VIRY.CZ

Děkuji mnohokrát.

Logfile of random's system information tool 1.09 (written by random/random)
Run by HP at 2013-10-28 11:47:30
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 13 GB (3%) free of 477 GB
Total RAM: 4060 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:47:31, on 28.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal

Running processes:
C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
C:\Program Files (x86)\AVG\AVG10\avgtray.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
C:\Program Files (x86)\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
C:\Program Files\trend micro\HP.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT1750559
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
R3 - URLSearchHook: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player\tbBS_P.dll (file missing)
R3 - URLSearchHook: (no name) - {EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: (no name) - AutorunsDisabled - (no file)
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG10\avgtray.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Optimizer Pro] C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-481945695-2898495593-1938971302-1006\..\Run: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray (User 'já')
O4 - HKUS\S-1-5-21-481945695-2898495593-1938971302-1006\..\Run: [Google Update] "C:\Users\já\AppData\Local\Google\Update\GoogleUpdate.exe" /c (User 'já')
O4 - HKUS\S-1-5-21-481945695-2898495593-1938971302-1006\..\Run: [BatteryCare] C:\Program Files (x86)\BatteryCare\BatteryCare.exe (User 'já')
O4 - HKUS\S-1-5-21-481945695-2898495593-1938971302-1006\..\Run: [AccelerometerSysTrayApplet] "C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.Exe" (User 'já')
O4 - HKUS\S-1-5-21-481945695-2898495593-1938971302-1006\..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (User 'já')
O4 - HKUS\S-1-5-21-481945695-2898495593-1938971302-1006\..\Run: [SystemBoot] C:\Windows\Setupp.exe (User 'já')
O4 - HKUS\S-1-5-21-481945695-2898495593-1938971302-1006\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden (User 'já')
O4 - HKUS\S-1-5-21-481945695-2898495593-1938971302-1006\..\Run: [WebcamMaxAutoRun] "C:\Program Files (x86)\WebcamMax\WebcamMax.exe" -a (User 'já')
O4 - HKUS\S-1-5-21-481945695-2898495593-1938971302-1006\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount (User 'já')
O4 - HKUS\S-1-5-21-481945695-2898495593-1938971302-1006\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun (User 'já')
O4 - HKUS\S-1-5-21-481945695-2898495593-1938971302-1006\..\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s (User 'já')
O4 - HKUS\S-1-5-21-481945695-2898495593-1938971302-1006\..\Run: [Zoner Photo Studio Autoupdate] C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE (User 'já')
O4 - HKUS\S-1-5-21-481945695-2898495593-1938971302-1007\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime (User 'Ostatní')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - S-1-5-21-481945695-2898495593-1938971302-1006 Startup: Raptr.lnk = ? (User 'já')
O4 - S-1-5-21-481945695-2898495593-1938971302-1006 User Startup: Raptr.lnk = ? (User 'já')
O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{EFDFB64A-8A35-4589-A2D9-3180B817132D}: NameServer = 10.0.0.1
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\15.5.0\ViProtocol.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: c:\progra~2\optimi~1\optpro~1.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Unknown owner - C:\Windows\system32\AEADISRV.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AVG Bonjour Service - Unknown owner - C:\Windows\TEMP\avgcu_mDNSResponder.exe (file missing)
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG10\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\nlssrv32.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16324 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
C:\PROGRA~2\AVG\AVG10\avgchsva.exe /boot
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\AEADISRV.EXE
"C:\Program Files (x86)\AVG\AVG10\avgfws.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"
"C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe"
C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
"C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
"C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
"C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\accelerometerST.exe"
"C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe"
"C:\Program Files (x86)\Secunia\PSI\psi_tray.exe"
"C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe"
"C:\Program Files (x86)\AVG\AVG10\avgtray.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe" /Start
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe"
"C:\Program Files (x86)\AVG\AVG10\avgam.exe"
"C:\Program Files (x86)\AVG\AVG10\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe"
C:\Windows\SysWOW64\nlssrv32.exe
"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
"C:\Program Files (x86)\Secunia\PSI\PSIA.exe" --start-service
"C:\Program Files (x86)\Secunia\PSI\sua.exe" --start-service
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe"
WLIDSvcM.exe 3088
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
{FB2F138E-86D7-411E-8CFF-1F51537BAA07}
{B3187E8F-D02D-459A-BEE7-642F751B1BFA}
{020E87AB-BE26-4CD9-A976-392807FADC27}
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-1dc6e4c5-2813-456f-acec-7334e1ea024c -SystemEventPortName:HostProcess-854ecdcb-4c10-4f1f-9d61-2c4afd369f7d -IoCancelEventPortName:HostProcess-72514e9a-8621-4285-a930-d8123663cd00 -NonStateChangingEventPortName:HostProcess-7eabeb32-e84a-4f6a-ad25-ecbb556d1511 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:7c2bab53-831f-43b8-a5f4-e4810342e65a -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe"
C:\Program Files (x86)\AVG\AVG10\avgcsrva.exe /pipeName=6901b94d-61f6-4f5c-a1b1-a6149458b662 /coreSdkOptions=18 /logConfFile="C:\ProgramData\AVG10\temp\efe46366-a97b-4509-8591-9528dbbb5858-bc0-oopp.tmp" /loggerName=AVG.NS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG10\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg10" /tempPath="C:\ProgramData\AVG10\temp\"
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe"
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group14 pct:1g stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="4904.1.848258680\142991774" /prefetch:673131151
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group14 pct:1g stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4904.2.1610333089\1236050587" /prefetch:673131151
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group14 pct:1g stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --disable-html-notifications --disable-webgl --disable-pepper-3d --disable-gl-multisampling --disable-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-video-decode --channel="4904.3.166079286\696148147" /prefetch:673131151
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group14 pct:1g stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --disable-html-notifications --disable-webgl --disable-pepper-3d --disable-gl-multisampling --disable-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-video-decode --channel="4904.4.1659781499\1105130182" /prefetch:673131151
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group14 pct:1g stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --channel="4904.6.1749063806\1363531192" /prefetch:673131151
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=plugin --plugin-path="C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll" --lang=cs --channel="4904.8.1975417149\1565297928" /prefetch:-390060480
"C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe" /bgrecordhelpersvc
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=gpu-process --channel="4904.9.1315429580\126542807" --disable-d3d11 --use-gl=swiftshader --supports-dual-gpus=false --swiftshader-path="C:\Users\já\AppData\Local\Google\Chrome\User Data\SwiftShader\1.0.5.0" --gpu-driver-bug-workarounds=0,9,18,24,26 --gpu-vendor-id=0x0000 --gpu-device-id=0x0000 --gpu-driver-vendor --gpu-driver-version --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group14 pct:1g stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --channel="4904.10.911234840\1694419091" /prefetch:673131151
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group14 pct:1g stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --channel="4904.12.196012178\645799178" /prefetch:673131151
C:\Program Files (x86)\AVG\AVG10\avgcsrva.exe /pipeName=648f1d63-b47b-4334-ba4b-9e18d93d471b /coreSdkOptions=30 /logConfFile="C:\ProgramData\AVG10\temp\507b9e5f-d46d-4d1e-8d7c-41665729024c-155c-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG10\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg10" /tempPath="C:\ProgramData\AVG10\temp\"
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group14 pct:1g stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --channel="4904.21.218680709\1278611790" /prefetch:673131151
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group14 pct:1g stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --channel="4904.22.875580530\66844398" /prefetch:673131151
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group14 pct:1g stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --channel="4904.23.396154418\1662750566" /prefetch:673131151
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=ppapi --channel="4904.24.1457498141\924179581" --ppapi-flash-args --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe" --type=plugin --plugin-path="C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll" --lang=cs --channel="4904.25.796508593\396543425" /prefetch:-390060480
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\já\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006UA.job
C:\Windows\tasks\ROC_JAN2013_TB_rmv.job

=========Mozilla firefox=========

ProfilePath - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\orz1adod.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "extensions.enabledItems" - "avg@igeared:7.008.031.001, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.10, dealio@mybrowserbar.com:4.0.2, searchsettings@spigot.com:1.2.3, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.3, bkmrksync@nokia.com:1.0.0.736, {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:10.0.0.1410, {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.11"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.8.800.168 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\15.5.0\\npsitesafety.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files (x86)\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Peppe rFlash Video Shim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.6.14]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.6.14]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files (x86)\Netscape6\nprpplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@realnetworks.com/npdlplugin;version=1]
"Description"=RealDownloader Plugin
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VLC Player\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.8.800.168 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

C:\Program Files (x86)\Mozilla Firefox\extensions\
{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}

C:\Program Files (x86)\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
nppl3260.dll
nppl3260.xpt
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
nprpplugin.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
avg-secure-search.xml

C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\orz1adod.default\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\AutorunsDisabled]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2013-09-15 43520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\AutorunsDisabled]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-07-25 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-07-25 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll [2013-08-16 3122864]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"WrtMon.exe"=C:\Windows\system32\spool\drivers\x64\3\WrtMon.exe [2006-09-20 20480]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-05-14 2095912]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeBridge"= []
"PC Suite Tray"=C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2012-06-26 1516632]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"Optimizer Pro"=C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [2013-08-28 135672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-07-22 402432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray]
C:\Program Files (x86)\Morgan\m3jpegV3\MMTray.exe [2001-11-09 53248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setup Utility 12.0]
C:\Program Files (x86)\Navigator12\Setup Utility\clickertray.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
c:\program files (x86)\Update\realsched.exe [2013-09-11 295512]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]
C:\Program Files (x86)\AVG Secure Search\vprot.exe [2013-08-16 2314416]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun]
C:\Program Files (x86)\WebcamMax\WebcamMax.exe [2010-08-03 6043888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [2013-06-07 774680]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AVG_TRAY"=C:\Program Files (x86)\AVG\AVG10\avgtray.exe [2012-08-01 2345592]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun []
"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe aml []
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"QlbCtrl.exe"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2010-02-25 287800]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Secunia PSI Tray.lnk - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.reg - open - "regedit.exe" "%1"

======List of files/folders created in the last 1 month======

2013-10-26 12:25:15 ----A---- C:\Users\HP\AppData\Roaming\HP-PC.MTBF.txt
2013-10-26 12:01:45 ----D---- C:\ProgramData\Avid
2013-10-26 10:58:10 ----D---- C:\Users\HP\AppData\Roaming\avidemux
2013-10-26 10:58:00 ----D---- C:\Program Files (x86)\Avidemux 2.6
2013-10-26 10:21:23 ----D---- C:\Program Files (x86)\Sony
2013-10-23 22:12:01 ----D---- C:\Program Files\Recuva
2013-10-15 23:52:20 ----RD---- C:\Program Files (x86)\Skype
2013-10-15 23:41:46 ----D---- C:\ProgramData\Apple Computer
2013-10-15 23:37:52 ----D---- C:\Program Files (x86)\MALWAREBYTES ANTI-MALWARE
2013-10-15 23:36:40 ----D---- C:\Users\HP\AppData\Roaming\Malwarebytes
2013-10-15 23:36:28 ----D---- C:\ProgramData\Malwarebytes
2013-10-15 23:36:27 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-15 23:36:27 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-10-15 23:24:52 ----D---- C:\Program Files (x86)\Secunia
2013-10-15 23:12:19 ----D---- C:\Program Files (x86)\Driver Cleaner
2013-10-14 16:38:14 ----D---- C:\Program Files\trend micro
2013-10-14 16:38:13 ----D---- C:\rsit
2013-10-14 11:04:42 ----A---- C:\Windows\system32\drivers\psi_mf_amd64.sys
2013-10-11 00:07:43 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-10-11 00:07:43 ----A---- C:\Windows\system32\ieui.dll
2013-10-11 00:07:42 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-10-11 00:07:41 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-10-11 00:07:41 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-10-11 00:07:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-10-11 00:07:41 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-10-11 00:07:41 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 00:07:41 ----A---- C:\Windows\system32\iesysprep.dll
2013-10-11 00:07:41 ----A---- C:\Windows\system32\iesetup.dll
2013-10-11 00:07:41 ----A---- C:\Windows\system32\iernonce.dll
2013-10-11 00:07:41 ----A---- C:\Windows\system32\ie4uinit.exe
2013-10-11 00:07:40 ----A---- C:\Windows\system32\iertutil.dll
2013-10-11 00:07:39 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-10-11 00:07:39 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-10-11 00:07:39 ----A---- C:\Windows\system32\msfeeds.dll
2013-10-11 00:07:39 ----A---- C:\Windows\system32\jscript.dll
2013-10-11 00:07:38 ----A---- C:\Windows\system32\jscript9.dll
2013-10-11 00:07:37 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-10-11 00:07:36 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-10-11 00:07:36 ----A---- C:\Windows\system32\urlmon.dll
2013-10-11 00:07:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-10-11 00:07:34 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-10-11 00:07:34 ----A---- C:\Windows\system32\jsproxy.dll
2013-10-11 00:07:33 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-10-11 00:07:33 ----A---- C:\Windows\system32\wininet.dll
2013-10-11 00:07:31 ----A---- C:\Windows\system32\ieframe.dll
2013-10-11 00:07:29 ----A---- C:\Windows\system32\mshtml.dll
2013-10-11 00:07:26 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-10-10 09:17:45 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-10-10 09:17:45 ----A---- C:\Windows\system32\comctl32.dll
2013-10-10 09:17:43 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-10-10 09:17:43 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-10-10 09:17:43 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-10-10 09:17:43 ----A---- C:\Windows\system32\lpk.dll
2013-10-10 09:17:43 ----A---- C:\Windows\system32\fontsub.dll
2013-10-10 09:17:43 ----A---- C:\Windows\system32\dciman32.dll
2013-10-10 09:17:43 ----A---- C:\Windows\system32\atmfd.dll
2013-10-10 09:17:42 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-10-10 09:17:42 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-10-10 09:17:42 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-10-10 09:17:42 ----A---- C:\Windows\system32\atmlib.dll
2013-10-10 09:17:40 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-10-10 09:17:39 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-10 09:17:38 ----A---- C:\Windows\system32\drivers\usbscan.sys
2013-10-10 09:17:38 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-10 09:17:38 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-10 09:17:37 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-10-10 09:17:37 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-10-10 09:17:37 ----A---- C:\Windows\system32\WebClnt.dll
2013-10-10 09:17:37 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-10-10 09:17:37 ----A---- C:\Windows\system32\davclnt.dll
2013-10-10 09:17:35 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-10-10 09:17:35 ----A---- C:\Windows\system32\mswsock.dll
2013-10-10 09:17:35 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-10 09:17:35 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-10 09:15:31 ----A---- C:\Windows\system32\win32k.sys
2013-10-10 09:15:29 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-10 09:15:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-10-10 09:15:25 ----A---- C:\Windows\system32\advapi32.dll
2013-10-10 09:15:24 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-10-10 09:15:24 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-10-10 09:15:24 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-10-10 09:15:24 ----A---- C:\Windows\system32\tdh.dll
2013-10-10 09:15:24 ----A---- C:\Windows\system32\ntdll.dll
2013-10-10 09:15:23 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-10-10 09:15:23 ----A---- C:\Windows\SYSWOW64\user.exe
2013-10-10 09:15:23 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-10-10 09:15:23 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-10-10 09:15:23 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-10-10 09:15:23 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-10-10 09:15:23 ----A---- C:\Windows\system32\wow64.dll
2013-10-10 09:15:15 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 09:15:15 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 09:15:14 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-10 09:13:00 ----A---- C:\Windows\system32\scavengeui.dll
2013-09-29 19:11:35 ----D---- C:\Program Files (x86)\astrojargon.net

======List of files/folders modified in the last 1 month======

2013-10-28 11:45:14 ----D---- C:\Windows\Temp
2013-10-28 11:39:54 ----D---- C:\Windows\Prefetch
2013-10-28 11:37:23 ----D---- C:\Windows\system32\config
2013-10-28 11:26:46 ----D---- C:\Windows\System32
2013-10-28 11:26:46 ----D---- C:\Windows\inf
2013-10-28 11:26:46 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-28 11:26:44 ----SHD---- C:\System Volume Information
2013-10-28 11:24:50 ----D---- C:\Windows\system32\drivers\AVG
2013-10-27 21:01:27 ----D---- C:\Windows\system32\Tasks
2013-10-27 14:40:46 ----RSD---- C:\Windows\assembly
2013-10-27 14:40:46 ----D---- C:\Windows\Microsoft.NET
2013-10-27 12:19:44 ----SHD---- C:\Windows\Installer
2013-10-27 12:19:40 ----SHD---- C:\Config.Msi
2013-10-27 12:19:21 ----D---- C:\Windows\SysWOW64
2013-10-27 12:19:21 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-10-27 12:15:27 ----A---- C:\Windows\m3jpeg.ini
2013-10-26 21:08:02 ----D---- C:\Windows
2013-10-26 12:24:16 ----D---- C:\Windows\system32\DriverStore
2013-10-26 12:24:16 ----D---- C:\Windows\system32\catroot
2013-10-26 12:21:12 ----D---- C:\Windows\winsxs
2013-10-26 12:17:36 ----D---- C:\Program Files (x86)\Pinnacle
2013-10-26 12:15:53 ----D---- C:\Windows\system32\catroot2
2013-10-26 12:05:50 ----D---- C:\Windows\SoftwareDistribution
2013-10-26 12:01:45 ----HD---- C:\ProgramData
2013-10-26 10:58:00 ----D---- C:\Program Files (x86)
2013-10-26 10:20:08 ----D---- C:\Users\HP\AppData\Roaming\Sony
2013-10-23 22:20:58 ----RD---- C:\Users
2013-10-23 22:12:01 ----RD---- C:\Program Files
2013-10-23 20:47:43 ----D---- C:\Windows\Logs
2013-10-23 17:38:50 ----D---- C:\Windows\Minidump
2013-10-22 09:32:37 ----D---- C:\Windows\system32\MRT
2013-10-22 09:28:09 ----A---- C:\Windows\system32\MRT.exe
2013-10-16 00:34:35 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-15 23:52:31 ----D---- C:\ProgramData\Skype
2013-10-15 23:52:20 ----D---- C:\Program Files (x86)\Common Files
2013-10-15 23:52:19 ----D---- C:\Users\HP\AppData\Roaming\Skype
2013-10-15 23:50:53 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-10-15 23:46:45 ----D---- C:\Program Files (x86)\VLC Player
2013-10-15 23:42:03 ----D---- C:\Program Files (x86)\QuickTime
2013-10-15 23:36:27 ----D---- C:\Windows\system32\drivers
2013-10-11 18:46:26 ----D---- C:\Windows\rescache
2013-10-11 07:44:27 ----D---- C:\Program Files (x86)\Internet Explorer
2013-10-11 07:44:22 ----D---- C:\Program Files\Internet Explorer
2013-10-11 07:44:17 ----D---- C:\Windows\AppPatch
2013-10-11 07:44:09 ----D---- C:\Windows\SYSWOW64\drivers
2013-10-11 00:10:59 ----D---- C:\ProgramData\Microsoft Help
2013-10-10 23:58:18 ----D---- C:\Windows\system32\cs-CZ
2013-10-02 20:49:32 ----D---- C:\Users\HP\AppData\Roaming\TeamViewer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSEH;AVGIDSEH; C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [2011-02-22 26704]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2011-03-16 37456]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 30008]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-09-23 564824]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2010-07-12 57696]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2012-11-12 312160]
R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2011-03-01 41552]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2011-04-04 377936]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2013-08-16 45856]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-06-27 88632]
R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 41272]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 497152]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
R3 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-05-27 118864]
R3 AVGIDSFilter;AVGIDSFilter; C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-02-10 29264]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-07-08 2769400]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2010-02-25 18432]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 25928]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-05-14 319536]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 OkiPar64;OkiPar64; C:\Windows\System32\DRIVERS\OKIPAR64.SYS []
S2 zntport;NTPort Library Driver; \??\C:\Windows\syswow64\zntport.sys [2001-01-22 6080]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-11-16 11922944]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pfc;Padus ASPI Shell; C:\Windows\system32\drivers\pfc.sys []
S3 PSI;PSI; C:\Windows\system32\DRIVERS\psi_mf_amd64.sys [2013-10-14 18456]
S3 Ser2pl;Prolific Serial port driver; C:\Windows\system32\DRIVERS\ser2pl64.sys [2009-07-17 95744]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ss_bus.sys [2011-10-27 127488]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\Windows\system32\DRIVERS\ss_mdfl.sys [2011-10-27 18944]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\Windows\system32\DRIVERS\ss_mdm.sys [2011-10-27 161280]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 32768]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 111616]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-11-16 238080]
R2 avgfws;AVG Firewall; C:\Program Files (x86)\AVG\AVG10\avgfws.exe [2011-03-09 2708024]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2012-01-31 7391072]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe [2011-02-08 269520]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2009-07-08 30520]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\SysWOW64\nlssrv32.exe [2013-05-30 71280]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-08-14 39056]
R2 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [2013-10-14 1228504]
R2 Secunia Update Agent;Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [2013-10-14 660184]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-02-25 227896]
R3 hpqwmiex;hpqwmiex; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-03-11 135664]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 AVG Bonjour Service;AVG Bonjour Service; C:\Windows\TEMP\avgcu_mDNSResponder.exe []
S3 AVG Security Toolbar Service;AVG Security Toolbar Service; C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe [2011-11-10 167264]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-09-23 655624]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-03-11 135664]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-05-24 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-11 257416]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-09-11 118680]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 SwitchBoard;Adobe SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 vToolbarUpdater15.5.0;vToolbarUpdater15.5.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe [2013-08-16 1643184]

-----------------EOF-----------------

Zdravim

Trvate na antiviru AVG - u nas neni moc obliben - vysoka zatez systemu, slabsi detekce

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Takže log z Junkware Removal Tool:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:3)
OS: Windows 7 Home Premium x64
Ran by HP on po 28.10.2013 at 15:33:56,92
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 28.10.2013 at 15:33:57,49
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

A tady z AdwCleaner:

# AdwCleaner v3.010 - Report created 28/10/2013 at 15:44:05
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : HP - HP-PC
# Running from : C:\Users\já\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\AVG Security Toolbar
Folder Deleted : C:\ProgramData\TheBflix
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\optimizer pro
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\myfree codec
Folder Deleted : C:\Program Files (x86)\MyWebSearch
Folder Deleted : C:\Program Files (x86)\optimizer pro
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Users\HP\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\HP\AppData\Local\AVG Security Toolbar
Folder Deleted : C:\Users\HP\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\HP\AppData\LocalLow\AVG Security Toolbar
Folder Deleted : C:\Users\HP\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\HP\AppData\LocalLow\SweetIM
Folder Deleted : C:\Users\já\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\já\AppData\Local\AVG Security Toolbar
Folder Deleted : C:\Users\já\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\já\AppData\LocalLow\AVG Security Toolbar
Folder Deleted : C:\Users\já\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\já\AppData\LocalLow\Dealio
Folder Deleted : C:\Users\já\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\já\AppData\LocalLow\SweetIM
Folder Deleted : C:\Users\Ostatní\AppData\Local\AVG Security Toolbar
Folder Deleted : C:\Users\Ostatní\AppData\LocalLow\Dealio
Folder Deleted : C:\Users\Ostatní\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\Ostatní\AppData\LocalLow\SweetIM
Folder Deleted : C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\orz1adod.default\SweetIMToolbarData
Folder Deleted : C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Folder Deleted : C:\Users\já\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Folder Deleted : C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Folder Deleted : C:\Users\já\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
File Deleted : C:\Windows\SysWOW64\f3PSSavr.scr
File Deleted : C:\Users\HP\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\HP\Desktop\Optimizer Pro.lnk
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Optimizer Pro]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll
Key Deleted : HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss
Key Deleted : HKLM\SOFTWARE\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin
Key Deleted : HKLM\SOFTWARE\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows Media\Wmsdk\Sources [F3PopularScreenSavers]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\post platform [FunWebProducts]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT1750559
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader22428_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader22428_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader30352_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader30352_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader36948_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader36948_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader39268_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader39268_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B5F70E6-857B-4A2F-A678-C966B162B073}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7854F00C-DC77-477E-A10E-603F48442D3B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4D7B-9389-0F166788785A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3E720452-B472-4954-B7AA-33069EB53906}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7473D294-B7BB-4F24-AE82-7E2CE94BB6A9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9FF05104-B030-46FC-94B8-81276E4E27DF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E79DFBCA-5697-4FBD-94E5-5B2A9C7C1612}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1B5F70E6-857B-4A2F-A678-C966B162B073}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45DD-9B68-D6A12C30E5D7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48DD-9B6D-7A13A3E42127}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40FD-8DAE-FF14757F60C7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EEE6C35D-6118-11DC-9C72-001320C79847}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\AVG Security Toolbar
Key Deleted : HKCU\Software\BI
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKCU\Software\Optimizer Pro
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\AVG Security Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\Fun Web Products
Key Deleted : HKCU\Software\AppDataLow\Software\MyWebSearch
Key Deleted : HKCU\Software\AppDataLow\Software\BS_Player
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Myfree Codec
Key Deleted : HKLM\Software\BS_Player
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16720

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v24.0 (cs)

[ File : C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\orz1adod.default\prefs.js ]

Line Deleted : user_pref("CT1750559.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Deleted : user_pref("CT1750559.CTID", "CT1750559");
Line Deleted : user_pref("CT1750559.CurrentServerDate", "13-6-2010");
Line Deleted : user_pref("CT1750559.DialogsAlignMode", "LTR");
Line Deleted : user_pref("CT1750559.FirstServerDate", "13-6-2010");
Line Deleted : user_pref("CT1750559.FirstTime", true);
Line Deleted : user_pref("CT1750559.FirstTimeFF3", true);
Line Deleted : user_pref("CT1750559.FixPageNotFoundErrors", true);
Line Deleted : user_pref("CT1750559.GroupingServerCheckInterval", 1440);
Line Deleted : user_pref("CT1750559.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Deleted : user_pref("CT1750559.Initialize", true);
Line Deleted : user_pref("CT1750559.InitializeCommonPrefs", true);
Line Deleted : user_pref("CT1750559.InstalledDate", "Sat Jun 12 2010 23:57:38 GMT+0200");
Line Deleted : user_pref("CT1750559.InvalidateCache", false);
Line Deleted : user_pref("CT1750559.IsGrouping", false);
Line Deleted : user_pref("CT1750559.IsMulticommunity", false);
Line Deleted : user_pref("CT1750559.IsOpenThankYouPage", true);
Line Deleted : user_pref("CT1750559.IsOpenUninstallPage", true);
Line Deleted : user_pref("CT1750559.LanguagePackLastCheckTime", "Sat Jun 12 2010 23:57:39 GMT+0200");
Line Deleted : user_pref("CT1750559.LanguagePackReloadIntervalMM", 1440);
Line Deleted : user_pref("CT1750559.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Deleted : user_pref("CT1750559.LastLogin_2.5.6.0", "Sat Jun 12 2010 23:57:38 GMT+0200");
Line Deleted : user_pref("CT1750559.LatestVersion", "2.1.0.18");
Line Deleted : user_pref("CT1750559.Locale", "en-us");
Line Deleted : user_pref("CT1750559.LoginCache", 4);
Line Deleted : user_pref("CT1750559.MCDetectTooltipHeight", "83");
Line Deleted : user_pref("CT1750559.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Deleted : user_pref("CT1750559.MCDetectTooltipWidth", "295");
Line Deleted : user_pref("CT1750559.RadioIsPodcast", false);
Line Deleted : user_pref("CT1750559.RadioLastCheckTime", "Sat Jun 12 2010 23:57:39 GMT+0200");
Line Deleted : user_pref("CT1750559.RadioLastUpdateIPServer", "3");
Line Deleted : user_pref("CT1750559.RadioLastUpdateServer", "128929877726170000");
Line Deleted : user_pref("CT1750559.RadioMediaID", "11237206");
Line Deleted : user_pref("CT1750559.RadioMediaType", "Media Player");
Line Deleted : user_pref("CT1750559.RadioMenuSelectedID", "EBRadioMenu_CT175055911237206");
Line Deleted : user_pref("CT1750559.RadioStationName", "1.FM%20Dance");
Line Deleted : user_pref("CT1750559.RadioStationURL", "hxxp://dance.1.fm/energydance128k?MSWMExt=.asf");
Line Deleted : user_pref("CT1750559.SHRINK_TOOLBAR", 1);
Line Deleted : user_pref("CT1750559.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT1750559&octid=EB_ORIGINAL_CTID&SearchSource=1");
Line Deleted : user_pref("CT1750559.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("CT1750559.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&q=");
Line Deleted : user_pref("CT1750559.SearchInNewTabEnabled", true);
Line Deleted : user_pref("CT1750559.SearchInNewTabIntervalMM", 1440);
Line Deleted : user_pref("CT1750559.SearchInNewTabLastCheckTime", "Sat Jun 12 2010 23:57:39 GMT+0200");
Line Deleted : user_pref("CT1750559.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Line Deleted : user_pref("CT1750559.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Line Deleted : user_pref("CT1750559.SettingsCheckIntervalMin", 120);
Line Deleted : user_pref("CT1750559.SettingsLastCheckTime", "Sat Jun 12 2010 23:57:37 GMT+0200");
Line Deleted : user_pref("CT1750559.SettingsLastUpdate", "1272193463");
Line Deleted : user_pref("CT1750559.ThirdPartyComponentsInterval", 504);
Line Deleted : user_pref("CT1750559.ThirdPartyComponentsLastCheck", "Sat Jun 12 2010 23:57:36 GMT+0200");
Line Deleted : user_pref("CT1750559.ThirdPartyComponentsLastUpdate", "1269531679");
Line Deleted : user_pref("CT1750559.TrusteLinkUrl", "hxxp://www.truste.org/pvr.php?page=validate&so ... sealid=112");
Line Deleted : user_pref("CT1750559.UserID", "UN90970363444661939");
Line Deleted : user_pref("CT1750559.ValidationData_Toolbar", 0);
Line Deleted : user_pref("CT1750559.WeatherNetwork", "");
Line Deleted : user_pref("CT1750559.WeatherPollDate", "Sat Jun 12 2010 23:57:40 GMT+0200");
Line Deleted : user_pref("CT1750559.WeatherUnit", "C");
Line Deleted : user_pref("CT1750559.alertChannelId", "31130");
Line Deleted : user_pref("CT1750559.clientLogIsEnabled", false);
Line Deleted : user_pref("CT1750559.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT1750559.myStuffEnabled", true);
Line Deleted : user_pref("CT1750559.myStuffPublihserMinWidth", 400);
Line Deleted : user_pref("CT1750559.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Deleted : user_pref("CT1750559.myStuffServiceIntervalMM", 1440);
Line Deleted : user_pref("CT1750559.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Deleted : user_pref("CT1750559.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.sweetim.com/search.asp?src=2&q=");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT1750559");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT1750559");
Line Deleted : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT1750559");
Line Deleted : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\FireFoxExt\\15.5.0.2");
Line Deleted : user_pref("avg.userPreferences.URLBarFocus.whiteList", "bing\\.com|google\\.\\w+|yahoo\\.\\w+|gmail\\.\\w+|hotmail\\.\\w+|live\\.\\w+|isearch\\.avg\\.com|mysearch\\.avg\\.com");
Line Deleted : user_pref("browser.search.defaultthis.engineName", "BS Player Customized Web Search");
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=3&q={searchTerms}");

[ File : C:\Users\já\AppData\Roaming\Mozilla\Firefox\Profiles\1d7rpjek.default\prefs.js ]

Line Deleted : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\FireFoxExt\\15.5.0.2");
Line Deleted : user_pref("avg.userPreferences.URLBarFocus.whiteList", "bing\\.com|google\\.\\w+|yahoo\\.\\w+|gmail\\.\\w+|hotmail\\.\\w+|live\\.\\w+|isearch\\.avg\\.com|mysearch\\.avg\\.com");

[ File : C:\Users\Ostatní\AppData\Roaming\Mozilla\Firefox\Profiles\5u75vner.default\prefs.js ]

Line Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Line Deleted : user_pref("browser.search.selectedEngine", "AVG Secure Search");

-\\ Google Chrome v

[ File : C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\já\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [22924 octets] - [28/10/2013 15:41:55]
AdwCleaner[S0].txt - [22573 octets] - [28/10/2013 15:44:05]

########## EOF - \AdwCleaner\AdwCleaner[S0].txt - [22634 octets] ##########

vyosek píše: Trvate na antiviru AVG - u nas neni moc obliben - vysoka zatez systemu, slabsi detekce

Ne netrvám. Je to můj jediný antivir, se kterým jsem se setkal. Pokud mi navrhnete jinou a lepší alternativu, budu jen a jen rád.

Avg je spise parodie na antivir

Odinstalujte Avg

Nainstalujte Avast Free http://www.avast.com/get/gWR5mo92

Dejte log z FRSTLauncheru http://forum.viry.cz/viewtopic.php?f=13&t=133100

Avast nainstalován, jenže FRSTLauncher mi při spuštění hlásí: "Vámi stažený FRST64.exe se nenachází na ploše, přesuňte jej tam prosím a pak znovu spustťe FRSTLauncher. Nevím, co dělám špatně. Jsem přihlášený jako Admin, FRSTLauncher je uložený na ploše, spouštím ho jako správce.

A mate stazeny ten FRST64.exe?? Na plose musi byt jak FRSTLauncher tak FRST64.exe - ctete navod, tam je to napsano co vse musite stahnout

Aha. Myslel jsem, že tou jsou dva na sobě nezávislé programy. Tak tady je log :

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-10-2013
Ran by HP (administrator) on HP-PC on 29-10-2013 11:19:53
Running from C:\Users\HP\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Hewlett-Packard) C:\Windows\system32\Hpservice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Windows\system32\AEADISRV.EXE
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\PSIA.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
() C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
(Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
() C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\accelerometerST.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
(Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Google Inc.) C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
(Google Inc.) C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
(Google Inc.) C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
(Google Inc.) C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
(Google Inc.) C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
(Google Inc.) C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
(Google Inc.) C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
(RealNetworks, Inc.) C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
(Google Inc.) C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Users\já\AppData\Local\Google\Chrome\Application\old_chrome.exe
() C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
() C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
(Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(RealNetworks, Inc.) C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
(forum.viry.cz) C:\Users\HP\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [WrtMon.exe] - C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe [20480 2006-09-20] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2095912 2010-05-14] (Synaptics Incorporated)
HKLM-x32\...\Runonce: [AvgUninstallURL] - cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... =10.0.1432 [x]
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Run: [PC Suite Tray] - C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKCU\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_8_800_168_Plugin.exe -update plugin [815496 2013-09-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SoundMAXPnP] - C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Analog Devices, Inc.)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QlbCtrl.exe] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe [287800 2010-02-25] ( Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\avastui.exe [3567800 2013-10-28] (AVAST Software)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKU\Ostatní\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKU\Ostatní\...\Run: [WebcamMaxAutoRun] - C:\Program Files (x86)\WebcamMax\WebcamMax.exe [6043888 2010-08-03] (CoolwareMax)
HKU\Ostatní\...\Run: [AlcoholAutomount] - "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
HKU\Ostatní\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\Ostatní\...\Run: [KiesHelper] - C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
HKU\Ostatní\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\Ostatní\...\Run: [PC Suite Tray] - C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\Ostatní\...\Run: [Zoner Photo Studio Autoupdate] - C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe [774680 2013-06-07] (ZONER software)
AppInit_DLLs: [774680 2013-06-07] ()
AppInit_DLLs-x32: c:\progra~2\optimi~1\optpro~1.dll [ ] ()
Startup: C:\Users\já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Raptr.lnk
ShortcutTarget: Raptr.lnk -> C:\Program Files (x86)\Raptr\RaptrStub.exe (No File)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x8433FE682CAACA01
URLSearchHook: HKCU - (No Name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - No File
SearchScopes: HKCU - {AB38C6FC-8400-40EF-B1E0-E045791A9CC3} URL = http://www.webhledani.cz/results.aspx?i ... earchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{EFDFB64A-8A35-4589-A2D9-3180B817132D}: [NameServer]10.0.0.1

FireFox:
========
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\orz1adod.default
FF NewTab: user_pref("browser.newtab.url", "");
FF DefaultSearchEngine: user_pref("browser.search.defaultenginename", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 - c:\program files (x86)\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 - c:\program files (x86)\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 - C:\Program Files (x86)\VLC Player\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: DownloadHelper - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\orz1adod.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR Plugin: (Shockwave Flash) - C:\Users\j\u00E1\AppData\Local\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\j\u00E1\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\j\u00E1\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll No File
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\15.5.0\\npsitesafety.dll No File
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VLC Player\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
CHR Plugin: (RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - c:\program files (x86)\Netscape6\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Download Plugin) - c:\program files (x86)\Netscape6\nprpplugin.dll (RealPlayer)
CHR Extension: (Google Docs) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (RealDownloader) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.3_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx
CHR StartMenuInternet: Google Chrome - C:\Users\HP\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 AEADIFilters; C:\Windows\system32\AEADISRV.EXE [111616 2008-07-15] (Andrea Electronics Corporation)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-10-28] (AVAST Software)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1228504 2013-10-14] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [660184 2013-10-14] (Secunia)
S3 AVG Bonjour Service; C:\Windows\TEMP\avgcu_mDNSResponder.exe [x]
S3 AVG Security Toolbar Service; C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe [x]
S4 vToolbarUpdater15.5.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe [x]

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-10-28] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-10-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-28] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-10-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-10-28] (AVAST Software)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [44640 2013-10-28] (The OpenVPN Project)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-10-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-10-28] ()
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-08-16] (AVG Technologies)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 pfc; C:\Windows\SysWow64\drivers\pfc.sys [10368 2004-04-01] (Padus, Inc.)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-10-14] (Secunia)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-09-23] (Duplex Secure Ltd.)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
S2 zntport; C:\Windows\SysWow64\zntport.sys [6080 2001-01-22] (Zeal SoftStudio)
U3 a7ewjstq; C:\Windows\System32\Drivers\a7ewjstq.sys [0 ] (Advanced Micro Devices)
S3 dgderdrv; System32\drivers\dgderdrv.sys [x]
S2 OkiPar64; \SystemRoot\System32\DRIVERS\OKIPAR64.SYS [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-29 11:19 - 2013-10-29 11:19 - 00000000 ____D C:\FRST
2013-10-29 11:08 - 2013-10-29 11:08 - 01956538 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2013-10-29 10:57 - 2013-10-29 10:58 - 00112128 _____ (forum.viry.cz) C:\Users\HP\Desktop\FRSTLauncher.exe
2013-10-28 23:29 - 2013-10-28 23:33 - 00000000 ____D C:\Users\já\Desktop\SPRÁVA POČÍTAČE Z FÓR
2013-10-28 20:24 - 2013-10-28 20:24 - 00000000 ____D C:\Users\já\AppData\Roaming\AVAST Software
2013-10-28 19:42 - 2013-10-28 19:42 - 00000000 ____D C:\Users\HP\AppData\Roaming\AVAST Software
2013-10-28 19:40 - 2013-10-28 19:40 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-10-28 19:40 - 2013-10-28 19:40 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-10-28 19:40 - 2013-10-28 19:40 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-28 19:39 - 2013-10-28 19:39 - 00044640 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\aswTap.sys
2013-10-28 19:38 - 2013-10-28 19:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-10-28 19:37 - 2013-10-28 19:37 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-28 19:29 - 2013-10-28 19:29 - 00000000 ____D C:\Users\HP\AppData\Roaming\TuneUp Software
2013-10-28 19:20 - 2013-10-28 23:58 - 00000000 ____D C:\Users\já\Downloads\Schindlers List (1993) [1080p]
2013-10-28 19:14 - 2013-10-28 19:15 - 00000000 ____D C:\Users\já\Downloads\American.History.X.1998.1080p.BluRay.x264.anoXmous
2013-10-28 19:13 - 2013-10-28 19:20 - 00000000 ____D C:\Users\já\Downloads\American History X 1998 XviD DVDRip
2013-10-28 16:26 - 2013-10-28 17:05 - 00046840 _____ C:\Windows\system32\energy-report.html
2013-10-28 15:41 - 2013-10-28 15:44 - 00000000 ____D C:\AdwCleaner
2013-10-28 15:33 - 2013-10-28 15:33 - 00000628 _____ C:\Users\HP\Desktop\JRT.txt
2013-10-27 12:32 - 2013-10-27 12:33 - 00000000 ____D C:\Users\já\Downloads\ZALOHA NOVA
2013-10-26 21:27 - 2013-10-26 21:27 - 00002129 _____ C:\Users\já\Downloads\komparz buchlovice.txt
2013-10-26 12:29 - 2013-10-27 11:34 - 00000451 _____ C:\Users\já\AppData\Roaming\__AvidCloudManager.log
2013-10-26 12:29 - 2013-10-27 11:34 - 00000000 ____D C:\Users\já\AppData\Local\Avid
2013-10-26 12:29 - 2013-10-27 11:29 - 00000429 _____ C:\Users\já\AppData\Roaming\HP-PC.MTBF.txt
2013-10-26 12:29 - 2013-10-26 18:06 - 00000297 _____ C:\Users\já\AppData\Roaming\__AvidCloudManagerPrevious.log
2013-10-26 12:25 - 2013-10-26 12:25 - 00000772 _____ C:\Users\HP\AppData\Roaming\__AvidCloudManager.log
2013-10-26 12:25 - 2013-10-26 12:25 - 00000221 _____ C:\Users\HP\AppData\Roaming\HP-PC.MTBF.txt
2013-10-26 12:25 - 2013-10-26 12:25 - 00000000 ____D C:\Users\HP\Documents\InstantCDDVD
2013-10-26 12:24 - 2013-10-26 12:25 - 00000000 ____D C:\Users\HP\AppData\Local\Avid
2013-10-26 12:20 - 2013-10-26 12:20 - 00002206 _____ C:\Users\Public\Desktop\Pinnacle Studio 16.lnk
2013-10-26 12:03 - 2013-10-26 12:04 - 00018359 _____ C:\Windows\DirectX.log
2013-10-26 12:01 - 2013-10-26 12:05 - 00000000 ____D C:\ProgramData\Avid
2013-10-26 11:10 - 2013-10-26 11:59 - 00000000 ____D C:\Users\já\AppData\Roaming\avidemux
2013-10-26 10:58 - 2013-10-26 11:09 - 00000000 ____D C:\Users\HP\AppData\Roaming\avidemux
2013-10-26 10:58 - 2013-10-26 10:58 - 00000997 _____ C:\Users\Public\Desktop\Avidemux 2.6 (32-bit).lnk
2013-10-26 10:58 - 2013-10-26 10:58 - 00000000 ____D C:\Program Files (x86)\Avidemux 2.6
2013-10-26 10:21 - 2013-10-26 10:21 - 00000000 ____D C:\Program Files (x86)\Sony
2013-10-25 17:53 - 2013-10-25 17:53 - 00008536 _____ C:\Users\já\Downloads\penam.aup
2013-10-25 17:53 - 2013-10-25 17:53 - 00000000 ____D C:\Users\já\Downloads\penam_data
2013-10-24 07:02 - 2013-10-27 19:29 - 00003350 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-481945695-2898495593-1938971302-1006
2013-10-24 00:23 - 2013-10-24 00:40 - 00000000 ____D C:\Users\já\Downloads\ZÁLOHA MÁMA
2013-10-23 22:12 - 2013-10-26 21:09 - 00000000 ____D C:\Program Files\Recuva
2013-10-23 22:12 - 2013-10-23 22:12 - 00001658 _____ C:\Users\Public\Desktop\Recuva.lnk
2013-10-23 17:38 - 2013-10-23 17:39 - 00281984 _____ C:\Windows\Minidump\102313-39780-01.dmp
2013-10-23 09:27 - 2013-10-27 21:01 - 00003328 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-481945695-2898495593-1938971302-1006
2013-10-22 18:09 - 2013-10-22 19:51 - 00000000 ____D C:\Users\já\Desktop\Problémy s PC
2013-10-22 16:17 - 2013-10-27 21:01 - 00003188 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-481945695-2898495593-1938971302-1006
2013-10-22 10:25 - 2013-10-22 10:25 - 00011456 _____ C:\Users\já\Downloads\akapela michal.aup
2013-10-22 10:25 - 2013-10-22 10:25 - 00000000 ____D C:\Users\já\Downloads\akapela michal_data
2013-10-22 09:22 - 2013-10-22 09:22 - 00281984 _____ C:\Windows\Minidump\102213-106174-01.dmp
2013-10-18 12:55 - 2013-10-18 12:57 - 00000000 ____D C:\Users\Ostatní\AppData\Roaming\DAEMON Tools Lite
2013-10-18 12:55 - 2013-10-18 12:55 - 00003338 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-481945695-2898495593-1938971302-1007
2013-10-18 12:55 - 2013-10-18 12:55 - 00003208 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-481945695-2898495593-1938971302-1007
2013-10-18 12:55 - 2013-10-18 12:55 - 00000000 ____D C:\Users\Ostatní\AppData\Roaming\WebcamMax
2013-10-18 12:55 - 2013-10-18 12:55 - 00000000 ____D C:\Users\Ostatní\AppData\Roaming\Nokia
2013-10-18 12:55 - 2013-10-18 12:55 - 00000000 ____D C:\Users\Ostatní\AppData\Roaming\Apple Computer
2013-10-18 12:55 - 2013-10-18 12:55 - 00000000 _____ C:\Users\Ostatní\AppData\Local\QSwitch.txt
2013-10-18 12:55 - 2013-10-18 12:55 - 00000000 _____ C:\Users\Ostatní\AppData\Local\DSwitch.txt
2013-10-18 12:55 - 2013-10-18 12:55 - 00000000 _____ C:\Users\Ostatní\AppData\Local\AtStart.txt
2013-10-16 00:22 - 2013-10-16 00:22 - 00000000 ____D C:\Users\já\AppData\Roaming\Malwarebytes
2013-10-15 23:52 - 2013-10-15 23:52 - 00002533 _____ C:\Users\Public\Desktop\Skype.lnk
2013-10-15 23:52 - 2013-10-15 23:52 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-15 23:46 - 2013-10-15 23:46 - 00000950 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-10-15 23:44 - 2013-10-15 23:45 - 92206567 _____ C:\Users\HP\Downloads\AdobePhotoshop12_5-mul-AdobeUpdate(1).zip
2013-10-15 23:41 - 2013-10-15 23:41 - 00000000 ____D C:\ProgramData\Apple Computer
2013-10-15 23:40 - 2013-10-15 23:40 - 92206567 _____ C:\Users\HP\Downloads\AdobePhotoshop12_5-mul-AdobeUpdate.zip
2013-10-15 23:37 - 2013-10-17 16:38 - 00000000 ____D C:\Program Files (x86)\MALWAREBYTES ANTI-MALWARE
2013-10-15 23:36 - 2013-10-15 23:36 - 00001069 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-10-15 23:36 - 2013-10-15 23:36 - 00000000 ____D C:\Users\HP\AppData\Roaming\Malwarebytes
2013-10-15 23:36 - 2013-10-15 23:36 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-15 23:36 - 2013-10-15 23:36 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-15 23:36 - 2013-04-04 13:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-15 23:25 - 2013-10-15 23:25 - 00000000 ____D C:\Users\HP\AppData\Local\Secunia PSI
2013-10-15 23:24 - 2013-10-15 23:24 - 00000000 ____D C:\Program Files (x86)\Secunia
2013-10-15 23:12 - 2013-10-15 23:30 - 00000000 ____D C:\Program Files (x86)\Driver Cleaner
2013-10-15 23:12 - 2013-10-15 23:12 - 00001899 _____ C:\Users\Ostatní\Desktop\Driver Cleaner 3.lnk
2013-10-15 23:12 - 2013-10-15 23:12 - 00001899 _____ C:\Users\já\Desktop\Driver Cleaner 3.lnk
2013-10-15 23:12 - 2013-10-15 23:12 - 00001899 _____ C:\Users\HP\Desktop\Driver Cleaner 3.lnk
2013-10-15 23:12 - 2013-10-15 23:12 - 00000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Cleaner 3
2013-10-15 00:26 - 2013-10-15 08:43 - 00002110 _____ C:\Users\já\Desktop\Chrome.lnk
2013-10-14 19:24 - 2013-10-14 19:25 - 05319248 _____ C:\Users\já\Downloads\WhatsApp_2_11_107.sis
2013-10-14 19:09 - 2013-10-14 19:09 - 00001584 _____ C:\Users\já\Desktop\avg infekce.csv
2013-10-14 16:42 - 2013-10-14 16:42 - 00002920 _____ C:\Windows\System32\Tasks\{3F883F41-C2AC-46AB-B5F1-5ADABDE76F66}
2013-10-14 16:38 - 2013-10-28 11:47 - 00000000 ____D C:\Program Files\trend micro
2013-10-14 16:38 - 2013-10-14 16:38 - 00000000 ____D C:\rsit
2013-10-14 11:04 - 2013-10-14 11:04 - 00018456 _____ (Secunia) C:\Windows\system32\Drivers\psi_mf_amd64.sys
2013-10-11 08:29 - 2013-10-14 22:08 - 00000098 _____ C:\Users\já\Downloads\fbmail.txt
2013-10-11 00:07 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 00:07 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 00:07 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-11 00:07 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 00:07 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 00:07 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 00:07 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 00:07 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 00:07 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 00:07 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 00:07 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 00:07 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 00:07 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 00:07 - 2013-09-22 23:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 00:07 - 2013-09-22 23:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 00:07 - 2013-09-22 23:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 00:07 - 2013-09-22 23:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 00:07 - 2013-09-22 23:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 00:07 - 2013-09-22 23:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 00:07 - 2013-09-22 23:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 00:07 - 2013-09-22 23:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 00:07 - 2013-09-22 23:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 00:07 - 2013-09-22 23:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 00:07 - 2013-09-22 23:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 00:07 - 2013-09-22 23:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 00:07 - 2013-09-22 23:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 00:07 - 2013-09-22 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 00:07 - 2013-09-21 04:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 00:07 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 00:07 - 2013-09-21 03:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 00:07 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-10 09:17 - 2013-09-14 02:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 09:17 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 09:17 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 09:17 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 09:17 - 2013-07-12 11:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-10 09:17 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 09:17 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 09:17 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 09:17 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 09:17 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 09:17 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 09:17 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 09:17 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 09:17 - 2013-07-03 05:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-10 09:17 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 09:17 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 09:17 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 09:17 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 09:17 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 09:17 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 09:17 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 09:17 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 09:17 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 09:17 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 09:17 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 09:17 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 09:17 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 09:15 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 09:15 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 09:15 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 09:15 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 09:15 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 09:15 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 09:15 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 09:15 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 09:15 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 09:15 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 09:15 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 09:15 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 09:15 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 09:15 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 09:15 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 09:15 - 2013-08-28 02:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 09:15 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 09:15 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 09:15 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 09:13 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-09 13:19 - 2013-10-09 13:19 - 00319488 _____ C:\Users\já\Downloads\kaligram2.indd
2013-10-09 12:45 - 2013-10-09 12:45 - 00290816 _____ C:\Users\já\Downloads\kaligram.indd
2013-10-06 17:58 - 2013-10-06 17:58 - 00002978 _____ C:\Windows\System32\Tasks\{CB9F809D-40F9-4EA5-9543-5AB831C90757}
2013-10-06 17:58 - 2013-10-06 17:58 - 00002978 _____ C:\Windows\System32\Tasks\{C4052C5C-2CC3-43C0-AD9A-EC1D6043A0A3}
2013-10-06 17:04 - 2013-10-13 10:55 - 00000000 ____D C:\Users\já\Downloads\žák zlato
2013-10-05 19:33 - 2013-10-05 19:33 - 00002978 _____ C:\Windows\System32\Tasks\{E6B69356-82F1-44F9-997E-954205EE7420}
2013-10-05 19:33 - 2013-10-05 19:33 - 00002978 _____ C:\Windows\System32\Tasks\{8B32D005-8DEE-4D05-9520-402A54606225}
2013-10-05 19:33 - 2013-10-05 19:33 - 00002978 _____ C:\Windows\System32\Tasks\{2ADF4ECC-F5D8-44B7-8F6C-4B0209CFA34B}
2013-10-05 19:33 - 2013-10-05 19:33 - 00002978 _____ C:\Windows\System32\Tasks\{202F345D-39D1-43DA-AF0A-6C72DD5B527A}
2013-10-05 19:05 - 2013-10-05 19:05 - 00002978 _____ C:\Windows\System32\Tasks\{47F5E904-EC94-4F04-B786-35A433348099}
2013-10-05 19:05 - 2013-10-05 19:05 - 00002978 _____ C:\Windows\System32\Tasks\{3BD3B031-BEFC-4B15-9A2E-980D5350CDB3}
2013-10-05 19:04 - 2013-10-05 19:04 - 00002978 _____ C:\Windows\System32\Tasks\{3265FF5A-7EBC-4AFD-8572-4EEB48B28039}
2013-10-05 18:54 - 2013-10-05 18:54 - 00002978 _____ C:\Windows\System32\Tasks\{302CC136-DF68-4A96-B205-A086954D4B3C}
2013-10-05 18:53 - 2013-10-05 18:53 - 00002978 _____ C:\Windows\System32\Tasks\{ACDA2AF5-5FB2-41F5-A4E2-065F6DFB18A4}
2013-10-05 18:53 - 2013-10-05 18:53 - 00002978 _____ C:\Windows\System32\Tasks\{89D6CE33-E533-40CA-A433-A115ED5C32B4}
2013-10-05 18:53 - 2013-10-05 18:53 - 00002978 _____ C:\Windows\System32\Tasks\{02350739-C935-493F-BDFC-F3510D84C123}
2013-10-05 18:52 - 2013-10-05 18:52 - 00002978 _____ C:\Windows\System32\Tasks\{D3691E26-26A4-4EF6-B5F4-2A8CC9D16F36}
2013-10-05 18:52 - 2013-10-05 18:52 - 00002978 _____ C:\Windows\System32\Tasks\{7FF7BD74-E477-4289-B7DD-465AA52FB5F4}
2013-10-05 18:51 - 2013-10-05 18:51 - 00002978 _____ C:\Windows\System32\Tasks\{1E731399-4BA3-4D66-B677-156090252431}
2013-10-05 18:50 - 2013-10-05 18:50 - 00002978 _____ C:\Windows\System32\Tasks\{E31E1DBA-4785-4D37-AEB8-DCC23E8DAD59}
2013-10-05 18:50 - 2013-10-05 18:50 - 00002978 _____ C:\Windows\System32\Tasks\{9CE65DCF-7CC8-4C95-AE0F-A32A0E21DDC0}
2013-10-05 17:36 - 2013-10-05 17:36 - 00002294 _____ C:\Users\HP\Desktop\Google Chrome.lnk
2013-10-05 17:36 - 2013-10-05 17:36 - 00000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-10-05 17:35 - 2013-10-05 17:35 - 00000000 _____ C:\Users\já\regbcm
2013-10-03 19:22 - 2013-10-03 19:22 - 00000019 _____ C:\Users\já\Downloads\rhfjfh.txt
2013-10-02 18:42 - 2013-10-21 08:54 - 00000000 ____D C:\Users\já\Downloads\AGENTURA BLECHOVÁ
2013-10-02 12:15 - 2013-10-02 12:15 - 21857574 _____ C:\Users\HP\Desktop\_VI_1276.AVI
2013-10-02 12:14 - 2013-10-02 12:14 - 53305368 _____ C:\Users\HP\Desktop\_VI_1275.AVI
2013-09-29 19:11 - 2013-09-29 19:11 - 00000000 ____D C:\Program Files (x86)\astrojargon.net

==================== One Month Modified Files and Folders =======

2013-10-29 11:19 - 2013-10-29 11:19 - 00000000 ____D C:\FRST
2013-10-29 11:16 - 2010-03-11 11:15 - 00000944 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-29 11:16 - 2010-03-11 11:15 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-29 11:13 - 2012-05-29 22:11 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-29 11:08 - 2013-10-29 11:08 - 01956538 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2013-10-29 11:08 - 2011-05-18 17:33 - 00000950 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006UA.job
2013-10-29 10:59 - 2010-02-05 13:17 - 01283455 _____ C:\Windows\WindowsUpdate.log
2013-10-29 10:58 - 2013-10-29 10:57 - 00112128 _____ (forum.viry.cz) C:\Users\HP\Desktop\FRSTLauncher.exe
2013-10-29 10:58 - 2010-02-10 09:42 - 00000000 ____D C:\Users\HP\AppData\Local\Mozilla
2013-10-29 10:56 - 2009-07-14 05:45 - 00015344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-29 10:56 - 2009-07-14 05:45 - 00015344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-29 10:55 - 2013-01-21 16:27 - 00000354 _____ C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job
2013-10-29 10:55 - 2009-07-14 16:18 - 00666672 _____ C:\Windows\system32\perfh005.dat
2013-10-29 10:55 - 2009-07-14 16:18 - 00141272 _____ C:\Windows\system32\perfc005.dat
2013-10-29 10:55 - 2009-07-14 06:13 - 01578442 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-29 10:48 - 2013-09-07 08:49 - 00027605 _____ C:\Windows\setupact.log
2013-10-29 10:48 - 2013-09-07 08:48 - 00020450 _____ C:\Windows\PFRO.log
2013-10-29 10:48 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-29 10:47 - 2010-10-02 18:28 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-29 10:47 - 2009-07-14 03:34 - 00000523 _____ C:\Windows\win.ini
2013-10-29 10:46 - 2010-02-15 19:04 - 00000000 ____D C:\Users\já\AppData\Local\Adobe
2013-10-29 10:39 - 2010-02-10 10:34 - 00000000 ____D C:\Users\já
2013-10-29 00:45 - 2010-08-06 22:36 - 00000000 ____D C:\Users\já\AppData\Roaming\uTorrent
2013-10-28 23:58 - 2013-10-28 19:20 - 00000000 ____D C:\Users\já\Downloads\Schindlers List (1993) [1080p]
2013-10-28 23:33 - 2013-10-28 23:29 - 00000000 ____D C:\Users\já\Desktop\SPRÁVA POČÍTAČE Z FÓR
2013-10-28 23:08 - 2011-05-18 17:33 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006Core.job
2013-10-28 21:18 - 2010-08-06 14:46 - 00000000 ____D C:\Users\já\AppData\Roaming\vlc
2013-10-28 21:17 - 2013-04-16 21:59 - 00000000 ____D C:\Users\já\Downloads\FILMY JAKO PRASE
2013-10-28 20:27 - 2011-01-18 17:43 - 00000000 ____D C:\Users\já\AppData\Roaming\foobar2000
2013-10-28 20:24 - 2013-10-28 20:24 - 00000000 ____D C:\Users\já\AppData\Roaming\AVAST Software
2013-10-28 19:42 - 2013-10-28 19:42 - 00000000 ____D C:\Users\HP\AppData\Roaming\AVAST Software
2013-10-28 19:40 - 2013-10-28 19:40 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-10-28 19:40 - 2013-10-28 19:40 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-10-28 19:40 - 2013-10-28 19:40 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-10-28 19:40 - 2013-10-28 19:40 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-28 19:39 - 2013-10-28 19:39 - 00044640 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\aswTap.sys
2013-10-28 19:38 - 2013-10-28 19:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-10-28 19:37 - 2013-10-28 19:37 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-28 19:37 - 2010-02-05 15:05 - 00144488 _____ C:\Users\HP\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-28 19:35 - 2010-03-15 13:41 - 00000000 ____D C:\Program Files (x86)\AVG
2013-10-28 19:35 - 2010-02-05 13:17 - 00000000 ____D C:\Users\HP
2013-10-28 19:33 - 2010-12-11 18:24 - 00000000 ____D C:\ProgramData\AVG10
2013-10-28 19:33 - 2010-12-11 17:52 - 00000000 ____D C:\ProgramData\MFAData
2013-10-28 19:30 - 2010-12-11 18:24 - 00000000 ____D C:\Windows\system32\Drivers\AVG
2013-10-28 19:29 - 2013-10-28 19:29 - 00000000 ____D C:\Users\HP\AppData\Roaming\TuneUp Software
2013-10-28 19:20 - 2013-10-28 19:13 - 00000000 ____D C:\Users\já\Downloads\American History X 1998 XviD DVDRip
2013-10-28 19:15 - 2013-10-28 19:14 - 00000000 ____D C:\Users\já\Downloads\American.History.X.1998.1080p.BluRay.x264.anoXmous
2013-10-28 17:05 - 2013-10-28 16:26 - 00046840 _____ C:\Windows\system32\energy-report.html
2013-10-28 15:44 - 2013-10-28 15:41 - 00000000 ____D C:\AdwCleaner
2013-10-28 15:33 - 2013-10-28 15:33 - 00000628 _____ C:\Users\HP\Desktop\JRT.txt
2013-10-28 11:47 - 2013-10-14 16:38 - 00000000 ____D C:\Program Files\trend micro
2013-10-28 11:20 - 2010-04-05 11:17 - 00000000 ____D C:\Users\Ostatní
2013-10-27 21:01 - 2013-10-23 09:27 - 00003328 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-481945695-2898495593-1938971302-1006
2013-10-27 21:01 - 2013-10-22 16:17 - 00003188 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-481945695-2898495593-1938971302-1006
2013-10-27 19:29 - 2013-10-24 07:02 - 00003350 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-481945695-2898495593-1938971302-1006
2013-10-27 19:29 - 2013-08-26 09:55 - 00003210 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-481945695-2898495593-1938971302-1006
2013-10-27 12:33 - 2013-10-27 12:32 - 00000000 ____D C:\Users\já\Downloads\ZALOHA NOVA
2013-10-27 12:19 - 2010-11-25 18:31 - 01557664 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-27 12:15 - 2010-01-22 23:04 - 00000689 _____ C:\Windows\m3jpeg.ini
2013-10-27 11:36 - 2012-11-23 19:58 - 00000000 ____D C:\Users\já\AppData\Local\CrashDumps
2013-10-27 11:34 - 2013-10-26 12:29 - 00000451 _____ C:\Users\já\AppData\Roaming\__AvidCloudManager.log
2013-10-27 11:34 - 2013-10-26 12:29 - 00000000 ____D C:\Users\já\AppData\Local\Avid
2013-10-27 11:34 - 2010-03-01 16:22 - 00000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2013-10-27 11:29 - 2013-10-26 12:29 - 00000429 _____ C:\Users\já\AppData\Roaming\HP-PC.MTBF.txt
2013-10-26 22:50 - 2010-07-25 11:36 - 00000000 ____D C:\Users\já\AppData\Roaming\Skype
2013-10-26 21:27 - 2013-10-26 21:27 - 00002129 _____ C:\Users\já\Downloads\komparz buchlovice.txt
2013-10-26 21:09 - 2013-10-23 22:12 - 00000000 ____D C:\Program Files\Recuva
2013-10-26 18:43 - 2011-09-15 14:42 - 00000000 ____D C:\Users\já\AppData\Roaming\Audacity
2013-10-26 18:06 - 2013-10-26 12:29 - 00000297 _____ C:\Users\já\AppData\Roaming\__AvidCloudManagerPrevious.log
2013-10-26 12:25 - 2013-10-26 12:25 - 00000772 _____ C:\Users\HP\AppData\Roaming\__AvidCloudManager.log
2013-10-26 12:25 - 2013-10-26 12:25 - 00000221 _____ C:\Users\HP\AppData\Roaming\HP-PC.MTBF.txt
2013-10-26 12:25 - 2013-10-26 12:25 - 00000000 ____D C:\Users\HP\Documents\InstantCDDVD
2013-10-26 12:25 - 2013-10-26 12:24 - 00000000 ____D C:\Users\HP\AppData\Local\Avid
2013-10-26 12:20 - 2013-10-26 12:20 - 00002206 _____ C:\Users\Public\Desktop\Pinnacle Studio 16.lnk
2013-10-26 12:17 - 2013-07-26 00:32 - 00000000 ____D C:\Program Files (x86)\Pinnacle
2013-10-26 12:05 - 2013-10-26 12:01 - 00000000 ____D C:\ProgramData\Avid
2013-10-26 12:04 - 2013-10-26 12:03 - 00018359 _____ C:\Windows\DirectX.log
2013-10-26 11:59 - 2013-10-26 11:10 - 00000000 ____D C:\Users\já\AppData\Roaming\avidemux
2013-10-26 11:59 - 2010-03-01 16:23 - 00000000 ____D C:\Users\HP\AppData\Local\Pinnacle
2013-10-26 11:58 - 2010-02-11 16:48 - 00000000 ____D C:\Users\HP\AppData\Local\Downloaded Installations
2013-10-26 11:09 - 2013-10-26 10:58 - 00000000 ____D C:\Users\HP\AppData\Roaming\avidemux
2013-10-26 10:58 - 2013-10-26 10:58 - 00000997 _____ C:\Users\Public\Desktop\Avidemux 2.6 (32-bit).lnk
2013-10-26 10:58 - 2013-10-26 10:58 - 00000000 ____D C:\Program Files (x86)\Avidemux 2.6
2013-10-26 10:23 - 2010-04-28 10:29 - 00000000 ____D C:\Users\já\AppData\Roaming\Sony
2013-10-26 10:21 - 2013-10-26 10:21 - 00000000 ____D C:\Program Files (x86)\Sony
2013-10-26 10:20 - 2010-04-28 13:29 - 00000000 ____D C:\Users\HP\AppData\Roaming\Sony
2013-10-25 17:53 - 2013-10-25 17:53 - 00008536 _____ C:\Users\já\Downloads\penam.aup
2013-10-25 17:53 - 2013-10-25 17:53 - 00000000 ____D C:\Users\já\Downloads\penam_data
2013-10-24 00:40 - 2013-10-24 00:23 - 00000000 ____D C:\Users\já\Downloads\ZÁLOHA MÁMA
2013-10-23 22:21 - 2013-05-30 13:22 - 00000000 ____D C:\Users\já\Downloads\AUTO
2013-10-23 22:12 - 2013-10-23 22:12 - 00001658 _____ C:\Users\Public\Desktop\Recuva.lnk
2013-10-23 17:39 - 2013-10-23 17:38 - 00281984 _____ C:\Windows\Minidump\102313-39780-01.dmp
2013-10-23 17:38 - 2010-10-28 11:25 - 00000000 ____D C:\Windows\Minidump
2013-10-22 19:51 - 2013-10-22 18:09 - 00000000 ____D C:\Users\já\Desktop\Problémy s PC
2013-10-22 10:25 - 2013-10-22 10:25 - 00011456 _____ C:\Users\já\Downloads\akapela michal.aup
2013-10-22 10:25 - 2013-10-22 10:25 - 00000000 ____D C:\Users\já\Downloads\akapela michal_data
2013-10-22 09:32 - 2013-07-30 05:51 - 00000000 ____D C:\Windows\system32\MRT
2013-10-22 09:28 - 2010-02-05 14:52 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-22 09:22 - 2013-10-22 09:22 - 00281984 _____ C:\Windows\Minidump\102213-106174-01.dmp
2013-10-21 08:54 - 2013-10-02 18:42 - 00000000 ____D C:\Users\já\Downloads\AGENTURA BLECHOVÁ
2013-10-18 12:57 - 2013-10-18 12:55 - 00000000 ____D C:\Users\Ostatní\AppData\Roaming\DAEMON Tools Lite
2013-10-18 12:57 - 2010-04-05 11:18 - 00000000 ____D C:\Users\Ostatní\AppData\Local\Zoner
2013-10-18 12:55 - 2013-10-18 12:55 - 00003338 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-481945695-2898495593-1938971302-1007
2013-10-18 12:55 - 2013-10-18 12:55 - 00003208 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-481945695-2898495593-1938971302-1007
2013-10-18 12:55 - 2013-10-18 12:55 - 00000000 ____D C:\Users\Ostatní\AppData\Roaming\WebcamMax
2013-10-18 12:55 - 2013-10-18 12:55 - 00000000 ____D C:\Users\Ostatní\AppData\Roaming\Nokia
2013-10-18 12:55 - 2013-10-18 12:55 - 00000000 ____D C:\Users\Ostatní\AppData\Roaming\Apple Computer
2013-10-18 12:55 - 2013-10-18 12:55 - 00000000 _____ C:\Users\Ostatní\AppData\Local\QSwitch.txt
2013-10-18 12:55 - 2013-10-18 12:55 - 00000000 _____ C:\Users\Ostatní\AppData\Local\DSwitch.txt
2013-10-18 12:55 - 2013-10-18 12:55 - 00000000 _____ C:\Users\Ostatní\AppData\Local\AtStart.txt
2013-10-18 12:55 - 2010-04-05 11:17 - 00001393 _____ C:\Users\Ostatní\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-18 12:55 - 2010-04-05 11:17 - 00000000 ___RD C:\Users\Ostatní\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-18 12:55 - 2010-04-05 11:17 - 00000000 ___RD C:\Users\Ostatní\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-17 16:38 - 2013-10-15 23:37 - 00000000 ____D C:\Program Files (x86)\MALWAREBYTES ANTI-MALWARE
2013-10-17 16:38 - 2010-02-10 10:35 - 00000000 ____D C:\Users\já\AppData\Local\Mozilla
2013-10-16 00:34 - 2012-10-13 09:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-16 00:22 - 2013-10-16 00:22 - 00000000 ____D C:\Users\já\AppData\Roaming\Malwarebytes
2013-10-15 23:52 - 2013-10-15 23:52 - 00002533 _____ C:\Users\Public\Desktop\Skype.lnk
2013-10-15 23:52 - 2013-10-15 23:52 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-15 23:52 - 2010-07-29 15:55 - 00000000 ____D C:\Users\HP\AppData\Roaming\Skype
2013-10-15 23:52 - 2010-07-25 11:36 - 00000000 ____D C:\ProgramData\Skype
2013-10-15 23:51 - 2012-02-01 01:00 - 00001107 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-15 23:50 - 2013-09-11 19:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-15 23:46 - 2013-10-15 23:46 - 00000950 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-10-15 23:46 - 2013-09-06 20:04 - 00000000 ____D C:\Program Files (x86)\VLC Player
2013-10-15 23:45 - 2013-10-15 23:44 - 92206567 _____ C:\Users\HP\Downloads\AdobePhotoshop12_5-mul-AdobeUpdate(1).zip
2013-10-15 23:42 - 2013-07-25 11:21 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-10-15 23:41 - 2013-10-15 23:41 - 00000000 ____D C:\ProgramData\Apple Computer
2013-10-15 23:40 - 2013-10-15 23:40 - 92206567 _____ C:\Users\HP\Downloads\AdobePhotoshop12_5-mul-AdobeUpdate.zip
2013-10-15 23:36 - 2013-10-15 23:36 - 00001069 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-10-15 23:36 - 2013-10-15 23:36 - 00000000 ____D C:\Users\HP\AppData\Roaming\Malwarebytes
2013-10-15 23:36 - 2013-10-15 23:36 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-15 23:36 - 2013-10-15 23:36 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-15 23:30 - 2013-10-15 23:12 - 00000000 ____D C:\Program Files (x86)\Driver Cleaner
2013-10-15 23:25 - 2013-10-15 23:25 - 00000000 ____D C:\Users\HP\AppData\Local\Secunia PSI
2013-10-15 23:24 - 2013-10-15 23:24 - 00000000 ____D C:\Program Files (x86)\Secunia
2013-10-15 23:12 - 2013-10-15 23:12 - 00001899 _____ C:\Users\Ostatní\Desktop\Driver Cleaner 3.lnk
2013-10-15 23:12 - 2013-10-15 23:12 - 00001899 _____ C:\Users\já\Desktop\Driver Cleaner 3.lnk
2013-10-15 23:12 - 2013-10-15 23:12 - 00001899 _____ C:\Users\HP\Desktop\Driver Cleaner 3.lnk
2013-10-15 23:12 - 2013-10-15 23:12 - 00000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Cleaner 3
2013-10-15 22:03 - 2011-05-18 17:33 - 00003914 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006UA
2013-10-15 22:03 - 2011-05-18 17:33 - 00003518 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006Core
2013-10-15 18:24 - 2010-02-10 11:49 - 00000000 ____D C:\Users\já\Documents\SONGS
2013-10-15 08:43 - 2013-10-15 00:26 - 00002110 _____ C:\Users\já\Desktop\Chrome.lnk
2013-10-14 23:51 - 2010-03-11 11:15 - 00000000 ____D C:\Users\já\AppData\Local\Google
2013-10-14 22:08 - 2013-10-11 08:29 - 00000098 _____ C:\Users\já\Downloads\fbmail.txt
2013-10-14 19:25 - 2013-10-14 19:24 - 05319248 _____ C:\Users\já\Downloads\WhatsApp_2_11_107.sis
2013-10-14 19:09 - 2013-10-14 19:09 - 00001584 _____ C:\Users\já\Desktop\avg infekce.csv
2013-10-14 16:42 - 2013-10-14 16:42 - 00002920 _____ C:\Windows\System32\Tasks\{3F883F41-C2AC-46AB-B5F1-5ADABDE76F66}
2013-10-14 16:38 - 2013-10-14 16:38 - 00000000 ____D C:\rsit
2013-10-14 11:04 - 2013-10-14 11:04 - 00018456 _____ (Secunia) C:\Windows\system32\Drivers\psi_mf_amd64.sys
2013-10-13 10:55 - 2013-10-06 17:04 - 00000000 ____D C:\Users\já\Downloads\žák zlato
2013-10-13 10:11 - 2010-03-11 11:15 - 00003940 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-13 10:11 - 2010-03-11 11:15 - 00003688 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-12 09:12 - 2012-11-23 17:57 - 00000000 ____D C:\Users\já\dwhelper
2013-10-11 18:46 - 2012-06-27 21:27 - 00000000 ____D C:\Windows\rescache
2013-10-11 08:12 - 2009-07-14 05:45 - 05110160 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-09 13:19 - 2013-10-09 13:19 - 00319488 _____ C:\Users\já\Downloads\kaligram2.indd
2013-10-09 12:45 - 2013-10-09 12:45 - 00290816 _____ C:\Users\já\Downloads\kaligram.indd
2013-10-08 10:39 - 2010-02-10 13:24 - 00000000 ____D C:\Users\já\Downloads\BICÍ
2013-10-08 01:56 - 2010-02-10 20:55 - 00000000 ____D C:\Windows\System32\Tasks\Games
2013-10-06 17:58 - 2013-10-06 17:58 - 00002978 _____ C:\Windows\System32\Tasks\{CB9F809D-40F9-4EA5-9543-5AB831C90757}
2013-10-06 17:58 - 2013-10-06 17:58 - 00002978 _____ C:\Windows\System32\Tasks\{C4052C5C-2CC3-43C0-AD9A-EC1D6043A0A3}
2013-10-05 19:33 - 2013-10-05 19:33 - 00002978 _____ C:\Windows\System32\Tasks\{E6B69356-82F1-44F9-997E-954205EE7420}
2013-10-05 19:33 - 2013-10-05 19:33 - 00002978 _____ C:\Windows\System32\Tasks\{8B32D005-8DEE-4D05-9520-402A54606225}
2013-10-05 19:33 - 2013-10-05 19:33 - 00002978 _____ C:\Windows\System32\Tasks\{2ADF4ECC-F5D8-44B7-8F6C-4B0209CFA34B}
2013-10-05 19:33 - 2013-10-05 19:33 - 00002978 _____ C:\Windows\System32\Tasks\{202F345D-39D1-43DA-AF0A-6C72DD5B527A}
2013-10-05 19:05 - 2013-10-05 19:05 - 00002978 _____ C:\Windows\System32\Tasks\{47F5E904-EC94-4F04-B786-35A433348099}
2013-10-05 19:05 - 2013-10-05 19:05 - 00002978 _____ C:\Windows\System32\Tasks\{3BD3B031-BEFC-4B15-9A2E-980D5350CDB3}
2013-10-05 19:04 - 2013-10-05 19:04 - 00002978 _____ C:\Windows\System32\Tasks\{3265FF5A-7EBC-4AFD-8572-4EEB48B28039}
2013-10-05 18:54 - 2013-10-05 18:54 - 00002978 _____ C:\Windows\System32\Tasks\{302CC136-DF68-4A96-B205-A086954D4B3C}
2013-10-05 18:53 - 2013-10-05 18:53 - 00002978 _____ C:\Windows\System32\Tasks\{ACDA2AF5-5FB2-41F5-A4E2-065F6DFB18A4}
2013-10-05 18:53 - 2013-10-05 18:53 - 00002978 _____ C:\Windows\System32\Tasks\{89D6CE33-E533-40CA-A433-A115ED5C32B4}
2013-10-05 18:53 - 2013-10-05 18:53 - 00002978 _____ C:\Windows\System32\Tasks\{02350739-C935-493F-BDFC-F3510D84C123}
2013-10-05 18:52 - 2013-10-05 18:52 - 00002978 _____ C:\Windows\System32\Tasks\{D3691E26-26A4-4EF6-B5F4-2A8CC9D16F36}
2013-10-05 18:52 - 2013-10-05 18:52 - 00002978 _____ C:\Windows\System32\Tasks\{7FF7BD74-E477-4289-B7DD-465AA52FB5F4}
2013-10-05 18:51 - 2013-10-05 18:51 - 00002978 _____ C:\Windows\System32\Tasks\{1E731399-4BA3-4D66-B677-156090252431}
2013-10-05 18:50 - 2013-10-05 18:50 - 00002978 _____ C:\Windows\System32\Tasks\{E31E1DBA-4785-4D37-AEB8-DCC23E8DAD59}
2013-10-05 18:50 - 2013-10-05 18:50 - 00002978 _____ C:\Windows\System32\Tasks\{9CE65DCF-7CC8-4C95-AE0F-A32A0E21DDC0}
2013-10-05 17:36 - 2013-10-05 17:36 - 00002294 _____ C:\Users\HP\Desktop\Google Chrome.lnk
2013-10-05 17:36 - 2013-10-05 17:36 - 00000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-10-05 17:35 - 2013-10-05 17:35 - 00000000 _____ C:\Users\já\regbcm
2013-10-03 19:22 - 2013-10-03 19:22 - 00000019 _____ C:\Users\já\Downloads\rhfjfh.txt
2013-10-02 20:49 - 2013-09-15 16:09 - 00000000 ____D C:\Users\HP\AppData\Roaming\TeamViewer
2013-10-02 12:15 - 2013-10-02 12:15 - 21857574 _____ C:\Users\HP\Desktop\_VI_1276.AVI
2013-10-02 12:14 - 2013-10-02 12:14 - 53305368 _____ C:\Users\HP\Desktop\_VI_1275.AVI
2013-09-29 19:11 - 2013-09-29 19:11 - 00000000 ____D C:\Program Files (x86)\astrojargon.net

Files to move or delete:
====================
C:\Users\Public\Zoner Photo Studio 12 keygen.exe


Some content of TEMP:
====================
C:\Users\HP\AppData\Local\Temp\bitool.dll
C:\Users\HP\AppData\Local\Temp\DownloadManager.exe
C:\Users\HP\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\HP\AppData\Local\Temp\lowproc.exe
C:\Users\HP\AppData\Local\Temp\OptimizerPro.exe
C:\Users\HP\AppData\Local\Temp\Optimizer_Pro.exe
C:\Users\HP\AppData\Local\Temp\Quarantine.exe
C:\Users\HP\AppData\Local\Temp\setup.exe
C:\Users\HP\AppData\Local\Temp\stubhelper.dll
C:\Users\HP\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\HP\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
C:\Users\já\AppData\Local\Temp\toolbar.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-23 17:28




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:465.66 GB) (Free:4.4 GB) NTFS
Drive e: (CANON_DC) (Removable) (Total:1.87 GB) (Free:1.13 GB) FAT

Available physical RAM: 2209.33 MB
Total physical RAM: 4060.27 MB
Percentage of memory in use: 45%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 88388CBE)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=466 GB) - (Type=07 NTFS)
Disk: 1 (Size: 2 GB) (Disk ID: 00000000)
Partition 1: (Not Active) - (Size=2 GB) - (Type=06)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006Core.job => C:\Users\já\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006UA.job => C:\Users\já\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job => C:\Program Files (x86)\AVG Secure Search\PostInstall\ROC.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4
AlternateDataStreams: C:\ProgramData\TEMP:302A9871
AlternateDataStreams: C:\ProgramData\TEMP:8927A071
AlternateDataStreams: C:\Users\HP\AppData\Local\cjGEieUe3c:pazWMsewGaYbxfUWY
AlternateDataStreams: C:\Users\HP\AppData\Local\Temporary Internet Files:WUqopDu4ZOtaO23tCDfUK

==================== Security Center ==================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 28_09_2013 (06)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\HP\Desktop" je 4322 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager
"C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager
"C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT
Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync
"C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate
"C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray
"C:\Program Files (x86)\Morgan\m3jpegV3\MMTray.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task
"C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setup Utility 12.0
C:\Program Files (x86)\Navigator12\Setup Utility\clickertray.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
"c:\program files (x86)\Update\realsched.exe" -osboot [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt
"C:\Program Files (x86)\AVG Secure Search\vprot.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun
"C:\Program Files (x86)\WebcamMax\WebcamMax.exe" -a [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Kdyby na sobe nebyly uavisle, tak nejsou v jednom navodu

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
  HKLM-x32\...\Runonce: [AvgUninstallURL] - cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... Ny1ERU1CUg"&"inst=NzYtNTI1MDU5Nzc5LVhPMzYrMS1OMUQrMS1QTCs5LVFJWDErNC1YMjAxMCsyLVNQMSsxLVNVUCsxLUREVCsxMTUzNi1ERDEwKzEtU1QxMEFQUCsxLUZVSSsyLVAxMFRCKzItQ0lBVis2LUNJQTEwKzItRDM4MUwrNg"&"prod=94"&"ver=10.0.1432 [x]
  HKCU\...\Run: [AdobeBridge] - [x]
  HKCU\...\Run: [PC Suite Tray] - C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
  HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
  HKCU\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_8_800_168_Plugin.exe -update plugin [815496 2013-09-11] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
  HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
  HKU\Ostatní\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
  HKU\Ostatní\...\Run: [WebcamMaxAutoRun] - C:\Program Files (x86)\WebcamMax\WebcamMax.exe [6043888 2010-08-03] (CoolwareMax)
  HKU\Ostatní\...\Run: [AlcoholAutomount] - "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
  HKU\Ostatní\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
  HKU\Ostatní\...\Run: [KiesHelper] - C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
  HKU\Ostatní\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
  HKU\Ostatní\...\Run: [PC Suite Tray] - C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
  HKU\Ostatní\...\Run: [Zoner Photo Studio Autoupdate] - C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe [774680 2013-06-07] (ZONER software)
  AppInit_DLLs: [774680 2013-06-07] ()
  AppInit_DLLs-x32: c:\progra~2\optimi~1\optpro~1.dll [ ] ()
  Startup: C:\Users\já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Raptr.lnk
  
  HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x8433FE682CAACA01
  URLSearchHook: HKCU - (No Name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - No File
  SearchScopes: HKCU - {AB38C6FC-8400-40EF-B1E0-E045791A9CC3} URL = http://www.webhledani.cz/results.aspx?i=42&tp=ie&q={searchTerms}
  
  FF Plugin: @microsoft.com/GENUINE - disabled No File
  FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
  FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml
  FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
  
  CHR Plugin: (Chrome PDF Viewer) - C:\Users\j\u00E1\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll No File
  CHR Plugin: (Native Client) - C:\Users\j\u00E1\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll No File
  CHR Plugin: (Shockwave Flash) - C:\Users\j\u00E1\AppData\Local\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll No File
  CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\15.5.0\\npsitesafety.dll No File
  
  S3 AVG Bonjour Service; C:\Windows\TEMP\avgcu_mDNSResponder.exe [x]
  S3 AVG Security Toolbar Service; C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe [x]
  S4 vToolbarUpdater15.5.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe [x]
  
  C:\Users\Public\Zoner Photo Studio 12 keygen.exe
  C:\Program Files (x86)\AVG
  C:\Program Files (x86)\AVG Secure Search
  C:\Program Files (x86)\Common Files\AVG Secure Search
  C:\Users\HP\AppData\Local\Temp\bitool.dll
  C:\Users\HP\AppData\Local\Temp\DownloadManager.exe
  C:\Users\HP\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
  C:\Users\HP\AppData\Local\Temp\lowproc.exe
  C:\Users\HP\AppData\Local\Temp\OptimizerPro.exe
  C:\Users\HP\AppData\Local\Temp\Optimizer_Pro.exe
  C:\Users\HP\AppData\Local\Temp\Quarantine.exe
  C:\Users\HP\AppData\Local\Temp\setup.exe
  C:\Users\HP\AppData\Local\Temp\stubhelper.dll
  C:\Users\HP\AppData\Local\Temp\UpdateCheckerSetup.exe
  C:\Users\HP\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
  C:\Users\já\AppData\Local\Temp\toolbar.exe
  
  Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006Core.job => C:\Users\já\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006UA.job => C:\Users\já\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job => C:\Program Files (x86)\AVG Secure Search\PostInstall\ROC.exe
  
  AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4
  AlternateDataStreams: C:\ProgramData\TEMP:302A9871
  AlternateDataStreams: C:\ProgramData\TEMP:8927A071
  AlternateDataStreams: C:\Users\HP\AppData\Local\cjGEieUe3c:pazWMsewGaYbxfUWY
  AlternateDataStreams: C:\Users\HP\AppData\Local\Temporary Internet Files:WUqopDu4ZOtaO23tCDfUK
  
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setup Utility 12.0" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun" /f
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate" /f
  
  Hosts:
  
  End

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 28-10-2013
Ran by HP at 2013-10-29 15:13:53 Run:1
Running from C:\Users\HP\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Runonce: [AvgUninstallURL] - cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... Ny1ERU1CUg"&"inst=NzYtNTI1MDU5Nzc5LVhPMzYrMS1OMUQrMS1QTCs5LVFJWDErNC1YMjAxMCsyLVNQMSsxLVNVUCsxLUREVCsxMTUzNi1ERDEwKzEtU1QxMEFQUCsxLUZVSSsyLVAxMFRCKzItQ0lBVis2LUNJQTEwKzItRDM4MUwrNg"&"prod=94"&"ver=10.0.1432 [x]
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Run: [PC Suite Tray] - C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKCU\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_8_800_168_Plugin.exe -update plugin [815496 2013-09-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKU\Ostatní\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKU\Ostatní\...\Run: [WebcamMaxAutoRun] - C:\Program Files (x86)\WebcamMax\WebcamMax.exe [6043888 2010-08-03] (CoolwareMax)
HKU\Ostatní\...\Run: [AlcoholAutomount] - "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
HKU\Ostatní\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\Ostatní\...\Run: [KiesHelper] - C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
HKU\Ostatní\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\Ostatní\...\Run: [PC Suite Tray] - C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\Ostatní\...\Run: [Zoner Photo Studio Autoupdate] - C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe [774680 2013-06-07] (ZONER software)
AppInit_DLLs: [774680 2013-06-07] ()
AppInit_DLLs-x32: c:\progra~2\optimi~1\optpro~1.dll [ ] ()
Startup: C:\Users\já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Raptr.lnk

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x8433FE682CAACA01
URLSearchHook: HKCU - (No Name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - No File
SearchScopes: HKCU - {AB38C6FC-8400-40EF-B1E0-E045791A9CC3} URL = http://www.webhledani.cz/results.aspx?i ... earchTerms}

FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

CHR Plugin: (Chrome PDF Viewer) - C:\Users\j\u00E1\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll No File
CHR Plugin: (Native Client) - C:\Users\j\u00E1\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\j\u00E1\AppData\Local\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\15.5.0\\npsitesafety.dll No File

S3 AVG Bonjour Service; C:\Windows\TEMP\avgcu_mDNSResponder.exe [x]
S3 AVG Security Toolbar Service; C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe [x]
S4 vToolbarUpdater15.5.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe [x]

C:\Users\Public\Zoner Photo Studio 12 keygen.exe
C:\Program Files (x86)\AVG
C:\Program Files (x86)\AVG Secure Search
C:\Program Files (x86)\Common Files\AVG Secure Search
C:\Users\HP\AppData\Local\Temp\bitool.dll
C:\Users\HP\AppData\Local\Temp\DownloadManager.exe
C:\Users\HP\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\HP\AppData\Local\Temp\lowproc.exe
C:\Users\HP\AppData\Local\Temp\OptimizerPro.exe
C:\Users\HP\AppData\Local\Temp\Optimizer_Pro.exe
C:\Users\HP\AppData\Local\Temp\Quarantine.exe
C:\Users\HP\AppData\Local\Temp\setup.exe
C:\Users\HP\AppData\Local\Temp\stubhelper.dll
C:\Users\HP\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\HP\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
C:\Users\já\AppData\Local\Temp\toolbar.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006Core.job => C:\Users\já\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006UA.job => C:\Users\já\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job => C:\Program Files (x86)\AVG Secure Search\PostInstall\ROC.exe

AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4
AlternateDataStreams: C:\ProgramData\TEMP:302A9871
AlternateDataStreams: C:\ProgramData\TEMP:8927A071
AlternateDataStreams: C:\Users\HP\AppData\Local\cjGEieUe3c:pazWMsewGaYbxfUWY
AlternateDataStreams: C:\Users\HP\AppData\Local\Temporary Internet Files:WUqopDu4ZOtaO23tCDfUK

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setup Utility 12.0" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate" /f

Hosts:

End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\AvgUninstallURL => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\PC Suite Tray => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce\\FlashPlayerUpdate => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\BCSSync => Value deleted successfully.
HKU\Ostatní\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => Value deleted successfully.
HKU\Ostatní\Software\Microsoft\Windows\CurrentVersion\Run\\WebcamMaxAutoRun => Value deleted successfully.
HKU\Ostatní\Software\Microsoft\Windows\CurrentVersion\Run\\AlcoholAutomount => Value deleted successfully.
HKU\Ostatní\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value deleted successfully.
HKU\Ostatní\Software\Microsoft\Windows\CurrentVersion\Run\\KiesHelper => Value deleted successfully.
HKU\Ostatní\Software\Microsoft\Windows\CurrentVersion\Run\\KiesPDLR => Value deleted successfully.
HKU\Ostatní\Software\Microsoft\Windows\CurrentVersion\Run\\PC Suite Tray => Value deleted successfully.
HKU\Ostatní\Software\Microsoft\Windows\CurrentVersion\Run\\Zoner Photo Studio Autoupdate => Value deleted successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
C:\Users\já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Raptr.lnk => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{A3BC75A2-1F87-4686-AA43-5347D756017C} => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AB38C6FC-8400-40EF-B1E0-E045791A9CC3} => Key deleted successfully.
HKCR\CLSID\{AB38C6FC-8400-40EF-B1E0-E045791A9CC3} => Key not found.
HKLM\Software\MozillaPlugins\FF Plugin: @microsoft.com/GENUINE - disabled No File => Key not found.
"FF Plugin: @microsoft.com/GENUINE - disabled No File" => not found.
HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File => Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml => Moved successfully.
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => Value deleted successfully.
C:\Users\j\u00E1\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll not found.
C:\Users\j\u00E1\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll not found.
C:\Users\j\u00E1\AppData\Local\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll not found.
C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\15.5.0\\npsitesafety.dll not found.
AVG Bonjour Service => Service deleted successfully.
AVG Security Toolbar Service => Service deleted successfully.
vToolbarUpdater15.5.0 => Service deleted successfully.
C:\Users\Public\Zoner Photo Studio 12 keygen.exe => Moved successfully.
C:\Program Files (x86)\AVG => Moved successfully.
"C:\Program Files (x86)\AVG Secure Search" => File/Directory not found.
"C:\Program Files (x86)\Common Files\AVG Secure Search" => File/Directory not found.
C:\Users\HP\AppData\Local\Temp\bitool.dll => Moved successfully.
C:\Users\HP\AppData\Local\Temp\DownloadManager.exe => Moved successfully.
C:\Users\HP\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe => Moved successfully.
C:\Users\HP\AppData\Local\Temp\lowproc.exe => Moved successfully.
C:\Users\HP\AppData\Local\Temp\OptimizerPro.exe => Moved successfully.
C:\Users\HP\AppData\Local\Temp\Optimizer_Pro.exe => Moved successfully.
C:\Users\HP\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\HP\AppData\Local\Temp\setup.exe => Moved successfully.
C:\Users\HP\AppData\Local\Temp\stubhelper.dll => Moved successfully.
C:\Users\HP\AppData\Local\Temp\UpdateCheckerSetup.exe => Moved successfully.
C:\Users\HP\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe => Moved successfully.
C:\Users\já\AppData\Local\Temp\toolbar.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-481945695-2898495593-1938971302-1006UA.job => Moved successfully.
C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job => Moved successfully.
C:\ProgramData\TEMP => ":0B4227B4" ADS removed successfully.
C:\ProgramData\TEMP => ":302A9871" ADS removed successfully.
C:\ProgramData\TEMP => ":8927A071" ADS removed successfully.
C:\Users\HP\AppData\Local\cjGEieUe3c => ":pazWMsewGaYbxfUWY" ADS removed successfully.
"C:\Users\HP\AppData\Local\Temporary Internet Files" => ":WUqopDu4ZOtaO23tCDfUK" ADS not found.

========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setup Utility 12.0" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

==== End of Fixlog ====

Fajn, jak se chova PC

PC je o hodně svižnější. Restartování, odhlašování a přihlašování je svižné, před Vaší opravou to trvalo o dost déle. Myslím, že i spouštění programů je rychlejší. Chtěl bych se laicky zeptat, co mému počítači bylo, zda-li v něm byly viry, malware nebo jen spousta zbytečných souborů? Jinak MOC děkuji!

Tak jeste uklidime

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Bylo tam hodne reklaminiho nezadouciho SW, chce to cist co se instaluje jako doprovod - vice zde http://www.viry.cz/pozor-na-to-co-vsech ... -pocitace/

A pokud nejsou problemy ci dotazy, je to z me strany vse