problem s winlog.exe

[vyosek]

Dejte FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

[xabe]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-05-2014
Ran by msi (administrator) on MSI-MSI on 30-05-2014 18:08:18
Running from C:\Users\msi\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\System Control Manager\MSIService.exe
(MSI) C:\Program Files (x86)\MSI\MSI HOUSE\MSIFoundationService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Cinema ProII\CinemaProII.exe
(msi) C:\Program Files (x86)\MSI\Cinema ProII\Cinema ProII Controler.exe
(MSI) C:\Program Files (x86)\MSI\NVIDIA Overclock Tool\NVIDIAOCAP.exe
(msi) C:\Program Files (x86)\MSI\msi LED Manager\SLM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\msi\AppData\Local\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\msi\Desktop\FRSTLauncher.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10372368 2011-03-30] (Intel Corporation)
HKLM\...\Run: [THXCfg64] => C:\windows\system32\THXCfg64.dll [17920 2009-10-15] (Creative Technology Ltd.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\nvspcap64.dll [1225920 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [MGSysCtrl] => C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe [2482176 2010-11-05] (Micro-Star International Co., Ltd.)
HKLM-x32\...\Run: [Cinema ProII AP] => C:\Program Files (x86)\MSI\Cinema ProII\CinemaProII.exe [200192 2011-01-25] (Micro-Star Int'l Co., Ltd.)
HKLM-x32\...\Run: [Cinema ProII Controler] => C:\Program Files (x86)\MSI\Cinema ProII\Cinema ProII Controler.exe [1689600 2010-06-25] (msi)
HKLM-x32\...\Run: [NVIDIAOCAP] => C:\Program Files (x86)\MSI\NVIDIA Overclock Tool\NVIDIAOCAP.exe [83456 2010-10-20] (MSI)
HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe [1351680 2010-11-19] (Creative Technology Ltd)
HKLM-x32\...\Run: [msi LED Manager] => C:\Program Files (x86)\msi\msi LED Manager\SLM.exe [2795008 2010-07-29] (msi)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3888648 2014-05-28] (AVAST Software)
HKLM-x32\...\RunOnce: [20140529] - C:\Program Files\AVAST Software\Avast\setup\emupdate\eaf0d6e2-9198-4628-8f9f-706bb6561afc.exe /check [183208 2014-05-30] (AVAST Software)
HKU\S-1-5-21-163127321-2156093790-1272651653-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com/search?q={searchT ... d=ie7&rlz=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {2BDAE77B-DDFE-4B9B-A490-C832AFB44522} URL =
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - No File
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No File
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 77.48.100.254

FireFox:
========
FF ProfilePath: C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\dbs4vt9k.default
FF NewTab: hxxp://www.google.com/
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @garmin.com/GpsControl - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF Plugin-x32: @garmin.com/GpsControl - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\msi\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\msi\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Adblock Plus - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\dbs4vt9k.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-11-17]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-05-28]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR Extension: (Dokumenty Google) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-30]
CHR Extension: (Disk Google) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-30]
CHR Extension: (YouTube) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-30]
CHR Extension: (Vyhledávání Google) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-30]
CHR Extension: (avast! Online Security) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-05-29]
CHR Extension: (Peněženka Google) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30]
CHR Extension: (Gmail) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-09-25]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-05-28]

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-28] (AVAST Software)
S4 Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [387928 2014-02-12] (Garmin Ltd or its subsidiaries)
R2 MSI Foundation Service; C:\Program Files (x86)\MSI\MSI HOUSE\MSIFoundationService.exe [12800 2010-07-17] (MSI)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [87040 2012-03-23] ()
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [76888 2012-11-29] ()

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-05-28] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-05-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-05-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-05-28] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-28] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-05-28] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-08-19] (Disc Soft Ltd)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
S3 NVR0Dev; C:\windows\nvoclk64.sys [39968 2007-09-04] (NVidia Corp.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2012-11-21] (Duplex Secure Ltd.)
U3 agee2o4o; C:\Windows\System32\Drivers\agee2o4o.sys [0 ] (Intel Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 MGHwCtrl; \??\C:\Program Files\MSI\MSI Software Install\MGHwCtrl.sys [X]
S3 XICTAMDM; system32\DRIVERS\XICTAMDM.sys [X]
S3 XICTANmea; system32\DRIVERS\XICTANmea.sys [X]
S3 XICTAVSP; system32\DRIVERS\XICTAVSP.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-30 18:08 - 2014-05-30 18:08 - 00019955 _____ () C:\Users\msi\Desktop\FRST.txt
2014-05-30 18:07 - 2014-05-30 18:08 - 00000000 ____D () C:\FRST
2014-05-30 18:05 - 2014-05-30 18:05 - 00112640 _____ (forum.viry.cz) C:\Users\msi\Desktop\FRSTLauncher.exe
2014-05-30 18:04 - 2014-05-30 18:04 - 00112640 _____ (forum.viry.cz) C:\Users\msi\Downloads\Nepotvrzeno 770423.crdownload
2014-05-30 18:04 - 2014-05-30 18:04 - 00112640 _____ (forum.viry.cz) C:\Users\msi\Downloads\Nepotvrzeno 583171.crdownload
2014-05-30 18:03 - 2014-05-30 18:04 - 02066944 _____ (Farbar) C:\Users\msi\Desktop\FRST64.exe
2014-05-30 00:03 - 2014-05-30 00:03 - 00010995 _____ () C:\Users\msi\Desktop\zoek-results.txt
2014-05-30 00:00 - 2014-05-30 18:08 - 00000000 ____D () C:\Users\msi\AppData\Local\Temp
2014-05-30 00:00 - 2014-05-30 00:00 - 00000080 _____ () C:\folders.txt
2014-05-30 00:00 - 2014-05-30 00:00 - 00000000 ____D () C:\Users\Public\AppData\Local\temp
2014-05-30 00:00 - 2014-05-30 00:00 - 00000000 ____D () C:\Users\hedev\AppData\Local\temp
2014-05-30 00:00 - 2014-05-30 00:00 - 00000000 ____D () C:\Users\Default\AppData\Local\temp
2014-05-30 00:00 - 2014-05-30 00:00 - 00000000 ____D () C:\Users\Default User\AppData\Local\temp
2014-05-30 00:00 - 2014-05-29 23:42 - 00024064 _____ () C:\windows\zoek-delete.exe
2014-05-29 23:45 - 2014-05-30 00:02 - 00010995 _____ () C:\zoek-results.log
2014-05-29 23:42 - 2014-05-29 23:56 - 00000000 ____D () C:\zoek_backup
2014-05-29 23:42 - 2014-05-29 23:42 - 00004504 _____ () C:\Users\msi\Desktop\AdwCleaner[S0].txt
2014-05-29 23:38 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\windows\SysWOW64\sqlite3.dll
2014-05-29 23:37 - 2014-05-29 23:39 - 00000000 ____D () C:\AdwCleaner
2014-05-29 23:37 - 2014-05-29 23:37 - 01327971 _____ () C:\Users\msi\Downloads\adwcleaner_3.211.exe
2014-05-29 23:36 - 2014-05-29 23:36 - 01285120 _____ () C:\Users\msi\Desktop\zoek.exe
2014-05-29 21:57 - 2014-05-29 21:57 - 00001211 _____ () C:\Users\msi\Desktop\Uplay.lnk
2014-05-29 21:57 - 2014-05-29 21:57 - 00000107 _____ () C:\Users\Public\Desktop\WATCH_DOGS.url
2014-05-29 21:56 - 2014-05-29 21:56 - 00000376 _____ () C:\windows\DirectX.log
2014-05-29 20:39 - 2014-05-29 21:11 - 00001053 _____ () C:\Users\msi\Desktop\checkup.txt
2014-05-29 20:28 - 2014-05-29 20:28 - 00854367 _____ () C:\Users\msi\Desktop\SecurityCheck.exe
2014-05-28 23:23 - 2014-05-28 23:23 - 00458327 _____ () C:\Users\msi\Downloads\Sdilej_Manager.zip
2014-05-28 23:12 - 2014-05-28 23:12 - 00002127 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2014-05-28 23:12 - 2014-05-28 23:12 - 00001912 _____ () C:\windows\epplauncher.mif
2014-05-28 23:12 - 2014-05-28 23:12 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-05-28 23:12 - 2014-05-28 23:12 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-05-28 23:10 - 2014-05-28 23:11 - 13850816 _____ (Microsoft Corporation) C:\Users\msi\Downloads\mseinstall (1).exe
2014-05-28 22:08 - 2014-05-28 22:08 - 01039096 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2014-05-28 22:08 - 2014-05-28 22:08 - 00423240 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-05-28 22:08 - 2014-05-28 22:08 - 00085328 _____ (AVAST Software) C:\windows\system32\Drivers\aswstm.sys
2014-05-28 22:08 - 2014-05-28 22:08 - 00004182 _____ () C:\windows\System32\Tasks\avast! Emergency Update
2014-05-28 22:08 - 2014-05-28 22:08 - 00001976 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-05-28 22:08 - 2014-05-28 22:08 - 00000000 ____D () C:\Users\msi\AppData\Roaming\AVAST Software
2014-05-28 22:08 - 2014-05-28 22:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-05-28 22:08 - 2014-05-28 22:07 - 01039096 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys.1401307709778
2014-05-28 22:08 - 2014-05-28 22:07 - 00423240 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys.1401307709778
2014-05-28 22:08 - 2014-05-28 22:07 - 00208416 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-05-28 22:08 - 2014-05-28 22:07 - 00079184 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-05-28 22:08 - 2014-05-28 22:07 - 00065776 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-05-28 22:08 - 2014-05-28 22:07 - 00029208 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-05-28 22:07 - 2014-05-28 22:07 - 00334648 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-05-28 22:07 - 2014-05-28 22:07 - 00093568 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2014-05-28 22:07 - 2014-05-28 22:07 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-05-28 22:06 - 2014-05-28 22:06 - 00000000 ____D () C:\Program Files\AVAST Software
2014-05-28 22:05 - 2014-05-28 22:05 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-05-28 21:58 - 2014-05-28 21:58 - 04796856 _____ (AVAST Software) C:\Users\msi\Downloads\avast_free_antivirus_setup_online.exe
2014-05-28 21:08 - 2014-05-28 21:08 - 00034679 _____ () C:\Users\msi\Desktop\ComboFix.txt
2014-05-28 20:49 - 2014-05-30 00:01 - 00001510 _____ () C:\windows\PFRO.log
2014-05-28 20:28 - 2011-06-26 08:45 - 00256000 _____ () C:\windows\PEV.exe
2014-05-28 20:28 - 2010-11-07 19:20 - 00208896 _____ () C:\windows\MBR.exe
2014-05-28 20:28 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\windows\NIRCMD.exe
2014-05-28 20:28 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\windows\SWREG.exe
2014-05-28 20:28 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\windows\SWSC.exe
2014-05-28 20:28 - 2000-08-31 02:00 - 00098816 _____ () C:\windows\sed.exe
2014-05-28 20:28 - 2000-08-31 02:00 - 00080412 _____ () C:\windows\grep.exe
2014-05-28 20:28 - 2000-08-31 02:00 - 00068096 _____ () C:\windows\zip.exe
2014-05-28 20:27 - 2014-05-28 21:09 - 00000000 ____D () C:\Qoobox
2014-05-28 20:27 - 2014-05-28 21:04 - 00000000 ____D () C:\windows\erdnt
2014-05-28 20:25 - 2014-05-28 20:26 - 05203612 ____R (Swearware) C:\Users\msi\Desktop\ComboFix.exe
2014-05-28 20:12 - 2014-05-28 20:12 - 00002040 _____ () C:\Users\msi\Desktop\Rkill.txt
2014-05-28 20:10 - 2014-05-28 20:10 - 01940216 _____ (Bleeping Computer, LLC) C:\Users\msi\Desktop\rkill.com
2014-05-28 19:46 - 2014-05-28 19:46 - 00000000 ____D () C:\rsit
2014-05-28 19:46 - 2014-05-28 19:46 - 00000000 ____D () C:\Program Files\trend micro
2014-05-28 19:45 - 2014-05-28 19:45 - 01222144 _____ () C:\Users\msi\Downloads\RSITx64.exe
2014-05-28 19:39 - 2014-05-28 19:39 - 00165888 _____ () C:\Users\msi\Downloads\T-Cleaner.exe
2014-05-28 19:19 - 2014-05-30 17:59 - 00001624 _____ () C:\windows\setupact.log
2014-05-28 19:19 - 2014-05-28 19:19 - 00000000 _____ () C:\windows\setuperr.log
2014-05-28 00:03 - 2014-05-28 00:03 - 00718308 _____ () C:\Users\msi\Desktop\cc_20140528_000304.reg
2014-05-27 23:58 - 2014-05-27 23:58 - 00004619 _____ () C:\Users\msi\Downloads\stažený soubor
2014-05-27 23:56 - 2014-05-27 23:57 - 11167316 _____ () C:\Users\msi\Downloads\cc-setup.exe
2014-05-27 23:28 - 2014-05-27 23:28 - 00014628 _____ () C:\Users\msi\Downloads\hijackthis.log
2014-05-27 23:27 - 2014-05-27 23:27 - 00388608 _____ (Trend Micro Inc.) C:\Users\msi\Downloads\hijackthis.exe
2014-05-26 22:23 - 2014-05-15 01:49 - 03774821 _____ () C:\windows\system32\nvcoproc.bin
2014-05-26 22:16 - 2014-05-20 04:44 - 31387936 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 25256224 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 24025376 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 18531568 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2umx.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 17561544 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcompiler.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 17480432 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dumx.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 16003912 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 12688328 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-05-26 22:16 - 2014-05-20 04:44 - 11644928 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 11599072 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 09735256 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 09697640 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 03141976 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 02953672 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 02785568 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 02412376 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvenc.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 01889112 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6433788.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 01541576 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6433788.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 00895776 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 00867784 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2014-05-26 22:16 - 2014-05-20 04:44 - 00861128 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2014-05-26 21:40 - 2014-05-26 21:40 - 01019477 _____ () C:\Users\msi\Downloads\HudsonMario.zip
2014-05-26 21:23 - 2014-05-26 21:23 - 00032413 _____ () C:\Users\msi\Downloads\261-super-mario-bros--nintendo-co-ltd-1985.zip
2014-05-26 21:10 - 2014-03-31 18:42 - 00040392 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvad64v.sys
2014-05-26 21:10 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll
2014-05-26 20:43 - 2014-05-26 21:24 - 00000000 ____D () C:\Users\msi\Desktop\CONTRA PACK
2014-05-26 20:39 - 2014-05-26 20:39 - 02066618 _____ () C:\Users\msi\Downloads\CONTRA_PACK.zip
2014-05-24 15:26 - 2014-05-24 15:26 - 00000569 _____ () C:\Users\Public\Desktop\Wolfenstein The New Order.lnk
2014-05-24 15:26 - 2014-05-24 15:26 - 00000569 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wolfenstein The New Order.lnk
2014-05-23 21:06 - 2014-05-23 22:19 - 1944776704 _____ () C:\Users\msi\Downloads\robocoop.avi
2014-05-23 19:15 - 2014-05-23 21:20 - 1526577152 _____ () C:\Users\msi\Downloads\Mrtvy_muz_prichazi_(1995)_by.Dadunka.of.PowerUploaders.avi
2014-05-20 20:12 - 2014-05-20 20:12 - 00236944 _____ () C:\Users\msi\Downloads\FLVPlayerSetup-N9TFKLWGJ.exe
2014-05-18 19:13 - 2014-05-24 18:29 - 00000000 ____D () C:\Users\msi\Desktop\kuchyně
2014-05-16 00:45 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-05-16 00:45 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-05-16 00:45 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-05-16 00:45 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-05-16 00:45 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-05-16 00:45 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-05-15 20:01 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-05-15 20:01 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-05-15 20:01 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-05-15 20:01 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-05-15 20:00 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-05-15 20:00 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-05-15 20:00 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-05-15 20:00 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-05-15 20:00 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-05-15 20:00 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-05-15 20:00 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-05-15 20:00 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-05-15 20:00 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-05-15 20:00 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-05-15 20:00 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-05-15 20:00 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\windows\system32\objsel.dll
2014-05-15 20:00 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2014-05-15 20:00 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-05-15 20:00 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-05-15 20:00 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-05-15 20:00 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-05-15 20:00 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\wincredprovider.dll
2014-05-15 20:00 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2014-05-15 20:00 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\cngprovider.dll
2014-05-15 20:00 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\adprovider.dll
2014-05-15 20:00 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\capiprovider.dll
2014-05-15 20:00 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\dpapiprovider.dll
2014-05-15 20:00 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\dimsroam.dll
2014-05-15 20:00 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-05-15 20:00 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2014-05-15 20:00 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2014-05-15 20:00 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-05-15 20:00 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\windows\SysWOW64\objsel.dll
2014-05-15 20:00 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-05-15 20:00 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-05-15 20:00 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-05-15 20:00 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-05-15 20:00 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\cngprovider.dll
2014-05-15 20:00 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\windows\SysWOW64\adprovider.dll
2014-05-15 20:00 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\windows\SysWOW64\capiprovider.dll
2014-05-15 20:00 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpapiprovider.dll
2014-05-15 20:00 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dimsroam.dll
2014-05-15 20:00 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wincredprovider.dll
2014-05-15 20:00 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-05-15 20:00 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2014-05-14 23:17 - 2014-05-14 23:17 - 00040610 _____ () C:\Users\msi\Downloads\Breaking.Bad.S05E14.HDTV.XviD-AFG.srt
2014-05-11 23:25 - 2014-05-11 23:25 - 14529677 _____ () C:\Users\msi\Downloads\216875415-DARKSLLSV102.rar
2014-05-11 17:49 - 2014-05-30 17:59 - 00000948 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore1cf6d308a7ce4b3.job
2014-05-11 17:49 - 2014-05-11 17:49 - 00003696 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore1cf6d308a7ce4b3
2014-05-08 00:21 - 2014-05-08 00:21 - 00000000 __SHD () C:\Users\msi\AppData\Local\EmieUserList
2014-05-08 00:21 - 2014-05-08 00:21 - 00000000 __SHD () C:\Users\msi\AppData\Local\EmieSiteList
2014-05-07 00:18 - 2014-05-16 08:52 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-05-07 00:18 - 2014-03-06 11:31 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-05-07 00:18 - 2014-03-06 10:59 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-05-07 00:18 - 2014-03-06 10:57 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-05-07 00:18 - 2014-03-06 10:57 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-05-07 00:18 - 2014-03-06 10:53 - 02767360 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-05-07 00:18 - 2014-03-06 10:40 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-05-07 00:18 - 2014-03-06 10:39 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-05-07 00:18 - 2014-03-06 10:32 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-05-07 00:18 - 2014-03-06 10:29 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-05-07 00:18 - 2014-03-06 10:29 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-05-07 00:18 - 2014-03-06 10:28 - 00752640 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-05-07 00:18 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-05-07 00:18 - 2014-03-06 10:11 - 05784064 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-05-07 00:18 - 2014-03-06 10:09 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-05-07 00:18 - 2014-03-06 10:03 - 00586240 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-05-07 00:18 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-05-07 00:18 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-05-07 00:18 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-05-07 00:18 - 2014-03-06 09:56 - 00038400 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-05-07 00:18 - 2014-03-06 09:48 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-05-07 00:18 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-05-07 00:18 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-05-07 00:18 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-05-07 00:18 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-05-07 00:18 - 2014-03-06 09:42 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-05-07 00:18 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-05-07 00:18 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-05-07 00:18 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-05-07 00:18 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-05-07 00:18 - 2014-03-06 09:21 - 00628736 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-05-07 00:18 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-07 00:18 - 2014-03-06 09:11 - 02043904 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-05-07 00:18 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-05-07 00:18 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-05-07 00:18 - 2014-03-06 08:53 - 13551104 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-05-07 00:18 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-05-07 00:18 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-05-07 00:18 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-05-07 00:18 - 2014-03-06 08:22 - 02260480 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-05-07 00:18 - 2014-03-06 07:58 - 01400832 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-05-07 00:18 - 2014-03-06 07:50 - 00846336 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-05-07 00:18 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-05-07 00:18 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-05-07 00:18 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-05-03 15:42 - 2014-03-30 17:09 - 207128576 _____ () C:\Users\msi\Downloads\Mercenary Kings + Crack.iso
2014-05-03 11:45 - 2014-05-03 11:45 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-05-03 11:40 - 2014-03-04 16:35 - 01885472 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6433523.dll
2014-05-03 11:40 - 2014-03-04 16:35 - 01516488 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6433523.dll
2014-05-03 11:40 - 2013-11-28 15:38 - 00197408 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhda64v.sys
2014-05-03 11:40 - 2013-11-28 15:38 - 00031520 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap64.dll
2014-05-03 11:40 - 2013-11-22 10:36 - 01515296 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco6420103.dll
2014-05-03 11:18 - 2014-05-03 11:18 - 00000000 ____H () C:\windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-02 00:18 - 2014-05-02 00:19 - 00926542 _____ () C:\Users\msi\Downloads\GeDoSaTo_DS2Edition_Alpha1a.zip
2014-05-01 11:49 - 2014-05-01 11:49 - 00017920 ___SH () C:\Users\msi\Thumbs.db

==================== One Month Modified Files and Folders =======

2014-05-30 18:08 - 2014-05-30 18:08 - 00019955 _____ () C:\Users\msi\Desktop\FRST.txt
2014-05-30 18:08 - 2014-05-30 18:07 - 00000000 ____D () C:\FRST
2014-05-30 18:08 - 2014-05-30 00:00 - 00000000 ____D () C:\Users\msi\AppData\Local\Temp
2014-05-30 18:07 - 2012-08-30 09:08 - 01196823 _____ () C:\windows\WindowsUpdate.log
2014-05-30 18:06 - 2012-08-30 09:18 - 00000000 ____D () C:\Users\msi\AppData\Local\CrashDumps
2014-05-30 18:05 - 2014-05-30 18:05 - 00112640 _____ (forum.viry.cz) C:\Users\msi\Desktop\FRSTLauncher.exe
2014-05-30 18:05 - 2009-07-14 06:45 - 00024656 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-30 18:05 - 2009-07-14 06:45 - 00024656 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-30 18:04 - 2014-05-30 18:04 - 00112640 _____ (forum.viry.cz) C:\Users\msi\Downloads\Nepotvrzeno 770423.crdownload
2014-05-30 18:04 - 2014-05-30 18:04 - 00112640 _____ (forum.viry.cz) C:\Users\msi\Downloads\Nepotvrzeno 583171.crdownload
2014-05-30 18:04 - 2014-05-30 18:03 - 02066944 _____ (Farbar) C:\Users\msi\Desktop\FRST64.exe
2014-05-30 17:59 - 2014-05-28 19:19 - 00001624 _____ () C:\windows\setupact.log
2014-05-30 17:59 - 2014-05-11 17:49 - 00000948 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore1cf6d308a7ce4b3.job
2014-05-30 17:59 - 2012-08-30 09:10 - 00135584 _____ () C:\Users\msi\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-30 17:59 - 2009-07-14 07:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-05-30 17:59 - 2009-07-14 06:45 - 00488600 _____ () C:\windows\system32\FNTCACHE.DAT
2014-05-30 00:22 - 2013-02-24 23:46 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-30 00:21 - 2009-07-14 04:34 - 00000478 _____ () C:\windows\win.ini
2014-05-30 00:10 - 2012-10-04 20:48 - 00000000 ____D () C:\Program Files (x86)\SpeedFan
2014-05-30 00:03 - 2014-05-30 00:03 - 00010995 _____ () C:\Users\msi\Desktop\zoek-results.txt
2014-05-30 00:02 - 2014-05-29 23:45 - 00010995 _____ () C:\zoek-results.log
2014-05-30 00:01 - 2014-05-28 20:49 - 00001510 _____ () C:\windows\PFRO.log
2014-05-30 00:00 - 2014-05-30 00:00 - 00000080 _____ () C:\folders.txt
2014-05-30 00:00 - 2014-05-30 00:00 - 00000000 ____D () C:\Users\Public\AppData\Local\temp
2014-05-30 00:00 - 2014-05-30 00:00 - 00000000 ____D () C:\Users\hedev\AppData\Local\temp
2014-05-30 00:00 - 2014-05-30 00:00 - 00000000 ____D () C:\Users\Default\AppData\Local\temp
2014-05-30 00:00 - 2014-05-30 00:00 - 00000000 ____D () C:\Users\Default User\AppData\Local\temp
2014-05-29 23:58 - 2014-03-29 20:48 - 00000954 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-163127321-2156093790-1272651653-1000UA1cf4b7f7168965b.job
2014-05-29 23:56 - 2014-05-29 23:42 - 00000000 ____D () C:\zoek_backup
2014-05-29 23:54 - 2014-02-09 16:38 - 00000952 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA1cf25a4a46cb2db.job
2014-05-29 23:42 - 2014-05-30 00:00 - 00024064 _____ () C:\windows\zoek-delete.exe
2014-05-29 23:42 - 2014-05-29 23:42 - 00004504 _____ () C:\Users\msi\Desktop\AdwCleaner[S0].txt
2014-05-29 23:39 - 2014-05-29 23:37 - 00000000 ____D () C:\AdwCleaner
2014-05-29 23:37 - 2014-05-29 23:37 - 01327971 _____ () C:\Users\msi\Downloads\adwcleaner_3.211.exe
2014-05-29 23:36 - 2014-05-29 23:36 - 01285120 _____ () C:\Users\msi\Desktop\zoek.exe
2014-05-29 23:35 - 2014-01-28 23:16 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-05-29 23:35 - 2014-01-28 22:51 - 00000000 ____D () C:\Users\msi\AppData\Local\Battle.net
2014-05-29 23:35 - 2012-10-02 19:10 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-05-29 22:47 - 2012-09-11 20:59 - 00001076 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-05-29 22:47 - 2012-09-11 20:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-05-29 22:32 - 2014-02-15 21:35 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-29 22:30 - 2014-01-28 22:51 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-05-29 21:59 - 2013-11-07 23:22 - 00000000 ____D () C:\ProgramData\Orbit
2014-05-29 21:59 - 2012-10-28 22:03 - 00000000 ____D () C:\Users\msi\Documents\My Games
2014-05-29 21:58 - 2013-10-12 20:42 - 00000902 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-163127321-2156093790-1272651653-1000Core1cec77ac4a6ccc1.job
2014-05-29 21:57 - 2014-05-29 21:57 - 00001211 _____ () C:\Users\msi\Desktop\Uplay.lnk
2014-05-29 21:57 - 2014-05-29 21:57 - 00000107 _____ () C:\Users\Public\Desktop\WATCH_DOGS.url
2014-05-29 21:57 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-29 21:56 - 2014-05-29 21:56 - 00000376 _____ () C:\windows\DirectX.log
2014-05-29 21:42 - 2012-09-21 23:56 - 00000000 ____D () C:\Users\msi\AppData\Roaming\DAEMON Tools Lite
2014-05-29 21:11 - 2014-05-29 20:39 - 00001053 _____ () C:\Users\msi\Desktop\checkup.txt
2014-05-29 21:04 - 2012-11-17 22:29 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2013
2014-05-29 21:01 - 2013-02-09 17:27 - 00003608 _____ () C:\windows\System32\Tasks\Launch HTC Sync Loader
2014-05-29 20:40 - 2011-08-19 22:14 - 00669132 _____ () C:\windows\system32\perfh005.dat
2014-05-29 20:40 - 2011-08-19 22:14 - 00141760 _____ () C:\windows\system32\perfc005.dat
2014-05-29 20:40 - 2009-07-14 07:13 - 01584626 _____ () C:\windows\system32\PerfStringBackup.INI
2014-05-29 20:28 - 2014-05-29 20:28 - 00854367 _____ () C:\Users\msi\Desktop\SecurityCheck.exe
2014-05-29 20:15 - 2012-09-08 14:04 - 00000000 ____D () C:\Users\msi\AppData\Local\Deployment
2014-05-29 19:41 - 2012-10-02 19:18 - 00001128 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-29 19:41 - 2012-10-02 19:18 - 00001128 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-29 19:41 - 2012-09-08 14:06 - 00002385 _____ () C:\Users\msi\Desktop\Google Chrome.lnk
2014-05-28 23:23 - 2014-05-28 23:23 - 00458327 _____ () C:\Users\msi\Downloads\Sdilej_Manager.zip
2014-05-28 23:12 - 2014-05-28 23:12 - 00002127 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2014-05-28 23:12 - 2014-05-28 23:12 - 00001912 _____ () C:\windows\epplauncher.mif
2014-05-28 23:12 - 2014-05-28 23:12 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-05-28 23:12 - 2014-05-28 23:12 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-05-28 23:11 - 2014-05-28 23:10 - 13850816 _____ (Microsoft Corporation) C:\Users\msi\Downloads\mseinstall (1).exe
2014-05-28 22:08 - 2014-05-28 22:08 - 01039096 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2014-05-28 22:08 - 2014-05-28 22:08 - 00423240 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-05-28 22:08 - 2014-05-28 22:08 - 00085328 _____ (AVAST Software) C:\windows\system32\Drivers\aswstm.sys
2014-05-28 22:08 - 2014-05-28 22:08 - 00004182 _____ () C:\windows\System32\Tasks\avast! Emergency Update
2014-05-28 22:08 - 2014-05-28 22:08 - 00001976 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-05-28 22:08 - 2014-05-28 22:08 - 00000000 ____D () C:\Users\msi\AppData\Roaming\AVAST Software
2014-05-28 22:08 - 2014-05-28 22:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-05-28 22:07 - 2014-05-28 22:08 - 01039096 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys.1401307709778
2014-05-28 22:07 - 2014-05-28 22:08 - 00423240 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys.1401307709778
2014-05-28 22:07 - 2014-05-28 22:08 - 00208416 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-05-28 22:07 - 2014-05-28 22:08 - 00079184 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-05-28 22:07 - 2014-05-28 22:08 - 00065776 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-05-28 22:07 - 2014-05-28 22:08 - 00029208 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-05-28 22:07 - 2014-05-28 22:07 - 00334648 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-05-28 22:07 - 2014-05-28 22:07 - 00093568 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2014-05-28 22:07 - 2014-05-28 22:07 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-05-28 22:06 - 2014-05-28 22:06 - 00000000 ____D () C:\Program Files\AVAST Software
2014-05-28 22:05 - 2014-05-28 22:05 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-05-28 21:58 - 2014-05-28 21:58 - 04796856 _____ (AVAST Software) C:\Users\msi\Downloads\avast_free_antivirus_setup_online.exe
2014-05-28 21:09 - 2014-05-28 20:27 - 00000000 ____D () C:\Qoobox
2014-05-28 21:09 - 2012-09-08 14:04 - 00000000 ____D () C:\Users\msi\AppData\Local\Apps\2.0
2014-05-28 21:08 - 2014-05-28 21:08 - 00034679 _____ () C:\Users\msi\Desktop\ComboFix.txt
2014-05-28 21:08 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-05-28 21:04 - 2014-05-28 20:27 - 00000000 ____D () C:\windows\erdnt
2014-05-28 20:50 - 2009-07-14 04:34 - 00000215 _____ () C:\windows\system.ini
2014-05-28 20:43 - 2012-10-27 18:54 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-05-28 20:26 - 2014-05-28 20:25 - 05203612 ____R (Swearware) C:\Users\msi\Desktop\ComboFix.exe
2014-05-28 20:12 - 2014-05-28 20:12 - 00002040 _____ () C:\Users\msi\Desktop\Rkill.txt
2014-05-28 20:10 - 2014-05-28 20:10 - 01940216 _____ (Bleeping Computer, LLC) C:\Users\msi\Desktop\rkill.com
2014-05-28 19:46 - 2014-05-28 19:46 - 00000000 ____D () C:\rsit
2014-05-28 19:46 - 2014-05-28 19:46 - 00000000 ____D () C:\Program Files\trend micro
2014-05-28 19:45 - 2014-05-28 19:45 - 01222144 _____ () C:\Users\msi\Downloads\RSITx64.exe
2014-05-28 19:40 - 2012-08-30 09:10 - 00000000 ____D () C:\Users\msi
2014-05-28 19:39 - 2014-05-28 19:39 - 00165888 _____ () C:\Users\msi\Downloads\T-Cleaner.exe
2014-05-28 19:19 - 2014-05-28 19:19 - 00000000 _____ () C:\windows\setuperr.log
2014-05-28 00:03 - 2014-05-28 00:03 - 00718308 _____ () C:\Users\msi\Desktop\cc_20140528_000304.reg
2014-05-28 00:01 - 2011-02-14 23:43 - 00000000 ____D () C:\windows\Panther
2014-05-28 00:00 - 2013-08-20 20:24 - 00000832 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-05-28 00:00 - 2013-08-20 20:24 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-27 23:58 - 2014-05-27 23:58 - 00004619 _____ () C:\Users\msi\Downloads\stažený soubor
2014-05-27 23:57 - 2014-05-27 23:56 - 11167316 _____ () C:\Users\msi\Downloads\cc-setup.exe
2014-05-27 23:48 - 2012-10-11 21:04 - 00000000 ____D () C:\Users\msi\AppData\Roaming\ICQ
2014-05-27 23:28 - 2014-05-27 23:28 - 00014628 _____ () C:\Users\msi\Downloads\hijackthis.log
2014-05-27 23:27 - 2014-05-27 23:27 - 00388608 _____ (Trend Micro Inc.) C:\Users\msi\Downloads\hijackthis.exe
2014-05-26 22:23 - 2011-08-19 23:12 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-05-26 21:40 - 2014-05-26 21:40 - 01019477 _____ () C:\Users\msi\Downloads\HudsonMario.zip
2014-05-26 21:24 - 2014-05-26 20:43 - 00000000 ____D () C:\Users\msi\Desktop\CONTRA PACK
2014-05-26 21:23 - 2014-05-26 21:23 - 00032413 _____ () C:\Users\msi\Downloads\261-super-mario-bros--nintendo-co-ltd-1985.zip
2014-05-26 20:39 - 2014-05-26 20:39 - 02066618 _____ () C:\Users\msi\Downloads\CONTRA_PACK.zip
2014-05-24 22:40 - 2012-09-11 21:01 - 00000000 ____D () C:\Users\msi\AppData\Roaming\vlc
2014-05-24 18:29 - 2014-05-18 19:13 - 00000000 ____D () C:\Users\msi\Desktop\kuchyně
2014-05-24 15:26 - 2014-05-24 15:26 - 00000569 _____ () C:\Users\Public\Desktop\Wolfenstein The New Order.lnk
2014-05-24 15:26 - 2014-05-24 15:26 - 00000569 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wolfenstein The New Order.lnk
2014-05-24 15:03 - 2012-09-22 09:54 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-24 13:11 - 2013-11-08 00:58 - 00064943 ____H () C:\treeinfo.wc
2014-05-24 08:37 - 2013-07-13 17:25 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-05-23 22:19 - 2014-05-23 21:06 - 1944776704 _____ () C:\Users\msi\Downloads\robocoop.avi
2014-05-23 21:20 - 2014-05-23 19:15 - 1526577152 _____ () C:\Users\msi\Downloads\Mrtvy_muz_prichazi_(1995)_by.Dadunka.of.PowerUploaders.avi
2014-05-22 22:31 - 2012-09-08 17:34 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2014-05-20 20:12 - 2014-05-20 20:12 - 00236944 _____ () C:\Users\msi\Downloads\FLVPlayerSetup-N9TFKLWGJ.exe
2014-05-20 04:44 - 2014-05-26 22:16 - 31387936 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 25256224 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 24025376 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 18531568 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2umx.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 17561544 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcompiler.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 17480432 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dumx.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 16003912 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 12688328 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-05-20 04:44 - 2014-05-26 22:16 - 11644928 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 11599072 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 09735256 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 09697640 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 03141976 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 02953672 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 02785568 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 02412376 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvenc.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 01889112 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6433788.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 01541576 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6433788.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 00895776 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 00867784 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2014-05-20 04:44 - 2014-05-26 22:16 - 00861128 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2014-05-20 04:44 - 2011-08-19 23:10 - 14434704 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvd3dum.dll
2014-05-20 04:44 - 2011-08-19 23:10 - 03109248 _____ (NVIDIA Corporation) C:\windows\system32\nvapi64.dll
2014-05-20 04:44 - 2011-08-19 23:10 - 02730208 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll
2014-05-20 04:44 - 2011-08-19 23:10 - 00026069 _____ () C:\windows\system32\nvinfo.pb
2014-05-20 03:25 - 2011-06-13 03:02 - 00387528 _____ (NVIDIA Corporation) C:\windows\system32\nvmctray.dll
2014-05-20 03:25 - 2011-06-13 03:01 - 06769096 _____ (NVIDIA Corporation) C:\windows\system32\nvcpl.dll
2014-05-20 03:25 - 2011-06-13 03:01 - 02560968 _____ (NVIDIA Corporation) C:\windows\system32\nvsvcr.dll
2014-05-20 03:25 - 2011-06-13 03:01 - 00927520 _____ (NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
2014-05-20 03:25 - 2011-06-13 03:01 - 00062808 _____ (NVIDIA Corporation) C:\windows\system32\nvshext.dll
2014-05-20 03:25 - 2011-06-13 03:00 - 03514144 _____ (NVIDIA Corporation) C:\windows\system32\nvsvc64.dll
2014-05-19 18:24 - 2012-10-27 16:48 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2014-05-18 03:00 - 2013-02-27 23:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-05-16 12:04 - 2013-08-17 09:50 - 00000000 ____D () C:\windows\rescache
2014-05-16 08:54 - 2012-08-30 09:25 - 00000000 ___RD () C:\Users\msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-16 08:54 - 2012-08-30 09:25 - 00000000 ___RD () C:\Users\msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 08:52 - 2014-05-07 00:18 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-05-16 00:39 - 2013-07-14 23:24 - 00000000 ____D () C:\windows\system32\MRT
2014-05-16 00:37 - 2012-09-08 18:39 - 93223848 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-05-15 01:49 - 2014-05-26 22:23 - 03774821 _____ () C:\windows\system32\nvcoproc.bin
2014-05-14 23:17 - 2014-05-14 23:17 - 00040610 _____ () C:\Users\msi\Downloads\Breaking.Bad.S05E14.HDTV.XviD-AFG.srt
2014-05-11 23:25 - 2014-05-11 23:25 - 14529677 _____ () C:\Users\msi\Downloads\216875415-DARKSLLSV102.rar
2014-05-11 17:49 - 2014-05-11 17:49 - 00003696 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore1cf6d308a7ce4b3
2014-05-11 17:49 - 2014-02-09 16:38 - 00003948 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA1cf25a4a46cb2db
2014-05-09 08:14 - 2014-05-15 20:01 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-15 20:01 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-05-08 00:21 - 2014-05-08 00:21 - 00000000 __SHD () C:\Users\msi\AppData\Local\EmieUserList
2014-05-08 00:21 - 2014-05-08 00:21 - 00000000 __SHD () C:\Users\msi\AppData\Local\EmieSiteList
2014-05-07 21:53 - 2014-03-29 20:48 - 00003920 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-163127321-2156093790-1272651653-1000UA1cf4b7f7168965b
2014-05-07 21:53 - 2013-10-12 20:42 - 00003524 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-163127321-2156093790-1272651653-1000Core1cec77ac4a6ccc1
2014-05-07 06:30 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\PolicyDefinitions
2014-05-06 06:40 - 2014-05-16 00:45 - 23544320 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-05-06 06:17 - 2014-05-16 00:45 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-05-06 05:25 - 2014-05-16 00:45 - 17382912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-05-06 05:07 - 2014-05-16 00:45 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-05-06 05:00 - 2014-05-16 00:45 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-05-06 04:10 - 2014-05-16 00:45 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-05-04 18:40 - 2013-12-14 15:16 - 00000000 ____D () C:\Users\msi\Desktop\bonsaj
2014-05-03 11:45 - 2014-05-03 11:45 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-05-03 11:45 - 2012-10-29 14:47 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-05-03 11:18 - 2014-05-03 11:18 - 00000000 ____H () C:\windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-02 13:48 - 2013-11-13 22:06 - 00000000 ____D () C:\Users\msi\Desktop\Nová složka (2)
2014-05-02 00:19 - 2014-05-02 00:18 - 00926542 _____ () C:\Users\msi\Downloads\GeDoSaTo_DS2Edition_Alpha1a.zip
2014-05-01 11:49 - 2014-05-01 11:49 - 00017920 ___SH () C:\Users\msi\Thumbs.db
2014-04-30 20:29 - 2013-11-19 19:33 - 01225920 _____ (NVIDIA Corporation) C:\windows\system32\nvspcap64.dll
2014-04-30 20:29 - 2013-11-19 19:33 - 01081112 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspcap.dll

Some content of TEMP:
====================
C:\Users\msi\AppData\Local\Temp\sfamcc00001.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore1cf6d308a7ce4b3.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA1cf25a4a46cb2db.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-163127321-2156093790-1272651653-1000Core1cec77ac4a6ccc1.job => C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-163127321-2156093790-1272651653-1000UA1cf4b7f7168965b.job => C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\msi\Desktop" je 2614 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\fspuip
%ProgramFiles%\FSP\fspuip.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarminExpressTrayApp
"C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update
"C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe" /c [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HTC Sync Loader
"C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ
"C:\Program Files (x86)\ICQ7M\ICQ.exe" silent loginmode=4 [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent
"C:\Program Files (x86)\Winamp\winampa.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WindowsDriverScan
C:\Program Files\Win Drive\Drive.lnk

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^msi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Automatick� vypnut� po��ta�e.lnk
C:\PROGRA~2\AUTOMA~1\avp.exe


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================





ze souborem FRST64 jsem nedelal prozatim nic. pouze jsem pouzil FRSTLauncher

[vyosek]

Odinstalujte Microsoft Security Client, mate Avast. Dva antiviry v PC koliduji

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM-x32\...\RunOnce: [20140529] - C:\Program Files\AVAST Software\Avast\setup\emupdate\eaf0d6e2-9198-4628-8f9f-706bb6561afc.exe /check [183208 2014-05-30] (AVAST Software)
  HKU\S-1-5-21-163127321-2156093790-1272651653-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
  BHO-x32: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - No File
  Toolbar: HKLM-x32 - WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No File
  FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
  FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
  2014-05-30 18:05 - 2014-05-30 18:05 - 00112640 _____ (forum.viry.cz) C:\Users\msi\Desktop\FRSTLauncher.exe
  2014-05-30 18:04 - 2014-05-30 18:04 - 00112640 _____ (forum.viry.cz) C:\Users\msi\Downloads\Nepotvrzeno 770423.crdownload
  2014-05-30 18:04 - 2014-05-30 18:04 - 00112640 _____ (forum.viry.cz) C:\Users\msi\Downloads\Nepotvrzeno 583171.crdownload
  2014-05-30 00:03 - 2014-05-30 00:03 - 00010995 _____ () C:\Users\msi\Desktop\zoek-results.txt
  2014-05-30 00:00 - 2014-05-30 00:00 - 00000080 _____ () C:\folders.txt
  2014-05-30 00:00 - 2014-05-29 23:42 - 00024064 _____ () C:\windows\zoek-delete.exe
  2014-05-29 23:45 - 2014-05-30 00:02 - 00010995 _____ () C:\zoek-results.log
  2014-05-29 23:42 - 2014-05-29 23:56 - 00000000 ____D () C:\zoek_backup
  2014-05-29 23:42 - 2014-05-29 23:42 - 00004504 _____ () C:\Users\msi\Desktop\AdwCleaner[S0].txt
  2014-05-29 23:38 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\windows\SysWOW64\sqlite3.dll
  2014-05-29 23:37 - 2014-05-29 23:39 - 00000000 ____D () C:\AdwCleaner
  2014-05-29 23:37 - 2014-05-29 23:37 - 01327971 _____ () C:\Users\msi\Downloads\adwcleaner_3.211.exe
  2014-05-29 23:36 - 2014-05-29 23:36 - 01285120 _____ () C:\Users\msi\Desktop\zoek.exe
  2014-05-29 20:39 - 2014-05-29 21:11 - 00001053 _____ () C:\Users\msi\Desktop\checkup.txt
  2014-05-29 20:28 - 2014-05-29 20:28 - 00854367 _____ () C:\Users\msi\Desktop\SecurityCheck.exe
  Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore1cf6d308a7ce4b3.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA1cf25a4a46cb2db.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-163127321-2156093790-1272651653-1000Core1cec77ac4a6ccc1.job => C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-163127321-2156093790-1272651653-1000UA1cf4b7f7168965b.job => C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe
  
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HTC Sync Loader" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent" /f
  
  Hosts:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte FRST64.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[xabe]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 30-05-2014
Ran by msi at 2014-05-30 19:13:59 Run:1
Running from C:\Users\msi\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\RunOnce: [20140529] - C:\Program Files\AVAST Software\Avast\setup\emupdate\eaf0d6e2-9198-4628-8f9f-706bb6561afc.exe /check [183208 2014-05-30] (AVAST Software)
HKU\S-1-5-21-163127321-2156093790-1272651653-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
BHO-x32: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - No File
Toolbar: HKLM-x32 - WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No File
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
2014-05-30 18:05 - 2014-05-30 18:05 - 00112640 _____ (forum.viry.cz) C:\Users\msi\Desktop\FRSTLauncher.exe
2014-05-30 18:04 - 2014-05-30 18:04 - 00112640 _____ (forum.viry.cz) C:\Users\msi\Downloads\Nepotvrzeno 770423.crdownload
2014-05-30 18:04 - 2014-05-30 18:04 - 00112640 _____ (forum.viry.cz) C:\Users\msi\Downloads\Nepotvrzeno 583171.crdownload
2014-05-30 00:03 - 2014-05-30 00:03 - 00010995 _____ () C:\Users\msi\Desktop\zoek-results.txt
2014-05-30 00:00 - 2014-05-30 00:00 - 00000080 _____ () C:\folders.txt
2014-05-30 00:00 - 2014-05-29 23:42 - 00024064 _____ () C:\windows\zoek-delete.exe
2014-05-29 23:45 - 2014-05-30 00:02 - 00010995 _____ () C:\zoek-results.log
2014-05-29 23:42 - 2014-05-29 23:56 - 00000000 ____D () C:\zoek_backup
2014-05-29 23:42 - 2014-05-29 23:42 - 00004504 _____ () C:\Users\msi\Desktop\AdwCleaner[S0].txt
2014-05-29 23:38 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\windows\SysWOW64\sqlite3.dll
2014-05-29 23:37 - 2014-05-29 23:39 - 00000000 ____D () C:\AdwCleaner
2014-05-29 23:37 - 2014-05-29 23:37 - 01327971 _____ () C:\Users\msi\Downloads\adwcleaner_3.211.exe
2014-05-29 23:36 - 2014-05-29 23:36 - 01285120 _____ () C:\Users\msi\Desktop\zoek.exe
2014-05-29 20:39 - 2014-05-29 21:11 - 00001053 _____ () C:\Users\msi\Desktop\checkup.txt
2014-05-29 20:28 - 2014-05-29 20:28 - 00854367 _____ () C:\Users\msi\Desktop\SecurityCheck.exe
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore1cf6d308a7ce4b3.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA1cf25a4a46cb2db.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-163127321-2156093790-1272651653-1000Core1cec77ac4a6ccc1.job => C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-163127321-2156093790-1272651653-1000UA1cf4b7f7168965b.job => C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HTC Sync Loader" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent" /f

Hosts:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\20140529 => Value deleted successfully.
HKU\S-1-5-21-163127321-2156093790-1272651653-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{BFC32E1D-EE75-4A48-BC60-104E11EE2431} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{BFC32E1D-EE75-4A48-BC60-104E11EE2431} => Key deleted successfully.
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => Value deleted successfully.
HKLM\Software\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => Value deleted successfully.
C:\Users\msi\Desktop\FRSTLauncher.exe => Moved successfully.
C:\Users\msi\Downloads\Nepotvrzeno 770423.crdownload => Moved successfully.
C:\Users\msi\Downloads\Nepotvrzeno 583171.crdownload => Moved successfully.
C:\Users\msi\Desktop\zoek-results.txt => Moved successfully.
C:\folders.txt => Moved successfully.
C:\windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\msi\Desktop\AdwCleaner[S0].txt => Moved successfully.
C:\windows\SysWOW64\sqlite3.dll => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\msi\Downloads\adwcleaner_3.211.exe => Moved successfully.
C:\Users\msi\Desktop\zoek.exe => Moved successfully.
C:\Users\msi\Desktop\checkup.txt => Moved successfully.
C:\Users\msi\Desktop\SecurityCheck.exe => Moved successfully.
C:\windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineCore1cf6d308a7ce4b3.job => Moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineUA1cf25a4a46cb2db.job => Moved successfully.
C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-163127321-2156093790-1272651653-1000Core1cec77ac4a6ccc1.job => Moved successfully.
C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-163127321-2156093790-1272651653-1000UA1cf4b7f7168965b.job => Moved successfully.

========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HTC Sync Loader" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

==== End of Fixlog ====

[vyosek]

Fajn, jak se chova PC

[xabe]

vytizeni cpu je skoro porad na prumerne na 25%
teplota se drzi kolem 63°c
takze asi dobry

[vyosek]

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Jaky proces vytezuje CPU nejvice?

[xabe]

no prave ze ve spravci uloh jsou psany sami nuly, obcas skoci 2% na chrome

a asi dele nabiha system

[xabe]

tak me proste tech 20-25 procent vykonu zere system. si nemuzu pomoc.
myslim ze se muzu tento topic uzamnkout. dekuju za pomoc

byl to bitcoin miner ? co me zral ten vykon ?

[vyosek]

Jednak jste tezil nekomu bitcointy a jednak tam bylo hodne reklaminiho nezadouciho SW, chce to cist co se instaluje jako doprovod - vice zde http://www.viry.cz/pozor-na-to-co-vsech ... -pocitace/

Nemate zac, rad jsem pomohl Zase nekdy

A na zaklade Pravidla o zamykani temat