VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu logu

https://forum.viry.cz:443/viewtopic.php?t=134298

Stránka 1 z 2

Prosím o kontrolu logu

Napsal: 26 lis 2013 21:45
od Pavouk1
Logfile of random's system information tool 1.09 (written by random/random)
Run by Ondra at 2013-11-26 21:38:45
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 261 GB (57%) free of 457 GB
Total RAM: 4044 MB (60% free)

HijackThis download failed

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
"C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\AUDIODG.EXE 0x2e8
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 28574272
\??\C:\Windows\system32\conhost.exe "5380653899154762271444848394961131115-1457461333-131447449713944197942021356500
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\SysWOW64\ezSharedSvcHost.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe"
"C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
"C:\Program Files (x86)\SnugTV\SnugTV Station\AMAServer.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2928
C:\Windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe"
taskeng.exe {4DD1A653-F43F-4685-96BB-E89F904D9112}
taskeng.exe {8BEAFD1D-B6BC-4194-947A-EA7E23215824}
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe" -Embedding
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\Windows\system32\svchost.exe -k WbioSvcGroup
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\WindowsMobile\wmdc.exe"
"C:\Program Files (x86)\Samsung\Kies\Kies.exe" /preload
C:\Windows\system32\svchost.exe -k WindowsMobile
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar3.exe"
"C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
taskeng.exe {BC1B2BAC-62A7-4122-8401-F9FF440987E1}
"C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Hewlett-Packard\HP Wireless Audio\HPWA.exe" -m
"C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
"C:\Windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe"
"C:\Users\Ondra\Desktop\RSITx64.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\HPCeeScheduleForONDRA-HP$.job
C:\Windows\tasks\HPCeeScheduleForOndra.job
C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job
C:\Windows\tasks\RegCure Pro.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\y163a8n3.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.152 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=1.2.22]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@VideoDownloadConverter_4z.com/Plugin]
"Description"=VideoDownloadConverter Plugin
"Path"=C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.152 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
websitelogon@truesuite.com

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
safeguard-secure-search.xml

C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\y163a8n3.default\searchplugins\
yahoo.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-07-04 553896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2011-05-06 1746760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-10-11 256080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-07-04 211880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-12 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll [2011-05-06 1598280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-11 194640]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-10-11 256080]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
{48586425-6bb7-4f51-8dc6-38c88e3ebb58}
{cd1a63ba-a08c-431b-9a34-f240aadc728d}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-11 194640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-10-14 2837288]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-06-08 1128448]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-09 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-09 416024]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360]
"SetDefault"=C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [2011-12-19 44880]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2013-11-19 21720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2013-09-04 1564528]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-10-21 20549280]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2008-01-24 2289664]
"Facebook Update"=C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-08-05 138096]
""=C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2013-09-04 844656]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-05-08 336384]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-04-29 284440]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2013-09-04 311152]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"HPConnectionManager"=C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-09-13 103992]
""= []
"HPOSD"=C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [2011-08-19 379960]
"HPQuickWebProxy"=C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2012-01-05 169856]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-03-05 578944]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-05-09 4858968]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AVer HID Receiver.lnk - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
AVerQuick.lnk - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
HP Wireless Audio Manager.lnk - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Audio\HPWA.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"EnableShellExecuteHooks"=1
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-11-26 21:38:45 ----D---- C:\rsit
2013-11-26 13:59:42 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-11-26 13:59:42 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\url.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-11-26 13:59:34 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\wininet.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\urlmon.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\url.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-11-26 13:59:34 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-26 13:59:34 ----A---- C:\Windows\system32\msrating.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\msls31.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\mshtmler.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\msfeedssync.exe
2013-11-26 13:59:34 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\jsproxy.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\jsIntl.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\jscript9diag.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\jscript9.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\ieui.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\iesysprep.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\iesetup.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\iertutil.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\iernonce.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\ieframe.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\iedkcs32.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\ieapfltr.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\ieapfltr.dat
2013-11-26 13:59:34 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\ie4uinit.exe
2013-11-26 13:59:34 ----A---- C:\Windows\system32\icardie.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\elshyph.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\dxtrans.dll
2013-11-26 13:59:34 ----A---- C:\Windows\system32\dxtmsft.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\wextract.exe
2013-11-26 13:59:33 ----A---- C:\Windows\system32\webcheck.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\vbscript.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\pngfilt.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\occache.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\mshtmled.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\MshtmlDac.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\mshtml.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\mshta.exe
2013-11-26 13:59:33 ----A---- C:\Windows\system32\msfeeds.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\licmgr10.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\jscript.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\inseng.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\imgutil.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\iexpress.exe
2013-11-26 13:59:33 ----A---- C:\Windows\system32\ieUnatt.exe
2013-11-26 13:59:33 ----A---- C:\Windows\system32\iepeers.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\ieetwproxystub.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2013-11-26 13:59:33 ----A---- C:\Windows\system32\ieetwcollector.exe
2013-11-26 13:51:04 ----D---- C:\Users\Ondra\AppData\Roaming\Symantec
2013-11-26 12:15:29 ----D---- C:\Users\Ondra\AppData\Roaming\SmileysWeLove
2013-11-26 12:14:29 ----D---- C:\Program Files (x86)\MyPC Backup
2013-11-25 21:24:56 ----D---- C:\ProgramData\McAfee
2013-11-16 16:58:26 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-11-15 15:46:33 ----D---- C:\MP3
2013-11-15 15:45:53 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-11-15 15:45:53 ----A---- C:\Windows\system32\crypt32.dll
2013-11-15 15:45:43 ----A---- C:\Windows\system32\drivers\afd.sys
2013-11-15 15:45:41 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-11-15 15:45:41 ----A---- C:\Windows\system32\authui.dll
2013-11-15 15:45:39 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-11-15 15:45:39 ----A---- C:\Windows\SYSWOW64\credui.dll
2013-11-15 15:45:39 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-15 15:45:39 ----A---- C:\Windows\system32\credui.dll
2013-11-15 15:45:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-11-15 15:45:28 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-11-15 15:45:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-11-15 15:45:28 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-11-15 15:45:28 ----A---- C:\Windows\system32\sspisrv.dll
2013-11-15 15:45:28 ----A---- C:\Windows\system32\sspicli.dll
2013-11-15 15:45:28 ----A---- C:\Windows\system32\schannel.dll
2013-11-15 15:45:28 ----A---- C:\Windows\system32\secur32.dll
2013-11-15 15:45:28 ----A---- C:\Windows\system32\ncrypt.dll
2013-11-15 15:45:28 ----A---- C:\Windows\system32\lsass.exe
2013-11-15 15:45:28 ----A---- C:\Windows\system32\lsasrv.dll
2013-11-15 15:45:28 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-11-15 15:45:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-11-15 15:45:28 ----A---- C:\Windows\system32\drivers\cng.sys
2013-11-15 15:45:16 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-11-15 15:45:16 ----A---- C:\Windows\system32\gdi32.dll
2013-11-15 15:45:14 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-11-15 15:45:14 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-11-15 15:45:14 ----A---- C:\Windows\system32\nshwfp.dll
2013-11-15 15:45:14 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-11-15 15:45:14 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 18:14:44 ----D---- C:\tatka
2013-11-12 17:52:31 ----A---- C:\Windows\SYSWOW64\RtsPStorIcon.dll
2013-11-12 17:52:31 ----A---- C:\Windows\system32\drivers\RtsPStor.sys
2013-10-29 22:48:37 ----D---- C:\3
2013-10-29 19:11:54 ----D---- C:\Pavla1

======List of files/folders modified in the last 1 month======

2013-11-26 21:38:54 ----D---- C:\Users\Ondra\AppData\Roaming\Skype
2013-11-26 21:38:53 ----D---- C:\Windows\temp
2013-11-26 21:38:52 ----D---- C:\Program Files\trend micro
2013-11-26 14:14:39 ----A---- C:\Windows\SYSWOW64\log.txt
2013-11-26 14:10:41 ----D---- C:\Windows\Prefetch
2013-11-26 14:10:05 ----D---- C:\Windows\winsxs
2013-11-26 14:09:28 ----D---- C:\Windows\Panther
2013-11-26 14:09:26 ----D---- C:\Windows\inf
2013-11-26 14:08:39 ----D---- C:\Windows\system32\config
2013-11-26 14:08:36 ----D---- C:\Windows
2013-11-26 14:07:17 ----D---- C:\Program Files (x86)\Internet Explorer
2013-11-26 14:07:16 ----D---- C:\Windows\SYSWOW64\migration
2013-11-26 14:07:16 ----D---- C:\Windows\SYSWOW64\en-US
2013-11-26 14:07:16 ----D---- C:\Windows\SysWOW64
2013-11-26 14:07:16 ----D---- C:\Program Files\Internet Explorer
2013-11-26 14:07:15 ----D---- C:\Windows\system32\migration
2013-11-26 14:07:15 ----D---- C:\Windows\system32\en-US
2013-11-26 14:07:15 ----D---- C:\Windows\System32
2013-11-26 14:07:15 ----D---- C:\Windows\PolicyDefinitions
2013-11-26 14:05:16 ----D---- C:\Windows\Logs
2013-11-26 14:01:25 ----D---- C:\Windows\system32\catroot
2013-11-26 13:59:31 ----D---- C:\Windows\system32\catroot2
2013-11-26 13:57:26 ----SHD---- C:\System Volume Information
2013-11-26 13:55:59 ----D---- C:\ProgramData
2013-11-26 13:51:57 ----RD---- C:\Program Files (x86)
2013-11-26 13:51:57 ----RD---- C:\Program Files
2013-11-26 13:51:57 ----D---- C:\Config.Msi
2013-11-26 13:50:43 ----D---- C:\Program Files (x86)\SqueakyChocolate
2013-11-26 13:50:14 ----SHD---- C:\Windows\Installer
2013-11-26 13:41:54 ----D---- C:\Program Files (x86)\Common Files
2013-11-26 13:41:51 ----RSD---- C:\Windows\assembly
2013-11-26 13:40:29 ----D---- C:\Program Files (x86)\DVR-STUDIO HD 2
2013-11-26 13:39:10 ----D---- C:\Program Files (x86)\DVDx 4.0 Open Edition
2013-11-26 13:38:56 ----D---- C:\Program Files (x86)\DVDx 4.0
2013-11-26 13:37:57 ----SD---- C:\ProgramData\Microsoft
2013-11-26 12:45:19 ----D---- C:\Windows\system32\Tasks
2013-11-26 12:45:18 ----D---- C:\Windows\Tasks
2013-11-26 12:44:52 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-11-25 22:30:29 ----D---- C:\Windows\debug
2013-11-25 22:29:15 ----D---- C:\Program Files\CCleaner
2013-11-25 22:13:58 ----D---- C:\Qoobox
2013-11-25 21:24:50 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-11-25 18:39:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-11-25 15:19:19 ----D---- C:\Users\Ondra\AppData\Roaming\vlc
2013-11-17 15:07:13 ----D---- C:\Windows\rescache
2013-11-16 03:13:20 ----D---- C:\Windows\system32\drivers
2013-11-16 03:07:33 ----D---- C:\Windows\system32\MRT
2013-11-16 03:01:54 ----A---- C:\Windows\system32\MRT.exe
2013-11-12 17:52:37 ----D---- C:\Windows\SYSWOW64\sda
2013-11-12 17:52:35 ----D---- C:\Windows\system32\DriverStore
2013-11-12 17:52:29 ----D---- C:\Program Files (x86)\Realtek
2013-11-12 17:51:50 ----D---- C:\SWSetup
2013-11-12 10:59:56 ----D---- C:\ProgramData\Skype
2013-11-12 10:59:54 ----RD---- C:\Program Files (x86)\Skype
2013-11-11 14:49:54 ----D---- C:\fotky 2012
2013-11-11 05:50:16 ----N---- C:\Windows\system32\MpSigStub.exe
2013-11-08 17:37:31 ----D---- C:\FOTO

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-06-30 189936]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-04-16 834544]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-06-30 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-06-30 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2013-06-21 45856]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-08-18 9981952]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-08-18 310272]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2011-06-16 133160]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2012-01-19 4729408]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btwampfl;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2011-06-15 620584]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2011-06-15 165416]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2011-06-15 178728]
R3 BTWDPAN;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\btwdpan.sys [2011-05-21 89640]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-02-14 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2011-06-15 21544]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-01-24 565352]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\Windows\system32\DRIVERS\stwrt64.sys [2011-06-08 528384]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-10-14 396848]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2013-04-03 38080]
S3 AVerFx2hbtv64;AVerMedia USB SW Hybrid Tuner; C:\Windows\system32\drivers\AVerFx2hbtv64.sys [2012-09-19 691968]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys []
S3 cpuz130;cpuz130; \??\C:\Users\Ondra\AppData\Local\Temp\cpuz130\cpuz_x64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-08-20 103576]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2013-11-12 339048]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2013-04-03 169288]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2013-04-03 21320]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2013-04-03 188232]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2013-04-03 158024]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2013-04-03 169288]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2013-04-03 21320]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2013-04-03 188232]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-08-20 204568]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;USB RNDIS Adapter; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 WinUSB;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-08-18 204288]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-05-09 46808]
R2 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2011-08-19 360448]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2011-04-01 403456]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2011-06-17 1083680]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232]
R2 FPLService;TrueSuiteService; C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe [2011-05-06 263496]
R2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2013-09-26 101888]
R2 HPClientSvc;HP Client Services; C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-09-06 197536]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-03-05 35200]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-09-28 212944]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2008-01-24 73728]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
R2 SnugTV Service;SnugTV Service; C:\Program Files (x86)\SnugTV\SnugTV Station\AMAServer.exe [2010-05-06 528384]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2011-06-08 301568]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-09-06 1001376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-22 116648]
S2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-04-29 13592]
S2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2013-11-12 2425960]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-01 326168]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-25 257416]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-22 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-07-22 194032]
S3 hpCMSrv;HP Connection Manager 4 Service; C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-09-13 1098296]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-09-17 800040]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-22 1255736]
S4 AVerUpdateServer;AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [2011-10-31 167936]

-----------------EOF-----------------
info.txt logfile of random's system information tool 1.09 2013-11-26 21:38:58

======Uninstall list======

-->"C:\Program Files (x86)\HP Games\Game Explorer Categories - genres\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Game Explorer Categories - main\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - Gun Bros\Uninstall.exe"
-->C:\Program Files (x86)\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\Windows\UNNeroBackItUp.exe /UNINSTALL
3DMark06-->"C:\Program Files (x86)\InstallShield Installation Information\{7F3AD00A-1819-4B15-BB7D-08B3586336D7}\setup.exe" -runfromtemp -l0x0009 -removeonly
Acoustica CD/DVD Label Maker-->C:\Program Files (x86)\Acoustica CD Label Maker\cdlabel.exe UNINSTALL
Adobe Flash Player 11 ActiveX-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_117_ActiveX.exe -maintain activex
Adobe Flash Player 11 Plugin-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_152_Plugin.exe -maintain plugin
Adobe Reader XI (11.0.05) - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AB0000000001}
Adobe Shockwave Player 11.5-->"C:\Windows\system32\Adobe\Shockwave 11\uninstaller.exe"
Agatha Christie - Peril at End House-->"C:\Program Files (x86)\HP Games\Agatha Christie - Peril at End House\uninstall\uninstaller.exe"
AMD Catalyst Install Manager-->msiexec /q/x{9AB0D5B6-4779-8C4F-CA91-A1FEDB56D7EC} REBOOT=ReallySuppress
Audacity 2.0.2-->"C:\Program Files (x86)\Audacity\unins000.exe"
AuthenTec TrueAPI-->MsiExec.exe /X{054EF02F-95D8-48F4-9EEB-2F9CE3072ED8}
avast! Free Antivirus-->C:\Program Files\AVAST Software\Avast\aswRunDll.exe "C:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
AVerMedia A827 USB TV Tuner 2.1.64.159-->C:\Program Files (x86)\AVerMedia\AVerMedia A827 USB TV Tuner\uninst.exe
AVerMedia Applications-->C:\Program Files (x86)\InstallShield Installation Information\{92C41B26-EBC5-41C5-8B6F-E3EF7E57FF16}\setup.exe -runfromtemp -l0x0409
AVerMedia Media Center Plug-ins 2.0.16.0-->C:\Program Files (x86)\AVerMedia\AVerMedia Media Center Plug-ins\uninst.exe
AVerTV 3D-->C:\Program Files (x86)\InstallShield Installation Information\{5016185F-05AF-455F-AA70-6B6E5D6D4E70}\setup.exe -runfromtemp -l0x0405
AVG SafeGuard toolbar-->C:\Program Files (x86)\AVG SafeGuard toolbar\UNINSTALL.exe /PROMPT /UNINSTALL
AviSynth 2.5-->"C:\Program Files (x86)\AviSynth 2.5\Uninstall.exe"
Bejeweled 3-->"C:\Program Files (x86)\HP Games\Bejeweled 3\uninstall\uninstaller.exe"
Blackhawk Striker 2-->"C:\Program Files (x86)\HP Games\Blackhawk Striker 2\uninstall\uninstaller.exe"
Blasterball 3-->"C:\Program Files (x86)\HP Games\Blasterball 3\uninstall\uninstaller.exe"
Bounce Symphony-->"C:\Program Files (x86)\HP Games\Bounce Symphony\uninstall\uninstaller.exe"
Broadcom 802.11 Wireless LAN Adapter-->"C:\Program Files\Broadcom\Broadcom 802.11\Driver\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Broadcom\Broadcom 802.11\Driver" driver
Broadcom Bluetooth Software-->MsiExec.exe /X{6E7F4CA3-B2DE-413C-A7A1-43AA5BE19EA1}
Broadcom InConcert Maestro-->MsiExec.exe /X{57DD35E9-D9BB-4089-BB05-EF933C586CB3}
Cake Mania-->"C:\Program Files (x86)\HP Games\Cake Mania\uninstall\uninstaller.exe"
Canon My Printer-->"C:\Program Files\Canon\MyPrinter\uninst.exe" /UninstallRemove C:\Program Files\Canon\MyPrinter\uninst.ini
Catalyst Control Center - Branding-->MsiExec.exe /I{949D6B51-10E8-4CD4-A81E-064E38240415}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-0409-0000-0000000FF1CE}
Cradle of Rome 2-->"C:\Program Files (x86)\HP Games\Cradle of Rome 2\uninstall\uninstaller.exe"
CyberLink YouCam-->"C:\Program Files (x86)\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
CyberLink YouCam-->"C:\Program Files (x86)\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
Doom Shareware for Windows 95-->C:\Program Files\Doom Shareware for Windows 95\uninstl.exe /S C:\Program Files\Doom Shareware for Windows 95
Dune Legacy-->"C:\Program Files (x86)\Dune Legacy\uninstall.exe"
DVD Shrink 3.2-->"C:\Program Files (x86)\DVD Shrink\unins000.exe"
ESU for Microsoft Windows 7 SP1-->MsiExec.exe /I{B18BEB15-A9DA-43D7-BAE1-C6C67484C2C0}
ESU for Microsoft Windows 7 SP1-->MsiExec.exe /I{E96CAA2A-0244-4A2A-8403-0C3C9534778B}
Evernote v. 4.2.3-->MsiExec.exe /X{F761359C-9CED-45AE-9A51-9D6605CD55C4}
Facebook Video Calling 1.2.0.287-->MsiExec.exe /X{B92C5909-1D37-4C51-8397-A28BB28E5DC3}
Farm Frenzy-->"C:\Program Files (x86)\HP Games\Farm Frenzy\uninstall\uninstaller.exe"
FATE-->"C:\Program Files (x86)\HP Games\FATE\uninstall\uninstaller.exe"
Final Drive: Nitro-->"C:\Program Files (x86)\HP Games\Final Drive Nitro\uninstall\uninstaller.exe"
Formix SE - formuláře kanceláře-->"C:\Program Files (x86)\Formix SE\unins000.exe"
Fotogalerie-->MsiExec.exe /X{A1FBD2B3-6768-472D-BA46-C00EACBCE16C}
Freemake Video Converter verze 4.0.4-->"C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe"
Futuremark SystemInfo-->"C:\Program Files (x86)\InstallShield Installation Information\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}\setup.exe" -runfromtemp -l0x0009 -removeonly
GIMP 2.8.2-->"C:\Program Files\GIMP 2\uninst\unins000.exe"
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
Google Toolbar for Internet Explorer-->"C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_08875ABF44579E20.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Governor of Poker 2 Premium Edition-->"C:\Program Files (x86)\HP Games\Governor of Poker 2 Premium Edition\uninstall\uninstaller.exe"
Hewlett-Packard ACLM.NET v1.2.1.1-->MsiExec.exe /I{6F340107-F9AA-47C6-B54C-C3A19F11553F}
Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {B6E073B9-F238-379A-AA45-D323CD308DAE} /parameterfolder Client
HP Auto-->MsiExec.exe /I{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}
HP Client Services-->MsiExec.exe /I{2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}
HP Connection Manager-->MsiExec.exe /X{B65FCAA5-F3A6-4B3F-ABEE-CBC2B085796B}
HP Customer Experience Enhancements-->MsiExec.exe /X{07FA4960-B038-49EB-891B-9F95930AA544}
HP Documentation-->MsiExec.exe /X{DE15C5EC-7C30-44BF-ACEB-03960FC5601D}
HP Games-->"C:\Program Files (x86)\HP Games\Uninstall.exe"
HP Launch Box-->MsiExec.exe /I{5A847522-375C-4D05-BD3D-88C450CC047F}
HP On Screen Display-->MsiExec.exe /I{ED1BD69A-07E3-418C-91F1-D856582581BF}
HP Power Manager-->MsiExec.exe /I{7E799992-5DA0-4A1A-9443-B1836B063FEC}
HP Product Detection-->MsiExec.exe /I{A34CC51D-C2FF-4E0E-9F27-28B0249A15DD}
HP Quick Launch-->MsiExec.exe /I{53B17A98-5BF0-40BC-AAFF-850A357975AC}
HP QuickWeb-->MsiExec.exe /X{A0C87B5A-9DC7-4C24-9B19-28282DBE6493}
HP Setup Manager-->MsiExec.exe /I{AE856388-AFAD-4753-81DF-D96B19D0A17C}
HP Setup-->MsiExec.exe /X{5036764A-435D-40C9-869C-31085A3D741D}
HP SimplePass PE 2011-->MsiExec.exe /X{31CEFF4E-B6D1-46A5-9169-7C67570E7FFA}
HP Software Framework-->MsiExec.exe /X{03619AEC-00EE-43CB-9F4F-25BE4C8C90D2}
HP Support Assistant-->"C:\Program Files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe" -runfromtemp -l0x0409 -removeonly
HP Wireless Audio Manager 1.2.3-->C:\Program Files (x86)\Hewlett-Packard\HP Wireless Audio\uninst.exe
Chronicles of Albian-->"C:\Program Files (x86)\HP Games\Chronicles of Albian\uninstall\uninstaller.exe"
Chuzzle Deluxe-->"C:\Program Files (x86)\HP Games\Chuzzle Deluxe\uninstall\uninstaller.exe"
IDT Audio-->"C:\Program Files (x86)\InstallShield Installation Information\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}\setup.exe" -remove -removeonly
Intel(R) Control Center-->C:\Program Files (x86)\Intel\Intel Control Center\uninstaller\SetupICC.exe -uninstall -force -confirm
Intel(R) Display Audio Driver-->C:\Program Files (x86)\Intel\Intel(R) Display Audio Driver\Uninstall\setup.exe -uninstall
Intel(R) Identity Protection Technology 1.2.22.0-->MsiExec.exe /X{387B63A5-5016-1015-B06B-A9A1030E3125}
Intel(R) Management Engine Components-->C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) Rapid Storage Technology-->C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall
Java 7 Update 25 (64-bit)-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F86417025FF}
Java 7 Update 25-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83217021FF}
Jewel Quest: The Sleepless Star - Collector's Edition-->"C:\Program Files (x86)\HP Games\Jewel Quest The Sleepless Star - Collectors Edition\uninstall\uninstaller.exe"
Junk Mail filter update-->MsiExec.exe /I{400C31E4-796F-4E86-8FDC-C3C4FACC6847}
Lemmings 2 - The Tribes-->"C:\Program Files (x86)\Lemmings 2 - The Tribes\unins000.exe"
LibreOffice 4.0.0.3-->MsiExec.exe /I{8EA569F1-97AF-4C3E-A0CB-4846C2D35A81}
LightScribe System Software 1.12.29.2-->MsiExec.exe /X{CF8C077A-B467-4C43-8DB5-3A9B94FF9681}
Mah Jong Medley-->"C:\Program Files (x86)\HP Games\Mah Jong Medley\uninstall\uninstaller.exe"
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /x64 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
Microsoft Office 2010-->MsiExec.exe /X{95140000-0070-0000-0000-0000000FF1CE}
Microsoft Office Word Viewer 2003-->MsiExec.exe /I{90850405-6000-11D3-8CFE-0150048383C9}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148-->MsiExec.exe /X{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161-->MsiExec.exe /X{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319-->MsiExec.exe /X{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Movie Maker-->MsiExec.exe /X{5BABDA39-61CF-41EE-992D-4054B6649A9B}
Movie Maker-->MsiExec.exe /X{A035950F-15BA-41C0-9D8F-165FC0536012}
Movie Maker-->MsiExec.exe /X{ED6C77F9-4D7E-447C-9EC0-9A212D075535}
Mozilla Firefox 25.0.1 (x86 cs)-->"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"
MSVCRT_amd64-->MsiExec.exe /I{D0B44725-3666-492D-BEF6-587A14BD9BD9}
MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
MSVCRT110_amd64-->MsiExec.exe /I{E9FA781F-3E80-4399-825A-AD3E11C28C77}
MSVCRT110-->MsiExec.exe /I{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Mystery of Mortlake Mansion-->"C:\Program Files (x86)\HP Games\Mystery of Mortlake Mansion\uninstall\uninstaller.exe"
Namco All-Stars: PAC-MAN-->"C:\Program Files (x86)\HP Games\Namco All-Stars PAC-MAN\uninstall\uninstaller.exe"
Nero 7 Essentials-->MsiExec.exe /X{714ACFF3-B8A3-4AD6-937B-13C833D71029}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
PamFax-->"C:\Program Files (x86)\PamFax\unins000.exe"
Penguins!-->"C:\Program Files (x86)\HP Games\Penguins!\uninstall\uninstaller.exe"
Photo Common-->MsiExec.exe /X{D888F114-7537-4D48-AF03-5DA9C82D7540}
Photo Common-->MsiExec.exe /X{EB91007A-0110-42A6-B869-2709955A9B2A}
Photo Gallery-->MsiExec.exe /X{30F99474-EBE3-4134-A02B-F6CD38CFE243}
Photo Gallery-->MsiExec.exe /X{FC6C7107-7D72-41A1-A031-3CE751159BAB}
Photo Story 3 pro Windows-->MsiExec.exe /I{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}
Plants vs. Zombies - Game of the Year-->"C:\Program Files (x86)\HP Games\Plants vs Zombies - Game of the Year\uninstall\uninstaller.exe"
PlayReady PC Runtime amd64-->MsiExec.exe /X{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}
Poker Superstars III-->"C:\Program Files (x86)\HP Games\Poker Superstars III\uninstall\uninstaller.exe"
Polar Bowler-->"C:\Program Files (x86)\HP Games\Polar Bowler\uninstall\uninstaller.exe"
Polar Golfer-->"C:\Program Files (x86)\HP Games\Polar Golfer\uninstall\uninstaller.exe"
Puzznic 1.5-->"C:\Program Files (x86)\ZX Games\Puzznic\unins000.exe"
Readon TV Movie Radio Player 7.6.0.0-->MsiExec.exe /I{80074966-5231-428D-9AE7-B7D5D2DC3246}
Realtek Ethernet Controller Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\Setup.exe -runfromtemp -removeonly
Realtek PCIE Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{C1594429-8296-4652-BF54-9DBE4932A44C}\setup.exe" -runfromtemp -removeonly
Recovery Manager-->MsiExec.exe /I{DBCD5E64-7379-4648-9444-8A6558DCB614}
Samsung Kies-->"C:\Program Files (x86)\InstallShield Installation Information\{758C8301-2696-4855-AF45-534B1200980A}\setup.exe" -runfromtemp -l0x0409 -removeonly
Samsung Kies-->MsiExec.exe /I{758C8301-2696-4855-AF45-534B1200980A}
Samsung Story Album Viewer-->"C:\Program Files (x86)\InstallShield Installation Information\{698BBAD8-B116-495D-B879-0F07A533E57F}\setup.exe" -runfromtemp -l0x0405 -removeonly
Samsung Story Album Viewer-->MsiExec.exe /I{698BBAD8-B116-495D-B879-0F07A533E57F}
SAMSUNG USB Driver for Mobile Phones-->C:\Program Files (x86)\Samsung\USB Drivers\Uninstall.exe
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {6AF6C62E-4E3D-33BF-A591-9E4D53BDF22F} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {E59B2174-E924-311F-8549-AD714C14664D} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4736E989-32D9-3B91-90D7-C68848E118CA} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {F1696E2F-4803-362F-A756-65B363483FE6} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {C8B8456C-6A12-3725-95A8-1C9FBE1E3141} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8E6848A1-B790-34FE-921A-A5319258E254} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {E7F6B64E-E11F-3D1C-868D-3F1443DA5A15} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {08BB8EA1-3BA7-3AD5-8A07-22A5EC1F704E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {880A0A36-244B-3C7A-8D6B-56E694CE7883} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {9D8496AE-4030-3E92-B44E-4F81051E6C85} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {43B6E5D3-56A9-36C1-BD8B-9E1D6920FF11} /parameterfolder Client
SimCoupe-->"C:\Program Files (x86)\SimCoupe\uninstall.exe"
Skype™ 6.10-->MsiExec.exe /X{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
Slingo Supreme-->"C:\Program Files (x86)\HP Games\Slingo Supreme\uninstall\uninstaller.exe"
SnugTV Station-->MsiExec.exe /I{AB3ED2E9-3F65-4689-B483-3B0F5F2C6A62}
Spectaculator 8.0-->MsiExec.exe /I{B21AE9DA-E837-4F82-B061-7848B4F3096B}
Synaptics TouchPad Driver-->rundll32.exe "%ProgramFiles%\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
TMPGEnc Authoring Works 5 Premium Theme Pack 1-->MsiExec.exe /I{5D314FE3-3D51-4C46-9514-8B0A28F7AF77}
TMPGEnc Authoring Works 5 Theme Pack 1-->MsiExec.exe /I{929EAD99-9874-43BF-B3F4-5F5D2D9D66A9}
TMPGEnc Authoring Works 5 Theme Pack 2-->MsiExec.exe /I{5ECF915E-710A-441E-A7CB-1E599A61D34F}
TMPGEnc Authoring Works 5 Theme Pack 3-->MsiExec.exe /I{504C5775-4DD4-40A6-84EA-2837EBC5D268}
TMPGEnc Authoring Works 5 Theme Pack 4-->MsiExec.exe /I{081872FE-8932-42E9-B3CE-CE85C477790E}
TMPGEnc Authoring Works 5-->MsiExec.exe /I{3B2A7C83-EFAE-4FC1-BF6B-500042E8B17A}
Total Commander 64-bit (Remove or Repair)-->c:\totalcmd\tcunin64.exe
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {29C7BE97-DE59-37A2-A687-2ADD5321948A} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7D799A81-5661-3159-BF92-754161CED6E6} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4DFA8287-EA36-3469-99FE-F568FEC81653} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8C286FD4-AB38-37A6-BC8A-6F16AFE9AB1F} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {EFD73366-C059-3D04-9848-59072A15DB53} /parameterfolder Client
Update Installer for WildTangent Games App-->"C:\Program Files (x86)\WildTangent Games\App\Uninstall.exe"
Vacation Quest - The Hawaiian Islands-->"C:\Program Files (x86)\HP Games\Vacation Quest - The Hawaiian Islands\uninstall\uninstaller.exe"
Virtual Villagers 5 - New Believers-->"C:\Program Files (x86)\HP Games\Virtual Villagers 5 - New Believers\uninstall\uninstaller.exe"
VLC media player 2.0.7-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
WildTangent Games App (HP Games)-->"C:\Program Files (x86)\WildTangent Games\Touchpoints\hp\Uninstall.exe"
Windows Live Communications Platform-->MsiExec.exe /I{0454BB9A-2A7A-4214-BDFF-937F7A711A44}
Windows Live Essentials-->C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{17F99FCE-8F03-4439-860A-25C5A5434E18}
Windows Live Essentials-->MsiExec.exe /I{797DC296-ADC5-4A08-8CBC-AEB0D6F4B249}
Windows Live Essentials-->MsiExec.exe /I{C034A6F9-6569-491B-B3BF-F5D15221A708}
Windows Live Family Safety-->MsiExec.exe /I{7B0C5EF6-DE4C-4E20-8889-C17604FFE5CD}
Windows Live Family Safety-->MsiExec.exe /I{95D78710-DEE9-4577-9FC6-35BE431898DC}
Windows Live Family Safety-->MsiExec.exe /X{5F611ADA-B98C-4DBB-ADDE-414F08457ECF}
Windows Live ID Sign-in Assistant-->MsiExec.exe /I{CE52672C-A0E9-4450-8875-88A221D5CD50}
Windows Live Installer-->MsiExec.exe /I{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}
Windows Live Mail-->MsiExec.exe /I{00476F3E-3C4D-4E02-B8BB-125350157EB9}
Windows Live Mail-->MsiExec.exe /I{70854FE6-3BF1-4C69-94D0-BEB821102E34}
Windows Live Mail-->MsiExec.exe /I{ADE85655-8D1E-4E4B-BF88-5E312FB2C74F}
Windows Live Mail-->MsiExec.exe /I{B80D3EA9-A252-4AE5-AC51-81729F5C586F}
Windows Live Messenger-->MsiExec.exe /X{0A9256E0-C924-46DE-921B-F6C4548A1C64}
Windows Live Messenger-->MsiExec.exe /X{1EA7C505-E6DA-4B85-9432-EBD3C70D510D}
Windows Live Messenger-->MsiExec.exe /X{66DB6D91-BF91-480B-933D-7CB8B1E64D74}
Windows Live Messenger-->MsiExec.exe /X{F2235E5E-7881-4293-9B6F-04B2609FBFF0}
Windows Live MIME IFilter-->MsiExec.exe /I{F6822EFD-3F7D-4B35-8845-757A26AEC8E2}
Windows Live Movie Maker-->MsiExec.exe /X{BF022D76-9F72-4203-B8FA-6522DC66DFDA}
Windows Live Photo Common-->MsiExec.exe /X{ADFE4AED-7F8E-4658-8D6E-742B15B9F120}
Windows Live Photo Common-->MsiExec.exe /X{C9B6EFD0-4F01-4BBA-8374-39AD99A3ED72}
Windows Live PIMT Platform-->MsiExec.exe /I{6A8DB215-7BCD-4377-B015-2E4541A3E7C6}
Windows Live SOXE Definitions-->MsiExec.exe /I{8A642ACD-CE3A-4A23-A8B1-A0F7EB12B214}
Windows Live SOXE-->MsiExec.exe /I{FE7C0B3D-50B9-4951-BE78-A321CBF86552}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{18272881-CFC0-434D-A975-E5BE44206AA0}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{74E8A7F6-575D-42C7-9178-E87D1B3BEFE8}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{E18F981B-401C-4D90-BC57-D8903564D558}
Windows Live UX Platform-->MsiExec.exe /I{4CCBD1F4-CEEC-452A-9CB8-46564B501315}
Windows Live Writer Resources-->MsiExec.exe /X{23A3E560-069F-4CFC-8F6C-1B526EC735FC}
Windows Live Writer Resources-->MsiExec.exe /X{3A9ECD64-DE00-4779-A89E-C878513B2B37}
Windows Live Writer Resources-->MsiExec.exe /X{C29FC15D-E84B-4EEC-8505-4DED94414C59}
Windows Live Writer-->MsiExec.exe /X{42B6C7E0-0DAE-488D-8DAF-838898102F19}
Windows Live Writer-->MsiExec.exe /X{4B28D47A-5FF0-45F8-8745-11DC2A1C9D0F}
Windows Live Writer-->MsiExec.exe /X{86C40513-B5A4-476E-9EAB-EC118DCF4502}
Windows Live Writer-->MsiExec.exe /X{97C79BEC-43F7-4BD8-A6A7-85C0257E488A}
Windows Live Writer-->MsiExec.exe /X{D2C146B1-948D-47EF-8387-5D1C6B980F7C}
Windows Mobile Device Center-->MsiExec.exe /X{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}
WinRAR-->C:\Program Files (x86)\WinRAR\uninstall.exe
Zuma Deluxe-->"C:\Program Files (x86)\HP Games\Zuma Deluxe\uninstall\uninstaller.exe"
Συλλογή φωτογραφιών του Windows Live-->MsiExec.exe /X{C00C2A91-6CB3-483F-80B3-2958E29468F1}

======System event log======

Computer Name: Ondra-HP
Event Code: 10002
Message: WLAN Extensibility Module has stopped.

Module Path: C:\Windows\System32\bcmihvsrv64.dll

Record Number: 109918
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20131125201744.014078-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: Ondra-HP
Event Code: 1014
Message: Name resolution for the name _ldap._tcp.dc._msdcs.jurova.sit.net timed out after none of the configured DNS servers responded.
Record Number: 109833
Source Name: Microsoft-Windows-DNS-Client
Time Written: 20131125200825.365944-000
Event Type: Warning
User: NT AUTHORITY\NETWORK SERVICE

Computer Name: Ondra-HP
Event Code: 1014
Message: Name resolution for the name _ldap._tcp.dc._msdcs.jurova.sit.net timed out after none of the configured DNS servers responded.
Record Number: 109817
Source Name: Microsoft-Windows-DNS-Client
Time Written: 20131125200813.307123-000
Event Type: Warning
User: NT AUTHORITY\NETWORK SERVICE

Computer Name: Ondra-HP
Event Code: 4001
Message: WLAN AutoConfig service has successfully stopped.

Record Number: 109716
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20131125200642.231564-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: Ondra-HP
Event Code: 10002
Message: WLAN Extensibility Module has stopped.

Module Path: C:\Windows\System32\bcmihvsrv64.dll

Record Number: 109715
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20131125200642.231564-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

=====Application event log=====

Computer Name: Ondra-HP
Event Code: 10
Message: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Record Number: 29639
Source Name: Microsoft-Windows-WMI
Time Written: 20131125203317.000000-000
Event Type: Error
User:

Computer Name: Ondra-HP
Event Code: 10
Message: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Record Number: 29595
Source Name: Microsoft-Windows-WMI
Time Written: 20131125202554.000000-000
Event Type: Error
User:

Computer Name: Ondra-HP
Event Code: 1530
Message: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.

DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-435210660-2472884283-4013427881-1000:
Process 2428 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-435210660-2472884283-4013427881-1000

Record Number: 29574
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20131125202435.092587-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: Ondra-HP
Event Code: 10
Message: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Record Number: 29550
Source Name: Microsoft-Windows-WMI
Time Written: 20131125201953.000000-000
Event Type: Error
User:

Computer Name: Ondra-HP
Event Code: 10
Message: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Record Number: 29503
Source Name: Microsoft-Windows-WMI
Time Written: 20131125200826.000000-000
Event Type: Error
User:

=====Security event log=====

Computer Name: Ondra-HP
Event Code: 1100
Message: The event logging service has shut down.
Record Number: 25289
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131125200641.233162-000
Event Type: Audit Success
User:

Computer Name: Ondra-HP
Event Code: 4647
Message: User initiated logoff:

Subject:
Security ID: S-1-5-21-435210660-2472884283-4013427881-1000
Account Name: Ondra
Account Domain: Ondra-HP
Logon ID: 0x25653

This event is generated when a logoff is initiated. No further user-initiated activity can occur. This event can be interpreted as a logoff event.
Record Number: 25288
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131125200640.219160-000
Event Type: Audit Success
User:

Computer Name: Ondra-HP
Event Code: 4672
Message: Special privileges assigned to new logon.

Subject:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7

Privileges: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 25287
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131125200639.595159-000
Event Type: Audit Success
User:

Computer Name: Ondra-HP
Event Code: 4624
Message: An account was successfully logged on.

Subject:
Security ID: S-1-5-18
Account Name: ONDRA-HP$
Account Domain: WORKGROUP
Logon ID: 0x3e7

Logon Type: 5

New Logon:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7
Logon GUID: {00000000-0000-0000-0000-000000000000}

Process Information:
Process ID: 0x2f8
Process Name: C:\Windows\System32\services.exe

Network Information:
Workstation Name:
Source Network Address: -
Source Port: -

Detailed Authentication Information:
Logon Process: Advapi
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0

This event is generated when a logon session is created. It is generated on the computer that was accessed.

The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).

The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.

The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Record Number: 25286
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131125200639.595159-000
Event Type: Audit Success
User:

Computer Name: Ondra-HP
Event Code: 1102
Message: The audit log was cleared.
Subject:
Security ID: S-1-5-21-435210660-2472884283-4013427881-1000
Account Name: Ondra
Domain Name: Ondra-HP
Logon ID: 0x25629
Record Number: 25285
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131125200250.527431-000
Event Type: Audit Success
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\HP SimplePass 2011;C:\Program Files\Broadcom\Broadcom 802.11\Driver;;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\WIDCOMM\Bluetooth Software;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files\Broadcom\WHL;C:\Program Files\Broadcom\WHL\syswow64;C:\Program Files\Broadcom\WHL\SysWow64;C:\Program Files\Broadcom\WHL\SysWow64\syswow64;C:\Program Files (x86)\Intel\Services\IPT
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
"PROCESSOR_REVISION"=2a07
"windows_tracing_logfile"=C:\BVTBin\Tests\installpackage\csilogfile.log
"windows_tracing_flags"=3
"OnlineServices"=Online Services
"Platform"=MCD
"PCBRAND"=Pavilion

-----------------EOF-----------------

Re: Prosím o kontrolu logu

Napsal: 26 lis 2013 23:21
od vyosek
Zdravim :)

:arrow: Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
  • Ulozte nejlepe na plochu
  • Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
  • Probehne vytvoreni zalohy a nasledne prohledavani
  • Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte
:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Re: Prosím o kontrolu logu

Napsal: 27 lis 2013 12:13
od Pavouk1
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Ondra on st 27.11.2013 at 12:01:23,47
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{715F5480-C70A-48E2-8705-630EC0F2C540}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\mypc backup"



~~~ FireFox

Successfully deleted: [File] C:\Users\Ondra\AppData\Roaming\mozilla\firefox\profiles\y163a8n3.default\user.js
Emptied folder: C:\Users\Ondra\AppData\Roaming\mozilla\firefox\profiles\y163a8n3.default\minidumps [1 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 27.11.2013 at 12:11:59,26
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Re: Prosím o kontrolu logu

Napsal: 27 lis 2013 12:17
od Pavouk1
# AdwCleaner v3.013 - Report created 27/11/2013 at 12:15:13
# Updated 24/11/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Ondra - ONDRA-HP
# Running from : C:\Users\Ondra\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\SmileysWeLove

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v25.0.1 (cs)

[ File : C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\y163a8n3.default\prefs.js ]


-\\ Google Chrome v31.0.1650.57

[ File : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R4].txt - [984 octets] - [27/11/2013 12:14:21]
AdwCleaner[S4].txt - [861 octets] - [27/11/2013 12:15:13]

########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [920 octets] ##########

Re: Prosím o kontrolu logu

Napsal: 27 lis 2013 15:22
od vyosek
Poprosim o log dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=30&t=133101

Re: Prosím o kontrolu logu

Napsal: 04 pro 2013 14:32
od Pavouk1
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-12-2013 02
Ran by Ondra (administrator) on ONDRA-HP on 04-12-2013 14:30:57
Running from C:\Users\Ondra\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(HP) C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVerMedia) C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
() C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe
(AVerMedia Technologies, Inc.) C:\Program Files (x86)\SnugTV\SnugTV Station\AMAServer.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar3.exe
() C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Hewlett Packard) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Audio\HPWA.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Farbar) C:\Users\Ondra\Downloads\FRST64(3).exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-06-08] (IDT, Inc.)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [SetDefault] - C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [44880 2011-12-19] (Hewlett-Packard Development Company, L.P.)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2013-11-27] (Hewlett-Packard)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-09-04] (Samsung)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20549280 2013-10-21] (Skype Technologies S.A.)
HKCU\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2289664 2008-01-24] (Hewlett-Packard Company)
HKCU\...\Run: [Facebook Update] - C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-08-05] (Facebook Inc.)
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-09-04] (Samsung)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-05-08] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-04-29] (Intel Corporation)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-09-04] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HPConnectionManager] - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [103992 2011-09-13] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [HPOSD] - C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HPQuickWebProxy] - C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [169856 2012-01-05] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [4858968 2013-05-09] (AVAST Software)
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {DBB620F6-3D28-46FC-BE3B-3491B1FEEAED} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
SearchScopes: HKCU - {ABCF782E-F87A-4522-A5FE-A985A13B3EFC} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - No Name - {48586425-6bb7-4f51-8dc6-38c88e3ebb58} - No File
Toolbar: HKLM-x32 - No Name - {cd1a63ba-a08c-431b-9a34-f240aadc728d} - No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
DPF: HKLM {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20614.www2.hp.com/ediags/gmd/In ... ect125.cab
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/s ... wflash.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab
DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20614.www2.hp.com/ediags/gmd/In ... ct1261.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.2

FireFox:
========
FF ProfilePath: C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\y163a8n3.default
FF DefaultSearchEngine: Yahoo
FF SearchEngineOrder.1: Google
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=1.2.22 - C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @VideoDownloadConverter_4z.com/Plugin - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Ondra\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\safeguard-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: jid1-vW9nopuIAJiRHw - C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\y163a8n3.default\Extensions\jid1-vW9nopuIAJiRHw@jetpack.xpi
FF Extension: translator - C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\y163a8n3.default\Extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_1
CHR Extension: (Google Drive) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1
CHR Extension: (YouTube) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Website Logon) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdhihajbmafmgilcciomnamcjfkdhikl\1.0_0
CHR Extension: (Freemake Video Converter) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj\1.0.0_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_1
CHR Extension: (Gmail) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [hdhihajbmafmgilcciomnamcjfkdhikl] - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [360448 2011-08-19] (AVerMedia)
R2 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [403456 2011-04-01] ()
S4 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2011-10-31] (AVerMedia TECHNOLOGIES, Inc.)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [101888 2013-09-26] (Freemake)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 SnugTV Service; C:\Program Files (x86)\SnugTV\SnugTV Station\AMAServer.exe [528384 2010-05-06] (AVerMedia Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-06-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-06-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-06-30] ()
S3 AVerFx2hbtv64; C:\Windows\System32\drivers\AVerFx2hbtv64.sys [691968 2012-09-19] (AVerMedia TECHNOLOGIES, Inc.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-06-21] (AVG Technologies)
R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [133160 2011-06-16] (Broadcom Corporation.)
R3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2011-05-21] (Broadcom Corporation.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2013-04-16] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 clwvd; system32\DRIVERS\clwvd.sys [x]
S3 cpuz130; \??\C:\Users\Ondra\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-04 14:30 - 2013-12-04 14:30 - 01959614 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(3).exe
2013-12-04 14:29 - 2013-12-04 14:29 - 01849814 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(2).exe.part
2013-12-04 14:29 - 2013-12-04 14:29 - 00000000 _____ C:\Users\Ondra\Downloads\FRST64(2).exe
2013-11-27 13:20 - 2013-11-27 13:20 - 00033655 _____ C:\Users\Ondra\Downloads\Addition.txt
2013-11-27 13:19 - 2013-12-04 14:30 - 00021740 _____ C:\Users\Ondra\Downloads\FRST.txt
2013-11-27 13:19 - 2013-11-27 13:19 - 00000000 ____D C:\FRST
2013-11-27 13:18 - 2013-11-27 13:19 - 01958818 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(1).exe
2013-11-27 13:18 - 2013-11-27 13:18 - 01851083 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64.exe.part
2013-11-27 13:18 - 2013-11-27 13:18 - 00000000 _____ C:\Users\Ondra\Downloads\FRST64.exe
2013-11-27 12:14 - 2013-11-27 12:15 - 00000000 ____D C:\AdwCleaner
2013-11-27 12:14 - 2013-11-27 12:14 - 01091882 _____ C:\Users\Ondra\Downloads\adwcleaner.exe
2013-11-27 12:11 - 2013-11-27 12:11 - 00001192 _____ C:\Users\Ondra\Desktop\JRT.txt
2013-11-27 11:41 - 2013-11-27 11:42 - 01034531 _____ (Thisisu) C:\Users\Ondra\Downloads\JRT(3).exe
2013-11-27 11:41 - 2013-11-27 11:41 - 00000000 _____ C:\Users\Ondra\Downloads\JRT.exe
2013-11-26 21:38 - 2013-11-26 21:38 - 00000000 ____D C:\rsit
2013-11-26 14:08 - 2013-12-04 14:24 - 00000392 _____ C:\Windows\setupact.log
2013-11-26 14:08 - 2013-12-03 22:46 - 00001028 _____ C:\Windows\PFRO.log
2013-11-26 14:08 - 2013-11-26 14:08 - 00000000 _____ C:\Windows\setuperr.log
2013-11-26 13:59 - 2013-11-26 13:59 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-26 13:59 - 2013-11-26 13:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-26 13:59 - 2013-11-26 13:59 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-26 13:59 - 2013-11-26 13:59 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-26 13:59 - 2013-11-26 13:59 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-26 13:59 - 2013-11-26 13:59 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-26 13:59 - 2013-11-26 13:59 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-26 13:59 - 2013-11-26 13:59 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-26 13:59 - 2013-11-26 13:59 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-26 13:59 - 2013-11-26 13:59 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-26 13:59 - 2013-11-26 13:59 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-26 13:51 - 2013-11-26 13:51 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Symantec
2013-11-26 12:15 - 2013-11-26 12:15 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\SmileysWeLove
2013-11-26 12:13 - 2013-11-26 12:13 - 00923784 _____ (CNET Download.com) C:\Users\Ondra\Downloads\cbsidlm-cbsi145-YTD_Video_Downloader-ORG-10647340.exe
2013-11-26 12:11 - 2013-11-26 12:12 - 16545382 _____ C:\Users\Ondra\Downloads\YTDSetup(2).exe.part
2013-11-26 12:11 - 2013-11-26 12:11 - 00000000 _____ C:\Users\Ondra\Downloads\YTDSetup(2).exe
2013-11-26 12:10 - 2013-11-26 12:11 - 04873520 _____ C:\Users\Ondra\Downloads\YTDSetup(1).exe
2013-11-25 22:28 - 2013-11-25 22:29 - 04618136 _____ (Piriform Ltd) C:\Users\Ondra\Downloads\ccsetup408.exe
2013-11-25 22:23 - 2013-11-25 22:23 - 00448512 _____ (OldTimer Tools) C:\Users\Ondra\Downloads\TFC.exe
2013-11-25 22:13 - 2013-11-25 22:13 - 00165888 _____ C:\Users\Ondra\Downloads\T-Cleaner.exe
2013-11-25 22:05 - 2013-11-25 22:05 - 01091882 _____ C:\Users\Ondra\Downloads\adwcleaner(1).exe
2013-11-25 21:53 - 2013-11-25 21:53 - 01034531 _____ (Thisisu) C:\Users\Ondra\Downloads\JRT(2).exe
2013-11-25 21:53 - 2013-11-25 21:53 - 00000000 _____ C:\Users\Ondra\Downloads\JRT(1).exe
2013-11-25 21:24 - 2013-11-25 21:24 - 00000000 ____D C:\ProgramData\McAfee
2013-11-16 16:58 - 2013-11-16 16:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-15 15:46 - 2013-11-15 15:47 - 00000000 ____D C:\MP3
2013-11-15 15:45 - 2013-10-12 04:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-15 15:45 - 2013-10-12 04:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-15 15:45 - 2013-10-12 04:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-15 15:45 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-15 15:45 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-15 15:45 - 2013-10-05 22:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-15 15:45 - 2013-10-05 21:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-15 15:45 - 2013-10-04 04:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-15 15:45 - 2013-10-04 04:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-15 15:45 - 2013-10-04 04:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-15 15:45 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-15 15:45 - 2013-10-04 03:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-15 15:45 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-15 15:45 - 2013-10-03 04:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-15 15:45 - 2013-10-03 04:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-15 15:45 - 2013-09-28 03:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-15 15:45 - 2013-09-25 04:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-15 15:45 - 2013-09-25 04:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-15 15:45 - 2013-09-25 04:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-15 15:45 - 2013-09-25 04:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-15 15:45 - 2013-09-25 04:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-15 15:45 - 2013-09-25 04:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-15 15:45 - 2013-09-25 04:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-15 15:45 - 2013-09-25 04:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-15 15:45 - 2013-09-25 03:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-15 15:45 - 2013-09-25 03:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-15 15:45 - 2013-09-25 03:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-15 15:45 - 2013-09-25 03:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-15 15:45 - 2013-09-25 03:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-15 15:45 - 2013-07-04 14:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-13 18:14 - 2013-11-13 18:26 - 00000000 ____D C:\tatka
2013-11-12 18:41 - 2013-11-12 18:41 - 00008246 _____ C:\Users\Ondra\AppData\Local\recently-used.xbel
2013-11-12 17:52 - 2013-11-12 17:51 - 09887848 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsPStorIcon.dll
2013-11-12 17:52 - 2013-11-12 17:51 - 00339048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsPStor.sys

==================== One Month Modified Files and Folders =======

2013-12-04 14:31 - 2013-11-27 13:19 - 00021740 _____ C:\Users\Ondra\Downloads\FRST.txt
2013-12-04 14:30 - 2013-12-04 14:30 - 01959614 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(3).exe
2013-12-04 14:29 - 2013-12-04 14:29 - 01849814 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(2).exe.part
2013-12-04 14:29 - 2013-12-04 14:29 - 00000000 _____ C:\Users\Ondra\Downloads\FRST64(2).exe
2013-12-04 14:27 - 2013-01-22 18:03 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Skype
2013-12-04 14:25 - 2013-10-26 22:01 - 00000494 _____ C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job
2013-12-04 14:25 - 2013-07-22 19:17 - 00000946 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-04 14:24 - 2013-11-26 14:08 - 00000392 _____ C:\Windows\setupact.log
2013-12-04 14:24 - 2013-01-22 17:31 - 00000332 _____ C:\Windows\Tasks\HPCeeScheduleForOndra.job
2013-12-04 14:24 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-03 23:01 - 2013-01-22 17:31 - 00003186 _____ C:\Windows\System32\Tasks\HPCeeScheduleForOndra
2013-12-03 23:01 - 2012-01-19 19:34 - 01434511 _____ C:\Windows\WindowsUpdate.log
2013-12-03 23:00 - 2013-02-28 21:09 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-12-03 23:00 - 2013-01-23 23:17 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-12-03 22:58 - 2013-07-22 19:17 - 00000950 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-03 22:54 - 2009-07-14 06:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-03 22:54 - 2009-07-14 06:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-03 22:53 - 2013-01-22 17:32 - 00003926 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{16E141D6-9BDA-4E15-ACA9-F04D0616E45F}
2013-12-03 22:46 - 2013-11-26 14:08 - 00001028 _____ C:\Windows\PFRO.log
2013-11-27 13:20 - 2013-11-27 13:20 - 00033655 _____ C:\Users\Ondra\Downloads\Addition.txt
2013-11-27 13:19 - 2013-11-27 13:19 - 00000000 ____D C:\FRST
2013-11-27 13:19 - 2013-11-27 13:18 - 01958818 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(1).exe
2013-11-27 13:18 - 2013-11-27 13:18 - 01851083 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64.exe.part
2013-11-27 13:18 - 2013-11-27 13:18 - 00000000 _____ C:\Users\Ondra\Downloads\FRST64.exe
2013-11-27 13:18 - 2009-07-14 07:13 - 00726444 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-27 13:15 - 2013-08-05 14:32 - 00000928 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000UA.job
2013-11-27 13:15 - 2013-01-22 19:09 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-27 12:15 - 2013-11-27 12:14 - 00000000 ____D C:\AdwCleaner
2013-11-27 12:14 - 2013-11-27 12:14 - 01091882 _____ C:\Users\Ondra\Downloads\adwcleaner.exe
2013-11-27 12:11 - 2013-11-27 12:11 - 00001192 _____ C:\Users\Ondra\Desktop\JRT.txt
2013-11-27 11:42 - 2013-11-27 11:41 - 01034531 _____ (Thisisu) C:\Users\Ondra\Downloads\JRT(3).exe
2013-11-27 11:41 - 2013-11-27 11:41 - 00000000 _____ C:\Users\Ondra\Downloads\JRT.exe
2013-11-26 21:38 - 2013-11-26 21:38 - 00000000 ____D C:\rsit
2013-11-26 21:38 - 2013-06-30 10:32 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-26 21:38 - 2013-06-04 08:52 - 00000000 ____D C:\Program Files\trend micro
2013-11-26 14:10 - 2013-01-22 17:32 - 00001413 _____ C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-26 14:09 - 2007-01-02 03:25 - 00000000 ____D C:\Windows\Panther
2013-11-26 14:08 - 2013-11-26 14:08 - 00000000 _____ C:\Windows\setuperr.log
2013-11-26 14:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-26 13:59 - 2013-11-26 13:59 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-26 13:59 - 2013-11-26 13:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-26 13:59 - 2013-11-26 13:59 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-26 13:59 - 2013-11-26 13:59 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-26 13:59 - 2013-11-26 13:59 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-26 13:59 - 2013-11-26 13:59 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-26 13:59 - 2013-11-26 13:59 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-26 13:59 - 2013-11-26 13:59 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-26 13:59 - 2013-11-26 13:59 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-26 13:59 - 2013-11-26 13:59 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-26 13:59 - 2013-11-26 13:59 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-26 13:51 - 2013-11-26 13:51 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Symantec
2013-11-26 13:50 - 2013-10-16 15:25 - 00000000 ____D C:\Program Files (x86)\SqueakyChocolate
2013-11-26 13:44 - 2013-01-22 17:32 - 00000000 ___RD C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-26 13:40 - 2013-01-22 20:51 - 00000000 ____D C:\Program Files (x86)\DVR-STUDIO HD 2
2013-11-26 13:39 - 2013-01-22 17:49 - 00000000 ____D C:\Program Files (x86)\DVDx 4.0 Open Edition
2013-11-26 13:38 - 2013-08-01 18:19 - 00000000 ____D C:\Program Files (x86)\DVDx 4.0
2013-11-26 12:15 - 2013-11-26 12:15 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\SmileysWeLove
2013-11-26 12:15 - 2013-10-16 15:25 - 00000000 ____D C:\Users\Ondra\Documents\Add-in Express
2013-11-26 12:13 - 2013-11-26 12:13 - 00923784 _____ (CNET Download.com) C:\Users\Ondra\Downloads\cbsidlm-cbsi145-YTD_Video_Downloader-ORG-10647340.exe
2013-11-26 12:12 - 2013-11-26 12:11 - 16545382 _____ C:\Users\Ondra\Downloads\YTDSetup(2).exe.part
2013-11-26 12:11 - 2013-11-26 12:11 - 00000000 _____ C:\Users\Ondra\Downloads\YTDSetup(2).exe
2013-11-26 12:11 - 2013-11-26 12:10 - 04873520 _____ C:\Users\Ondra\Downloads\YTDSetup(1).exe
2013-11-25 22:30 - 2013-04-07 11:24 - 00000000 ____D C:\Users\Ondra\AppData\Local\CrashDumps
2013-11-25 22:29 - 2013-11-25 22:28 - 04618136 _____ (Piriform Ltd) C:\Users\Ondra\Downloads\ccsetup408.exe
2013-11-25 22:29 - 2013-03-27 17:29 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-11-25 22:29 - 2013-03-27 17:29 - 00000000 ____D C:\Program Files\CCleaner
2013-11-25 22:23 - 2013-11-25 22:23 - 00448512 _____ (OldTimer Tools) C:\Users\Ondra\Downloads\TFC.exe
2013-11-25 22:14 - 2013-01-22 16:26 - 00000000 ____D C:\Users\Ondra
2013-11-25 22:13 - 2013-11-25 22:13 - 00165888 _____ C:\Users\Ondra\Downloads\T-Cleaner.exe
2013-11-25 22:13 - 2013-06-09 07:50 - 00000000 ____D C:\Qoobox
2013-11-25 22:05 - 2013-11-25 22:05 - 01091882 _____ C:\Users\Ondra\Downloads\adwcleaner(1).exe
2013-11-25 21:53 - 2013-11-25 21:53 - 01034531 _____ (Thisisu) C:\Users\Ondra\Downloads\JRT(2).exe
2013-11-25 21:53 - 2013-11-25 21:53 - 00000000 _____ C:\Users\Ondra\Downloads\JRT(1).exe
2013-11-25 21:25 - 2013-01-31 20:21 - 00000000 ____D C:\Users\Ondra\AppData\Local\Adobe
2013-11-25 21:24 - 2013-11-25 21:24 - 00000000 ____D C:\ProgramData\McAfee
2013-11-25 21:24 - 2013-01-22 19:09 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-25 21:24 - 2013-01-22 19:09 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-25 21:24 - 2011-07-21 18:54 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-25 15:37 - 2013-08-05 14:32 - 00000906 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000Core.job
2013-11-25 15:19 - 2013-01-22 18:58 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\vlc
2013-11-17 15:17 - 2013-07-22 19:18 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-17 15:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-11-16 16:58 - 2013-11-16 16:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-16 03:07 - 2013-08-19 16:49 - 00000000 ____D C:\Windows\system32\MRT
2013-11-16 03:01 - 2013-01-22 18:14 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-15 15:47 - 2013-11-15 15:46 - 00000000 ____D C:\MP3
2013-11-13 18:26 - 2013-11-13 18:14 - 00000000 ____D C:\tatka
2013-11-12 18:41 - 2013-11-12 18:41 - 00008246 _____ C:\Users\Ondra\AppData\Local\recently-used.xbel
2013-11-12 18:41 - 2013-02-04 23:26 - 00000000 ____D C:\Users\Ondra\.gimp-2.8
2013-11-12 17:52 - 2012-01-19 19:33 - 00000000 ____D C:\Windows\SysWOW64\sda
2013-11-12 17:52 - 2012-01-19 19:33 - 00000000 ____D C:\Program Files (x86)\Realtek
2013-11-12 17:51 - 2013-11-12 17:52 - 09887848 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsPStorIcon.dll
2013-11-12 17:51 - 2013-11-12 17:52 - 00339048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsPStor.sys
2013-11-12 17:51 - 2011-02-10 21:23 - 00000000 ____D C:\SWSetup
2013-11-12 17:45 - 2013-10-29 19:11 - 00000000 ____D C:\Pavla1
2013-11-12 10:59 - 2013-02-18 19:36 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-12 10:59 - 2013-01-22 18:03 - 00000000 ____D C:\ProgramData\Skype
2013-11-11 14:49 - 2013-04-06 15:05 - 00000000 ____D C:\fotky 2012
2013-11-11 05:50 - 2010-11-21 05:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-08 17:37 - 2013-01-29 22:45 - 00000000 ____D C:\FOTO
2013-11-08 17:26 - 2013-02-22 19:24 - 00000000 ____D C:\Users\Ondra\AppData\Local\Windows Live
2013-11-08 14:25 - 2013-01-22 17:47 - 00003218 _____ C:\Windows\System32\Tasks\HPCeeScheduleForONDRA-HP$
2013-11-08 14:25 - 2013-01-22 17:47 - 00000342 _____ C:\Windows\Tasks\HPCeeScheduleForONDRA-HP$.job

Some content of TEMP:
====================
C:\Users\Ondra\AppData\Local\Temp\BackupSetup.exe
C:\Users\Ondra\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-12 19:07

==================== End Of Log ============================

Re: Prosím o kontrolu logu

Napsal: 04 pro 2013 19:45
od vyosek
:arrow: Kdyz se budete drzet navodu, bude to lepsi :?:

:arrow: FRSTLauncher - NESTAZEN, FRST stazen ale do spatneho mista - navod pise o plose
Running from C:\Users\Ondra\Downloads
:arrow: Takze prosim znovu a lepe. My si ty navody nepiseme pro sebe a jen tak z nudy :?:

Re: Prosím o kontrolu logu

Napsal: 04 pro 2013 20:15
od Pavouk1
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-12-2013
Ran by Ondra (administrator) on ONDRA-HP on 04-12-2013 20:12:22
Running from C:\Users\Ondra\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(HP) C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVerMedia) C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
() C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(AVerMedia Technologies, Inc.) C:\Program Files (x86)\SnugTV\SnugTV Station\AMAServer.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
() C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar3.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
() C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Hewlett Packard) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Audio\HPWA.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPConnectionManager.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(forum.viry.cz) C:\Users\Ondra\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-06-08] (IDT, Inc.)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [SetDefault] - C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [44880 2011-12-19] (Hewlett-Packard Development Company, L.P.)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2013-11-27] (Hewlett-Packard)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-09-04] (Samsung)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20549280 2013-10-21] (Skype Technologies S.A.)
HKCU\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2289664 2008-01-24] (Hewlett-Packard Company)
HKCU\...\Run: [Facebook Update] - C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-08-05] (Facebook Inc.)
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-09-04] (Samsung)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-05-08] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-04-29] (Intel Corporation)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-09-04] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HPConnectionManager] - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [103992 2011-09-13] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [HPOSD] - C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HPQuickWebProxy] - C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [169856 2012-01-05] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [4858968 2013-05-09] (AVAST Software)
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {DBB620F6-3D28-46FC-BE3B-3491B1FEEAED} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
SearchScopes: HKCU - {ABCF782E-F87A-4522-A5FE-A985A13B3EFC} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - No Name - {48586425-6bb7-4f51-8dc6-38c88e3ebb58} - No File
Toolbar: HKLM-x32 - No Name - {cd1a63ba-a08c-431b-9a34-f240aadc728d} - No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
DPF: HKLM {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20614.www2.hp.com/ediags/gmd/In ... ect125.cab
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/s ... wflash.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab
DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20614.www2.hp.com/ediags/gmd/In ... ct1261.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.2

FireFox:
========
FF ProfilePath: C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\y163a8n3.default
FF DefaultSearchEngine: Yahoo
FF SearchEngineOrder.1: Google
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=1.2.22 - C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @VideoDownloadConverter_4z.com/Plugin - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Ondra\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\safeguard-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: jid1-vW9nopuIAJiRHw - C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\y163a8n3.default\Extensions\jid1-vW9nopuIAJiRHw@jetpack.xpi
FF Extension: translator - C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\y163a8n3.default\Extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_1
CHR Extension: (Google Drive) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1
CHR Extension: (YouTube) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Website Logon) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdhihajbmafmgilcciomnamcjfkdhikl\1.0_0
CHR Extension: (Freemake Video Converter) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj\1.0.0_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_1
CHR Extension: (Gmail) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [hdhihajbmafmgilcciomnamcjfkdhikl] - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [360448 2011-08-19] (AVerMedia)
R2 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [403456 2011-04-01] ()
S4 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2011-10-31] (AVerMedia TECHNOLOGIES, Inc.)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [101888 2013-09-26] (Freemake)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 SnugTV Service; C:\Program Files (x86)\SnugTV\SnugTV Station\AMAServer.exe [528384 2010-05-06] (AVerMedia Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-06-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-06-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-06-30] ()
S3 AVerFx2hbtv64; C:\Windows\System32\drivers\AVerFx2hbtv64.sys [691968 2012-09-19] (AVerMedia TECHNOLOGIES, Inc.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-06-21] (AVG Technologies)
R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [133160 2011-06-16] (Broadcom Corporation.)
R3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2011-05-21] (Broadcom Corporation.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2013-04-16] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 clwvd; system32\DRIVERS\clwvd.sys [x]
S3 cpuz130; \??\C:\Users\Ondra\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-04 20:12 - 2013-12-04 20:12 - 00000000 ____D C:\FRST
2013-12-04 20:02 - 2013-12-04 20:12 - 00022146 _____ C:\Users\Ondra\Desktop\FRST.txt
2013-12-04 20:01 - 2013-12-04 20:00 - 01959766 _____ (Farbar) C:\Users\Ondra\Desktop\FRST64.exe
2013-12-04 20:00 - 2013-12-04 20:00 - 01959766 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(3).exe
2013-12-04 14:34 - 2013-12-04 14:33 - 00112640 _____ (forum.viry.cz) C:\Users\Ondra\Desktop\FRSTLauncher.exe
2013-12-04 14:33 - 2013-12-04 14:33 - 00112640 _____ (forum.viry.cz) C:\Users\Ondra\Downloads\FRSTLauncher.exe
2013-12-04 14:29 - 2013-12-04 14:29 - 01849814 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(2).exe.part
2013-12-04 14:29 - 2013-12-04 14:29 - 00000000 _____ C:\Users\Ondra\Downloads\FRST64(2).exe
2013-11-27 13:19 - 2013-12-04 14:32 - 00062465 _____ C:\Users\Ondra\Downloads\FRST.txt
2013-11-27 13:18 - 2013-11-27 13:19 - 01958818 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(1).exe
2013-11-27 13:18 - 2013-11-27 13:18 - 01851083 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64.exe.part
2013-11-27 13:18 - 2013-11-27 13:18 - 00000000 _____ C:\Users\Ondra\Downloads\FRST64.exe
2013-11-27 12:14 - 2013-11-27 12:15 - 00000000 ____D C:\AdwCleaner
2013-11-27 12:14 - 2013-11-27 12:14 - 01091882 _____ C:\Users\Ondra\Downloads\adwcleaner.exe
2013-11-27 12:11 - 2013-11-27 12:11 - 00001192 _____ C:\Users\Ondra\Desktop\JRT.txt
2013-11-27 11:41 - 2013-11-27 11:42 - 01034531 _____ (Thisisu) C:\Users\Ondra\Downloads\JRT(3).exe
2013-11-27 11:41 - 2013-11-27 11:41 - 00000000 _____ C:\Users\Ondra\Downloads\JRT.exe
2013-11-26 21:38 - 2013-11-26 21:38 - 00000000 ____D C:\rsit
2013-11-26 14:08 - 2013-12-04 18:22 - 00000504 _____ C:\Windows\setupact.log
2013-11-26 14:08 - 2013-12-03 22:46 - 00001028 _____ C:\Windows\PFRO.log
2013-11-26 14:08 - 2013-11-26 14:08 - 00000000 _____ C:\Windows\setuperr.log
2013-11-26 13:59 - 2013-11-26 13:59 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-26 13:59 - 2013-11-26 13:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-26 13:59 - 2013-11-26 13:59 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-26 13:59 - 2013-11-26 13:59 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-26 13:59 - 2013-11-26 13:59 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-26 13:59 - 2013-11-26 13:59 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-26 13:59 - 2013-11-26 13:59 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-26 13:59 - 2013-11-26 13:59 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-26 13:59 - 2013-11-26 13:59 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-26 13:59 - 2013-11-26 13:59 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-26 13:59 - 2013-11-26 13:59 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-26 13:51 - 2013-11-26 13:51 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Symantec
2013-11-26 12:15 - 2013-11-26 12:15 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\SmileysWeLove
2013-11-26 12:13 - 2013-11-26 12:13 - 00923784 _____ (CNET Download.com) C:\Users\Ondra\Downloads\cbsidlm-cbsi145-YTD_Video_Downloader-ORG-10647340.exe
2013-11-26 12:11 - 2013-11-26 12:12 - 16545382 _____ C:\Users\Ondra\Downloads\YTDSetup(2).exe.part
2013-11-26 12:11 - 2013-11-26 12:11 - 00000000 _____ C:\Users\Ondra\Downloads\YTDSetup(2).exe
2013-11-26 12:10 - 2013-11-26 12:11 - 04873520 _____ C:\Users\Ondra\Downloads\YTDSetup(1).exe
2013-11-25 22:28 - 2013-11-25 22:29 - 04618136 _____ (Piriform Ltd) C:\Users\Ondra\Downloads\ccsetup408.exe
2013-11-25 22:23 - 2013-11-25 22:23 - 00448512 _____ (OldTimer Tools) C:\Users\Ondra\Downloads\TFC.exe
2013-11-25 22:13 - 2013-11-25 22:13 - 00165888 _____ C:\Users\Ondra\Downloads\T-Cleaner.exe
2013-11-25 22:05 - 2013-11-25 22:05 - 01091882 _____ C:\Users\Ondra\Downloads\adwcleaner(1).exe
2013-11-25 21:53 - 2013-11-25 21:53 - 01034531 _____ (Thisisu) C:\Users\Ondra\Downloads\JRT(2).exe
2013-11-25 21:53 - 2013-11-25 21:53 - 00000000 _____ C:\Users\Ondra\Downloads\JRT(1).exe
2013-11-25 21:24 - 2013-11-25 21:24 - 00000000 ____D C:\ProgramData\McAfee
2013-11-16 16:58 - 2013-11-16 16:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-15 15:46 - 2013-11-15 15:47 - 00000000 ____D C:\MP3
2013-11-15 15:45 - 2013-10-12 04:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-15 15:45 - 2013-10-12 04:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-15 15:45 - 2013-10-12 04:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-15 15:45 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-15 15:45 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-15 15:45 - 2013-10-05 22:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-15 15:45 - 2013-10-05 21:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-15 15:45 - 2013-10-04 04:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-15 15:45 - 2013-10-04 04:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-15 15:45 - 2013-10-04 04:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-15 15:45 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-15 15:45 - 2013-10-04 03:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-15 15:45 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-15 15:45 - 2013-10-03 04:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-15 15:45 - 2013-10-03 04:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-15 15:45 - 2013-09-28 03:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-15 15:45 - 2013-09-25 04:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-15 15:45 - 2013-09-25 04:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-15 15:45 - 2013-09-25 04:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-15 15:45 - 2013-09-25 04:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-15 15:45 - 2013-09-25 04:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-15 15:45 - 2013-09-25 04:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-15 15:45 - 2013-09-25 04:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-15 15:45 - 2013-09-25 04:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-15 15:45 - 2013-09-25 03:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-15 15:45 - 2013-09-25 03:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-15 15:45 - 2013-09-25 03:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-15 15:45 - 2013-09-25 03:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-15 15:45 - 2013-09-25 03:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-15 15:45 - 2013-07-04 14:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-13 18:14 - 2013-11-13 18:26 - 00000000 ____D C:\tatka
2013-11-12 18:41 - 2013-11-12 18:41 - 00008246 _____ C:\Users\Ondra\AppData\Local\recently-used.xbel
2013-11-12 17:52 - 2013-11-12 17:51 - 09887848 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsPStorIcon.dll
2013-11-12 17:52 - 2013-11-12 17:51 - 00339048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsPStor.sys

==================== One Month Modified Files and Folders =======

2013-12-04 20:12 - 2013-12-04 20:12 - 00000000 ____D C:\FRST
2013-12-04 20:12 - 2013-12-04 20:02 - 00022146 _____ C:\Users\Ondra\Desktop\FRST.txt
2013-12-04 20:10 - 2013-01-22 18:03 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Skype
2013-12-04 20:00 - 2013-12-04 20:01 - 01959766 _____ (Farbar) C:\Users\Ondra\Desktop\FRST64.exe
2013-12-04 20:00 - 2013-12-04 20:00 - 01959766 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(3).exe
2013-12-04 19:58 - 2013-07-22 19:17 - 00000950 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-04 19:56 - 2009-07-14 07:13 - 00726444 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-04 19:54 - 2013-01-22 19:09 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-04 19:54 - 2012-01-19 19:34 - 01443415 _____ C:\Windows\WindowsUpdate.log
2013-12-04 18:37 - 2013-08-05 14:32 - 00000928 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000UA.job
2013-12-04 18:29 - 2009-07-14 06:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-04 18:29 - 2009-07-14 06:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-04 18:22 - 2013-11-26 14:08 - 00000504 _____ C:\Windows\setupact.log
2013-12-04 18:22 - 2013-10-26 22:01 - 00000494 _____ C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job
2013-12-04 18:22 - 2013-07-22 19:17 - 00000946 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-04 18:22 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-04 14:33 - 2013-12-04 14:34 - 00112640 _____ (forum.viry.cz) C:\Users\Ondra\Desktop\FRSTLauncher.exe
2013-12-04 14:33 - 2013-12-04 14:33 - 00112640 _____ (forum.viry.cz) C:\Users\Ondra\Downloads\FRSTLauncher.exe
2013-12-04 14:32 - 2013-11-27 13:19 - 00062465 _____ C:\Users\Ondra\Downloads\FRST.txt
2013-12-04 14:29 - 2013-12-04 14:29 - 01849814 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(2).exe.part
2013-12-04 14:29 - 2013-12-04 14:29 - 00000000 _____ C:\Users\Ondra\Downloads\FRST64(2).exe
2013-12-04 14:24 - 2013-01-22 17:31 - 00000332 _____ C:\Windows\Tasks\HPCeeScheduleForOndra.job
2013-12-03 23:01 - 2013-01-22 17:31 - 00003186 _____ C:\Windows\System32\Tasks\HPCeeScheduleForOndra
2013-12-03 23:00 - 2013-02-28 21:09 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-12-03 23:00 - 2013-01-23 23:17 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-12-03 22:53 - 2013-01-22 17:32 - 00003926 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{16E141D6-9BDA-4E15-ACA9-F04D0616E45F}
2013-12-03 22:46 - 2013-11-26 14:08 - 00001028 _____ C:\Windows\PFRO.log
2013-11-27 13:19 - 2013-11-27 13:18 - 01958818 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(1).exe
2013-11-27 13:18 - 2013-11-27 13:18 - 01851083 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64.exe.part
2013-11-27 13:18 - 2013-11-27 13:18 - 00000000 _____ C:\Users\Ondra\Downloads\FRST64.exe
2013-11-27 12:15 - 2013-11-27 12:14 - 00000000 ____D C:\AdwCleaner
2013-11-27 12:14 - 2013-11-27 12:14 - 01091882 _____ C:\Users\Ondra\Downloads\adwcleaner.exe
2013-11-27 12:11 - 2013-11-27 12:11 - 00001192 _____ C:\Users\Ondra\Desktop\JRT.txt
2013-11-27 11:42 - 2013-11-27 11:41 - 01034531 _____ (Thisisu) C:\Users\Ondra\Downloads\JRT(3).exe
2013-11-27 11:41 - 2013-11-27 11:41 - 00000000 _____ C:\Users\Ondra\Downloads\JRT.exe
2013-11-26 21:38 - 2013-11-26 21:38 - 00000000 ____D C:\rsit
2013-11-26 21:38 - 2013-06-30 10:32 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-26 21:38 - 2013-06-04 08:52 - 00000000 ____D C:\Program Files\trend micro
2013-11-26 14:10 - 2013-01-22 17:32 - 00001413 _____ C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-26 14:09 - 2007-01-02 03:25 - 00000000 ____D C:\Windows\Panther
2013-11-26 14:08 - 2013-11-26 14:08 - 00000000 _____ C:\Windows\setuperr.log
2013-11-26 14:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-26 13:59 - 2013-11-26 13:59 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-26 13:59 - 2013-11-26 13:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-26 13:59 - 2013-11-26 13:59 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-26 13:59 - 2013-11-26 13:59 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-26 13:59 - 2013-11-26 13:59 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-26 13:59 - 2013-11-26 13:59 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-26 13:59 - 2013-11-26 13:59 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-26 13:59 - 2013-11-26 13:59 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-26 13:59 - 2013-11-26 13:59 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-26 13:59 - 2013-11-26 13:59 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-26 13:59 - 2013-11-26 13:59 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-26 13:59 - 2013-11-26 13:59 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-26 13:59 - 2013-11-26 13:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-26 13:51 - 2013-11-26 13:51 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\Symantec
2013-11-26 13:50 - 2013-10-16 15:25 - 00000000 ____D C:\Program Files (x86)\SqueakyChocolate
2013-11-26 13:44 - 2013-01-22 17:32 - 00000000 ___RD C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-26 13:40 - 2013-01-22 20:51 - 00000000 ____D C:\Program Files (x86)\DVR-STUDIO HD 2
2013-11-26 13:39 - 2013-01-22 17:49 - 00000000 ____D C:\Program Files (x86)\DVDx 4.0 Open Edition
2013-11-26 13:38 - 2013-08-01 18:19 - 00000000 ____D C:\Program Files (x86)\DVDx 4.0
2013-11-26 12:15 - 2013-11-26 12:15 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\SmileysWeLove
2013-11-26 12:15 - 2013-10-16 15:25 - 00000000 ____D C:\Users\Ondra\Documents\Add-in Express
2013-11-26 12:13 - 2013-11-26 12:13 - 00923784 _____ (CNET Download.com) C:\Users\Ondra\Downloads\cbsidlm-cbsi145-YTD_Video_Downloader-ORG-10647340.exe
2013-11-26 12:12 - 2013-11-26 12:11 - 16545382 _____ C:\Users\Ondra\Downloads\YTDSetup(2).exe.part
2013-11-26 12:11 - 2013-11-26 12:11 - 00000000 _____ C:\Users\Ondra\Downloads\YTDSetup(2).exe
2013-11-26 12:11 - 2013-11-26 12:10 - 04873520 _____ C:\Users\Ondra\Downloads\YTDSetup(1).exe
2013-11-25 22:30 - 2013-04-07 11:24 - 00000000 ____D C:\Users\Ondra\AppData\Local\CrashDumps
2013-11-25 22:29 - 2013-11-25 22:28 - 04618136 _____ (Piriform Ltd) C:\Users\Ondra\Downloads\ccsetup408.exe
2013-11-25 22:29 - 2013-03-27 17:29 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-11-25 22:29 - 2013-03-27 17:29 - 00000000 ____D C:\Program Files\CCleaner
2013-11-25 22:23 - 2013-11-25 22:23 - 00448512 _____ (OldTimer Tools) C:\Users\Ondra\Downloads\TFC.exe
2013-11-25 22:14 - 2013-01-22 16:26 - 00000000 ____D C:\Users\Ondra
2013-11-25 22:13 - 2013-11-25 22:13 - 00165888 _____ C:\Users\Ondra\Downloads\T-Cleaner.exe
2013-11-25 22:13 - 2013-06-09 07:50 - 00000000 ____D C:\Qoobox
2013-11-25 22:05 - 2013-11-25 22:05 - 01091882 _____ C:\Users\Ondra\Downloads\adwcleaner(1).exe
2013-11-25 21:53 - 2013-11-25 21:53 - 01034531 _____ (Thisisu) C:\Users\Ondra\Downloads\JRT(2).exe
2013-11-25 21:53 - 2013-11-25 21:53 - 00000000 _____ C:\Users\Ondra\Downloads\JRT(1).exe
2013-11-25 21:25 - 2013-01-31 20:21 - 00000000 ____D C:\Users\Ondra\AppData\Local\Adobe
2013-11-25 21:24 - 2013-11-25 21:24 - 00000000 ____D C:\ProgramData\McAfee
2013-11-25 21:24 - 2013-01-22 19:09 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-25 21:24 - 2013-01-22 19:09 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-25 21:24 - 2011-07-21 18:54 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-25 15:37 - 2013-08-05 14:32 - 00000906 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000Core.job
2013-11-25 15:19 - 2013-01-22 18:58 - 00000000 ____D C:\Users\Ondra\AppData\Roaming\vlc
2013-11-17 15:17 - 2013-07-22 19:18 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-17 15:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-11-16 16:58 - 2013-11-16 16:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-16 03:07 - 2013-08-19 16:49 - 00000000 ____D C:\Windows\system32\MRT
2013-11-16 03:01 - 2013-01-22 18:14 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-15 15:47 - 2013-11-15 15:46 - 00000000 ____D C:\MP3
2013-11-13 18:26 - 2013-11-13 18:14 - 00000000 ____D C:\tatka
2013-11-12 18:41 - 2013-11-12 18:41 - 00008246 _____ C:\Users\Ondra\AppData\Local\recently-used.xbel
2013-11-12 18:41 - 2013-02-04 23:26 - 00000000 ____D C:\Users\Ondra\.gimp-2.8
2013-11-12 17:52 - 2012-01-19 19:33 - 00000000 ____D C:\Windows\SysWOW64\sda
2013-11-12 17:52 - 2012-01-19 19:33 - 00000000 ____D C:\Program Files (x86)\Realtek
2013-11-12 17:51 - 2013-11-12 17:52 - 09887848 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsPStorIcon.dll
2013-11-12 17:51 - 2013-11-12 17:52 - 00339048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsPStor.sys
2013-11-12 17:51 - 2011-02-10 21:23 - 00000000 ____D C:\SWSetup
2013-11-12 17:45 - 2013-10-29 19:11 - 00000000 ____D C:\Pavla1
2013-11-12 10:59 - 2013-02-18 19:36 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-12 10:59 - 2013-01-22 18:03 - 00000000 ____D C:\ProgramData\Skype
2013-11-11 14:49 - 2013-04-06 15:05 - 00000000 ____D C:\fotky 2012
2013-11-11 05:50 - 2010-11-21 05:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-08 17:37 - 2013-01-29 22:45 - 00000000 ____D C:\FOTO
2013-11-08 17:26 - 2013-02-22 19:24 - 00000000 ____D C:\Users\Ondra\AppData\Local\Windows Live
2013-11-08 14:25 - 2013-01-22 17:47 - 00003218 _____ C:\Windows\System32\Tasks\HPCeeScheduleForONDRA-HP$
2013-11-08 14:25 - 2013-01-22 17:47 - 00000342 _____ C:\Windows\Tasks\HPCeeScheduleForONDRA-HP$.job

Some content of TEMP:
====================
C:\Users\Ondra\AppData\Local\Temp\BackupSetup.exe
C:\Users\Ondra\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000Core.job => C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000UA.job => C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForONDRA-HP$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\HPCeeScheduleForOndra.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
Task: C:\Windows\Tasks\RegCure Pro.job => C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\Temp:CD30FA91

==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Disabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Ondra\Desktop" je 227 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000001


==================== End Of Log ==============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-12-2013
Ran by Ondra at 2013-12-04 20:13:08
Running from C:\Users\Ondra\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Disabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Disabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

3DMark06 (x32 Version: 1.2.0)
Acoustica CD/DVD Label Maker (x32)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.152)
Adobe Reader XI (11.0.05) - Czech (x32 Version: 11.0.05)
Adobe Shockwave Player 11.5 (x32 Version: 11.5.9.620)
Agatha Christie - Peril at End House (x32 Version: 2.2.0.95)
AMD Catalyst Install Manager (Version: 8.0.911.0)
Audacity 2.0.2 (x32 Version: 2.0.2)
AuthenTec TrueAPI (Version: 1.3.0.111)
avast! Free Antivirus (x32 Version: 8.0.1489.0)
AVerMedia A827 USB TV Tuner 2.1.64.159 (x32 Version: 2.1.64.159)
AVerMedia Applications (x32 Version: 1.0.4)
AVerMedia Media Center Plug-ins 2.0.16.0 (x32 Version: 2.0.16.0)
AVerTV 3D (x32 Version: 6.5.2.14)
AVG SafeGuard toolbar (x32 Version: 15.2.0.5)
AviSynth 2.5 (x32)
Bejeweled 3 (x32 Version: 2.2.0.97)
Blackhawk Striker 2 (x32 Version: 2.2.0.95)
Blasterball 3 (x32 Version: 2.2.0.97)
Bounce Symphony (x32 Version: 2.2.0.97)
Broadcom 802.11 Wireless LAN Adapter (Version: 5.100.82.86)
Broadcom Bluetooth Software (Version: 6.5.0.1300)
Broadcom InConcert Maestro (Version: 1.0.1.1300)
Cake Mania (x32 Version: 2.2.0.95)
Canon My Printer (x32 Version: 3.0.0)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2011.0508.224.2391)
Catalyst Control Center Graphics Previews Common (x32 Version: 2011.0508.224.2391)
Catalyst Control Center Localization All (x32 Version: 2011.0508.224.2391)
Catalyst Control Center Profiles Mobile (x32 Version: 2011.0508.224.2391)
CCC Help Czech (x32 Version: 2011.0508.0223.2391)
CCC Help Danish (x32 Version: 2011.0508.0223.2391)
CCC Help Dutch (x32 Version: 2011.0508.0223.2391)
CCC Help English (x32 Version: 2011.0508.0223.2391)
CCC Help Finnish (x32 Version: 2011.0508.0223.2391)
CCC Help French (x32 Version: 2011.0508.0223.2391)
CCC Help German (x32 Version: 2011.0508.0223.2391)
CCC Help Greek (x32 Version: 2011.0508.0223.2391)
CCC Help Hungarian (x32 Version: 2011.0508.0223.2391)
CCC Help Chinese Standard (x32 Version: 2011.0508.0223.2391)
CCC Help Chinese Traditional (x32 Version: 2011.0508.0223.2391)
CCC Help Italian (x32 Version: 2011.0508.0223.2391)
CCC Help Japanese (x32 Version: 2011.0508.0223.2391)
CCC Help Korean (x32 Version: 2011.0508.0223.2391)
CCC Help Norwegian (x32 Version: 2011.0508.0223.2391)
CCC Help Polish (x32 Version: 2011.0508.0223.2391)
CCC Help Portuguese (x32 Version: 2011.0508.0223.2391)
CCC Help Russian (x32 Version: 2011.0508.0223.2391)
CCC Help Spanish (x32 Version: 2011.0508.0223.2391)
CCC Help Swedish (x32 Version: 2011.0508.0223.2391)
CCC Help Thai (x32 Version: 2011.0508.0223.2391)
CCC Help Turkish (x32 Version: 2011.0508.0223.2391)
ccc-utility64 (Version: 2011.0508.224.2391)
CCleaner (Version: 4.08)
Compatibility Pack for the 2007 Office system (x32 Version: 12.0.6612.1000)
Cradle of Rome 2 (x32 Version: 2.2.0.95)
CyberLink YouCam (x32 Version: 3.5.5.5811)
D3DX10 (x32 Version: 15.4.2368.0902)
Doom Shareware for Windows 95 (x32)
Dune Legacy (x32)
DVD Shrink 3.2 (x32)
ESU for Microsoft Windows 7 SP1 (x32 Version: 2.1.1)
ESU for Microsoft Windows 7 SP1 (x32 Version: 5.1.1)
Evernote v. 4.2.3 (x32 Version: 4.2.3.22)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
Farm Frenzy (x32 Version: 2.2.0.95)
FATE (x32 Version: 2.2.0.97)
Final Drive: Nitro (x32 Version: 2.2.0.95)
Formix SE - formuláře kanceláře (x32)
Fotogalerie (x32 Version: 16.4.3505.0912)
Freemake Video Converter verze 4.0.4 (x32 Version: 4.0.4)
Futuremark SystemInfo (x32 Version: 3.21.2.1)
GIMP 2.8.2 (Version: 2.8.2)
Google Chrome (x32 Version: 31.0.1650.57)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0)
Google Toolbar for Internet Explorer (x32 Version: 7.5.4601.54)
Google Update Helper (x32 Version: 1.3.21.165)
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.95)
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000)
HP Auto (Version: 1.0.12935.3667)
HP Client Services (Version: 1.1.12938.3539)
HP Connection Manager (x32 Version: 4.1.25.1)
HP Customer Experience Enhancements (x32 Version: 6.0.1.7)
HP Documentation (x32 Version: 1.1.1.0)
HP Games (x32 Version: 1.0.2.5)
HP Launch Box (Version: 1.1.5)
HP On Screen Display (x32 Version: 1.3.5)
HP Power Manager (x32 Version: 1.4.8)
HP Product Detection (x32 Version: 11.15.0007)
HP Quick Launch (x32 Version: 2.7.2)
HP QuickWeb (x32 Version: 3.1.2.10259)
HP Setup (x32 Version: 8.7.4751.3798)
HP Setup Manager (x32 Version: 1.1.13476.3753)
HP SimplePass PE 2011 (x32 Version: 5.3.0.163)
HP Software Framework (x32 Version: 4.6.10.1)
HP Support Assistant (x32 Version: 7.0.39.15)
HP Wireless Audio Manager 1.2.3 (x32 Version: 1.2.3)
Chronicles of Albian (x32 Version: 2.2.0.95)
Chuzzle Deluxe (x32 Version: 2.2.0.95)
IDT Audio (x32 Version: 1.0.6341.0)
Intel(R) Control Center (x32 Version: 1.2.1.1007)
Intel(R) Display Audio Driver (x32 Version: 6.14.00.3074)
Intel(R) Identity Protection Technology 1.2.22.0 (x32 Version: 1.2.22.0)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144)
Intel(R) Rapid Storage Technology (x32 Version: 10.5.0.1026)
Java 7 Update 25 (64-bit) (Version: 7.0.250)
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32 Version: 2.1.9.5)
Jewel Quest: The Sleepless Star - Collector's Edition (x32 Version: 2.2.0.95)
Junk Mail filter update (x32 Version: 16.4.3505.0912)
Lemmings 2 - The Tribes (x32)
LibreOffice 4.0.0.3 (x32 Version: 4.0.0.3)
LightScribe System Software 1.12.29.2 (x32 Version: 1.12.29.2)
Mah Jong Medley (x32 Version: 2.2.0.95)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Word Viewer 2003 (x32 Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SkyDrive (HKCU Version: 16.4.6013.0910)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Movie Maker (x32 Version: 16.4.3505.0912)
Mozilla Firefox 25.0.1 (x86 cs) (x32 Version: 25.0.1)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
Mystery of Mortlake Mansion (x32 Version: 2.2.0.97)
Namco All-Stars: PAC-MAN (x32 Version: 2.2.0.95)
Nero 7 Essentials (x32 Version: 7.03.1054)
neroxml (x32 Version: 1.0.0)
PamFax (x32 Version: 3.5.0.14)
Penguins! (x32 Version: 2.2.0.95)
Photo Gallery (x32 Version: 16.4.3505.0912)
Photo Story 3 pro Windows (x32 Version: 3.0.1115.10)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Poker Superstars III (x32 Version: 2.2.0.95)
Polar Bowler (x32 Version: 2.2.0.97)
Polar Golfer (x32 Version: 2.2.0.95)
Puzznic 1.5 (x32)
PX Profile Update (x32 Version: 1.00.1.)
Readon TV Movie Radio Player 7.6.0.0 (x32 Version: 7.6.0)
Realtek Ethernet Controller Driver (x32 Version: 7.48.823.2011)
Realtek PCIE Card Reader (x32 Version: 6.1.7601.85)
Recovery Manager (x32 Version: 2.0.0)
Samsung Kies (x32 Version: 2.5.2.13021_10)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.27.0)
SimCoupe (x32)
Skype™ 6.10 (x32 Version: 6.10.104)
Slingo Supreme (x32 Version: 2.2.0.97)
SnugTV Station (x32 Version: 3.3.10)
Spectaculator 8.0 (x32 Version: 8.0.0.3092)
Synaptics TouchPad Driver (Version: 15.3.29.0)
TMPGEnc Authoring Works 5 (x32 Version: 5.0.8.26)
TMPGEnc Authoring Works 5 Premium Theme Pack 1 (x32 Version: 1.0.0.0)
TMPGEnc Authoring Works 5 Theme Pack 1 (x32 Version: 1.0.0.0)
TMPGEnc Authoring Works 5 Theme Pack 2 (x32 Version: 1.0.0.0)
TMPGEnc Authoring Works 5 Theme Pack 3 (x32 Version: 1.0.0.0)
TMPGEnc Authoring Works 5 Theme Pack 4 (x32 Version: 1.0.0.0)
Total Commander 64-bit (Remove or Repair) (Version: 8.01)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update Installer for WildTangent Games App (x32)
Vacation Quest - The Hawaiian Islands (x32 Version: 2.2.0.97)
Virtual Villagers 5 - New Believers (x32 Version: 2.2.0.97)
VLC media player 2.0.7 (x32 Version: 2.0.7)
WildTangent Games App (HP Games) (x32 Version: 4.0.10.15)
Windows Live Communications Platform (x32 Version: 16.4.3505.0912)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 16.4.3505.0912)
Windows Live Family Safety (Version: 16.4.3505.0912)
Windows Live Family Safety (x32 Version: 16.4.3505.0912)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (x32 Version: 16.4.3505.0912)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mail (x32 Version: 16.4.3505.0912)
Windows Live Messenger (x32 Version: 15.4.3502.0922)
Windows Live Messenger (x32 Version: 16.4.3505.0912)
Windows Live MIME IFilter (Version: 16.4.3505.0912)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 16.4.3505.0912)
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912)
Windows Live SOXE (x32 Version: 16.4.3505.0912)
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912)
Windows Live UX Platform (x32 Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer (x32 Version: 16.4.3505.0912)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 16.4.3505.0912)
Windows Mobile Device Center (Version: 6.1.6965.0)
WinRAR (x32)
Zuma Deluxe (x32 Version: 2.2.0.95)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922)

==================== Restore Points =========================

12-11-2013 09:04:42 Windows Update
12-11-2013 15:50:31 HPSF Applying updates
12-11-2013 15:52:11 Instalováno Realtek PCIE Card Reader
15-11-2013 13:45:51 Windows Update
16-11-2013 01:00:32 Windows Update
25-11-2013 11:03:27 Windows Update
26-11-2013 11:39:38 Removed DVR-Studio HD 2
26-11-2013 11:49:53 Removed Smileys We Love Toolbar for IE
26-11-2013 11:57:02 Windows Update
02-12-2013 21:14:59 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2013-09-16 19:45 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {07766060-6DB5-4D8E-9078-A79BE9948719} - System32\Tasks\RegCure Pro => C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe
Task: {0B934596-3125-4264-87FA-290F552C8D24} - System32\Tasks\{0A1DDE5E-BD1C-44CE-8258-446564887AA4} => C:\14\Wolf4SDL-1.7-full1_4activision-win32\Wolf4SDL.exe [2011-05-15] ()
Task: {0FA08136-C403-47AE-AA01-735AEF6CF474} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-22] (Google Inc.)
Task: {15BB47E8-9B1C-40E7-B29B-1985A5DDBFDF} - System32\Tasks\ParetoLogic Update Version3 Startup Task => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
Task: {1763B97E-BF06-4151-BB81-35C807584A34} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-25] (Adobe Systems Incorporated)
Task: {1DA72672-AEC5-45F0-A2E9-D7042733FF7D} - System32\Tasks\{3421B6A4-C988-4AFC-B4AE-42FA52BBFFD8} => C:\14\Dizzy\fantdizzy\PCDIZZY.EXE [1994-03-29] ()
Task: {21256D6E-1348-428F-9D24-29F5A2B48111} - System32\Tasks\{A4695A32-754F-4F0F-9D90-CFC31D9DB04F} => C:\14\DUNE2\SETUP.EXE [2011-09-19] ()
Task: {22C1A6A7-618E-472B-A5C0-7254CD8A4F96} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000UA => C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-08-05] (Facebook Inc.)
Task: {2399CD55-3DB8-4A8F-9D8D-E34DBEF9DFD1} - System32\Tasks\{1C2105DB-3A58-4A69-9E6C-85F2012F71DE} => C:\14\settlers-2-gold-edition_1997\SETUP.EXE [2012-08-06] ()
Task: {24C0E77D-7080-4001-BE64-EB0B94EA699C} - System32\Tasks\{2F45C4B2-BFDD-4EC0-B97A-002D82F24D50} => C:\14\Lemmings_en\Lemmings_en\SETUP.EXE [1995-03-17] ()
Task: {285CAEB0-8F27-4AF8-8630-C39255F778A9} - System32\Tasks\{E8D15339-D956-4A14-B920-6A4C829F6441} => C:\14\settlers-2-gold-edition_1997\SETUP.EXE [2012-08-06] ()
Task: {2999D279-5472-4DBC-8B59-506543F1A0BE} - System32\Tasks\{7E237CE9-1866-4C9C-BA17-952EE3B6B5BB} => C:\14\Lemmings.exe [2013-06-03] ()
Task: {2A3CD4BB-2142-434C-98A4-738AA34F93D1} - System32\Tasks\{22D569E9-D85C-48B3-A638-679A353A3304} => C:\14\Lemmings_en\Lemmings_en\SETUP.EXE [1995-03-17] ()
Task: {2F26E915-3D2C-4888-8D2E-21BB2037AB00} - System32\Tasks\{BBDAE865-C173-4B11-AD4F-B9E4CFA42F23} => C:\14\transport-tycoon-deluxe-for-windows\Transport Tycoon Deluxe for Windows\Transport Tycoon Deluxe.exe [2003-10-23] ()
Task: {3311CB65-D94D-4E8A-B08D-F7E4D222F274} - System32\Tasks\{7F897068-55FC-4ECA-A7DC-670DA0D0136A} => C:\14\DUNE2\SETUP.EXE [2011-09-19] ()
Task: {33A9FB6C-965E-481F-A826-B0C764AEE80B} - System32\Tasks\{0CD86513-E22B-4BDB-B129-C5EB5617EA84} => C:\14\Battle Chess\CHESS.EXE [1993-08-24] ()
Task: {3A7F4844-5311-402E-82CB-B7DC6536471B} - System32\Tasks\{7DC9D769-937A-4F54-8440-C6FEB8467040} => C:\14\Lemmings.exe [2013-06-03] ()
Task: {3BE57879-F472-4000-B6D4-C6142E96FBAC} - System32\Tasks\{4A5D3947-065E-4183-B7AD-0788AEEA40F4} => C:\14\agent-mlicnak\Agent Mlíčňák - Teen Agent\TEENAGNT.EXE [2003-03-06] ()
Task: {3D5D152D-9694-431F-AB27-5525062F1769} - System32\Tasks\{7033F4CC-9EC4-494E-A9EB-5AF12A6FFA15} => C:\14\DUNE2\SETUP.EXE [2011-09-19] ()
Task: {404938F9-F921-44B4-8763-F7D0CAD1683A} - System32\Tasks\{8AD7155D-B7C0-4312-96C8-A6FA301421A8} => C:\14\settlers-2-gold-edition_1997\SETUP.EXE [2012-08-06] ()
Task: {44620BE6-D9B9-4C79-A6E0-35EE4C61B5E4} - System32\Tasks\HPCeeScheduleForONDRA-HP$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard)
Task: {4C340EDF-0A9A-4E87-9A92-14E4161B1FF7} - System32\Tasks\{9AADE169-4128-4664-AE87-1F97468108EB} => C:\games\wolf3d\Wolf4SDL.exe [2011-05-15] ()
Task: {52BB03A8-FEF7-4290-A069-DA67B5B92846} - System32\Tasks\{14868B89-EA00-45B1-8210-C48D36B94C5B} => C:\14\Battle Chess\CHESS.EXE [1993-08-24] ()
Task: {539D56D9-8366-4A86-84F9-9327D4F3A332} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {59503212-67A7-4C37-A723-1F9097ACF668} - System32\Tasks\{3A9516A1-03B7-4A18-9602-D8DDC5021573} => C:\Program Files\Doom Shareware for Windows 95\Doom95.exe [1996-06-06] (id Software)
Task: {5A6E67AB-D750-482B-A67C-8D7CC63B9D8B} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\SymErr.exe
Task: {5C444356-2C7C-442F-A608-3B9F6DDE5DBC} - \ParetoLogic Update Version3 No Task File
Task: {5D320D73-6815-4E6B-B070-32CEB1863D6D} - System32\Tasks\{368C58D5-37DC-4BED-8C3A-2EE496687AEF} => C:\14\Wolf4SDL-1.7-full1_4activision-win32\Wolf4SDL.exe [2011-05-15] ()
Task: {62024CAA-F48A-465F-9909-CE701ED77D53} - System32\Tasks\{D1D38E0B-54BC-4DED-B56C-095837248E7F} => C:\14\DUNE2\SETUP.EXE [2011-09-19] ()
Task: {6A508381-48BA-4F2F-B2D4-BE4B5F271FFA} - System32\Tasks\{7C81DC33-6DAA-4E9A-B93C-7544C6B5227C} => C:\14\legend-of-kyrandia_1992\SETUP.EXE [2012-08-06] ()
Task: {6F21659C-E903-4DAA-90ED-6EE1264C5525} - System32\Tasks\{03695CBD-41AA-4B22-8AAB-0D2A4D9BAF8F} => C:\games\wolf3d\Wolf4SDL.exe [2011-05-15] ()
Task: {785DE95E-2EE9-4C24-9146-F80E73C99561} - System32\Tasks\{9A338B1B-47EF-4C0B-A154-1880B9F16DAF} => C:\14\settlers-2-gold-edition_1997\SETUP.EXE [2012-08-06] ()
Task: {7BFFFD69-BAE3-42F8-86A5-9D35B19B18A6} - System32\Tasks\{1CA0CD60-E1E3-4E12-9CD3-D102667B23E5} => C:\14\settlers-2-gold-edition_1997\SETUP.EXE [2012-08-06] ()
Task: {7D440ED3-8E0B-4744-9BAA-B9260D2423FE} - System32\Tasks\{314C61D0-694E-463A-98F3-DAEC3236EAA3} => C:\14\legend-of-kyrandia_1992\SETUP.EXE [2012-08-06] ()
Task: {7EAB282F-24BF-452F-950C-40781E1CE7CA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-22] (Google Inc.)
Task: {7FBF63CE-9DB5-4E98-8B1D-21B67C7CB4FB} - System32\Tasks\{22E60AAC-54F2-4A6A-8995-CEA898CDF6C2} => C:\14\Lemmings_en\Lemmings_en\SETUP.EXE [1995-03-17] ()
Task: {8203EBCB-7B3A-4D01-912B-7FABBFC22A39} - System32\Tasks\{4F717BC8-81C8-4E36-8327-760A5C582595} => C:\14\Lemmings_en\Lemmings_en\SETUP.EXE [1995-03-17] ()
Task: {821801B4-C61A-4754-A0A9-692C47E108D6} - System32\Tasks\{9DAF7E74-0FEE-4783-8FFC-DCD6EB7A018C} => C:\games\wolf3d\Sod4SDL.exe [2011-05-15] ()
Task: {82680046-9A9B-49AB-A446-CCD20498C97A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-05-09] (AVAST Software)
Task: {8D5A29C0-C6E0-4110-A192-F87F3896328D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {957D58F3-3531-4A8D-A8FA-FF908B2D4C3B} - System32\Tasks\{880ABE57-82CE-4612-9221-F8EE9E634999} => C:\14\Lemmings_en\Lemmings_en\SETUP.EXE [1995-03-17] ()
Task: {97046284-3681-4760-98F6-24304FC22F35} - System32\Tasks\{EB17A3BF-6815-4445-A247-C07F10456DED} => C:\14\Wolf4SDL-1.7-full1_4activision-win32\Wolf4SDL.exe [2011-05-15] ()
Task: {9C2CBFCA-142D-4CAB-ABD9-F5D2BFE5A246} - System32\Tasks\{165A1EBB-71F6-4EA0-B57D-2F27245AED15} => C:\14\INSTALL.EXE [1993-01-01] ()
Task: {9F0C0971-8104-4548-9234-5EFC7D13FF61} - System32\Tasks\{3B34CB2B-CB6E-418C-838D-611D1CA642F8} => C:\14\legend-of-kyrandia_1992\SETUP.EXE [2012-08-06] ()
Task: {A875567E-49B6-4A7C-AA82-347E66564FDD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {AA6C7083-5E00-4410-B9DF-1C1546E9242A} - System32\Tasks\HPCeeScheduleForOndra => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard)
Task: {AAADE568-AABC-4BD9-8560-98A5CFC12548} - System32\Tasks\{8E90D214-1CDE-466B-8655-D905FCEA0B2D} => C:\14\INSTALL.EXE [1993-01-01] ()
Task: {AB1926E8-643F-4E61-AD70-F8A1A80901AD} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\WSCStub.exe
Task: {B06EF17D-3718-460B-A646-132C4A398C42} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-11-22] (Piriform Ltd)
Task: {B10C58A6-C31E-4638-BD85-AD76B31B82EB} - \ParetoLogic Registration3 No Task File
Task: {B6774D44-8387-491A-B0C6-2FAF2054D49B} - System32\Tasks\{61600454-FBDA-4B18-9375-9D1D4DF60F2F} => C:\14\Lemmings_en\Lemmings_en\SETUP.EXE [1995-03-17] ()
Task: {C5082E03-96CE-4D03-B245-FFE6A0CDAED8} - System32\Tasks\{54875202-8E2D-4DD8-A299-74CACD1226C7} => C:\14\Dizzy\Dizzy3.exe [1991-11-13] ()
Task: {CF70F640-4EE9-46FD-A33B-C6CD5782B28F} - System32\Tasks\{B4921086-3AD1-41CB-8388-B92BA11FD3AF} => C:\14\legend-of-kyrandia_1992\SETUP.EXE [2012-08-06] ()
Task: {D0410B46-8F33-43B0-A6F9-AD47B89E6507} - System32\Tasks\{5B78E066-1C5B-4286-A4A4-995E44D1EF28} => C:\14\Wolf4SDL-1.6-full1_4activision-win32\Wolf4SDL.exe [2008-09-01] ()
Task: {D58AB57D-38AA-41E8-B105-1119355675C4} - System32\Tasks\{D7DC4650-BAC8-49C9-A30A-A7B9F7C9B2DC} => C:\14\Dizzy\fantdizzy\PCDIZZY.EXE [1994-03-29] ()
Task: {D71772F6-4FFE-45AA-B501-0D3B2CF8C93C} - System32\Tasks\{1F2DC7E0-CC97-4097-B6C6-A3BF26FB83A2} => C:\14\Lemmings.exe [2013-06-03] ()
Task: {D7717BC9-83E1-4F96-B5F1-49E0C33968FA} - System32\Tasks\{186BC0A9-1367-45CE-89B0-77180EC410FB} => C:\14\DUNE2\SETUP.EXE [2011-09-19] ()
Task: {DA953019-123E-436A-8573-6C0766099D67} - System32\Tasks\{B38FACE9-C366-4D19-9382-9700D73756BD} => C:\games\wolf3d\Wolf4SDL.exe [2011-05-15] ()
Task: {E239619B-DEFA-4C6A-9115-3BB9FE2B5F9E} - System32\Tasks\{ADA71ACD-D912-430D-B488-211804437921} => C:\14\legend-of-kyrandia_1992\SETUP.EXE [2012-08-06] ()
Task: {E2859ED0-5AD0-489C-82C2-C04DC065F64D} - System32\Tasks\{8A9DDEA8-FB59-4671-8B9C-EC2CC28F3C1B} => C:\14\legend-of-kyrandia_1992\SETUP.EXE [2012-08-06] ()
Task: {E42A98FA-384C-418C-AD89-DDFBB749DF15} - System32\Tasks\{B352B2E7-A135-4705-A038-18CADAAF41A6} => C:\14\INSTALL.EXE [1993-01-01] ()
Task: {ECB78AB4-0CA7-468F-9C2D-24D95B2DDD48} - System32\Tasks\{B7BF0E10-8016-4F77-BDBB-8A051FC01204} => C:\14\agent-mlicnak\Agent Mlíčňák - Teen Agent\TEENAGNT.EXE [2003-03-06] ()
Task: {EEADA5B9-2148-46A2-88F6-DECA65DED7EC} - System32\Tasks\{DDF9FB18-0E94-4383-AD67-11A682C2E819} => C:\14\Wolf4SDL-1.7-full1_4activision-win32\Wolf4SDL.exe [2011-05-15] ()
Task: {F1BCB6D2-B00F-44FE-9CDF-46B127CAC8D0} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2012-10-12] (CyberLink)
Task: {F6795022-4E28-491D-8ACC-EE3F671EF69F} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\SymErr.exe
Task: {F86A13F8-0595-4A60-B545-641853759B77} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000Core => C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-08-05] (Facebook Inc.)
Task: {FC9E3E8B-2F59-434B-ABB9-96CD0E0E774F} - System32\Tasks\{BF51E815-FC69-4F4C-AAB3-10C603D8C16E} => C:\14\Wolf4SDL-1.7-full1_4activision-win32\Wolf4SDL.exe [2011-05-15] ()
Task: {FE70BD3D-C790-450D-8A06-C8EE4240725D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-04-01] (Hewlett-Packard Company)
Task: {FF550242-684B-46A7-8BBD-9E570CCC87AC} - System32\Tasks\{E4EA10A0-A2C1-417F-ACE8-C8B58C708E3C} => C:\14\legend-of-kyrandia_1992\SETUP.EXE [2012-08-06] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000Core.job => C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000UA.job => C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForONDRA-HP$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\HPCeeScheduleForOndra.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
Task: C:\Windows\Tasks\RegCure Pro.job => C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe

==================== Loaded Modules (whitelisted) =============

2013-04-07 18:04 - 2006-12-11 01:14 - 00043008 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2011-04-15 20:16 - 2011-04-15 20:16 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-06-17 04:57 - 2011-06-17 04:57 - 00081696 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\BtwLeLib.dll
2011-05-13 00:13 - 2011-05-13 00:13 - 00016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2011-05-08 12:23 - 2011-05-08 12:23 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-04-27 16:05 - 2011-04-27 16:05 - 01102336 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\System.Data.SQLite.dll
2013-12-04 14:25 - 2013-12-03 20:51 - 02242560 _____ () C:\Program Files\AVAST Software\Avast\defs\13120301\algo.dll
2010-02-01 16:38 - 2010-02-01 16:38 - 00073728 _____ () C:\Program Files (x86)\SnugTV\SnugTV Station\CryptoRc4.dll
2010-04-07 12:55 - 2010-04-07 12:55 - 00018944 _____ () C:\Program Files (x86)\SnugTV\SnugTV Station\AVNetPass.dll
2007-07-12 11:55 - 2007-07-12 11:55 - 01581056 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
2007-08-14 11:59 - 2007-08-14 11:59 - 06365184 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
2007-07-12 11:55 - 2007-07-12 11:55 - 00131072 _____ () C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
2012-08-10 09:04 - 2012-08-10 09:04 - 00025608 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Wireless Audio\CustomControls.dll
2013-08-27 11:01 - 2013-08-27 11:01 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\f60b3ee2de3f41a024920486d46d49f2\IsdiInterop.ni.dll
2012-01-19 19:33 - 2011-04-29 23:28 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2011-04-27 16:05 - 2011-04-27 16:05 - 00514570 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\sqlite3.dll
2013-11-16 16:58 - 2013-11-16 16:58 - 03363952 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-11-25 21:24 - 2013-11-25 21:24 - 16237448 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll
2013-01-22 17:38 - 2012-08-03 08:01 - 00123536 _____ () C:\totalcmd\wcmzip32.dll
2013-01-22 17:38 - 2012-08-03 08:01 - 00176128 _____ () C:\totalcmd\UNRAR.DLL

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Temp:CD30FA91

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/04/2013 06:22:50 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/04/2013 03:21:03 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/04/2013 02:25:53 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/03/2013 10:47:52 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/02/2013 11:08:13 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/27/2013 00:16:59 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (11/27/2013 00:11:56 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}


Microsoft Office Sessions:
=========================

Re: Prosím o kontrolu logu

Napsal: 05 pro 2013 07:53
od vyosek
:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-09-04] (Samsung)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20549280 2013-10-21] (Skype Technologies S.A.)
HKCU\...\Run: [Facebook Update] - C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-08-05] (Facebook Inc.)
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-09-04] (Samsung)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-09-04] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] - [x]

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {DBB620F6-3D28-46FC-BE3B-3491B1FEEAED} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKCU - {ABCF782E-F87A-4522-A5FE-A985A13B3EFC} URL = http://search.yahoo.com/search?fr=chr-g ... =407453&p={searchTerms}
Toolbar: HKLM-x32 - No Name - {48586425-6bb7-4f51-8dc6-38c88e3ebb58} - No File
Toolbar: HKLM-x32 - No Name - {cd1a63ba-a08c-431b-9a34-f240aadc728d} - No File
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File

FF DefaultSearchEngine: Yahoo

DisableService: NMIndexingService

S3 clwvd; system32\DRIVERS\clwvd.sys [x]
S3 cpuz130; \??\C:\Users\Ondra\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]
2013-12-04 14:30 - 2013-12-04 14:30 - 01959614 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(3).exe
2013-12-04 14:29 - 2013-12-04 14:29 - 01849814 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(2).exe.part
2013-12-04 14:29 - 2013-12-04 14:29 - 00000000 _____ C:\Users\Ondra\Downloads\FRST64(2).exe
2013-11-27 11:41 - 2013-11-27 11:42 - 01034531 _____ (Thisisu) C:\Users\Ondra\Downloads\JRT(3).exe
2013-11-27 13:18 - 2013-11-27 13:19 - 01958818 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(1).exe
2013-11-26 12:12 - 2013-11-26 12:11 - 16545382 _____ C:\Users\Ondra\Downloads\YTDSetup(2).exe.part
2013-11-26 12:11 - 2013-11-26 12:11 - 00000000 _____ C:\Users\Ondra\Downloads\YTDSetup(2).exe
2013-11-26 12:11 - 2013-11-26 12:10 - 04873520 _____ C:\Users\Ondra\Downloads\YTDSetup(1).exe
C:\Users\Ondra\AppData\Local\Temp\BackupSetup.exe
C:\Users\Ondra\AppData\Local\Temp\Quarantine.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000Core.job => C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000UA.job => C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForONDRA-HP$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\HPCeeScheduleForOndra.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
Task: C:\Windows\Tasks\RegCure Pro.job => C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe

AlternateDataStreams: C:\ProgramData\Temp:CD30FA91

Hosts:
CMD: shutdown /r /f /t 2

End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt

Re: Prosím o kontrolu logu

Napsal: 06 pro 2013 00:25
od Pavouk1
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 05-12-2013
Ran by Ondra at 2013-12-06 00:20:18 Run:1
Running from C:\Users\Ondra\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-09-04] (Samsung)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20549280 2013-10-21] (Skype Technologies S.A.)
HKCU\...\Run: [Facebook Update] - C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-08-05] (Facebook Inc.)
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-09-04] (Samsung)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-09-04] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] - [x]

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {DBB620F6-3D28-46FC-BE3B-3491B1FEEAED} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKCU - {ABCF782E-F87A-4522-A5FE-A985A13B3EFC} URL = http://search.yahoo.com/search?fr=chr-g ... =407453&p={searchTerms}
Toolbar: HKLM-x32 - No Name - {48586425-6bb7-4f51-8dc6-38c88e3ebb58} - No File
Toolbar: HKLM-x32 - No Name - {cd1a63ba-a08c-431b-9a34-f240aadc728d} - No File
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File

FF DefaultSearchEngine: Yahoo

DisableService: NMIndexingService

S3 clwvd; system32\DRIVERS\clwvd.sys [x]
S3 cpuz130; \??\C:\Users\Ondra\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]
2013-12-04 14:30 - 2013-12-04 14:30 - 01959614 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(3).exe
2013-12-04 14:29 - 2013-12-04 14:29 - 01849814 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(2).exe.part
2013-12-04 14:29 - 2013-12-04 14:29 - 00000000 _____ C:\Users\Ondra\Downloads\FRST64(2).exe
2013-11-27 11:41 - 2013-11-27 11:42 - 01034531 _____ (Thisisu) C:\Users\Ondra\Downloads\JRT(3).exe
2013-11-27 13:18 - 2013-11-27 13:19 - 01958818 _____ (Farbar) C:\Users\Ondra\Downloads\FRST64(1).exe
2013-11-26 12:12 - 2013-11-26 12:11 - 16545382 _____ C:\Users\Ondra\Downloads\YTDSetup(2).exe.part
2013-11-26 12:11 - 2013-11-26 12:11 - 00000000 _____ C:\Users\Ondra\Downloads\YTDSetup(2).exe
2013-11-26 12:11 - 2013-11-26 12:10 - 04873520 _____ C:\Users\Ondra\Downloads\YTDSetup(1).exe
C:\Users\Ondra\AppData\Local\Temp\BackupSetup.exe
C:\Users\Ondra\AppData\Local\Temp\Quarantine.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000Core.job => C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000UA.job => C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForONDRA-HP$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\HPCeeScheduleForOndra.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
Task: C:\Windows\Tasks\RegCure Pro.job => C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe

AlternateDataStreams: C:\ProgramData\Temp:CD30FA91

Hosts:
CMD: shutdown /r /f /t 2

End

*****************

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\KiesPreload => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\KiesTrayAgent => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DBB620F6-3D28-46FC-BE3B-3491B1FEEAED} => Key deleted successfully.
HKCR\CLSID\{DBB620F6-3D28-46FC-BE3B-3491B1FEEAED} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ABCF782E-F87A-4522-A5FE-A985A13B3EFC} => Key deleted successfully.
HKCR\CLSID\{ABCF782E-F87A-4522-A5FE-A985A13B3EFC} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{48586425-6bb7-4f51-8dc6-38c88e3ebb58} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{48586425-6bb7-4f51-8dc6-38c88e3ebb58} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{cd1a63ba-a08c-431b-9a34-f240aadc728d} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{cd1a63ba-a08c-431b-9a34-f240aadc728d} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Value deleted successfully.
HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Key not found.
Firefox DefaultSearchEngine deleted successfully.
NMIndexingService service was disabled
clwvd => Service deleted successfully.
cpuz130 => Service deleted successfully.
C:\Users\Ondra\Downloads\FRST64(3).exe => Moved successfully.
C:\Users\Ondra\Downloads\FRST64(2).exe.part => Moved successfully.
C:\Users\Ondra\Downloads\FRST64(2).exe => Moved successfully.
C:\Users\Ondra\Downloads\JRT(3).exe => Moved successfully.
C:\Users\Ondra\Downloads\FRST64(1).exe => Moved successfully.
C:\Users\Ondra\Downloads\YTDSetup(2).exe.part => Moved successfully.
C:\Users\Ondra\Downloads\YTDSetup(2).exe => Moved successfully.
C:\Users\Ondra\Downloads\YTDSetup(1).exe => Moved successfully.
C:\Users\Ondra\AppData\Local\Temp\BackupSetup.exe => Moved successfully.
C:\Users\Ondra\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000Core.job => Moved successfully.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-435210660-2472884283-4013427881-1000UA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\HPCeeScheduleForONDRA-HP$.job => Moved successfully.
C:\Windows\Tasks\HPCeeScheduleForOndra.job => Moved successfully.
C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job => Moved successfully.
C:\Windows\Tasks\RegCure Pro.job => Moved successfully.
C:\ProgramData\Temp => ":CD30FA91" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========


==== End of Fixlog ====

Re: Prosím o kontrolu logu

Napsal: 06 pro 2013 01:48
od vyosek
Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|

Re: Prosím o kontrolu logu

Napsal: 07 pro 2013 11:25
od Pavouk1
Moc to nepomohlo, pořad mam pomalý notas.

Re: Prosím o kontrolu logu

Napsal: 07 pro 2013 16:57
od vyosek
Co presneji trva dele?? Nacitani, prace s webem??

Re: Prosím o kontrolu logu

Napsal: 03 led 2014 13:45
od Pavouk1
Načítaní Windows je pomalý a po přihlášení do windowsu mam černou obrazovku a po chvili na běhnou.

Re: Prosím o kontrolu logu

Napsal: 03 led 2014 15:54
od vyosek
Nemate na plose nejake velek soubory\slozky (filmy, data, hudbu atd)?? Na plose maji byt defakto jen zastupci :???:
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz