VIRY.CZ

Logfile of random's system information tool 1.09 (written by random/random)
Run by Zdeno at 2013-12-03 10:01:04
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 903 GB (95%) free of 955 GB
Total RAM: 7884 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:01:10, on 3. 12. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\PROGRAM FILES (X86)\PANDA SECURITY\PANDA INTERNET SECURITY 2014\WebProxy.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Users\Zdeno\AppData\Roaming\SearchProtect\bin\cltmng.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\ApVxdWin.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavBckPT.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\Zdeno.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mrk.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocník pri prihlasovaní v sieti Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SearchProtectAll] C:\Program Files (x86)\SearchProtect\bin\cltmng.exe
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\Inicio.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SearchProtect] C:\Users\Zdeno\AppData\Roaming\SearchProtect\bin\cltmng.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {a9ff5a45-b433-4940-9299-de737a9c11f6} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
O23 - Service: Search Protect by Conduit Updater (CltMngSvc) - Conduit - C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Panda Software Controller - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsCtrls.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Unknown owner - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe
O23 - Service: Panda On-Access Anti-Malware Service (PAVSRV) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\pavsrvx86.exe
O23 - Service: PDF Architect Helper Service - pdfforge GbR - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GbR - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Panda Host Service (PSHost) - Unknown owner - c:\program files (x86)\panda security\panda internet security 2014\firewall\PSHOST.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Security S.L. - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsImSvc.exe
O23 - Service: Panda PSK service (PskSvcRetail) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PskSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: Panda TPSrv (TPSrv) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\TPSrvWow.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10850 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PskSvc.exe"
"C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\TPSrvWow.exe"
"C:\PROGRAM FILES (X86)\PANDA SECURITY\PANDA INTERNET SECURITY 2014\WebProxy.exe" oso_XGCGLR
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
taskeng.exe {CE769B76-F4FC-4A95-BA4B-B2C05712A3E2}
"C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe" -open
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Users\Zdeno\AppData\Roaming\SearchProtect\bin\cltmng.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe"
"C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"
"C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe" -hide
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe"
"C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsCtrls.exe"
"C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavFnSvr.exe"
"C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\ApVxdWin.exe" /s
"C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe"
"C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\pavsrvx86.exe"
"C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\AVENGINE.EXE"
"C:\Program Files (x86)\PDF Architect\HelperService.exe"
"C:\Program Files (x86)\PDF Architect\ConversionService.exe"
"C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"
"c:\program files (x86)\panda security\panda internet security 2014\firewall\PSHOST.EXE"
"C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsImSvc.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe" -hide
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0c47118c-7f55-4a9b-9e49-ee3a80b2ecbc -SystemEventPortName:HostProcess-1de18702-26cd-4609-90c6-d838df1ae930 -IoCancelEventPortName:HostProcess-32bbdd61-8570-44d0-ab6f-289347e33280 -NonStateChangingEventPortName:HostProcess-2d987722-ac7f-4c8e-9d66-51bd1b93eec7 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:10fe1b3e-69ce-48e0-ac98-4ee9a569fa6a -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log
"C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"c:\program files (x86)\teamviewer\version8\TeamViewer_Desktop.exe" --IPCport 5939
"C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\SRVLOAD.EXE"
"C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavBckPT.exe" C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe"
"C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe"
"c:\program files\windows defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey D06A475B-58E5-7489-0F20-1125398BAB4F -Reinvoke
C:\Windows\servicing\TrustedInstaller.exe
taskeng.exe {DC185DD8-75B4-4D38-9E71-9C80A8782129}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe8_ Global\UsGthrCtrlFltPipeMssGthrPipe8 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=33356.6021200.47651981 "C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\extensions\{79b8e308-95a2-4044-932d-80e833a863cc}\plugins\npConduitFirefoxPlugin.dll" E7CF176E110C211B -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" 33356 "\\.\pipe\gecko-crash-server-pipe.33356" plugin
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=33356.13176300.1490148839 "C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\extensions\{79b8e308-95a2-4044-932d-80e833a863cc}\plugins\np-mswmp.dll" E7CF176E110C211B -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" 33356 "\\.\pipe\gecko-crash-server-pipe.33356" plugin
"C:\Users\Zdeno\Downloads\RSITx64(1).exe"
"C:\Windows\system32\wuauclt.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default

prefs.js - "browser.search.useDBForOrder" - false
prefs.js - "browser.startup.homepage" - "http://search.conduit.com/?ctid=CT32827 ... SSPV=TB_SA"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... 76&UM=2&q="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.9.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.15.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.15.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
Web Search.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\extensions\
50dc36f17f225@50dc36f17f25e.com
{624ad42d-e714-46b4-843e-c7094f740b0f}
{79b8e308-95a2-4044-932d-80e833a863cc}

C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\searchplugins\
conduit.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-02-20 551840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-11-14 256080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-02-20 209824]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2012-11-22 91784]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-01-12 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v sieti Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-11-14 194640]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-01-12 170912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-11-14 256080]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{25A3A431-30BB-47C8-AD6A-E1063801134F} - PDF Architect Toolbar - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll [2012-11-22 731784]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-11-14 194640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-10-22 171040]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-10-22 399392]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-10-22 441888]
"SpywareTerminatorShield"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2013-10-22 2777736]
"SpywareTerminatorUpdater"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [2013-10-22 3684488]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"SearchProtect"=C:\Users\Zdeno\AppData\Roaming\SearchProtect\bin\cltmng.exe [2013-09-22 3470624]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-01-04 291608]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"PMBVolumeWatcher"=C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2012-09-25 724576]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\qttask.exe [2012-12-01 421888]
"SearchProtectAll"=C:\Program Files (x86)\SearchProtect\bin\cltmng.exe [2013-09-22 3470624]
"APVXDWIN"=C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\APVXDWIN.EXE [2013-07-05 1062880]
"SCANINICIO"=C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\Inicio.exe [2012-11-08 70432]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avldr]
C:\Windows\SYSTEM32\avldr64.dll [2010-03-24 64768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\SYSTEM32\igfxdev.dll [2012-10-22 441344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"vidc.lags"=lagarith.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\PROGRA~2\PANDAS~1\PANDAI~2\PavScrip.exe "%1" %*
.vbs - open - C:\PROGRA~2\PANDAS~1\PANDAI~2\PavScrip.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-12-03 09:55:10 ----A---- C:\Windows\system32\drivers\stflt.sys
2013-12-03 09:55:07 ----D---- C:\Users\Zdeno\AppData\Roaming\Spyware Terminator
2013-12-03 09:55:07 ----D---- C:\ProgramData\Spyware Terminator
2013-12-03 09:54:59 ----D---- C:\Program Files (x86)\Spyware Terminator
2013-12-03 09:45:49 ----D---- C:\Program Files\CCleaner
2013-11-29 20:06:53 ----D---- C:\Program Files (x86)\FontForge
2013-11-29 15:43:21 ----D---- C:\Users\Zdeno\AppData\Roaming\DLKNFUF83457
2013-11-20 20:17:50 ----A---- C:\Windows\system32\IEUDINIT.EXE
2013-11-20 20:15:32 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-11-20 20:15:32 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-20 20:15:30 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-11-20 20:15:30 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-11-20 20:15:30 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-11-20 20:15:30 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-11-20 20:15:30 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-11-20 20:15:30 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-11-20 20:15:30 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2013-11-20 20:15:30 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2013-11-20 20:15:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-11-20 20:15:30 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-11-20 20:15:30 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-11-20 20:15:30 ----A---- C:\Windows\system32\elshyph.dll
2013-11-20 20:15:29 ----A---- C:\Windows\SYSWOW64\url.dll
2013-11-20 20:15:29 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-11-20 20:15:29 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-11-20 20:15:29 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-11-20 20:15:29 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-11-20 20:15:29 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-11-20 20:15:29 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-11-20 20:15:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-11-20 20:15:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-11-20 20:15:29 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-11-20 20:15:29 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-11-20 20:15:29 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-11-20 20:15:28 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-11-20 20:15:28 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-11-20 20:15:28 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-11-20 20:15:28 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-11-20 20:15:28 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-11-20 20:15:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-11-20 20:15:28 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-11-20 20:15:28 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-11-20 20:15:28 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-11-20 20:15:28 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2013-11-20 20:15:27 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-11-20 20:15:27 ----A---- C:\Windows\system32\wininet.dll
2013-11-20 20:15:27 ----A---- C:\Windows\system32\urlmon.dll
2013-11-20 20:15:27 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-20 20:15:27 ----A---- C:\Windows\system32\msrating.dll
2013-11-20 20:15:27 ----A---- C:\Windows\system32\msls31.dll
2013-11-20 20:15:27 ----A---- C:\Windows\system32\msfeedssync.exe
2013-11-20 20:15:27 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-11-20 20:15:27 ----A---- C:\Windows\system32\jsproxy.dll
2013-11-20 20:15:27 ----A---- C:\Windows\system32\jsIntl.dll
2013-11-20 20:15:27 ----A---- C:\Windows\system32\iertutil.dll
2013-11-20 20:15:27 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\wextract.exe
2013-11-20 20:15:26 ----A---- C:\Windows\system32\webcheck.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\vbscript.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\url.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-11-20 20:15:26 ----A---- C:\Windows\system32\pngfilt.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\occache.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\mshtmler.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\mshtmled.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\MshtmlDac.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\mshtml.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\mshta.exe
2013-11-20 20:15:26 ----A---- C:\Windows\system32\msfeeds.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\licmgr10.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\jscript9diag.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\jscript9.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\jscript.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\inseng.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\imgutil.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\iexpress.exe
2013-11-20 20:15:26 ----A---- C:\Windows\system32\ieUnatt.exe
2013-11-20 20:15:26 ----A---- C:\Windows\system32\ieui.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\iesysprep.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\iesetup.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\iernonce.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\iepeers.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\ieframe.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\ieetwproxystub.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\ieetwcollector.exe
2013-11-20 20:15:26 ----A---- C:\Windows\system32\iedkcs32.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\ieapfltr.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\ieapfltr.dat
2013-11-20 20:15:26 ----A---- C:\Windows\system32\ie4uinit.exe
2013-11-20 20:15:26 ----A---- C:\Windows\system32\icardie.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\dxtrans.dll
2013-11-20 20:15:26 ----A---- C:\Windows\system32\dxtmsft.dll
2013-11-20 19:26:53 ----A---- C:\Windows\system32\drivers\PSKMAD.sys
2013-11-14 15:50:22 ----D---- C:\Program Files\Google
2013-11-13 16:02:21 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-11-13 16:02:21 ----A---- C:\Windows\system32\crypt32.dll
2013-11-13 16:02:20 ----A---- C:\Windows\system32\drivers\afd.sys
2013-11-13 16:02:19 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-11-13 16:02:19 ----A---- C:\Windows\SYSWOW64\credui.dll
2013-11-13 16:02:19 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-11-13 16:02:19 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 16:02:19 ----A---- C:\Windows\system32\credui.dll
2013-11-13 16:02:19 ----A---- C:\Windows\system32\authui.dll
2013-11-13 16:02:17 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-11-13 16:02:17 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-11-13 16:02:17 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-11-13 16:02:17 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-11-13 16:02:17 ----A---- C:\Windows\system32\sspisrv.dll
2013-11-13 16:02:17 ----A---- C:\Windows\system32\sspicli.dll
2013-11-13 16:02:17 ----A---- C:\Windows\system32\schannel.dll
2013-11-13 16:02:17 ----A---- C:\Windows\system32\secur32.dll
2013-11-13 16:02:17 ----A---- C:\Windows\system32\ncrypt.dll
2013-11-13 16:02:17 ----A---- C:\Windows\system32\lsass.exe
2013-11-13 16:02:17 ----A---- C:\Windows\system32\lsasrv.dll
2013-11-13 16:02:17 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-11-13 16:02:17 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-11-13 16:02:17 ----A---- C:\Windows\system32\drivers\cng.sys
2013-11-13 16:02:16 ----A---- C:\Windows\system32\gdi32.dll
2013-11-13 16:02:15 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-11-13 16:02:15 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-11-13 16:02:15 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-11-13 16:02:15 ----A---- C:\Windows\system32\nshwfp.dll
2013-11-13 16:02:15 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-11-13 16:02:15 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-11-04 17:27:13 ----A---- C:\Windows\system32\WdfCoInstaller01007.dll
2013-11-04 17:27:13 ----A---- C:\Windows\system32\drivers\WUDFUpdate_01007.dll
2013-11-04 17:27:13 ----A---- C:\Windows\system32\drivers\WinUSBCoInstaller.dll
2013-11-04 17:27:13 ----A---- C:\Windows\system32\drivers\WdfCoInstaller01007.dll
2013-11-04 17:27:13 ----A---- C:\Windows\system32\drivers\hw_usbdev.sys
2013-11-04 17:27:13 ----A---- C:\Windows\system32\drivers\hw_quusbmdm.sys
2013-11-04 17:27:10 ----A---- C:\Windows\system32\WinUSBCoInstaller.dll
2013-11-04 17:27:02 ----D---- C:\Program Files (x86)\Handset WinDriver

======List of files/folders modified in the last 1 month======

2013-12-03 10:01:10 ----D---- C:\Windows\Temp
2013-12-03 10:01:10 ----D---- C:\Program Files\trend micro
2013-12-03 10:01:05 ----D---- C:\Windows\system32\drivers
2013-12-03 10:00:08 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-12-03 09:59:51 ----D---- C:\Windows\system32\config
2013-12-03 09:55:10 ----D---- C:\Windows\inf
2013-12-03 09:55:07 ----HD---- C:\ProgramData
2013-12-03 09:54:59 ----RD---- C:\Program Files (x86)
2013-12-03 09:52:09 ----D---- C:\Windows\Prefetch
2013-12-03 09:49:59 ----D---- C:\Users\Zdeno\AppData\Roaming\Media Player Classic
2013-12-03 09:49:59 ----D---- C:\Users\Zdeno\AppData\Roaming\inkscape
2013-12-03 09:49:58 ----D---- C:\Program Files (x86)\PDFCreator
2013-12-03 09:49:55 ----D---- C:\Windows\Panther
2013-12-03 09:49:55 ----D---- C:\Windows\Logs
2013-12-03 09:49:55 ----D---- C:\Windows\debug
2013-12-03 09:49:55 ----D---- C:\Windows
2013-12-03 09:45:52 ----D---- C:\Windows\system32\Tasks
2013-12-03 09:45:49 ----RD---- C:\Program Files
2013-12-03 09:42:34 ----D---- C:\Windows\System32
2013-12-03 09:42:34 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-12-03 09:38:14 ----D---- C:\Windows\system32\drivers\etc
2013-12-02 20:59:21 ----D---- C:\Users\Zdeno\AppData\Roaming\gtk-2.0
2013-11-29 15:31:54 ----SHD---- C:\System Volume Information
2013-11-23 07:41:55 ----D---- C:\Program Files (x86)\Inkscape
2013-11-21 17:22:26 ----D---- C:\Windows\rescache
2013-11-20 20:34:23 ----D---- C:\Windows\winsxs
2013-11-20 20:32:24 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-11-20 20:32:24 ----D---- C:\Windows\SYSWOW64\migration
2013-11-20 20:32:24 ----D---- C:\Windows\SYSWOW64\en-US
2013-11-20 20:32:24 ----D---- C:\Windows\SysWOW64
2013-11-20 20:32:24 ----D---- C:\Windows\system32\sk-SK
2013-11-20 20:32:24 ----D---- C:\Program Files\Internet Explorer
2013-11-20 20:32:24 ----D---- C:\Program Files (x86)\Internet Explorer
2013-11-20 20:32:23 ----D---- C:\Windows\system32\migration
2013-11-20 20:32:23 ----D---- C:\Windows\system32\en-US
2013-11-20 20:32:23 ----D---- C:\Windows\PolicyDefinitions
2013-11-20 20:17:29 ----D---- C:\Windows\system32\catroot
2013-11-20 20:17:10 ----D---- C:\Windows\system32\catroot2
2013-11-20 19:24:12 ----D---- C:\Program Files (x86)\Panda Security
2013-11-14 16:10:21 ----SHD---- C:\Windows\Installer
2013-11-14 15:51:31 ----D---- C:\Program Files (x86)\Google
2013-11-14 15:50:25 ----D---- C:\ProgramData\Google
2013-11-14 15:50:12 ----D---- C:\Windows\Tasks
2013-11-14 15:50:06 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-11-13 22:40:46 ----A---- C:\Windows\win.ini
2013-11-13 22:39:46 ----D---- C:\Windows\system32\MRT
2013-11-13 22:38:52 ----A---- C:\Windows\system32\MRT.exe
2013-11-11 05:50:16 ----N---- C:\Windows\system32\MpSigStub.exe
2013-11-04 17:27:13 ----D---- C:\Windows\system32\DriverStore

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-01-04 16152]
R0 pavboot;Panda boot driver; C:\Windows\system32\Drivers\pavboot64.sys [2010-06-22 30792]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2010-08-24 13440]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 ShldFlt;Panda File Shield Driver; C:\Windows\System32\DRIVERS\ShldFlt.sys [2009-10-27 48136]
R2 AmFSM;AmFSM; C:\Windows\system32\DRIVERS\amm6460.sys [2012-03-26 71432]
R2 APPFLT;App Filter Plugin; \??\C:\Windows\system32\Drivers\APPFLT64.SYS [2011-01-31 129096]
R2 ComFiltr;Panda Anti-Dialer; \??\C:\Windows\system32\DRIVERS\COMFiltr.sys [2013-09-11 15928]
R2 DSAFLT;DSA Filter Plugin; \??\C:\Windows\system32\Drivers\DSAFLT64.SYS [2009-09-25 82952]
R2 FNETMON;NetMon Filter Plugin; \??\C:\Windows\system32\Drivers\fnetm64.SYS [2009-09-25 31752]
R2 IDSFLT;Ids Filter Plugin; \??\C:\Windows\system32\Drivers\IDSFLT64.SYS [2010-09-09 78920]
R2 NETFLTDI;Panda Net Driver [TDI Layer]; \??\C:\Windows\system32\Drivers\NETTDI64.SYS [2009-09-25 170504]
R2 sp_rsdrv2;Spyware Terminator Driver Filter; C:\Windows\system32\DRIVERS\stflt.sys [2013-12-03 51496]
R2 WNMFLT;Wifi Monitor Filter Plugin; \??\C:\Windows\system32\Drivers\WNMFLT64.SYS [2009-09-25 74760]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-10-22 5332896]
R3 IntcDAud;Intel(R) Zvuk pre obrazovky; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-01-04 355096]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-01-04 786200]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETIMFLT01060044;PANDA NDIS IM Filter Miniport v1.6.0.44; C:\Windows\system32\DRIVERS\n64i1644.sys [2010-09-01 216648]
R3 PavTPK.sys;PavTPK.sys; \??\C:\Windows\syswow64\PavTPK.sys []
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-09-29 646248]
S3 cpuz135;cpuz135; \??\C:\Program Files (x86)\CPUID\PC Wizard 2012\pcwiz_x64.sys [2012-08-11 24368]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 HWHandSet;HWUSBSERSP; C:\Windows\system32\DRIVERS\hw_quusbmdm.sys [2011-10-24 223232]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 Prot6Flt;Prot6Flt; C:\Windows\system32\DRIVERS\Prot6Flt.sys []
S3 PSKMAD;PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [2013-04-29 47632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2); C:\Windows\system32\DRIVERS\RtTeam60.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 WinUSB;Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2012-06-01 920736]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [2012-06-01 951936]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [2012-02-17 149120]
R2 CltMngSvc;Search Protect by Conduit Updater; C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe [2013-04-11 93984]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 Panda Software Controller;Panda Software Controller; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsCtrls.exe [2012-11-19 177440]
R2 PAVFNSVR;Panda Function Service; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavFnSvr.exe [2012-09-21 202016]
R2 PavPrSrv;Panda Process Protection Service; C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe [2008-02-04 62768]
R2 PAVSRV;Panda On-Access Anti-Malware Service; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\pavsrvx86.exe [2011-04-13 313664]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [2012-11-22 1522312]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [2012-11-22 905864]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [2012-09-25 474208]
R2 PSHost;Panda Host Service; c:\program files (x86)\panda security\panda internet security 2014\firewall\PSHOST.EXE [2009-11-26 226560]
R2 PSIMSVC;Panda IManager Service; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsImSvc.exe [2008-06-19 108288]
R2 PskSvcRetail;Panda PSK service; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PskSvc.exe [2010-08-16 28992]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [2013-10-22 1149104]
R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-02-26 3560800]
R2 TPSrv;Panda TPSrv; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\TPSrvWow.exe [2012-11-16 173344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-14 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-14 257416]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-10-22 277024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-14 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-11-14 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-20 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-10-24 115168]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-07 1255736]

-----------------EOF-----------------

Ďakujem

Ešte doplním po štarte PC sa spustí Registry Editor

Zdravim

Odinstalujte Spyware Terminator

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

JRT.EXE ostava visiet a nespravi ziadny log

# AdwCleaner v3.014 - Report created 03/12/2013 at 10:42:05
# Updated 01/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Zdeno - ZDENO-PC
# Running from : C:\Users\Zdeno\Downloads\adwcleaner(1).exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Searchprotect
Folder Deleted : C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\Smartbar
Folder Deleted : C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\ValueApps
Folder Deleted : C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\CT3282722
Folder Deleted : C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\Extensions\{79b8e308-95a2-4044-932d-80e833a863cc}
File Deleted : C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\searchplugins\Conduit.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Web Search.xml
File Deleted : C:\Windows\System32\Tasks\ProtectedSearch

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3282722
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{25A3A431-30BB-47C8-AD6A-E1063801134F}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : [x64] HKLM\SOFTWARE\systweak

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [(Default)]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)]

-\\ Mozilla Firefox v16.0.2 (sk)

[ File : C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\prefs.js ]

Line Deleted : user_pref("CT3282722.1000082.isPlayDisplay", "true");
Line Deleted : user_pref("CT3282722.1000082.state", "{\"state\":\"stopped\",\"text\":\"Classic R...\",\"description\":\"Classic Rock\",\"url\":\"hxxp://www.gotradio.com/player/launch.asp?id=22&cr=lb\"}");
Line Deleted : user_pref("CT3282722.3282722a130039643157408893000000paramsGK0.enc", "eyJ1cGRhdGVSZXFUaW1lIjoxMzg2MDYwMTk4MzY0LCJ1cGRhdGVSZXNwVGltZSI6MTM4NjA2MDE5OTU0OSwiZGF0YSI6eyJzZXR0aW5ncyI6eyJpY29uIjoiaHR0cDovL3[...]
Line Deleted : user_pref("CT3282722.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT3282722.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT3282722.FF19Solved", "true");
Line Deleted : user_pref("CT3282722.FirstTime", "true");
Line Deleted : user_pref("CT3282722.FirstTimeFF3", "true");
Line Deleted : user_pref("CT3282722.PG_ENABLE", "dHJ1ZQ==");
Line Deleted : user_pref("CT3282722.RSS_Pub_Config.enc", "eyJzZXR0aW5ncyI6eyJpY29uIjoiaHR0cDovL3N0b3JhZ2UuY29uZHVpdC5jb20vMjIvMzI4L0NUMzI4MjcyMi9TaGFyaW5nL3RlbXAvNjM0NDQyNDUyMzYyMDE4ODI5XzI0UFgucG5nIiwiY29tcG9uZW50S[...]
Line Deleted : user_pref("CT3282722.RSSapp3282722a130039643157408893000000ReadItemsArr.enc", "JTdCJTIyaHR0cCUzQSUyRiUyRnd3dy5ueXRpbWVzLmNvbSUyRjIwMTMlMkYxMiUyRjA0JTJGd29ybGQlMkZhc2lhJTJGYmlkZW4taW4tamFwYW4tY2FsaWJyY[...]
Line Deleted : user_pref("CT3282722.RSSapp3282722a130039643157408893000000cat0.enc", "JTVCJTdCJTIydHlwZSUyMiUzQSUyMnJzcyUyMiUyQyUyMnZlcnNpb24lMjIlM0ElMjIyLjAlMjIlMkMlMjJ0aXRsZSUyMiUzQSUyMk5ZVCUyMCUzRSUyMEhvbWUlMjBQY[...]
Line Deleted : user_pref("CT3282722.RSSapp3282722a130039643157408893000000cat1.enc", "JTVCJTdCJTIydHlwZSUyMiUzQSUyMnJzcyUyMiUyQyUyMnZlcnNpb24lMjIlM0ElMjIyLjAlMjIlMkMlMjJ0aXRsZSUyMiUzQSUyMllhaG9vISUyMEV1cm9zcG9ydCUyM[...]
Line Deleted : user_pref("CT3282722.RSSapp3282722a130039643157408893000000cat2.enc", "JTVCJTdCJTIydHlwZSUyMiUzQSUyMnJzcyUyMiUyQyUyMnZlcnNpb24lMjIlM0ElMjIyLjAlMjIlMkMlMjJ0aXRsZSUyMiUzQSUyMlBlb3BsZS5jb20lMjBMYXRlc3QlM[...]
Line Deleted : user_pref("CT3282722.RSSapp3282722a130039643157408893000000embeddedVersion.enc", "Mi40LjA=");
Line Deleted : user_pref("CT3282722.RSSapp3282722a130039643157408893000000feedsObj.enc", "JTdCJTIyY2hhbm5lbHMlMjIlM0ElN0IlMjJpZCUyMiUzQSUyMmNoYW5uZWxzJTIyJTJDJTIydHlwZSUyMiUzQSUyMnJzcyUyMiUyQyUyMmRhdGElMjIlM0ElN0IlM[...]
Line Deleted : user_pref("CT3282722.RSSapp3282722a130039643157408893000000lastReportTime.enc", "MTM4NjA2MzY1Njc3OSA=");
Line Deleted : user_pref("CT3282722.RSSapp3282722a130039643157408893000000newFeeds.enc", "bmV3RmVlZHM=");
Line Deleted : user_pref("CT3282722.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3282722&SearchSource=2&CUI=UN22778500661192176&UM=2&sspv=TB_SA&q=");
Line Deleted : user_pref("CT3282722.UserID", "UN22778500661192176");
Line Deleted : user_pref("CT3282722._key_cl_active", "%BC%EA%BB%EB%BE%E8%BF%B8%B3%BB%B9%E9%B8%B3%BA%B6%EA%E7%B3%E7%EA%EC%BF%B3%B6%BA%BD%B7%B8%E7%E8%E7%B6%BF%BA%BA");
Line Deleted : user_pref("CT3282722._key_cl_active.enc", "NmQ1ZThiOTItNTNjMi00MGRhLWFkZjktMDQ3MTJhYmEwOTQ0");
Line Deleted : user_pref("CT3282722.addressBarTakeOverEnabledInHidden", "true");
Line Deleted : user_pref("CT3282722.autoDisableScopes", -1);
Line Deleted : user_pref("CT3282722.browser.search.defaultthis.engineName", "true");
Line Deleted : user_pref("CT3282722.cbfirsttime.enc", "VHVlIERlYyAwMyAyMDEzIDA5OjQzOjI1IEdNVCswMTAw");
Line Deleted : user_pref("CT3282722.countryCode", "SK");
Line Deleted : user_pref("CT3282722.defaultSearch", "true");
Line Deleted : user_pref("CT3282722.embeddedsData", "[{\"appId\":\"130039643153976796\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...]
Line Deleted : user_pref("CT3282722.enableAlerts", "true");
Line Deleted : user_pref("CT3282722.enableFix404ByUser", "FALSE");
Line Deleted : user_pref("CT3282722.enableSearchFromAddressBar", "true");
Line Deleted : user_pref("CT3282722.firstTimeDialogOpened", "true");
Line Deleted : user_pref("CT3282722.fixPageNotFoundError", "true");
Line Deleted : user_pref("CT3282722.fixPageNotFoundErrorByUser", "true");
Line Deleted : user_pref("CT3282722.fixPageNotFoundErrorInHidden", "true");
Line Deleted : user_pref("CT3282722.fixUrls", true);
Line Deleted : user_pref("CT3282722.fullUserID", "UN22778500661192176.UP.202503095116");
Line Deleted : user_pref("CT3282722.installDate", "19/4/2013 21:51:14");
Line Deleted : user_pref("CT3282722.installId", "condui~1.exe");
Line Deleted : user_pref("CT3282722.installType", "conduitnsisintegration");
Line Deleted : user_pref("CT3282722.installUsage", "2013-12-03T11:43:28.0262317+03:00");
Line Deleted : user_pref("CT3282722.installUsageEarly", "2013-12-03T11:43:10.9285221+03:00");
Line Deleted : user_pref("CT3282722.installerVersion", "1.3.7.3");
Line Deleted : user_pref("CT3282722.isCheckedStartAsHidden", true);
Line Deleted : user_pref("CT3282722.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT3282722.isFirstTimeToolbarLoading", "false");
Line Deleted : user_pref("CT3282722.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT3282722.keyword", "true");
Line Deleted : user_pref("CT3282722.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT3282722&octid=CT3282722&SearchSource=15&CUI=UN22778500661192176&SSPV=&Lay=1&UM=2\"}");
Line Deleted : user_pref("CT3282722.lastVersion", "10.22.5.510");
Line Deleted : user_pref("CT3282722.mam_gk_appStateReportTime", "%B7%B9%BE%BC%B6%BC%B6%B8%B6%BC%BF%B6%B7");
Line Deleted : user_pref("CT3282722.mam_gk_appStateReportTime.enc", "MTM4NjA2MDIwNjkwMQ==");
Line Deleted : user_pref("CT3282722.mam_gk_appState_Clarity_Active", "%F5%F4");
Line Deleted : user_pref("CT3282722.mam_gk_appState_Clarity_Active.enc", "b24=");
Line Deleted : user_pref("CT3282722.mam_gk_appState_CouponBuddy", "%F5%F4");
Line Deleted : user_pref("CT3282722.mam_gk_appState_CouponBuddy.enc", "b24=");
Line Deleted : user_pref("CT3282722.mam_gk_appState_Easytobook", "%F5%F4");
Line Deleted : user_pref("CT3282722.mam_gk_appState_Easytobook.enc", "b24=");
Line Deleted : user_pref("CT3282722.mam_gk_appState_Easytobook_targeted", "%F5%F4");
Line Deleted : user_pref("CT3282722.mam_gk_appState_Easytobook_targeted.enc", "b24=");
Line Deleted : user_pref("CT3282722.mam_gk_appState_PriceGong", "%F5%F4");
Line Deleted : user_pref("CT3282722.mam_gk_appState_PriceGong.enc", "b24=");
Line Deleted : user_pref("CT3282722.mam_gk_appsConfig.enc", "eyJBcHBzQ29uZmlndXJhdGlvbiI6W3siaWQiOiJDbGFyaXR5X0FjdGl2ZSIsInVybCI6Imh0dHA6Ly9zdG9yYWdlLmNvbmR1aXQuY29tL21hbS8zcmRwYXJ0eWFwcHMvY2xhcml0eVJheS9jcl9hY3Rpdm[...]
Line Deleted : user_pref("CT3282722.mam_gk_appsDefaultEnabled", "%F4%FB%F2%F2");
Line Deleted : user_pref("CT3282722.mam_gk_appsDefaultEnabled.enc", "bnVsbA==");
Line Deleted : user_pref("CT3282722.mam_gk_calledSetupService", "%B7");
Line Deleted : user_pref("CT3282722.mam_gk_calledSetupService.enc", "MQ==");
Line Deleted : user_pref("CT3282722.mam_gk_currentVersion", "%B7%B4%B7%B7%B4%BB%B4%B7");
Line Deleted : user_pref("CT3282722.mam_gk_currentVersion.enc", "MS4xMS41LjE=");
Line Deleted : user_pref("CT3282722.mam_gk_eventsCache", "%u0101%A8%EA%BF%BC%B8%E9%BA%BB%B9%B3%BC%BE%BB%B6%B3%BA%E9%EB%E7%B3%E8%BC%B7%E9%B3%B9%B9%BC%E9%BC%EA%B9%B8%E9%B9%BA%E7%A8%C0%u0101%A8%FA%F5%F6%EF%E9%A8%C0%A8%[...]
Line Deleted : user_pref("CT3282722.mam_gk_eventsCache.enc", "eyJkOTYyYzQ1My02ODUwLTRjZWEtYjYxYy0zMzZjNmQzMmMzNGEiOnsidG9waWMiOiJzZW5kVXNhZ2UiLCJkYXRhIjp7ImNhdGVnb3J5IjoiV2VsY29tZSIsImFjdGlvbiI6IlZpZXciLCJsYWJlbCI6I[...]
Line Deleted : user_pref("CT3282722.mam_gk_existingUsersRecoveryDone", "%B7");
Line Deleted : user_pref("CT3282722.mam_gk_existingUsersRecoveryDone.enc", "MQ==");
Line Deleted : user_pref("CT3282722.mam_gk_first_time", "%B7");
Line Deleted : user_pref("CT3282722.mam_gk_first_time.enc", "MQ==");
Line Deleted : user_pref("CT3282722.mam_gk_gadgetOpen", "%B6");
Line Deleted : user_pref("CT3282722.mam_gk_gadgetOpen.enc", "MA==");
Line Deleted : user_pref("CT3282722.mam_gk_globalKeysMigratedToLocalStorage", "%B7");
Line Deleted : user_pref("CT3282722.mam_gk_globalKeysMigratedToLocalStorage.enc", "MQ==");
Line Deleted : user_pref("CT3282722.mam_gk_installer_preapproved.enc", "ZmFsc2U=");
Line Deleted : user_pref("CT3282722.mam_gk_lastLoginTime", "%B7%B9%BE%BC%B6%BC%B6%B8%B6%BE%B7%B8%B8");
Line Deleted : user_pref("CT3282722.mam_gk_lastLoginTime.enc", "MTM4NjA2MDIwODEyMg==");
Line Deleted : user_pref("CT3282722.mam_gk_localization.enc", "eyJkaWFsb2dPSyI6eyJUZXh0IjoiT0sifSwiZG1ib3gxIjp7IlRleHQiOiJEZWFsXHJcbm9mIHRoZSBkYXkifSwiZG1ib3gyIjp7IlRleHQiOiJGcmVlXHJcblNoaXBtZW50In0sImRtYnVsbGV0MSI6[...]
Line Deleted : user_pref("CT3282722.mam_gk_mamEnabled", "%FA%F8%FB%EB");
Line Deleted : user_pref("CT3282722.mam_gk_mamEnabled.enc", "dHJ1ZQ==");
Line Deleted : user_pref("CT3282722.mam_gk_new_welcome_experience", "%B7");
Line Deleted : user_pref("CT3282722.mam_gk_new_welcome_experience.enc", "MQ==");
Line Deleted : user_pref("CT3282722.mam_gk_pgUnloadedOnce", "%FA%F8%FB%EB");
Line Deleted : user_pref("CT3282722.mam_gk_pgUnloadedOnce.enc", "dHJ1ZQ==");
Line Deleted : user_pref("CT3282722.mam_gk_settings1.11.5.1", "%u0101%A8%D9%FA%E7%FA%FB%F9%A8%C0%A8%F9%FB%E9%E9%EB%EB%EA%EB%EA%A8%B2%A8%CA%E7%FA%E7%A8%C0%u0101%A8%E9%FB%F8%F8%EB%F4%FA%CA%E7%FA%EB%A8%C0%A8%B8%B6%B7%B[...]
Line Deleted : user_pref("CT3282722.mam_gk_settings1.11.5.1.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImN1cnJlbnREYXRlIjoiMjAxMzEyMDMiLCJpbnRlcnZhbCI6MjQwLCJzdGFtcCI6IjU0XzAiLCJpc1Rlc3QiOnRydWUsIlVzZXJDb3VudHJ5[...]
Line Deleted : user_pref("CT3282722.mam_gk_showWelcomeGadget", "%EC%E7%F2%F9%EB");
Line Deleted : user_pref("CT3282722.mam_gk_showWelcomeGadget.enc", "ZmFsc2U=");
Line Deleted : user_pref("CT3282722.mam_gk_stamp", "%BB%BA%E5%B6");
Line Deleted : user_pref("CT3282722.mam_gk_stamp.enc", "NTRfMA==");
Line Deleted : user_pref("CT3282722.mam_gk_userId", "%B9%B6%EB%EB%BB%EA%B8%E7%B3%B7%BF%B8%BF%B3%BA%EB%B9%B7%B3%BF%E7%EC%E9%B3%BA%E7%EA%B9%E7%B7%BF%EB%EC%BE%EA%B8");
Line Deleted : user_pref("CT3282722.mam_gk_userId.enc", "MzBlZTVkMmEtMTkyOS00ZTMxLTlhZmMtNGFkM2ExOWVmOGQy");
Line Deleted : user_pref("CT3282722.mam_gk_user_approval_interacted", "%B7");
Line Deleted : user_pref("CT3282722.mam_gk_user_approval_interacted.enc", "MQ==");
Line Deleted : user_pref("CT3282722.mam_gk_welcomeDialogMode", "%B7");
Line Deleted : user_pref("CT3282722.mam_gk_welcomeDialogMode.enc", "MQ==");
Line Deleted : user_pref("CT3282722.migrateAppsAndComponents", true);
Line Deleted : user_pref("CT3282722.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"\",\"EB_MAIN_FRAME_TITLE\":\"\",\"EB_TOOLBAR_SUB_DOMAIN\":\"hxxp://FreeOnlineRadioPlayerRecorderV1.OurToo[...]
Line Deleted : user_pref("CT3282722.openThankYouPage", "false");
Line Deleted : user_pref("CT3282722.openUninstallPage", "true");
Line Deleted : user_pref("CT3282722.originalSearchAddressUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3282722&SearchSource=2&CUI=UN22778500661192176&UM=2&sspv=TB_SA&q=");
Line Deleted : user_pref("CT3282722.price-gong.isManagedApp", "true");
Line Deleted : user_pref("CT3282722.revertSettingsEnabled", "FALSE");
Line Deleted : user_pref("CT3282722.search.searchAppId", "130039643153976796");
Line Deleted : user_pref("CT3282722.search.searchCount", "0");
Line Deleted : user_pref("CT3282722.searchFromAddressBarEnabledByUser", "true");
Line Deleted : user_pref("CT3282722.searchInNewTabEnabledByUser", "true");
Line Deleted : user_pref("CT3282722.searchInNewTabEnabledInHidden", "true");
Line Deleted : user_pref("CT3282722.searchSuggestEnabledByUser", "true");
Line Deleted : user_pref("CT3282722.searchUserMode", "2");
Line Deleted : user_pref("CT3282722.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT3282722.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Deleted : user_pref("CT3282722.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Line Deleted : user_pref("CT3282722.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT3282722\"}");
Line Deleted : user_pref("CT3282722.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://FreeOnlineRadioPlayerRecorderV1.OurToolbar.com//xpi\"}");
Line Deleted : user_pref("CT3282722.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"FreeOnlineRadioPlayerRecorder V1 \"}");
Line Deleted : user_pref("CT3282722.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT3282722.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
Line Deleted : user_pref("CT3282722.serviceLayer_services_Configuration_lastUpdate", "1386060676846");
Line Deleted : user_pref("CT3282722.serviceLayer_services_app.twitter.user-cnet_lastUpdate", "1386063660130");
Line Deleted : user_pref("CT3282722.serviceLayer_services_app.twitter.user-cnnbrk_lastUpdate", "1386063660306");
Line Deleted : user_pref("CT3282722.serviceLayer_services_app.twitter.user-computeractive_lastUpdate", "1386063660568");
Line Deleted : user_pref("CT3282722.serviceLayer_services_app.twitter.user-dailymirror_lastUpdate", "1386063660734");
Line Deleted : user_pref("CT3282722.serviceLayer_services_app.twitter.user-google_lastUpdate", "1386063660269");
Line Deleted : user_pref("CT3282722.serviceLayer_services_app.twitter.user-techcrunch_lastUpdate", "1386063659807");
Line Deleted : user_pref("CT3282722.serviceLayer_services_app.twitter.user-time_lastUpdate", "1386063660570");
Line Deleted : user_pref("CT3282722.serviceLayer_services_app.twitter.user-wired_lastUpdate", "1386063660569");
Line Deleted : user_pref("CT3282722.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1386060189863");
Line Deleted : user_pref("CT3282722.serviceLayer_services_appsMetadata_lastUpdate", "1386060190685");
Line Deleted : user_pref("CT3282722.serviceLayer_services_clientErrorLog_lastUpdate", "1386060197978");
Line Deleted : user_pref("CT3282722.serviceLayer_services_getTwitterExtraInfo_lastUpdate", "1386063669882");
Line Deleted : user_pref("CT3282722.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1386060189807");
Line Deleted : user_pref("CT3282722.serviceLayer_services_installUsage_ToolbarInstallEarly_lastUpdate", "1386060189160");
Line Deleted : user_pref("CT3282722.serviceLayer_services_installUsage_ToolbarInstall_lastUpdate", "1386060206034");
Line Deleted : user_pref("CT3282722.serviceLayer_services_location_lastUpdate", "1386060188756");
Line Deleted : user_pref("CT3282722.serviceLayer_services_login_10.15.310.1_lastUpdate", "1386060206180");
Line Deleted : user_pref("CT3282722.serviceLayer_services_login_10.22.5.510_lastUpdate", "1386060681434");
Line Deleted : user_pref("CT3282722.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1386060189836");
Line Deleted : user_pref("CT3282722.serviceLayer_services_searchAPI_lastUpdate", "1386060188650");
Line Deleted : user_pref("CT3282722.serviceLayer_services_serviceMap_lastUpdate", "1386060185309");
Line Deleted : user_pref("CT3282722.serviceLayer_services_toolbarContextMenu_lastUpdate", "1386060190635");
Line Deleted : user_pref("CT3282722.serviceLayer_services_toolbarSettings_lastUpdate", "1386060189990");
Line Deleted : user_pref("CT3282722.serviceLayer_services_translation_lastUpdate", "1386060190593");
