trackid sp 006 a theadgateway.com

[Bazz]

Dobrý den,
tíží mne tyto dvě věci a nevím jak to mám odstranit. Používám prohlížeč chrome. Když chci otevřít novou stránku, tak mi vyskočí www.thegateway.com/a/display..... když otvírám prohlížeč, tak se neustále zobrazuje "trackid-sp-006". Vím, že to je nějaký malware/spyware, ale bohužel nemám ponětí, jak ho mám odstranit. nějaké programy jsem již vyzkoušel (Ad-Aware(nenašel žádný), spyhunter4 (ten našel 1800 problémů, ale prostě je neodstraní)). win 8.1, notebook hp,intel i5. přemýšlel sem i nějaké pomoci hijackthis,ale nemám s tím bohužel zatím vůbec žádné zkušenosti.
Děkuji za rady.

[vyosek]

Zdravim

Dejte log z FRST http://forum.viry.cz/viewtopic.php?f=24&t=132509

[Bazz]

Ten druhý odkaz se mi bohužel nepřesměruje na stažení launcheru níže tedy uvadím log a v příloze zabalený Addition.txt.
Děkuji za pomoc.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:08-06-2015
Ran by Miroslav (administrator) on PRACE on 12-06-2015 07:40:57
Running from C:\Users\Miroslav\Downloads
Loaded Profiles: Miroslav (Available Profiles: Miroslav)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Enigma Software Group USA, LLC.) C:\Program Files (x86)\Enigma Software Group\SpyHunter\SH4Service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Lavasoft) C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Lavasoft Limited) C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Program Files (x86)\Air Globe\updateAirGlobe.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
(Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Lavasoft) C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe
() C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Air Globe\bin\utilAirGlobe.exe
() C:\Program Files (x86)\Air Globe\bin\AirGlobe.BOASHelper.exe
() C:\Program Files (x86)\Air Globe\bin\AirGlobe.expext.exe
() C:\Program Files (x86)\Air Globe\bin\AirGlobe.PurBrowse64.exe
() C:\Program Files (x86)\Air Globe\bin\AirGlobe.BrowserAdapter64.exe
() C:\Program Files (x86)\Air Globe\bin\AirGlobe.BrowserAdapter.exe
() C:\Program Files (x86)\Air Globe\bin\AirGlobe.BOASPRT.exe
() C:\Program Files (x86)\Air Globe\bin\AirGlobe.BOAS.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7642328 2015-04-02] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2198872 2014-03-28] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2811120 2014-03-13] (Synaptics Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5512912 2015-04-02] (Avast Software s.r.o.)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [126240 2014-04-01] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [509192 2014-12-01] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [YTDownloader] => "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1720584 2015-02-09] (CyberLink Corp.)
HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\Run: [YTDownloader] => "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [1381648 2015-06-08] (Lavasoft)
HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\MountPoints2: {3e5d343c-ff0d-11e4-826c-38b1dbe81f72} - "F:\LenovoUsbDriver.exe"
HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\MountPoints2: {c4cd905b-cefa-11e4-8264-38b1dbe81f72} - "F:\LenovoUsbDriver.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk [2014-08-05]
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-04-02] (Avast Software s.r.o.)
BootExecute: autocheck autochk * sh4native Sh4Removallsdelete
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds& ... earchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds& ... earchTerms}
SearchScopes: HKLM -> {70937E0E-EA6B-4700-BAB1-D53BE3301BC6} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=s ... earchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds& ... earchTerms}
SearchScopes: HKLM-x32 -> {70937E0E-EA6B-4700-BAB1-D53BE3301BC6} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=s ... earchTerms}
SearchScopes: HKU\S-1-5-21-3224447469-2905802030-4228407692-1001 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=s ... earchTerms}
SearchScopes: HKU\S-1-5-21-3224447469-2905802030-4228407692-1001 -> {70937E0E-EA6B-4700-BAB1-D53BE3301BC6} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
SearchScopes: HKU\S-1-5-21-3224447469-2905802030-4228407692-1001 -> {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} URL = http://search.lavasoft.com/results.php? ... t&d=150610
SearchScopes: HKU\S-1-5-21-3224447469-2905802030-4228407692-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=s ... earchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-05-19] (Microsoft Corporation)
BHO: bestadblocker -> {379715D6-CD25-4E77-893F-55833743E62B} -> C:\Program Files (x86)\bestadblocker\QhHqCgbMKNvoGW.x64.dll [2015-06-11] ()
BHO: PriceMinus -> {6DB938A8-0BEA-45C7-B9F1-E47CD3C2DFFF} -> C:\Program Files (x86)\PriceMinus\kJ6fUKniD3A0m0.x64.dll [2015-06-11] ()
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-02] (Avast Software s.r.o.)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-05-13] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-05-19] (Microsoft Corporation)
BHO-x32: bestadblocker -> {379715D6-CD25-4E77-893F-55833743E62B} -> C:\Program Files (x86)\bestadblocker\QhHqCgbMKNvoGW.dll [2015-06-11] ()
BHO-x32: PriceMinus -> {6DB938A8-0BEA-45C7-B9F1-E47CD3C2DFFF} -> C:\Program Files (x86)\PriceMinus\kJ6fUKniD3A0m0.dll [2015-06-11] ()
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-02] (Avast Software s.r.o.)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-03-04] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Shopper Pro -> {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} -> C:\ProgramData\ShopperPro\ShopperPro.dll [2015-04-22] (Goobzo Ltd.)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-05-13] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
Winsock: Catalog9-x64 01 C:\Windows\system32\LavasoftTcpService64.dll [428880 2015-06-10] (Lavasoft Limited)
Winsock: Catalog9-x64 02 C:\Windows\system32\LavasoftTcpService64.dll [428880 2015-06-10] (Lavasoft Limited)
Winsock: Catalog9-x64 03 C:\Windows\system32\LavasoftTcpService64.dll [428880 2015-06-10] (Lavasoft Limited)
Winsock: Catalog9-x64 04 C:\Windows\system32\LavasoftTcpService64.dll [428880 2015-06-10] (Lavasoft Limited)
Winsock: Catalog9-x64 16 C:\Windows\system32\LavasoftTcpService64.dll [428880 2015-06-10] (Lavasoft Limited)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-03-31] (Microsoft Corporation)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-04-02]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt
FF Extension: HP SimplePass - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt [2015-04-02]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-04]
CHR Extension: (Google Docs) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-04]
CHR Extension: (Google Drive) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-04]
CHR Extension: (YouTube) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-04]
CHR Extension: (Air Globe) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\bppfidcbknepkkjilhdbmiebbclnhfpd [2015-04-24]
CHR Extension: (Google Search) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-04]
CHR Extension: (Avast SafePrice) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-04-07]
CHR Extension: (Google Sheets) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-04]
CHR Extension: (AdBlock) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-04-29]
CHR Extension: (Avast Online Security) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-04-03]
CHR Extension: (Google Wallet) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-07]
CHR Extension: (Gmail) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-04]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-04-02]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-02]

Opera:
=======
OPR Extension: (Air Globe) - C:\Users\Miroslav\AppData\Roaming\Opera Software\Opera Stable\Extensions\bppfidcbknepkkjilhdbmiebbclnhfpd [2015-04-24]
OPR Extension: (Ge-Force) - C:\Users\Miroslav\AppData\Roaming\Opera Software\Opera Stable\Extensions\jhongheibdpfhdpfccheljfcabgliidh [2015-04-22]
OPR Extension: (Sense) - C:\Users\Miroslav\AppData\Roaming\Opera Software\Opera Stable\Extensions\knlpigpfaognbholppaembpfphilacie [2015-04-22]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-02] (Avast Software s.r.o.)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2013-11-13] (Broadcom Corporation.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [573704 2014-12-01] (Hewlett-Packard Development Company, L.P.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-08] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [315376 2015-04-02] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-12-10] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
R2 Lavasoft Ad-Aware Service; C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [1169232 2009-09-24] (Lavasoft)
R2 LavasoftTcpService; C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2751792 2015-06-08] (Lavasoft Limited)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1615192 2014-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [20539168 2014-03-28] (NVIDIA Corporation)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [94720 2014-09-27] (Softex Inc.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [292568 2015-04-02] (Realtek Semiconductor)
R2 SearchProtectionService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe [19816 2015-06-08] ()
R2 SpyHunter 4 Service; C:\Program Files (x86)\Enigma Software Group\SpyHunter\SH4Service.exe [770432 2014-01-09] (Enigma Software Group USA, LLC.)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [190704 2014-03-13] (Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-01] (TeamViewer GmbH)
U2 Update Air Globe; C:\Program Files (x86)\Air Globe\updateAirGlobe.exe [472816 2015-06-12] ()
R2 Util Air Globe; C:\Program Files (x86)\Air Globe\bin\utilAirGlobe.exe [472816 2015-06-12] ()
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-04-02] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 BrsHelper; C:\PROGRA~2\YTDOWN~1\BROWSE~2.EXE [X]
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-04-02] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [88408 2015-04-02] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-04-02] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-04-02] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-04-02] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-04-02] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [136752 2015-04-02] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [271200 2015-04-02] ()
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-11-13] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7532760 2015-04-02] (Broadcom Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
S3 BtwSerialBus; C:\Windows\System32\drivers\BtwSerialBus.sys [150744 2013-09-09] (Broadcom Corporation.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 EsgScanner; C:\Windows\SysWOW64\DRIVERS\EsgScanner.sys [19984 2012-06-22] ()
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-13] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-13] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-13] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-13] ()
R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2009-09-23] (Lavasoft AB)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-28] (NVIDIA Corporation)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [466136 2014-01-15] (Realsil Semiconductor Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448 2014-03-13] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-03-13] (Synaptics Incorporated)
R2 SPDRIVER_1.42.0.1786; C:\Program Files (x86)\ShopperPro\JSDriver\1.42.0.1786\jsdrv.sys [52376 2015-04-22] ()
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-05-25] ()
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Development Company, L.P.)
R1 {2eb930fb-5d92-450f-a5ff-14c391caa31b}w64; C:\Windows\System32\drivers\{2eb930fb-5d92-450f-a5ff-14c391caa31b}w64.sys [48776 2015-05-20] (StdLib)
R1 {913d2ed3-4e23-413f-bdab-195da83ca204}w64; C:\Windows\System32\drivers\{913d2ed3-4e23-413f-bdab-195da83ca204}w64.sys [48776 2015-06-11] (StdLib)
R1 {e3bd305e-655b-4acb-ab17-5138c562afe0}w64; C:\Windows\System32\drivers\{e3bd305e-655b-4acb-ab17-5138c562afe0}w64.sys [48776 2015-06-10] (StdLib)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S2 sbmntr; \??\C:\PROGRA~2\YTDOWN~1\sbmntr.sys [X]
S3 SliceDisk5; \??\C:\Program Files\A-FF Find and Mount\slicedisk-x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-12 07:40 - 2015-06-12 07:41 - 00028772 _____ C:\Users\Miroslav\Downloads\FRST.txt
2015-06-12 07:40 - 2015-06-12 07:40 - 02108928 _____ (Farbar) C:\Users\Miroslav\Downloads\FRST64.exe
2015-06-12 07:40 - 2015-06-12 07:40 - 00000000 ____D C:\FRST
2015-06-12 07:34 - 2015-06-12 07:34 - 00000414 _____ C:\Windows\Tasks\Ad-Aware Update (Daily 4).job
2015-06-12 07:34 - 2015-06-12 07:34 - 00000414 _____ C:\Windows\Tasks\Ad-Aware Update (Daily 3).job
2015-06-12 07:34 - 2015-06-12 07:34 - 00000414 _____ C:\Windows\Tasks\Ad-Aware Update (Daily 2).job
2015-06-12 07:34 - 2015-06-12 07:34 - 00000414 _____ C:\Windows\Tasks\Ad-Aware Update (Daily 1).job
2015-06-11 17:05 - 2015-06-11 05:32 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{913d2ed3-4e23-413f-bdab-195da83ca204}w64.sys
2015-06-11 17:04 - 2015-06-11 17:04 - 00003416 _____ C:\Windows\System32\Tasks\Ad-Aware Update (Daily 4)
2015-06-11 17:04 - 2015-06-11 17:04 - 00003416 _____ C:\Windows\System32\Tasks\Ad-Aware Update (Daily 3)
2015-06-11 17:04 - 2015-06-11 17:04 - 00003416 _____ C:\Windows\System32\Tasks\Ad-Aware Update (Daily 2)
2015-06-11 17:04 - 2015-06-11 17:04 - 00003416 _____ C:\Windows\System32\Tasks\Ad-Aware Update (Daily 1)
2015-06-11 17:03 - 2015-06-12 07:33 - 00000444 _____ C:\aaw7boot.log
2015-06-11 13:38 - 2009-09-03 11:17 - 00015688 _____ C:\Windows\system32\lsdelete.exe
2015-06-11 13:32 - 2015-06-11 13:32 - 00000000 ____D C:\Program Files\Lavasoft
2015-06-11 13:05 - 2010-05-13 17:34 - 00014232 _____ C:\Windows\SysWOW64\sh4native.exe
2015-06-11 13:03 - 2015-06-11 13:17 - 02063465 _____ C:\spyhunter.fix
2015-06-11 11:20 - 2015-06-11 11:20 - 00003344 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2015-06-11 11:20 - 2015-06-11 11:20 - 00002317 _____ C:\Users\Miroslav\Desktop\SpyHunter.lnk
2015-06-11 11:20 - 2015-06-11 11:20 - 00000000 ____D C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP
2015-06-11 11:20 - 2015-06-11 11:20 - 00000000 ____D C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2015-06-11 11:20 - 2015-06-11 11:20 - 00000000 ____D C:\sh4ldr
2015-06-11 11:20 - 2015-06-11 11:20 - 00000000 ____D C:\Program Files (x86)\Enigma Software Group
2015-06-11 11:13 - 2015-06-11 11:13 - 00000085 _____ C:\Windows\wininit.ini
2015-06-11 10:52 - 2009-09-23 14:55 - 00069152 _____ (Lavasoft AB) C:\Windows\system32\Drivers\Lbd.sys
2015-06-11 10:51 - 2015-06-11 10:51 - 00001165 _____ C:\Users\Public\Desktop\Ad-Aware.lnk
2015-06-11 10:51 - 2015-06-11 10:51 - 00000000 __HDC C:\ProgramData\{42E04EE4-AB57-407A-9691-3FFA8B8FEBBE}
2015-06-11 10:42 - 2015-06-11 10:42 - 00000000 ____D C:\Program Files (x86)\bestadblocker
2015-06-11 10:42 - 2015-06-11 10:42 - 00000000 ____D C:\Program Files (x86)\BeFrugalcom AddOn
2015-06-11 10:41 - 2015-06-11 10:42 - 00000000 ____D C:\ProgramData\17821653308213787135
2015-06-11 10:41 - 2015-06-11 10:41 - 00000000 ____D C:\ProgramData\acobfglgicdlbnjkkkpghnnekdapfndf
2015-06-11 10:41 - 2015-06-11 10:41 - 00000000 ____D C:\Program Files (x86)\PriceMinus
2015-06-11 10:41 - 2015-06-11 10:41 - 00000000 ____D C:\Program Files (x86)\PricEMienusu
2015-06-11 10:40 - 2015-06-11 10:53 - 00000366 _____ C:\Windows\Tasks\Bidaily Synchronize Task[973b].job
2015-06-11 10:40 - 2015-06-11 10:40 - 00003258 _____ C:\Windows\System32\Tasks\Bidaily Synchronize Task[973b]
2015-06-11 10:40 - 2015-06-11 10:40 - 00000000 ____D C:\ProgramData\{5dbbe46b-5ef9-2c32-5dbb-be46b5ef91ad}
2015-06-11 08:42 - 2015-06-11 11:13 - 00000000 ____D C:\Windows\1F7E4FF9D2E542589AE1E16E6CB3252A.TMP
2015-06-11 08:42 - 2015-06-11 08:42 - 00000000 ____D C:\Program Files\Enigma Software Group
2015-06-11 08:42 - 2015-06-11 08:42 - 00000000 _____ C:\autoexec.bat
2015-06-11 08:40 - 2015-06-11 08:40 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Miroslav\Downloads\SpyHunter-Installer.exe
2015-06-11 06:49 - 2015-06-10 16:47 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{e3bd305e-655b-4acb-ab17-5138c562afe0}w64.sys
2015-06-11 06:33 - 2015-06-11 06:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-06-11 06:33 - 2015-06-11 06:33 - 00000000 ____D C:\Program Files\7-Zip
2015-06-10 13:15 - 2015-06-10 13:15 - 00532480 _____ (Trend Micro Incorporated) C:\Users\Miroslav\Downloads\cwshredder.exe
2015-06-10 10:23 - 2015-06-11 11:14 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-06-10 10:23 - 2015-06-11 11:13 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-06-10 10:23 - 2015-06-10 10:23 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2015-06-10 10:21 - 2015-06-10 10:22 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Miroslav\Downloads\spybot-2.4.exe
2015-06-10 10:12 - 2015-06-10 10:12 - 01700501 _____ C:\Users\Miroslav\Downloads\Keygen_v10.rar
2015-06-10 09:50 - 2015-06-10 09:50 - 01066979 _____ ( ) C:\Users\Miroslav\Downloads\AdwareAway.exe
2015-06-10 09:30 - 2015-04-09 00:07 - 00410336 _____ C:\Windows\system32\ApnDatabase.xml
2015-06-10 09:28 - 2015-05-22 15:08 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-06-10 09:28 - 2015-05-21 15:08 - 01119232 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-06-10 09:28 - 2015-05-21 15:08 - 01020928 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-06-10 09:28 - 2015-05-21 15:08 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-06-10 09:28 - 2015-05-21 15:08 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-06-10 09:28 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-06-10 09:28 - 2015-05-21 15:08 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-06-10 09:28 - 2015-04-17 00:07 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-06-10 09:28 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2015-06-10 09:28 - 2015-03-20 05:08 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-06-10 09:28 - 2015-03-20 04:37 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-06-10 09:28 - 2015-03-20 04:07 - 01091072 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-06-10 09:27 - 2015-05-25 15:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-06-10 09:27 - 2015-05-25 15:07 - 01430528 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-06-10 09:27 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rgb9rast.dll
2015-06-10 09:27 - 2015-04-02 00:42 - 03097600 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-06-10 09:27 - 2015-04-02 00:30 - 02483712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-06-10 09:27 - 2015-03-02 03:43 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2015-06-10 09:27 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2015-06-10 09:21 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-10 09:21 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-06-10 09:21 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-06-10 09:21 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-06-10 09:21 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-06-10 09:21 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-06-10 09:21 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-06-10 09:21 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-06-10 09:21 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-06-10 09:21 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-06-10 09:21 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-06-10 09:21 - 2015-05-23 04:38 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-06-10 09:21 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-06-10 09:21 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-06-10 09:21 - 2015-05-23 04:28 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-06-10 09:21 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-06-10 09:21 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-06-10 09:21 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-06-10 09:21 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-10 09:21 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-10 09:21 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-10 09:21 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-10 09:21 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-10 09:21 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-10 09:21 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-10 09:21 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-10 09:21 - 2015-05-22 20:23 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-06-10 09:21 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-10 09:21 - 2015-05-22 20:09 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-06-10 09:21 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-10 09:21 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-10 09:21 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-10 09:21 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-10 09:21 - 2015-05-22 19:49 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-06-10 09:21 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-10 09:21 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-10 09:21 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-10 09:21 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-06-10 09:21 - 2015-04-16 08:17 - 00325464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-06-10 09:21 - 2015-04-14 00:37 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2015-06-10 09:21 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2015-06-10 09:21 - 2015-04-10 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-06-10 09:21 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-06-10 09:21 - 2015-04-01 06:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-06-10 09:21 - 2015-04-01 06:18 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-06-10 09:21 - 2015-04-01 06:17 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-06-10 09:21 - 2015-04-01 06:08 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-06-10 09:21 - 2015-04-01 05:46 - 03633664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-06-10 09:21 - 2015-04-01 05:17 - 02551808 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-06-10 09:21 - 2015-04-01 05:17 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-06-10 09:21 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-06-10 09:21 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-06-10 09:21 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-06-10 09:21 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-06-10 09:21 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-06-10 09:21 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-06-10 09:20 - 2015-05-23 04:47 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-06-10 09:20 - 2015-05-23 04:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-06-10 09:20 - 2015-05-22 20:15 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-06-10 09:20 - 2015-05-22 20:08 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-10 09:18 - 2015-05-21 18:47 - 04177920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-10 09:16 - 2015-06-11 06:48 - 00002952 _____ C:\Windows\SysWOW64\LavasoftTcpServiceOff.ini
2015-06-10 09:16 - 2015-06-11 06:48 - 00002952 _____ C:\Windows\system32\LavasoftTcpServiceOff.ini
2015-06-10 09:16 - 2015-06-10 09:16 - 00000216 _____ C:\prefs.js
2015-06-10 09:16 - 2015-06-10 09:16 - 00000000 ____D C:\Users\Miroslav\AppData\Roaming\LavasoftStatistics
2015-06-10 09:16 - 2015-06-10 09:16 - 00000000 ____D C:\Users\Miroslav\AppData\Local\Lavasoft
2015-06-10 09:16 - 2015-06-10 09:16 - 00000000 ____D C:\searchplugins
2015-06-10 09:16 - 2015-06-08 14:13 - 00428880 _____ (Lavasoft Limited) C:\Windows\system32\LavasoftTcpService64.dll
2015-06-10 09:15 - 2015-06-11 10:51 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2015-06-10 09:15 - 2015-06-08 14:13 - 00348488 _____ (Lavasoft Limited) C:\Windows\SysWOW64\LavasoftTcpService.dll
2015-06-10 09:13 - 2015-06-11 10:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2015-06-10 09:09 - 2015-06-11 08:47 - 00000000 ____D C:\Users\Miroslav\AppData\Roaming\Lavasoft
2015-06-10 09:07 - 2015-06-11 10:51 - 00000000 ____D C:\ProgramData\Lavasoft
2015-06-10 09:07 - 2015-06-10 09:07 - 01753736 _____ C:\Users\Miroslav\Downloads\Adaware_Installer.exe
2015-06-05 09:39 - 2015-06-05 09:39 - 00000990 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-06-05 09:39 - 2015-06-05 09:39 - 00000978 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-05-28 15:52 - 2015-05-28 16:13 - 00000000 ____D C:\Users\Miroslav\Desktop\pro polepy
2015-05-27 13:23 - 2015-05-27 13:23 - 00002183 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk
2015-05-27 13:22 - 2015-05-27 13:22 - 00880208 _____ (Google Inc.) C:\Users\Miroslav\Downloads\GoogleEarthSetup.exe
2015-05-25 14:17 - 2015-05-25 14:34 - 00000000 ____D C:\ProgramData\RogueKiller
2015-05-25 14:17 - 2015-05-25 14:17 - 00035064 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-05-25 14:16 - 2015-05-25 14:16 - 17023576 _____ C:\Users\Miroslav\Downloads\RogueKiller.exe
2015-05-21 19:32 - 2015-05-21 19:32 - 00040820 _____ C:\Users\Miroslav\Downloads\201505212204 (2).tif
2015-05-21 19:31 - 2015-05-21 19:31 - 00040820 _____ C:\Users\Miroslav\Downloads\201505212204 (1).tif
2015-05-21 19:28 - 2015-05-21 19:28 - 00040820 _____ C:\Users\Miroslav\Downloads\201505212204.tif
2015-05-21 17:40 - 2015-05-21 17:40 - 00040293 _____ C:\Users\Miroslav\Downloads\201505211946 (1).tif
2015-05-21 17:40 - 2015-05-21 17:40 - 00039911 _____ C:\Users\Miroslav\Downloads\201505211945 (1).tif
2015-05-21 17:33 - 2015-05-21 17:33 - 00040293 _____ C:\Users\Miroslav\Downloads\201505211946.tif
2015-05-21 17:32 - 2015-05-21 17:33 - 00039911 _____ C:\Users\Miroslav\Downloads\201505211945.tif
2015-05-21 16:52 - 2015-05-20 19:48 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{2eb930fb-5d92-450f-a5ff-14c391caa31b}w64.sys
2015-05-18 11:39 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-18 11:39 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-18 11:06 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-05-18 11:06 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-05-18 11:06 - 2015-03-17 19:26 - 00467776 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-05-18 11:06 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-05-18 11:06 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-05-18 11:06 - 2015-03-09 04:02 - 00057856 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-05-18 11:06 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-18 11:06 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-05-18 11:06 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-05-18 11:05 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-05-18 11:05 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-05-18 11:05 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-05-18 11:05 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-05-18 11:05 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-05-18 11:05 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-05-18 11:05 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-05-18 11:05 - 2015-03-13 06:03 - 00239424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-05-18 11:05 - 2015-03-13 06:03 - 00154432 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-05-18 11:05 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-05-18 11:05 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-18 11:05 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-18 11:05 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-05-18 11:05 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-05-18 11:05 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-18 11:05 - 2015-01-30 02:53 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-05-18 11:05 - 2014-11-14 08:58 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsDatabase.dll
2015-05-18 11:02 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-18 11:02 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-18 11:02 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-18 11:02 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-18 11:02 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-18 11:02 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-18 10:48 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-05-18 10:48 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-18 10:48 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-18 10:48 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-18 10:47 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-18 10:47 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-18 10:47 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-12 07:40 - 2015-03-07 17:07 - 00156672 ___SH C:\Users\Miroslav\Downloads\Thumbs.db
2015-06-12 07:39 - 2015-03-04 15:41 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3224447469-2905802030-4228407692-1001
2015-06-12 07:37 - 2015-04-22 15:26 - 00000000 ____D C:\Program Files (x86)\Air Globe
2015-06-12 07:37 - 2015-03-04 15:40 - 00003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{1E23AC4A-52B1-4A94-A8A5-4468F0027FA1}
2015-06-12 07:37 - 2015-03-04 15:06 - 01167216 _____ C:\Windows\WindowsUpdate.log
2015-06-12 07:37 - 2013-08-22 15:25 - 00000301 _____ C:\Windows\win.ini
2015-06-12 07:35 - 2015-03-04 15:37 - 00000000 ____D C:\Users\Miroslav\Documents\Youcam
2015-06-12 07:34 - 2015-04-22 15:26 - 00003466 _____ C:\Windows\Tasks\9529d455-3f20-4887-9a9b-eebd1353bddd-1-6.job
2015-06-12 07:34 - 2015-04-22 15:26 - 00003460 _____ C:\Windows\Tasks\8855aa0e-9ea6-4496-8425-4701451d785b-1-6.job
2015-06-12 07:34 - 2015-04-22 15:26 - 00002104 _____ C:\Windows\Tasks\9529d455-3f20-4887-9a9b-eebd1353bddd-10_user.job
2015-06-12 07:34 - 2015-04-22 15:23 - 00002124 _____ C:\Windows\Tasks\d71adf17-4ece-402e-9f84-4137759461be-10_user.job
2015-06-12 07:34 - 2015-03-06 22:29 - 00000000 ____D C:\Users\Miroslav\AppData\Local\CrashDumps
2015-06-12 07:34 - 2015-03-04 15:40 - 00000000 __RDO C:\Users\Miroslav\OneDrive
2015-06-12 07:33 - 2013-08-22 16:46 - 00049928 _____ C:\Windows\setupact.log
2015-06-12 07:33 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-11 17:25 - 2015-03-19 16:38 - 00000000 ____D C:\Users\Miroslav\Documents\Soubory aplikace Outlook
2015-06-11 17:16 - 2015-04-12 17:46 - 00000000 ____D C:\Users\Miroslav\telefon
2015-06-11 17:16 - 2015-04-03 23:17 - 00000000 ____D C:\Users\Miroslav\Desktop\sobisky
2015-06-11 17:13 - 2014-05-08 03:39 - 00769430 _____ C:\Windows\system32\perfh005.dat
2015-06-11 17:13 - 2014-05-08 03:39 - 00167026 _____ C:\Windows\system32\perfc005.dat
2015-06-11 17:13 - 2014-03-18 11:53 - 01886526 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-11 17:13 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-06-11 17:07 - 2015-03-20 15:56 - 00000000 ____D C:\Users\Miroslav\AppData\Roaming\Skype
2015-06-11 15:13 - 2015-04-02 14:10 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2015-06-11 15:12 - 2014-08-05 23:15 - 00000000 ____D C:\Program Files (x86)\CyberLink
2015-06-11 15:12 - 2014-04-01 03:07 - 00000000 ____D C:\SWSetup
2015-06-11 14:29 - 2015-03-04 20:24 - 00000972 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d056a87f98f906.job
2015-06-11 13:13 - 2015-03-04 15:35 - 00001433 _____ C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-06-11 13:06 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-06-11 11:14 - 2014-03-18 11:44 - 00059614 _____ C:\Windows\PFRO.log
2015-06-11 11:12 - 2015-03-07 13:34 - 00000000 __SHD C:\Users\Miroslav\AppData\Local\EmieBrowserModeList
2015-06-11 11:12 - 2015-03-04 15:40 - 00000000 __SHD C:\Users\Miroslav\AppData\Local\EmieUserList
2015-06-11 11:12 - 2015-03-04 15:40 - 00000000 __SHD C:\Users\Miroslav\AppData\Local\EmieSiteList
2015-06-11 10:40 - 2015-03-06 20:27 - 00210944 ___SH C:\Users\Miroslav\Desktop\Thumbs.db
2015-06-11 06:53 - 2015-04-22 15:24 - 00003824 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1429709062
2015-06-11 06:53 - 2015-04-22 15:24 - 00001070 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-06-11 06:53 - 2015-04-22 15:24 - 00000000 ____D C:\Program Files (x86)\Opera
2015-06-11 06:48 - 2013-08-22 16:44 - 00493640 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-11 06:46 - 2015-03-06 23:19 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-06-11 06:46 - 2015-03-06 23:19 - 00000000 ____D C:\Windows\system32\appraiser
2015-06-11 06:46 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2015-06-11 06:46 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-06-11 06:44 - 2015-03-19 14:19 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-11 06:43 - 2015-03-19 14:22 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-06-11 02:39 - 2015-03-04 15:35 - 00000000 ____D C:\Users\Miroslav\AppData\Local\Pokki
2015-06-10 17:07 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-06-10 17:01 - 2015-03-06 23:13 - 00000000 ____D C:\Windows\system32\MRT
2015-06-10 16:56 - 2015-03-06 23:13 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-10 10:13 - 2015-04-22 15:26 - 00000000 ____D C:\Program Files (x86)\Ge-Force
2015-06-10 09:47 - 2015-04-22 15:23 - 00000000 ____D C:\Program Files (x86)\CinemaP-1.8cV22.04
2015-06-10 09:46 - 2015-04-22 15:26 - 00000000 ____D C:\Program Files (x86)\Sense
2015-06-10 09:40 - 2015-04-22 15:00 - 00000000 ____D C:\ProgramData\WindowsMangerProtect
2015-06-10 09:34 - 2015-04-22 15:25 - 00000000 ____D C:\ProgramData\ShopperPro
2015-06-10 08:49 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-06-10 08:37 - 2015-04-24 09:41 - 00000004 _____ C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-06-09 15:47 - 2015-04-24 10:27 - 00003176 _____ C:\Windows\System32\Tasks\HPCeeScheduleForMiroslav
2015-06-09 15:47 - 2015-04-24 10:27 - 00000356 _____ C:\Windows\Tasks\HPCeeScheduleForMiroslav.job
2015-06-05 13:07 - 2015-03-19 14:19 - 00000000 ____D C:\Users\Miroslav\AppData\Local\Microsoft Help
2015-06-05 09:39 - 2015-04-04 12:50 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-06-05 08:40 - 2015-03-04 15:44 - 00002323 _____ C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2015-06-03 18:18 - 2015-03-07 12:10 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-03 18:18 - 2015-03-07 12:10 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-01 11:23 - 2015-03-04 15:35 - 00000000 ____D C:\Users\Miroslav\AppData\Local\Packages
2015-05-27 13:23 - 2015-03-04 20:24 - 00000000 ____D C:\Program Files (x86)\Google
2015-05-27 11:36 - 2015-04-08 18:40 - 00388608 _____ C:\Users\Miroslav\Desktop\Práce 2010.xls
2015-05-26 16:30 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-05-25 13:39 - 2015-03-20 16:25 - 00006235 _____ C:\Users\Miroslav\AppData\Roaming\Hodnoty oddělené čárkami.EML
2015-05-21 19:29 - 2015-04-12 15:07 - 00000000 ____D C:\Users\Miroslav\Desktop\k odeslani
2015-05-18 18:46 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-05-18 18:46 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-05-18 16:24 - 2015-03-04 20:24 - 00003944 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d056a87f98f906
2015-05-18 11:10 - 2014-03-18 11:38 - 00000000 ____D C:\Program Files\Windows Journal
2015-05-14 14:17 - 2015-03-24 14:30 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk

==================== Files in the root of some directories =======

2015-03-20 16:29 - 2015-03-20 16:29 - 0022059 _____ () C:\Users\Miroslav\AppData\Roaming\Hodnoty oddělené čárkami.ADR
2015-03-20 16:25 - 2015-05-25 13:39 - 0006235 _____ () C:\Users\Miroslav\AppData\Roaming\Hodnoty oddělené čárkami.EML
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Miroslav\AppData\Roaming\L0brZgNyJiFCRQaPA

Some files in TEMP:
====================
C:\Users\Miroslav\AppData\Local\Temp\Extract.exe
C:\Users\Miroslav\AppData\Local\Temp\Quarantine.exe
C:\Users\Miroslav\AppData\Local\Temp\SHSetup.exe
C:\Users\Miroslav\AppData\Local\Temp\SP70781.exe
C:\Users\Miroslav\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-01 11:30

==================== End of log ============================

[Bazz]

Když otevřu odkaz na tu utilitku v novém panelu, tak se zobrazí prázdné okno a místo adresy je "about:blank". Tento problém, když mi místo adresy naskočil about:blank jsem již považoval za vyřešený..
Ještě jednou děkuji za pomoc.

[vyosek]

Tohel byl jen log, cistit teprve budeme, je tam toho spousty

Odinstalujte SpyHunter a Spybot - Search & Destroy

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Po spusteni probehne stazeni databaze
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

[Bazz]

spybot již v PC nebyl při skenu. spyhunter sem odinstaloval, při kliknutí na odkaz to po mě chceš jméno a heslo. zkusím tedy z jinama.

[vyosek]

Po me to tedy nic nechce, zkuste tedy odsud http://www.bleepingcomputer.com/download/adwcleaner/

[Bazz]

stáhl sem ze slunečnice. verzi 4.2. log níže:

# AdwCleaner v4.206 - Log vytvořen 12/06/2015 v 14:58:15
# Aktualizováno 01/06/2015 by Xplode
# Databáze : 2015-06-09.1 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : Miroslav - PRACE
# Spuštěno z : C:\Users\Miroslav\Desktop\adwcleaner_4.206.exe
# Nastavení : Čištění

***** [ Služby ] *****

[#] Služba Smazáno : BrsHelper
[#] Služba Smazáno : sbmntr
[#] Služba Smazáno : Update Air Globe
[#] Služba Smazáno : Util Air Globe
Služba Smazáno : {2eb930fb-5d92-450f-a5ff-14c391caa31b}w64
Služba Smazáno : {913d2ed3-4e23-413f-bdab-195da83ca204}w64
Služba Smazáno : {e3bd305e-655b-4acb-ab17-5138c562afe0}w64
Služba Smazáno : SPDRIVER_1.42.0.1786

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\ShopperPro
Složka Smazáno : C:\ProgramData\WindowsMangerProtect
Složka Smazáno : C:\Users\Public\Documents\ShopperPro
Složka Smazáno : C:\Program Files (x86)\globalUpdate
Složka Smazáno : C:\Program Files (x86)\Sense
Složka Smazáno : C:\Program Files (x86)\ShopperPro
Složka Smazáno : C:\Program Files (x86)\Ge-Force
Složka Smazáno : C:\Program Files (x86)\Air Globe
Složka Smazáno : C:\Program Files (x86)\bestadblocker
Složka Smazáno : C:\Program Files (x86)\PriceMinus
Složka Smazáno : C:\Program Files (x86)\PricEMienusu
Složka Smazáno : C:\Program Files (x86)\CinemaP-1.8cV22.04
Složka Smazáno : C:\Users\Miroslav\AppData\Local\Temp\Air Globe
Složka Smazáno : C:\Users\Miroslav\AppData\Local\globalUpdate
Složka Smazáno : C:\Users\Miroslav\AppData\Local\FileViewPro
Složka Smazáno : C:\Users\Miroslav\AppData\Local\BrowserHelper
Složka Smazáno : C:\Users\Miroslav\AppData\Local\pokki
Složka Smazáno : C:\Users\Miroslav\AppData\Roaming\istartsurf
Složka Smazáno : C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader
Složka Smazáno : C:\ProgramData\acobfglgicdlbnjkkkpghnnekdapfndf
Složka Smazáno : C:\Users\Miroslav\AppData\Roaming\Opera Software\Opera Stable\Extensions\knlpigpfaognbholppaembpfphilacie
Soubor Smazáno : C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_papbadoldddalgcjcicnikcfenodpghp_0
Soubor Smazáno : C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\papbadoldddalgcjcicnikcfenodpghp
Soubor Smazáno : C:\prefs.js
Soubor Smazáno : C:\Program Files\Common Files\System\SysMenu.dll
Soubor Smazáno : C:\Program Files\Common Files\System\SysMenu64.dll
Soubor Smazáno : C:\Windows\System32\drivers\{2eb930fb-5d92-450f-a5ff-14c391caa31b}w64.sys
Soubor Smazáno : C:\Windows\System32\drivers\{913d2ed3-4e23-413f-bdab-195da83ca204}w64.sys
Soubor Smazáno : C:\Windows\System32\drivers\{e3bd305e-655b-4acb-ab17-5138c562afe0}w64.sys
Soubor Smazáno : C:\Users\Miroslav\AppData\Roaming\L0brZgNyJiFCRQaPA

***** [ Naplánované úlohy ] *****

Úloha Smazáno : SPDriver
Úloha Smazáno : YTDownloader
Úloha Smazáno : YTDownloaderUpd
Úloha Smazáno : 8855aa0e-9ea6-4496-8425-4701451d785b-1-6
Úloha Smazáno : 9529d455-3f20-4887-9a9b-eebd1353bddd-1-6
Úloha Smazáno : 9529d455-3f20-4887-9a9b-eebd1353bddd-10_user
Úloha Smazáno : d71adf17-4ece-402e-9f84-4137759461be-10_user

***** [ Zástupci ] *****


***** [ Registry ] *****

Klíč Smazáno : HKCU\Software\Classes\pokki
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\ShopperPro.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Hodnota Smazáno : HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [YTDownloader]
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [YTDownloader]
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\ShopperPro.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\YTDownloader.exe
Klíč Smazáno : HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
Klíč Smazáno : HKCU\Software\Classes\Directory\shell\pokki
Klíč Smazáno : HKCU\Software\Classes\Drive\shell\pokki
Klíč Smazáno : HKCU\Software\Classes\lnkfile\shell\pokki
Klíč Smazáno : HKLM\SOFTWARE\Classes\P379715D6_CD25_4E77_893F_55833743E62B_.P379715D6_CD25_4E77_893F_55833743E62B_
Klíč Smazáno : HKLM\SOFTWARE\Classes\P379715D6_CD25_4E77_893F_55833743E62B_.P379715D6_CD25_4E77_893F_55833743E62B_.9
Klíč Smazáno : HKLM\SOFTWARE\Classes\P6DB938A8_0BEA_45C7_B9F1_E47CD3C2DFFF_.P6DB938A8_0BEA_45C7_B9F1_E47CD3C2DFFF_
Klíč Smazáno : HKLM\SOFTWARE\Classes\P6DB938A8_0BEA_45C7_B9F1_E47CD3C2DFFF_.P6DB938A8_0BEA_45C7_B9F1_E47CD3C2DFFF_.9
Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Update Air Globe
Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Util Air Globe
Klíč Smazáno : HKLM\SOFTWARE\69268f60-673e-45c2-b46f-da116ee47495
Klíč Smazáno : HKLM\SOFTWARE\abd42650-0afe-4bb0-93a6-18fb62eff92b
Klíč Smazáno : HKLM\SOFTWARE\fb5d7d90-c41b-4bd5-8534-705cdfc8a910
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_34e8f5c0c9e5744bf2cdb514283762dd0524776b
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_Start_Menu
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{379715D6-CD25-4E77-893F-55833743E62B}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6DB938A8-0BEA-45C7-B9F1-E47CD3C2DFFF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{25031B41-99A4-47AA-A8EB-C0CD3F99717D}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{379715D6-CD25-4E77-893F-55833743E62B}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6DB938A8-0BEA-45C7-B9F1-E47CD3C2DFFF}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{379715D6-CD25-4E77-893F-55833743E62B}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6DB938A8-0BEA-45C7-B9F1-E47CD3C2DFFF}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{379715D6-CD25-4E77-893F-55833743E62B}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6DB938A8-0BEA-45C7-B9F1-E47CD3C2DFFF}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{379715D6-CD25-4E77-893F-55833743E62B}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6DB938A8-0BEA-45C7-B9F1-E47CD3C2DFFF}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{379715D6-CD25-4E77-893F-55833743E62B}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{6DB938A8-0BEA-45C7-B9F1-E47CD3C2DFFF}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{379715D6-CD25-4E77-893F-55833743E62B}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6DB938A8-0BEA-45C7-B9F1-E47CD3C2DFFF}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKCU\Software\GlobalUpdate
Klíč Smazáno : HKCU\Software\InstalledBrowserExtensions
Klíč Smazáno : HKCU\Software\Myfree Codec
Klíč Smazáno : HKCU\Software\Pokki
Klíč Smazáno : HKCU\Software\YTDownloader
Klíč Smazáno : HKCU\Software\Ge-Force
Klíč Smazáno : HKCU\Software\YorkNewCin
Klíč Smazáno : HKCU\Software\HighDefAction
Klíč Smazáno : HKCU\Software\ArenaHD
Klíč Smazáno : HKCU\Software\CinemaP-1.8cV22.04
Klíč Smazáno : HKCU\Software\CinemaP-1.8cV22.04-nv
Klíč Smazáno : HKCU\Software\CinemaP-1.8cV22.04-nv-ie
Klíč Smazáno : HKCU\Software\AppDataLow\Software\adawarebp
Klíč Smazáno : HKLM\SOFTWARE\GlobalUpdate
Klíč Smazáno : HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Smazáno : HKLM\SOFTWARE\istartsurfSoftware
Klíč Smazáno : HKLM\SOFTWARE\Myfree Codec
Klíč Smazáno : HKLM\SOFTWARE\Sense
Klíč Smazáno : HKLM\SOFTWARE\ShopperPro
Klíč Smazáno : HKLM\SOFTWARE\YTDownloader
Klíč Smazáno : HKLM\SOFTWARE\Ge-Force
Klíč Smazáno : HKLM\SOFTWARE\YorkNewCin
Klíč Smazáno : HKLM\SOFTWARE\HighDefAction
Klíč Smazáno : HKLM\SOFTWARE\ArenaHD
Klíč Smazáno : HKLM\SOFTWARE\CinemaP-1.8cV22.04
Klíč Smazáno : HKLM\SOFTWARE\CinemaP-1.8cV22.04-nv
Klíč Smazáno : HKLM\SOFTWARE\CinemaP-1.8cV22.04-nv-ie
Klíč Smazáno : HKU\.DEFAULT\Software\CinemaP-1.8cV22.04-nv
Klíč Smazáno : HKU\.DEFAULT\Software\CinemaP-1.8cV22.04-nv-ie
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\istartsurf uninstall
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Sense
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ge-Force
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{06B99631-BFA2-3B7A-F58B-D067C2BA59B7}
Klíč Smazáno : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Smazáno : [x64] HKLM\SOFTWARE\ShopperPro
Klíč Smazáno : [x64] HKLM\SOFTWARE\YorkNewCin
Klíč Smazáno : [x64] HKLM\SOFTWARE\HighDefAction
Klíč Smazáno : [x64] HKLM\SOFTWARE\ArenaHD

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17840


-\\ Google Chrome v43.0.2357.124


-\\ Opera v30.0.1835.59

[C:\Users\Miroslav\AppData\Roaming\Opera Software\Opera Stable\Preferences] - Smazáno [Extension] : knlpigpfaognbholppaembpfphilacie

*************************

AdwCleaner[R0].txt - [18132 bytů] - [12/06/2015 14:54:07]
AdwCleaner[S0].txt - [16309 bytů] - [12/06/2015 14:58:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [16368 bytů] ##########

[Bazz]

ještě druhý log. neukončil sem při prvním skenu chrome...

# AdwCleaner v4.206 - Log vytvořen 12/06/2015 v 15:08:09
# Aktualizováno 01/06/2015 by Xplode
# Databáze : 2015-06-09.1 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : Miroslav - PRACE
# Spuštěno z : C:\Users\Miroslav\Desktop\adwcleaner_4.206.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\{5dbbe46b-5ef9-2c32-5dbb-be46b5ef91ad}
Soubor Smazáno : C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_papbadoldddalgcjcicnikcfenodpghp_0
Soubor Smazáno : C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\papbadoldddalgcjcicnikcfenodpghp

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****


***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17840


-\\ Google Chrome v43.0.2357.124


-\\ Opera v30.0.1835.59


*************************

AdwCleaner[R0].txt - [18132 bytů] - [12/06/2015 14:54:07]
AdwCleaner[R1].txt - [1246 bytů] - [12/06/2015 15:06:49]
AdwCleaner[S0].txt - [16512 bytů] - [12/06/2015 14:58:15]
AdwCleaner[S1].txt - [1168 bytů] - [12/06/2015 15:08:09]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1226 bytů] ##########

[Bazz]

jenom ještě přidávám printscreen s tím, že to po mě chtělo to přihlašovací jméno a heslo. v příloze.

[vyosek]

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  resethosts;
  emptyclsid;
  IEdefaults;
  FFdefaults;
  CHRdefaults;
  emptyIEcache;
  emptyFFcache;
  emptyCHRcache;
  emptyalltemp;
  emptyflash;
  emptyjava;
  emptyrecycle.bin;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[Bazz]

Přes víkend jsem byl mimo pc, proto log zasílám až teď. Děkuji.

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Miroslav on po 15. 06. 2015 at 7:34:05,24.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Miroslav\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

15. 6. 2015 7:35:57 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\COMMON~1\SWF Studio deleted successfully
C:\Program Files\DWGTrueView deleted successfully
C:\PROGRA~3\Canon IJ Network Tool deleted successfully
C:\Users\Miroslav\AppData\Roaming\Windows Live Writer deleted successfully
C:\Users\Miroslav\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Miroslav\AppData\Local\EmieSiteList deleted successfully
C:\Users\Miroslav\AppData\Local\EmieUserList deleted successfully
C:\Users\Miroslav\AppData\Local\Samsung deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3224447469-2905802030-4228407692-1001\Software\Microsoft\Internet Explorer\SearchScopes\{70937E0E-EA6B-4700-BAB1-D53BE3301BC6} deleted successfully
HKEY_USERS\S-1-5-21-3224447469-2905802030-4228407692-1001\Software\Microsoft\Internet Explorer\SearchScopes\{BDF61FAE-9D19-40F0-8F34-688DEB334CA9} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{70937E0E-EA6B-4700-BAB1-D53BE3301BC6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{70937E0E-EA6B-4700-BAB1-D53BE3301BC6} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SearchProtectionService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LavasoftTcpService deleted successfully

==== FireFox Fix ======================

Deleted from C:\Users\Miroslav\AppData\Roaming\Thunderbird\Profiles\2x2k8dk5.default\prefs.js:

Added to C:\Users\Miroslav\AppData\Roaming\Thunderbird\Profiles\2x2k8dk5.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Batch Command(s) Run By Tool======================


Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.


==== Deleting Files \ Folders ======================

C:\PROGRA~2\BeFrugalcom AddOn deleted
C:\windows\SysNative\Tasks\Bidaily Synchronize Task[973b] deleted
C:\PROGRA~3\17821653308213787135 deleted
C:\PROGRA~2\516b5ff1-5739-4a87-b1c2-4e0e65496914 deleted
C:\PROGRA~2\be65dd0d-cd38-42ac-b353-f73edc8eeedb deleted
C:\PROGRA~2\f201f4a9-f7e5-447f-bf5e-b03fb341ba63 deleted
C:\Users\Public\Pokki deleted
C:\Users\Miroslav\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Start Menu.lnk deleted
C:\PROGRA~3\Lavasoft\Web Companion deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Default\AppData\Local\Pokki deleted
C:\Users\Miroslav\AppData\Local\Lavasoft\WebCompanion.exe_Url_siq0lwf3tzgxp2khfkllybk3idtbehng deleted
C:\Users\Miroslav\AppData\Local\CrashRpt deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lavasoft\WebCompanion deleted
C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk deleted
C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Menu.lnk deleted
C:\windows\SysNative\Tasks\avastBCLRestartS-1-5-21-3224447469-2905802030-4228407692-1001 deleted
C:\Windows\wininit.ini deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\machine deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted
C:\Windows\SysWOW64\LavasoftTcpService.dll deleted
C:\Windows\SysWOW64\LavasoftTcpServiceOff.ini deleted
"C:\Windows\Installer\6a25d008.msi" deleted
"C:\windows\Installer\d5199.msi" deleted
"C:\Windows\Installer\6a25d00c.msi" deleted
"C:\Users\Miroslav\AppData\Roaming\FreeCAD\system.cfg" deleted
"C:\Users\Miroslav\AppData\Roaming\FreeCAD\user.cfg" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\ICSharpCode.SharpZipLib.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Interop.LavasoftTcpServiceLib.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.adblocker.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.CSharp.Utilities.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.PUP.Management.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Business.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Repositories.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.SysInfo.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.Utils.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.Utils.SqlLite.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\log4net.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Newtonsoft.Json.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\System.Data.SQLite.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\WebCompanion.exe" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\en-US\WebCompanion.resources.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\x86\SQLite.Interop.dll" deleted
"C:\Users\Miroslav\AppData\Roaming\FreeCAD" deleted
"C:\PROGRA~2\Lavasoft\Web Companion" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\en-US" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\x86" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Miroslav\AppData\Roaming\Thunderbird\Profiles\2x2k8dk5.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"firefox@bho.com"="C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt" [02. 04. 2015 15:17]

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Chrome Version: 43.0.2357.124

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eofcbnmajmjmplflapaojjnihcjkigck - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx[02. 04. 2015 14:33]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[02. 04. 2015 14:33]

Air Globe - Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\bppfidcbknepkkjilhdbmiebbclnhfpd
Avast SafePrice - Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
AdBlock - Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Avast Online Security - Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Air Globe - Miroslav\AppData\Roaming\Opera Software\Opera Stable\Extensions\bppfidcbknepkkjilhdbmiebbclnhfpd
Ge-Force - Miroslav\AppData\Roaming\Opera Software\Opera Stable\Extensions\jhongheibdpfhdpfccheljfcabgliidh

==== Chromium Startpages ======================

C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Preferences
":{"persistent":false,"scripts":["utility.js","cards.js","background.js"]},"description":"Integrates Google Now into Chrome.","icons":{"128":"images/icon128.png","16":"images/icon16.png","48":"images/icon48.png"},"key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhqJr32OFD/bMXW4Md7jMfd7LbwHXVc6x5bBQG5U+dloofoxrICDR20yur/40mQ8O//0sS1b8srvbab1CRlSrxoNCr9T80NAkfzx0gHyVS+p1Zow+1FzLMu9PiGwwFyN80HIB7GI/dIa0wC9K/2OrrzcHEhVH96DacTtWQqjfDVtZPjT7Xwv23dgoWcpbkRC86jMJot3dmX9xnn0KzoVc9gDOHSIkBLbkkr6Sp3LGXCCM4L0DJgxdFwaLr5WBzgC3y5x0/wwPIwN4PtIaK3BhH6njlksfnKwwIJ9iRT41V4BqbWu4mszO/7VJ3HJyw2DBpIc2grU9ZRRxrV3fRQG4wIDAQAB","manifest_version":2,"name":"Google Now","oauth2":{"auto_approve":true,"scopes":["https://www.googleapis.com/auth/googlenow"]},"optional_permissions":["background"],"permissions":["alarms","identity","metricsPrivate","notifications","pushMessaging","storage","tabs","webstorePrivate","*://*.google.com/*","*://*.gstatic.com/*","https://*.googleapis.com/chromenow/v1/*","https://*.googleusercontent.com/*"],"version":"1.2.0.1"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\41.0.2272.76\\resources\\google_now","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":false,"was_installed_by_oem":false},"pjkljhegncpnkpknbcohdijeoejaedia":{"ack_external":true,"active_bit":false,"active_permissions":{"api":["notifications"],"manifest_permissions":[]},"app_launcher_ordinal":"x","commands":{},"content_settings":[],"creation_flags":137,"events":[],"from_bookmark":false,"from_webstore":true,"granted_permissions":{"api":["notifications"],"manifest_permissions":[]},"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13072318677407690","last_active_pingday":"13078393202380694","lastpingday":"13078566002567574","location":1,"manifest":{"app":{"launch":{"container":"tab","web_url":"https://mail.google.com/mail/ca"},"urls":["*://mail.google.com/mail/ca"]},"current_locale":"cs","default_locale":"en","description":"Rychlý e-mail s možností vyhledávání a menším množstvím spamu.","icons":{"128":"128.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCuGglK43iAz3J9BEYK/Mz6ZhloIMMDqQSAaf3vJt4eHbTbSDsu4WdQ9dQDRcKlg8nwQdePBt0C3PSUBtiSNSS37Z3qEGfS7LCju3h6pI1Yr9MQtxw+jUa7kXXIS09VV73pEFUT/F7c6Qe8L5ZxgAcBvXBh1Fie63qb02I9XQ/CQIDAQAB","manifest_version":2,"name":"Gmail","options_page":"https://mail.google.com/mail/ca/#settings","permissions":["notifications"],"update_url":"http://clients2.google.com/service/upda ... artup_urls":["https://www.google.com/?trackid=sp-006"],"urls_to_restore_on_startup":null},"software_reporter":{"prompt_reason":0,"prompt_seed":"20150601","prompt_version":"3.21.0"}}
":{"persistent":false,"scripts":["utility.js","cards.js","background.js"]},"description":"Integrates Google Now into Chrome.","icons":{"128":"images/icon128.png","16":"images/icon16.png","48":"images/icon48.png"},"key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhqJr32OFD/bMXW4Md7jMfd7LbwHXVc6x5bBQG5U+dloofoxrICDR20yur/40mQ8O//0sS1b8srvbab1CRlSrxoNCr9T80NAkfzx0gHyVS+p1Zow+1FzLMu9PiGwwFyN80HIB7GI/dIa0wC9K/2OrrzcHEhVH96DacTtWQqjfDVtZPjT7Xwv23dgoWcpbkRC86jMJot3dmX9xnn0KzoVc9gDOHSIkBLbkkr6Sp3LGXCCM4L0DJgxdFwaLr5WBzgC3y5x0/wwPIwN4PtIaK3BhH6njlksfnKwwIJ9iRT41V4BqbWu4mszO/7VJ3HJyw2DBpIc2grU9ZRRxrV3fRQG4wIDAQAB","manifest_version":2,"name":"Google Now","oauth2":{"auto_approve":true,"scopes":["https://www.googleapis.com/auth/googlenow"]},"optional_permissions":["background"],"permissions":["alarms","identity","metricsPrivate","notifications","pushMessaging","storage","tabs","webstorePrivate","*://*.google.com/*","*://*.gstatic.com/*","https://*.googleapis.com/chromenow/v1/*","https://*.googleusercontent.com/*"],"version":"1.2.0.1"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\41.0.2272.76\\resources\\google_now","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":false,"was_installed_by_oem":false},"pjkljhegncpnkpknbcohdijeoejaedia":{"ack_external":true,"active_bit":false,"active_permissions":{"api":["notifications"],"manifest_permissions":[]},"app_launcher_ordinal":"x","commands":{},"content_settings":[],"creation_flags":137,"events":[],"from_bookmark":false,"from_webstore":true,"granted_permissions":{"api":["notifications"],"manifest_permissions":[]},"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13072318677407690","last_active_pingday":"13078393202380694","lastpingday":"13078566002567574","location":1,"manifest":{"app":{"launch":{"container":"tab","web_url":"https://mail.google.com/mail/ca"},"urls":["*://mail.google.com/mail/ca"]},"current_locale":"cs","default_locale":"en","description":"Rychlý e-mail s možností vyhledávání a menším množstvím spamu.","icons":{"128":"128.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCuGglK43iAz3J9BEYK/Mz6ZhloIMMDqQSAaf3vJt4eHbTbSDsu4WdQ9dQDRcKlg8nwQdePBt0C3PSUBtiSNSS37Z3qEGfS7LCju3h6pI1Yr9MQtxw+jUa7kXXIS09VV73pEFUT/F7c6Qe8L5ZxgAcBvXBh1Fie63qb02I9XQ/CQIDAQAB","manifest_version":2,"name":"Gmail","options_page":"https://mail.google.com/mail/ca/#settings","permissions":["notifications"],"update_url":"http://clients2.google.com/service/upda ... artup_urls":["https://www.google.com/?trackid=sp-006"],"urls_to_restore_on_startup":null},"software_reporter":{"prompt_reason":0,"prompt_seed":"20150601","prompt_version":"3.21.0"}}


==== Chromium Fix ======================

C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage deleted successfully
C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage-journal deleted successfully
C:\Users\Miroslav\AppData\Roaming\Opera Software\Opera Stable\Extensions\jhongheibdpfhdpfccheljfcabgliidh deleted successfully
C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\bppfidcbknepkkjilhdbmiebbclnhfpd deleted successfully
C:\Users\Miroslav\AppData\Roaming\Opera Software\Opera Stable\Extensions\bppfidcbknepkkjilhdbmiebbclnhfpd deleted successfully
C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bppfidcbknepkkjilhdbmiebbclnhfpd_0.localstorage deleted successfully
C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bppfidcbknepkkjilhdbmiebbclnhfpd_0.localstorage-journal deleted successfully
C:\Users\Miroslav\AppData\Roaming\Opera Software\Opera Stable\Local Storage\chrome-extension_bppfidcbknepkkjilhdbmiebbclnhfpd_0.localstorage deleted successfully
C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bppfidcbknepkkjilhdbmiebbclnhfpd deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Bar"="https://www.google.com/?trackid=sp-006"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} Google Url="https://www.google.com/search?trackid=s ... earchTerms}"

==== Reset Google Chrome ======================

C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Miroslav\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Web Data copy was reset successfully
C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Web Data.tmp was reset successfully
C:\Users\Miroslav\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully
C:\Users\Miroslav\AppData\Roaming\Opera Software\Opera Stable\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\E3E01B881198CAF46836CC6F3EC3853B deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\2C0D8C2E79C150C439A9B5310AEF56C5 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A0FC329A9D4475342B8EA0322551A1C3 deleted successfully
HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{88B10E3E-8911-4FAC-8663-CCF6E33C58B3} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{88B10E3E-8911-4FAC-8663-CCF6E33C58B3}_WebCompanion deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E2C8D0C2-1C97-4C05-939A-5B13A0FE655C} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A923CF0A-44D9-4357-B2E8-0A2352151A3C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\E3E01B881198CAF46836CC6F3EC3853B deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\2C0D8C2E79C150C439A9B5310AEF56C5 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\A0FC329A9D4475342B8EA0322551A1C3 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Miroslav\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Miroslav\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Miroslav\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Miroslav\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Miroslav\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=6242 folders=187 339989180 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Miroslav\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Miroslav\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on po 15. 06. 2015 at 8:03:30,98 ======================

[vyosek]

Poprosim o novy log z FRST

[Bazz]

Nový log níže, ale již to vypadá v pořádku. Jinak jsem nainstaloval firewall COMODO a nadějí, že se již nic podobného v budoucnu nebude opakovat. Ještě bych Vám moc chtěl mockrát poděkovat za pomoc

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-06-2015
Ran by Miroslav (administrator) on PRACE on 15-06-2015 09:23:57
Running from C:\Users\Miroslav\Desktop
Loaded Profiles: Miroslav (Available Profiles: Miroslav)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Comodo Security Solutions, Inc.) C:\Program Files\COMODO\GeekBuddy\unit_manager.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Comodo Security Solutions, Inc.) C:\Program Files\COMODO\GeekBuddy\unit.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Users\Miroslav\Desktop\adwcleaner_4.206.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7642328 2015-04-02] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2198872 2014-03-28] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2811120 2014-03-13] (Synaptics Incorporated)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1427648 2015-06-05] (COMODO)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5512912 2015-04-02] (Avast Software s.r.o.)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [126240 2014-04-01] (Hewlett-Packard Company)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [654088 2015-02-17] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [tvncontrol] => C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2015-01-30] (Comodo Security Solutions, Inc.)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1720584 2015-02-09] (CyberLink Corp.)
HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\MountPoints2: {3e5d343c-ff0d-11e4-826c-38b1dbe81f72} - "F:\LenovoUsbDriver.exe"
HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\MountPoints2: {c4cd905b-cefa-11e4-8264-38b1dbe81f72} - "F:\LenovoUsbDriver.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk [2014-08-05]
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk [2015-06-15]
ShortcutTarget: Start GeekBuddy.lnk -> C:\Program Files\COMODO\GeekBuddy\launcher.exe (Comodo Security Solutions, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-04-02] (Avast Software s.r.o.)
BootExecute: autocheck autochk * sh4native Sh4Removal

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=s ... earchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3224447469-2905802030-4228407692-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3224447469-2905802030-4228407692-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=s ... earchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-05-19] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-02] (Avast Software s.r.o.)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-05-13] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-05-19] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-02] (Avast Software s.r.o.)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-03-04] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-05-13] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{83A889E5-A9E5-44F8-84C6-109149AA1A4D}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{E46A3C0E-DA8E-4774-A3A3-4CFE25A9306A}: [NameServer] 156.154.70.25,156.154.71.25

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-03-31] (Microsoft Corporation)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-04-02]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt
FF Extension: HP SimplePass - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt [2015-04-02]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-04]
CHR Extension: (Google Docs) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-04]
CHR Extension: (Google Drive) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-04]
CHR Extension: (YouTube) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-04]
CHR Extension: (Google Search) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-04]
CHR Extension: (Avast SafePrice) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-04-07]
CHR Extension: (Google Sheets) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-04]
CHR Extension: (Avast Online Security) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-04-03]
CHR Extension: (Gmail) - C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-04]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-04-02]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-02]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-02] (Avast Software s.r.o.)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2013-11-13] (Broadcom Corporation.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70872 2015-03-05] (Comodo Security Solutions, Inc.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5541960 2015-06-05] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265792 2015-06-05] (COMODO)
R2 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2015-01-30] (Comodo Security Solutions, Inc.)
R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [608520 2015-02-17] (Hewlett-Packard Development Company, L.P.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-08] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [315376 2015-04-02] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-12-10] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1615192 2014-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [20539168 2014-03-28] (NVIDIA Corporation)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [103424 2015-01-30] (Softex Inc.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [292568 2015-04-02] (Realtek Semiconductor)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [190704 2014-03-13] (Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-01] (TeamViewer GmbH)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-04-02] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-04-02] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [88408 2015-04-02] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-04-02] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-04-02] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-04-02] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-04-02] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [136752 2015-04-02] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [271200 2015-04-02] ()
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-11-13] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7532760 2015-04-02] (Broadcom Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
S3 BtwSerialBus; C:\Windows\System32\drivers\BtwSerialBus.sys [150744 2013-09-09] (Broadcom Corporation.)
R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [40224 2014-06-26] (Windows (R) Win 7 DDK provider)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20672 2015-06-05] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [820928 2015-06-05] (COMODO)
R1 cmdhlp; C:\Windows\system32\DRIVERS\cmdhlp.sys [35056 2015-06-05] (COMODO)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-13] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-13] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-13] ()
R1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [126696 2015-06-05] (COMODO)
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-13] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-28] (NVIDIA Corporation)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [466136 2014-01-15] (Realsil Semiconductor Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448 2014-03-13] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-03-13] (Synaptics Incorporated)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-05-25] ()
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Development Company, L.P.)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 SliceDisk5; \??\C:\Program Files\A-FF Find and Mount\slicedisk-x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-15 09:23 - 2015-06-15 09:24 - 00023593 _____ C:\Users\Miroslav\Desktop\FRST.txt
2015-06-15 09:23 - 2015-06-15 09:23 - 00000000 ____D C:\Users\Miroslav\Desktop\FRST-OlderVersion
2015-06-15 09:13 - 2015-06-15 09:13 - 00001886 _____ C:\Users\Public\Desktop\COMODO Firewall.lnk
2015-06-15 09:13 - 2015-06-15 09:13 - 00000000 ____D C:\Windows\System32\Tasks\COMODO
2015-06-15 09:12 - 2015-06-15 09:12 - 00002036 _____ C:\Users\Public\Desktop\GeekBuddy.lnk
2015-06-15 09:12 - 2015-06-15 09:12 - 00000000 ____D C:\ProgramData\Shared Space
2015-06-15 09:12 - 2015-06-15 09:12 - 00000000 ____D C:\Program Files\COMODO
2015-06-15 09:08 - 2015-06-15 09:08 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2015-06-15 09:05 - 2015-06-15 09:05 - 00003102 _____ C:\Windows\System32\Tasks\{712777AB-8653-4BE7-9F8C-BD90A5028ECA}
2015-06-15 08:55 - 2015-06-15 08:56 - 00000000 ____D C:\Windows\LastGood.Tmp
2015-06-15 08:54 - 2015-06-15 09:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2015-06-15 08:54 - 2015-06-15 08:54 - 00001149 _____ C:\Users\Public\Desktop\Internet (Chromodo).lnk
2015-06-15 08:54 - 2015-06-15 08:54 - 00000000 ____D C:\Users\Miroslav\AppData\Local\Comodo
2015-06-15 08:54 - 2015-06-15 08:54 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-06-15 08:54 - 2015-06-15 08:54 - 00000000 ____D C:\Program Files (x86)\Comodo
2015-06-15 08:53 - 2015-05-28 09:04 - 42719888 _____ C:\Windows\system32\nvcompiler.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 37741712 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 30480528 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 22946960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 17486856 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 16185352 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 15864064 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 14987528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 14495448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 13304280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 12852152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 11830512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 10995528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-06-15 08:53 - 2015-05-28 09:04 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 02599056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435306.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435306.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 01050440 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 00982856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 00974480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 00408208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 00407112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-06-15 08:53 - 2015-05-28 09:04 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-06-15 08:45 - 2015-06-15 09:13 - 00000000 ____D C:\ProgramData\Comodo
2015-06-15 08:41 - 2015-06-15 08:43 - 226607624 _____ (COMODO) C:\Users\Miroslav\Downloads\cfw_installer_6106_53.exe
2015-06-15 08:25 - 2015-06-15 08:25 - 00002986 _____ C:\Windows\System32\Tasks\Start SimplePass
2015-06-15 08:25 - 2015-06-15 08:25 - 00002912 _____ C:\Windows\System32\Tasks\Start OPBHOBroker
2015-06-15 08:21 - 2015-06-15 08:21 - 00003154 _____ C:\Windows\System32\Tasks\YCMServiceAgent
2015-06-15 08:21 - 2014-01-28 05:58 - 00041704 _____ (CyberLink Corporation) C:\Windows\system32\Drivers\clwvd.sys
2015-06-15 08:01 - 2015-06-15 07:33 - 00024064 _____ C:\Windows\zoek-delete.exe
2015-06-15 07:35 - 2015-06-15 08:03 - 00032003 _____ C:\zoek-results.log
2015-06-15 07:30 - 2015-06-15 07:59 - 00000000 ____D C:\zoek_backup
2015-06-12 14:54 - 2015-06-15 09:20 - 00000000 ____D C:\AdwCleaner
2015-06-12 14:52 - 2015-06-12 14:52 - 02231296 _____ C:\Users\Miroslav\Desktop\adwcleaner_4.206.exe
2015-06-12 11:10 - 2015-06-12 11:10 - 00041299 _____ C:\Users\Miroslav\Downloads\Inspection certificate EN 10204-3.1_ZZ105_ASM914-160.xlsx
2015-06-12 11:10 - 2015-06-12 11:10 - 00041299 _____ C:\Users\Miroslav\Downloads\Inspection certificate EN 10204-3.1_ZZ105_ASM914-160 (1).xlsx
2015-06-12 11:10 - 2015-06-12 11:10 - 00041287 _____ C:\Users\Miroslav\Downloads\Inspection certificate EN 10204-3.1_ZZ104_ASM914-160.xlsx
2015-06-12 11:10 - 2015-06-12 11:10 - 00041287 _____ C:\Users\Miroslav\Downloads\Inspection certificate EN 10204-3.1_ZZ104_ASM914-160 (1).xlsx
2015-06-12 07:41 - 2015-06-12 07:42 - 00050740 _____ C:\Users\Miroslav\Downloads\Addition.txt
2015-06-12 07:40 - 2015-06-15 09:24 - 00000000 ____D C:\FRST
2015-06-12 07:40 - 2015-06-15 09:23 - 02109952 _____ (Farbar) C:\Users\Miroslav\Desktop\FRST64.exe
2015-06-12 07:40 - 2015-06-12 07:42 - 00059432 _____ C:\Users\Miroslav\Downloads\FRST.txt
2015-06-11 17:04 - 2015-06-15 08:03 - 00003416 _____ C:\Windows\System32\Tasks\Ad-Aware Update (Daily 4)
2015-06-11 17:04 - 2015-06-15 08:03 - 00003416 _____ C:\Windows\System32\Tasks\Ad-Aware Update (Daily 3)
2015-06-11 17:04 - 2015-06-15 08:03 - 00003416 _____ C:\Windows\System32\Tasks\Ad-Aware Update (Daily 2)
2015-06-11 17:04 - 2015-06-15 08:03 - 00003416 _____ C:\Windows\System32\Tasks\Ad-Aware Update (Daily 1)
2015-06-11 17:03 - 2015-06-15 08:02 - 00001564 _____ C:\aaw7boot.log
2015-06-11 13:32 - 2015-06-11 13:32 - 00000000 ____D C:\Program Files\Lavasoft
2015-06-11 13:05 - 2010-05-13 17:34 - 00014232 _____ C:\Windows\SysWOW64\sh4native.exe
2015-06-11 13:03 - 2015-06-11 13:17 - 02063465 _____ C:\spyhunter.fix
2015-06-11 11:20 - 2015-06-12 14:45 - 00000000 ____D C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP
2015-06-11 11:20 - 2015-06-11 11:20 - 00000000 ____D C:\Program Files (x86)\Enigma Software Group
2015-06-11 10:40 - 2015-06-14 16:40 - 00000366 _____ C:\Windows\Tasks\Bidaily Synchronize Task[973b].job
2015-06-11 08:42 - 2015-06-11 11:13 - 00000000 ____D C:\Windows\1F7E4FF9D2E542589AE1E16E6CB3252A.TMP
2015-06-11 08:42 - 2015-06-11 08:42 - 00000000 ____D C:\Program Files\Enigma Software Group
2015-06-11 08:42 - 2015-06-11 08:42 - 00000000 _____ C:\autoexec.bat
2015-06-11 08:40 - 2015-06-11 08:40 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Miroslav\Downloads\SpyHunter-Installer.exe
2015-06-11 06:33 - 2015-06-11 06:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-06-11 06:33 - 2015-06-11 06:33 - 00000000 ____D C:\Program Files\7-Zip
2015-06-10 13:15 - 2015-06-10 13:15 - 00532480 _____ (Trend Micro Incorporated) C:\Users\Miroslav\Downloads\cwshredder.exe
2015-06-10 10:23 - 2015-06-11 11:14 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-06-10 10:23 - 2015-06-11 11:13 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-06-10 10:23 - 2015-06-10 10:23 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2015-06-10 10:21 - 2015-06-10 10:22 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Miroslav\Downloads\spybot-2.4.exe
2015-06-10 10:12 - 2015-06-10 10:12 - 01700501 _____ C:\Users\Miroslav\Downloads\Keygen_v10.rar
2015-06-10 09:50 - 2015-06-10 09:50 - 01066979 _____ ( ) C:\Users\Miroslav\Downloads\AdwareAway.exe
2015-06-10 09:30 - 2015-04-09 00:07 - 00410336 _____ C:\Windows\system32\ApnDatabase.xml
2015-06-10 09:28 - 2015-05-22 15:08 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-06-10 09:28 - 2015-05-21 15:08 - 01119232 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-06-10 09:28 - 2015-05-21 15:08 - 01020928 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-06-10 09:28 - 2015-05-21 15:08 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-06-10 09:28 - 2015-05-21 15:08 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-06-10 09:28 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-06-10 09:28 - 2015-05-21 15:08 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-06-10 09:28 - 2015-04-17 00:07 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-06-10 09:28 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2015-06-10 09:28 - 2015-03-20 05:08 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-06-10 09:28 - 2015-03-20 04:37 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-06-10 09:28 - 2015-03-20 04:07 - 01091072 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-06-10 09:27 - 2015-05-25 15:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-06-10 09:27 - 2015-05-25 15:07 - 01430528 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-06-10 09:27 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rgb9rast.dll
2015-06-10 09:27 - 2015-04-02 00:42 - 03097600 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-06-10 09:27 - 2015-04-02 00:30 - 02483712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-06-10 09:27 - 2015-03-02 03:43 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2015-06-10 09:27 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2015-06-10 09:21 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-10 09:21 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-06-10 09:21 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-06-10 09:21 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-06-10 09:21 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-06-10 09:21 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-06-10 09:21 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-06-10 09:21 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-06-10 09:21 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-06-10 09:21 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-06-10 09:21 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-06-10 09:21 - 2015-05-23 04:38 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-06-10 09:21 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-06-10 09:21 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-06-10 09:21 - 2015-05-23 04:28 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-06-10 09:21 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-06-10 09:21 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-06-10 09:21 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-06-10 09:21 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-10 09:21 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-10 09:21 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-10 09:21 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-10 09:21 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-10 09:21 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-10 09:21 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-10 09:21 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-10 09:21 - 2015-05-22 20:23 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-06-10 09:21 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-10 09:21 - 2015-05-22 20:09 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-06-10 09:21 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-10 09:21 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-10 09:21 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-10 09:21 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-10 09:21 - 2015-05-22 19:49 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-06-10 09:21 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-10 09:21 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-10 09:21 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-10 09:21 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-06-10 09:21 - 2015-04-16 08:17 - 00325464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-06-10 09:21 - 2015-04-14 00:37 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2015-06-10 09:21 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2015-06-10 09:21 - 2015-04-10 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-06-10 09:21 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-06-10 09:21 - 2015-04-01 06:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-06-10 09:21 - 2015-04-01 06:18 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-06-10 09:21 - 2015-04-01 06:17 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-06-10 09:21 - 2015-04-01 06:08 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-06-10 09:21 - 2015-04-01 05:46 - 03633664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-06-10 09:21 - 2015-04-01 05:17 - 02551808 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-06-10 09:21 - 2015-04-01 05:17 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-06-10 09:21 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-06-10 09:21 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-06-10 09:21 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-06-10 09:21 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-06-10 09:21 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-06-10 09:21 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-06-10 09:20 - 2015-05-23 04:47 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-06-10 09:20 - 2015-05-23 04:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-06-10 09:20 - 2015-05-22 20:15 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-06-10 09:20 - 2015-05-22 20:08 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-10 09:18 - 2015-05-21 18:47 - 04177920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-10 09:16 - 2015-06-15 07:57 - 00000000 ____D C:\Users\Miroslav\AppData\Local\Lavasoft
2015-06-10 09:16 - 2015-06-11 06:48 - 00002952 _____ C:\Windows\system32\LavasoftTcpServiceOff.ini
2015-06-10 09:16 - 2015-06-10 09:16 - 00000000 ____D C:\Users\Miroslav\AppData\Roaming\LavasoftStatistics
2015-06-10 09:16 - 2015-06-10 09:16 - 00000000 ____D C:\searchplugins
2015-06-10 09:16 - 2015-06-08 14:13 - 00428880 _____ (Lavasoft Limited) C:\Windows\system32\LavasoftTcpService64.dll
2015-06-10 09:09 - 2015-06-11 08:47 - 00000000 ____D C:\Users\Miroslav\AppData\Roaming\Lavasoft
2015-06-10 09:07 - 2015-06-15 08:12 - 00000000 ____D C:\ProgramData\Lavasoft
2015-06-10 09:07 - 2015-06-10 09:07 - 01753736 _____ C:\Users\Miroslav\Downloads\Adaware_Installer.exe
2015-06-05 14:36 - 2015-06-05 14:36 - 00820928 _____ (COMODO) C:\Windows\system32\Drivers\cmdguard.sys
2015-06-05 14:36 - 2015-06-05 14:36 - 00126696 _____ (COMODO) C:\Windows\system32\Drivers\inspect.sys
2015-06-05 14:36 - 2015-06-05 14:36 - 00035056 _____ (COMODO) C:\Windows\system32\Drivers\cmdhlp.sys
2015-06-05 14:36 - 2015-06-05 14:36 - 00020672 _____ (COMODO) C:\Windows\system32\Drivers\cmderd.sys
2015-06-05 14:34 - 2015-06-05 14:34 - 00576824 _____ (COMODO) C:\Windows\system32\guard64.dll
2015-06-05 14:34 - 2015-06-05 14:34 - 00444448 _____ (COMODO) C:\Windows\SysWOW64\guard32.dll
2015-06-05 14:34 - 2015-06-05 14:34 - 00041224 _____ (COMODO) C:\Windows\system32\cmdcsr.dll
2015-06-05 14:33 - 2015-06-05 14:33 - 00358080 _____ (COMODO) C:\Windows\system32\cmdvrt64.dll
2015-06-05 14:32 - 2015-06-05 14:32 - 00045760 _____ (COMODO) C:\Windows\system32\cmdkbd64.dll
2015-06-05 14:31 - 2015-06-05 14:31 - 00288448 _____ (COMODO) C:\Windows\SysWOW64\cmdvrt32.dll
2015-06-05 14:31 - 2015-06-05 14:31 - 00040640 _____ (COMODO) C:\Windows\SysWOW64\cmdkbd32.dll
2015-06-05 09:39 - 2015-06-05 09:39 - 00000990 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-06-05 09:39 - 2015-06-05 09:39 - 00000978 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-05-28 15:52 - 2015-05-28 16:13 - 00000000 ____D C:\Users\Miroslav\Desktop\pro polepy
2015-05-27 13:23 - 2015-05-27 13:23 - 00002183 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk
2015-05-27 13:22 - 2015-05-27 13:22 - 00880208 _____ (Google Inc.) C:\Users\Miroslav\Downloads\GoogleEarthSetup.exe
2015-05-25 14:17 - 2015-05-25 14:34 - 00000000 ____D C:\ProgramData\RogueKiller
2015-05-25 14:17 - 2015-05-25 14:17 - 00035064 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-05-25 14:16 - 2015-05-25 14:16 - 17023576 _____ C:\Users\Miroslav\Downloads\RogueKiller.exe
2015-05-21 19:32 - 2015-05-21 19:32 - 00040820 _____ C:\Users\Miroslav\Downloads\201505212204 (2).tif
2015-05-21 19:31 - 2015-05-21 19:31 - 00040820 _____ C:\Users\Miroslav\Downloads\201505212204 (1).tif
2015-05-21 19:28 - 2015-05-21 19:28 - 00040820 _____ C:\Users\Miroslav\Downloads\201505212204.tif
2015-05-21 17:40 - 2015-05-21 17:40 - 00040293 _____ C:\Users\Miroslav\Downloads\201505211946 (1).tif
2015-05-21 17:40 - 2015-05-21 17:40 - 00039911 _____ C:\Users\Miroslav\Downloads\201505211945 (1).tif
2015-05-21 17:33 - 2015-05-21 17:33 - 00040293 _____ C:\Users\Miroslav\Downloads\201505211946.tif
2015-05-21 17:32 - 2015-05-21 17:33 - 00039911 _____ C:\Users\Miroslav\Downloads\201505211945.tif
2015-05-18 11:39 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-18 11:39 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-18 11:06 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-05-18 11:06 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-05-18 11:06 - 2015-03-17 19:26 - 00467776 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-05-18 11:06 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-05-18 11:06 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-05-18 11:06 - 2015-03-09 04:02 - 00057856 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-05-18 11:06 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-18 11:06 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-05-18 11:06 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-05-18 11:05 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-05-18 11:05 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-05-18 11:05 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-05-18 11:05 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-05-18 11:05 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-05-18 11:05 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-05-18 11:05 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-05-18 11:05 - 2015-03-13 06:03 - 00239424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-05-18 11:05 - 2015-03-13 06:03 - 00154432 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-05-18 11:05 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-05-18 11:05 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-18 11:05 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-18 11:05 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-05-18 11:05 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-05-18 11:05 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-18 11:05 - 2015-01-30 02:53 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-05-18 11:05 - 2014-11-14 08:58 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsDatabase.dll
2015-05-18 11:02 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-18 11:02 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-18 11:02 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-18 11:02 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-18 11:02 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-18 11:02 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-18 10:48 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-05-18 10:48 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-18 10:48 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-18 10:48 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-18 10:47 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-18 10:47 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-18 10:47 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-15 09:21 - 2015-03-04 15:41 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3224447469-2905802030-4228407692-1001
2015-06-15 09:19 - 2015-03-20 15:56 - 00000000 ____D C:\Users\Miroslav\AppData\Roaming\Skype
2015-06-15 09:19 - 2015-03-04 15:37 - 00000000 ____D C:\Users\Miroslav\Documents\Youcam
2015-06-15 09:18 - 2015-03-04 15:40 - 00000000 ___DO C:\Users\Miroslav\OneDrive
2015-06-15 09:16 - 2013-08-22 16:46 - 00053557 _____ C:\Windows\setupact.log
2015-06-15 09:15 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-15 09:14 - 2015-03-04 15:06 - 01673291 _____ C:\Windows\WindowsUpdate.log
2015-06-15 09:13 - 2014-05-08 03:39 - 00998822 _____ C:\Windows\system32\perfh005.dat
2015-06-15 09:13 - 2014-05-08 03:39 - 00248880 _____ C:\Windows\system32\perfc005.dat
2015-06-15 09:09 - 2015-03-06 22:29 - 00000000 ____D C:\Users\Miroslav\AppData\Local\CrashDumps
2015-06-15 09:07 - 2014-03-18 11:44 - 00061790 _____ C:\Windows\PFRO.log
2015-06-15 09:07 - 2013-08-22 16:44 - 00493640 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-15 09:07 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-06-15 09:06 - 2015-04-22 15:24 - 00000000 ____D C:\Users\Miroslav\AppData\Roaming\Opera Software
2015-06-15 09:06 - 2015-04-22 15:24 - 00000000 ____D C:\Users\Miroslav\AppData\Local\Opera Software
2015-06-15 09:06 - 2015-04-22 15:24 - 00000000 ____D C:\Program Files (x86)\Opera
2015-06-15 09:00 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-06-15 08:58 - 2014-08-05 23:04 - 00000000 ____D C:\ProgramData\NVIDIA
2015-06-15 08:58 - 2014-08-05 23:04 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-06-15 08:58 - 2014-08-05 23:03 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-06-15 08:44 - 2015-04-02 14:10 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2015-06-15 08:32 - 2015-03-04 15:37 - 00000000 ____D C:\Users\Miroslav\AppData\Local\CyberLink
2015-06-15 08:32 - 2014-08-05 23:19 - 00000000 ____D C:\Users\Public\CyberLink
2015-06-15 08:31 - 2014-08-05 23:16 - 00000000 ____D C:\ProgramData\CyberLink
2015-06-15 08:31 - 2014-08-05 23:15 - 00000000 ____D C:\Program Files (x86)\CyberLink
2015-06-15 08:30 - 2014-04-01 03:07 - 00000000 ____D C:\SWSetup
2015-06-15 08:29 - 2015-03-04 20:24 - 00000972 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d056a87f98f906.job
2015-06-15 08:26 - 2014-05-07 18:30 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-06-15 08:24 - 2014-05-07 18:35 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2015-06-15 08:21 - 2014-08-05 23:17 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2015-06-15 08:02 - 2015-04-26 12:44 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-06-15 07:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\GroupPolicy
2015-06-15 07:31 - 2015-03-07 17:07 - 00178688 ___SH C:\Users\Miroslav\Downloads\Thumbs.db
2015-06-15 07:30 - 2015-03-04 15:40 - 00003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{1E23AC4A-52B1-4A94-A8A5-4468F0027FA1}
2015-06-14 16:39 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-06-14 16:28 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-06-12 15:17 - 2015-03-06 20:27 - 00217088 ___SH C:\Users\Miroslav\Desktop\Thumbs.db
2015-06-12 14:58 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-06-12 14:56 - 2013-08-22 15:25 - 00000301 _____ C:\Windows\win.ini
2015-06-12 11:20 - 2015-03-04 15:35 - 00000000 ____D C:\Users\Miroslav\AppData\Local\Packages
2015-06-11 17:25 - 2015-03-19 16:38 - 00000000 ____D C:\Users\Miroslav\Documents\Soubory aplikace Outlook
2015-06-11 17:16 - 2015-04-12 17:46 - 00000000 ____D C:\Users\Miroslav\telefon
2015-06-11 17:16 - 2015-04-03 23:17 - 00000000 ____D C:\Users\Miroslav\Desktop\sobisky
2015-06-11 17:13 - 2014-03-18 11:53 - 01886526 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-11 13:13 - 2015-03-04 15:35 - 00001433 _____ C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-06-11 06:46 - 2015-03-06 23:19 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-06-11 06:46 - 2015-03-06 23:19 - 00000000 ____D C:\Windows\system32\appraiser
2015-06-11 06:46 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2015-06-11 06:46 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-06-11 06:44 - 2015-03-19 14:19 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-11 06:43 - 2015-03-19 14:22 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-06-10 17:07 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-06-10 17:01 - 2015-03-06 23:13 - 00000000 ____D C:\Windows\system32\MRT
2015-06-10 16:56 - 2015-03-06 23:13 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-10 08:37 - 2015-04-24 09:41 - 00000004 _____ C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-06-09 15:47 - 2015-04-24 10:27 - 00003176 _____ C:\Windows\System32\Tasks\HPCeeScheduleForMiroslav
2015-06-09 15:47 - 2015-04-24 10:27 - 00000356 _____ C:\Windows\Tasks\HPCeeScheduleForMiroslav.job
2015-06-05 13:07 - 2015-03-19 14:19 - 00000000 ____D C:\Users\Miroslav\AppData\Local\Microsoft Help
2015-06-05 09:39 - 2015-04-04 12:50 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-06-03 18:18 - 2015-03-07 12:10 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-03 18:18 - 2015-03-07 12:10 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-28 09:04 - 2015-03-18 16:26 - 00030966 _____ C:\Windows\system32\nvinfo.pb
2015-05-28 09:04 - 2014-08-05 23:03 - 03379680 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-05-28 09:04 - 2014-08-05 23:03 - 02986392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-05-28 06:15 - 2014-08-05 23:04 - 06872904 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-05-28 06:15 - 2014-08-05 23:04 - 03491984 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-05-28 06:15 - 2014-08-05 23:04 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-05-28 06:15 - 2014-08-05 23:04 - 01059472 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2015-05-28 06:15 - 2014-08-05 23:04 - 00937288 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-05-28 06:15 - 2014-08-05 23:04 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-05-28 06:15 - 2014-08-05 23:04 - 00075080 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2015-05-28 06:15 - 2014-08-05 23:04 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-05-27 13:23 - 2015-03-04 20:24 - 00000000 ____D C:\Program Files (x86)\Google
2015-05-27 12:48 - 2014-08-05 23:04 - 04408727 _____ C:\Windows\system32\nvcoproc.bin
2015-05-27 11:36 - 2015-04-08 18:40 - 00388608 _____ C:\Users\Miroslav\Desktop\Práce 2010.xls
2015-05-25 13:39 - 2015-03-20 16:25 - 00006235 _____ C:\Users\Miroslav\AppData\Roaming\Hodnoty oddělené čárkami.EML
2015-05-21 19:29 - 2015-04-12 15:07 - 00000000 ____D C:\Users\Miroslav\Desktop\k odeslani
2015-05-18 18:46 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-05-18 18:46 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-05-18 16:24 - 2015-03-04 20:24 - 00003944 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d056a87f98f906
2015-05-18 11:10 - 2014-03-18 11:38 - 00000000 ____D C:\Program Files\Windows Journal

==================== Files in the root of some directories =======

2015-03-20 16:29 - 2015-03-20 16:29 - 0022059 _____ () C:\Users\Miroslav\AppData\Roaming\Hodnoty oddělené čárkami.ADR
2015-03-20 16:25 - 2015-05-25 13:39 - 0006235 _____ () C:\Users\Miroslav\AppData\Roaming\Hodnoty oddělené čárkami.EML

Some files in TEMP:
====================
C:\Users\Miroslav\AppData\Local\Temp\Extract.exe
C:\Users\Miroslav\AppData\Local\Temp\SP70794.exe
C:\Users\Miroslav\AppData\Local\Temp\SP70822.exe
C:\Users\Miroslav\AppData\Local\Temp\SP70823.exe
C:\Users\Miroslav\AppData\Local\Temp\SP71156.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-15 08:36

==================== End of log ============================

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  CloseProcesses:
  CreateRestorePoint:
  
  HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
  HKLM\...\Policies\Explorer: [NoControlPanel] 0
  HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
  HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1720584 2015-02-09] (CyberLink Corp.)
  HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
  HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\MountPoints2: {3e5d343c-ff0d-11e4-826c-38b1dbe81f72} - "F:\LenovoUsbDriver.exe" 
  HKU\S-1-5-21-3224447469-2905802030-4228407692-1001\...\MountPoints2: {c4cd905b-cefa-11e4-8264-38b1dbe81f72} - "F:\LenovoUsbDriver.exe" 
  BootExecute: autocheck autochk * sh4native Sh4Removal
  
  HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
  HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
  HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
  SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
  SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  
  S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
  S3 SliceDisk5; \??\C:\Program Files\A-FF Find and Mount\slicedisk-x64.sys [X]
  
  C:\Program Files\Enigma Software Group
  C:\Program Files (x86)\Lavasoft
  2015-06-15 09:23 - 2015-06-15 09:24 - 00023593 _____ C:\Users\Miroslav\Desktop\FRST.txt
  2015-06-15 09:23 - 2015-06-15 09:23 - 00000000 ____D C:\Users\Miroslav\Desktop\FRST-OlderVersion
  2015-06-15 08:25 - 2015-06-15 08:25 - 00002912 _____ C:\Windows\System32\Tasks\Start OPBHOBroker
  2015-06-15 08:21 - 2015-06-15 08:21 - 00003154 _____ C:\Windows\System32\Tasks\YCMServiceAgent
  2015-06-15 08:01 - 2015-06-15 07:33 - 00024064 _____ C:\Windows\zoek-delete.exe
  2015-06-15 07:35 - 2015-06-15 08:03 - 00032003 _____ C:\zoek-results.log
  2015-06-15 07:30 - 2015-06-15 07:59 - 00000000 ____D C:\zoek_backup
  2015-06-12 14:54 - 2015-06-15 09:20 - 00000000 ____D C:\AdwCleaner
  2015-06-12 14:52 - 2015-06-12 14:52 - 02231296 _____ C:\Users\Miroslav\Desktop\adwcleaner_4.206.exe
  2015-06-12 07:41 - 2015-06-12 07:42 - 00050740 _____ C:\Users\Miroslav\Downloads\Addition.txt
  2015-06-12 07:40 - 2015-06-12 07:42 - 00059432 _____ C:\Users\Miroslav\Downloads\FRST.txt
  2015-06-11 17:04 - 2015-06-15 08:03 - 00003416 _____ C:\Windows\System32\Tasks\Ad-Aware Update (Daily 4)
  2015-06-11 17:04 - 2015-06-15 08:03 - 00003416 _____ C:\Windows\System32\Tasks\Ad-Aware Update (Daily 3)
  2015-06-11 17:04 - 2015-06-15 08:03 - 00003416 _____ C:\Windows\System32\Tasks\Ad-Aware Update (Daily 2)
  2015-06-11 17:04 - 2015-06-15 08:03 - 00003416 _____ C:\Windows\System32\Tasks\Ad-Aware Update (Daily 1)
  2015-06-11 17:03 - 2015-06-15 08:02 - 00001564 _____ C:\aaw7boot.log
  2015-06-11 13:32 - 2015-06-11 13:32 - 00000000 ____D C:\Program Files\Lavasoft
  2015-06-11 13:05 - 2010-05-13 17:34 - 00014232 _____ C:\Windows\SysWOW64\sh4native.exe
  2015-06-11 13:03 - 2015-06-11 13:17 - 02063465 _____ C:\spyhunter.fix
  2015-06-11 11:20 - 2015-06-12 14:45 - 00000000 ____D C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP
  2015-06-11 11:20 - 2015-06-11 11:20 - 00000000 ____D C:\Program Files (x86)\Enigma Software Group
  2015-06-11 10:40 - 2015-06-14 16:40 - 00000366 _____ C:\Windows\Tasks\Bidaily Synchronize Task[973b].job
  2015-06-11 08:42 - 2015-06-11 11:13 - 00000000 ____D C:\Windows\1F7E4FF9D2E542589AE1E16E6CB3252A.TMP
  2015-06-11 08:42 - 2015-06-11 08:42 - 00000000 ____D C:\Program Files\Enigma Software Group
  2015-06-11 08:40 - 2015-06-11 08:40 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Miroslav\Downloads\SpyHunter-Installer.exe
  2015-06-10 13:15 - 2015-06-10 13:15 - 00532480 _____ (Trend Micro Incorporated) C:\Users\Miroslav\Downloads\cwshredder.exe
  2015-06-10 10:23 - 2015-06-11 11:14 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
  2015-06-10 10:23 - 2015-06-11 11:13 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
  2015-06-10 10:23 - 2015-06-10 10:23 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
  2015-06-10 10:21 - 2015-06-10 10:22 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Miroslav\Downloads\spybot-2.4.exe
  2015-06-10 10:12 - 2015-06-10 10:12 - 01700501 _____ C:\Users\Miroslav\Downloads\Keygen_v10.rar
  2015-06-10 09:50 - 2015-06-10 09:50 - 01066979 _____ ( ) C:\Users\Miroslav\Downloads\AdwareAway.exe
  2015-06-10 09:30 - 2015-04-09 00:07 - 00410336 _____ C:\Windows\system32\ApnDatabase.xml
  2015-06-10 09:16 - 2015-06-15 07:57 - 00000000 ____D C:\Users\Miroslav\AppData\Local\Lavasoft
  2015-06-10 09:16 - 2015-06-10 09:16 - 00000000 ____D C:\Users\Miroslav\AppData\Roaming\LavasoftStatistics
  2015-06-10 09:16 - 2015-06-10 09:16 - 00000000 ____D C:\searchplugins
  2015-06-10 09:16 - 2015-06-08 14:13 - 00428880 _____ (Lavasoft Limited) C:\Windows\system32\LavasoftTcpService64.dll
  2015-06-10 09:09 - 2015-06-11 08:47 - 00000000 ____D C:\Users\Miroslav\AppData\Roaming\Lavasoft
  2015-06-10 09:07 - 2015-06-15 08:12 - 00000000 ____D C:\ProgramData\Lavasoft
  2015-06-10 09:07 - 2015-06-10 09:07 - 01753736 _____ C:\Users\Miroslav\Downloads\Adaware_Installer.exe
  2015-05-25 14:17 - 2015-05-25 14:34 - 00000000 ____D C:\ProgramData\RogueKiller
  2015-05-25 14:17 - 2015-05-25 14:17 - 00035064 _____ C:\Windows\system32\Drivers\TrueSight.sys
  2015-05-25 14:16 - 2015-05-25 14:16 - 17023576 _____ C:\Users\Miroslav\Downloads\RogueKiller.exe
  
  Hosts:
  EmptyTemp:
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt