VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Ordinální číslo 459 se nepodařilo - halbstadt

https://forum.viry.cz:443/viewtopic.php?t=134546

Stránka 1 z 3

Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 08 pro 2013 13:48
od halbstadt
Zdravím, mám takový problém, v Pc se stále objevuje chyba "Ordinální číslo 459 se nepodařilo v dynamicky propojované knihovně urlmon.dll nalézt", tak bych se vás rád zeptal na řešení tohoto problému.
JRT log


~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{EED0A039-54AF-4B64-A46E-2DDC4292B7B8}
Successfully deleted: [Registry Key] "hkey_current_user\software\askpartnernetwork"
Successfully deleted: [Registry Key] "hkey_local_machine\software\askpartnernetwork"



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\ProgramData\AskPartnerNetwork"
Successfully deleted: [Folder] "C:\ProgramData\ask"
Failed to delete: [Folder] "C:\Program Files\askpartnernetwork"



~~~ FireFox

Failed to delete: [File] "C:\Program Files\Mozilla Firefox\searchplugins\avg_igeared.xml"
Successfully deleted: [File] C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\11wayb55.default\searchplugins\askcom.xml
Successfully deleted: [Folder] C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\11wayb55.default\extensions\{ef522540-89f5-46b9-b6fe-1829e2b572c6}
Successfully deleted the following from C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\11wayb55.default\prefs.js

user_pref("extensions.ORJ-V7.domain", "\"www.search.ask.com\"");
user_pref("extensions.toolbar@ask.com.install-event-fired", true);
Emptied folder: C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\11wayb55.default\minidumps [10 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 08.12.2013 at 12:37:12,40
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
ADw log
# AdwCleaner v3.014 - Report created 08/12/2013 at 13:31:16
# Updated 01/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : Vojta - VOJTA-PC
# Running from : C:\Users\Vojta\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\Program Files\AVG Secure Search
Folder Deleted : C:\Users\Vojta\AppData\Local\PackageAware
Folder Deleted : C:\Users\Vojta\AppData\LocalLow\AVG Security Toolbar
Folder Deleted : C:\Users\Vojtík\AppData\Local\AVG Security Toolbar
Folder Deleted : C:\Users\Vojtík\AppData\Local\PackageAware
Folder Deleted : C:\Users\Vojtík\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Vojtík\AppData\LocalLow\AskToolbar
File Deleted : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\searchplugins\ask-search.xml
File Deleted : C:\Users\Vojtík\AppData\Roaming\Mozilla\Firefox\Profiles\60i5dj6v.default\searchplugins\ask-search.xml

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}

***** [ Browsers ] *****

-\\ Internet Explorer v0.0.0.0


-\\ Mozilla Firefox v25.0.1 (cs)

[ File : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\prefs.js ]

Line Deleted : user_pref("extensions.toolbar_ORJ-V7@apn.ask.com.install-event-fired", true);

[ File : C:\Users\Vojtík\AppData\Roaming\Mozilla\Firefox\Profiles\60i5dj6v.default\prefs.js ]

Line Deleted : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\FireFoxExt\\13.2.0.5");
Line Deleted : user_pref("extensions.APN_TB.first-previous-keyword-url", "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=ORJ&o=&locale=&apn_uid=A2067149-A9ED-4254-8BCB-A63B173BA0AD&apn_ptnrs=U3&apn_sauid=C021[...]
Line Deleted : user_pref("extensions.ORJ-V7.previous-keyword-url", "\"hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=ORJ&o=&locale=&apn_uid=A2067149-A9ED-4254-8BCB-A63B173BA0AD&apn_ptnrs=U3&apn_sauid=C0215002[...]
Line Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "hxxp://isearch.avg.com/search?cid={68BABA03-C7BA-4F83-A16E-A263BBB606AB}&mid=3125df7c034747d685f159e75bc0c5a5-d8bb63f18cce0fec6cbd4be9fa5ad3d0ffe[...]

-\\ Google Chrome v

[ File : C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Vojtík\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2905 octets] - [08/12/2013 13:29:56]
AdwCleaner[S0].txt - [2880 octets] - [08/12/2013 13:31:16]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2940 octets] ##########

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 08 pro 2013 16:54
od vyosek
Zdravim :)

:arrow: Prispevek jsem oddelil, do cizich se nevstupuje

:arrow: Dejte log z RSIT http://forum.viry.cz/viewtopic.php?f=24&t=130784

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 08 pro 2013 17:03
od halbstadt
info.txt logfile of random's system information tool 1.09 2013-12-08 16:57:45

======Uninstall list======

-->C:\Program Files\CONEXANT\cAudioFilterAgent\SETUP.EXE -U -IcAudioFilterAgent -SM=cAudioFilterAgent.exe,16
-->C:\Program Files\Conexant\SAII\SETUP.EXE -U -ISAII -SM=SmartAudio.EXE,1801
-->MsiExec /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
2007 Microsoft Office system-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROHYBRIDR /dll OSETUP.DLL
7-Zip 4.57-->"C:\Program Files\7-Zip\Uninstall.exe"
Acrobat.com-->MsiExec.exe /X{77DCDCE3-2DED-62F3-8154-05E745472D07}
Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE
Adobe AIR-->c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Flash Player 10 ActiveX-->C:\windows\system32\Macromed\Flash\FlashUtil10l_ActiveX.exe -maintain activex
Adobe Flash Player 11 Plugin-->C:\windows\system32\Macromed\Flash\FlashUtil32_11_9_900_117_Plugin.exe -maintain plugin
Adobe Shockwave Player 12.0-->"C:\windows\system32\Adobe\Shockwave 12\uninstaller.exe"
ALPS Touch Pad Driver-->C:\Program Files\Apoint2K\Uninstap.exe ADDREMOVE
AMD USB Filter Driver-->MsiExec.exe /X{987B04C4-B5AC-4AD6-A7E9-8D681085B850}
American Conquest - Divided Nation-->"C:\Program Files\American Conquest - Divided Nation\unins000.exe"
American Conquest - Fight Back-->"C:\Program Files\American Conquest - Fight Back\unins000.exe"
American Conquest-->"C:\Program Files\American Conquest\unins000.exe"
Apple Application Support-->MsiExec.exe /I{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}
Apple Software Update-->MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
Ashampoo Burning Studio 2012 v10.0.15-->"C:\Program Files\Ashampoo\Ashampoo Burning Studio 2012\unins000.exe"
Ashampoo Photo Commander 9 v.9.4.2-->"C:\Program Files\Ashampoo\Ashampoo Photo Commander 9\unins000.exe"
Asistent pro přihlášení ke službě Windows Live-->MsiExec.exe /I{3E62B27C-342F-4B44-9331-CA4BC59A586F}
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver-->"C:\Program Files\InstallShield Installation Information\{3108C217-BE83-42E4-AE9E-A56A2A92E549}\setup.exe" -runfromtemp -l0x0009 -removeonly
ATI Catalyst Install Manager-->msiexec /q/x{DAD1693D-3C1B-5D29-E44F-96D2362738F3} REBOOT=ReallySuppress
AVerMedia A835 USB TV Tuner 8.0.0.43-->C:\Program Files\AVerMedia\AVerMedia A835 USB TV Tuner\uninst.exe
AVerTV-->C:\Program Files\InstallShield Installation Information\{E28B1E6F-E0AA-4228-AB89-DB4A0C89D426}\setup.exe -runfromtemp -l0x0405
AVG 2013-->"C:\Program Files\AVG\AVG2013\avgmfapx.exe" /AppMode=SETUP /Uninstall
AVG 2013-->MsiExec.exe /I{49603CBF-8861-4D94-AD85-E4854AD366CA}
AVG 2013-->MsiExec.exe /I{6280C3D1-00A3-4E79-BDF6-98332A29B706}
Broadcom 802.11 Wireless Driver-->C:\Program Files\InstallShield Installation Information\{8991E763-21F5-4DEA-A938-5D9D77DCB488}\setup.exe -runfromtemp -l0x0009 -removeonly
Brothers In Arms-->C:\Program Files\Ubisoft\Gearbox Software\BrothersInArms\System\Setup.exe uninstall "BrothersInArms"
Business Contact Manager for Outlook 2007 SP2-->"C:\Program Files\Microsoft Small Business\Business Contact Manager\SetupBootstrap\Setup.exe" /remove {B32C4059-6E7A-41EF-AD20-56DF1872B923}
Business Contact Manager for Outlook 2007 SP2-->MsiExec.exe /X{B32C4059-6E7A-41EF-AD20-56DF1872B923}
Call of Juarez-->C:\Program Files\InstallShield Installation Information\{07119BED-86AE-4AE3-97A5-45A118A3F06A}\Setup.exe -runfromtemp -l0x0405
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Codec Pack - All In 1 6.0.3.0-->C:\windows\iun6002.exe "C:\Program Files\Codec Pack - All In 1\irunin.ini"
Conexant HD Audio-->C:\Program Files\CONEXANT\CNXT_AUDIO_HDA\UIU32a.exe -U -INELCC2xa.INF
Crashday-->C:\PROGRA~1\Crashday\UNWISE.EXE C:\PROGRA~1\Crashday\INSTALL.LOG
CyberLink YouCam-->"C:\Program Files\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
CyberLink YouCam-->"C:\Program Files\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
Energy Management-->"C:\Program Files\InstallShield Installation Information\{AE1E24C2-E720-42D5-B8E1-48F71A97B4DB}\setup.exe" -runfromtemp -l0x0009 -removeonly
Evolution GT 1.0-->"C:\Program Files\Black Bean\Evolution GT\unins000.exe"
FlatOut Ultimate Carnage-->C:\Program Files\Empire Interactive\FlatOut Ultimate Carnage\Uninstall.exe
FlatOut2-->"C:\Program Files\FlatOut2\unins000.exe"
GTR-->"C:\GTR\Support\unins000.exe"
Harry Potter a Princ Dvojí Krve™-->MsiExec.exe /X{FD1B1980-8CAB-4474-89F8-1245AF657AD1}
ICQ7-->"C:\Program Files\InstallShield Installation Information\{88EB38EF-4D2C-436D-ABD3-56B232674062}\ICQ7.exe" -runfromtemp -l0x0009 -removeonly
Java 7 Update 45-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83217017FF}
K-Lite Codec Pack 8.7.0 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Kobra 11 - Highway Nights-->"C:\Program Files\City Interactive\Kobra 11 - Highway Nights\unins000.exe"
Kobra 11 Nitro-->"C:\Program Files\TopCD\Kobra 11\unins000.exe"
Kryštofova dobrodružství-->MsiExec.exe /I{8FB1E63E-4E65-4EC2-83B9-550FB1D558A5}
Landi 11-->C:\windows\ulandi.exe Landi 11
LEGO Star Wars II-->C:\Program Files\InstallShield Installation Information\{4E074808-1B86-4230-A9EB-0904942EC4AE}\setup.exe -runfromtemp -l0x0409
LEGO Star Wars-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{E914A24F-2412-4374-B420-86D21D6D444A}
LEGO Star Wars-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\Giant\LEGO Star Wars\Uninstall\setup.exe" -l0x5
Lenovo DirectShare-->"C:\Program Files\InstallShield Installation Information\{B2164CCB-C002-4B80-8550-7535D80DF237}\setup.exe" -runfromtemp -l0x0409 -removeonly
Lenovo DirectShare-->MsiExec.exe /I{B2164CCB-C002-4B80-8550-7535D80DF237}
Lenovo EasyCamera-->"C:\Program Files\InstallShield Installation Information\{FE7AD27A-62B1-44F6-B69C-25D1ECA94F5D}\IS.exe" -runfromtemp -l0x0009 -removeonly
Lenovo OneKey Recovery-->"C:\Program Files\InstallShield Installation Information\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}\setup.exe" /z-uninstall
Lenovo OneKey Recovery-->"C:\Program Files\InstallShield Installation Information\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}\setup.exe" /z-uninstall
Lenovo ReadyComm 5.0 Service-->MsiExec.exe /X{76C66170-C538-4E77-B54D-48E136B5B533}
Lenovo ReadyComm 5-->C:\Program Files\InstallShield Installation Information\{17542DBF-E17C-4562-BC4D-FA3EF3076C45}\Setup.exe -runfromtemp -removeonly
Malwarebytes Anti-Malware verze 1.75.0.1300-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Medvědí bratři-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B489D5F8-D960-4399-9286-C59BF21991B5}\setup.exe" -l0x5 Medvědí bratři
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1029 /parameterfolder ClientLP
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->MsiExec.exe /X{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}
Microsoft .NET Framework 4 Client Profile-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft .NET Framework 4 Extended-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\Setup.exe /repair /x86 /parameterfolder Extended
Microsoft .NET Framework 4 Extended-->MsiExec.exe /X{0A0CADCF-78DA-33C4-A350-CD51849B9702}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Office 2003 Web Components-->MsiExec.exe /I{90A40409-6000-11D3-8CFE-0150048383C9}
Microsoft Office 2007 Primary Interop Assemblies-->MsiExec.exe /X{50120000-1105-0000-0000-0000000FF1CE}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {98333358-268C-4164-B6D4-C96DF5153727}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {98333358-268C-4164-B6D4-C96DF5153727}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0117-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {6E107EB7-8B55-48BF-ACCB-199F86A2CD93}
Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
Microsoft Office Access Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office File Validation Add-In-->MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE}
Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office Professional Hybrid 2007-->MsiExec.exe /X{91120000-0031-0000-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {1FF96026-A04A-4C3E-B50A-BB7022654D0F}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {71F055E8-E2C6-4214-BB3D-BFE03561B89E}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}
Microsoft Office Publisher MUI (English) 2007-->MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Small Business Connectivity Components-->MsiExec.exe /X{A939D341-5A04-4E0A-BB55-3E65B386432D}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)-->MsiExec.exe /I{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}
Microsoft SQL Server 2005-->"c:\Program Files\Microsoft SQL Server\90\Setup Bootstrap\ARPWrapper.exe" /Remove
Microsoft SQL Server Native Client-->MsiExec.exe /I{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}
Microsoft SQL Server Setup Support Files (English)-->MsiExec.exe /X{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}
Microsoft SQL Server VSS Writer-->MsiExec.exe /I{E7084B89-69E0-46B3-A118-8F99D06988CD}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
MotoGP2-->"C:\Program Files\MotoGP2\unins000.exe"
Mozilla Firefox 25.0.1 (x86 cs)-->"C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
MPlayer for Windows (Full Package)-->C:\Program Files\MPlayer for Windows\Uninstall.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
Need For Speed™ World-->"C:\Program Files\Electronic Arts\Need For Speed World\unins000.exe"
New Star Soccer 5 v1.12-->"C:\Program Files\New Star Soccer 5\unins000.exe"
Nokia Connectivity Cable Driver-->RUNDLL32.EXE ccdcmbwu.dll,WuUninstall
NVIDIA PhysX-->MsiExec.exe /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
OpenAL-->"C:\Program Files\OpenAL\oalinst.exe" /U
OpenOffice.org 3.0-->MsiExec.exe /I{BE8BE32F-F595-4693-9F82-1E0A5A047BB6}
Power2Go-->"C:\Program Files\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\Setup.exe" -uninstall
QuickTime-->MsiExec.exe /I{B67BAFBA-4C9F-48FA-9496-933E3B255044}
Realtek USB 2.0 Card Reader-->"C:\Program Files\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setup.exe" -runfromtemp -removeonly
Recuva-->"C:\Program Files\Recuva\uninst.exe"
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {3E0806DB-3085-378A-840A-F0D3AE3609D1} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7E97AB83-C1FE-38DE-B848-877E0A4BD81E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DB31DEDD-BF95-31E7-A9B7-5480561CEFF3} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {67A5F99B-5EBA-3812-8D2E-BC251490DD3F} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8DDEFC7E-0C61-3D11-AFC6-5414F2DAFD01} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {9EC88EA8-4ABE-393C-87BD-90EABB1C4C9B} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {86BB5A25-8CC3-33CE-A393-CF28901682B2} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {16EEC04A-B924-37E0-97CF-422DCEFC1B63} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {C4D978AA-2668-3404-96DE-96E2AFC62FD7} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CD6D9B8A-BBC4-3FA7-B24D-D74CE90630CF} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FCBF8C05-F031-381A-8B7F-45403B55ADF5} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {ECBEE23D-AB7E-3DAA-B66B-CD52003198F1} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {788818B1-B191-3217-A210-7ACFDE19CE4A} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {B7C20E16-9A3A-3F05-A6B5-E15AA09200E0} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CF581973-77E0-3093-A1AC-A03130DE990F} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {576C07F8-777C-3981-B8BF-063A6B57254E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {90EA7C4E-7F03-31FD-BE27-B1A9B4AE56BD} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {1E88AFAE-CEF7-3540-8FF6-6D00877B2767} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8BA4E34D-95C5-3907-87E4-62FBB31A2190} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile CSY Language Pack (KB2478663)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder ClientLP
Security Update for Microsoft .NET Framework 4 Client Profile CSY Language Pack (KB2518870)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder ClientLP
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {42A3562E-8B4E-39A4-B82D-CC12F82889E3} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {FCBF8C05-F031-381A-8B7F-45403B55ADF5} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {788818B1-B191-3217-A210-7ACFDE19CE4A} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {8BA4E34D-95C5-3907-87E4-62FBB31A2190} /parameterfolder Extended
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {D33B9EF5-3801-496A-A2D6-B7F4BE972D75}
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {B145DBBB-7778-4A5D-9D2B-DA6569F02391}
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {E34960DB-2A93-45DB-A208-02650F7AB09C}
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {B7727B4D-5EA3-4C11-9D30-15E47616DCAF}
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {293FB6BE-D3EB-4162-B522-F9108040B9FE}
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {2B3C041A-A7F2-4A24-968D-4BEB6A123D15}
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {EA575F57-C5D1-4B5A-B9F9-F16EEBC6B58C}
Security Update for Microsoft Office 2007 suites (KB2687309) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {E949D8B9-24FD-4AB7-B427-FC42AA8BB2D9}
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {79850906-6D2B-4061-8EAF-EAC84173DEC5}
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition -->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {318439CB-4E76-48A5-AED6-E0D781DD50D8}
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {8907F32C-DF89-4C2F-AEDE-0DB4B65451C0}
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {319FC809-3841-4739-A25F-FDBADF073697}
Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {4CCE0378-386F-4DC2-9CC1-A3710C77057D}
Security Update for Microsoft Office 2007 suites (KB2827329) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {81352C19-97CF-4365-8EAE-205BCC9A2DC8}
Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {686630EC-8033-4031-85C5-D8E5CD62A958}
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {8F311D6C-D8DD-4C32-9457-1A129CABD1A5}
Security Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {12A1DD97-E9A1-4370-837E-D1BBD088584B}
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {AEA16A27-0B97-4670-818F-A98D06EC0A6F}
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {0EF0D4FB-BB23-4515-AAEA-1240AC2DA525}
Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {9D689455-5858-4AE4-A3CA-6E4149FE3F70}
Security Update for Microsoft Office Word 2007 (KB2827330) 32-Bit Edition -->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {2C57A81A-7534-4DEE-A450-7FBE86F3200D}
Skype™ 5.10-->MsiExec.exe /X{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}
swMSM-->MsiExec.exe /I{612C34C7-5E90-47D8-9B5C-0F717DD82726}
System Requirements Lab CYRI-->MsiExec.exe /I{F3FCB08B-E752-444D-86A0-0634A4F3B23D}
Test 1.1.4.25-->"C:\Program Files\Zocek\Test\unins000.exe"
Total Commander (Remove or Repair)-->c:\totalcmd\tcuninst.exe
TRS2004-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BDE1289F-4025-41A5-AD17-101DB4D82CA7}\Setup.exe" -l0x5
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {0160BA31-409C-3FD0-9C87-C7D95BF46986} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {D5B80B17-2443-3296-A700-792FAA0748BD} /parameterfolder Client
Update for Microsoft .NET Framework 4 Extended (KB2468871)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Extended
Update for Microsoft .NET Framework 4 Extended (KB2533523)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Extended
Update for Microsoft .NET Framework 4 Extended (KB2600217)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Extended
Update for Microsoft .NET Framework 4 Extended (KB2836939)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {0160BA31-409C-3FD0-9C87-C7D95BF46986} /parameterfolder Extended
Update for Microsoft .NET Framework 4 Extended (KB2836939v3)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {D5B80B17-2443-3296-A700-792FAA0748BD} /parameterfolder Extended
Update for Microsoft Office 2007 Help for Common Features (KB963673)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {AB365889-0395-4FAD-B702-CA5985D53D42}
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {A024FC7B-77DE-45DE-A058-1C049A17BFB3}
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {CB68A5B0-3508-4193-AEB9-AF636DAECE0F}
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}
Update for Microsoft Office Access 2007 Help (KB963663)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}
Update for Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {199DF7B6-169C-448C-B511-1054101BE9C9}
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {ED38F8A3-4F61-494E-8BCA-E3AC7760C924}
Update for Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {0451F231-E3E3-4943-AB9F-58EB96171784}
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2825642) 32-Bit Edition-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {9492511E-2CE0-4904-9400-203F44E1DC0D}
Update for Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {397B1D4F-ED7B-4ACA-A637-43B670843876}
Update for Microsoft Office Publisher 2007 Help (KB963667)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {2E40DE55-B289-4C8B-8901-5D369B16814F}
Update for Microsoft Office Script Editor Help (KB963671)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {CD11C6A2-FFC6-4271-8EAB-79C3582F505C}
Update for Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {80E762AA-C921-4839-9D7D-DB62A72C0726}
Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{E3F328E4-EB9F-4ABF-8FF3-5AD0472743D8}
Windows Live Toolbar-->MsiExec.exe /X{6E257F26-57FA-4BC9-AE3B-D50AF937DA7F}
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
Windows Movie Maker 2.6-->MsiExec.exe /X{B3DAF54F-DB25-4586-9EF1-96D24BB14088}
WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Zoner Photo Studio 11-->"C:\Program Files\Zoner\Photo Studio 11\unins000.exe" /SILENT

======System event log======

Computer Name: Vojta-PC
Event Code: 104
Message: Byl vymazán soubor protokolu Windows PowerShell.
Record Number: 511254
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131208113620.786990-000
Event Type: Informace
User: Vojta-PC\Vojta

Computer Name: Vojta-PC
Event Code: 104
Message: Byl vymazán soubor protokolu Media Center.
Record Number: 511253
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131208113620.646589-000
Event Type: Informace
User: Vojta-PC\Vojta

Computer Name: Vojta-PC
Event Code: 104
Message: Byl vymazán soubor protokolu Key Management Service.
Record Number: 511252
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131208113620.490589-000
Event Type: Informace
User: Vojta-PC\Vojta

Computer Name: Vojta-PC
Event Code: 104
Message: Byl vymazán soubor protokolu Internet Explorer.
Record Number: 511251
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131208113620.334589-000
Event Type: Informace
User: Vojta-PC\Vojta

Computer Name: Vojta-PC
Event Code: 104
Message: Byl vymazán soubor protokolu System.
Record Number: 511250
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131208113620.038188-000
Event Type: Informace
User: Vojta-PC\Vojta

=====Application event log=====

Computer Name: Vojta-PC
Event Code: 9009
Message: Správce oken plochy byl ukončen s kódem (0x40010004).
Record Number: 46979
Source Name: Desktop Window Manager
Time Written: 20131208114226.000000-000
Event Type: Informace
User:

Computer Name: Vojta-PC
Event Code: 1042
Message: Probíhá ukončování transakce Instalační služby systému Windows: {4F524A2D-5637-006A-76A7-A758B70C0600}. ID procesu klienta: 7352
Record Number: 46978
Source Name: MsiInstaller
Time Written: 20131208114145.000000-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: Vojta-PC
Event Code: 1034
Message: Instalační služba systému Windows provedla odebrání produktu. Název produktu: Ask Toolbar. Verze produktu: 12.6.0.11. Jazyk produktu: 1033. Výrobce: APN, LLC. Stav odebrání (úspěch nebo chyba): 0.
Record Number: 46977
Source Name: MsiInstaller
Time Written: 20131208114145.000000-000
Event Type: Informace
User: Vojta-PC\Vojta

Computer Name: Vojta-PC
Event Code: 11724
Message: Product: Ask Toolbar -- Removal completed successfully.
Record Number: 46976
Source Name: MsiInstaller
Time Written: 20131208114145.000000-000
Event Type: Informace
User: Vojta-PC\Vojta

Computer Name: Vojta-PC
Event Code: 1040
Message: Probíhá zahajování transakce Instalační služby systému Windows: {4F524A2D-5637-006A-76A7-A758B70C0600}. ID procesu klienta: 7352
Record Number: 46975
Source Name: MsiInstaller
Time Written: 20131208114136.000000-000
Event Type: Informace
User: Vojta-PC\Vojta

=====Security event log=====

Computer Name: Vojta-PC
Event Code: 4647
Message: Odhlášení spuštěné uživatelem:

Předmět:
ID zabezpečení: S-1-5-21-3345722164-824032065-3570544302-1006
Název účtu: Vojtík
Doména účtu: Vojta-PC
ID přihlášení: 0x295de

Tato událost je generována, pokud je spuštěno odhlášení. Není povolena žádná další uživatelem spuštěná akce. Tuto událost lze interpretovat jako událost odhlášení.
Record Number: 115560
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131208114230.121434-000
Event Type: Úspěšný audit
User:

Computer Name: Vojta-PC
Event Code: 4647
Message: Odhlášení spuštěné uživatelem:

Předmět:
ID zabezpečení: S-1-5-21-3345722164-824032065-3570544302-1004
Název účtu: Vojta
Doména účtu: Vojta-PC
ID přihlášení: 0x44df02

Tato událost je generována, pokud je spuštěno odhlášení. Není povolena žádná další uživatelem spuštěná akce. Tuto událost lze interpretovat jako událost odhlášení.
Record Number: 115559
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131208114226.767428-000
Event Type: Úspěšný audit
User:

Computer Name: Vojta-PC
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7

Oprávnění: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 115558
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131208114136.649741-000
Event Type: Úspěšný audit
User:

Computer Name: Vojta-PC
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: VOJTA-PC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Typ přihlášení: 5

Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x2dc
Název procesu: C:\Windows\System32\services.exe

Informace o síti:
Název pracovní stanice:
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 115557
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131208114136.649741-000
Event Type: Úspěšný audit
User:

Computer Name: Vojta-PC
Event Code: 1102
Message: Protokol auditu byl vymazán.
Předmět:
ID zabezpečení: S-1-5-21-3345722164-824032065-3570544302-1004
Název účtu: Vojta
Název domény: Vojta-PC
ID přihlášení: 0x44def1
Record Number: 115556
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131208113619.242587-000
Event Type: Úspěšný audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;c:\Program Files\Microsoft SQL Server\90\Tools\binn\;C:\Program Files\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=16
"PROCESSOR_IDENTIFIER"=x86 Family 16 Model 6 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=0602
"configsetroot"=%SystemRoot%\ConfigSetRoot
"LenovoTestLogFile"=preload.log
"LenovoTestPath"=C:\prdv10\
"CLASSPATH"=.;C:\Program Files\Java\jre7\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre7\lib\ext\QTJava.zip

-----------------EOF-----------------

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 08 pro 2013 17:07
od vyosek
Ja bych radeji ten log.txt, jak se pise i v navodu

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 08 pro 2013 17:14
od halbstadt
Doufám že to je toto:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Vojta at 2013-12-08 17:10:41
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 57 GB (22%) free of 260 GB
Total RAM: 2812 MB (38% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:10:46, on 8.12.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Lenovo\YouCam\YouCamTray.exe
C:\Program Files\Lenovo\Energy Management\utility.exe
C:\Program Files\Lenovo\Energy Management\Energy Management.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\AVG\AVG2013\avgui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\windows\system32\DllHost.exe
C:\Program Files\Ubisoft\Gearbox Software\BrothersInArms\System\Setup.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\windows\system32\SearchFilterHost.exe
C:\Users\Vojta\Downloads\RSIT(2).exe
C:\Program Files\trend micro\Vojta.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.osz.cd.cz:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [cAudioFilterAgent] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent.exe
O4 - HKLM\..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0"
O4 - HKLM\..\Run: [YouCam Mirror Tray icon] "C:\Program Files\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [EnergyUtility] C:\Program Files\Lenovo\Energy Management\utility.exe
O4 - HKLM\..\Run: [Energy Management] C:\Program Files\Lenovo\Energy Management\Energy Management.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware (cleanup)] rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [Google Update] "C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Landi 11.lnk = C:\Program Files\landi 11\Landi11.exe
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: AVer HID Receiver.lnk = C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
O4 - Global Startup: AVerQuick.lnk = C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: AMD External Events Utility - AMD - C:\windows\system32\atiesrxx.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 7911 bytes

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1004Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1004UA.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1006Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1006UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default

prefs.js - "extensions.enabledItems" - "avg@igeared:6.103.018.001, {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:10.0.0.1374, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\system32\Adobe\Director\np32dsw_1200112.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll


C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
avg_igeared.xml

C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\extensions\
cs@dictionaries.addons.mozilla.org
foxmarks@kei.com
{3e0e7d2a-070f-4a47-b019-91fe5385ba79}
{bee6eb20-01e0-ebd1-da83-080329fb9a3a}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-03 98304]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent.exe [2010-03-10 496184]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2009-11-19 307768]
"UCam_Menu"=C:\Program Files\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]
"YouCam Mirror Tray icon"=C:\Program Files\Lenovo\YouCam\YouCamTray.exe [2009-12-22 167008]
"UpdateP2GShortCut"=C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2008-12-03 218408]
"EnergyUtility"=C:\Program Files\Lenovo\Energy Management\utility.exe [2009-12-17 4114368]
"Energy Management"=C:\Program Files\Lenovo\Energy Management\Energy Management.exe [2009-12-17 6223808]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"AVG_UI"=C:\Program Files\AVG\AVG2013\avgui.exe [2013-09-23 4411952]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2013-05-01 421888]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2013-04-04 532040]
"Malwarebytes Anti-Malware (cleanup)"=C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll [2013-04-04 1127496]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-16 221184]
"Google Update"=C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [2013-10-23 116648]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AVer HID Receiver.lnk - C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
AVerQuick.lnk - C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe

C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Landi 11.lnk - C:\Program Files\landi 11\Landi11.exe
OpenOffice.org 3.0.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.clmp3enc"=C:\PROGRA~1\Lenovo\Power2Go\CLMP3Enc.ACM

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-12-08 16:57:25 ----D---- C:\Program Files\trend micro
2013-12-08 16:57:22 ----D---- C:\rsit
2013-12-08 16:52:34 ----A---- C:\windows\system32\drivers\pcvgyefw.sys
2013-12-08 16:17:32 ----A---- C:\windows\system32\drivers\mbamswissarmy.sys
2013-12-08 16:17:31 ----D---- C:\Users\Vojta\AppData\Roaming\Malwarebytes
2013-12-08 16:17:20 ----D---- C:\ProgramData\Malwarebytes
2013-12-08 16:17:19 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-12-08 16:17:19 ----A---- C:\windows\system32\drivers\mbam.sys
2013-12-08 13:29:41 ----D---- C:\AdwCleaner
2013-12-08 12:31:30 ----D---- C:\windows\ERUNT
2013-12-08 12:19:33 ----D---- C:\Users\Vojta\AppData\Roaming\AdobeUM
2013-12-08 11:54:29 ----D---- C:\Program Files\CCleaner
2013-12-08 11:26:16 ----D---- C:\ProgramData\Macrovision
2013-11-17 20:12:08 ----D---- C:\Program Files\Mozilla Firefox
2013-11-13 06:28:11 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2013-11-13 06:28:11 ----A---- C:\windows\system32\credui.dll
2013-11-13 06:28:11 ----A---- C:\windows\system32\authui.dll
2013-11-13 06:27:56 ----A---- C:\windows\system32\schannel.dll
2013-11-13 06:27:55 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2013-11-13 06:27:55 ----A---- C:\windows\system32\drivers\ksecdd.sys
2013-11-13 06:27:55 ----A---- C:\windows\system32\drivers\cng.sys
2013-11-13 06:27:54 ----A---- C:\windows\system32\lsasrv.dll
2013-11-13 06:27:53 ----A---- C:\windows\system32\sspicli.dll
2013-11-13 06:27:53 ----A---- C:\windows\system32\secur32.dll
2013-11-13 06:27:53 ----A---- C:\windows\system32\ncrypt.dll
2013-11-13 06:27:53 ----A---- C:\windows\system32\lsass.exe
2013-11-13 06:27:52 ----A---- C:\windows\system32\sspisrv.dll
2013-11-13 06:27:48 ----A---- C:\windows\system32\gdi32.dll
2013-11-13 06:27:47 ----A---- C:\windows\system32\IKEEXT.DLL
2013-11-13 06:27:45 ----A---- C:\windows\system32\nshwfp.dll
2013-11-13 06:27:45 ----A---- C:\windows\system32\FWPUCLNT.DLL
2013-11-13 06:27:37 ----A---- C:\windows\system32\crypt32.dll
2013-11-12 21:05:13 ----D---- C:\Users\Vojta\AppData\Roaming\Origin

======List of files/folders modified in the last 1 month======

2013-12-08 17:02:13 ----D---- C:\windows\Temp
2013-12-08 16:57:25 ----RD---- C:\Program Files
2013-12-08 16:52:34 ----D---- C:\windows\system32\drivers
2013-12-08 16:17:20 ----HD---- C:\ProgramData
2013-12-08 16:08:20 ----D---- C:\windows\system32\config
2013-12-08 14:27:24 ----D---- C:\windows\Prefetch
2013-12-08 13:00:38 ----SHD---- C:\windows\Installer
2013-12-08 13:00:38 ----HD---- C:\Program Files\InstallShield Installation Information
2013-12-08 13:00:33 ----SHD---- C:\Config.Msi
2013-12-08 13:00:16 ----D---- C:\windows\System32
2013-12-08 12:59:36 ----SHD---- C:\System Volume Information
2013-12-08 12:57:15 ----HD---- C:\Program Files\Common Files\EAInstaller
2013-12-08 12:45:04 ----D---- C:\windows\inf
2013-12-08 12:44:03 ----D---- C:\Windows
2013-12-08 12:27:28 ----RD---- C:\Program Files\Skype
2013-12-08 12:25:32 ----D---- C:\Program Files\Adobe
2013-12-08 12:25:29 ----D---- C:\ProgramData\Adobe
2013-12-08 12:25:29 ----D---- C:\Program Files\Common Files\Adobe
2013-12-08 12:16:06 ----D---- C:\Users\Vojta\AppData\Roaming\Media Player Classic
2013-12-08 12:16:02 ----D---- C:\Users\Vojta\AppData\Roaming\Skype
2013-12-08 12:15:53 ----D---- C:\windows\Panther
2013-12-08 12:15:53 ----D---- C:\windows\Logs
2013-12-08 12:15:53 ----D---- C:\windows\debug
2013-12-08 11:54:33 ----D---- C:\windows\system32\Tasks
2013-12-08 11:12:29 ----D---- C:\Program Files\Origin
2013-12-08 11:12:28 ----D---- C:\ProgramData\Origin
2013-12-08 11:12:28 ----D---- C:\ProgramData\Electronic Arts
2013-12-08 08:57:57 ----D---- C:\ProgramData\MFAData
2013-12-05 21:50:03 ----D---- C:\ProgramData\Landi11-original
2013-12-05 16:42:40 ----A---- C:\windows\system32\PerfStringBackup.INI
2013-11-20 07:37:04 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-11-19 20:47:10 ----D---- C:\windows\system32\catroot
2013-11-18 12:06:36 ----D---- C:\windows\rescache
2013-11-13 15:28:20 ----D---- C:\windows\winsxs
2013-11-13 15:24:32 ----D---- C:\windows\system32\cs-CZ
2013-11-13 06:37:04 ----D---- C:\ProgramData\Microsoft Help
2013-11-13 06:34:35 ----D---- C:\windows\system32\MRT
2013-11-13 06:29:43 ----A---- C:\windows\system32\MRT.exe
2013-11-13 06:27:14 ----D---- C:\windows\system32\catroot2

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\windows\system32\DRIVERS\AtiPcie.sys [2009-08-23 14392]
R0 AVGIDSHX;AVGIDSHX; C:\windows\system32\DRIVERS\avgidshx.sys [2013-07-20 60216]
R0 Avglogx;AVG Logging Driver; C:\windows\system32\DRIVERS\avglogx.sys [2013-07-20 246072]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\windows\system32\DRIVERS\avgmfx86.sys [2013-07-01 96568]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\windows\system32\DRIVERS\avgrkx86.sys [2013-09-05 39224]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 AVGIDSDriver;AVGIDSDriver; C:\windows\system32\DRIVERS\avgidsdriverx.sys [2013-07-20 208184]
R1 AVGIDSShim;AVGIDSShim; C:\windows\system32\DRIVERS\avgidsshimx.sys [2013-09-10 22328]
R1 Avgldx86;AVG AVI Loader Driver; C:\windows\system32\DRIVERS\avgldx86.sys [2013-07-20 171320]
R1 Avgtdix;AVG TDI Driver; C:\windows\system32\DRIVERS\avgtdix.sys [2013-03-21 182072]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2010-01-20 23136]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atipmdag.sys [2010-03-03 5340160]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2010-03-03 152064]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\windows\system32\DRIVERS\Apfiltr.sys [2010-04-22 218744]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl6.sys [2010-02-02 2707448]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT32.sys [2010-01-18 514104]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C62x86.sys [2009-11-13 58368]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2013-04-04 22856]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\windows\system32\drivers\mbamswissarmy.sys [2013-12-08 40776]
R3 usbfilter;AMD USB Filter Driver; C:\windows\system32\DRIVERS\usbfilter.sys [2009-12-22 30392]
R3 usbsmi;Lenovo EasyCamera; C:\windows\system32\DRIVERS\SMIksdrv.sys [2009-10-16 171776]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
R3 wdmirror;wdmirror; C:\windows\system32\DRIVERS\WDMirror.sys [2009-07-16 11792]
S0 avvda;avvda; C:\windows\System32\drivers\pcvgyefw.sys [2013-12-08 54016]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 AVerAF35;AVerMedia A835 USB DVB-T; C:\windows\System32\Drivers\AVerAF35.sys [2009-10-19 474880]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 Bridge0;Bridge0; C:\windows\system32\drivers\WDBridge.sys [2009-07-28 63240]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 k57nd60x;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\k57nd60x.sys [2009-07-13 229888]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmb.sys [2011-08-17 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbo.sys [2011-08-17 23168]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2010-03-24 191008]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 123648]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerflt.sys [2011-08-17 8192]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltj.sys [2011-08-17 8192]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys [2008-08-06 128104]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S3 wsvd;wsvd; C:\windows\system32\DRIVERS\wsvd.sys [2009-07-21 81704]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-03-03 172032]
R2 AVerRemote;AVerRemote; C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe [2009-04-08 344064]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe [2009-10-09 389120]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [2013-07-23 283136]
R2 BcmSqlStartupSvc;Business Contact Manager SQL Server Startup Service; C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2008-01-11 30312]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 ReadyComm.DirectRouter;ReadyComm.DirectRouter; C:\windows\System32\IgrsSvcs.exe [2009-07-14 20992]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 86880]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IGRS;IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [2009-07-15 38152]
S3 Lenovo ReadyComm AppSvc;Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [2009-08-14 509192]
S3 Lenovo ReadyComm ConnSvc;Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [2009-11-17 575304]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-17 119408]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PS_MDP;ReadyComm Presentation Space Helper Service; C:\windows\System32\IgrsSvcs.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-09-06 1343400]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 08 pro 2013 17:17
od vyosek
:arrow: Jen se zeptam, jedna se o domaci PC nebo nejake pracovni\firemni??

