Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-07-2014
Ran by Martina (administrator) on IDEA-PC on 04-07-2014 14:18:30
Running from C:\Users\Martina\Downloads
Platform: Windows 8 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 10
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
(BitTorrent Inc.) C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe
(BitTorrent, Inc.) C:\Program Files (x86)\BitTorrent Sync\BTSync.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
() C:\Users\Martina\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Martina\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
() C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-15] (Conexant Systems, Inc.)
HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-09-30] ()
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2013-02-08] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2013-02-08] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [548864 2012-05-02] (Vimicro)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [Philips Device Listener] => C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe [380416 2012-02-15] ()
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [20131121] => C:\Program Files\AVAST Software\Avast\setup\emupdate\c40ccc70-6a07-40a0-9f40-5476b72da3bc.exe /check
HKLM-x32\...\Run: [YourFile DownloaderInstaller Starter] => "C:\Users\Martina\AppData\Local\Temp\install747170717.exe" -startup
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\AVAST Software <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files\Trend Micro <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\Common Files\Symantec Shared <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files\Trend Micro <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\AVG <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\Malwarebytes <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\McAfee <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\Symantec <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\AVG <====== ATTENTION
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [HP Deskjet 3050A J611 series (NET)] => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [Google Update] => "C:\Users\Martina\AppData\Local\Google\Update\GoogleUpdate.exe" /c
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [BitTorrent] => C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe [1240664 2014-04-29] (BitTorrent Inc.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [BitTorrent Sync] => C:\Program Files (x86)\BitTorrent Sync\BTSync.exe [1651304 2013-11-26] (BitTorrent, Inc.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [EA Core] => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Martina\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Martina\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [UycuBinqa] => regsvr32.exe "C:\ProgramData\UycuBinqa.dat"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {29cf524e-91a1-11e3-becb-2cd05a349e8e} - "G:\Autorun.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {6a843982-84fe-11e3-bec9-2cd05a349e8e} - "F:\Setup.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {8341029c-197f-11e3-be96-2cd05a349e8e} - "H:\Setup.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {da1bb614-dc23-11e2-be7a-2cd05a349e8e} - "F:\Setup.part01.exe"
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: SugarSyncBackedUp -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: SugarSyncPending -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: SugarSyncRoot -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: SugarSyncShared -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.seznam.cz/?clid=13415
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages =
http://mysearch.avg.com/?cid={17A0EB00- ... 2013-08-10 17:45:26&v=15.4.0.5&pid=safeguard&sg=0&sap=hp
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
http://www.lenovo.com
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {24AB7B16-6C04-4E62-BADB-A3AF9C7BA5B2} URL =
http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {28DBDC09-CD74-4291-80D1-789ACD6F9883} URL =
http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKCU - {4E0C853B-1E34-451A-B946-3B8D7C8BCE5D} URL =
http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6BC336E0-0860-4AFD-B849-E13CABFBD077} URL =
http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKCU - {764482F2-C192-4032-B5B2-7848E6928461} URL =
http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKCU - {8C35819E-0D88-4E0F-8946-73D1764A9500} URL =
http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKCU - {A82AFC07-BDDB-4D91-91BD-B3D6AB1E5B87} URL =
http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKCU - {CFDE9E19-18B2-4AC6-9F1E-14BD87C69D29} URL =
http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.10.10.10
FireFox:
========
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Martina\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Martina\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppluginrichmediaplayer.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Seznam lištička - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-06-04]
FF Extension: Adblock Plus - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-07-03]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-06-11]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-06-11]
FF HKLM\...\Thunderbird\Extensions: [
eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKLM-x32\...\Thunderbird\Extensions: [
eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
Chrome:
=======
CHR Extension: (Dokumenty Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-23]
CHR Extension: (Disk Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-23]
CHR Extension: (YouTube) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-23]
CHR Extension: (Vyhledávání Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-23]
CHR Extension: (Peněženka Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-23]
CHR Extension: (Gmail) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-23]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [220288 2012-09-30] (Qualcomm Atheros Commnucations)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-09-30] (Atheros) [File not signed]
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
==================== Drivers (Whitelisted) ====================
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-09-30] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-01-24] (Disc Soft Ltd)
S3 GEARAspiWDM; C:\Windows\SysWOW64\Drivers\GEARAspiWDM.sys [15664 2011-07-15] (GEAR Software Inc.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-27] (Synaptics Incorporated)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [975104 2012-08-24] (Vimicro Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
S1 SABKUTIL; \??\C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABKUTIL.sys [X]
S3 SABProcEnum; \??\C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABProcEnum.sys [X]
S1 {587cb346-a3d8-4884-b39b-f0ed918b6f96}Gw64; system32\drivers\{587cb346-a3d8-4884-b39b-f0ed918b6f96}Gw64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-07-04 14:18 - 2014-07-04 14:18 - 00021204 _____ () C:\Users\Martina\Downloads\FRST.txt
2014-07-04 14:17 - 2014-07-04 14:18 - 00000000 ____D () C:\FRST
2014-07-04 14:17 - 2014-07-04 14:17 - 02083840 _____ (Farbar) C:\Users\Martina\Downloads\FRST64.exe
2014-07-04 14:16 - 2014-07-04 14:16 - 01073664 _____ (Farbar) C:\Users\Martina\Downloads\FRST.exe
2014-07-04 13:43 - 2014-07-04 13:27 - 00024064 _____ () C:\windows\zoek-delete.exe
2014-07-04 13:28 - 2014-07-04 13:51 - 00018049 _____ () C:\zoek-results.log
2014-07-04 13:27 - 2014-07-04 13:41 - 00000000 ____D () C:\zoek_backup
2014-07-04 13:27 - 2014-07-04 13:27 - 01285120 _____ () C:\Users\Martina\Downloads\zoek.exe
2014-07-04 11:53 - 2014-07-04 11:53 - 00001330 _____ () C:\Users\Martina\Desktop\JRT.txt
2014-07-04 11:16 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\windows\SysWOW64\sqlite3.dll
2014-07-04 11:15 - 2014-07-04 11:56 - 00000000 ____D () C:\AdwCleaner
2014-07-04 11:15 - 2014-07-04 11:15 - 01346519 _____ () C:\Users\Martina\Downloads\adwcleaner_3.214.exe
2014-07-04 11:15 - 2014-07-04 11:15 - 00000000 ____D () C:\windows\ERUNT
2014-07-04 11:14 - 2014-07-04 11:14 - 01016261 _____ (Thisisu) C:\Users\Martina\Downloads\JRT.exe
2014-07-03 17:25 - 2014-07-03 17:25 - 00781909 _____ () C:\Users\Martina\Downloads\RSIT.exe
2014-07-03 17:25 - 2014-07-03 17:25 - 00081309 _____ () C:\Users\Martina\Downloads\Martina.exe
2014-07-03 17:24 - 2014-07-03 17:25 - 00832273 _____ () C:\Users\Martina\Downloads\RSITx64(2).exe
2014-07-03 17:23 - 2014-07-03 17:23 - 01222144 _____ () C:\Users\Martina\Downloads\RSITx64(1).exe
2014-07-03 17:23 - 2014-07-03 17:23 - 00000000 ____D () C:\rsit
2014-07-03 16:26 - 2014-07-03 16:26 - 00012945 _____ () C:\Users\Martina\Downloads\hijackthis.log
2014-07-03 16:25 - 2014-07-03 16:25 - 00388608 _____ (Trend Micro Inc.) C:\Users\Martina\Downloads\hijackthis.exe
2014-07-03 15:16 - 2014-07-04 13:40 - 00269720 _____ (Microsoft Corporation) C:\ProgramData\UycuBinqa.dat
2014-07-02 20:41 - 2014-07-02 20:41 - 00055959 _____ () C:\Users\Martina\Downloads\teleport 4_6_1-8535-4-6-1.zip
2014-07-02 16:24 - 2014-07-02 16:28 - 00000000 ____D () C:\Program Files (x86)\SuperAdBlocker.com
2014-07-02 16:24 - 2014-07-02 16:24 - 00000000 ____D () C:\windows\SysWOW64\URTTemp
2014-07-02 16:24 - 2014-07-02 16:24 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\SuperAdBlocker.com
2014-07-02 16:22 - 2014-07-02 16:22 - 06322200 _____ () C:\Users\Martina\Downloads\SuperAdBlocker.exe
2014-07-02 14:04 - 2014-07-02 14:04 - 00001174 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-07-02 14:04 - 2014-07-02 14:04 - 00001162 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-07-02 14:04 - 2014-07-02 14:04 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-02 14:03 - 2014-07-02 14:03 - 29677080 _____ (Mozilla) C:\Users\Martina\Downloads\Firefox Setup 30.0.exe
2014-07-02 14:03 - 2014-07-02 14:03 - 00921600 _____ () C:\Users\Martina\Downloads\centrumie-1.1.2.0.msi
2014-07-02 14:02 - 2014-07-02 14:02 - 00733432 _____ () C:\Users\Martina\Downloads\mozilla-firefox-lista-centrumcz-pro-internet-explorer.exe
2014-07-01 17:38 - 2014-07-01 18:59 - 1355292708 _____ () C:\Users\Martina\Downloads\De-Behandeling.avi
2014-07-01 14:04 - 2014-07-01 14:04 - 00036987 _____ () C:\Users\Martina\Downloads\Lockpick Pro v3-219-3.zip
2014-07-01 11:08 - 2014-07-01 11:08 - 07785280 _____ (
http://www.goforfiles.com/) C:\Users\Martina\Downloads\Serial_Number_Atlas_Ti_7_downloader.exe
2014-07-01 11:07 - 2014-07-01 11:08 - 00000000 ____D () C:\Program Files (x86)\SavePass
2014-07-01 11:07 - 2014-07-01 11:07 - 00003094 _____ () C:\windows\System32\Tasks\{C48480B4-8E3A-413B-ACAA-BB531D8DA11C}
2014-07-01 11:06 - 2014-07-01 11:06 - 00000270 __RSH () C:\ProgramData\ntuser.pol
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Martina\AppData\Local\Comodo
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Guest
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Administrator
2014-07-01 11:05 - 2014-07-01 11:05 - 00000000 ____D () C:\Program Files (x86)\GoforFiles Updater
2014-07-01 11:05 - 2014-06-29 15:47 - 00312560 _____ () C:\Users\Martina\Downloads\tmps_5011.exe
2014-07-01 11:04 - 2014-07-01 11:04 - 07785272 _____ (
http://www.goforfiles.com/) C:\Users\Martina\Downloads\Atlas_Ti_7_Crack_downloader.exe
2014-07-01 11:04 - 2014-07-01 11:04 - 03114448 _____ (Technology Island, Inc.) C:\Users\Martina\Downloads\Atlas_Ti_7_Keygen_downloader.exe
2014-07-01 10:57 - 2014-07-01 10:57 - 06608200 _____ (
http://yourfiledownloader.com) C:\Users\Martina\Downloads\Atlas_Ti_7_Serial_Number_downloader.exe
2014-06-30 12:34 - 2014-06-30 13:15 - 731668538 _____ () C:\Users\Martina\Downloads\Anna-[2013]-HDRip-XViD-juggs[ETRG].avi
2014-06-26 22:16 - 2014-06-26 22:17 - 00000000 ____D () C:\Users\Martina\Desktop\dd
2014-06-26 16:30 - 2014-06-26 16:30 - 00949281 _____ ( ) C:\Users\Martina\Downloads\czd2t1.exe
2014-06-26 16:30 - 2014-06-26 16:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CZ-Doc2Txt Demo 4.0
2014-06-26 16:30 - 2014-06-26 16:30 - 00000000 ____D () C:\Program Files (x86)\CZ-Doc2Txt
2014-06-26 16:29 - 2014-06-26 16:29 - 00008519 _____ () C:\Users\Martina\Downloads\Doc2txt-0.1-cz.zip
2014-06-26 16:29 - 2014-06-26 16:29 - 00001241 _____ () C:\Users\Martina\Downloads\doc2txt-2013-02-16.7z
2014-06-26 16:25 - 2014-06-26 16:28 - 56071680 _____ () C:\Users\Martina\Downloads\calibre-1.41.0.msi
2014-06-26 16:05 - 2014-06-26 16:05 - 05060729 _____ () C:\Users\Martina\Downloads\QAKonference_2014_ATLAS_ti.pptx
2014-06-26 13:30 - 2014-06-26 13:30 - 00001036 _____ () C:\Users\Public\Desktop\7-PDF Maker.lnk
2014-06-26 13:30 - 2014-06-26 13:30 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\7-PDFMaker
2014-06-26 13:30 - 2014-06-26 13:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-PDF
2014-06-26 13:30 - 2014-06-26 13:30 - 00000000 ____D () C:\Program Files (x86)\7-PDF
2014-06-26 13:28 - 2014-06-26 13:30 - 63627678 _____ (7-PDF, Germany ) C:\Users\Martina\Downloads\7p10.exe
2014-06-26 13:23 - 2014-06-26 13:23 - 05177938 _____ (XSoft ) C:\Users\Martina\Downloads\WordToPDF_setup.exe
2014-06-26 13:14 - 2014-06-26 13:19 - 88783199 _____ () C:\Users\Martina\Downloads\Atlas_ti_V6.zip
2014-06-25 15:31 - 2014-07-04 11:19 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2014-06-25 15:31 - 2014-07-04 11:19 - 00128000 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2014-06-25 15:31 - 2014-07-04 11:19 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2014-06-25 15:31 - 2014-07-04 11:19 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2014-06-25 15:31 - 2014-07-04 11:18 - 03286528 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2014-06-25 15:31 - 2014-07-04 11:18 - 01623040 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2014-06-25 15:31 - 2014-07-04 11:18 - 00773632 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2014-06-25 15:31 - 2014-07-04 11:18 - 00629248 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2014-06-25 15:31 - 2014-07-04 11:18 - 00253440 _____ (Microsoft Corporation) C:\windows\system32\WUSettingsProvider.dll
2014-06-25 15:31 - 2014-07-04 11:18 - 00176640 _____ (Microsoft Corporation) C:\windows\system32\storewuauth.dll
2014-06-25 15:31 - 2014-07-04 11:18 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2014-06-25 15:31 - 2014-07-04 11:18 - 00086528 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2014-06-25 15:31 - 2014-07-04 11:18 - 00059416 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2014-06-24 22:18 - 2014-06-24 22:53 - 310364271 _____ () C:\Users\Martina\Downloads\Skyrim-1.9.32.8.0-update-+-CZ-na-vsechny-DLC,-neoficialni-patche-v-CZ.rar
2014-06-24 22:18 - 2014-06-24 22:19 - 09246407 _____ () C:\Users\Martina\Downloads\The-Elder-Scrolls-V-Skyrim-Legendary-Edition---Cestina.rar
2014-06-24 22:06 - 2014-06-24 22:06 - 00000000 ____D () C:\Users\Martina\Documents\My Games
2014-06-24 22:06 - 2014-06-24 22:06 - 00000000 ____D () C:\Users\Martina\AppData\Local\Skyrim
2014-06-24 22:06 - 2014-06-24 22:06 - 00000000 ____D () C:\ProgramData\Steam
2014-06-24 20:09 - 2014-06-26 22:19 - 00000000 ____D () C:\Program Files (x86)\The Elder Scrolls V Skyrim - Legendary Edition
2014-06-24 16:21 - 2014-06-24 16:21 - 00000000 ____D () C:\Users\Martina\Documents\Scientific Software
2014-06-24 16:21 - 2014-06-24 16:21 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Scientific Software
2014-06-24 16:20 - 2014-06-24 16:20 - 00002212 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ATLAS.ti.lnk
2014-06-24 16:20 - 2014-06-24 16:20 - 00002200 _____ () C:\Users\Public\Desktop\ATLAS.ti.lnk
2014-06-24 16:20 - 2014-06-24 16:20 - 00000000 ____D () C:\Users\Public\Documents\Scientific Software
2014-06-24 16:20 - 2014-06-24 16:20 - 00000000 ____D () C:\ProgramData\Scientific Software
2014-06-24 16:20 - 2014-06-24 16:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scientific Software
2014-06-24 16:20 - 2014-06-24 16:20 - 00000000 ____D () C:\Program Files (x86)\Scientific Software
2014-06-24 15:46 - 2014-06-24 15:49 - 85278720 _____ () C:\Users\Martina\Downloads\a7setup.msi
2014-06-22 19:27 - 2014-06-22 19:27 - 00497576 _____ () C:\windows\Minidump\062214-39812-01.dmp
2014-06-22 19:27 - 2014-06-22 19:27 - 00000000 ____D () C:\windows\Minidump
2014-06-19 12:29 - 2014-06-20 02:37 - 00000000 ____D () C:\Users\Martina\Downloads\The Elder Scrolls V Skyrim – Legendary Edition Black Box
2014-06-16 17:55 - 2014-05-27 20:49 - 15180800 _____ () C:\Users\Martina\Desktop\Maligní měkké 2014.ppt
2014-06-16 17:55 - 2014-05-27 20:48 - 09161728 _____ () C:\Users\Martina\Desktop\Benigní měkké 2014.ppt
2014-06-11 13:49 - 2014-07-02 14:04 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-10 09:49 - 2014-07-04 13:51 - 00002900 _____ () C:\windows\System32\Tasks\AutoKMS
2014-06-09 23:43 - 2014-06-09 23:43 - 00000283 _____ () C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Koš (10).lnk
2014-06-04 19:36 - 2014-06-04 19:36 - 00013587 _____ () C:\Users\Martina\Desktop\Systémový lupus erythematodes.odt
2014-06-04 14:25 - 2014-06-04 15:42 - 728186880 _____ () C:\Users\Martina\Downloads\Nepritomnost-Absentia-2011-cesky-dabing.avi
==================== One Month Modified Files and Folders =======
2014-07-04 14:18 - 2014-07-04 14:18 - 00021204 _____ () C:\Users\Martina\Downloads\FRST.txt
2014-07-04 14:18 - 2014-07-04 14:17 - 00000000 ____D () C:\FRST
2014-07-04 14:17 - 2014-07-04 14:17 - 02083840 _____ (Farbar) C:\Users\Martina\Downloads\FRST64.exe
2014-07-04 14:16 - 2014-07-04 14:16 - 01073664 _____ (Farbar) C:\Users\Martina\Downloads\FRST.exe
2014-07-04 14:15 - 2013-11-26 21:58 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\BitTorrent
2014-07-04 14:00 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\system32\sru
2014-07-04 13:59 - 2013-06-26 00:48 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Seznam.cz
2014-07-04 13:54 - 2013-11-26 21:59 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\BitTorrent Sync
2014-07-04 13:53 - 2013-10-08 19:43 - 00000986 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001UA1cec44decc40ac7.job
2014-07-04 13:53 - 2013-08-13 22:28 - 01352210 _____ () C:\windows\WindowsUpdate.log
2014-07-04 13:51 - 2014-07-04 13:28 - 00018049 _____ () C:\zoek-results.log
2014-07-04 13:51 - 2014-06-10 09:49 - 00002900 _____ () C:\windows\System32\Tasks\AutoKMS
2014-07-04 13:51 - 2013-12-16 22:02 - 00000290 _____ () C:\windows\Tasks\AutoKMS.job
2014-07-04 13:50 - 2013-10-29 18:14 - 00000966 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-04 13:50 - 2013-08-22 11:58 - 00352740 _____ () C:\windows\PFRO.log
2014-07-04 13:50 - 2012-07-26 09:22 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-07-04 13:44 - 2013-10-29 18:14 - 00000970 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-04 13:41 - 2014-07-04 13:27 - 00000000 ____D () C:\zoek_backup
2014-07-04 13:40 - 2014-07-03 15:16 - 00269720 _____ (Microsoft Corporation) C:\ProgramData\UycuBinqa.dat
2014-07-04 13:40 - 2013-06-18 11:30 - 00000000 ____D () C:\Users\Martina
2014-07-04 13:39 - 2013-06-19 22:29 - 00000000 ____D () C:\Users\Martina\AppData\Local\CrashDumps
2014-07-04 13:36 - 2013-09-10 13:14 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-07-04 13:27 - 2014-07-04 13:43 - 00024064 _____ () C:\windows\zoek-delete.exe
2014-07-04 13:27 - 2014-07-04 13:27 - 01285120 _____ () C:\Users\Martina\Downloads\zoek.exe
2014-07-04 12:42 - 2013-06-19 09:07 - 13380608 ___SH () C:\Users\Martina\Desktop\Thumbs.db
2014-07-04 12:26 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\rescache
2014-07-04 11:56 - 2014-07-04 11:15 - 00000000 ____D () C:\AdwCleaner
2014-07-04 11:56 - 2013-09-23 23:09 - 00000934 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001Core1ceb8a123e7bf34.job
2014-07-04 11:56 - 2012-07-26 07:26 - 00262144 ___SH () C:\windows\system32\config\BBI
2014-07-04 11:53 - 2014-07-04 11:53 - 00001330 _____ () C:\Users\Martina\Desktop\JRT.txt
2014-07-04 11:19 - 2014-06-25 15:31 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2014-07-04 11:19 - 2014-06-25 15:31 - 00128000 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2014-07-04 11:19 - 2014-06-25 15:31 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2014-07-04 11:19 - 2014-06-25 15:31 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2014-07-04 11:19 - 2012-07-26 09:59 - 00000000 ____D () C:\windows\CbsTemp
2014-07-04 11:18 - 2014-06-25 15:31 - 03286528 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2014-07-04 11:18 - 2014-06-25 15:31 - 01623040 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2014-07-04 11:18 - 2014-06-25 15:31 - 00773632 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2014-07-04 11:18 - 2014-06-25 15:31 - 00629248 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2014-07-04 11:18 - 2014-06-25 15:31 - 00253440 _____ (Microsoft Corporation) C:\windows\system32\WUSettingsProvider.dll
2014-07-04 11:18 - 2014-06-25 15:31 - 00176640 _____ (Microsoft Corporation) C:\windows\system32\storewuauth.dll
2014-07-04 11:18 - 2014-06-25 15:31 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2014-07-04 11:18 - 2014-06-25 15:31 - 00086528 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2014-07-04 11:18 - 2014-06-25 15:31 - 00059416 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2014-07-04 11:17 - 2013-02-08 13:23 - 00000000 ____D () C:\Program Files (x86)\Amazon
2014-07-04 11:15 - 2014-07-04 11:15 - 01346519 _____ () C:\Users\Martina\Downloads\adwcleaner_3.214.exe
2014-07-04 11:15 - 2014-07-04 11:15 - 00000000 ____D () C:\windows\ERUNT
2014-07-04 11:14 - 2014-07-04 11:14 - 01016261 _____ (Thisisu) C:\Users\Martina\Downloads\JRT.exe
2014-07-04 11:10 - 2013-02-08 13:38 - 00727488 _____ () C:\windows\system32\perfh005.dat
2014-07-04 11:10 - 2013-02-08 13:38 - 00148006 _____ () C:\windows\system32\perfc005.dat
2014-07-04 11:10 - 2012-07-26 09:28 - 01714430 _____ () C:\windows\system32\PerfStringBackup.INI
2014-07-04 11:08 - 2012-07-26 07:26 - 00000269 _____ () C:\windows\win.ini
2014-07-03 17:25 - 2014-07-03 17:25 - 00781909 _____ () C:\Users\Martina\Downloads\RSIT.exe
2014-07-03 17:25 - 2014-07-03 17:25 - 00081309 _____ () C:\Users\Martina\Downloads\Martina.exe
2014-07-03 17:25 - 2014-07-03 17:24 - 00832273 _____ () C:\Users\Martina\Downloads\RSITx64(2).exe
2014-07-03 17:23 - 2014-07-03 17:23 - 01222144 _____ () C:\Users\Martina\Downloads\RSITx64(1).exe
2014-07-03 17:23 - 2014-07-03 17:23 - 00000000 ____D () C:\rsit
2014-07-03 17:23 - 2013-08-10 17:55 - 00000000 ____D () C:\Program Files\trend micro
2014-07-03 16:26 - 2014-07-03 16:26 - 00012945 _____ () C:\Users\Martina\Downloads\hijackthis.log
2014-07-03 16:25 - 2014-07-03 16:25 - 00388608 _____ (Trend Micro Inc.) C:\Users\Martina\Downloads\hijackthis.exe
2014-07-03 16:25 - 2013-06-18 11:32 - 00000000 ____D () C:\Users\Martina\AppData\Local\VirtualStore
2014-07-02 20:41 - 2014-07-02 20:41 - 00055959 _____ () C:\Users\Martina\Downloads\teleport 4_6_1-8535-4-6-1.zip
2014-07-02 16:28 - 2014-07-02 16:24 - 00000000 ____D () C:\Program Files (x86)\SuperAdBlocker.com
2014-07-02 16:24 - 2014-07-02 16:24 - 00000000 ____D () C:\windows\SysWOW64\URTTemp
2014-07-02 16:24 - 2014-07-02 16:24 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\SuperAdBlocker.com
2014-07-02 16:22 - 2014-07-02 16:22 - 06322200 _____ () C:\Users\Martina\Downloads\SuperAdBlocker.exe
2014-07-02 14:04 - 2014-07-02 14:04 - 00001174 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-07-02 14:04 - 2014-07-02 14:04 - 00001162 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-07-02 14:04 - 2014-07-02 14:04 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-02 14:04 - 2014-06-11 13:49 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-02 14:03 - 2014-07-02 14:03 - 29677080 _____ (Mozilla) C:\Users\Martina\Downloads\Firefox Setup 30.0.exe
2014-07-02 14:03 - 2014-07-02 14:03 - 00921600 _____ () C:\Users\Martina\Downloads\centrumie-1.1.2.0.msi
2014-07-02 14:02 - 2014-07-02 14:02 - 00733432 _____ () C:\Users\Martina\Downloads\mozilla-firefox-lista-centrumcz-pro-internet-explorer.exe
2014-07-01 18:59 - 2014-07-01 17:38 - 1355292708 _____ () C:\Users\Martina\Downloads\De-Behandeling.avi
2014-07-01 14:04 - 2014-07-01 14:04 - 00036987 _____ () C:\Users\Martina\Downloads\Lockpick Pro v3-219-3.zip
2014-07-01 11:51 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\AUInstallAgent
2014-07-01 11:08 - 2014-07-01 11:08 - 07785280 _____ (
http://www.goforfiles.com/) C:\Users\Martina\Downloads\Serial_Number_Atlas_Ti_7_downloader.exe
2014-07-01 11:08 - 2014-07-01 11:07 - 00000000 ____D () C:\Program Files (x86)\SavePass
2014-07-01 11:08 - 2013-09-23 23:06 - 00002447 _____ () C:\Users\Martina\Desktop\Google Chrome.lnk
2014-07-01 11:07 - 2014-07-01 11:07 - 00003094 _____ () C:\windows\System32\Tasks\{C48480B4-8E3A-413B-ACAA-BB531D8DA11C}
2014-07-01 11:07 - 2013-06-18 22:15 - 00000000 ____D () C:\Program Files (x86)\Google
2014-07-01 11:06 - 2014-07-01 11:06 - 00000270 __RSH () C:\ProgramData\ntuser.pol
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Martina\AppData\Local\Comodo
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Guest
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-07-01 11:06 - 2014-07-01 11:06 - 00000000 ____D () C:\Users\Administrator
2014-07-01 11:06 - 2013-06-18 22:15 - 00000000 ____D () C:\Users\Martina\AppData\Local\Google
2014-07-01 11:06 - 2012-07-26 10:12 - 00000000 ___HD () C:\windows\system32\GroupPolicy
2014-07-01 11:06 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\SysWOW64\GroupPolicy
2014-07-01 11:05 - 2014-07-01 11:05 - 00000000 ____D () C:\Program Files (x86)\GoforFiles Updater
2014-07-01 11:04 - 2014-07-01 11:04 - 07785272 _____ (
http://www.goforfiles.com/) C:\Users\Martina\Downloads\Atlas_Ti_7_Crack_downloader.exe
2014-07-01 11:04 - 2014-07-01 11:04 - 03114448 _____ (Technology Island, Inc.) C:\Users\Martina\Downloads\Atlas_Ti_7_Keygen_downloader.exe
2014-07-01 10:57 - 2014-07-01 10:57 - 06608200 _____ (
http://yourfiledownloader.com) C:\Users\Martina\Downloads\Atlas_Ti_7_Serial_Number_downloader.exe
2014-06-30 13:15 - 2014-06-30 12:34 - 731668538 _____ () C:\Users\Martina\Downloads\Anna-[2013]-HDRip-XViD-juggs[ETRG].avi
2014-06-29 15:47 - 2014-07-01 11:05 - 00312560 _____ () C:\Users\Martina\Downloads\tmps_5011.exe
2014-06-26 22:19 - 2014-06-24 20:09 - 00000000 ____D () C:\Program Files (x86)\The Elder Scrolls V Skyrim - Legendary Edition
2014-06-26 22:17 - 2014-06-26 22:16 - 00000000 ____D () C:\Users\Martina\Desktop\dd
2014-06-26 16:30 - 2014-06-26 16:30 - 00949281 _____ ( ) C:\Users\Martina\Downloads\czd2t1.exe
2014-06-26 16:30 - 2014-06-26 16:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CZ-Doc2Txt Demo 4.0
2014-06-26 16:30 - 2014-06-26 16:30 - 00000000 ____D () C:\Program Files (x86)\CZ-Doc2Txt
2014-06-26 16:29 - 2014-06-26 16:29 - 00008519 _____ () C:\Users\Martina\Downloads\Doc2txt-0.1-cz.zip
2014-06-26 16:29 - 2014-06-26 16:29 - 00001241 _____ () C:\Users\Martina\Downloads\doc2txt-2013-02-16.7z
2014-06-26 16:28 - 2014-06-26 16:25 - 56071680 _____ () C:\Users\Martina\Downloads\calibre-1.41.0.msi
2014-06-26 16:05 - 2014-06-26 16:05 - 05060729 _____ () C:\Users\Martina\Downloads\QAKonference_2014_ATLAS_ti.pptx
2014-06-26 13:30 - 2014-06-26 13:30 - 00001036 _____ () C:\Users\Public\Desktop\7-PDF Maker.lnk
2014-06-26 13:30 - 2014-06-26 13:30 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\7-PDFMaker
2014-06-26 13:30 - 2014-06-26 13:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-PDF
2014-06-26 13:30 - 2014-06-26 13:30 - 00000000 ____D () C:\Program Files (x86)\7-PDF
2014-06-26 13:30 - 2014-06-26 13:28 - 63627678 _____ (7-PDF, Germany ) C:\Users\Martina\Downloads\7p10.exe
2014-06-26 13:23 - 2014-06-26 13:23 - 05177938 _____ (XSoft ) C:\Users\Martina\Downloads\WordToPDF_setup.exe
2014-06-26 13:19 - 2014-06-26 13:14 - 88783199 _____ () C:\Users\Martina\Downloads\Atlas_ti_V6.zip
2014-06-24 22:53 - 2014-06-24 22:18 - 310364271 _____ () C:\Users\Martina\Downloads\Skyrim-1.9.32.8.0-update-+-CZ-na-vsechny-DLC,-neoficialni-patche-v-CZ.rar
2014-06-24 22:19 - 2014-06-24 22:18 - 09246407 _____ () C:\Users\Martina\Downloads\The-Elder-Scrolls-V-Skyrim-Legendary-Edition---Cestina.rar
2014-06-24 22:06 - 2014-06-24 22:06 - 00000000 ____D () C:\Users\Martina\Documents\My Games
2014-06-24 22:06 - 2014-06-24 22:06 - 00000000 ____D () C:\Users\Martina\AppData\Local\Skyrim
2014-06-24 22:06 - 2014-06-24 22:06 - 00000000 ____D () C:\ProgramData\Steam
2014-06-24 20:07 - 2013-06-18 11:30 - 00001133 _____ () C:\Users\Martina\Desktop\Cyberlink Power2Go.lnk
2014-06-24 16:21 - 2014-06-24 16:21 - 00000000 ____D () C:\Users\Martina\Documents\Scientific Software
2014-06-24 16:21 - 2014-06-24 16:21 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Scientific Software
2014-06-24 16:20 - 2014-06-24 16:20 - 00002212 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ATLAS.ti.lnk
2014-06-24 16:20 - 2014-06-24 16:20 - 00002200 _____ () C:\Users\Public\Desktop\ATLAS.ti.lnk
2014-06-24 16:20 - 2014-06-24 16:20 - 00000000 ____D () C:\Users\Public\Documents\Scientific Software
2014-06-24 16:20 - 2014-06-24 16:20 - 00000000 ____D () C:\ProgramData\Scientific Software
2014-06-24 16:20 - 2014-06-24 16:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scientific Software
2014-06-24 16:20 - 2014-06-24 16:20 - 00000000 ____D () C:\Program Files (x86)\Scientific Software
2014-06-24 15:49 - 2014-06-24 15:46 - 85278720 _____ () C:\Users\Martina\Downloads\a7setup.msi
2014-06-24 11:48 - 2013-10-08 19:43 - 00003936 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001UA1cec44decc40ac7
2014-06-24 11:48 - 2013-09-23 23:09 - 00003556 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001Core1ceb8a123e7bf34
2014-06-23 11:39 - 2013-10-29 18:14 - 00003942 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-23 11:39 - 2013-10-29 18:14 - 00003706 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-22 19:27 - 2014-06-22 19:27 - 00497576 _____ () C:\windows\Minidump\062214-39812-01.dmp
2014-06-22 19:27 - 2014-06-22 19:27 - 00000000 ____D () C:\windows\Minidump
2014-06-20 02:37 - 2014-06-19 12:29 - 00000000 ____D () C:\Users\Martina\Downloads\The Elder Scrolls V Skyrim – Legendary Edition Black Box
2014-06-19 13:31 - 2013-08-10 17:04 - 00000000 ____D () C:\Users\Martina\Desktop\Složky
2014-06-19 13:31 - 2013-07-23 23:16 - 00000000 ____D () C:\Users\Martina\Desktop\Filmy
2014-06-19 12:14 - 2013-06-22 19:10 - 00000566 _____ () C:\Users\Martina\Desktop\filmy.txt
2014-06-18 08:30 - 2013-10-07 23:22 - 00000646 ____H () C:\Users\Martina\Documents\.picasa.ini
2014-06-18 08:30 - 2013-10-07 22:48 - 01110528 ___SH () C:\Users\Martina\Documents\Thumbs.db
2014-06-11 12:48 - 2013-06-18 11:35 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Atheros
2014-06-10 22:28 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\system32\FxsTmp
2014-06-09 23:43 - 2014-06-09 23:43 - 00000283 _____ () C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Koš (10).lnk
2014-06-04 19:36 - 2014-06-04 19:36 - 00013587 _____ () C:\Users\Martina\Desktop\Systémový lupus erythematodes.odt
2014-06-04 15:42 - 2014-06-04 14:25 - 728186880 _____ () C:\Users\Martina\Downloads\Nepritomnost-Absentia-2011-cesky-dabing.avi
2014-06-04 00:10 - 2014-06-03 22:33 - 897355227 _____ () C:\Users\Martina\Downloads\Hruza.v.Connecticutu.2.Duch.Georgie.2013.BRRip.XviD.CZ.avi.rar
Files to move or delete:
====================
C:\ProgramData\UycuBinqa.dat
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-06-26 14:33
==================== End Of Log ============================
Dejte log z RSIT 
Přispějete na provoz fóra?