Zdravím, jsem tu po krátké době znovu, tentokrát s notebookem svého syna.
Včera z ničeho nic začal zamrzat, nešel ani vypnout, musel se vypínat natvrdo vypínačem. Domníval jsem se, že si natáhl nějakou potvoru, protože po odpojení od internetu se stav o něco zlepšil, později už ale nešel vůbec spustit.
Dnes jsem ho normálně spustil, funguje i při připojení na internet, ale když po chvíli nepoužívání "usnul", už se nevzpamatoval a musel jsem ho opět natvrdo vypnout.
Chtěl jsem sem dát rovnou log z RSIT, ale nepovedlo se ho pořídit - RSIT se normálně rozběhne, ale po pár vteřinách se objeví malé okno s názvem AutoIT error, v okně je napsáno
Line -1:
Error: Variable used being declared. RSIT píše Listing services and drivers a nic se neděje. Když odkliknu OK v okénku s errorem, okno RSIT zmizí.
Můžu sem dát něco jiného, z čeho by se dalo něco vyčíst? Mohl bych zkusi Ccleaner a nebo to v tomto stavu nemá cenu?
Díky
Pavel
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Nestandardní chování notebooku - prosba o pomoc
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119541
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nestandardní chování notebooku - prosba o pomoc
Zdravím!
Zkuste tento postup: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .
Zkuste tento postup: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nestandardní chování notebooku - prosba o pomoc
Zdravím,
zkouším dostat do toho netebooku FRSTLauncher, ale je to jak kdyby se tomu ten počítač cíleně bránil... když je připojený k internetu, po chvíli zamrzne. zkoušel jsem (opakovaně) zkopírovat Launcher přes flashdisk ze svého notebooku, kde ho mám od pondělí uložený, ale ani to se mi zatím nezdařilo.
Budu to ještě zkoušet a ozvu se hned, jak se mi to povede.
zkouším dostat do toho netebooku FRSTLauncher, ale je to jak kdyby se tomu ten počítač cíleně bránil... když je připojený k internetu, po chvíli zamrzne. zkoušel jsem (opakovaně) zkopírovat Launcher přes flashdisk ze svého notebooku, kde ho mám od pondělí uložený, ale ani to se mi zatím nezdařilo.
Budu to ještě zkoušet a ozvu se hned, jak se mi to povede.
-
Rudy
- Site Admin
- Příspěvky: 119541
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nestandardní chování notebooku - prosba o pomoc
OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nestandardní chování notebooku - prosba o pomoc
Konečně se mi povedlo FRST spustit, notebook jsem musel nastartovat v nouzovém režimu.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-05-2014
Ran by sasa (administrator) on G780 on 16-05-2014 20:30:54
Running from C:\Users\sasa\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Safe Mode (minimal)
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(forum.viry.cz) C:\Users\sasa\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [564352 2011-12-15] (Conexant Systems, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2899216 2012-03-26] (Synaptics Incorporated)
HKLM\...\Run: [SynLenovoGestureMgr] => C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [410896 2012-03-26] (Synaptics)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [8079408 2012-08-09] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [6202416 2012-08-09] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo EE Boot Optimizer] => C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [206176 2012-08-09] (Lenovo)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-30] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [507744 2011-12-21] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331_STI.EXE [548864 2011-11-24] (Vimicro)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Lenovo Registration] => C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [4351712 2012-01-26] (Lenovo, Inc.)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2011-01-29] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [228448 2011-01-29] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2010-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [VeriFaceManager] => C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [329056 2012-08-09] (Lenovo)
HKLM-x32\...\Run: [UpdatePRCShortCut] => C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-14] (CyberLink Corp.)
HKLM-x32\...\Run: [LockKey] => C:\Program Files (x86)\LockKey\LockKey.exe [337776 2011-08-26] ( )
HKLM-x32\...\Run: [Samsung PanelMgr] => C:\Windows\Samsung\PanelMgr\SSMMgr.exe [552960 2009-03-06] ()
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640 2014-04-09] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1603081826-2445504320-2704610286-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKU\S-1-5-21-1603081826-2445504320-2704610286-1001\...\MountPoints2: {c4e7e9c0-493a-11e2-a046-806e6f6e6963} - E:\AutoRunCD.exe
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [260928 2012-05-01] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [215360 2012-05-01] (NVIDIA Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain ... &bmod=LENN
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT3220468
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
URLSearchHook: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
URLSearchHook: HKCU - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
SearchScopes: HKCU - DefaultScope {07460650-C843-49D9-9CFB-6FDB67F5C213} URL = http://search.conduit.com/ResultsExt.as ... =CT3220468
SearchScopes: HKCU - {07460650-C843-49D9-9CFB-6FDB67F5C213} URL = http://search.conduit.com/ResultsExt.as ... =CT3220468
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchT ... edb9a3fcb2
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120809085327.dll No File
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
BHO-x32: TBLayoutBHO Class - {008f6853-9cb4-41c5-a950-39d55e5e06ba} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
BHO-x32: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120809085327.dll No File
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO-x32: AlxHelper Class - {F443A627-5009-4323-9C1D-7FD598D0D712} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Amazon Browser Bar - {EA582743-9076-4178-9AA6-7393FDF4D5CE} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
Toolbar: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {7473B6BD-4691-4744-A82B-7854EB3D70B6} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4 208.67.222.222
FireFox:
========
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2012-08-09]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
Chrome:
=======
CHR HomePage: hxxp://www.google.cz/
CHR StartupUrls: "hxxp://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\pdf.dll ()
CHR Plugin: (McAfee SiteAdvisor) - C:\Users\sasa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.41.123.2_0\McChPlg.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (McAfee SecurityCenter) - c:\progra~2\mcafee\msc\npmcsn~1.dll No File
CHR Extension: (SiteAdvisor) - C:\Users\sasa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2012-12-05]
CHR Extension: (AdBlock) - C:\Users\sasa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-04-14]
CHR Extension: (Peněženka Google) - C:\Users\sasa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Amazon 1Button App for Chrome) - C:\Users\sasa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2012-12-05]
CHR HKCU\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\sasa\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx [2012-11-19]
CHR HKLM-x32\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\sasa\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx [2012-11-19]
CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\sasa\AppData\Roaming\BabSolution\CR\Delta.crx [2012-11-19]
CHR HKLM-x32\...\Chrome\Extension: [jbpkiefagocgkmemidfngdkamloieekf] - C:\Program Files (x86)\TornTV.com\torn11.crx [2012-11-19]
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - C:\Program Files (x86)\Amazon\ABB\AmazonChrome-lenovo-abb.crx [2012-02-18]
==================== Services (Whitelisted) =================
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-09] (AVAST Software)
S2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [945440 2012-02-02] (Broadcom Corporation.)
S4 DamageGuardSvc; C:\Program Files\Lenovo\Instant Reset\DamageGuardSvc.exe [572976 2012-03-26] (Lenovo (Beijing) Limited)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-28] (Intel Corporation)
S2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [123384 2014-01-22] (McAfee, Inc.)
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2014-02-13] ()
S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2365792 2012-11-02] (TuneUp Software)
==================== Drivers (Whitelisted) ====================
S2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-04-09] (AVAST Software)
S1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-04-09] (AVAST Software)
S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-04-09] ()
S1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-04-09] (AVAST Software)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-04-09] (AVAST Software)
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [84816 2014-04-09] (AVAST Software)
S0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208928 2014-04-09] ()
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2012-12-18] ()
S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [134696 2012-02-02] (Broadcom Corporation.)
S4 DamageGuard; C:\Windows\System32\DRIVERS\DamageGuardX64.sys [217392 2012-02-11] (Lenovo)
S4 dgFltr; C:\Windows\System32\drivers\dgFltrX64.sys [23648 2011-12-13] (Lenovo)
S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-02-04] (Samsung Electronics Co., Ltd.)
S3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [104048 2012-03-02] (Qualcomm Atheros Co., Ltd.)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2012-12-18] ()
R3 SmbDrvIntel; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [27408 2012-03-26] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2012-12-18] (Duplex Secure Ltd.)
S3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [952832 2011-12-06] (Vimicro Corporation)
U3 BcmSqlStartupSvc;
U2 CLKMSVC10_3A60B698;
U2 CLKMSVC10_C3B3B687;
U2 DriverService;
U2 iATAgentService;
U2 idealife Update Service;
U3 IGRS;
U2 IviRegMgr;
U2 Oasis2Service;
U2 PCCarerService;
U2 ReadyComm.DirectRouter;
U2 RichVideo;
U2 RtLedService;
U2 SeaPort;
U2 SoftwareService;
U3 SQLWriter;
S3 TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-16 20:30 - 2014-05-16 20:31 - 00018878 _____ () C:\Users\sasa\Desktop\FRST.txt
2014-05-16 20:30 - 2014-05-16 20:30 - 00000000 ____D () C:\FRST
2014-05-16 20:30 - 2014-05-16 20:24 - 00112640 _____ (forum.viry.cz) C:\Users\sasa\Desktop\FRSTLauncher.exe
2014-05-16 18:42 - 2014-05-16 18:42 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2014-05-16 18:07 - 2014-05-16 17:49 - 02067456 _____ (Farbar) C:\Users\sasa\Desktop\FRST64.exe
2014-05-16 17:49 - 2014-05-16 17:49 - 02067456 _____ (Farbar) C:\Users\sasa\Downloads\FRST64.exe
2014-05-16 15:43 - 2014-05-16 15:43 - 01325827 _____ () C:\Users\sasa\Desktop\adwcleaner_3.208.exe
2014-05-16 15:42 - 2014-05-16 15:42 - 01016261 _____ (Thisisu) C:\Users\sasa\Desktop\JRT.exe
2014-05-16 15:22 - 2014-05-16 15:22 - 04745984 _____ (Piriform Ltd) C:\Users\sasa\Desktop\ccsetup413.exe
2014-05-16 15:03 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-16 15:03 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-16 15:03 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-16 15:03 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-16 15:03 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-16 15:03 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-16 14:46 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-16 14:46 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-16 14:46 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-16 14:46 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-16 14:44 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-16 14:44 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-16 14:44 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-16 14:44 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-16 14:44 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-16 14:44 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-16 14:44 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-16 14:44 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-16 14:44 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-16 14:44 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-16 14:44 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-16 14:44 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-16 14:44 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-16 14:44 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-16 14:44 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-16 14:44 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-16 14:44 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-16 14:44 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-16 14:44 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-16 14:44 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-16 14:44 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-16 14:44 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-16 14:36 - 2014-05-16 15:17 - 00000000 ____D () C:\Program Files (x86)\trend micro
2014-05-16 14:36 - 2014-05-16 14:36 - 00000000 ____D () C:\rsit
2014-05-16 14:34 - 2014-05-16 14:35 - 00781909 _____ () C:\Users\sasa\Desktop\RSIT.exe
2014-05-14 20:06 - 2014-05-14 20:23 - 2018967552 _____ () C:\Users\sasa\Downloads\1492 Dobyti raje CZ dvd rip.avi
2014-05-13 16:12 - 2014-05-13 16:21 - 1568136456 _____ () C:\Users\sasa\Downloads\Snowpiercer-Seolgug-Yeolcha-2013-CZ-vlozene.avi
2014-05-08 23:35 - 2014-05-08 23:39 - 683686340 _____ () C:\Users\sasa\Downloads\Zámek v oblacích (2004).AVI
2014-05-08 09:08 - 2014-05-08 09:15 - 1338671104 _____ () C:\Users\sasa\Downloads\Kapitán Phillips (2013) CZ dabing.avi
2014-05-07 09:32 - 2014-05-16 15:09 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-04 18:01 - 2014-05-04 18:01 - 00133632 _____ () C:\Users\sasa\Downloads\pudni_koloidy.ppt
2014-05-03 20:24 - 2014-05-03 20:24 - 00135288 _____ () C:\Users\sasa\Downloads\detailne-zpracovane-otazky-okruhy-z-ke-zkousce.odt
2014-05-02 21:19 - 2014-05-02 22:05 - 00000000 ____D () C:\Users\sasa\Downloads\RoboCop.2014.720p.WEB-DL.H264-WEBiOS [PublicHD]
2014-05-01 18:26 - 2014-05-01 18:27 - 00000000 ____D () C:\Users\sasa\Downloads\[ www.UsaBit.com ] - Micro Monsters with David Attenborough (2013) BluRay 720p 900MB Ganool
2014-05-01 13:20 - 2014-05-01 13:20 - 00000000 ____D () C:\Users\sasa\Downloads\Soundtrack-Mamma-Mia!
2014-04-29 00:12 - 2014-04-29 00:12 - 00016655 _____ () C:\Users\sasa\Downloads\protokol-6.odt
2014-04-26 18:32 - 2014-04-26 18:32 - 00001808 _____ () C:\Users\sasa\Downloads\addon.crx
2014-04-23 08:04 - 2014-04-23 08:04 - 00385536 _____ () C:\Users\sasa\Downloads\APSC_prezentace_produkce_noví_FP_leden2014.ppt
2014-04-23 08:03 - 2014-04-23 08:03 - 00249344 _____ () C:\Users\sasa\Downloads\Metodické_předpisy__prezentace_noví_FP_duben2014.ppt
2014-04-21 21:54 - 2014-04-21 21:54 - 00019515 _____ () C:\Users\sasa\Downloads\klimadiagram na meteo.odt
2014-04-21 17:07 - 2014-04-21 17:07 - 00033280 _____ () C:\Users\sasa\Downloads\Seznam_plevelu (1).xls
2014-04-21 17:05 - 2014-04-21 17:05 - 00033280 _____ () C:\Users\sasa\Downloads\Seznam_plevelu.xls
==================== One Month Modified Files and Folders =======
2014-05-16 20:31 - 2014-05-16 20:30 - 00018878 _____ () C:\Users\sasa\Desktop\FRST.txt
2014-05-16 20:30 - 2014-05-16 20:30 - 00000000 ____D () C:\FRST
2014-05-16 20:30 - 2012-08-09 16:53 - 00678098 _____ () C:\Windows\system32\perfh005.dat
2014-05-16 20:30 - 2012-08-09 16:53 - 00146996 _____ () C:\Windows\system32\perfc005.dat
2014-05-16 20:30 - 2009-07-14 07:13 - 01613968 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-16 20:29 - 2012-08-09 18:00 - 00242742 _____ () C:\Windows\system32\fastboot.set
2014-05-16 20:28 - 2009-07-14 06:51 - 00086064 _____ () C:\Windows\setupact.log
2014-05-16 20:24 - 2014-05-16 20:30 - 00112640 _____ (forum.viry.cz) C:\Users\sasa\Desktop\FRSTLauncher.exe
2014-05-16 20:23 - 2009-07-14 06:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-16 20:21 - 2009-07-14 06:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-16 20:15 - 2012-08-09 17:58 - 00000000 ____D () C:\ProgramData\VeriFace
2014-05-16 20:14 - 2012-12-05 22:56 - 03046111 _____ () C:\FaceProv.log
2014-05-16 20:13 - 2012-08-09 17:58 - 00000962 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-16 20:13 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-16 18:45 - 2012-08-09 17:06 - 01185708 _____ () C:\Windows\WindowsUpdate.log
2014-05-16 18:43 - 2014-02-12 21:15 - 00003112 _____ () C:\Windows\System32\Tasks\RDReminder
2014-05-16 18:42 - 2014-05-16 18:42 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2014-05-16 18:29 - 2012-12-05 23:20 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-05-16 18:27 - 2012-08-09 17:53 - 00000000 ____D () C:\ProgramData\McAfee
2014-05-16 18:27 - 2012-08-09 17:53 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-05-16 18:26 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-16 18:25 - 2010-11-21 05:47 - 00327710 _____ () C:\Windows\PFRO.log
2014-05-16 18:09 - 2012-08-09 17:58 - 00000966 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-16 17:49 - 2014-05-16 18:07 - 02067456 _____ (Farbar) C:\Users\sasa\Desktop\FRST64.exe
2014-05-16 17:49 - 2014-05-16 17:49 - 02067456 _____ (Farbar) C:\Users\sasa\Downloads\FRST64.exe
2014-05-16 15:43 - 2014-05-16 15:43 - 01325827 _____ () C:\Users\sasa\Desktop\adwcleaner_3.208.exe
2014-05-16 15:42 - 2014-05-16 15:42 - 01016261 _____ (Thisisu) C:\Users\sasa\Desktop\JRT.exe
2014-05-16 15:22 - 2014-05-16 15:22 - 04745984 _____ (Piriform Ltd) C:\Users\sasa\Desktop\ccsetup413.exe
2014-05-16 15:17 - 2014-05-16 14:36 - 00000000 ____D () C:\Program Files (x86)\trend micro
2014-05-16 15:13 - 2012-12-05 23:02 - 00000000 ___RD () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-16 15:13 - 2012-12-05 23:02 - 00000000 ___RD () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 15:09 - 2014-05-07 09:32 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-16 14:36 - 2014-05-16 14:36 - 00000000 ____D () C:\rsit
2014-05-16 14:35 - 2014-05-16 14:34 - 00781909 _____ () C:\Users\sasa\Desktop\RSIT.exe
2014-05-16 03:20 - 2014-04-13 09:45 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-05-16 03:20 - 2014-01-14 11:43 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2014-05-16 03:20 - 2013-09-08 14:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jpeg Resampler 2010
2014-05-16 03:20 - 2013-07-24 19:01 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\vlc
2014-05-16 03:20 - 2013-07-24 19:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-05-16 03:20 - 2013-04-06 14:45 - 00000000 ____D () C:\Windows\Minidump
2014-05-16 03:20 - 2013-03-01 13:24 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
2014-05-16 03:20 - 2013-02-10 22:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MV2Player
2014-05-16 03:20 - 2013-02-03 21:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmarThru 4
2014-05-16 03:20 - 2013-02-03 21:33 - 00000000 ____D () C:\Program Files (x86)\SmarThru 4
2014-05-16 03:20 - 2013-02-03 21:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung SCX-4300 Series
2014-05-16 03:20 - 2013-01-03 15:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FarCry 3
2014-05-16 03:20 - 2012-12-18 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013
2014-05-16 03:20 - 2012-12-18 19:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-05-16 03:20 - 2012-12-18 19:41 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2013
2014-05-16 03:20 - 2012-12-18 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft DirectX SDK (August 2007)
2014-05-16 03:20 - 2012-12-18 16:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastPCTweaker
2014-05-16 03:20 - 2012-12-18 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer
2014-05-16 03:20 - 2012-12-18 16:25 - 00000000 ____D () C:\Program Files (x86)\Dll-Files.com Fixer
2014-05-16 03:20 - 2012-12-18 15:51 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-16 03:20 - 2012-12-18 15:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-16 03:20 - 2012-12-10 14:28 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
2014-05-16 03:20 - 2012-12-09 18:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2014-05-16 03:20 - 2012-12-05 22:58 - 00000000 ___RD () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-16 03:20 - 2012-12-05 22:58 - 00000000 ___RD () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-16 03:20 - 2012-12-05 22:58 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-05-16 03:20 - 2012-12-05 01:24 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-05-16 03:20 - 2012-08-09 17:59 - 00000000 ____D () C:\ProgramData\OneKey Recovery
2014-05-16 03:20 - 2012-08-09 17:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-16 03:20 - 2012-08-09 17:54 - 00000000 ____D () C:\Windows\System32\Tasks\Lenovo
2014-05-16 03:20 - 2012-08-09 17:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-05-16 03:20 - 2012-08-09 17:45 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-05-16 03:20 - 2012-08-09 17:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-05-16 03:20 - 2012-08-09 17:40 - 00000000 ____D () C:\Program Files (x86)\USB Camera
2014-05-16 03:20 - 2012-08-09 17:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2014-05-16 03:20 - 2012-08-09 17:26 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-16 03:20 - 2012-08-09 17:26 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-16 03:20 - 2012-08-09 17:14 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-05-16 03:20 - 2011-10-10 10:19 - 00000000 ____D () C:\Program Files\Windows Journal
2014-05-16 03:20 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-16 03:20 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 03:20 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-05-16 03:20 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-16 03:20 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 __RSD () C:\Windows\Media
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\servicing
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\IME
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Cursors
2014-05-16 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-05-15 17:22 - 2012-12-05 22:58 - 00000000 ____D () C:\Users\sasa
2014-05-14 20:23 - 2014-05-14 20:06 - 2018967552 _____ () C:\Users\sasa\Downloads\1492 Dobyti raje CZ dvd rip.avi
2014-05-13 16:21 - 2014-05-13 16:12 - 1568136456 _____ () C:\Users\sasa\Downloads\Snowpiercer-Seolgug-Yeolcha-2013-CZ-vlozene.avi
2014-05-11 11:22 - 2012-12-18 16:28 - 00000290 _____ () C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
2014-05-09 08:14 - 2014-05-16 14:46 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-16 14:46 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 23:39 - 2014-05-08 23:35 - 683686340 _____ () C:\Users\sasa\Downloads\Zámek v oblacích (2004).AVI
2014-05-08 09:15 - 2014-05-08 09:08 - 1338671104 _____ () C:\Users\sasa\Downloads\Kapitán Phillips (2013) CZ dabing.avi
2014-05-08 09:04 - 2012-08-09 17:58 - 00003962 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-08 09:04 - 2012-08-09 17:58 - 00003710 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-07 18:04 - 2012-12-18 16:28 - 00000274 _____ () C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
2014-05-06 06:40 - 2014-05-16 15:03 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 06:17 - 2014-05-16 15:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 05:25 - 2014-05-16 15:03 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 05:07 - 2014-05-16 15:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-06 05:00 - 2014-05-16 15:03 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-06 04:10 - 2014-05-16 15:03 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-04 18:01 - 2014-05-04 18:01 - 00133632 _____ () C:\Users\sasa\Downloads\pudni_koloidy.ppt
2014-05-03 20:24 - 2014-05-03 20:24 - 00135288 _____ () C:\Users\sasa\Downloads\detailne-zpracovane-otazky-okruhy-z-ke-zkousce.odt
2014-05-02 22:09 - 2013-07-24 19:00 - 00001081 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-05-02 22:05 - 2014-05-02 21:19 - 00000000 ____D () C:\Users\sasa\Downloads\RoboCop.2014.720p.WEB-DL.H264-WEBiOS [PublicHD]
2014-05-02 21:52 - 2012-12-18 17:20 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\uTorrent
2014-05-02 19:19 - 2013-01-22 17:52 - 00000000 ____D () C:\Users\sasa\Desktop\filmy
2014-05-02 16:04 - 2013-11-20 22:28 - 00000000 ____D () C:\Users\sasa\Desktop\škola druhák
2014-05-01 18:27 - 2014-05-01 18:26 - 00000000 ____D () C:\Users\sasa\Downloads\[ www.UsaBit.com ] - Micro Monsters with David Attenborough (2013) BluRay 720p 900MB Ganool
2014-05-01 13:21 - 2012-12-05 22:58 - 00001133 _____ () C:\Users\sasa\Desktop\Cyberlink Power2Go.lnk
2014-05-01 13:20 - 2014-05-01 13:20 - 00000000 ____D () C:\Users\sasa\Downloads\Soundtrack-Mamma-Mia!
2014-04-29 16:19 - 2012-08-09 17:59 - 00002194 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-29 00:12 - 2014-04-29 00:12 - 00016655 _____ () C:\Users\sasa\Downloads\protokol-6.odt
2014-04-26 18:32 - 2014-04-26 18:32 - 00001808 _____ () C:\Users\sasa\Downloads\addon.crx
2014-04-23 08:04 - 2014-04-23 08:04 - 00385536 _____ () C:\Users\sasa\Downloads\APSC_prezentace_produkce_noví_FP_leden2014.ppt
2014-04-23 08:03 - 2014-04-23 08:03 - 00249344 _____ () C:\Users\sasa\Downloads\Metodické_předpisy__prezentace_noví_FP_duben2014.ppt
2014-04-21 21:54 - 2014-04-21 21:54 - 00019515 _____ () C:\Users\sasa\Downloads\klimadiagram na meteo.odt
2014-04-21 17:07 - 2014-04-21 17:07 - 00033280 _____ () C:\Users\sasa\Downloads\Seznam_plevelu (1).xls
2014-04-21 17:05 - 2014-04-21 17:05 - 00033280 _____ () C:\Users\sasa\Downloads\Seznam_plevelu.xls
Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.3680.dll
Some content of TEMP:
====================
C:\Users\sasa\AppData\Local\Temp\drm_dialogs.dll
C:\Users\sasa\AppData\Local\Temp\drm_dyndata_7340014.dll
C:\Users\sasa\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp4x0iyl.dll
C:\Users\sasa\AppData\Local\Temp\InstallManager_GEN_GEN.exe
C:\Users\sasa\AppData\Local\Temp\Setup.exe
C:\Users\sasa\AppData\Local\Temp\tbedrs.dll
C:\Users\sasa\AppData\Local\Temp\TB_F642.exe
C:\Users\sasa\AppData\Local\Temp\utt83D3.tmp.exe
C:\Users\sasa\AppData\Local\Temp\vlc-2.1.3-win32.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe
[2014-05-16 14:44] - [2014-03-04 11:43] - 0455168 ____A (Microsoft Corporation) 88AB9B72B4BF3963A0DE0820B4B0B06C
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\sasa\Desktop" je 83982 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-05-2014
Ran by sasa (administrator) on G780 on 16-05-2014 20:30:54
Running from C:\Users\sasa\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Safe Mode (minimal)
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(forum.viry.cz) C:\Users\sasa\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [564352 2011-12-15] (Conexant Systems, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2899216 2012-03-26] (Synaptics Incorporated)
HKLM\...\Run: [SynLenovoGestureMgr] => C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [410896 2012-03-26] (Synaptics)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [8079408 2012-08-09] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [6202416 2012-08-09] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo EE Boot Optimizer] => C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [206176 2012-08-09] (Lenovo)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-30] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [507744 2011-12-21] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331_STI.EXE [548864 2011-11-24] (Vimicro)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Lenovo Registration] => C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [4351712 2012-01-26] (Lenovo, Inc.)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2011-01-29] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [228448 2011-01-29] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2010-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [VeriFaceManager] => C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [329056 2012-08-09] (Lenovo)
HKLM-x32\...\Run: [UpdatePRCShortCut] => C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-14] (CyberLink Corp.)
HKLM-x32\...\Run: [LockKey] => C:\Program Files (x86)\LockKey\LockKey.exe [337776 2011-08-26] ( )
HKLM-x32\...\Run: [Samsung PanelMgr] => C:\Windows\Samsung\PanelMgr\SSMMgr.exe [552960 2009-03-06] ()
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640 2014-04-09] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1603081826-2445504320-2704610286-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKU\S-1-5-21-1603081826-2445504320-2704610286-1001\...\MountPoints2: {c4e7e9c0-493a-11e2-a046-806e6f6e6963} - E:\AutoRunCD.exe
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [260928 2012-05-01] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [215360 2012-05-01] (NVIDIA Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain ... &bmod=LENN
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT3220468
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
URLSearchHook: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
URLSearchHook: HKCU - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
SearchScopes: HKCU - DefaultScope {07460650-C843-49D9-9CFB-6FDB67F5C213} URL = http://search.conduit.com/ResultsExt.as ... =CT3220468
SearchScopes: HKCU - {07460650-C843-49D9-9CFB-6FDB67F5C213} URL = http://search.conduit.com/ResultsExt.as ... =CT3220468
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchT ... edb9a3fcb2
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120809085327.dll No File
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
BHO-x32: TBLayoutBHO Class - {008f6853-9cb4-41c5-a950-39d55e5e06ba} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
BHO-x32: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120809085327.dll No File
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO-x32: AlxHelper Class - {F443A627-5009-4323-9C1D-7FD598D0D712} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Amazon Browser Bar - {EA582743-9076-4178-9AA6-7393FDF4D5CE} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
Toolbar: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {7473B6BD-4691-4744-A82B-7854EB3D70B6} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4 208.67.222.222
FireFox:
========
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2012-08-09]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
Chrome:
=======
CHR HomePage: hxxp://www.google.cz/
CHR StartupUrls: "hxxp://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\pdf.dll ()
CHR Plugin: (McAfee SiteAdvisor) - C:\Users\sasa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.41.123.2_0\McChPlg.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (McAfee SecurityCenter) - c:\progra~2\mcafee\msc\npmcsn~1.dll No File
CHR Extension: (SiteAdvisor) - C:\Users\sasa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2012-12-05]
CHR Extension: (AdBlock) - C:\Users\sasa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-04-14]
CHR Extension: (Peněženka Google) - C:\Users\sasa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Amazon 1Button App for Chrome) - C:\Users\sasa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2012-12-05]
CHR HKCU\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\sasa\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx [2012-11-19]
CHR HKLM-x32\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\sasa\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx [2012-11-19]
CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\sasa\AppData\Roaming\BabSolution\CR\Delta.crx [2012-11-19]
CHR HKLM-x32\...\Chrome\Extension: [jbpkiefagocgkmemidfngdkamloieekf] - C:\Program Files (x86)\TornTV.com\torn11.crx [2012-11-19]
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - C:\Program Files (x86)\Amazon\ABB\AmazonChrome-lenovo-abb.crx [2012-02-18]
==================== Services (Whitelisted) =================
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-09] (AVAST Software)
S2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [945440 2012-02-02] (Broadcom Corporation.)
S4 DamageGuardSvc; C:\Program Files\Lenovo\Instant Reset\DamageGuardSvc.exe [572976 2012-03-26] (Lenovo (Beijing) Limited)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-28] (Intel Corporation)
S2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [123384 2014-01-22] (McAfee, Inc.)
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2014-02-13] ()
S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2365792 2012-11-02] (TuneUp Software)
==================== Drivers (Whitelisted) ====================
S2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-04-09] (AVAST Software)
S1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-04-09] (AVAST Software)
S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-04-09] ()
S1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-04-09] (AVAST Software)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-04-09] (AVAST Software)
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [84816 2014-04-09] (AVAST Software)
S0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208928 2014-04-09] ()
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2012-12-18] ()
S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [134696 2012-02-02] (Broadcom Corporation.)
S4 DamageGuard; C:\Windows\System32\DRIVERS\DamageGuardX64.sys [217392 2012-02-11] (Lenovo)
S4 dgFltr; C:\Windows\System32\drivers\dgFltrX64.sys [23648 2011-12-13] (Lenovo)
S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-02-04] (Samsung Electronics Co., Ltd.)
S3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [104048 2012-03-02] (Qualcomm Atheros Co., Ltd.)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2012-12-18] ()
R3 SmbDrvIntel; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [27408 2012-03-26] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2012-12-18] (Duplex Secure Ltd.)
S3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [952832 2011-12-06] (Vimicro Corporation)
U3 BcmSqlStartupSvc;
U2 CLKMSVC10_3A60B698;
U2 CLKMSVC10_C3B3B687;
U2 DriverService;
U2 iATAgentService;
U2 idealife Update Service;
U3 IGRS;
U2 IviRegMgr;
U2 Oasis2Service;
U2 PCCarerService;
U2 ReadyComm.DirectRouter;
U2 RichVideo;
U2 RtLedService;
U2 SeaPort;
U2 SoftwareService;
U3 SQLWriter;
S3 TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-16 20:30 - 2014-05-16 20:31 - 00018878 _____ () C:\Users\sasa\Desktop\FRST.txt
2014-05-16 20:30 - 2014-05-16 20:30 - 00000000 ____D () C:\FRST
2014-05-16 20:30 - 2014-05-16 20:24 - 00112640 _____ (forum.viry.cz) C:\Users\sasa\Desktop\FRSTLauncher.exe
2014-05-16 18:42 - 2014-05-16 18:42 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2014-05-16 18:07 - 2014-05-16 17:49 - 02067456 _____ (Farbar) C:\Users\sasa\Desktop\FRST64.exe
2014-05-16 17:49 - 2014-05-16 17:49 - 02067456 _____ (Farbar) C:\Users\sasa\Downloads\FRST64.exe
2014-05-16 15:43 - 2014-05-16 15:43 - 01325827 _____ () C:\Users\sasa\Desktop\adwcleaner_3.208.exe
2014-05-16 15:42 - 2014-05-16 15:42 - 01016261 _____ (Thisisu) C:\Users\sasa\Desktop\JRT.exe
2014-05-16 15:22 - 2014-05-16 15:22 - 04745984 _____ (Piriform Ltd) C:\Users\sasa\Desktop\ccsetup413.exe
2014-05-16 15:03 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-16 15:03 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-16 15:03 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-16 15:03 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-16 15:03 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-16 15:03 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-16 14:46 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-16 14:46 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-16 14:46 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-16 14:46 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-16 14:44 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-16 14:44 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-16 14:44 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-16 14:44 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-16 14:44 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-16 14:44 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-16 14:44 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-16 14:44 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-16 14:44 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-16 14:44 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-16 14:44 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-16 14:44 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-16 14:44 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-16 14:44 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-16 14:44 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-16 14:44 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-16 14:44 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-16 14:44 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-16 14:44 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-16 14:44 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-16 14:44 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-16 14:44 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-16 14:44 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-16 14:44 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-16 14:36 - 2014-05-16 15:17 - 00000000 ____D () C:\Program Files (x86)\trend micro
2014-05-16 14:36 - 2014-05-16 14:36 - 00000000 ____D () C:\rsit
2014-05-16 14:34 - 2014-05-16 14:35 - 00781909 _____ () C:\Users\sasa\Desktop\RSIT.exe
2014-05-14 20:06 - 2014-05-14 20:23 - 2018967552 _____ () C:\Users\sasa\Downloads\1492 Dobyti raje CZ dvd rip.avi
2014-05-13 16:12 - 2014-05-13 16:21 - 1568136456 _____ () C:\Users\sasa\Downloads\Snowpiercer-Seolgug-Yeolcha-2013-CZ-vlozene.avi
2014-05-08 23:35 - 2014-05-08 23:39 - 683686340 _____ () C:\Users\sasa\Downloads\Zámek v oblacích (2004).AVI
2014-05-08 09:08 - 2014-05-08 09:15 - 1338671104 _____ () C:\Users\sasa\Downloads\Kapitán Phillips (2013) CZ dabing.avi
2014-05-07 09:32 - 2014-05-16 15:09 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-04 18:01 - 2014-05-04 18:01 - 00133632 _____ () C:\Users\sasa\Downloads\pudni_koloidy.ppt
2014-05-03 20:24 - 2014-05-03 20:24 - 00135288 _____ () C:\Users\sasa\Downloads\detailne-zpracovane-otazky-okruhy-z-ke-zkousce.odt
2014-05-02 21:19 - 2014-05-02 22:05 - 00000000 ____D () C:\Users\sasa\Downloads\RoboCop.2014.720p.WEB-DL.H264-WEBiOS [PublicHD]
2014-05-01 18:26 - 2014-05-01 18:27 - 00000000 ____D () C:\Users\sasa\Downloads\[ www.UsaBit.com ] - Micro Monsters with David Attenborough (2013) BluRay 720p 900MB Ganool
2014-05-01 13:20 - 2014-05-01 13:20 - 00000000 ____D () C:\Users\sasa\Downloads\Soundtrack-Mamma-Mia!
2014-04-29 00:12 - 2014-04-29 00:12 - 00016655 _____ () C:\Users\sasa\Downloads\protokol-6.odt
2014-04-26 18:32 - 2014-04-26 18:32 - 00001808 _____ () C:\Users\sasa\Downloads\addon.crx
2014-04-23 08:04 - 2014-04-23 08:04 - 00385536 _____ () C:\Users\sasa\Downloads\APSC_prezentace_produkce_noví_FP_leden2014.ppt
2014-04-23 08:03 - 2014-04-23 08:03 - 00249344 _____ () C:\Users\sasa\Downloads\Metodické_předpisy__prezentace_noví_FP_duben2014.ppt
2014-04-21 21:54 - 2014-04-21 21:54 - 00019515 _____ () C:\Users\sasa\Downloads\klimadiagram na meteo.odt
2014-04-21 17:07 - 2014-04-21 17:07 - 00033280 _____ () C:\Users\sasa\Downloads\Seznam_plevelu (1).xls
2014-04-21 17:05 - 2014-04-21 17:05 - 00033280 _____ () C:\Users\sasa\Downloads\Seznam_plevelu.xls
==================== One Month Modified Files and Folders =======
2014-05-16 20:31 - 2014-05-16 20:30 - 00018878 _____ () C:\Users\sasa\Desktop\FRST.txt
2014-05-16 20:30 - 2014-05-16 20:30 - 00000000 ____D () C:\FRST
2014-05-16 20:30 - 2012-08-09 16:53 - 00678098 _____ () C:\Windows\system32\perfh005.dat
2014-05-16 20:30 - 2012-08-09 16:53 - 00146996 _____ () C:\Windows\system32\perfc005.dat
2014-05-16 20:30 - 2009-07-14 07:13 - 01613968 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-16 20:29 - 2012-08-09 18:00 - 00242742 _____ () C:\Windows\system32\fastboot.set
2014-05-16 20:28 - 2009-07-14 06:51 - 00086064 _____ () C:\Windows\setupact.log
2014-05-16 20:24 - 2014-05-16 20:30 - 00112640 _____ (forum.viry.cz) C:\Users\sasa\Desktop\FRSTLauncher.exe
2014-05-16 20:23 - 2009-07-14 06:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-16 20:21 - 2009-07-14 06:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-16 20:15 - 2012-08-09 17:58 - 00000000 ____D () C:\ProgramData\VeriFace
2014-05-16 20:14 - 2012-12-05 22:56 - 03046111 _____ () C:\FaceProv.log
2014-05-16 20:13 - 2012-08-09 17:58 - 00000962 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-16 20:13 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-16 18:45 - 2012-08-09 17:06 - 01185708 _____ () C:\Windows\WindowsUpdate.log
2014-05-16 18:43 - 2014-02-12 21:15 - 00003112 _____ () C:\Windows\System32\Tasks\RDReminder
2014-05-16 18:42 - 2014-05-16 18:42 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2014-05-16 18:29 - 2012-12-05 23:20 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-05-16 18:27 - 2012-08-09 17:53 - 00000000 ____D () C:\ProgramData\McAfee
2014-05-16 18:27 - 2012-08-09 17:53 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-05-16 18:26 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-16 18:25 - 2010-11-21 05:47 - 00327710 _____ () C:\Windows\PFRO.log
2014-05-16 18:09 - 2012-08-09 17:58 - 00000966 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-16 17:49 - 2014-05-16 18:07 - 02067456 _____ (Farbar) C:\Users\sasa\Desktop\FRST64.exe
2014-05-16 17:49 - 2014-05-16 17:49 - 02067456 _____ (Farbar) C:\Users\sasa\Downloads\FRST64.exe
2014-05-16 15:43 - 2014-05-16 15:43 - 01325827 _____ () C:\Users\sasa\Desktop\adwcleaner_3.208.exe
2014-05-16 15:42 - 2014-05-16 15:42 - 01016261 _____ (Thisisu) C:\Users\sasa\Desktop\JRT.exe
2014-05-16 15:22 - 2014-05-16 15:22 - 04745984 _____ (Piriform Ltd) C:\Users\sasa\Desktop\ccsetup413.exe
2014-05-16 15:17 - 2014-05-16 14:36 - 00000000 ____D () C:\Program Files (x86)\trend micro
2014-05-16 15:13 - 2012-12-05 23:02 - 00000000 ___RD () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-16 15:13 - 2012-12-05 23:02 - 00000000 ___RD () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 15:09 - 2014-05-07 09:32 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-16 14:36 - 2014-05-16 14:36 - 00000000 ____D () C:\rsit
2014-05-16 14:35 - 2014-05-16 14:34 - 00781909 _____ () C:\Users\sasa\Desktop\RSIT.exe
2014-05-16 03:20 - 2014-04-13 09:45 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-05-16 03:20 - 2014-01-14 11:43 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2014-05-16 03:20 - 2013-09-08 14:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jpeg Resampler 2010
2014-05-16 03:20 - 2013-07-24 19:01 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\vlc
2014-05-16 03:20 - 2013-07-24 19:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-05-16 03:20 - 2013-04-06 14:45 - 00000000 ____D () C:\Windows\Minidump
2014-05-16 03:20 - 2013-03-01 13:24 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
2014-05-16 03:20 - 2013-02-10 22:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MV2Player
2014-05-16 03:20 - 2013-02-03 21:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmarThru 4
2014-05-16 03:20 - 2013-02-03 21:33 - 00000000 ____D () C:\Program Files (x86)\SmarThru 4
2014-05-16 03:20 - 2013-02-03 21:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung SCX-4300 Series
2014-05-16 03:20 - 2013-01-03 15:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FarCry 3
2014-05-16 03:20 - 2012-12-18 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013
2014-05-16 03:20 - 2012-12-18 19:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-05-16 03:20 - 2012-12-18 19:41 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2013
2014-05-16 03:20 - 2012-12-18 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft DirectX SDK (August 2007)
2014-05-16 03:20 - 2012-12-18 16:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastPCTweaker
2014-05-16 03:20 - 2012-12-18 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer
2014-05-16 03:20 - 2012-12-18 16:25 - 00000000 ____D () C:\Program Files (x86)\Dll-Files.com Fixer
2014-05-16 03:20 - 2012-12-18 15:51 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-16 03:20 - 2012-12-18 15:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-16 03:20 - 2012-12-10 14:28 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
2014-05-16 03:20 - 2012-12-09 18:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2014-05-16 03:20 - 2012-12-05 22:58 - 00000000 ___RD () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-16 03:20 - 2012-12-05 22:58 - 00000000 ___RD () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-16 03:20 - 2012-12-05 22:58 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-05-16 03:20 - 2012-12-05 01:24 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-05-16 03:20 - 2012-08-09 17:59 - 00000000 ____D () C:\ProgramData\OneKey Recovery
2014-05-16 03:20 - 2012-08-09 17:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-16 03:20 - 2012-08-09 17:54 - 00000000 ____D () C:\Windows\System32\Tasks\Lenovo
2014-05-16 03:20 - 2012-08-09 17:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-05-16 03:20 - 2012-08-09 17:45 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-05-16 03:20 - 2012-08-09 17:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-05-16 03:20 - 2012-08-09 17:40 - 00000000 ____D () C:\Program Files (x86)\USB Camera
2014-05-16 03:20 - 2012-08-09 17:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2014-05-16 03:20 - 2012-08-09 17:26 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-16 03:20 - 2012-08-09 17:26 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-16 03:20 - 2012-08-09 17:14 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-05-16 03:20 - 2011-10-10 10:19 - 00000000 ____D () C:\Program Files\Windows Journal
2014-05-16 03:20 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-16 03:20 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 03:20 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-05-16 03:20 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-16 03:20 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 __RSD () C:\Windows\Media
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\servicing
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\IME
2014-05-16 03:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Cursors
2014-05-16 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-05-15 17:22 - 2012-12-05 22:58 - 00000000 ____D () C:\Users\sasa
2014-05-14 20:23 - 2014-05-14 20:06 - 2018967552 _____ () C:\Users\sasa\Downloads\1492 Dobyti raje CZ dvd rip.avi
2014-05-13 16:21 - 2014-05-13 16:12 - 1568136456 _____ () C:\Users\sasa\Downloads\Snowpiercer-Seolgug-Yeolcha-2013-CZ-vlozene.avi
2014-05-11 11:22 - 2012-12-18 16:28 - 00000290 _____ () C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
2014-05-09 08:14 - 2014-05-16 14:46 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-16 14:46 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 23:39 - 2014-05-08 23:35 - 683686340 _____ () C:\Users\sasa\Downloads\Zámek v oblacích (2004).AVI
2014-05-08 09:15 - 2014-05-08 09:08 - 1338671104 _____ () C:\Users\sasa\Downloads\Kapitán Phillips (2013) CZ dabing.avi
2014-05-08 09:04 - 2012-08-09 17:58 - 00003962 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-08 09:04 - 2012-08-09 17:58 - 00003710 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-07 18:04 - 2012-12-18 16:28 - 00000274 _____ () C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
2014-05-06 06:40 - 2014-05-16 15:03 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 06:17 - 2014-05-16 15:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 05:25 - 2014-05-16 15:03 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 05:07 - 2014-05-16 15:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-06 05:00 - 2014-05-16 15:03 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-06 04:10 - 2014-05-16 15:03 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-04 18:01 - 2014-05-04 18:01 - 00133632 _____ () C:\Users\sasa\Downloads\pudni_koloidy.ppt
2014-05-03 20:24 - 2014-05-03 20:24 - 00135288 _____ () C:\Users\sasa\Downloads\detailne-zpracovane-otazky-okruhy-z-ke-zkousce.odt
2014-05-02 22:09 - 2013-07-24 19:00 - 00001081 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-05-02 22:05 - 2014-05-02 21:19 - 00000000 ____D () C:\Users\sasa\Downloads\RoboCop.2014.720p.WEB-DL.H264-WEBiOS [PublicHD]
2014-05-02 21:52 - 2012-12-18 17:20 - 00000000 ____D () C:\Users\sasa\AppData\Roaming\uTorrent
2014-05-02 19:19 - 2013-01-22 17:52 - 00000000 ____D () C:\Users\sasa\Desktop\filmy
2014-05-02 16:04 - 2013-11-20 22:28 - 00000000 ____D () C:\Users\sasa\Desktop\škola druhák
2014-05-01 18:27 - 2014-05-01 18:26 - 00000000 ____D () C:\Users\sasa\Downloads\[ www.UsaBit.com ] - Micro Monsters with David Attenborough (2013) BluRay 720p 900MB Ganool
2014-05-01 13:21 - 2012-12-05 22:58 - 00001133 _____ () C:\Users\sasa\Desktop\Cyberlink Power2Go.lnk
2014-05-01 13:20 - 2014-05-01 13:20 - 00000000 ____D () C:\Users\sasa\Downloads\Soundtrack-Mamma-Mia!
2014-04-29 16:19 - 2012-08-09 17:59 - 00002194 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-29 00:12 - 2014-04-29 00:12 - 00016655 _____ () C:\Users\sasa\Downloads\protokol-6.odt
2014-04-26 18:32 - 2014-04-26 18:32 - 00001808 _____ () C:\Users\sasa\Downloads\addon.crx
2014-04-23 08:04 - 2014-04-23 08:04 - 00385536 _____ () C:\Users\sasa\Downloads\APSC_prezentace_produkce_noví_FP_leden2014.ppt
2014-04-23 08:03 - 2014-04-23 08:03 - 00249344 _____ () C:\Users\sasa\Downloads\Metodické_předpisy__prezentace_noví_FP_duben2014.ppt
2014-04-21 21:54 - 2014-04-21 21:54 - 00019515 _____ () C:\Users\sasa\Downloads\klimadiagram na meteo.odt
2014-04-21 17:07 - 2014-04-21 17:07 - 00033280 _____ () C:\Users\sasa\Downloads\Seznam_plevelu (1).xls
2014-04-21 17:05 - 2014-04-21 17:05 - 00033280 _____ () C:\Users\sasa\Downloads\Seznam_plevelu.xls
Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.3680.dll
Some content of TEMP:
====================
C:\Users\sasa\AppData\Local\Temp\drm_dialogs.dll
C:\Users\sasa\AppData\Local\Temp\drm_dyndata_7340014.dll
C:\Users\sasa\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp4x0iyl.dll
C:\Users\sasa\AppData\Local\Temp\InstallManager_GEN_GEN.exe
C:\Users\sasa\AppData\Local\Temp\Setup.exe
C:\Users\sasa\AppData\Local\Temp\tbedrs.dll
C:\Users\sasa\AppData\Local\Temp\TB_F642.exe
C:\Users\sasa\AppData\Local\Temp\utt83D3.tmp.exe
C:\Users\sasa\AppData\Local\Temp\vlc-2.1.3-win32.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe
[2014-05-16 14:44] - [2014-03-04 11:43] - 0455168 ____A (Microsoft Corporation) 88AB9B72B4BF3963A0DE0820B4B0B06C
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\sasa\Desktop" je 83982 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
-
Rudy
- Site Admin
- Příspěvky: 119541
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nestandardní chování notebooku - prosba o pomoc
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT3220468
URLSearchHook: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
URLSearchHook: HKCU - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
SearchScopes: HKCU - DefaultScope {07460650-C843-49D9-9CFB-6FDB67F5C213} URL = http://search.conduit.com/ResultsExt.as ... =CT3220468
SearchScopes: HKCU - {07460650-C843-49D9-9CFB-6FDB67F5C213} URL = http://search.conduit.com/ResultsExt.as ... =CT3220468
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchT ... edb9a3fcb2
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
BHO-x32: TBLayoutBHO Class - {008f6853-9cb4-41c5-a950-39d55e5e06ba} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
BHO-x32: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
BHO-x32: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120809085327.dll No File
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Amazon Browser Bar - {EA582743-9076-4178-9AA6-7393FDF4D5CE} - C:\Program Files (x86)\Amazon Browser Bar\AmazonBrowserBar.3.0.dll (Amazon.com)
Toolbar: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {7473B6BD-4691-4744-A82B-7854EB3D70B6} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
U3 BcmSqlStartupSvc;
U2 CLKMSVC10_3A60B698;
U2 CLKMSVC10_C3B3B687;
U2 DriverService;
U2 iATAgentService;
U2 idealife Update Service;
U3 IGRS;
U2 IviRegMgr;
U2 Oasis2Service;
U2 PCCarerService;
U2 ReadyComm.DirectRouter;
U2 RichVideo;
U2 RtLedService;
U2 SeaPort;
U2 SoftwareService;
U3 SQLWriter;
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\sasa\AppData\Local\Temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nestandardní chování notebooku - prosba o pomoc
Log je zřejmě moc velký - odeslání se nepovedlo:
Vaše zpráva obsahuje 485437 znaků. Maximální povolený počet znaků je 100000.
Mám ho poslat ve více odpovědích a nebo jako přílohu mailem?
Vaše zpráva obsahuje 485437 znaků. Maximální povolený počet znaků je 100000.
Mám ho poslat ve více odpovědích a nebo jako přílohu mailem?
Re: Nestandardní chování notebooku - prosba o pomoc
Poslal jsem log jako přílohu do mailu.
-
Rudy
- Site Admin
- Příspěvky: 119541
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nestandardní chování notebooku - prosba o pomoc
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nestandardní chování notebooku - prosba o pomoc
omlouvám se - co je smazáno?
Změna asi nenastala, počítač zamrzl bezprostředně po zkopírování fixlogu na flashku, ze které jsem ho stáhl do druhého počítače, z toho jsem Vám ho poslal. Po restaru během fixu se nastartoval do normálního režimu a v tom zamrzl.
Teď běží ten postižený notebook opět v nouzovém režimu.
Mám ho tedy vypnout a zapnout v normálním režimu?
Změna asi nenastala, počítač zamrzl bezprostředně po zkopírování fixlogu na flashku, ze které jsem ho stáhl do druhého počítače, z toho jsem Vám ho poslal. Po restaru během fixu se nastartoval do normálního režimu a v tom zamrzl.
Teď běží ten postižený notebook opět v nouzovém režimu.
Mám ho tedy vypnout a zapnout v normálním režimu?
Re: Nestandardní chování notebooku - prosba o pomoc
Bohužel změna nenastala - nastartoval jsem notebook v normálním režimu, otevřel jsem průzkumník a ten zamrzl hned jak jsem se chtěl zobrazit dokumenty. Je to už několik minut, program neodpovídá.
Takže pro jakoukoliv akci budu muset opět otevřít v nouzovém režimu.
Takže pro jakoukoliv akci budu muset opět otevřít v nouzovém režimu.
-
Rudy
- Site Admin
- Příspěvky: 119541
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nestandardní chování notebooku - prosba o pomoc
Zkuste obnovu systému k datu, kdy korektně fungoval.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nestandardní chování notebooku - prosba o pomoc
Tak to jste mě trošku zaskočil - jak to provedu? Omlouvám se za dotaz, ale nikdy jsem to nedělal.
-
Rudy
- Site Admin
- Příspěvky: 119541
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nestandardní chování notebooku - prosba o pomoc
Smazáno bylo to, co jsem dal do skriptu, který jste spustil.
Obnova systému: Startmenu>všechny programy>příslušenství>systémové nástroje>obnovení systému.
Obnova systému: Startmenu>všechny programy>příslušenství>systémové nástroje>obnovení systému.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nestandardní chování notebooku - prosba o pomoc
Díky. Lze to provést i v tom nouzovém režimu?
Jistě. Jinak bych vám to nenavrhl.
Jistě. Jinak bych vám to nenavrhl.
Přispějete na provoz fóra?