:arrow: Trvate na antiviru AVG - u nas neni moc obliben - vysoka zatez systemu, slabsi detekce :?:

:arrow: Vidim nainstalovany MBAM, delal jste sken, nasel neco?

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 08 pro 2013 17:21
od halbstadt
Jedná se o soukromý počítač.
Na AVG netrvám.
Ano zkoušel jsem MBAM, našel. Viz zde:
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.12.08.01

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 8.0.7601.17514
Vojta :: VOJTA-PC [administrátor]

Ochrana: Povolena

8.12.2013 16:19:16
mbam-log-2013-12-08 (16-19-16).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 252247
Uplynulý čas: 32 minut, 50 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 7
C:\Users\Vojtík\Downloads\iLividSetup (4).exe (PUP.Optional.Bandoo) -> Nebyla provedena žádná instrukce.
C:\Users\Vojta\Downloads\KMPlayer_EN_3.2.0.0.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Vojtík\Downloads\iLividSetup (1).exe (PUP.Optional.Bandoo) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Vojtík\Downloads\iLividSetup (2).exe (PUP.Optional.Bandoo) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Vojtík\Downloads\FlashPlayer__4369_i167948455_il14.exe (PUP.Optional.InstallMonetizer) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Vojtík\Downloads\iLividSetup.exe (PUP.Optional.Bandoo) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Vojtík\Downloads\iLividSetup (3).exe (PUP.Optional.Bandoo) -> Přesun do karantény a smazání se zdařilo.

(konec)

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 08 pro 2013 17:22
od vyosek
:arrow: Udelejte jeste uplnou\kompletni kontrolu MBAMem - log pak sem

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 08 pro 2013 20:48
od halbstadt
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
http://www.malwarebytes.org

Verze: v2013.12.08.01

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 8.0.7601.17514
Vojta :: VOJTA-PC [administrátor]

Ochrana: Povolena

8.12.2013 17:24:19
MBAM-log-2013-12-08 (20-47-06).txt

Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 496269
Uplynulý čas: 3 hodin, 22 minut, 23 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 2
C:\Program Files\MPlayer for Windows\codecs\msadp32.acm (Spyware.Passwords.XGen) -> Nebyla provedena žádná instrukce.
C:\Users\Vojtík\Downloads\iLividSetup (4).exe (PUP.Optional.Bandoo) -> Nebyla provedena žádná instrukce.

(konec)

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 08 pro 2013 20:58
od vyosek
:arrow: Nalezy smazte

:arrow: Dejte log dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 09 pro 2013 06:42
od halbstadt
Nálezy jsem smazal, zde je ten nový log.¨Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 08-12-2013 03
Ran by Vojta (administrator) on VOJTA-PC on 09-12-2013 06:34:32
Running from C:\Users\Vojta\Downloads
Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcsrvx.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Windows\System32\atibtmon.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVerMedia) C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\System32\IgrsSvcs.exe
(Microsoft Corp.) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgemcx.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(CyberLink Corp.) C:\Program Files\Lenovo\YouCam\YouCamTray.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.exe
() C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.bin
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-03-03] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [cAudioFilterAgent] - C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe [496184 2010-03-10] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] - C:\Program Files\CONEXANT\SAII\SAIICpl.exe [307768 2009-11-19] ()
HKLM\...\Run: [UCam_Menu] - C:\Program Files\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [YouCam Mirror Tray icon] - C:\Program Files\Lenovo\YouCam\YouCamTray.exe [167008 2009-12-22] (CyberLink Corp.)
HKLM\...\Run: [UpdateP2GShortCut] - C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM\...\Run: [EnergyUtility] - C:\Program Files\Lenovo\Energy Management\utility.exe [4114368 2009-12-17] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] - C:\Program Files\Lenovo\Energy Management\Energy Management.exe [6223808 2009-12-17] (Lenovo (Beijing) Limited)
HKLM\...\Run: [ISUSScheduler] - C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-06-16] (InstallShield Software Corporation)
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2013\avgui.exe [4411952 2013-09-23] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\...\Run: [ISUSPM Startup] - C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2004-06-16] (InstallShield Software Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-10-23] (Google Inc.)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Vojtík\...\Run: [Google Update] - C:\Users\Vojtík\AppData\Local\Google\Update\GoogleUpdate.exe [ 2012-01-26] (Google Inc.)
HKU\Vojtík\...\Run: [ISUSPM Startup] - C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [ 2004-06-16] (InstallShield Software Corporation)
HKU\Vojtík\...\Policies\system: [LogonHoursAction] 2
HKU\Vojtík\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
Startup: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Landi 11.lnk
ShortcutTarget: Landi 11.lnk -> C:\Program Files\landi 11\Landi11.exe ( )
Startup: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk
ShortcutTarget: OpenOffice.org 3.0.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
Startup: C:\Users\Vojtík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk
ShortcutTarget: OpenOffice.org 3.0.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

ProxyServer: proxy.osz.cd.cz:80
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {4DF9EE0F-0AD0-4662-BEF9-A1BE0D8A40D4} URL = http://www.webhledani.cz/results.aspx?i ... earchTerms}
BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Toolbar: HKLM - &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Toolbar: HKCU - &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default
FF SearchEngineOrder.1: Ask Search
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\windows\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Vojta\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Vojta\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\avg_igeared.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Český slovník pro kontrolu pravopisu - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\cs@dictionaries.addons.mozilla.org
FF Extension: Xmarks - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\foxmarks@kei.com
FF Extension: AddThis - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{3e0e7d2a-070f-4a47-b019-91fe5385ba79}
FF Extension: Flash and Video Download - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
FF Extension: flashgot - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi
FF Extension: Adblock Plus - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{ff356687-aa08-463d-a46c-11c451824939}.xpi

Chrome:
=======
CHR HomePage:
CHR RestoreOnStartup: "sync": {
"acknowledged_types": [ "Bookmarks", "Preferences", "Passwords", "Autofill Profiles", "Autofill", "Themes", "Typed URLs", "Extensions", "Encryption keys", "Search Engines", "Sessions", "Apps", "App settings", "Extension settings", "App Notifications" ],
"app_notifications": true,
"app_settings": true,
"apps": true,
"autofill": true,
"autofill_profile": true,
"bookmarks": true,
"extension_settings": true,
"extensions": true,
"keep_everything_synced": true,
"passwords": true,
"preferences": true,
"search_engines": true,
"session_sync_guid": "session_syncYUCaPf3Rd7bVUci5fKoa6g==",
"sessions": true,
"suppress_start": false,
"themes": true,
"typed_urls"
CHR DefaultSearchKeyword: google.cz
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Vojta\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Vojta\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Vojta\AppData\Local\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Vojta\AppData\Local\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\3.0.40624.0\npctrl.dll No File
CHR Extension: (YouTube) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_1
CHR Extension: (Google Search) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1
CHR Extension: (Google Wallet) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2

========================== Services (Whitelisted) =================

R2 AVerRemote; C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe [344064 2009-04-08] (AVerMedia)
R2 AVerScheduleService; C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe [389120 2009-10-09] ()
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-07-23] (AVG Technologies CZ, s.r.o.)
S3 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-15] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [509192 2009-08-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [575304 2009-11-17] (Lenovo Group Limited)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-15] (Lenovo Group Limited)

==================== Drivers (Whitelisted) ====================

R3 ACPIVPC; C:\Windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atipmdag.sys [5340160 2010-03-03] (ATI Technologies Inc.)
S3 AVerAF35; C:\Windows\System32\Drivers\AVerAF35.sys [474880 2009-10-19] (AVerMedia TECHNOLOGIES, Inc.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208184 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [60216 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22328 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [171320 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [96568 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [39224 2013-09-05] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [182072 2013-03-21] (AVG Technologies CZ, s.r.o.)
S3 Bridge0; C:\Windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2009-09-19] (MCCI)
S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14848 2009-09-19] (MCCI Corporation)
S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [123648 2009-09-19] (MCCI Corporation)
R3 usbsmi; C:\Windows\System32\DRIVERS\SMIksdrv.sys [171776 2009-10-16] (SMI)
R3 wdmirror; C:\Windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\Windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-09 06:34 - 2013-12-09 06:35 - 00017411 _____ C:\Users\Vojta\Downloads\FRST.txt
2013-12-09 06:34 - 2013-12-09 06:34 - 00000000 ____D C:\FRST
2013-12-09 06:33 - 2013-12-09 06:33 - 01060649 _____ (Farbar) C:\Users\Vojta\Downloads\FRST.exe
2013-12-08 17:10 - 2013-12-08 17:10 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT(2).exe
2013-12-08 17:09 - 2013-12-08 17:09 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT(1).exe
2013-12-08 16:57 - 2013-12-08 17:10 - 00000000 ____D C:\Program Files\trend micro
2013-12-08 16:57 - 2013-12-08 16:57 - 00000000 ____D C:\rsit
2013-12-08 16:56 - 2013-12-08 16:57 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT.exe
2013-12-08 16:17 - 2013-12-08 16:17 - 00001067 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Malwarebytes
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-08 16:17 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2013-12-08 16:16 - 2013-12-08 16:16 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Vojta\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-08 13:36 - 2013-12-08 13:36 - 00003020 _____ C:\Users\Vojta\Desktop\AdwCleaner[S0].txt
2013-12-08 13:29 - 2013-12-08 13:31 - 00000000 ____D C:\AdwCleaner
2013-12-08 13:29 - 2013-12-08 13:29 - 01110034 _____ C:\Users\Vojta\Downloads\adwcleaner.exe
2013-12-08 12:44 - 2013-12-09 06:27 - 00000280 _____ C:\windows\setupact.log
2013-12-08 12:44 - 2013-12-08 12:44 - 00000000 _____ C:\windows\setuperr.log
2013-12-08 12:43 - 2013-12-08 20:51 - 00003590 _____ C:\windows\PFRO.log
2013-12-08 12:37 - 2013-12-08 12:37 - 00003299 _____ C:\Users\Vojta\Desktop\JRT.txt
2013-12-08 12:31 - 2013-12-08 12:31 - 01034531 _____ (Thisisu) C:\Users\Vojta\Downloads\JRT.exe
2013-12-08 12:31 - 2013-12-08 12:31 - 00000000 ____D C:\windows\ERUNT
2013-12-08 12:19 - 2013-12-08 12:19 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\AdobeUM
2013-12-08 11:54 - 2013-12-08 11:54 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-08 11:54 - 2013-12-08 11:54 - 00000000 ____D C:\Program Files\CCleaner
2013-12-08 11:53 - 2013-12-08 11:53 - 11036554 _____ C:\Users\Vojta\Downloads\cc-setup.exe
2013-12-08 11:26 - 2013-12-08 11:26 - 00000000 ____D C:\ProgramData\Macrovision
2013-12-08 11:25 - 2013-12-08 11:25 - 02395904 _____ (Macrovision ) C:\Users\Vojta\Downloads\setup(1).exe
2013-12-08 11:24 - 2013-12-08 11:24 - 02395904 _____ (Macrovision ) C:\Users\Vojta\Downloads\setup.exe
2013-12-08 11:03 - 2013-12-07 12:12 - 00000000 ____D C:\Users\Vojtík\Downloads\RAKOUSKO - ÖBB
2013-12-08 11:02 - 2013-12-08 11:02 - 00000000 ____D C:\Users\Vojtík\Downloads\RAKOUSKO_ÖBB_2014
2013-12-08 10:57 - 2013-12-08 11:01 - 43555426 _____ C:\Users\Vojtík\Downloads\RAKOUSKO_ÖBB_2014.zip
2013-12-04 14:36 - 2013-12-04 14:37 - 00000000 ____D C:\Users\Vojtík\Downloads\MP547
2013-12-04 14:18 - 2013-12-04 14:34 - 538775125 _____ C:\Users\Vojtík\Downloads\MP547.zip
2013-11-27 19:24 - 2013-11-27 19:25 - 00107520 _____ C:\Users\Vojtík\Documents\armenie.ppt
2013-11-25 19:29 - 2013-11-29 15:51 - 00106067 _____ C:\Users\Vojtík\Documents\armenie.odp
2013-11-25 19:29 - 2013-11-21 17:48 - 00030948 _____ C:\Users\Vojtík\Documents\armenie text.odt
2013-11-25 19:29 - 2013-11-03 11:21 - 00510102 _____ C:\Users\Vojtík\Documents\vv.zoo
2013-11-25 19:29 - 2013-10-19 09:18 - 00012497 _____ C:\Users\Vojtík\Documents\Vydaje a příjmy.ods
2013-11-25 19:29 - 2013-10-02 18:17 - 00016948 _____ C:\Users\Vojtík\Documents\Svycarsko.odt
2013-11-25 19:29 - 2013-08-05 10:59 - 00408576 _____ C:\Users\Vojtík\Documents\swiss projekt.MSWMM
2013-11-25 19:29 - 2013-04-21 19:56 - 00006495 _____ C:\Users\Vojtík\Documents\sk 2013 pop.txt
2013-11-25 19:29 - 2013-04-21 17:51 - 00022528 _____ C:\Users\Vojtík\Documents\sk 2013.odt
2013-11-25 19:29 - 2013-02-18 15:27 - 00504610 _____ C:\Users\Vojtík\Documents\aj holywwo.odp
2013-11-25 19:29 - 2012-05-09 14:44 - 00014173 _____ C:\Users\Vojtík\Documents\untitled_1.odp
2013-11-25 19:29 - 2012-03-05 10:17 - 00230400 _____ C:\Users\Vojtík\Documents\vask.xls
2013-11-21 17:48 - 2013-11-21 17:48 - 00089834 _____ C:\Users\Vojtík\Downloads\armenie.odp
2013-11-17 20:12 - 2013-11-17 20:12 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-14 15:57 - 2013-11-14 15:57 - 00000000 ____D C:\Users\Vojtík\Documents\FIFA MANAGER 13 Demo
2013-11-13 20:05 - 2013-11-13 20:05 - 00000106 ____H C:\Users\Vojtík\Documents\.~lock.Aragorn.odt#
2013-11-13 06:28 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2013-11-13 06:28 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2013-11-13 06:28 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2013-11-13 06:27 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2013-11-13 06:27 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2013-11-13 06:27 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2013-11-13 06:27 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2013-11-13 06:27 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2013-11-13 06:27 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2013-11-13 06:27 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2013-11-13 06:27 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2013-11-13 06:27 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2013-11-13 06:27 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2013-11-13 06:27 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2013-11-13 06:27 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2013-11-13 06:27 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2013-11-13 06:27 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2013-11-13 06:27 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2013-11-12 21:05 - 2013-11-14 09:33 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Origin

==================== One Month Modified Files and Folders =======

2013-12-09 06:35 - 2013-12-09 06:34 - 00017411 _____ C:\Users\Vojta\Downloads\FRST.txt
2013-12-09 06:34 - 2013-12-09 06:34 - 00000000 ____D C:\FRST
2013-12-09 06:33 - 2013-12-09 06:33 - 01060649 _____ (Farbar) C:\Users\Vojta\Downloads\FRST.exe
2013-12-09 06:32 - 2010-05-16 14:06 - 01547924 _____ C:\windows\WindowsUpdate.log
2013-12-09 06:28 - 2012-06-14 19:47 - 00012085 _____ C:\Users\Vojta\Documents\landierror.log
2013-12-09 06:27 - 2013-12-08 12:44 - 00000280 _____ C:\windows\setupact.log
2013-12-09 06:27 - 2009-07-14 05:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-12-08 20:58 - 2009-07-14 05:34 - 00009920 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-08 20:58 - 2009-07-14 05:34 - 00009920 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-08 20:56 - 2010-09-07 20:16 - 00000000 ____D C:\Users\Vojta\AppData\Local\Adobe
2013-12-08 20:51 - 2013-12-08 12:43 - 00003590 _____ C:\windows\PFRO.log
2013-12-08 20:36 - 2012-01-26 18:53 - 00000966 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1006UA.job
2013-12-08 20:20 - 2013-10-23 12:33 - 00000962 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1004UA.job
2013-12-08 18:45 - 2012-10-29 18:27 - 00000000 ____D C:\ProgramData\MFAData
2013-12-08 17:10 - 2013-12-08 17:10 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT(2).exe
2013-12-08 17:10 - 2013-12-08 16:57 - 00000000 ____D C:\Program Files\trend micro
2013-12-08 17:09 - 2013-12-08 17:09 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT(1).exe
2013-12-08 16:57 - 2013-12-08 16:57 - 00000000 ____D C:\rsit
2013-12-08 16:57 - 2013-12-08 16:56 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT.exe
2013-12-08 16:36 - 2012-01-26 18:53 - 00000914 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1006Core.job
2013-12-08 16:17 - 2013-12-08 16:17 - 00001067 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Malwarebytes
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-08 16:16 - 2013-12-08 16:16 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Vojta\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-08 15:54 - 2011-09-04 09:50 - 00007597 _____ C:\Users\Vojta\AppData\Local\Resmon.ResmonCfg
2013-12-08 13:36 - 2013-12-08 13:36 - 00003020 _____ C:\Users\Vojta\Desktop\AdwCleaner[S0].txt
2013-12-08 13:31 - 2013-12-08 13:29 - 00000000 ____D C:\AdwCleaner
2013-12-08 13:29 - 2013-12-08 13:29 - 01110034 _____ C:\Users\Vojta\Downloads\adwcleaner.exe
2013-12-08 13:05 - 2012-10-29 18:27 - 00000000 ____D C:\Users\Vojta\AppData\Local\Avg2013
2013-12-08 13:00 - 2010-05-16 14:19 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-12-08 12:44 - 2013-12-08 12:44 - 00000000 _____ C:\windows\setuperr.log
2013-12-08 12:37 - 2013-12-08 12:37 - 00003299 _____ C:\Users\Vojta\Desktop\JRT.txt
2013-12-08 12:31 - 2013-12-08 12:31 - 01034531 _____ (Thisisu) C:\Users\Vojta\Downloads\JRT.exe
2013-12-08 12:31 - 2013-12-08 12:31 - 00000000 ____D C:\windows\ERUNT
2013-12-08 12:27 - 2010-12-28 14:16 - 00000000 ___RD C:\Program Files\Skype
2013-12-08 12:25 - 2010-05-16 14:25 - 00000000 ____D C:\ProgramData\Adobe
2013-12-08 12:25 - 2010-05-16 14:25 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-12-08 12:25 - 2010-05-16 14:25 - 00000000 ____D C:\Program Files\Adobe
2013-12-08 12:19 - 2013-12-08 12:19 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\AdobeUM
2013-12-08 12:16 - 2010-12-28 14:16 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Skype
2013-12-08 12:16 - 2010-10-06 18:00 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Media Player Classic
2013-12-08 12:15 - 2009-07-29 11:27 - 00000000 ____D C:\windows\Panther
2013-12-08 11:54 - 2013-12-08 11:54 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-08 11:54 - 2013-12-08 11:54 - 00000000 ____D C:\Program Files\CCleaner
2013-12-08 11:53 - 2013-12-08 11:53 - 11036554 _____ C:\Users\Vojta\Downloads\cc-setup.exe
2013-12-08 11:34 - 2013-10-23 12:33 - 00000910 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1004Core.job
2013-12-08 11:26 - 2013-12-08 11:26 - 00000000 ____D C:\ProgramData\Macrovision
2013-12-08 11:25 - 2013-12-08 11:25 - 02395904 _____ (Macrovision ) C:\Users\Vojta\Downloads\setup(1).exe
2013-12-08 11:24 - 2013-12-08 11:24 - 02395904 _____ (Macrovision ) C:\Users\Vojta\Downloads\setup.exe
2013-12-08 11:12 - 2013-11-07 17:18 - 00000000 ____D C:\ProgramData\Origin
2013-12-08 11:12 - 2013-11-07 17:18 - 00000000 ____D C:\Program Files\Origin
2013-12-08 11:12 - 2012-10-21 15:44 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-12-08 11:02 - 2013-12-08 11:02 - 00000000 ____D C:\Users\Vojtík\Downloads\RAKOUSKO_ÖBB_2014
2013-12-08 11:01 - 2013-12-08 10:57 - 43555426 _____ C:\Users\Vojtík\Downloads\RAKOUSKO_ÖBB_2014.zip
2013-12-07 12:12 - 2013-12-08 11:03 - 00000000 ____D C:\Users\Vojtík\Downloads\RAKOUSKO - ÖBB
2013-12-06 15:43 - 2012-01-26 18:55 - 00002369 _____ C:\Users\Vojtík\Desktop\Google Chrome.lnk
2013-12-05 21:50 - 2011-12-25 15:27 - 00000000 ____D C:\ProgramData\Landi11-original
2013-12-05 20:25 - 2012-06-04 07:39 - 00002364 _____ C:\Users\Vojta\Desktop\Google Chrome.lnk
2013-12-05 16:42 - 2010-05-16 14:14 - 00006466 _____ C:\windows\system32\PerfStringBackup.INI
2013-12-04 14:37 - 2013-12-04 14:36 - 00000000 ____D C:\Users\Vojtík\Downloads\MP547
2013-12-04 14:34 - 2013-12-04 14:18 - 538775125 _____ C:\Users\Vojtík\Downloads\MP547.zip
2013-12-03 10:13 - 2011-12-25 15:45 - 00024576 _____ C:\Users\Vojtík\Documents\landierror.log
2013-11-30 06:35 - 2011-12-07 15:57 - 00000000 ____D C:\Users\Vojtík\Documents\AVerTV
2013-11-29 15:51 - 2013-11-25 19:29 - 00106067 _____ C:\Users\Vojtík\Documents\armenie.odp
2013-11-27 19:25 - 2013-11-27 19:24 - 00107520 _____ C:\Users\Vojtík\Documents\armenie.ppt
2013-11-25 19:34 - 2011-01-22 19:24 - 00000000 ____D C:\Users\Vojtík\Documents\ICQ
2013-11-21 17:48 - 2013-11-25 19:29 - 00030948 _____ C:\Users\Vojtík\Documents\armenie text.odt
2013-11-21 17:48 - 2013-11-21 17:48 - 00089834 _____ C:\Users\Vojtík\Downloads\armenie.odp
2013-11-20 20:22 - 2012-05-12 06:47 - 00000000 ____D C:\Users\Vojtík\Documents\New Star Soccer 5
2013-11-20 07:37 - 2012-08-16 20:51 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-19 20:47 - 2010-09-02 17:08 - 00002239 _____ C:\Users\Vojta\Desktop\OneKey Recovery.lnk
2013-11-18 12:06 - 2009-07-14 03:37 - 00000000 ____D C:\windows\rescache
2013-11-17 20:12 - 2013-11-17 20:12 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-14 15:57 - 2013-11-14 15:57 - 00000000 ____D C:\Users\Vojtík\Documents\FIFA MANAGER 13 Demo
2013-11-14 14:52 - 2013-11-08 18:44 - 00000000 ____D C:\Users\Vojtík\Documents\FIFA 14 DEMO
2013-11-14 09:33 - 2013-11-12 21:05 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Origin
2013-11-13 20:05 - 2013-11-13 20:05 - 00000106 ____H C:\Users\Vojtík\Documents\.~lock.Aragorn.odt#
2013-11-13 15:42 - 2010-09-02 17:08 - 00000000 ____D C:\Users\Vojta
2013-11-13 15:37 - 2010-09-29 07:35 - 00000000 ____D C:\Users\Vojtík
2013-11-13 06:37 - 2010-05-16 14:26 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-13 06:34 - 2013-08-06 21:12 - 00000000 ____D C:\windows\system32\MRT
2013-11-13 06:29 - 2010-09-10 16:11 - 80340640 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-11-09 15:21 - 2012-11-12 15:02 - 00000000 ____D C:\Users\Vojtík\Documents\GTA San Andreas User Files
2013-11-09 10:46 - 2013-11-07 17:24 - 00000000 ____D C:\Users\Vojtík\AppData\Roaming\Origin

Some content of TEMP:
====================
C:\Users\Vojta\AppData\Local\Temp\install_flashplayer11x32au_mssd_aaa_aih_1.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_1.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_2.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_3.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_4.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_5.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_6.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_7.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_8.exe
C:\Users\Vojta\AppData\Local\Temp\Quarantine.exe
C:\Users\Vojtík\AppData\Local\Temp\drm_dyndata_7380015.dll
C:\Users\Vojtík\AppData\Local\Temp\install_flashplayer11x32_aih.exe
C:\Users\Vojtík\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Vojtík\AppData\Local\Temp\SRLDetectionLibrary3667438820236396372.dll


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-01 14:00

==================== End Of Log ============================

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 09 pro 2013 06:54
od vyosek
:arrow: Myslite si, ze ty navody si piseme sami pro sebe a z nudy :?: Nebo pro uzivatele aby podle nich postupovaly :?:

:arrow: Stazeni FRSTLauncheru NIKDE, umisteni na plochu NEPROVEDENO :?:

:arrow: Pokud nechcete ci je vam to na obtiz precist si navod a drzet se ho, tak me bude za tezko se vasim probelem zabyvat...

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 09 pro 2013 12:20
od halbstadt
Logfile of random's system information tool 1.09 (written by random/random)
Run by Vojta at 2013-12-09 12:19:02
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 57 GB (22%) free of 260 GB
Total RAM: 2812 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:19:05, on 9.12.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\windows\System32\rundll32.exe
C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Lenovo\YouCam\YouCamTray.exe
C:\Program Files\Lenovo\Energy Management\utility.exe
C:\Program Files\Lenovo\Energy Management\Energy Management.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\AVG\AVG2013\avgui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Vojta\Downloads\FRST.exe
C:\windows\system32\notepad.exe
C:\windows\system32\notepad.exe
C:\windows\system32\RunDll32.exe
C:\windows\system32\taskeng.exe
C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
C:\windows\system32\SearchFilterHost.exe
C:\Users\Vojta\Desktop\RSIT.exe
C:\Program Files\trend micro\Vojta.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.osz.cd.cz:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [cAudioFilterAgent] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent.exe
O4 - HKLM\..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0"
O4 - HKLM\..\Run: [YouCam Mirror Tray icon] "C:\Program Files\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [EnergyUtility] C:\Program Files\Lenovo\Energy Management\utility.exe
O4 - HKLM\..\Run: [Energy Management] C:\Program Files\Lenovo\Energy Management\Energy Management.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [Google Update] "C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Landi 11.lnk = C:\Program Files\landi 11\Landi11.exe
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: AVer HID Receiver.lnk = C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
O4 - Global Startup: AVerQuick.lnk = C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: AMD External Events Utility - AMD - C:\windows\system32\atiesrxx.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 7719 bytes

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1004Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1004UA.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1006Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1006UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default

prefs.js - "extensions.enabledItems" - "avg@igeared:6.103.018.001, {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:10.0.0.1374, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\system32\Adobe\Director\np32dsw_1200112.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll


C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
avg_igeared.xml

C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\extensions\
cs@dictionaries.addons.mozilla.org
foxmarks@kei.com
{3e0e7d2a-070f-4a47-b019-91fe5385ba79}
{bee6eb20-01e0-ebd1-da83-080329fb9a3a}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-03 98304]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent.exe [2010-03-10 496184]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2009-11-19 307768]
"UCam_Menu"=C:\Program Files\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]
"YouCam Mirror Tray icon"=C:\Program Files\Lenovo\YouCam\YouCamTray.exe [2009-12-22 167008]
"UpdateP2GShortCut"=C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2008-12-03 218408]
"EnergyUtility"=C:\Program Files\Lenovo\Energy Management\utility.exe [2009-12-17 4114368]
"Energy Management"=C:\Program Files\Lenovo\Energy Management\Energy Management.exe [2009-12-17 6223808]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"AVG_UI"=C:\Program Files\AVG\AVG2013\avgui.exe [2013-09-23 4411952]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2013-05-01 421888]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-16 221184]
"Google Update"=C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [2013-10-23 116648]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AVer HID Receiver.lnk - C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
AVerQuick.lnk - C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe

C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Landi 11.lnk - C:\Program Files\landi 11\Landi11.exe
OpenOffice.org 3.0.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.clmp3enc"=C:\PROGRA~1\Lenovo\Power2Go\CLMP3Enc.ACM

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-12-09 06:34:24 ----D---- C:\FRST
2013-12-08 16:57:25 ----D---- C:\Program Files\trend micro
2013-12-08 16:57:22 ----D---- C:\rsit
2013-12-08 16:17:31 ----D---- C:\Users\Vojta\AppData\Roaming\Malwarebytes
2013-12-08 16:17:20 ----D---- C:\ProgramData\Malwarebytes
2013-12-08 16:17:19 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-12-08 16:17:19 ----A---- C:\windows\system32\drivers\mbam.sys
2013-12-08 13:29:41 ----D---- C:\AdwCleaner
2013-12-08 12:31:30 ----D---- C:\windows\ERUNT
2013-12-08 12:19:33 ----D---- C:\Users\Vojta\AppData\Roaming\AdobeUM
2013-12-08 11:54:29 ----D---- C:\Program Files\CCleaner
2013-12-08 11:26:16 ----D---- C:\ProgramData\Macrovision
2013-11-17 20:12:08 ----D---- C:\Program Files\Mozilla Firefox
2013-11-13 06:28:11 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2013-11-13 06:28:11 ----A---- C:\windows\system32\credui.dll
2013-11-13 06:28:11 ----A---- C:\windows\system32\authui.dll
2013-11-13 06:27:56 ----A---- C:\windows\system32\schannel.dll
2013-11-13 06:27:55 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2013-11-13 06:27:55 ----A---- C:\windows\system32\drivers\ksecdd.sys
2013-11-13 06:27:55 ----A---- C:\windows\system32\drivers\cng.sys
2013-11-13 06:27:54 ----A---- C:\windows\system32\lsasrv.dll
2013-11-13 06:27:53 ----A---- C:\windows\system32\sspicli.dll
2013-11-13 06:27:53 ----A---- C:\windows\system32\secur32.dll
2013-11-13 06:27:53 ----A---- C:\windows\system32\ncrypt.dll
2013-11-13 06:27:53 ----A---- C:\windows\system32\lsass.exe
2013-11-13 06:27:52 ----A---- C:\windows\system32\sspisrv.dll
2013-11-13 06:27:48 ----A---- C:\windows\system32\gdi32.dll
2013-11-13 06:27:47 ----A---- C:\windows\system32\IKEEXT.DLL
2013-11-13 06:27:45 ----A---- C:\windows\system32\nshwfp.dll
2013-11-13 06:27:45 ----A---- C:\windows\system32\FWPUCLNT.DLL
2013-11-13 06:27:37 ----A---- C:\windows\system32\crypt32.dll
2013-11-12 21:05:13 ----D---- C:\Users\Vojta\AppData\Roaming\Origin

======List of files/folders modified in the last 1 month======

2013-12-09 12:19:03 ----D---- C:\windows\Temp
2013-12-09 06:42:35 ----D---- C:\windows\system32\config
2013-12-09 06:34:31 ----D---- C:\Windows
2013-12-08 20:52:10 ----D---- C:\windows\system32\drivers
2013-12-08 20:51:13 ----D---- C:\windows\Prefetch
2013-12-08 18:45:56 ----D---- C:\ProgramData\MFAData
2013-12-08 16:57:25 ----RD---- C:\Program Files
2013-12-08 16:17:20 ----HD---- C:\ProgramData
2013-12-08 13:00:38 ----SHD---- C:\windows\Installer
2013-12-08 13:00:38 ----HD---- C:\Program Files\InstallShield Installation Information
2013-12-08 13:00:33 ----SHD---- C:\Config.Msi
2013-12-08 13:00:16 ----D---- C:\windows\System32
2013-12-08 12:59:36 ----SHD---- C:\System Volume Information
2013-12-08 12:57:15 ----HD---- C:\Program Files\Common Files\EAInstaller
2013-12-08 12:45:04 ----D---- C:\windows\inf
2013-12-08 12:27:28 ----RD---- C:\Program Files\Skype
2013-12-08 12:25:32 ----D---- C:\Program Files\Adobe
2013-12-08 12:25:29 ----D---- C:\ProgramData\Adobe
2013-12-08 12:25:29 ----D---- C:\Program Files\Common Files\Adobe
2013-12-08 12:16:06 ----D---- C:\Users\Vojta\AppData\Roaming\Media Player Classic
2013-12-08 12:16:02 ----D---- C:\Users\Vojta\AppData\Roaming\Skype
2013-12-08 12:15:53 ----D---- C:\windows\Panther
2013-12-08 12:15:53 ----D---- C:\windows\Logs
2013-12-08 12:15:53 ----D---- C:\windows\debug
2013-12-08 11:54:33 ----D---- C:\windows\system32\Tasks
2013-12-08 11:12:29 ----D---- C:\Program Files\Origin
2013-12-08 11:12:28 ----D---- C:\ProgramData\Origin
2013-12-08 11:12:28 ----D---- C:\ProgramData\Electronic Arts
2013-12-05 21:50:03 ----D---- C:\ProgramData\Landi11-original
2013-12-05 16:42:40 ----A---- C:\windows\system32\PerfStringBackup.INI
2013-11-20 07:37:04 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-11-19 20:47:10 ----D---- C:\windows\system32\catroot
2013-11-18 12:06:36 ----D---- C:\windows\rescache
2013-11-13 15:28:20 ----D---- C:\windows\winsxs
2013-11-13 15:24:32 ----D---- C:\windows\system32\cs-CZ
2013-11-13 06:37:04 ----D---- C:\ProgramData\Microsoft Help
2013-11-13 06:34:35 ----D---- C:\windows\system32\MRT
2013-11-13 06:29:43 ----A---- C:\windows\system32\MRT.exe
2013-11-13 06:27:14 ----D---- C:\windows\system32\catroot2

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\windows\system32\DRIVERS\AtiPcie.sys [2009-08-23 14392]
R0 AVGIDSHX;AVGIDSHX; C:\windows\system32\DRIVERS\avgidshx.sys [2013-07-20 60216]
R0 Avglogx;AVG Logging Driver; C:\windows\system32\DRIVERS\avglogx.sys [2013-07-20 246072]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\windows\system32\DRIVERS\avgmfx86.sys [2013-07-01 96568]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\windows\system32\DRIVERS\avgrkx86.sys [2013-09-05 39224]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 AVGIDSDriver;AVGIDSDriver; C:\windows\system32\DRIVERS\avgidsdriverx.sys [2013-07-20 208184]
R1 AVGIDSShim;AVGIDSShim; C:\windows\system32\DRIVERS\avgidsshimx.sys [2013-09-10 22328]
R1 Avgldx86;AVG AVI Loader Driver; C:\windows\system32\DRIVERS\avgldx86.sys [2013-07-20 171320]
R1 Avgtdix;AVG TDI Driver; C:\windows\system32\DRIVERS\avgtdix.sys [2013-03-21 182072]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2010-01-20 23136]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atipmdag.sys [2010-03-03 5340160]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2010-03-03 152064]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\windows\system32\DRIVERS\Apfiltr.sys [2010-04-22 218744]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl6.sys [2010-02-02 2707448]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT32.sys [2010-01-18 514104]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C62x86.sys [2009-11-13 58368]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2013-04-04 22856]
R3 usbfilter;AMD USB Filter Driver; C:\windows\system32\DRIVERS\usbfilter.sys [2009-12-22 30392]
R3 usbsmi;Lenovo EasyCamera; C:\windows\system32\DRIVERS\SMIksdrv.sys [2009-10-16 171776]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
R3 wdmirror;wdmirror; C:\windows\system32\DRIVERS\WDMirror.sys [2009-07-16 11792]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 AVerAF35;AVerMedia A835 USB DVB-T; C:\windows\System32\Drivers\AVerAF35.sys [2009-10-19 474880]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 Bridge0;Bridge0; C:\windows\system32\drivers\WDBridge.sys [2009-07-28 63240]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 k57nd60x;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\k57nd60x.sys [2009-07-13 229888]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmb.sys [2011-08-17 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbo.sys [2011-08-17 23168]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2010-03-24 191008]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 123648]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerflt.sys [2011-08-17 8192]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltj.sys [2011-08-17 8192]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys [2008-08-06 128104]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S3 wsvd;wsvd; C:\windows\system32\DRIVERS\wsvd.sys [2009-07-21 81704]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-03-03 172032]
R2 AVerRemote;AVerRemote; C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe [2009-04-08 344064]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe [2009-10-09 389120]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [2013-07-23 283136]
R2 BcmSqlStartupSvc;Business Contact Manager SQL Server Startup Service; C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2008-01-11 30312]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 ReadyComm.DirectRouter;ReadyComm.DirectRouter; C:\windows\System32\IgrsSvcs.exe [2009-07-14 20992]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 86880]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IGRS;IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [2009-07-15 38152]
S3 Lenovo ReadyComm AppSvc;Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [2009-08-14 509192]
S3 Lenovo ReadyComm ConnSvc;Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [2009-11-17 575304]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-17 119408]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PS_MDP;ReadyComm Presentation Space Helper Service; C:\windows\System32\IgrsSvcs.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-09-06 1343400]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 09 pro 2013 17:00
od vyosek
A proc mi ted davate log z RSIT, kdyz jsem chtel log z FRSTLauncheru :?:

Re: Ordinální číslo 459 se nepodařilo - halbstadt

Napsal: 09 pro 2013 19:11
od halbstadt
Jelikož je to pro mně boj, tak doufám že takhle je to dobře

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-12-2013
Ran by Vojta (administrator) on VOJTA-PC on 09-12-2013 19:04:42
Running from C:\Users\Vojta\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcsrvx.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVerMedia) C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\System32\IgrsSvcs.exe
(Microsoft Corp.) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgemcx.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(CyberLink Corp.) C:\Program Files\Lenovo\YouCam\YouCamTray.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.exe
() C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.bin
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(CyberLink Corp.) C:\Program Files\Lenovo\YouCam\YouCamTray.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.bin
(Google Inc.) C:\Users\Vojtík\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vojtík\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vojtík\AppData\Local\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Google Inc.) C:\Users\Vojtík\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\prevhost.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-03-03] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [cAudioFilterAgent] - C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe [496184 2010-03-10] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] - C:\Program Files\CONEXANT\SAII\SAIICpl.exe [307768 2009-11-19] ()
HKLM\...\Run: [UCam_Menu] - C:\Program Files\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [YouCam Mirror Tray icon] - C:\Program Files\Lenovo\YouCam\YouCamTray.exe [167008 2009-12-22] (CyberLink Corp.)
HKLM\...\Run: [UpdateP2GShortCut] - C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM\...\Run: [EnergyUtility] - C:\Program Files\Lenovo\Energy Management\utility.exe [4114368 2009-12-17] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] - C:\Program Files\Lenovo\Energy Management\Energy Management.exe [6223808 2009-12-17] (Lenovo (Beijing) Limited)
HKLM\...\Run: [ISUSScheduler] - C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-06-16] (InstallShield Software Corporation)
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2013\avgui.exe [4411952 2013-09-23] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\...\Run: [ISUSPM Startup] - C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2004-06-16] (InstallShield Software Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-10-23] (Google Inc.)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
Startup: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Landi 11.lnk
ShortcutTarget: Landi 11.lnk -> C:\Program Files\landi 11\Landi11.exe ( )
Startup: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk
ShortcutTarget: OpenOffice.org 3.0.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
Startup: C:\Users\Vojtík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk
ShortcutTarget: OpenOffice.org 3.0.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

ProxyServer: proxy.osz.cd.cz:80
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {4DF9EE0F-0AD0-4662-BEF9-A1BE0D8A40D4} URL = http://www.webhledani.cz/results.aspx?i ... earchTerms}
BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Toolbar: HKLM - &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Toolbar: HKCU - &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default
FF SearchEngineOrder.1: Ask Search
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\windows\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Vojta\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Vojta\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\avg_igeared.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Český slovník pro kontrolu pravopisu - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\cs@dictionaries.addons.mozilla.org
FF Extension: Xmarks - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\foxmarks@kei.com
FF Extension: AddThis - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{3e0e7d2a-070f-4a47-b019-91fe5385ba79}
FF Extension: Flash and Video Download - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
FF Extension: flashgot - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi
FF Extension: Adblock Plus - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{ff356687-aa08-463d-a46c-11c451824939}.xpi

Chrome:
=======
CHR HomePage:
CHR RestoreOnStartup: "sync": {
"acknowledged_types": [ "Bookmarks", "Preferences", "Passwords", "Autofill Profiles", "Autofill", "Themes", "Typed URLs", "Extensions", "Encryption keys", "Search Engines", "Sessions", "Apps", "App settings", "Extension settings", "App Notifications" ],
"app_notifications": true,
"app_settings": true,
"apps": true,
"autofill": true,
"autofill_profile": true,
"bookmarks": true,
"extension_settings": true,
"extensions": true,
"keep_everything_synced": true,
"passwords": true,
"preferences": true,
"search_engines": true,
"session_sync_guid": "session_syncYUCaPf3Rd7bVUci5fKoa6g==",
"sessions": true,
"suppress_start": false,
"themes": true,
"typed_urls"
CHR DefaultSearchKeyword: google.cz
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Vojta\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Vojta\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Vojta\AppData\Local\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Vojta\AppData\Local\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\3.0.40624.0\npctrl.dll No File
CHR Extension: (YouTube) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_1
CHR Extension: (Google Search) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1
CHR Extension: (Google Wallet) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2

========================== Services (Whitelisted) =================

R2 AVerRemote; C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe [344064 2009-04-08] (AVerMedia)
R2 AVerScheduleService; C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe [389120 2009-10-09] ()
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-07-23] (AVG Technologies CZ, s.r.o.)
S3 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-15] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [509192 2009-08-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [575304 2009-11-17] (Lenovo Group Limited)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-15] (Lenovo Group Limited)

==================== Drivers (Whitelisted) ====================

R3 ACPIVPC; C:\Windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atipmdag.sys [5340160 2010-03-03] (ATI Technologies Inc.)
S3 AVerAF35; C:\Windows\System32\Drivers\AVerAF35.sys [474880 2009-10-19] (AVerMedia TECHNOLOGIES, Inc.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208184 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [60216 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22328 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [171320 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [96568 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [39224 2013-09-05] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [182072 2013-03-21] (AVG Technologies CZ, s.r.o.)
S3 Bridge0; C:\Windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2009-09-19] (MCCI)
S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14848 2009-09-19] (MCCI Corporation)
S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [123648 2009-09-19] (MCCI Corporation)
R3 usbsmi; C:\Windows\System32\DRIVERS\SMIksdrv.sys [171776 2009-10-16] (SMI)
R3 wdmirror; C:\Windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\Windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-09 19:03 - 2013-12-09 19:04 - 00019173 _____ C:\Users\Vojta\Desktop\FRST.txt
2013-12-09 19:02 - 2013-12-09 19:02 - 00000000 ____D C:\Users\Vojta\Desktop\FRST-OlderVersion
2013-12-09 18:59 - 2013-12-09 18:59 - 00000841 _____ C:\Users\Vojta\Desktop\FRST – zástupce.lnk
2013-12-09 18:57 - 2013-12-09 18:57 - 01060641 _____ (Farbar) C:\Users\Vojta\Downloads\FRST(1).exe
2013-12-09 12:22 - 2013-12-09 12:22 - 00112640 _____ C:\Users\Vojta\Downloads\FRSTLauncher.exe
2013-12-09 12:18 - 2013-12-09 12:18 - 00001389 _____ C:\Users\Vojta\Downloads\RSIT – zástupce.lnk
2013-12-09 06:36 - 2013-12-09 06:37 - 00024235 _____ C:\Users\Vojta\Downloads\Addition.txt
2013-12-09 06:34 - 2013-12-09 19:02 - 00000000 ____D C:\FRST
2013-12-09 06:33 - 2013-12-09 19:02 - 01060641 _____ (Farbar) C:\Users\Vojta\Desktop\FRST.exe
2013-12-08 17:10 - 2013-12-08 17:10 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT(2).exe
2013-12-08 17:09 - 2013-12-08 17:09 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT(1).exe
2013-12-08 16:57 - 2013-12-09 12:19 - 00000000 ____D C:\Program Files\trend micro
2013-12-08 16:57 - 2013-12-08 16:57 - 00000000 ____D C:\rsit
2013-12-08 16:56 - 2013-12-08 16:57 - 00781383 _____ C:\Users\Vojta\Desktop\RSIT.exe
2013-12-08 16:17 - 2013-12-08 16:17 - 00001067 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Malwarebytes
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-08 16:17 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2013-12-08 16:16 - 2013-12-08 16:16 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Vojta\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-08 13:36 - 2013-12-08 13:36 - 00003020 _____ C:\Users\Vojta\Desktop\AdwCleaner[S0].txt
2013-12-08 13:29 - 2013-12-08 13:31 - 00000000 ____D C:\AdwCleaner
2013-12-08 13:29 - 2013-12-08 13:29 - 01110034 _____ C:\Users\Vojta\Downloads\adwcleaner.exe
2013-12-08 12:44 - 2013-12-09 06:27 - 00000280 _____ C:\windows\setupact.log
2013-12-08 12:44 - 2013-12-08 12:44 - 00000000 _____ C:\windows\setuperr.log
2013-12-08 12:43 - 2013-12-08 20:51 - 00003590 _____ C:\windows\PFRO.log
2013-12-08 12:37 - 2013-12-08 12:37 - 00003299 _____ C:\Users\Vojta\Desktop\JRT.txt
2013-12-08 12:31 - 2013-12-08 12:31 - 01034531 _____ (Thisisu) C:\Users\Vojta\Downloads\JRT.exe
2013-12-08 12:31 - 2013-12-08 12:31 - 00000000 ____D C:\windows\ERUNT
2013-12-08 12:19 - 2013-12-08 12:19 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\AdobeUM
2013-12-08 11:54 - 2013-12-08 11:54 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-08 11:54 - 2013-12-08 11:54 - 00000000 ____D C:\Program Files\CCleaner
2013-12-08 11:53 - 2013-12-08 11:53 - 11036554 _____ C:\Users\Vojta\Downloads\cc-setup.exe
2013-12-08 11:26 - 2013-12-08 11:26 - 00000000 ____D C:\ProgramData\Macrovision
2013-12-08 11:25 - 2013-12-08 11:25 - 02395904 _____ (Macrovision ) C:\Users\Vojta\Downloads\setup(1).exe
2013-12-08 11:24 - 2013-12-08 11:24 - 02395904 _____ (Macrovision ) C:\Users\Vojta\Downloads\setup.exe
2013-12-08 11:03 - 2013-12-07 12:12 - 00000000 ____D C:\Users\Vojtík\Downloads\RAKOUSKO - ÖBB
2013-12-08 11:02 - 2013-12-08 11:02 - 00000000 ____D C:\Users\Vojtík\Downloads\RAKOUSKO_ÖBB_2014
2013-12-08 10:57 - 2013-12-08 11:01 - 43555426 _____ C:\Users\Vojtík\Downloads\RAKOUSKO_ÖBB_2014.zip
2013-12-04 14:36 - 2013-12-04 14:37 - 00000000 ____D C:\Users\Vojtík\Downloads\MP547
2013-12-04 14:18 - 2013-12-04 14:34 - 538775125 _____ C:\Users\Vojtík\Downloads\MP547.zip
2013-11-27 19:24 - 2013-11-27 19:25 - 00107520 _____ C:\Users\Vojtík\Documents\armenie.ppt
2013-11-25 19:29 - 2013-11-29 15:51 - 00106067 _____ C:\Users\Vojtík\Documents\armenie.odp
2013-11-25 19:29 - 2013-11-21 17:48 - 00030948 _____ C:\Users\Vojtík\Documents\armenie text.odt
2013-11-25 19:29 - 2013-11-03 11:21 - 00510102 _____ C:\Users\Vojtík\Documents\vv.zoo
2013-11-25 19:29 - 2013-10-19 09:18 - 00012497 _____ C:\Users\Vojtík\Documents\Vydaje a příjmy.ods
2013-11-25 19:29 - 2013-10-02 18:17 - 00016948 _____ C:\Users\Vojtík\Documents\Svycarsko.odt
2013-11-25 19:29 - 2013-08-05 10:59 - 00408576 _____ C:\Users\Vojtík\Documents\swiss projekt.MSWMM
2013-11-25 19:29 - 2013-04-21 19:56 - 00006495 _____ C:\Users\Vojtík\Documents\sk 2013 pop.txt
2013-11-25 19:29 - 2013-04-21 17:51 - 00022528 _____ C:\Users\Vojtík\Documents\sk 2013.odt
2013-11-25 19:29 - 2013-02-18 15:27 - 00504610 _____ C:\Users\Vojtík\Documents\aj holywwo.odp
2013-11-25 19:29 - 2012-05-09 14:44 - 00014173 _____ C:\Users\Vojtík\Documents\untitled_1.odp
2013-11-25 19:29 - 2012-03-05 10:17 - 00230400 _____ C:\Users\Vojtík\Documents\vask.xls
2013-11-21 17:48 - 2013-11-21 17:48 - 00089834 _____ C:\Users\Vojtík\Downloads\armenie.odp
2013-11-17 20:12 - 2013-11-17 20:12 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-14 15:57 - 2013-11-14 15:57 - 00000000 ____D C:\Users\Vojtík\Documents\FIFA MANAGER 13 Demo
2013-11-13 20:05 - 2013-11-13 20:05 - 00000106 ____H C:\Users\Vojtík\Documents\.~lock.Aragorn.odt#
2013-11-13 06:28 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2013-11-13 06:28 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2013-11-13 06:28 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2013-11-13 06:27 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2013-11-13 06:27 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2013-11-13 06:27 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2013-11-13 06:27 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2013-11-13 06:27 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2013-11-13 06:27 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2013-11-13 06:27 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2013-11-13 06:27 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2013-11-13 06:27 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2013-11-13 06:27 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2013-11-13 06:27 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2013-11-13 06:27 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2013-11-13 06:27 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2013-11-13 06:27 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2013-11-13 06:27 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2013-11-12 21:05 - 2013-11-14 09:33 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Origin

==================== One Month Modified Files and Folders =======

2013-12-09 19:04 - 2013-12-09 19:03 - 00019173 _____ C:\Users\Vojta\Desktop\FRST.txt
2013-12-09 19:02 - 2013-12-09 19:02 - 00000000 ____D C:\Users\Vojta\Desktop\FRST-OlderVersion
2013-12-09 19:02 - 2013-12-09 06:34 - 00000000 ____D C:\FRST
2013-12-09 19:02 - 2013-12-09 06:33 - 01060641 _____ (Farbar) C:\Users\Vojta\Desktop\FRST.exe
2013-12-09 18:59 - 2013-12-09 18:59 - 00000841 _____ C:\Users\Vojta\Desktop\FRST – zástupce.lnk
2013-12-09 18:57 - 2013-12-09 18:57 - 01060641 _____ (Farbar) C:\Users\Vojta\Downloads\FRST(1).exe
2013-12-09 18:55 - 2012-01-26 18:53 - 00000966 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1006UA.job
2013-12-09 18:55 - 2010-05-16 14:06 - 01557007 _____ C:\windows\WindowsUpdate.log
2013-12-09 18:20 - 2013-10-23 12:33 - 00000962 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1004UA.job
2013-12-09 18:20 - 2012-10-29 18:27 - 00000000 ____D C:\ProgramData\MFAData
2013-12-09 16:59 - 2012-01-26 18:53 - 00000914 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1006Core.job
2013-12-09 13:28 - 2010-09-07 20:16 - 00000000 ____D C:\Users\Vojta\AppData\Local\Adobe
2013-12-09 12:22 - 2013-12-09 12:22 - 00112640 _____ C:\Users\Vojta\Downloads\FRSTLauncher.exe
2013-12-09 12:22 - 2013-10-23 12:33 - 00000910 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1004Core.job
2013-12-09 12:19 - 2013-12-08 16:57 - 00000000 ____D C:\Program Files\trend micro
2013-12-09 12:18 - 2013-12-09 12:18 - 00001389 _____ C:\Users\Vojta\Downloads\RSIT – zástupce.lnk
2013-12-09 06:37 - 2013-12-09 06:36 - 00024235 _____ C:\Users\Vojta\Downloads\Addition.txt
2013-12-09 06:35 - 2009-07-14 05:34 - 00009920 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-09 06:35 - 2009-07-14 05:34 - 00009920 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-09 06:28 - 2012-06-14 19:47 - 00012085 _____ C:\Users\Vojta\Documents\landierror.log
2013-12-09 06:27 - 2013-12-08 12:44 - 00000280 _____ C:\windows\setupact.log
2013-12-09 06:27 - 2009-07-14 05:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-12-08 20:51 - 2013-12-08 12:43 - 00003590 _____ C:\windows\PFRO.log
2013-12-08 17:10 - 2013-12-08 17:10 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT(2).exe
2013-12-08 17:09 - 2013-12-08 17:09 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT(1).exe
2013-12-08 16:57 - 2013-12-08 16:57 - 00000000 ____D C:\rsit
2013-12-08 16:57 - 2013-12-08 16:56 - 00781383 _____ C:\Users\Vojta\Desktop\RSIT.exe
2013-12-08 16:17 - 2013-12-08 16:17 - 00001067 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Malwarebytes
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-08 16:16 - 2013-12-08 16:16 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Vojta\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-08 15:54 - 2011-09-04 09:50 - 00007597 _____ C:\Users\Vojta\AppData\Local\Resmon.ResmonCfg
2013-12-08 13:36 - 2013-12-08 13:36 - 00003020 _____ C:\Users\Vojta\Desktop\AdwCleaner[S0].txt
2013-12-08 13:31 - 2013-12-08 13:29 - 00000000 ____D C:\AdwCleaner
2013-12-08 13:29 - 2013-12-08 13:29 - 01110034 _____ C:\Users\Vojta\Downloads\adwcleaner.exe
2013-12-08 13:05 - 2012-10-29 18:27 - 00000000 ____D C:\Users\Vojta\AppData\Local\Avg2013
2013-12-08 13:00 - 2010-05-16 14:19 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-12-08 12:44 - 2013-12-08 12:44 - 00000000 _____ C:\windows\setuperr.log
2013-12-08 12:37 - 2013-12-08 12:37 - 00003299 _____ C:\Users\Vojta\Desktop\JRT.txt
2013-12-08 12:31 - 2013-12-08 12:31 - 01034531 _____ (Thisisu) C:\Users\Vojta\Downloads\JRT.exe
2013-12-08 12:31 - 2013-12-08 12:31 - 00000000 ____D C:\windows\ERUNT
2013-12-08 12:27 - 2010-12-28 14:16 - 00000000 ___RD C:\Program Files\Skype
2013-12-08 12:25 - 2010-05-16 14:25 - 00000000 ____D C:\ProgramData\Adobe
2013-12-08 12:25 - 2010-05-16 14:25 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-12-08 12:25 - 2010-05-16 14:25 - 00000000 ____D C:\Program Files\Adobe
2013-12-08 12:19 - 2013-12-08 12:19 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\AdobeUM
2013-12-08 12:16 - 2010-12-28 14:16 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Skype
2013-12-08 12:16 - 2010-10-06 18:00 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Media Player Classic
2013-12-08 12:15 - 2009-07-29 11:27 - 00000000 ____D C:\windows\Panther
2013-12-08 11:54 - 2013-12-08 11:54 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-08 11:54 - 2013-12-08 11:54 - 00000000 ____D C:\Program Files\CCleaner
2013-12-08 11:53 - 2013-12-08 11:53 - 11036554 _____ C:\Users\Vojta\Downloads\cc-setup.exe
2013-12-08 11:26 - 2013-12-08 11:26 - 00000000 ____D C:\ProgramData\Macrovision
2013-12-08 11:25 - 2013-12-08 11:25 - 02395904 _____ (Macrovision ) C:\Users\Vojta\Downloads\setup(1).exe
2013-12-08 11:24 - 2013-12-08 11:24 - 02395904 _____ (Macrovision ) C:\Users\Vojta\Downloads\setup.exe
2013-12-08 11:12 - 2013-11-07 17:18 - 00000000 ____D C:\ProgramData\Origin
2013-12-08 11:12 - 2013-11-07 17:18 - 00000000 ____D C:\Program Files\Origin
2013-12-08 11:12 - 2012-10-21 15:44 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-12-08 11:02 - 2013-12-08 11:02 - 00000000 ____D C:\Users\Vojtík\Downloads\RAKOUSKO_ÖBB_2014
2013-12-08 11:01 - 2013-12-08 10:57 - 43555426 _____ C:\Users\Vojtík\Downloads\RAKOUSKO_ÖBB_2014.zip
2013-12-07 12:12 - 2013-12-08 11:03 - 00000000 ____D C:\Users\Vojtík\Downloads\RAKOUSKO - ÖBB
2013-12-06 15:43 - 2012-01-26 18:55 - 00002369 _____ C:\Users\Vojtík\Desktop\Google Chrome.lnk
2013-12-05 21:50 - 2011-12-25 15:27 - 00000000 ____D C:\ProgramData\Landi11-original
2013-12-05 20:25 - 2012-06-04 07:39 - 00002364 _____ C:\Users\Vojta\Desktop\Google Chrome.lnk
2013-12-05 16:42 - 2010-05-16 14:14 - 00006466 _____ C:\windows\system32\PerfStringBackup.INI
2013-12-04 14:37 - 2013-12-04 14:36 - 00000000 ____D C:\Users\Vojtík\Downloads\MP547
2013-12-04 14:34 - 2013-12-04 14:18 - 538775125 _____ C:\Users\Vojtík\Downloads\MP547.zip
2013-12-03 10:13 - 2011-12-25 15:45 - 00024576 _____ C:\Users\Vojtík\Documents\landierror.log
2013-11-30 06:35 - 2011-12-07 15:57 - 00000000 ____D C:\Users\Vojtík\Documents\AVerTV
2013-11-29 15:51 - 2013-11-25 19:29 - 00106067 _____ C:\Users\Vojtík\Documents\armenie.odp
2013-11-27 19:25 - 2013-11-27 19:24 - 00107520 _____ C:\Users\Vojtík\Documents\armenie.ppt
2013-11-25 19:34 - 2011-01-22 19:24 - 00000000 ____D C:\Users\Vojtík\Documents\ICQ
2013-11-21 17:48 - 2013-11-25 19:29 - 00030948 _____ C:\Users\Vojtík\Documents\armenie text.odt
2013-11-21 17:48 - 2013-11-21 17:48 - 00089834 _____ C:\Users\Vojtík\Downloads\armenie.odp
2013-11-20 20:22 - 2012-05-12 06:47 - 00000000 ____D C:\Users\Vojtík\Documents\New Star Soccer 5
2013-11-20 07:37 - 2012-08-16 20:51 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-19 20:47 - 2010-09-02 17:08 - 00002239 _____ C:\Users\Vojta\Desktop\OneKey Recovery.lnk
2013-11-18 12:06 - 2009-07-14 03:37 - 00000000 ____D C:\windows\rescache
2013-11-17 20:12 - 2013-11-17 20:12 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-14 15:57 - 2013-11-14 15:57 - 00000000 ____D C:\Users\Vojtík\Documents\FIFA MANAGER 13 Demo
2013-11-14 14:52 - 2013-11-08 18:44 - 00000000 ____D C:\Users\Vojtík\Documents\FIFA 14 DEMO
2013-11-14 09:33 - 2013-11-12 21:05 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Origin
2013-11-13 20:05 - 2013-11-13 20:05 - 00000106 ____H C:\Users\Vojtík\Documents\.~lock.Aragorn.odt#
2013-11-13 15:42 - 2010-09-02 17:08 - 00000000 ____D C:\Users\Vojta
2013-11-13 15:37 - 2010-09-29 07:35 - 00000000 ____D C:\Users\Vojtík
2013-11-13 06:37 - 2010-05-16 14:26 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-13 06:34 - 2013-08-06 21:12 - 00000000 ____D C:\windows\system32\MRT
2013-11-13 06:29 - 2010-09-10 16:11 - 80340640 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-11-09 15:21 - 2012-11-12 15:02 - 00000000 ____D C:\Users\Vojtík\Documents\GTA San Andreas User Files
2013-11-09 10:46 - 2013-11-07 17:24 - 00000000 ____D C:\Users\Vojtík\AppData\Roaming\Origin

Some content of TEMP:
====================
C:\Users\Vojta\AppData\Local\Temp\install_flashplayer11x32au_mssd_aaa_aih_1.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_1.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_2.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_3.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_4.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_5.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_6.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_7.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_8.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_9.exe
C:\Users\Vojta\AppData\Local\Temp\Quarantine.exe
C:\Users\Vojtík\AppData\Local\Temp\drm_dyndata_7380015.dll
C:\Users\Vojtík\AppData\Local\Temp\install_flashplayer11x32_aih.exe
C:\Users\Vojtík\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Vojtík\AppData\Local\Temp\SRLDetectionLibrary3667438820236396372.dll


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-01 14:00

==================== End Of Log ============================
Všechny časy jsou v UTC+01:00
Stránka 1 z 3

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz