Problém s RAM pamětí

Zpráva

leopold666 · #1 Příspěvek od **leopold666** » 09 pro 2013 10:15

Dobrý den při startu Notebooku mám vytížení paměti 35 procent a to nemám spuštěný žádný program.
Pokud otevřu správce Úloh, nejvíce kb zabírají explorer.exe(30500 kb) siderbar.exe(15800) dwm.exe (15000).
Při spuštění chrome se objeví asi 6x Chrome.exe které dohromady zabírají cca 220000 kb.
Systém jsem několikrát projížděl antivirem avast, který nic nenašel, jsem s rozumem v koncích.
Předem děkuji za odpověď.

#2 Příspěvek od **vyosek** » 09 pro 2013 10:22

Zdravim

Poprosim o log z RSIT http://forum.viry.cz/viewtopic.php?f=13&t=130786

leopold666 · #3 Příspěvek od **leopold666** » 09 pro 2013 15:54

Logfile of random's system information tool 1.09 (written by random/random)
Run by Ladislav at 2013-12-09 15:51:05
Microsoft Windows 7 Home Premium
System drive C: has 523 GB (75%) free of 702 GB
Total RAM: 3767 MB (48% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:51:07, on 9.12.2013
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.17267)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Ladislav\AppData\Roaming\uTorrent\utorrent.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Ladislav.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si= ... =chrome&q=
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si= ... =chrome&q=
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si= ... =chrome&q=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.certified-toolbar.com?si= ... 3340BDAB89
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si= ... =chrome&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si= ... =chrome&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si= ... =chrome&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.certified-toolbar.com?si= ... 3340BDAB89
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certified-toolbar.com?si= ... =chrome&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certified-toolbar.com?si= ... =chrome&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Ladislav\AppData\Roaming\Complitly\Complitly.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BetterSurf - {6E3C6B04-08FE-43BC-8E50-F90285024DEA} - C:\Program Files (x86)\BetterSurf\ie\BetterSurf.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: BetterSrf - {8271B5D6-76D3-4ABF-AEB3-1721161C76BC} - C:\Program Files (x86)\Better-Surf\ie\BetterSrf.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Search Assistant BHO - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [MDS_Menu] "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.6"
O4 - HKLM\..\Run: [ArcadeMovieService] "C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Handy Updater] "C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
O4 - HKCU\..\RunOnce: [SeznamInstall-uninstall:7f6edac6ad7b6bc80c11f6dd372366bb] "C:\Users\Ladislav\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe" -c "C:\Users\Ladislav\AppData\Roaming\Seznam.cz"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Acer VCM.lnk = ?
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: Acer ODD Power Service (ODDPwrSvc) - Acer Incorporated - C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15318 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\system32\WLANExt.exe 27606256
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
\??\C:\Windows\system32\conhost.exe "-1181188747-1674423230-1354614001-1737572620-38894149-129334129313750423221639214974
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe"
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
"C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe"
"C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe"
"C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
C:\Windows\SysWOW64\RunDll32.exe "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe"
"C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe"
"C:\Program Files\Acer\Acer PowerSmart Manager\ePowerEvent.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\wuauclt.exe"
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\totalcmd\TOTALCMD.EXE"
"taskhost.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /showGadgets
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group20 pct:5 stable:r4 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="7328.3.848807939\477471674" /prefetch:673131151
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group20 pct:5 stable:r4 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/PasswordManagerOtherPossibleUsernames/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="7328.11.512753271\1902231081" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="7328.21.1057943803\2082016563" --ppapi-flash-args --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group20 pct:5 stable:r4 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/PasswordManagerOtherPossibleUsernames/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="7328.23.2141010230\658320470" /prefetch:673131151
"C:\Users\Ladislav\AppData\Roaming\uTorrent\utorrent.exe" "C:\Users\Ladislav\Downloads\[CzT]Mesto_The_Town_2010_.torrent"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="7328.29.1681798590\562394033" --use-gl=swiftshader --supports-dual-gpus=false --swiftshader-path="C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\SwiftShader\1.0.5.0" --gpu-driver-bug-workarounds=0,3,12,22 --gpu-vendor-id=0x1002 --gpu-device-id=0x68c1 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.713.3.3000 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group20 pct:5 stable:r4 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/PasswordManagerOtherPossibleUsernames/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --instant-process --disable-html-notifications --disable-accelerated-2d-canvas --channel="7328.31.374396164\1154754649" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group20 pct:5 stable:r4 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/PasswordManagerOtherPossibleUsernames/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --disable-html-notifications --disable-accelerated-2d-canvas --channel="7328.40.1419651520\1816166993" /prefetch:673131151
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe17_ Global\UsGthrCtrlFltPipeMssGthrPipe17 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
taskeng.exe {152B2465-94E6-4F1F-B3DE-FC60AE5A5591}
"C:\Users\Ladislav\Downloads\RSITx64 (1).exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AmiUpdXp.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
Complitly - C:\Users\Ladislav\AppData\Roaming\Complitly\64\Complitly64.dll [2012-11-30 169688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-11-28 1567016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2013-08-13 506632]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
Complitly - C:\Users\Ladislav\AppData\Roaming\Complitly\Complitly.dll [2012-11-30 142040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}]
BetterSurf - C:\Program Files (x86)\BetterSurf\ie\BetterSurf.dll [2013-11-12 86016]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8271B5D6-76D3-4ABF-AEB3-1721161C76BC}]
Better-Surf - C:\Program Files (x86)\Better-Surf\ie\BetterSrf.dll [2013-11-25 86016]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-28 606544]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}]
Search Assistant BHO - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll [2013-01-12 62864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetPacks Browser Helper - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-12-06 1308504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2013-08-13 441608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-11-28 1567016]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetPacks Toolbar for Internet Explorer - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-12-06 1308504]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-28 606544]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-04-22 10775072]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-04-22 2040352]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-04-09 320000]
"ODDPwr"=C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe [2010-04-22 223264]
"mwlDaemon"=C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [2010-04-17 349552]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-04-20 166424]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-04-20 391192]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-04-20 413720]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-03-11 2107176]
"Acer ePower Management"=C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [2010-04-23 496160]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 1266912]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
"Handy Updater"=C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe [2013-07-05 370176]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SeznamInstall-uninstall:7f6edac6ad7b6bc80c11f6dd372366bb"=C:\Users\Ladislav\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [2013-12-09 534528]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
~C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]
C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [2012-10-04 115032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sweetpacks Communicator]
C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe [2012-08-15 231768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-04 284696]
"SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2010-04-17 337264]
"EgisUpdate"=C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-03-11 201584]
"EgisTecPMMUpdate"=C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-03-11 407920]
"BackupManagerTray"=C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [2010-03-09 260608]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-04-21 98304]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2010-03-03 1300560]
"MDS_Menu"=C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]
"ArcadeMovieService"=C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe [2010-04-23 124136]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-11-28 3568312]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer VCM.lnk - C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-04-20 269824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-12-09 15:46:25 ----D---- C:\Program Files\trend micro
2013-12-09 15:45:06 ----D---- C:\rsit
2013-12-09 15:45:06 ----D---- C:\Program Files (x86)\trend micro
2013-12-08 22:42:51 ----D---- C:\Program Files\Machinarium
2013-12-08 15:04:50 ----D---- C:\Program Files (x86)\Samorost2
2013-12-08 15:02:32 ----HD---- C:\Users\Ladislav\AppData\Roaming\IFViewer
2013-11-28 11:38:41 ----D---- C:\Intel
2013-11-28 11:14:31 ----D---- C:\Users\Ladislav\AppData\Roaming\AVG
2013-11-28 11:14:01 ----D---- C:\ProgramData\AVG
2013-11-28 11:13:57 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-11-28 11:13:06 ----D---- C:\Users\Ladislav\AppData\Roaming\OpenCandy
2013-11-28 10:53:51 ----D---- C:\Users\Ladislav\AppData\Roaming\AVAST Software
2013-11-28 10:53:14 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-11-28 10:53:14 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-11-28 10:53:14 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-11-28 10:53:14 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-11-28 10:53:14 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-11-28 10:53:14 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-11-28 10:53:14 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-11-28 10:53:14 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-11-28 10:53:13 ----A---- C:\Windows\system32\aswBoot.exe
2013-11-28 10:53:10 ----A---- C:\Windows\avastSS.scr
2013-11-28 10:49:23 ----D---- C:\Program Files\AVAST Software
2013-11-28 10:48:20 ----D---- C:\ProgramData\AVAST Software
2013-11-28 09:34:49 ----D---- C:\Program Files (x86)\PokerStars
2013-11-26 17:25:22 ----D---- C:\Users\Ladislav\AppData\Roaming\vlc
2013-11-25 20:38:39 ----D---- C:\ProgramData\Caphyon
2013-11-25 20:38:34 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2013-11-25 20:38:26 ----D---- C:\Program Files (x86)\VideoLAN
2013-11-25 20:34:06 ----D---- C:\Users\Ladislav\AppData\Roaming\TV Online
2013-11-25 19:55:49 ----D---- C:\Program Files (x86)\Better-Surf
2013-11-21 18:30:19 ----D---- C:\Program Files\Adblock Plus for IE
2013-11-21 18:30:13 ----D---- C:\ProgramData\Package Cache
2013-11-16 20:13:49 ----D---- C:\Program Files (x86)\BetterSurf

