a-w- c:\windows\SysWow64\mstsc.exe
2014-03-21 10:12 . 2014-03-21 10:12 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2014-03-21 10:06 . 2014-03-21 10:06 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2014-03-21 10:06 . 2014-03-21 10:06 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2014-03-21 10:06 . 2014-03-21 10:06 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2014-03-21 10:06 . 2014-03-21 10:06 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2014-03-21 10:06 . 2014-03-21 10:06 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2014-03-21 10:06 . 2014-03-21 10:06 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2014-03-21 09:54 . 2014-03-21 09:54 55296 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2014-03-21 09:54 . 2014-03-21 09:54 44032 ----a-w- c:\windows\SysWow64\dhcpcsvc6.dll
2014-03-21 09:54 . 2014-03-21 09:54 226816 ----a-w- c:\windows\system32\dhcpcore6.dll
2014-03-21 09:54 . 2014-03-21 09:54 193536 ----a-w- c:\windows\SysWow64\dhcpcore6.dll
2014-03-21 09:53 . 2014-03-21 09:53 70656 ----a-w- c:\windows\system32\nlaapi.dll
2014-03-21 09:53 . 2014-03-21 09:53 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
2014-03-21 09:53 . 2014-03-21 09:53 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll
2014-03-21 09:53 . 2014-03-21 09:53 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2014-03-21 09:53 . 2014-03-21 09:53 303104 ----a-w- c:\windows\system32\nlasvc.dll
2014-03-21 09:53 . 2014-03-21 09:53 246272 ----a-w- c:\windows\system32\netcorehc.dll
2014-03-21 09:53 . 2014-03-21 09:53 216576 ----a-w- c:\windows\system32\ncsi.dll
2014-03-21 09:53 . 2014-03-21 09:53 18944 ----a-w- c:\windows\SysWow64\netevent.dll
2014-03-21 09:53 . 2014-03-21 09:53 18944 ----a-w- c:\windows\system32\netevent.dll
2014-03-21 09:53 . 2014-03-21 09:53 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
2014-03-21 09:53 . 2014-03-21 09:53 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-01 19:38 1720976 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-01 19:38 1720976 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-01 19:38 1720976 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NextLive"="c:\users\Lubos\AppData\Roaming\newnext.me\nengine.dll" [2013-11-14 1283584]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2014-05-10 2404864]
"SpeedUpMyComputer"="c:\program files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe" [2014-05-08 2096248]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2014-05-08 3716824]
"PCSpeedUp"="c:\program files (x86)\Zrychleni Pocitace\PCSUNotifier.exe" [2014-05-08 319280]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2014-05-10 807680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 DefaultTabUpdate;DefaultTabUpdate;c:\users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe;c:\users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R2 NAUpdate;NAUpdate;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
R2 ProtectMonitor;Protect Monitor;c:\program files (x86)\PCData\StartHelp.exe;c:\program files (x86)\PCData\StartHelp.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 SystemkService;Systemk Service;c:\program files (x86)\Settings Manager\systemk\SystemkService.exe;c:\program files (x86)\Settings Manager\systemk\SystemkService.exe [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.8.141\McCHSvc.exe;c:\program files\McAfee Security Scan\3.8.141\McCHSvc.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 OSFMount;OSFMount;c:\program files (x86)\Counter-Strike Global Offensive\image\x64\OSFMount.sys;c:\program files (x86)\Counter-Strike Global Offensive\image\x64\OSFMount.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys;c:\windows\SYSNATIVE\Drivers\SmartDefragDriver.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 F06DEFF2-5B9C-490D-910F-35D3A91196222;F06DEFF2-5B9C-490D-910F-35D3A91196222;c:\program files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg;c:\program files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg [x]
S1 wStLib64;wStLib64;c:\windows\system32\drivers\wStLib64.sys;c:\windows\SYSNATIVE\drivers\wStLib64.sys [x]
S2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 Application Updater;Application Updater;c:\program files (x86)\Application Updater\ApplicationUpdater.exe;c:\program files (x86)\Application Updater\ApplicationUpdater.exe [x]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S2 Update Surftastic;Update Surftastic;c:\program files (x86)\Surftastic\updateSurftastic.exe;c:\program files (x86)\Surftastic\updateSurftastic.exe [x]
S2 Util Surftastic;Util Surftastic;c:\program files (x86)\Surftastic\bin\utilSurftastic.exe;c:\program files (x86)\Surftastic\bin\utilSurftastic.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2014-05-08 09:52 493344 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-05-08 09:53 1119560 ----a-w- c:\program files (x86)\Google\Chrome\Application\34.0.1847.131\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-05-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-28 09:37]
.