Line Deleted : user_pref("CT3282722.settingsINI", true);
Line Deleted : user_pref("CT3282722.shouldFirstTimeDialog", "true");
Line Deleted : user_pref("CT3282722.showToolbarPermission", "false");
Line Deleted : user_pref("CT3282722.smartbar.CTID", "CT3282722");
Line Deleted : user_pref("CT3282722.smartbar.Uninstall", "0");
Line Deleted : user_pref("CT3282722.smartbar.homepage", true);
Line Deleted : user_pref("CT3282722.smartbar.toolbarName", "FreeOnlineRadioPlayerRecorder V1 ");
Line Deleted : user_pref("CT3282722.startPage", "true");
Line Deleted : user_pref("CT3282722.toolbarBornServerTime", "3-12-2013");
Line Deleted : user_pref("CT3282722.toolbarCurrentServerTime", "3-12-2013");
Line Deleted : user_pref("CT3282722.toolbarLoginClientTime", "Tue Dec 03 2013 09:43:26 GMT+0100");
Line Deleted : user_pref("CT3282722.url_history0001", "%EE%FA%FA%F6%F9%C0%B5%B5%FD%FD%FD%B4%ED%F5%F5%ED%F2%EB%B4%F9%F1%B5%FB%F8%F2%C5%F9%E7%C3%FA%AC%F8%E9%FA%C3%F0%AC%F7%C3%AC%EB%F9%F8%E9%C3%F9%AC%F9%F5%FB%F8%E9%EB%[...]
Line Deleted : user_pref("CT3282722.url_history0001.enc", "aHR0cHM6Ly93d3cuZ29vZ2xlLnNrL3VybD9zYT10JnJjdD1qJnE9JmVzcmM9cyZzb3VyY2U9d2ViJmNkPTEmc3FpPTImdmVkPTBDREFRRmpBQSZ1cmw9aHR0cHMlM0ElMkYlMkZ3d3cucGlyaWZvcm0uY29t[...]
Line Deleted : user_pref("CT3282722_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1386063655778,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Line Deleted : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3282722&octid=CT3282722&SearchSource=61&CUI=UN22778500661192176&UM=2&UP=SP63BA06AB-BA63-415B-8224-FE5A042A6467&SSPV=TB_SA"[...]
Line Deleted : user_pref("Smartbar.ConduitSearchEngineList", "FreeOnlineRadioPlayerRecorder V1 Customized Web Search");
Line Deleted : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3282722&SearchSource=2&CUI=UN22778500661192176&UM=2&sspv=TB_SA&q=");
Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
Line Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "CT3282722");
Line Deleted : user_pref("browser.search.defaultenginename", "FreeOnlineRadioPlayerRecorder V1 Customized Web Search");
Line Deleted : user_pref("browser.search.defaultthis.engineName", "FreeOnlineRadioPlayerRecorder V1 Customized Web Search");
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3282722&CUI=UN22778500661192176&UM=2&SearchSource=3&q={searchTerms}&sspv=TB_SA");
Line Deleted : user_pref("browser.search.selectedEngine", "FreeOnlineRadioPlayerRecorder V1 Customized Web Search");
Line Deleted : user_pref("browser.startup.homepage", "hxxp://search.conduit.com/?ctid=CT3282722&octid=CT3282722&SearchSource=61&CUI=UN22778500661192176&UM=2&UP=SP63BA06AB-BA63-415B-8224-FE5A042A6467&SSPV=TB_SA");
Line Deleted : user_pref("extensions.50dc36f17f2d2.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};(function(){if(window.self==window.top&&!document.getElementById('shk85shs[...]
Line Deleted : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3282722&SearchSource=2&CUI=UN22778500661192176&UM=2&q=");
Line Deleted : user_pref("plugin.state.npconduitfirefoxplugin", 2);
Line Deleted : user_pref("smartbar.addressBarOwnerCTID", "CT3282722");
Line Deleted : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3282722&octid=CT3282722&SearchSource=61&CUI=UN22778500661192176&UM=2&UP=SP63BA06AB-BA63-415B-8224-FE5A042A6467&SSPV=TB_SA,h[...]
Line Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3282722&SearchSource=2&CUI=UN22778500661192176&UM=2&sspv=TB_SA&q=,hxxp://search.conduit.com/ResultsE[...]
Line Deleted : user_pref("smartbar.defaultSearchOwnerCTID", "CT3282722");
Line Deleted : user_pref("smartbar.machineId", "9HW9FRZQSH5UIDPVKITF6YWBXGPRC0JX3KNLNQFN65PWJ84UJY7IVOWWKQZ3Z0HWF2/M9WVHK0T5IPEKNFGPHA");
Line Deleted : user_pref("smartbar.originalHomepage", "about:home");
Line Deleted : user_pref("smartbar.originalSearchAddressUrl", "");
Line Deleted : user_pref("smartbar.originalSearchEngine", "");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E+x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E+x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E,x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E,x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E-x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E-x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E.:2z527", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E.:2z527.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E.x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E.x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E/x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E/x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E06CG5EL8:", "6E6D696C736E756F7776");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E06CG5EL8:.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E06CG5EL;8I:K", "247E2D2F226A74736F7279747B757D7C242F4B49474F42357D5D5C3D");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E06CG5EL;8I:K.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E0x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E0x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E1x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E1x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E2x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E2x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E3x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E3x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E4x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E4x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E5x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E5x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E6x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E6x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E7x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E7x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E8x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E8x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E9x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E9x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E:x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E:x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E;x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E;x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E<x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E<x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E=x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E=x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E>x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E>x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E?x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E?x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7E@x305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7E@x305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7EAx305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7EAx305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7EBE3G=;D9N9=D", "372C2D326975762E3A3C7B3A39434A494841434B265146492965504656496571734D337D56545138505C");
Line Deleted : user_pref("valueApps.CT3282722./9B+7EBE3G=;D9N9=D.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7EBx305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7EBx305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7ECx305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7ECx305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7EDx305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7EDx305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B+7Etx305", "2423");
Line Deleted : user_pref("valueApps.CT3282722./9B+7Etx305.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B-0?3G>D", "3C3D683D6D6E6C457A7177797A2047497978254D2252542A245222252C2A5C59592A315E");
Line Deleted : user_pref("valueApps.CT3282722./9B-0?3G>D.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B-0?3G@6:5;", "");
Line Deleted : user_pref("valueApps.CT3282722./9B-0?3G@6:5;.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B-0?3GFA7EF", "2B2E2C3D");
Line Deleted : user_pref("valueApps.CT3282722./9B-0?3GFA7EF.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B-3=3ECCJA=F>", "247E333D2C452F4135276F297B7E7D21202F26313E4249357D37382F3A494D5D513F283338435D6554695B65546D57695D5D686365533C70766C66755E");
Line Deleted : user_pref("valueApps.CT3282722./9B-3=3ECCJA=F>.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B/>01=9A6K6<IM;KRIE@PDAWM", "6E6A68707374757677");
Line Deleted : user_pref("valueApps.CT3282722./9B/>01=9A6K6<IM;KRIE@PDAWM.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B3=>@44I48?", "372C2D3269757633423633414847203E3D474E4D4C45474F2A554A4D2D5858585E4B554E366352564F");
Line Deleted : user_pref("valueApps.CT3282722./9B3=>@44I48?.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B5BA==9CJAG", "396C6F70707070717A78717A47747B7A4D7D79214D");
Line Deleted : user_pref("valueApps.CT3282722./9B5BA==9CJAG.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B6B11G4C56B>F;P;ANR@P", "6E6D696C736E756F7774757976");
Line Deleted : user_pref("valueApps.CT3282722./9B6B11G4C56B>F;P;ANR@P.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B90E@.3C;7B=?OFB>>RHIQS", "393F352F3E");
Line Deleted : user_pref("valueApps.CT3282722./9B90E@.3C;7B=?OFB>>RHIQS.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B9643G3/9E", "6A");
Line Deleted : user_pref("valueApps.CT3282722./9B9643G3/9E.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B;45>:BI9I7IE", "2B2E2C3D");
Line Deleted : user_pref("valueApps.CT3282722./9B;45>:BI9I7IE.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B<:222H64<", "393F352F3E");
Line Deleted : user_pref("valueApps.CT3282722./9B<:222H64<.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B<:222H64<L8DAJ", "6D70706F7673737977752A7A7372787D757C20");
Line Deleted : user_pref("valueApps.CT3282722./9B<:222H64<L8DAJ.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B=+03EH8H8J?:", "4443");
Line Deleted : user_pref("valueApps.CT3282722./9B=+03EH8H8J?:.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B?+E2A52D8", "372C2D326975762E3A3C7B3A39434A494841434B2651464929655046566470727951555E5E52");
Line Deleted : user_pref("valueApps.CT3282722./9B?+E2A52D8.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9B?B0D:8AJ62<H", "6D");
Line Deleted : user_pref("valueApps.CT3282722./9B?B0D:8AJ62<H.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722./9BA@0<0BI6A7GN:6@L?", "6C");
Line Deleted : user_pref("valueApps.CT3282722./9BA@0<0BI6A7GN:6@L?.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.PG_ENABLE", "74727565");
Line Deleted : user_pref("valueApps.CT3282722.PG_ENABLE.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722._key_cl_active", "37653335383238622D663634342D343736312D613866662D653131646238363563663531");
Line Deleted : user_pref("valueApps.CT3282722._key_cl_active.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.cbfirsttime", "5475652044656320303320323031332030393A35313A343520474D542B30313030");
Line Deleted : user_pref("valueApps.CT3282722.cbfirsttime.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appStateReportTime", "31333836303630363930363232");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appStateReportTime.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appState_Clarity_Active", "6F6E");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appState_Clarity_Active.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appState_CouponBuddy", "6F6E");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appState_CouponBuddy.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appState_Easytobook", "6F6E");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appState_Easytobook.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appState_Easytobook_targeted", "6F6E");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appState_Easytobook_targeted.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appState_PriceGong", "6F6E");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appState_PriceGong.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appsConfig.storedInFile", true);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appsDefaultEnabled", "6E756C6C");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_appsDefaultEnabled.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_calledSetupService", "31");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_calledSetupService.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_currentVersion", "312E31312E352E31");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_currentVersion.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_existingUsersRecoveryDone", "31");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_existingUsersRecoveryDone.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_first_time", "31");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_first_time.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_globalKeysMigratedToLocalStorage", "31");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_globalKeysMigratedToLocalStorage.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_lastLoginTime", "31333836303630363931363635");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_lastLoginTime.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_localization.storedInFile", true);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_mamEnabled", "74727565");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_mamEnabled.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_migrated_from_ls", "31");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_migrated_from_ls.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_new_welcome_experience", "31");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_new_welcome_experience.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_settings1.11.5.1.storedInFile", true);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_showWelcomeGadget", "66616C7365");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_showWelcomeGadget.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_stamp", "35345F30");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_stamp.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_userId", "66613736336131392D323231322D343066302D383465652D386566366163636130653066");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_userId.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_user_approval_interacted", "31");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_user_approval_interacted.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_welcomeDialogMode", "31");
Line Deleted : user_pref("valueApps.CT3282722.mam_gk_welcomeDialogMode.storedInFile", false);
Line Deleted : user_pref("valueApps.CT3282722.url_history0001", "687474703A2F2F7777772E737079776172657465726D696E61746F722E636F6D2F646E6C2F636F6E6669672F3137302F537079776172655465726D696E61746F7253657475702E6578653A[...]
Line Deleted : user_pref("valueApps.CT3282722.url_history0001.storedInFile", false);

-\\ Google Chrome v31.0.1650.57

[ File : C:\Users\Zdeno\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [37015 octets] - [03/12/2013 10:41:43]
AdwCleaner[S0].txt - [37484 octets] - [03/12/2013 10:42:05]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [37545 octets] ##########

Udelejte tedy log z FRSTLauncheru dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=30&t=133101

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-12-2013
Ran by Zdeno at 2013-12-03 11:09:52
Running from C:\Users\Zdeno\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Panda Internet Security 2014 (Enabled - Up to date) {86971480-9989-6750-B122-681A86518D59}
AS: Panda Internet Security 2014 (Enabled - Up to date) {3DF6F564-BFB3-68DE-8B92-5368FDD6C7E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Panda Personal Firewall 2014 (Enabled) {BEAC95A5-D3E6-6608-9A7D-C12F7882CA22}

==================== Installed Programs ======================

Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.152)
Adobe Reader XI (11.0.05) - Slovak (x32 Version: 11.0.05)
AI Suite II (x32 Version: 2.00.01)
Ashampoo Burning Studio 6 FREE v.6.81 (x32 Version: 6.8.1)
Ashampoo Burning Studio 6 FREE v.6.84 (x32 Version: 6.8.4)
Asistent pri prihlasovaní v sieti Windows Live (x32 Version: 5.000.818.5)
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (x32 Version: 6.5.5.24)
Balík Compatibility Pack pre systém Office 2007 (x32 Version: 12.0.6612.1000)
Blender (Version: 2.65a-release)
CCleaner (Version: 4.08)
Certified Toolbar 1.9 (x32 Version: 1.9)
Codecs for Windows 7 Pack 4.0.5 (x32 Version: 4.0.5)
CPUID CPU-Z 1.62
Document Express DjVu Plug-in (Version: 6.1.30523)
eDANE – aplikácia sekcie daňovej FR SR pre podávanie daňových dokumentov (HKCU Version: 1.2.0.0)
Evidencia ZO SRZ 1.6 (x32 Version: RoTurSoft - Evidencia ZO SRZ 1.6)
FontForge 2012-07-31 (x32 Version: 2012-07-31)
FormatFactory 2.80 (x32 Version: 2.80)
Free Audio Editor (x32)
GIMP 2.6.11 (x32 Version: 2.6.11)
G'MIC for GIMP verzia 1.5.2.2 (x32 Version: 1.5.2.2)
Google Chrome (x32 Version: 31.0.1650.57)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0)
Google Toolbar for Internet Explorer (x32 Version: 7.5.4601.54)
Google Update Helper (x32 Version: 1.3.21.165)
Handset WinDriver 1.02.02.00 (x32 Version: 1.02.02.00)
Hugin 2012.0.0 (x32 Version: 2012.0.0 hg_a6e4184ad538)
Inkscape 0.48.2 (x32 Version: 0.48.2)
Intel(R) Processor Graphics (x32 Version: 9.17.10.2875)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149)
Intel(R) USB 3.0 eXtensible Host Controller Driver (x32 Version: 1.0.1.209)
J2SE Runtime Environment 5.0 (x32 Version: 1.5.0)
Java 7 Update 11 (x32 Version: 7.0.110)
Java 7 Update 15 (64-bit) (Version: 7.0.150)
Java Auto Updater (x32 Version: 2.1.9.0)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (x32 Version: 2.0.48.0)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Small Business Edition 2003 (x32 Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Mozilla Firefox 16.0.2 (x86 sk) (x32 Version: 16.0.2)
Mozilla Maintenance Service (x32 Version: 16.0.2)
MPC-HC 1.6.4.6052 (64-bit) (Version: 1.6.4.6052)
MSVCRT (x32 Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
Odovzdávací nástroj lokality Windows Live (x32 Version: 14.0.8014.1029)
Panda Cloud Cleaner (x32 Version: 1.0.71)
Panda Internet Security 2014 (x32 Version: 19.01.00)
Password Depot 6 - Panda Secure Vault Edition (x32 Version: 6.1.5)
PC Wizard 2012.2.11 (x32)
PDF Architect (x32 Version: 1.0.41.8362)
PDFCreator (x32 Version: 1.6.1)
PlayMemories Home (x32 Version: 6.3.04.09250)
Realtek Ethernet Controller Driver (x32 Version: 7.49.927.2011)
Runtime (x32 Version: 1.00.0000)
Scribus 1.4.2 (64bit) (Version: 1.4.2)
SketchUp 8 (x32 Version: 3.0.16846)
Slideshow Creator (x32 Version: 1.1)
Sony Image Data Suite (x32 Version: 3.1.03.06030)
System Requirements Lab for Intel (x32 Version: 4.5.11.0)
TeamViewer 8 (x32 Version: 8.0.17292)
Total Commander 64-bit (Remove or Repair) (Version: 8.01)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Windows Live Communications Platform (x32 Version: 14.0.8117.416)
Windows Live Essentials (x32 Version: 14.0.8117.0416)
Windows Live Essentials (x32 Version: 14.0.8117.416)
Windows Live Fotogaléria (x32 Version: 14.0.8117.416)
Windows Live Movie Maker (x32 Version: 14.0.8117.0416)
Windows Live Sync (x32 Version: 14.0.8117.416)

==================== Restore Points =========================

12-11-2013 10:08:26 Windows Update
13-11-2013 21:38:27 Windows Update
19-11-2013 15:50:39 Windows Update
20-11-2013 19:14:08 Windows Update
26-11-2013 12:41:50 Windows Update
29-11-2013 14:31:37 Windows Update
03-12-2013 09:01:21 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {087FC500-F7F1-454D-B6CC-2E297F730B00} - System32\Tasks\{A8576724-91AB-49A8-87F9-5D709D76302C} => Iexplore.exe http://ui.skype.com/ui/0/6.3.0.105/en/a ... rogressBar
Task: {1080078A-49C5-4B18-8B00-463DA493B48C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-11-22] (Piriform Ltd)
Task: {46BADEC9-D754-4E79-A260-0FDEE5574EC6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-14] (Adobe Systems Incorporated)
Task: {A393C886-E4EB-48EC-B302-CC8E3571703B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-14] (Google Inc.)
Task: {A7D5ADF4-1E47-4DE8-BEE8-4729264661E3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-14] (Google Inc.)
Task: {E9CB78DA-44EB-4885-9127-286B136D2BEC} - System32\Tasks\ASUS\i-Setup204744 => C:\Windows\Chipset\AsusSetup.exe [2010-09-08] (ASUSTeK Computer Inc.)
Task: {F23C7E41-B5BF-4560-BC7B-5B710DC03B9A} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-11-07 20:59 - 2012-01-05 10:24 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-11-08 08:22 - 2013-12-03 10:43 - 00026112 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2012-11-08 08:22 - 2010-06-29 10:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2013-09-11 17:48 - 2007-02-14 12:55 - 00165424 _____ () C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\MiniCrypto.dll
2013-09-11 17:48 - 2004-05-19 10:33 - 00507904 _____ () C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\libxml2.dll
2013-09-11 17:48 - 2007-02-14 12:55 - 00099888 _____ () C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\APIcr.dll
2012-11-08 08:23 - 2011-07-12 19:14 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2012-11-08 08:23 - 2010-10-05 08:22 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2012-11-08 08:23 - 2012-03-21 12:07 - 00972288 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2012-11-08 08:23 - 2012-05-25 10:33 - 00883712 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2012-11-08 08:23 - 2012-05-28 21:27 - 01622528 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2012-11-08 08:23 - 2011-09-19 20:18 - 01243136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2012-11-08 08:23 - 2011-07-21 09:06 - 00846848 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2012-11-08 08:23 - 2011-10-14 20:03 - 00885248 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2012-11-08 08:22 - 2010-08-23 10:17 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll
2012-11-08 08:23 - 2010-10-05 08:22 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2012-11-08 08:23 - 2009-08-12 20:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail => ""="Service"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/03/2013 10:49:20 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (12/03/2013 10:49:20 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (12/03/2013 10:43:54 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/03/2013 10:30:01 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (12/03/2013 10:30:01 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (12/03/2013 10:24:14 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/03/2013 09:42:34 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (12/03/2013 09:42:34 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (12/03/2013 09:36:45 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/03/2013 09:26:59 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.


System errors:
=============
Error: (12/03/2013 10:42:36 AM) (Source: Service Control Manager) (User: )
Description: Služba Panda On-Access Anti-Malware Service bola ukončená s nasledujúcou chybou:
%%1

Error: (12/03/2013 10:30:47 AM) (Source: Service Control Manager) (User: )
Description: Služba Search Protect by Conduit Updater sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (12/03/2013 10:23:23 AM) (Source: Service Control Manager) (User: )
Description: Služba Panda On-Access Anti-Malware Service bola ukončená s nasledujúcou chybou:
%%1

Error: (12/03/2013 09:35:49 AM) (Source: Service Control Manager) (User: )
Description: Služba Panda On-Access Anti-Malware Service bola ukončená s nasledujúcou chybou:
%%1

Error: (12/02/2013 10:34:03 PM) (Source: Service Control Manager) (User: )
Description: Služba Panda On-Access Anti-Malware Service bola ukončená s nasledujúcou chybou:
%%1

Error: (12/01/2013 10:21:36 PM) (Source: Service Control Manager) (User: )
Description: Služba Panda On-Access Anti-Malware Service bola ukončená s nasledujúcou chybou:
%%1

Error: (11/29/2013 03:31:56 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (11/29/2013 00:24:51 AM) (Source: Service Control Manager) (User: )
Description: Služba Panda On-Access Anti-Malware Service bola ukončená s nasledujúcou chybou:
%%1

Error: (11/28/2013 07:47:55 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (11/27/2013 10:27:17 PM) (Source: Service Control Manager) (User: )
Description: Služba Panda On-Access Anti-Malware Service bola ukončená s nasledujúcou chybou:
%%1


Microsoft Office Sessions:
=========================
Error: (12/03/2013 10:49:20 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: 01B8020000002D010000

Error: (12/03/2013 10:49:20 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: 01B120200000000000000AF000000

Error: (12/03/2013 10:43:54 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/03/2013 10:30:01 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: 01B8020000002D010000

Error: (12/03/2013 10:30:01 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: 01B120200000000000000AF000000

Error: (12/03/2013 10:24:14 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/03/2013 09:42:34 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: 01B8020000002D010000

Error: (12/03/2013 09:42:34 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: 01B120200000000000000AF000000

Error: (12/03/2013 09:36:45 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/03/2013 09:26:59 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: 01B8020000002D010000


==================== Memory info ===========================

Percentage of memory in use: 20%
Total physical RAM: 7884.44 MB
Available physical RAM: 6255.31 MB
Total Pagefile: 15767.05 MB
Available Pagefile: 13984.14 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:932.51 GB) (Free:882.94 GB) NTFS
Drive d: (Nový zväzok) (Fixed) (Total:930.41 GB) (Free:741.86 GB) NTFS
Drive f: (CAM_SD) (Removable) (Total:29.5 GB) (Free:27.49 GB) FAT32
Drive g: (UDISK) (Removable) (Total:3.81 GB) (Free:2.34 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 8A73DAB8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=933 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=930 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 4 GB) (Disk ID: 04030201)
Partition 1: (Not Active) - (Size=4 GB) - (Type=0C)

========================================================
Disk: 2 (Size: 30 GB) (Disk ID: 00000000)
Partition 1: (Not Active) - (Size=30 GB) - (Type=0C)

==================== End Of Log ============================

Dal jste dvakrat Addition.txt,jeden jsem odmazal.

Dejte jeste FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-12-2013
Ran by Zdeno (administrator) on ZDENO-PC on 03-12-2013 11:09:19
Running from C:\Users\Zdeno\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\psksvc.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\TPSrvWow.exe
(Panda Security) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\WebProxy.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsCtrlS.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavFnSvr.exe
(Panda Security, S.L.) C:\Program Files (x86)\Common Files\Panda Security\PavShld\PavPrSrv.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\pavsrvx86.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\AVENGINE.EXE
(pdfforge GbR) C:\Program Files (x86)\PDF Architect\HelperService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(pdfforge GbR) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Panda Security International) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\FIREWALL\PSHost.exe
(Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsImSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Desktop.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\SrvLoad.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavBckPT.exe
(forum.viry.cz) C:\Users\Zdeno\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SpywareTerminatorShield] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
HKLM\...\Run: [SpywareTerminatorUpdater] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
Winlogon\Notify\avldr: C:\Windows\SYSTEM32\avldr64.dll (On-Access Anti-Malware Scanner Sync)
Winlogon\Notify\igfxcui: C:\Windows\SYSTEM32\igfxdev.dll (Intel Corporation)
MountPoints2: {70951b47-d792-11dd-b6ad-806e6f6e6963} - D:\Bin\ASSETUP.exe
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-04] (Intel Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PMBVolumeWatcher] - C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [724576 2012-09-25] (Sony Corporation)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\qttask.exe [421888 2012-12-01] (Apple Inc.)
HKLM-x32\...\Run: [APVXDWIN] - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\ApVxdWin.exe [1062880 2013-07-05] (Panda Security, S.L.)
HKLM-x32\...\Run: [SCANINICIO] - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\Inicio.exe [70432 2012-11-08] (Panda Security, S.L.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mrk.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xC24C748D96BDCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.sk/
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si= ... earchTerms}
SearchScopes: HKCU - {AEFA3B0D-37A3-44BD-AD03-9C95A116228B} URL = http://search.conduit.com/ResultsExt.as ... 03257&UM=2
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GbR)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocník pri prihlasovaní v sieti Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: HKLM {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net ... plugin.cab
DPF: HKLM {8AD9C840-044E-11D1-B3E9-00805F499D93} http://javadl-esd.oracle.com/update/1.5 ... s-i586.cab
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/s ... wflash.cab
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Tcpip\Parameters: [DhcpNameServer] 195.68.234.1 195.68.234.10

FireFox:
========
FF ProfilePath: C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default
FF NewTab: hxxp://newtab.certified-toolbar.com/nff?si=33953&tid=2958&new=true
FF Plugin: @java.com/DTPlugin,version=10.15.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.15.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.9.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\zoznam-sk.xml
FF Extension: SaveByclick - C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\Extensions\50dc36f17f225@50dc36f17f25e.com
FF Extension: Certified Toolbar - C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\Extensions\{624ad42d-e714-46b4-843e-c7094f740b0f}
FF Extension: No Name - C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\Extensions\WTB_GLOBAL.sqlite
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.sk/"
CHR Extension: (Google Docs) - C:\Users\Zdeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Zdeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Zdeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Zdeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google Wallet) - C:\Users\Zdeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Users\Zdeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [kcmilhmkaganinonedmjidmceoppaajg] - C:\Program Files (x86)\CertifiedToolbar\chrome\CertifiedToolbar.crx
CHR HKLM-x32\...\Chrome\Extension: [popmhbnicbdlpnmfaphnpdgekjpfomob] - C:\ProgramData\SaveByclick\popmhbnicbdlpnmfaphnpdgekjpfomob.crx

==================== Services (Whitelisted) =================

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-06-01] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-06-01] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-02-17] (ASUSTeK Computer Inc.)
R2 Panda Software Controller; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsCtrls.exe [177440 2012-11-19] (Panda Security, S.L.)
R2 PAVFNSVR; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavFnSvr.exe [202016 2012-09-21] (Panda Security, S.L.)
R2 PavPrSrv; C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe [62768 2008-02-04] (Panda Security, S.L.)
R2 PAVSRV; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\pavsrvx86.exe [313664 2011-04-13] (Panda Security, S.L.)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1522312 2012-11-22] (pdfforge GbR)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [905864 2012-11-22] (pdfforge GbR)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [474208 2012-09-25] (Sony Corporation)
R2 PSHost; c:\program files (x86)\panda security\panda internet security 2014\firewall\PSHOST.EXE [226560 2009-11-26] (Panda Security International)
R2 PSIMSVC; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsImSvc.exe [108288 2008-06-19] (Panda Security S.L.)
R2 PskSvcRetail; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PskSvc.exe [28992 2010-08-16] (Panda Security, S.L.)
R2 TPSrv; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\TPSrvWow.exe [173344 2012-11-16] (Panda Security, S.L.)

==================== Drivers (Whitelisted) ====================

R2 AmFSM; C:\Windows\System32\DRIVERS\amm6460.sys [71432 2012-03-26] (Panda Security, S.L.)
R2 APPFLT; C:\Windows\system32\Drivers\APPFLT64.SYS [129096 2011-01-31] (Panda Security, S.L.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R2 ComFiltr; C:\Windows\system32\DRIVERS\COMFiltr.sys [15928 2013-09-11] ()
S3 cpuz135; C:\Program Files (x86)\CPUID\PC Wizard 2012\pcwiz_x64.sys [24368 2012-08-11] (CPUID)
R2 DSAFLT; C:\Windows\system32\Drivers\DSAFLT64.SYS [82952 2009-09-25] (Panda Security, S.L.)
R2 FNETMON; C:\Windows\system32\Drivers\fnetm64.SYS [31752 2009-09-25] (Panda Security, S.L.)
S3 HWHandSet; C:\Windows\System32\DRIVERS\hw_quusbmdm.sys [223232 2011-10-24] (Huawei Technologies Co., Ltd.)
R2 IDSFLT; C:\Windows\system32\Drivers\IDSFLT64.SYS [78920 2010-09-09] (Panda Security, S.L.)
R2 NETFLTDI; C:\Windows\system32\Drivers\NETTDI64.SYS [170504 2009-09-25] (Panda Security, S.L.)
R3 NETIMFLT01060044; C:\Windows\System32\DRIVERS\n64i1644.sys [216648 2010-09-01] (Panda Security, S.L.)
R0 pavboot; C:\Windows\System32\Drivers\pavboot64.sys [30792 2010-06-22] (Panda Security, S.L.)
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [47632 2013-04-29] (Panda Security, S.L.)
R1 ShldFlt; C:\Windows\System32\DRIVERS\ShldFlt.sys [48136 2009-10-27] (Panda Security, S.L.)
R2 WNMFLT; C:\Windows\system32\Drivers\WNMFLT64.SYS [74760 2009-09-25] (Panda Security, S.L.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2011-10-24] (Huawei Technologies Co., Ltd.)
R3 PavTPK.sys; \??\C:\Windows\system32\PavTPK.sys [x]
S3 Prot6Flt; system32\DRIVERS\Prot6Flt.sys [x]
S3 TEAM; system32\DRIVERS\RtTeam60.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-03 11:09 - 2013-12-03 11:09 - 00016392 _____ C:\Users\Zdeno\Desktop\FRST.txt
2013-12-03 11:08 - 2013-12-03 11:08 - 00029696 _____ C:\Users\Zdeno\AppData\Local\MSGBOX.EXE
2013-12-03 11:08 - 2013-12-03 11:08 - 00015327 _____ C:\Users\Zdeno\Desktop\LM.bat
2013-12-03 11:08 - 2013-12-03 11:08 - 00000000 ____D C:\FRST
2013-12-03 11:07 - 2013-12-03 11:06 - 00112640 _____ (forum.viry.cz) C:\Users\Zdeno\Desktop\FRSTLauncher.exe
2013-12-03 11:03 - 2013-12-03 11:03 - 01959434 _____ (Farbar) C:\Users\Zdeno\Desktop\FRST64.exe
2013-12-03 10:41 - 2013-12-03 10:42 - 00000000 ____D C:\AdwCleaner
2013-12-03 10:29 - 2013-12-03 10:29 - 00000000 ____D C:\Windows\ERUNT
2013-12-03 10:28 - 2013-12-03 10:28 - 01110034 _____ C:\Users\Zdeno\Downloads\adwcleaner(1).exe
2013-12-03 10:27 - 2013-12-03 10:27 - 01034531 _____ (Thisisu) C:\Users\Zdeno\Downloads\JRT.exe
2013-12-03 10:23 - 2013-12-03 10:43 - 00000112 _____ C:\Windows\setupact.log
2013-12-03 10:23 - 2013-12-03 10:23 - 00000816 _____ C:\Windows\PFRO.log
2013-12-03 10:23 - 2013-12-03 10:23 - 00000000 _____ C:\Windows\setuperr.log
2013-12-03 09:55 - 2013-12-03 09:55 - 00935175 _____ C:\Users\Zdeno\Downloads\RSITx64(1).exe
2013-12-03 09:55 - 2013-12-03 09:55 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\stflt.sys
2013-12-03 09:51 - 2013-12-03 09:52 - 01058232 _____ (Crawler, LLC ) C:\Users\Zdeno\Downloads\SpywareTerminatorSetup.exe
2013-12-03 09:45 - 2013-12-03 09:45 - 04618136 _____ (Piriform Ltd) C:\Users\Zdeno\Downloads\ccsetup408.exe
2013-12-03 09:45 - 2013-12-03 09:45 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-12-03 09:45 - 2013-12-03 09:45 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-03 09:45 - 2013-12-03 09:45 - 00000000 ____D C:\Program Files\CCleaner
2013-11-29 20:06 - 2013-11-29 21:57 - 00000000 ____D C:\Program Files (x86)\FontForge
2013-11-29 20:06 - 2013-11-29 20:06 - 00001043 _____ C:\Users\Zdeno\Desktop\FontForge.lnk
2013-11-29 20:06 - 2013-11-29 20:06 - 00000000 ____D C:\Users\Zdeno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FontForge
2013-11-29 15:43 - 2013-11-29 15:43 - 00000000 ____D C:\Users\Zdeno\AppData\Roaming\DLKNFUF83457
2013-11-29 15:43 - 2013-11-29 15:43 - 00000000 ____D C:\Users\Zdeno\AppData\Local\DLKNFUF83457
2013-11-23 08:12 - 2013-11-23 08:12 - 00251915 _____ C:\Users\Zdeno\Documents\debnenie s prúdením.svg
2013-11-23 08:04 - 2013-11-23 08:04 - 00242381 _____ C:\Users\Zdeno\Documents\debnenie.svg.2013_11_23_08_04_01.0.svg
2013-11-23 07:41 - 2013-11-23 07:41 - 00001011 _____ C:\Users\Public\Desktop\Inkscape.lnk
2013-11-20 21:08 - 2013-11-20 21:08 - 00240753 _____ C:\Users\Zdeno\Documents\debnenie.svg
2013-11-20 20:17 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-20 20:15 - 2013-11-20 20:15 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-20 20:15 - 2013-11-20 20:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-20 20:15 - 2013-11-20 20:15 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-20 20:15 - 2013-11-20 20:15 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-20 20:15 - 2013-11-20 20:15 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-20 20:15 - 2013-11-20 20:15 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-20 20:15 - 2013-11-20 20:15 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-20 20:15 - 2013-11-20 20:15 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-20 20:15 - 2013-11-20 20:15 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-20 20:15 - 2013-11-20 20:15 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-20 20:15 - 2013-11-20 20:15 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-20 19:26 - 2013-04-29 09:17 - 00047632 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2013-11-20 19:24 - 2013-11-20 19:26 - 00001286 _____ C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
2013-11-20 17:56 - 2013-11-20 17:56 - 00053981 _____ C:\Users\Zdeno\Documents\debnenie.skp
2013-11-14 15:51 - 2013-11-15 16:01 - 00002195 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-14 15:50 - 2013-12-03 11:00 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-14 15:50 - 2013-12-03 10:43 - 00000930 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-14 15:50 - 2013-11-14 16:20 - 00000000 ____D C:\Users\Zdeno\AppData\Local\Google
2013-11-14 15:50 - 2013-11-14 15:55 - 00003930 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-14 15:50 - 2013-11-14 15:55 - 00003678 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-14 15:50 - 2013-11-14 15:50 - 00000000 ____D C:\Program Files\Google
2013-11-13 16:02 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 16:02 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 16:02 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 16:02 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 16:02 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 16:02 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 16:02 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 16:02 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 16:02 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 16:02 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 16:02 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 16:02 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 16:02 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 16:02 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 16:02 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 16:02 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 16:02 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 16:02 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 16:02 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 16:02 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 16:02 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 16:02 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 16:02 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 16:02 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 16:02 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 16:02 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 16:02 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 16:02 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 16:02 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 16:02 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-05 22:33 - 2013-11-05 22:33 - 00001547 _____ C:\Users\Zdeno\Desktop\Windows Media Player.lnk
2013-11-05 22:32 - 2013-11-05 22:32 - 00002759 _____ C:\Users\Zdeno\Desktop\Microsoft Office Word 2003.lnk
2013-11-05 22:32 - 2013-11-05 22:32 - 00002721 _____ C:\Users\Zdeno\Desktop\Microsoft Office Excel 2003.lnk
2013-11-05 21:03 - 2013-11-05 13:29 - 00799562 _____ C:\Users\Zdeno\Documents\obyvacka miery.skb
2013-11-05 13:29 - 2013-11-05 21:03 - 00815597 _____ C:\Users\Zdeno\Documents\obyvacka miery.skp
2013-11-04 18:00 - 2013-11-04 18:23 - 00015204 _____ C:\Users\Zdeno\Documents\Zokero - experimenty.wlmp
2013-11-04 17:27 - 2013-11-04 17:27 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01007.Wdf
2013-11-04 17:27 - 2013-11-04 17:27 - 00000000 ____D C:\Program Files (x86)\Handset WinDriver
2013-11-04 17:27 - 2011-10-24 05:04 - 00223232 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\hw_quusbmdm.sys
2013-11-04 17:27 - 2011-10-24 04:51 - 00116864 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\hw_usbdev.sys
2013-11-04 17:27 - 2010-02-19 00:00 - 01533512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFUpdate_01007.dll
2013-11-04 17:27 - 2010-02-19 00:00 - 01490656 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll
2013-11-04 17:27 - 2010-02-19 00:00 - 01490656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01007.dll
2013-11-04 17:27 - 2010-02-19 00:00 - 00708168 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller.dll
2013-11-04 17:27 - 2010-02-19 00:00 - 00708168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WinUSBCoInstaller.dll
2013-11-04 17:20 - 2013-11-17 16:28 - 00000746 _____ C:\NSI_DriverInstall.log

==================== One Month Modified Files and Folders =======

2013-12-03 11:09 - 2013-12-03 11:09 - 00016392 _____ C:\Users\Zdeno\Desktop\FRST.txt
2013-12-03 11:08 - 2013-12-03 11:08 - 00029696 _____ C:\Users\Zdeno\AppData\Local\MSGBOX.EXE
2013-12-03 11:08 - 2013-12-03 11:08 - 00015327 _____ C:\Users\Zdeno\Desktop\LM.bat
2013-12-03 11:08 - 2013-12-03 11:08 - 00000000 ____D C:\FRST
2013-12-03 11:06 - 2013-12-03 11:07 - 00112640 _____ (forum.viry.cz) C:\Users\Zdeno\Desktop\FRSTLauncher.exe
2013-12-03 11:03 - 2013-12-03 11:03 - 01959434 _____ (Farbar) C:\Users\Zdeno\Desktop\FRST64.exe
2013-12-03 11:03 - 2012-11-07 21:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-03 11:00 - 2013-11-14 15:50 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-03 10:50 - 2009-07-14 05:45 - 00022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-03 10:50 - 2009-07-14 05:45 - 00022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-03 10:49 - 2009-07-14 06:13 - 00730532 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-03 10:46 - 2012-11-08 20:14 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-03 10:46 - 2012-11-07 18:45 - 01592578 _____ C:\Windows\WindowsUpdate.log
2013-12-03 10:45 - 2013-09-11 18:01 - 00000252 _____ C:\Windows\system32\Drivers\etc\IdsFlt.cfg.bck
2013-12-03 10:45 - 2013-09-11 18:01 - 00000252 _____ C:\Windows\system32\Drivers\etc\IdsFlt.cfg
2013-12-03 10:45 - 2013-09-11 18:01 - 00000068 _____ C:\Windows\system32\Drivers\etc\NetLoc.wlt.bck
2013-12-03 10:45 - 2013-09-11 18:01 - 00000068 _____ C:\Windows\system32\Drivers\etc\NetLoc.wlt
2013-12-03 10:45 - 2013-09-11 18:01 - 00000056 _____ C:\Windows\system32\Drivers\etc\WnmFlt.cfg.bck
2013-12-03 10:45 - 2013-09-11 18:01 - 00000056 _____ C:\Windows\system32\Drivers\etc\WnmFlt.cfg
2013-12-03 10:45 - 2013-09-11 18:01 - 00000056 _____ C:\Windows\system32\Drivers\etc\DsaFlt.cfg.bck
2013-12-03 10:45 - 2013-09-11 18:01 - 00000056 _____ C:\Windows\system32\Drivers\etc\DsaFlt.cfg
2013-12-03 10:45 - 2013-09-11 18:00 - 00000068 _____ C:\Windows\system32\Drivers\etc\NetFlt.cfg.bck
2013-12-03 10:45 - 2013-09-11 18:00 - 00000068 _____ C:\Windows\system32\Drivers\etc\NetFlt.cfg
2013-12-03 10:45 - 2013-09-11 17:48 - 00326184 _____ C:\Windows\system32\Drivers\APPFCONT.DAT.bck
2013-12-03 10:45 - 2013-09-11 17:48 - 00326184 _____ C:\Windows\system32\Drivers\APPFCONT.DAT
2013-12-03 10:45 - 2013-09-11 17:48 - 00303044 _____ C:\Windows\system32\Drivers\etc\DsaFlt.rls.bck
2013-12-03 10:45 - 2013-09-11 17:48 - 00303044 _____ C:\Windows\system32\Drivers\etc\DsaFlt.rls
2013-12-03 10:45 - 2013-09-11 17:48 - 00001132 _____ C:\Windows\system32\Drivers\APPFLTR.CFG.bck
2013-12-03 10:45 - 2013-09-11 17:48 - 00001132 _____ C:\Windows\system32\Drivers\APPFLTR.CFG
2013-12-03 10:43 - 2013-12-03 10:23 - 00000112 _____ C:\Windows\setupact.log
2013-12-03 10:43 - 2013-11-14 15:50 - 00000930 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-03 10:43 - 2013-09-11 18:00 - 00000120 _____ C:\Windows\system32\Drivers\etc\NetAdapt.cfg.bck
2013-12-03 10:43 - 2013-09-11 18:00 - 00000120 _____ C:\Windows\system32\Drivers\etc\NetAdapt.cfg
2013-12-03 10:43 - 2013-09-11 18:00 - 00000072 _____ C:\Windows\system32\Drivers\etc\NetAR.wlt.bck
2013-12-03 10:43 - 2013-09-11 18:00 - 00000072 _____ C:\Windows\system32\Drivers\etc\NetAR.wlt
2013-12-03 10:43 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-03 10:42 - 2013-12-03 10:41 - 00000000 ____D C:\AdwCleaner
2013-12-03 10:29 - 2013-12-03 10:29 - 00000000 ____D C:\Windows\ERUNT
2013-12-03 10:28 - 2013-12-03 10:28 - 01110034 _____ C:\Users\Zdeno\Downloads\adwcleaner(1).exe
2013-12-03 10:27 - 2013-12-03 10:27 - 01034531 _____ (Thisisu) C:\Users\Zdeno\Downloads\JRT.exe
2013-12-03 10:23 - 2013-12-03 10:23 - 00000816 _____ C:\Windows\PFRO.log
2013-12-03 10:23 - 2013-12-03 10:23 - 00000000 _____ C:\Windows\setuperr.log
2013-12-03 10:01 - 2013-02-13 21:46 - 00000000 ____D C:\Program Files\trend micro
2013-12-03 09:55 - 2013-12-03 09:55 - 00935175 _____ C:\Users\Zdeno\Downloads\RSITx64(1).exe
2013-12-03 09:55 - 2013-12-03 09:55 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\stflt.sys
2013-12-03 09:52 - 2013-12-03 09:51 - 01058232 _____ (Crawler, LLC ) C:\Users\Zdeno\Downloads\SpywareTerminatorSetup.exe
2013-12-03 09:49 - 2013-01-08 22:15 - 00000000 ____D C:\Program Files (x86)\PDFCreator
2013-12-03 09:49 - 2012-11-27 22:45 - 00000000 ____D C:\Users\Zdeno\AppData\Roaming\inkscape
2013-12-03 09:49 - 2012-11-08 10:00 - 00000000 ____D C:\Users\Zdeno\AppData\Roaming\Media Player Classic
2013-12-03 09:49 - 2012-11-07 18:45 - 00000000 ____D C:\Users\Zdeno
2013-12-03 09:49 - 2009-01-01 00:26 - 00000000 ____D C:\Windows\Panther
2013-12-03 09:45 - 2013-12-03 09:45 - 04618136 _____ (Piriform Ltd) C:\Users\Zdeno\Downloads\ccsetup408.exe
2013-12-03 09:45 - 2013-12-03 09:45 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-12-03 09:45 - 2013-12-03 09:45 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-03 09:45 - 2013-12-03 09:45 - 00000000 ____D C:\Program Files\CCleaner
2013-12-02 20:59 - 2012-11-14 20:40 - 00000000 ____D C:\Users\Zdeno\AppData\Roaming\gtk-2.0
2013-12-02 20:59 - 2012-11-14 20:39 - 00000000 ____D C:\Users\Zdeno\.gimp-2.6
2013-12-02 20:01 - 2012-12-23 11:11 - 00008627 _____ C:\Windows\SysWOW64\PAV_FOG.OPC
2013-11-29 21:57 - 2013-11-29 20:06 - 00000000 ____D C:\Program Files (x86)\FontForge
2013-11-29 20:06 - 2013-11-29 20:06 - 00001043 _____ C:\Users\Zdeno\Desktop\FontForge.lnk
2013-11-29 20:06 - 2013-11-29 20:06 - 00000000 ____D C:\Users\Zdeno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FontForge
2013-11-29 15:43 - 2013-11-29 15:43 - 00000000 ____D C:\Users\Zdeno\AppData\Roaming\DLKNFUF83457
2013-11-29 15:43 - 2013-11-29 15:43 - 00000000 ____D C:\Users\Zdeno\AppData\Local\DLKNFUF83457
2013-11-26 21:54 - 2013-07-17 15:41 - 00013824 _____ C:\Users\Zdeno\Desktop\maso Dorine v mraznicke.xls
2013-11-23 08:12 - 2013-11-23 08:12 - 00251915 _____ C:\Users\Zdeno\Documents\debnenie s prúdením.svg
2013-11-23 08:04 - 2013-11-23 08:04 - 00242381 _____ C:\Users\Zdeno\Documents\debnenie.svg.2013_11_23_08_04_01.0.svg
2013-11-23 07:41 - 2013-11-23 07:41 - 00001011 _____ C:\Users\Public\Desktop\Inkscape.lnk
2013-11-23 07:41 - 2012-11-27 22:40 - 00000000 ____D C:\Program Files (x86)\Inkscape
2013-11-21 17:22 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-20 21:08 - 2013-11-20 21:08 - 00240753 _____ C:\Users\Zdeno\Documents\debnenie.svg
2013-11-20 20:34 - 2012-11-07 18:46 - 00001417 _____ C:\Users\Zdeno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-20 20:32 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sk-SK
2013-11-20 20:32 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sk-SK
2013-11-20 20:32 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-20 20:15 - 2013-11-20 20:15 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-20 20:15 - 2013-11-20 20:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-20 20:15 - 2013-11-20 20:15 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-20 20:15 - 2013-11-20 20:15 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-20 20:15 - 2013-11-20 20:15 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-20 20:15 - 2013-11-20 20:15 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-20 20:15 - 2013-11-20 20:15 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-20 20:15 - 2013-11-20 20:15 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-20 20:15 - 2013-11-20 20:15 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-20 20:15 - 2013-11-20 20:15 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-20 20:15 - 2013-11-20 20:15 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-20 20:15 - 2013-11-20 20:15 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-20 20:15 - 2013-11-20 20:15 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-20 19:53 - 2012-11-14 16:43 - 00000000 ____D C:\Windows\System32\Tasks\ProtectedSearch
2013-11-20 19:26 - 2013-11-20 19:24 - 00001286 _____ C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
2013-11-20 19:24 - 2012-12-23 10:57 - 00000000 ____D C:\Program Files (x86)\Panda Security
2013-11-20 17:56 - 2013-11-20 17:56 - 00053981 _____ C:\Users\Zdeno\Documents\debnenie.skp
2013-11-17 16:28 - 2013-11-04 17:20 - 00000746 _____ C:\NSI_DriverInstall.log
2013-11-15 16:01 - 2013-11-14 15:51 - 00002195 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-14 16:20 - 2013-11-14 15:50 - 00000000 ____D C:\Users\Zdeno\AppData\Local\Google
2013-11-14 16:20 - 2012-11-08 08:00 - 00000000 ____D C:\Users\Zdeno\AppData\Local\Adobe
2013-11-14 15:55 - 2013-11-14 15:50 - 00003930 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-14 15:55 - 2013-11-14 15:50 - 00003678 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-14 15:51 - 2013-03-17 09:49 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-14 15:50 - 2013-11-14 15:50 - 00000000 ____D C:\Program Files\Google
2013-11-14 15:50 - 2013-03-17 09:49 - 00000000 ____D C:\ProgramData\Google
2013-11-14 15:50 - 2012-11-08 20:14 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-14 15:50 - 2012-11-08 20:14 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-14 15:50 - 2012-11-08 20:14 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-13 22:40 - 2009-07-14 03:34 - 00000596 _____ C:\Windows\win.ini
2013-11-13 22:39 - 2013-08-06 21:32 - 00000000 ____D C:\Windows\system32\MRT
2013-11-13 22:38 - 2012-11-07 21:24 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-12 00:17 - 2013-10-20 14:59 - 00000902 _____ C:\Users\Zdeno\Desktop\Hugin.lnk
2013-11-11 05:50 - 2010-11-21 04:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-05 22:33 - 2013-11-05 22:33 - 00001547 _____ C:\Users\Zdeno\Desktop\Windows Media Player.lnk
2013-11-05 22:32 - 2013-11-05 22:32 - 00002759 _____ C:\Users\Zdeno\Desktop\Microsoft Office Word 2003.lnk
2013-11-05 22:32 - 2013-11-05 22:32 - 00002721 _____ C:\Users\Zdeno\Desktop\Microsoft Office Excel 2003.lnk
2013-11-05 21:03 - 2013-11-05 13:29 - 00815597 _____ C:\Users\Zdeno\Documents\obyvacka miery.skp
2013-11-05 13:29 - 2013-11-05 21:03 - 00799562 _____ C:\Users\Zdeno\Documents\obyvacka miery.skb
2013-11-04 18:42 - 2013-10-21 07:47 - 00000078 _____ C:\Users\Zdeno\AppData\Roaming\.ptbt0
2013-11-04 18:23 - 2013-11-04 18:00 - 00015204 _____ C:\Users\Zdeno\Documents\Zokero - experimenty.wlmp
2013-11-04 17:27 - 2013-11-04 17:27 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01007.Wdf
2013-11-04 17:27 - 2013-11-04 17:27 - 00000000 ____D C:\Program Files (x86)\Handset WinDriver

Some content of TEMP:
====================
C:\Users\Zdeno\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-30 09:22

==================== End Of Log ============================

Odinstalujte SpywareTerminator

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM\...\Run: [SpywareTerminatorShield] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
  HKLM\...\Run: [SpywareTerminatorUpdater] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
  MountPoints2: {70951b47-d792-11dd-b6ad-806e6f6e6963} - D:\Bin\ASSETUP.exe
  HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\qttask.exe [421888 2012-12-01] (Apple Inc.)
  
  HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xC24C748D96BDCD01
  HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.sk/
  SearchScopes: HKLM - DefaultScope value is missing.
  SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si= ... id=2958&q={searchTerms}
  SearchScopes: HKCU - {AEFA3B0D-37A3-44BD-AD03-9C95A116228B} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282722&CUI=UN60841346129903257&UM=2
  
  FF NewTab: hxxp://newtab.certified-toolbar.com/nff ... 8&new=true
  FF Extension: SaveByclick - C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\Extensions\50dc36f17f225@50dc36f17f25e.com
  FF Extension: Certified Toolbar - C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\Extensions\{624ad42d-e714-46b4-843e-c7094f740b0f}
  
  CHR HKLM-x32\...\Chrome\Extension: [kcmilhmkaganinonedmjidmceoppaajg] - C:\Program Files (x86)\CertifiedToolbar\chrome\CertifiedToolbar.crx
  CHR HKLM-x32\...\Chrome\Extension: [popmhbnicbdlpnmfaphnpdgekjpfomob] - C:\ProgramData\SaveByclick\popmhbnicbdlpnmfaphnpdgekjpfomob.crx
  
  2013-12-03 11:08 - 2013-12-03 11:08 - 00029696 _____ C:\Users\Zdeno\AppData\Local\MSGBOX.EXE
  2013-12-03 11:08 - 2013-12-03 11:08 - 00015327 _____ C:\Users\Zdeno\Desktop\LM.bat
  2013-12-03 09:55 - 2013-12-03 09:55 - 00935175 _____ C:\Users\Zdeno\Downloads\RSITx64(1).exe
  2013-12-03 10:28 - 2013-12-03 10:28 - 01110034 _____ C:\Users\Zdeno\Downloads\adwcleaner(1).exe
  
  Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  
  Hosts:
  CMD: shutdown /r /f /t 2
  
  End

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 03-12-2013 02
Ran by Zdeno at 2013-12-04 11:34:35 Run:1
Running from C:\Users\Zdeno\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [SpywareTerminatorShield] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
HKLM\...\Run: [SpywareTerminatorUpdater] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
MountPoints2: {70951b47-d792-11dd-b6ad-806e6f6e6963} - D:\Bin\ASSETUP.exe
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\qttask.exe [421888 2012-12-01] (Apple Inc.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xC24C748D96BDCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.sk/
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si= ... id=2958&q={searchTerms}
SearchScopes: HKCU - {AEFA3B0D-37A3-44BD-AD03-9C95A116228B} URL = http://search.conduit.com/ResultsExt.as ... 03257&UM=2

FF NewTab: hxxp://newtab.certified-toolbar.com/nff ... 8&new=true
FF Extension: SaveByclick - C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\Extensions\50dc36f17f225@50dc36f17f25e.com
FF Extension: Certified Toolbar - C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\Extensions\{624ad42d-e714-46b4-843e-c7094f740b0f}

CHR HKLM-x32\...\Chrome\Extension: [kcmilhmkaganinonedmjidmceoppaajg] - C:\Program Files (x86)\CertifiedToolbar\chrome\CertifiedToolbar.crx
CHR HKLM-x32\...\Chrome\Extension: [popmhbnicbdlpnmfaphnpdgekjpfomob] - C:\ProgramData\SaveByclick\popmhbnicbdlpnmfaphnpdgekjpfomob.crx

2013-12-03 11:08 - 2013-12-03 11:08 - 00029696 _____ C:\Users\Zdeno\AppData\Local\MSGBOX.EXE
2013-12-03 11:08 - 2013-12-03 11:08 - 00015327 _____ C:\Users\Zdeno\Desktop\LM.bat
2013-12-03 09:55 - 2013-12-03 09:55 - 00935175 _____ C:\Users\Zdeno\Downloads\RSITx64(1).exe
2013-12-03 10:28 - 2013-12-03 10:28 - 01110034 _____ C:\Users\Zdeno\Downloads\adwcleaner(1).exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Hosts:
CMD: shutdown /r /f /t 2

End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SpywareTerminatorShield => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SpywareTerminatorUpdater => Value not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{70951b47-d792-11dd-b6ad-806e6f6e6963} => Key deleted successfully.
HKCR\CLSID\{70951b47-d792-11dd-b6ad-806e6f6e6963} => Key not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AEFA3B0D-37A3-44BD-AD03-9C95A116228B} => Key deleted successfully.
HKCR\CLSID\{AEFA3B0D-37A3-44BD-AD03-9C95A116228B} => Key not found.
Firefox newtab deleted successfully.
C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\Extensions\50dc36f17f225@50dc36f17f25e.com => Moved successfully.
C:\Users\Zdeno\AppData\Roaming\Mozilla\Firefox\Profiles\ennyvv5r.default\Extensions\{624ad42d-e714-46b4-843e-c7094f740b0f} => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kcmilhmkaganinonedmjidmceoppaajg => Key deleted successfully.
"C:\Program Files (x86)\CertifiedToolbar\chrome\CertifiedToolbar.crx" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\popmhbnicbdlpnmfaphnpdgekjpfomob => Key deleted successfully.
"C:\ProgramData\SaveByclick\popmhbnicbdlpnmfaphnpdgekjpfomob.crx" => File/Directory not found.
"C:\Users\Zdeno\AppData\Local\MSGBOX.EXE" => File/Directory not found.
"C:\Users\Zdeno\Desktop\LM.bat" => File/Directory not found.
C:\Users\Zdeno\Downloads\RSITx64(1).exe => Moved successfully.
C:\Users\Zdeno\Downloads\adwcleaner(1).exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========


==== End of Fixlog ====

Tak jeste uklidime

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse