Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-12-2014
Ran by Hrosík (administrator) on HROŠÍK on 13-12-2014 22:03:01
Running from C:\Users\Hrosík\Desktop
Loaded Profile: Hrosík (Available profiles: Hrosík)
Platform: Windows 8 Pro (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 10
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
() C:\Program Files (x86)\Photodex\ProShow Gold\scsiaccess.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\mkrmsg.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(forum.viry.cz) C:\Users\Hrosík\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-14] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [LenovoOptMouseUpdate] => C:\Program Files\Lenovo\HOTKEY\extapsup.exe [255480 2013-06-20] (Lenovo Group Limited)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2460488 2014-09-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5618456 2013-09-12] (ESET)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1880616068-2142377461-1790115224-1001\...\Run: [icq] => C:\Users\Hrosík\AppData\Roaming\ICQM\icq.exe [34947592 2014-08-14] (ICQ)
HKU\S-1-5-21-1880616068-2142377461-1790115224-1001\...\Policies\Explorer: [TaskbarNoNotification] 1
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [174856 2014-11-13] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-1880616068-2142377461-1790115224-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1880616068-2142377461-1790115224-1001\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft.com/isapi/redir.dl ... r=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1880616068-2142377461-1790115224-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL =
http://www.google.com/search?q={searchTerms}
BHO: No Name -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.254
FireFox:
========
FF ProfilePath: C:\Users\Hrosík\AppData\Roaming\Mozilla\Firefox\Profiles\kcki7tqi.default
FF NewTab: hxxp://
www.google.com/
FF DefaultSearchEngine: Google
FF DefaultSearchUrl: hxxp://
www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://
www.google.com
FF Keyword.URL: hxxp://
www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_239.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.31211.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_239.dll ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.31211.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @photodex.com/PhotodexPresenter -> C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1880616068-2142377461-1790115224-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Hrosík\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Hrosík\AppData\Roaming\Mozilla\Firefox\Profiles\kcki7tqi.default\searchplugins\google-avast.xml
FF HKLM-x32\...\Thunderbird\Extensions: [
eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2014-12-10]
Chrome:
=======
CHR HomePage: Default -> hxxp://
www.google.com/
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?ctid=CT3072253&SearchSource=48", "hxxp://
www.google.com", "hxxp://home.torchbrowser.com/?systemid=448&appid=107&ua=Torch", "hxxp://
www.google.com/", "hxxp://mysearch.avg.com/?cid={A96C40A3-AFDE-4043-8CAD-9CD1D40CB21D}&mid=de719743e80547d397fcd92928959d45-f587c555d563aeec284f2b11348695e4eff97ad5&lang=en&ds=co011&pr=sa&d=2013-07-04 02:04:19&v=15.3.0.11&pid=safeguard&sg=0&sap=hp", "hxxp://mysearch.avg.com?cid={33E0546F-78B6-454B-9632-E73E0DE08EB1}&mid=de719743e80547d397fcd92928959d45-f587c555d563aeec284f2b11348695e4eff97ad5&lang=cs&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2013-12-30 00:42:43&v=17.2.0.38&pid=safeguard&sg=&sap=hp", "hxxp://mysearch.avg.com?cid={93EB0701-969D-4467-8BC1-B6A101F3F319}&mid=69ce4d14d24d47d2bd7e755e7724275b-731b09b5922878685c92eca5ea206affd7d77f43&lang=cs&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-05-17 12:09:25&v=18.1.0.443&pid=safeguard&sg=&sap=hp"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-10-07]
CHR Extension: (Dokumenty Google) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-13]
CHR Extension: (Disk Google) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-13]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-12-02]
CHR Extension: (MEGA) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2014-12-04]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-12-02]
CHR Extension: (YouTube) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-13]
CHR Extension: (Vyhledávání Google) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-13]
CHR Extension: (Email Game) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehbobaphhmjpchjknfpcnlhcbkjbclge [2014-08-13]
CHR Extension: (Tabulky Google) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-10-07]
CHR Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2014-08-13]
CHR Extension: (AdBlock) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-08-13]
CHR Extension: (VLC 4 YouTube (beta)) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\jldiailifbdkepgpcojllmkbakleicab [2014-08-13]
CHR Extension: (Peněženka Google) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-13]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-12-02]
CHR Extension: (Gmail) - C:\Users\Hrosík\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-13]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2227992 2012-10-02] (Broadcom Corporation.)
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [959192 2013-02-26] (Broadcom Corporation.)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1337752 2013-09-12] (ESET)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2014-10-05] (Macrovision Europe Ltd.) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-20] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129848 2013-05-31] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-05-31] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19439944 2014-09-17] (NVIDIA Corporation)
R2 ScsiAccess; C:\Program Files (x86)\Photodex\ProShow Gold\ScsiAccess.exe [186760 2014-12-06] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16032 2014-09-22] (Microsoft Corporation)
S3 LMIGuardianSvc; "C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswTap; C:\Windows\system32\DRIVERS\aswTap.sys [44640 2014-11-09] (The OpenVPN Project)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [312480 2014-11-01] ()
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [169240 2012-10-02] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [5139968 2012-06-02] (Broadcom Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 BTWPANFL; C:\Windows\system32\drivers\btwpanfl.sys [44912 2013-01-20] (Broadcom Corporation.)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-08-13] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [157432 2013-09-17] (ESET)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45112 2014-12-01] (LogMeIn Inc.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43168 2014-11-01] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288480 2012-12-13] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-04-26] (Synaptics Incorporated)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-26] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-13 22:03 - 2014-12-13 22:03 - 00019943 _____ () C:\Users\Hrosík\Desktop\FRST.txt
2014-12-13 22:02 - 2014-12-13 22:03 - 00000000 ____D () C:\FRST
2014-12-13 22:02 - 2014-12-13 22:01 - 02119168 _____ (Farbar) C:\Users\Hrosík\Desktop\FRST64.exe
2014-12-13 22:02 - 2014-12-13 22:01 - 00112640 _____ (forum.viry.cz) C:\Users\Hrosík\Desktop\FRSTLauncher.exe
2014-12-13 22:01 - 2014-12-13 22:01 - 02119168 _____ (Farbar) C:\Users\Hrosík\Downloads\FRST64.exe
2014-12-13 21:59 - 2014-12-13 22:01 - 00112640 _____ (forum.viry.cz) C:\Users\Hrosík\Downloads\FRSTLauncher.exe
2014-12-13 21:30 - 2014-12-13 21:30 - 00053261 _____ () C:\Users\Hrosík\Downloads\Dawn-of-the-Planet-of-the-Apes(0000244532).srt
2014-12-13 21:28 - 2014-12-13 21:51 - 1899786240 _____ () C:\Users\Hrosík\Downloads\Úsvit planety opic (2014) 5.1 CZ dabing.avi
2014-12-13 21:27 - 2014-12-13 21:27 - 00018688 _____ () C:\Users\Hrosík\Downloads\[CzT]Usvit_planety_opic_Dawn_of_the_Planet_of_the_Apes_2014_CZ_.torrent
2014-12-13 17:42 - 2014-12-13 17:30 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-12-13 17:30 - 2014-12-13 15:42 - 00007849 _____ () C:\zoek-results2014-12-13-144240.log
2014-12-13 16:30 - 2014-12-13 16:34 - 00003716 _____ () C:\Users\Hrosík\Desktop\SystemLook.txt
2014-12-13 16:30 - 2014-12-13 16:30 - 00165376 _____ () C:\Users\Hrosík\Downloads\SystemLook_x64.exe
2014-12-13 16:30 - 2014-12-13 16:30 - 00165376 _____ () C:\Users\Hrosík\Desktop\SystemLook_x64.exe
2014-12-13 15:50 - 2014-12-13 16:10 - 00000000 ____D () C:\Users\Hrosík\Desktop\mbar
2014-12-13 15:50 - 2014-12-13 15:50 - 16448208 _____ (Malwarebytes Corp.) C:\Users\Hrosík\Desktop\mbar-1.08.2.1001.exe
2014-12-13 15:49 - 2014-12-13 15:50 - 16448208 _____ (Malwarebytes Corp.) C:\Users\Hrosík\Downloads\mbar-1.08.2.1001.exe
2014-12-13 15:44 - 2014-12-13 15:45 - 04187592 _____ (Kaspersky Lab ZAO) C:\Users\Hrosík\Downloads\tdsskiller.exe
2014-12-13 15:42 - 2014-12-13 15:42 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-12-13 15:28 - 2014-11-14 05:42 - 00005682 _____ () C:\zoek-results2014-11-14-044208.log
2014-12-13 15:26 - 2014-12-13 15:26 - 01295360 _____ () C:\Users\Hrosík\Downloads\zoek.exe
2014-12-13 15:26 - 2014-12-13 15:26 - 01295360 _____ () C:\Users\Hrosík\Desktop\zoek.exe
2014-12-13 15:25 - 2014-12-13 15:25 - 00000000 ___SD () C:\Uninstall
2014-12-13 15:24 - 2014-12-13 15:24 - 00000000 ____D () C:\Users\HrosÝk
2014-12-13 15:13 - 2014-12-13 15:13 - 02166272 _____ () C:\Users\Hrosík\Downloads\adwcleaner_4.105 (1).exe
2014-12-13 15:11 - 2014-12-13 15:11 - 02166272 _____ () C:\Users\Hrosík\Downloads\adwcleaner_4.105.exe
2014-12-13 15:11 - 2014-12-13 15:11 - 02166272 _____ () C:\Users\Hrosík\Desktop\adwcleaner_4.105.exe
2014-12-13 15:07 - 2014-12-13 15:07 - 02997112 _____ (Crystal Dew World ) C:\Users\Hrosík\Downloads\CrystalDiskInfo6_2_2-en.exe
2014-12-13 15:07 - 2014-12-13 15:07 - 00001190 _____ () C:\Users\Hrosík\Desktop\CrystalDiskInfo.lnk
2014-12-13 15:07 - 2014-12-13 15:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2014-12-13 15:07 - 2014-12-13 15:07 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2014-12-13 15:04 - 2014-12-13 15:04 - 02153472 _____ () C:\Users\Hrosík\Downloads\adwcleaner_4.104.exe
2014-12-13 15:04 - 2014-12-13 15:04 - 01032220 _____ (Thisisu) C:\Users\Hrosík\Downloads\JRT.exe
2014-12-13 15:04 - 2014-12-13 15:04 - 00034614 _____ () C:\Users\Hrosík\Downloads\RogueKillerX64.exe
2014-12-13 14:51 - 2014-12-13 14:51 - 11154087 _____ () C:\Users\Hrosík\Downloads\LAN_Utility_Win8-1_VER2026.zip
2014-12-13 14:50 - 2014-12-13 14:52 - 26891461 _____ () C:\Users\Hrosík\Downloads\LAN_XPVistaWin7-8-8-1_VER5822_6254_777_824.zip
2014-12-13 14:50 - 2014-12-13 14:51 - 22932791 _____ () C:\Users\Hrosík\Downloads\LAN_Utility_XPVistaWin7-8-8-1_VER2026_VER2027.zip
2014-12-13 14:50 - 2014-12-13 14:51 - 16124654 _____ () C:\Users\Hrosík\Downloads\Intel_Chipset_XPVistaWin7-8-8-1_VER9401026.zip
2014-12-13 13:45 - 2014-12-13 13:46 - 06561597 _____ () C:\Users\Hrosík\Downloads\Realtek_LAN_Win8-1_VER819.zip
2014-12-13 03:47 - 2014-12-13 13:32 - 00026833 _____ () C:\ComboFix.txt
2014-12-12 23:50 - 2014-12-12 23:50 - 00000000 ____D () C:\Users\Hrosík\AppData\Local\ESET
2014-12-12 23:47 - 2014-12-12 23:48 - 00001254 _____ () C:\Users\Hrosík\Desktop\CFScript.txt
2014-12-12 23:47 - 2014-12-12 23:47 - 00000000 _____ () C:\Users\Hrosík\Desktop\Nový textový dokument.txt
2014-12-10 23:24 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-12-10 23:24 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-12-10 23:24 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-12-10 23:24 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-12-10 23:24 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-12-10 23:24 - 2000-08-31 01:00 - 00212480 _____ (SteelWerX) C:\Windows\SWXCACLS.exe
2014-12-10 23:24 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-12-10 23:24 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-12-10 23:24 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-12-10 23:17 - 2014-12-10 23:17 - 00009355 _____ () C:\Users\Hrosík\Desktop\LaunchPad – zástupce.lnk
2014-12-10 23:04 - 2014-12-10 23:04 - 00201728 _____ (OldTimer Tools) C:\Users\Hrosík\Downloads\OTC.exe
2014-12-10 22:51 - 2014-12-10 22:51 - 00423077 _____ () C:\Users\Hrosík\Downloads\TCleaner v1.0.4.exe
2014-12-10 22:38 - 2014-12-10 22:38 - 01222144 _____ () C:\Users\Hrosík\Downloads\RSITx64.exe
2014-12-10 22:38 - 2014-12-10 22:38 - 01222144 _____ () C:\Users\Hrosík\Desktop\RSITx64.exe
2014-12-10 22:17 - 2014-10-09 05:00 - 01519104 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2014-12-10 22:17 - 2014-10-09 05:00 - 01484288 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-12-10 22:17 - 2014-10-09 05:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2014-12-10 22:17 - 2014-10-09 04:59 - 01195520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2014-12-10 22:17 - 2014-10-09 04:59 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2014-12-10 19:39 - 2014-12-10 19:45 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\IDoser
2014-12-10 19:38 - 2014-12-10 19:42 - 00000000 ____D () C:\Users\Hrosík\Documents\Dose Files
2014-12-10 19:38 - 2014-12-10 19:39 - 00000000 ____D () C:\Program Files (x86)\I-Doser Premium
2014-12-10 19:38 - 2014-12-10 19:38 - 00001048 _____ () C:\Users\Public\Desktop\I-Doser Premium.lnk
2014-12-10 19:38 - 2014-12-10 19:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I-Doser Premium
2014-12-10 19:37 - 2014-12-10 19:37 - 00017040 _____ () C:\Users\Hrosík\Downloads\[kickass.so]i.doser.v5.premium.all.doses.torrent
2014-12-10 19:37 - 2014-12-10 19:37 - 00000000 ____D () C:\Users\Hrosík\Downloads\I-Doser Premium V5 + all Doses
2014-12-10 19:36 - 2014-12-10 19:36 - 02206665 _____ () C:\Users\Hrosík\Downloads\IDoserFreeSetup.exe
2014-12-10 05:06 - 2014-11-21 09:38 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-10 05:06 - 2014-11-21 09:37 - 01409536 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-10 05:06 - 2014-11-21 09:36 - 19283456 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-10 05:06 - 2014-11-21 09:36 - 15400960 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-10 05:06 - 2014-11-21 09:36 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-10 05:06 - 2014-11-21 09:36 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-10 05:06 - 2014-11-21 09:35 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-10 05:06 - 2014-11-21 08:17 - 14364672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-10 05:06 - 2014-11-21 08:17 - 01762816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-10 05:06 - 2014-11-21 08:17 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-10 05:06 - 2014-11-21 08:16 - 13758976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-10 05:06 - 2014-11-21 08:16 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-10 05:05 - 2014-11-21 09:38 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-10 05:05 - 2014-11-21 09:37 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-12-10 05:05 - 2014-11-21 09:37 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-12-10 05:05 - 2014-11-21 09:36 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-10 05:05 - 2014-11-21 09:36 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-12-10 05:05 - 2014-11-21 09:36 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-10 05:05 - 2014-11-21 09:36 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-10 05:05 - 2014-11-21 09:36 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-10 05:05 - 2014-11-21 09:36 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-12-10 05:05 - 2014-11-21 09:36 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-10 05:05 - 2014-11-21 09:36 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-10 05:05 - 2014-11-21 08:17 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-10 05:05 - 2014-11-21 08:17 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-10 05:05 - 2014-11-21 08:17 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-12-10 05:05 - 2014-11-21 08:16 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-10 05:05 - 2014-11-21 08:16 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-10 05:05 - 2014-11-21 08:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-12-10 05:05 - 2014-11-21 08:16 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-10 05:05 - 2014-11-21 08:16 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-10 05:05 - 2014-11-21 08:16 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-10 05:05 - 2014-11-21 08:16 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-12-10 05:05 - 2014-11-21 08:16 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-10 05:04 - 2014-11-21 09:36 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-10 05:04 - 2014-11-21 09:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-10 05:04 - 2014-11-21 09:36 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-10 05:04 - 2014-11-21 08:16 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-10 05:04 - 2014-11-21 08:16 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-10 05:04 - 2014-11-21 08:16 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-10 05:04 - 2014-11-21 08:00 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-10 05:04 - 2014-11-21 07:54 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-10 05:04 - 2014-11-21 05:30 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-12-10 04:48 - 2014-11-06 07:50 - 01627648 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-10 04:48 - 2014-11-06 06:03 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-10 04:15 - 2014-10-30 08:20 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-12-10 04:15 - 2014-10-30 06:22 - 01569792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-12-10 02:50 - 2014-12-10 02:50 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\HD Tune Pro
2014-12-10 02:49 - 2014-12-10 02:49 - 00001037 _____ () C:\Users\Hrosík\Desktop\HD Tune Pro.lnk
2014-12-10 02:49 - 2014-12-10 02:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro
2014-12-10 02:49 - 2014-12-10 02:49 - 00000000 ____D () C:\Program Files (x86)\HD Tune Pro
2014-12-10 02:48 - 2014-12-10 02:48 - 00005323 _____ () C:\Users\Hrosík\Downloads\[kickass.so]hd.tune.pro.v5.50.retail.with.key.mahiy.torrent
2014-12-10 02:48 - 2014-12-10 02:48 - 00000000 ____D () C:\Users\Hrosík\Downloads\HD TUNE PRO [ v5.50 Retail ][WITH KEY] - [MAHIY]
2014-12-10 02:37 - 2014-12-10 02:37 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-12-10 02:37 - 2014-12-10 02:37 - 00000000 ____D () C:\Windows\system32\NV
2014-12-10 02:34 - 2014-11-13 01:20 - 31893136 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 24557712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 20986592 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 20922512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 19966344 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 18514616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 17259664 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 14032984 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 13944952 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 13213512 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-12-10 02:34 - 2014-11-13 01:20 - 11397744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 11336432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 04292416 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 04011208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 02874456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 01876296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434475.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 01540424 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434475.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 00964928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 00935240 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 00923792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 00900928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 00352016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 00303600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-12-10 02:34 - 2014-11-13 01:20 - 00031560 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-12-10 02:31 - 2014-12-10 22:23 - 00002982 _____ () C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
2014-12-10 02:29 - 2014-12-10 22:23 - 00000899 _____ () C:\Windows\setupact.log
2014-12-10 02:29 - 2014-12-10 02:32 - 00010200 _____ () C:\Windows\DPINST.LOG
2014-12-10 02:29 - 2014-12-10 02:32 - 00001334 _____ () C:\Windows\Synaptics.log
2014-12-10 02:29 - 2014-12-10 02:29 - 00000000 _____ () C:\Windows\setuperr.log
2014-12-10 02:27 - 2014-12-10 02:28 - 34349184 _____ (Lenovo Group Limited ) C:\Users\Hrosík\Downloads\h0gs11ww.exe
2014-12-10 02:25 - 2014-12-10 02:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-12-10 02:25 - 2014-12-10 02:25 - 00000000 ____D () C:\ProgramData\ESET
2014-12-10 02:25 - 2014-12-10 02:25 - 00000000 ____D () C:\Program Files\ESET
2014-12-09 23:46 - 2014-12-09 23:46 - 00000000 ____D () C:\Users\Hrosᅢᆳk
2014-12-09 23:45 - 2014-12-10 02:31 - 00000000 ____D () C:\Users\Hrosík\AppData\Local\CrashDumps
2014-12-09 23:45 - 2014-12-09 23:45 - 00000000 ____D () C:\Users\Hrosík\AppData\Local\SCE
2014-12-09 20:43 - 2014-06-25 09:08 - 00000000 ____D () C:\Users\Hrosík\Downloads\language
2014-12-09 20:40 - 2014-12-09 20:41 - 00000000 ____D () C:\Users\Hrosík\Downloads\ESET NOD32 ANTIVIRUS 7 CRACK (32 64 BIT) THADOGG
2014-12-09 20:40 - 2014-12-09 20:40 - 00335089 _____ () C:\Users\Hrosík\Downloads\GRiD2CZ.exe
2014-12-09 20:40 - 2014-12-09 20:40 - 00011935 _____ () C:\Users\Hrosík\Downloads\[kickass.so]eset.nod32.antivirus.7.crack.32.64.bit.thadogg.xtrteam.torrent
2014-12-09 20:36 - 2014-12-09 20:36 - 00000000 ____D () C:\ProgramData\Codemasters
2014-12-09 20:30 - 2014-12-09 20:30 - 00000776 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GRID 2.lnk
2014-12-09 20:30 - 2014-12-09 20:30 - 00000764 _____ () C:\Users\Public\Desktop\GRID 2.lnk
2014-12-09 20:16 - 2014-12-09 20:36 - 00000000 ____D () C:\Program Files (x86)\GRID 2
2014-12-09 18:40 - 2014-12-09 20:41 - 00000000 ____D () C:\Users\Hrosík\Downloads\GRID.2_RELOADED
2014-12-09 17:39 - 2014-12-13 22:01 - 00970826 _____ () C:\Windows\WindowsUpdate.log
2014-12-09 17:38 - 2014-12-13 20:11 - 00005280 _____ () C:\Windows\PFRO.log
2014-12-09 17:18 - 2014-12-09 17:18 - 00050688 _____ (Atribune.org) C:\Users\Hrosík\Desktop\ATF-Cleaner.exe
2014-12-09 03:17 - 2014-12-13 15:25 - 00000000 ____D () C:\Qoobox
2014-12-09 03:15 - 2014-12-10 22:40 - 00000000 ____D () C:\Program Files\trend micro
2014-12-09 02:29 - 2014-12-09 02:29 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\TeamViewer
2014-12-09 02:09 - 2014-12-09 02:09 - 09508923 _____ () C:\Users\Hrosík\Desktop\emička.pxc
2014-12-09 02:09 - 2014-12-09 02:09 - 00089055 _____ () C:\Users\Hrosík\Desktop\emička.psh
2014-12-08 23:58 - 2014-12-08 23:58 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
2014-12-08 23:57 - 2014-12-09 02:27 - 00000000 ____D () C:\Users\Hrosík\AppData\Local\NokiaAccount
2014-12-08 23:55 - 2014-12-09 00:00 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\PC Suite
2014-12-08 23:55 - 2014-12-08 23:58 - 00000000 ____D () C:\ProgramData\PC Suite
2014-12-08 23:55 - 2014-12-08 23:56 - 00000000 ____D () C:\Users\Hrosík\AppData\Local\Nokia
2014-12-08 23:54 - 2014-12-08 23:54 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ccdcmbx64_01009.Wdf
2014-12-08 23:52 - 2014-12-08 23:52 - 00000000 ____D () C:\Program Files\DIFX
2014-12-08 23:52 - 2014-12-08 23:52 - 00000000 ____D () C:\Program Files (x86)\PC Connectivity Solution
2014-12-08 23:52 - 2013-01-23 10:31 - 00057856 _____ (Nokia) C:\Windows\system32\nmwcdclsX64.dll
2014-12-08 23:52 - 2012-10-17 14:53 - 00026112 _____ (Nokia) C:\Windows\system32\Drivers\pccsmcfdx64.sys
2014-12-08 23:51 - 2014-12-09 02:27 - 00000000 ____D () C:\Program Files (x86)\Nokia
2014-12-08 23:51 - 2014-12-08 23:51 - 00000000 ____D () C:\ProgramData\NokiaInstallerCache
2014-12-08 23:37 - 2014-12-09 00:30 - 00000000 ____D () C:\Users\Hrosík\Desktop\pupek
2014-12-08 22:56 - 2014-12-08 22:56 - 00001315 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-12-08 22:56 - 2014-12-08 22:56 - 00000000 ____D () C:\Windows\cs
2014-12-08 22:55 - 2014-12-08 22:55 - 00001388 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2014-12-08 22:54 - 2014-12-08 22:55 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-12-08 22:53 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-12-08 22:53 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-12-08 22:53 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-12-08 22:53 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-12-08 22:53 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-12-08 22:53 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-12-08 22:53 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-12-08 22:53 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-12-08 22:53 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-12-08 22:53 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-12-08 22:51 - 2014-12-08 23:03 - 00000000 ____D () C:\Users\Hrosík\AppData\Local\Windows Live
2014-12-08 22:49 - 2014-12-08 22:56 - 74487048 _____ () C:\Users\Hrosík\Desktop\čum.avi
2014-12-08 15:37 - 2014-12-08 15:37 - 00008192 _____ () C:\Windows\SysWOW64\srvany.exe
2014-12-08 14:56 - 2014-12-08 14:56 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\Unity
2014-12-07 07:46 - 2014-12-07 07:46 - 02251992 _____ (Broadcom Corporation.) C:\Windows\system32\BtwRSupportService(143).exe
2014-12-07 07:06 - 2014-12-09 20:41 - 00000000 ____D () C:\Users\Hrosík\Downloads\Advanced SystemCare Pro 8.0.3.588
2014-12-07 01:05 - 2014-12-07 01:05 - 00142670 _____ () C:\Users\Hrosík\Desktop\čum.psh
2014-12-07 00:26 - 2014-12-08 23:07 - 10192856 _____ () C:\Users\Hrosík\Desktop\čum.pxc
2014-12-07 00:26 - 2014-12-07 00:26 - 00089283 _____ () C:\Users\Hrosík\Desktop\čum.bak
2014-12-06 23:23 - 2014-12-06 23:23 - 00002105 _____ () C:\Users\Public\Desktop\ProShow Gold.lnk
2014-12-06 23:23 - 2014-12-06 23:23 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\Netscape
2014-12-06 23:23 - 2014-12-06 23:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProShow Gold
2014-12-06 23:23 - 2014-12-06 23:23 - 00000000 ____D () C:\Program Files (x86)\Photodex Presenter
2014-12-06 23:23 - 2014-12-06 23:23 - 00000000 ____D () C:\Program Files (x86)\Photodex
2014-12-06 23:22 - 2014-12-06 23:23 - 00000000 ____D () C:\ProgramData\Photodex
2014-12-06 23:22 - 2014-12-06 23:22 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\Photodex
2014-12-06 22:31 - 2014-12-07 00:04 - 00000000 ____D () C:\Users\Hrosík\Downloads\Hvězdy nám nepřály Fault in Our Stars, The (2014)
2014-12-05 06:56 - 2014-12-05 06:56 - 79732736 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2014-12-05 06:56 - 2014-12-05 06:56 - 00376832 _____ () C:\Windows\system32\config\DEFAULT.iobit
2014-12-05 06:56 - 2014-12-05 06:56 - 00069632 _____ () C:\Windows\system32\config\SAM.iobit
2014-12-05 06:56 - 2014-12-05 06:56 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iobit
2014-12-05 06:38 - 2014-12-05 06:38 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\Apple Computer
2014-12-05 06:37 - 2014-12-05 06:37 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-12-05 06:36 - 2014-12-07 13:46 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\IObit
2014-12-04 03:25 - 2014-12-05 06:22 - 00000000 ____D () C:\Users\Hrosík\Downloads\Nymfomanka II
2014-12-03 23:19 - 2014-12-03 23:19 - 00000000 ____D () C:\Users\Hrosík\AppData\Local\Mozilla
2014-12-03 23:17 - 2014-12-06 07:23 - 00001139 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-12-03 23:17 - 2014-12-06 07:23 - 00001139 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-12-03 23:17 - 2014-12-03 23:17 - 00000000 ____D () C:\ProgramData\Mozilla
2014-12-03 23:17 - 2014-12-03 23:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-12-03 23:17 - 2014-12-03 23:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-12-02 22:29 - 2014-12-02 22:29 - 00035352 _____ (Connectify) C:\Windows\system32\Drivers\cnnctfy3.sys
2014-12-02 22:23 - 2014-12-09 20:41 - 00000000 ____D () C:\Users\Hrosík\Downloads\Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]
2014-12-01 15:51 - 2014-12-01 15:51 - 00045112 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-11-29 00:15 - 2014-11-29 00:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
2014-11-29 00:05 - 2014-04-30 19:43 - 04659712 _____ (Dmitry Streblechenko) C:\Windows\SysWOW64\Redemption.dll
2014-11-29 00:05 - 2014-04-30 19:43 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\SysWOW64\secman.dll
2014-11-29 00:04 - 2014-12-09 02:29 - 00000000 ____D () C:\ProgramData\Samsung
2014-11-29 00:04 - 2014-12-09 02:29 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-11-29 00:01 - 2014-11-29 00:01 - 00000000 ____D () C:\Users\Hrosík\AppData\Local\Downloaded Installations
2014-11-28 23:54 - 2009-03-04 10:55 - 00000000 ____D () C:\Users\Hrosík\Desktop\dedomil
2014-11-28 18:48 - 2014-11-28 19:13 - 1861421248 _____ () C:\Users\Hrosík\Downloads\Fack.ju.Göhte.2013.BRRip.XviD.AC3.CZ.avi
2014-11-26 12:19 - 2014-11-19 08:29 - 00582552 _____ (Microsoft Corporation) C:\Windows\system32\AutoUpdate.exe
2014-11-26 12:19 - 2014-11-19 08:29 - 00462760 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2014-11-23 16:10 - 2014-11-23 16:10 - 00000000 ____D () C:\Program Files (x86)\Marvell
2014-11-19 22:03 - 2014-11-08 12:22 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 22:03 - 2014-11-08 12:21 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 22:03 - 2014-11-08 07:57 - 00187904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-19 22:03 - 2014-11-08 07:56 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 21:46 - 2014-12-09 20:41 - 00000000 ____D () C:\Users\Hrosík\Downloads\Novicorp WinToFlash 0.5.0020 beta
2014-11-19 21:39 - 2014-12-09 02:28 - 00000000 ____D () C:\Program Files (x86)\WinToUSB
2014-11-17 00:19 - 2014-11-18 00:59 - 00000000 ____D () C:\Users\Hrosík\Downloads\Futurama všechny série (1-6) (CZ)
2014-11-16 18:56 - 2014-12-13 16:00 - 00000000 ____D () C:\Users\Hrosík\Desktop\Nová složka
2014-11-16 01:48 - 2014-11-16 01:48 - 00000086 _____ () C:\Users\Hrosík\Documents\ss.txt
2014-11-14 06:03 - 2014-10-11 08:44 - 19764736 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-11-14 06:03 - 2014-10-11 06:57 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-11-14 06:03 - 2014-10-09 04:59 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-11-14 06:03 - 2014-10-09 04:59 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-11-14 06:03 - 2014-10-09 04:58 - 00458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-11-14 06:03 - 2014-09-22 06:38 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2014-11-14 06:03 - 2014-09-22 04:56 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2014-11-14 06:03 - 2014-09-18 00:24 - 00987136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmclient.dll
2014-11-14 06:03 - 2014-09-18 00:24 - 00487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmscan.dll
2014-11-14 06:03 - 2014-09-18 00:24 - 00278528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srm.dll
2014-11-14 06:03 - 2014-09-18 00:24 - 00104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adrclient.dll
2014-11-14 06:03 - 2014-09-17 23:57 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\srmclient.dll
2014-11-14 06:03 - 2014-09-17 23:57 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\srmscan.dll
2014-11-14 06:03 - 2014-09-17 23:57 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\srm.dll
2014-11-14 06:03 - 2014-09-17 23:57 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\adrclient.dll
2014-11-14 05:21 - 2014-12-13 17:48 - 00007226 _____ () C:\zoek-results.log
2014-11-14 05:19 - 2014-12-13 15:37 - 00000000 ____D () C:\zoek_backup
2014-11-13 07:53 - 2014-12-13 15:12 - 00000000 ____D () C:\AdwCleaner
2014-11-13 07:26 - 2014-12-09 15:44 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-11-13 07:08 - 2014-11-14 05:57 - 00011073 _____ () C:\Users\Hrosík\Documents\hijackthis.log
2014-11-13 06:56 - 2014-11-13 06:56 - 00001115 _____ () C:\Users\Hrosík\Desktop\Call of Duty - Black Ops 2.lnk
2014-11-13 06:56 - 2014-11-13 06:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty - Black Ops 2
2014-11-13 06:41 - 2014-11-13 06:56 - 00000000 ____D () C:\Program Files (x86)\Call of Duty - Black Ops 2
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-13 22:01 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-12-13 22:00 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2014-12-13 21:58 - 2014-08-21 23:13 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\vlc
2014-12-13 21:52 - 2014-08-13 21:41 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\uTorrent
2014-12-13 21:51 - 2014-11-08 19:48 - 00364544 ___SH () C:\Users\Hrosík\Downloads\Thumbs.db
2014-12-13 21:30 - 2012-07-26 11:01 - 00727488 _____ () C:\Windows\system32\perfh005.dat
2014-12-13 21:30 - 2012-07-26 11:01 - 00148006 _____ () C:\Windows\system32\perfc005.dat
2014-12-13 21:30 - 2012-07-26 08:28 - 01714430 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-13 20:45 - 2014-08-13 21:43 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1880616068-2142377461-1790115224-1001
2014-12-13 20:12 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-13 20:11 - 2014-10-22 15:44 - 00000000 ____D () C:\Windows\onhax-temp
2014-12-13 20:11 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-12-13 18:04 - 2014-09-28 18:33 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-12-13 16:54 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\rescache
2014-12-13 15:50 - 2014-09-28 18:29 - 00096472 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-12-13 15:41 - 2014-08-13 22:08 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-12-13 15:41 - 2014-08-13 22:08 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-12-13 15:37 - 2012-07-26 09:12 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-12-13 15:37 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-12-13 15:21 - 2014-08-13 22:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-12-13 13:44 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-12-13 03:21 - 2012-07-26 06:26 - 00000215 _____ () C:\Windows\system.ini
2014-12-10 22:55 - 2014-08-13 21:36 - 00000000 ____D () C:\Users\Hrosík
2014-12-10 22:23 - 2012-07-26 08:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-12-10 22:22 - 2014-09-08 12:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-12-10 22:22 - 2014-08-13 23:27 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-10 22:18 - 2014-08-13 23:27 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-10 02:37 - 2014-08-13 23:02 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-12-09 23:50 - 2014-08-15 12:23 - 00000000 ____D () C:\Users\Hrosík\Documents\My Games
2014-12-09 20:41 - 2014-10-11 19:27 - 00000000 ____D () C:\Users\Hrosík\Downloads\American Horror story S01 (DVDrip)
2014-12-09 20:15 - 2014-08-13 22:14 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\DAEMON Tools Lite
2014-12-09 18:25 - 2014-11-07 22:28 - 00079872 ___SH () C:\Users\Hrosík\Desktop\Thumbs.db
2014-12-09 17:27 - 2014-10-06 13:30 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-12-09 15:44 - 2014-09-28 18:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-12-09 15:44 - 2014-09-28 18:29 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-09 15:09 - 2014-11-03 02:40 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-12-09 03:16 - 2014-10-07 05:58 - 00000000 ____D () C:\Windows\erdnt
2014-12-09 02:54 - 2014-08-15 13:49 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-12-09 02:54 - 2014-08-14 18:15 - 02354344 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-12-09 02:29 - 2014-08-13 22:55 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-12-09 02:26 - 2014-10-27 22:35 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\.minecraft
2014-12-09 02:24 - 2014-10-27 22:51 - 00000000 ____D () C:\Users\Hrosík\AppData\Local\LogMeIn Hamachi
2014-12-09 02:11 - 2014-08-13 21:44 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-12-08 22:55 - 2014-09-08 13:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-12-08 22:54 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-12-07 14:04 - 2014-08-14 00:13 - 00003818 _____ () C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2014-12-07 14:04 - 2014-08-14 00:13 - 00003576 _____ () C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon
2014-12-07 14:04 - 2014-08-13 21:38 - 00003932 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-12-07 14:04 - 2014-08-13 21:38 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-12-07 13:59 - 2014-08-13 21:44 - 00003808 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-12-07 13:47 - 2014-11-03 02:40 - 00000000 ____D () C:\ProgramData\IObit
2014-12-07 13:47 - 2014-10-19 21:28 - 00000000 ____D () C:\Users\Hrosík\AppData\Local\Unity
2014-12-07 13:46 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\registration
2014-12-06 23:24 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\BBI(145)
2014-12-06 23:23 - 2014-08-26 18:22 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\Mozilla
2014-12-05 08:50 - 2014-10-28 22:37 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\Notepad++
2014-12-05 07:06 - 2014-10-07 15:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roller Coaster Tycoon 3 Platinum - CarlesNeo !
2014-12-05 07:06 - 2014-08-13 22:30 - 00000000 ____D () C:\Windows\Panther
2014-12-03 23:17 - 2014-08-13 22:07 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-12-03 23:17 - 2014-08-13 22:06 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-28 23:45 - 2014-09-20 16:43 - 00000000 ____D () C:\Users\Hrosík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth
2014-11-27 14:58 - 2014-08-13 21:39 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-26 22:11 - 2014-11-12 00:04 - 00714184 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-26 22:11 - 2014-11-12 00:04 - 00106440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-24 06:29 - 2014-11-05 23:11 - 00000460 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-11-21 06:14 - 2014-09-28 18:29 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-11-21 06:14 - 2014-09-28 18:29 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-11-19 23:58 - 2014-10-16 21:24 - 00000000 ____D () C:\Users\Hrosík\Documents\DTP
2014-11-14 06:07 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ToastData
2014-11-14 05:53 - 2014-11-05 23:13 - 00000000 ____D () C:\Program Files (x86)\Virtual Router
2014-11-13 07:06 - 2014-08-13 21:37 - 00000000 ____D () C:\Users\Hrosík\AppData\Local\VirtualStore
2014-11-13 01:20 - 2014-08-13 23:00 - 16884632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-11-13 01:20 - 2014-08-13 23:00 - 03262784 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-11-13 01:20 - 2014-08-13 23:00 - 00871648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-11-13 01:20 - 2014-08-13 23:00 - 00156840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-11-13 01:20 - 2013-12-26 18:42 - 00989056 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-11-13 01:20 - 2013-12-26 18:42 - 00174856 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-11-13 01:20 - 2013-12-26 18:42 - 00027094 _____ () C:\Windows\system32\nvinfo.pb
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-12-08 13:28
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:930.51 GB) (Free:725.94 GB) NTFS
Drive f: (Woytman) (Removable) (Total:3.75 GB) (Free:3.46 GB) NTFS
Available physical RAM: 2455.7 MB
Total physical RAM: 3673.13 MB
Percentage of memory in use: 33%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: A98693C5)
Partition 1: (Active) - (Size=1 GB) - (Type=0B)
Partition 2: (Not Active) - (Size=930.5 GB) - (Type=07 NTFS)
Disk: 1 (Size: 3.7 GB) (Disk ID: 0017806B)
Partition 1: (Active) - (Size=3.7 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: ESET NOD32 Antivirus 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Hros�k\Desktop" je 1514 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
Pouzijte tyto utility dle navodu kolegy
Přispějete na provoz fóra?