2014-05-09 c:\windows\Tasks\PC SpeedUp Service Deactivator.job
- c:\program files (x86)\Zrychleni Pocitace\PCSUSD.exe [2014-03-23 12:51]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-03-21 15:28 2471744 ----a-w- c:\program files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{03EB0E9C-7A91-4381-A220-9B52B641CDB1}"= "c:\program files (x86)\IObit Apps Toolbar\IE\9.1\iobitappsToolbarIE64.dll" [2014-04-25 1997120]
.
[HKEY_CLASSES_ROOT\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-01 19:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-01 19:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-01 19:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-12-28 13662936]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/?clid=13415
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~1\Office15\ONBttnIE.dll/105
TCP: DhcpNameServer = 213.46.172.37 213.46.172.46
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
.
.
------- Asociace souborů -------
.
exefile=c:\windows\svchost.com "%1" %*
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{03EB0E9C-7A91-4381-A220-9B52B641CDB1} - (no file)
URLSearchHooks-{9CB65206-89C4-402c-BA80-02D8C59F9B1D} - c:\program files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
BHO-{7F6AFBF1-E065-4627-A2FD-810366367D01} - c:\users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll
Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
Toolbar-10 - (no file)
Wow6432Node-HKCU-Run-cz.seznam.software.autoupdate - c:\users\Lubos\AppData\Roaming\Seznam.cz\szninstall.exe
Wow6432Node-HKLM-Run-seznam-listicka-distribuce - c:\program files (x86)\Seznam.cz\distribution\szninstall.exe
Wow6432Node-HKLM-Run-ApnUpdater - c:\program files (x86)\Ask.com\Updater\Updater.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-10 - (no file)
AddRemove-DefaultTab - c:\users\Lubos\AppData\Roaming\DefaultTab\DefaultTab\uninstalldt.exe
AddRemove-MediaViewV1alpha51 - c:\program files (x86)\MediaViewV1\MediaViewV1alpha51\uninstall.exe
AddRemove-{3A787631-66A2-4634-B928-A37E73B58FB6} - c:\users\Karel\AppData\Roaming\Slick Savings\uninstall.exe
AddRemove-SeznamInstall - c:\users\Lubos\AppData\Roaming\Seznam.cz\szninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\F06DEFF2-5B9C-490D-910F-35D3A91196222]
"ImagePath"="\??\c:\program files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\TeamViewer\Version8\TeamViewer.exe
c:\users\Lubos\AppData\Local\Temp\3582-490\Monitor.exe
.
**************************************************************************
.
Celkový čas: 2014-05-10 09:55:24 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-05-10 07:55
.
Před spuštěním: Volných bajtů: 10 626 654 208
Po spuštění: Volných bajtů: 18 905 382 912
.
- - End Of File - - 28816BD9CD9D468F1C0D647CE80D83C0
A36C5E4F47E84449FF07ED3517B43A31
-
czechboy123
- Návštěvník
- Příspěvky: 17
- Registrován: 08 kvě 2014 20:36
Re: Nevím si rady
Něják mi to pomohlo neukazuje se už ta tabulka. 
-
czechboy123
- Návštěvník
- Příspěvky: 17
- Registrován: 08 kvě 2014 20:36
-
Rudy
- Site Admin
- Příspěvky: 119398
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nevím si rady
To je šmejd, který jste si tam musel natáhnout teď. Logy ho neukazují. Je to coin miner a bývá obvykle v Users\public. Koukněte tam a pokud tam je, zastavte ho ve správci úloh a pak hu v adresáři smažte. Pokud bude někde jinde, najděte ho přes vyhledávání a smažte stejným způsobem.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?