======List of files/folders modified in the last 1 month======

2013-12-09 15:51:00 ----D---- C:\Windows\Prefetch
2013-12-09 15:50:47 ----D---- C:\Windows\Temp
2013-12-09 15:47:29 ----D---- C:\Users\Ladislav\AppData\Roaming\uTorrent
2013-12-09 15:46:25 ----RD---- C:\Program Files
2013-12-09 15:45:06 ----RD---- C:\Program Files (x86)
2013-12-09 10:09:32 ----D---- C:\Windows\system32\config
2013-12-09 09:51:04 ----D---- C:\Windows\SysWOW64
2013-12-09 09:51:04 ----D---- C:\Windows\System32
2013-12-09 09:49:41 ----D---- C:\Program Files (x86)\HandyUpdater
2013-12-09 09:49:03 ----D---- C:\Users\Ladislav\AppData\Roaming\Seznam.cz
2013-12-09 09:48:55 ----D---- C:\Program Files (x86)\Seznam.cz
2013-12-09 09:48:41 ----D---- C:\Windows\system32\Tasks
2013-12-09 09:45:02 ----SHD---- C:\Windows\Installer
2013-12-08 09:05:58 ----A---- C:\Windows\SYSWOW64\log.txt
2013-12-07 12:17:45 ----SHD---- C:\System Volume Information
2013-12-04 14:20:31 ----D---- C:\Users\Ladislav\AppData\Roaming\SoftGrid Client
2013-11-29 11:48:12 ----D---- C:\Users\Ladislav\AppData\Roaming\Adobe
2013-11-29 11:48:08 ----D---- C:\Program Files (x86)\Adobe
2013-11-29 11:23:29 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-11-29 09:54:56 ----D---- C:\Mp3
2013-11-28 22:54:08 ----SD---- C:\ProgramData\Microsoft
2013-11-28 22:54:06 ----SD---- C:\Users\Ladislav\AppData\Roaming\Microsoft
2013-11-28 11:21:47 ----D---- C:\Windows\Tasks
2013-11-28 11:14:01 ----HD---- C:\ProgramData
2013-11-28 11:13:58 ----AD---- C:\Windows
2013-11-28 10:53:14 ----D---- C:\Windows\system32\drivers
2013-11-28 10:53:13 ----D---- C:\Windows\winsxs
2013-11-27 22:23:01 ----D---- C:\Program Files\Google
2013-11-27 22:23:01 ----D---- C:\Program Files (x86)\Google
2013-11-27 20:49:17 ----RSD---- C:\Windows\assembly
2013-11-27 20:49:17 ----D---- C:\Windows\Microsoft.NET
2013-11-27 17:38:48 ----D---- C:\Program Files (x86)\Common Files
2013-11-27 17:35:48 ----D---- C:\ProgramData\Google
2013-11-26 23:07:35 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-11-26 23:07:25 ----D---- C:\Windows\inf
2013-11-26 23:07:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-11-25 19:55:18 ----D---- C:\Windows\system32\catroot2
2013-11-19 11:21:41 ----N---- C:\Windows\system32\MpSigStub.exe
2013-11-18 01:21:38 ----D---- C:\Windows\system32\catroot
2013-11-18 01:21:21 ----D---- C:\Program Files\Microsoft Security Client
2013-11-18 01:21:21 ----D---- C:\Program Files (x86)\Microsoft Security Client

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-11-28 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-11-28 205320]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-09-27 248240]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-11-28 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-11-28 1032416]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-11-28 409832]
R1 aswTdi;aswTdi; \??\C:\Windows\system32\drivers\aswTdi.sys [2013-11-28 65264]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-11 283200]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 22576]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 20016]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60464]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; \??\C:\Windows\system32\drivers\aswFsBlk.sys [2013-11-28 38984]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-11-28 84328]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 134944]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-04-21 6406144]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-04-20 188928]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-04-07 124944]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2010-04-01 3060800]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-04-22 2356000]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2010-04-20 10322848]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-12-22 74280]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-05 18432]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-03-11 316464]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-05 16896]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2009-05-26 40448]
S3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-04-07 2216960]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552448]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btwampfl;Bluetooth AMP USB Filter; C:\Windows\system32\drivers\btwampfl.sys [2010-03-05 335400]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2010-02-14 102440]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2010-01-13 135720]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2010-03-01 39464]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2010-01-13 21544]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-04-21 202752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-28 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2010-03-26 920352]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-03-03 325200]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2010-04-23 820768]
R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-09-30 262144]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 23808]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-03-09 250368]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-06 144640]
R2 ODDPwrSvc;Acer ODD Power Service; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [2010-04-22 171040]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [2010-02-03 244904]
R2 RS_Service;Raw Socket Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [2010-01-30 260640]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2314240]
R2 Updater Service;Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2010-01-29 243232]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-27 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-29 257416]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-27 116648]
S3 MWLService;MyWinLocker Service; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-04-17 305520]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-06 50432]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-12 1255736]
S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 VideoDownloadConverter_4zService;VideoDownloadConverterService; C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbarsvc.exe [2013-01-12 42504]

-----------------EOF-----------------

#4 Příspěvek od **vyosek** » 09 pro 2013 17:02

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

Ulozte nejlepe na plochu
Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
Probehne vytvoreni zalohy a nasledne prohledavani
Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

leopold666 · #5 Příspěvek od **leopold666** » 11 pro 2013 13:41

Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Ladislav on st 11.12.2013 at 13:33:51,02
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1143309735-858529052-1864522953-1000\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\AboutURLs\\Tabs
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Search Bar
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Search Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\Default_Search_URL
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440}

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\escort.escortiepane
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\escort.escortiepane.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\sim-packages
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\sweetie.ietoolbar
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\sweetie.ietoolbar.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\sweetim_urlsearchhook.toolbarurlsearchhook
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\toolbar3.sweetie
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\toolbar3.sweetie.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\complitly.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escort.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escortlbr.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\nctaudiocdgrabber2.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{13119113-0854-469D-807A-171568457991}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{33119133-0854-469D-807A-171568457991}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{23119123-0854-469D-807A-171568457991}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{03119103-0854-469D-807A-171568457991}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\complitly
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\im
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\iminstaller
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\simplytech
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\pricegong
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\simplytech
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1143309735-858529052-1864522953-1000\Software\ib updater
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1143309735-858529052-1864522953-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\ib updater
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\incredibar.dskbnd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\incredibar.dskbnd.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\incredibar.incredibarhlpr
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\incredibar.incredibarhlpr.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mediaplayer.graphicsutils
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mediaplayer.graphicsutils.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mgmediaplayer.gifanimator
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mgmediaplayer.gifanimator.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\suggestmeyes.suggestmeyesbho
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\suggestmeyes.suggestmeyesbho.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.dynamicbarbutton
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.dynamicbarbutton.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.feedmanager
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.feedmanager.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.htmlmenu
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.htmlmenu.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.htmlpanel
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.htmlpanel.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.multiplebutton
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.multiplebutton.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.pseudotransparentplugin
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.pseudotransparentplugin.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.radio
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.radio.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.radiosettings
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.radiosettings.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.scriptbutton
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.scriptbutton.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.settingsplugin
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.settingsplugin.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.skinlauncher
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.skinlauncher.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.thirdpartyinstaller
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.thirdpartyinstaller.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.urlalertbutton
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.urlalertbutton.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.xmlsessionplugin
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.xmlsessionplugin.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\hometab_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\hometab_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\incredibar_installer_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\incredibar_installer_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\incredibartoolbar_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\incredibartoolbar_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetim_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetim_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetpacksupdatemanager_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\sweetim.exe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\sweetim bundle by sweetpacks
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\videodownloadconverter_4zbar uninstall
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4ffbb818-b13c-11e0-931d-b2664824019b}_is1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{96e2e493-c484-43e3-9b95-d62ee7d40d3a}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{99c91fc5-db5b-4aa0-bb70-5d89c5a4df96}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{a0c9df2b-89b5-4483-8983-18a68200f1b4}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{ea8fa6be-29be-4af2-9352-841f83215eb0}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT2737658
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{02B0BAB9-0804-4F3C-8041-37D8D4B5967A}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}

~~~ Files

Successfully deleted: [File] C:\Windows\Tasks\amiupdxp.job

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\ProgramData\partner"
Successfully deleted: [Folder] "C:\ProgramData\sweetim"
Successfully deleted: [Folder] "C:\Users\Ladislav\AppData\Roaming\complitly"
Successfully deleted: [Folder] "C:\Users\Ladislav\AppData\Roaming\opencandy"
Successfully deleted: [Folder] "C:\Users\Ladislav\appdata\local\swvupdater"
Successfully deleted: [Folder] "C:\Users\Ladislav\appdata\local\videodownloadconverter_4z"
Successfully deleted: [Folder] "C:\Users\Ladislav\appdata\locallow\iac"
Successfully deleted: [Folder] "C:\Users\Ladislav\appdata\locallow\incredibar.com"
Successfully deleted: [Folder] "C:\Users\Ladislav\appdata\locallow\pricegong"
Successfully deleted: [Folder] "C:\Users\Ladislav\appdata\locallow\sweetim"
Successfully deleted: [Folder] "C:\Users\Ladislav\appdata\locallow\videodownloadconverter_4z"
Successfully deleted: [Folder] "C:\Program Files (x86)\complitly"
Successfully deleted: [Folder] "C:\Program Files (x86)\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\sweetim"
Successfully deleted: [Folder] "C:\Program Files (x86)\sweetpacks bundle uninstaller"
Successfully deleted: [Folder] "C:\Program Files (x86)\videodownloadconverter_4z"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Folder] "C:\ProgramData\ask"

~~~ Chrome

Successfully deleted: [Folder] C:\Users\Ladislav\appdata\local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 11.12.2013 at 13:40:49,22
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

leopold666 · #6 Příspěvek od **leopold666** » 11 pro 2013 13:50

# AdwCleaner v3.015 - Report created 11/12/2013 at 13:47:22
# Updated 10/12/2013 by Xplode
# Operating System : Windows 7 Home Premium (64 bits)
# Username : Ladislav - LADISLAV-PC
# Running from : C:\Users\Ladislav\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : VideoDownloadConverter_4zService

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\NCH Software
Folder Deleted : C:\Windows\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Folder Deleted : C:\Users\Ladislav\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Ladislav\AppData\Local\Temp\boost_interprocess
File Deleted : C:\Program Files (x86)\Mozilla Firefox\user.js
File Deleted : C:\Windows\System32\Tasks\NCH Software

***** [ Shortcuts ] *****

***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Value Deleted : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{FE1DEEEA-DB6D-44B8-83F0-34FC0F9D1052}]
Value Deleted : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{FE1DEEEA-DB6D-44B8-83F0-34FC0F9D1052}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [12x3q@3244516.com]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [xz123@ya456.com]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dedmngkbaffkenlfdcbganndoghblmap
Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\poheodfamflhhhdcmjfeggbgigeefaco
Key Deleted : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SkinLauncherSettings
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SkinLauncherSettings.1
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Handy Updater]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1F6F39C1-00A8-4752-A94C-D0EA92D978B6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2A1260C1-2964-453F-B0BA-FA429472EB5F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{363D5C92-10DC-4287-93E5-1832EECC48EC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B41BE90-F731-4137-AFF3-2CA951E7F0D9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3D429207-4689-492D-A0E5-CDC5DFBB5005}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4128C64D-F0DD-4811-9405-D22294E8151F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{48586425-6BB7-4F51-8DC6-38C88E3EBB58}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5354D921-3F52-47C5-938D-77A2FB6DEFE7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66292684-B2C2-4C7C-B3D2-BF446E30744C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69407823-3494-4400-8D49-612549E8F4EE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6BFF4BCB-7A73-45A7-AC4C-389A34E1D1EF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{71144427-1368-4D18-8DC9-2AE3CC4C4F83}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{84B7B98F-E018-4DBB-AB4C-4DDD3DFCB5FB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8FCA5302-6D6D-4645-BF99-D43CF76CE474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99E1F6FD-2E94-4CF6-8344-1BA63CD3BD9B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C547C6C2-561B-4169-A2A5-20BA771CA93B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DD385519-22E7-4BE2-8A8D-35C66DF4858E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ED0E67AD-926C-4008-87E5-03CF72AA2A7E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ED345812-2722-4DCA-9976-D01832DB44EE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FF48DBA6-5DD8-4D10-9EB0-0FA968502E66}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{17B10E59-09E1-4C39-A738-6774D7AB7778}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD2049E-E483-4425-8555-8E0775ACB631}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2D73F2D0-2FAB-458E-977D-2F9050E0ED60}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2D9083CE-8758-4704-BA57-3C891D7452BD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3E9469AF-E866-4476-B767-810630F1F6E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{47700C35-9E3E-4DAD-934C-0CE28A87237C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{716E443D-7CAA-44F1-866B-F45D00E712CC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72063D77-7590-4DA9-A7F8-F5ECAF3632C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7FC87AC5-FA93-476E-A32C-A941229DED0B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{192F487E-E812-40C0-B0DE-CB4BFA20F37B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2D3826A1-F3E8-45D6-94B5-C26D8EC0073B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3EE17DD1-E28B-4AED-A3B2-9C29CB2C19D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{79332472-47F3-4E32-B07F-CF8DF4C58499}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{886F93AD-3CBB-4424-8442-A7340243540F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{AA289DBC-59B6-40A5-AC7D-C90DF850289C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BC153A3C-0BB7-4EED-83AE-28E6E398F56E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{CA723163-6FAD-43D4-8B93-0D8C52BD9974}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F1F328EB-F5A5-432B-A54C-05F3EF5B0BD8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FB0E8A09-F08C-44CF-9E15-97ADAC016248}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FE8DBB09-C3D3-4477-80CB-D38914B94BB8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C547C6C2-561B-4169-A2A5-20BA771CA93B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{48586425-6BB7-4F51-8DC6-38C88E3EBB58}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C547C6C2-561B-4169-A2A5-20BA771CA93B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1F6F39C1-00A8-4752-A94C-D0EA92D978B6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{48586425-6BB7-4F51-8DC6-38C88E3EBB58}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5354D921-3F52-47C5-938D-77A2FB6DEFE7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{71144427-1368-4D18-8DC9-2AE3CC4C4F83}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99E1F6FD-2E94-4CF6-8344-1BA63CD3BD9B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C547C6C2-561B-4169-A2A5-20BA771CA93B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ED345812-2722-4DCA-9976-D01832DB44EE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1F6F39C1-00A8-4752-A94C-D0EA92D978B6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5354D921-3F52-47C5-938D-77A2FB6DEFE7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{71144427-1368-4D18-8DC9-2AE3CC4C4F83}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{99E1F6FD-2E94-4CF6-8344-1BA63CD3BD9B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{ED345812-2722-4DCA-9976-D01832DB44EE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2D9083CE-8758-4704-BA57-3C891D7452BD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D429207-4689-492D-A0E5-CDC5DFBB5005}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{48586425-6BB7-4F51-8DC6-38C88E3EBB58}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{17B10E59-09E1-4C39-A738-6774D7AB7778}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1AD2049E-E483-4425-8555-8E0775ACB631}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2D73F2D0-2FAB-458E-977D-2F9050E0ED60}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2D9083CE-8758-4704-BA57-3C891D7452BD}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3E9469AF-E866-4476-B767-810630F1F6E7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{47700C35-9E3E-4DAD-934C-0CE28A87237C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{716E443D-7CAA-44F1-866B-F45D00E712CC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{72063D77-7590-4DA9-A7F8-F5ECAF3632C4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7FC87AC5-FA93-476E-A32C-A941229DED0B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKCU\Software\AppDataLow\Software\VideoDownloadConverter_4z
Key Deleted : HKLM\Software\BetterSurf
Key Deleted : HKLM\Software\SimplyGen
Key Deleted : HKLM\Software\VideoDownloadConverter_4z
Key Deleted : [x64] HKLM\SOFTWARE\IB Updater
Key Deleted : HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
Key Deleted : HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
Key Deleted : HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B
Key Deleted : HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.17267

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Default_Page_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Bar]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Start Default_Page_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Search Bar]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Search Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Start Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Bar]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [(Default)]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)]

-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [20639 octets] - [11/12/2013 13:43:00]
AdwCleaner[S0].txt - [17925 octets] - [11/12/2013 13:47:22]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [17986 octets] ##########

#7 Příspěvek od **vyosek** » 11 pro 2013 14:57

Poprosim o log z FRSTLauncheru http://forum.viry.cz/viewtopic.php?f=24&t=132509

leopold666 · #8 Příspěvek od **leopold666** » 11 pro 2013 17:40

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-12-2013 01
Ran by Ladislav (administrator) on LADISLAV-PC on 11-12-2013 17:24:43
Running from C:\Users\Ladislav\Desktop
Windows 7 Home Premium (X64) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
() C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerEvent.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(BitTorrent Inc.) C:\Users\Ladislav\AppData\Roaming\uTorrent\utorrent.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Ladislav\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10775072 2010-04-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2040352 2010-04-22] (Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [320000 2009-04-09] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [ODDPwr] - C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe [223264 2010-04-22] (Acer Incorporated)
HKLM\...\Run: [mwlDaemon] - C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-04-17] (Egis Technology Inc.)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2107176 2010-03-11] (Synaptics Incorporated)
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [496160 2010-04-23] (Acer Incorporated)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3674320 2013-01-08] (DT Soft Ltd)
MountPoints2: {a006b720-5c1e-11e2-ab1d-c44619b94787} - E:\Setup.exe
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation)
HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [337264 2010-04-17] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [260608 2010-03-09] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-04-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1300560 2010-03-03] (Dritek System Inc.)
HKLM-x32\...\Run: [MDS_Menu] - C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [ArcadeMovieService] - C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe [124136 2010-04-23] (CyberLink Corp.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-28] (AVAST Software)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-01-15] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-01-15] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - 10D242C8AA6E46B6847EC9AF5864CDA9 URL = http://isearch.avg.com/search?cid={A9CE ... 2013-01-18 09:32:09&v=14.2.0.1&pid=avg&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {28CCB0DD-B57C-4B85-A0D6-BF2BAF38B4A1} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Adblock Plus)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Adblock Plus)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

Chrome:
=======
CHR HomePage: https://www.google.cz/
CHR RestoreOnStartup: "https://www.google.com/"
CHR DefaultSearchKeyword: google.cz
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL: {google:baseURL}_/chrome/newtab?{google:RLZ}{google:instantExtendedEnabledParameter}{google:ntpIsThemedParameter}ie={inputEncoding}
CHR Extension: (Google Docs) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (avast! Online Security) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2005.45_0
CHR Extension: (Google Wallet) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-28] (AVAST Software)
R2 ePowerSvc; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [820768 2010-04-23] (Acer Incorporated)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-04-17] (Egis Technology Inc.)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 ODDPwrSvc; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [171040 2010-04-22] (Acer Incorporated)
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [244904 2010-02-03] ()
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-30] (Acer Incorporated)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-28] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-28] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-28] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-28] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-01-11] (DT Soft Ltd)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-12-11 17:24 - 2013-12-11 17:24 - 00029696 _____ C:\Users\Ladislav\AppData\Local\MSGBOX.EXE
2013-12-11 17:24 - 2013-12-11 17:24 - 00015327 _____ C:\Users\Ladislav\Desktop\LM.bat
2013-12-11 17:23 - 2013-12-11 17:24 - 00015884 _____ C:\Users\Ladislav\Desktop\FRST.txt
2013-12-11 17:23 - 2013-12-11 17:23 - 00052158 _____ C:\Users\Ladislav\Desktop\FRST3.txt
2013-12-11 17:20 - 2013-12-11 17:20 - 00112640 _____ (forum.viry.cz) C:\Users\Ladislav\Desktop\FRSTLauncher.exe
2013-12-11 17:19 - 2013-12-11 17:19 - 00000000 ____D C:\FRST
2013-12-11 17:17 - 2013-12-11 17:18 - 01928212 _____ (Farbar) C:\Users\Ladislav\Desktop\FRST64.exe
2013-12-11 17:16 - 2013-12-11 17:16 - 00112107 _____ (forum.viry.cz) C:\Users\Ladislav\Downloads\VerzeOS.exe
2013-12-11 14:49 - 2013-12-11 15:00 - 1467640135 ____R C:\Users\Ladislav\Downloads\Thor The Dark World V2 2013 CAM AAC x264-SSDD.mp4
2013-12-11 14:48 - 2013-12-11 14:48 - 00014677 _____ C:\Users\Ladislav\Downloads\[CzT]Thor_Temny_svet_Thor_The_Dark_World_2013_CAM_.torrent
2013-12-11 13:42 - 2013-12-11 13:47 - 00000000 ____D C:\AdwCleaner
2013-12-11 13:42 - 2013-12-11 13:42 - 01226802 _____ C:\Users\Ladislav\Downloads\adwcleaner.exe
2013-12-11 13:33 - 2013-12-11 13:33 - 01034531 _____ (Thisisu) C:\Users\Ladislav\Downloads\JRT.exe
2013-12-11 13:33 - 2013-12-11 13:33 - 00000000 ____D C:\Windows\ERUNT
2013-12-09 22:45 - 2013-12-10 00:35 - 00000000 ____D C:\Users\Ladislav\Documents\BotaniculaSaves
2013-12-09 22:44 - 2013-12-09 22:44 - 00002124 _____ C:\Users\Public\Desktop\Botanicula.lnk
2013-12-09 22:43 - 2013-12-09 22:43 - 00000000 ____D C:\Program Files (x86)\Amanita Design
2013-12-09 22:41 - 2012-08-02 04:31 - 00000000 ____D C:\Users\Ladislav\Downloads\Botanicula (2012 Cz)
2013-12-09 21:59 - 2013-12-09 22:41 - 737338045 _____ C:\Users\Ladislav\Downloads\Botanicula-(2012-Cz).exe
2013-12-09 21:57 - 2013-12-09 21:57 - 00000000 ____D C:\Users\Ladislav\Downloads\Botanicula-SKIDROW
2013-12-09 21:55 - 2013-12-09 21:55 - 00014695 _____ C:\Users\Ladislav\Downloads\[CzT]Botanicula_2012_.torrent
2013-12-09 16:01 - 2013-12-09 16:01 - 00001240 _____ C:\Windows\SysWOW64\PokerRoom Home Game Organizer.log
2013-12-09 16:01 - 2013-12-09 16:01 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerRoom Home Game Organizer
2013-12-09 16:01 - 2013-12-09 16:01 - 00000000 ____D C:\Program Files (x86)\PokerRoom Home Game Organizer
2013-12-09 16:00 - 2013-12-09 16:01 - 01342737 _____ C:\Users\Ladislav\Downloads\homegame_installer.exe
2013-12-09 15:50 - 2013-12-09 15:50 - 00935175 _____ C:\Users\Ladislav\Downloads\RSITx64 (1).exe
2013-12-09 15:46 - 2013-12-09 15:51 - 00000000 ____D C:\Program Files\trend micro
2013-12-09 15:46 - 2013-12-09 15:46 - 00832273 _____ C:\Users\Ladislav\Downloads\RSITx64.exe
2013-12-09 15:45 - 2013-12-09 15:46 - 00000000 ____D C:\rsit
2013-12-09 15:45 - 2013-12-09 15:45 - 00000000 ____D C:\Program Files (x86)\trend micro
2013-12-09 15:44 - 2013-12-09 15:44 - 00781909 _____ C:\Users\Ladislav\Downloads\RSIT.exe
2013-12-09 10:50 - 2013-12-09 10:50 - 00020136 _____ C:\Users\Ladislav\Downloads\[CzT]Closure_2012_.torrent
2013-12-09 10:48 - 2013-12-09 10:54 - 944230400 ____R C:\Users\Ladislav\Downloads\mesto_2010_cz.avi
2013-12-09 10:47 - 2013-12-09 10:47 - 00018559 _____ C:\Users\Ladislav\Downloads\[CzT]Mesto_The_Town_2010_.torrent
2013-12-09 09:48 - 2013-12-09 09:48 - 00003134 _____ C:\Windows\System32\Tasks\{6BA4CF07-4050-479D-8BEE-8B269D67FDC9}
2013-12-08 22:42 - 2013-12-08 22:42 - 00000000 ____D C:\Program Files\Machinarium
2013-12-08 22:19 - 2013-12-08 22:39 - 358766249 _____ C:\Users\Ladislav\Downloads\Machinarium-CZ-Full-Game.exe
2013-12-08 20:42 - 2013-12-08 20:57 - 260282368 _____ C:\Users\Ladislav\Downloads\Kulivočko.iso
2013-12-08 15:04 - 2013-12-08 15:04 - 00001921 _____ C:\Users\Ladislav\Desktop\Samorost2.lnk
2013-12-08 15:04 - 2013-12-08 15:04 - 00000000 ____D C:\Program Files (x86)\Samorost2
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ___HD C:\Users\Ladislav\AppData\Roaming\IFViewer
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ____D C:\Users\Ladislav\Downloads\samorost-1-2-3
2013-12-08 15:00 - 2013-12-08 15:02 - 34871797 _____ C:\Users\Ladislav\Downloads\samorost-1-2-3.zip
2013-12-05 18:46 - 2013-12-05 18:51 - 00000000 ____D C:\Users\Ladislav\Downloads\Kick-Ass 2 (2013) HDRip XviD-MAXSPEED
2013-12-05 18:45 - 2013-12-05 18:45 - 00014765 _____ C:\Users\Ladislav\Downloads\[CzT]Kick_Ass_2_2013_.torrent
2013-12-02 19:16 - 2013-11-22 18:58 - 00025368 _____ C:\Users\Ladislav\Downloads\South.Park.S17E08.HDTV.x264.srt
2013-12-02 19:16 - 2013-11-22 18:37 - 108962372 _____ C:\Users\Ladislav\Downloads\South.Park.S17E08.HDTV.x264-KILLERS.mp4
2013-12-02 18:46 - 2013-12-02 18:58 - 108498743 _____ C:\Users\Ladislav\Downloads\South.Park.S17E08.HDTV.x264-+-CZ-titulky.zip
2013-12-01 11:26 - 2013-12-01 11:29 - 00000000 ____D C:\Users\Ladislav\Downloads\Were the Millers 2013 BRRip XviD AC3-SANTi
2013-12-01 11:25 - 2013-12-01 11:25 - 00018603 _____ C:\Users\Ladislav\Downloads\[CzT]Millerovi_na_tripu_We_re_the_Millers_2013_.torrent
2013-11-29 11:48 - 2013-11-29 11:48 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-11-29 11:48 - 2013-11-29 11:48 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-11-29 11:47 - 2013-11-29 11:47 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Ladislav\Downloads\AdobeAIRInstaller (1).exe
2013-11-29 08:41 - 2013-11-29 09:49 - 1223028065 _____ C:\Users\Ladislav\Downloads\Deftones-Discography-320.rar
2013-11-28 22:42 - 2013-12-09 10:27 - 00007601 _____ C:\Users\Ladislav\AppData\Local\Resmon.ResmonCfg
2013-11-28 17:21 - 2013-11-28 17:28 - 886418846 ____R C:\Users\Ladislav\Downloads\G.I.Joe.Retaliation.avi
2013-11-28 17:21 - 2013-11-28 17:21 - 00017465 _____ C:\Users\Ladislav\Downloads\[CzT]G_I_Joe_2_Odveta_G_I_Joe_Retaliation_2013_CZ_.torrent
2013-11-28 15:41 - 2013-11-28 15:45 - 00000000 ____D C:\Users\Ladislav\Downloads\The Last Days On Mars 2013 HDRIP x264 AC3-TiTAN
2013-11-28 15:40 - 2013-11-28 15:40 - 00016478 _____ C:\Users\Ladislav\Downloads\[CzT]The_Last_Days_On_Mars_2013_.torrent
2013-11-28 14:55 - 2013-11-28 15:01 - 992375592 ____R C:\Users\Ladislav\Downloads\Riddick 3 2013-DVDscr-CZtit-JO.avi
2013-11-28 14:55 - 2013-11-28 14:55 - 00019605 _____ C:\Users\Ladislav\Downloads\[CzT]Riddick_2013_DVDSCR_.torrent
2013-11-28 11:38 - 2013-11-28 11:38 - 00000000 ____D C:\Intel
2013-11-28 11:23 - 2013-11-28 11:23 - 00003704 _____ C:\Windows\System32\Tasks\Java Update Scheduler
2013-11-28 11:14 - 2013-11-28 11:16 - 00000000 ____D C:\ProgramData\AVG
2013-11-28 11:14 - 2013-11-28 11:14 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Ladislav\Downloads\AdobeAIRInstaller.exe
2013-11-28 11:14 - 2013-11-28 11:14 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\AVG
2013-11-28 11:13 - 2013-11-28 11:21 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-11-28 11:12 - 2013-11-28 11:12 - 12850864 _____ (Gretech Corporation) C:\Users\Ladislav\Downloads\GOMPLAYERENSETUP.EXE
2013-11-28 10:53 - 2013-12-11 13:49 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-28 10:53 - 2013-11-28 10:53 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-28 10:53 - 2013-11-28 10:53 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-28 10:53 - 2013-11-28 10:53 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\AVAST Software
2013-11-28 10:49 - 2013-11-28 10:49 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-28 10:48 - 2013-11-28 10:48 - 04733592 _____ (AVAST Software) C:\Users\Ladislav\Downloads\avast_free_antivirus_setup_online.exe
2013-11-28 10:48 - 2013-11-28 10:48 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-28 09:35 - 2013-11-29 09:56 - 00000000 ____D C:\Users\Ladislav\AppData\Local\PokerStars
2013-11-28 09:35 - 2013-11-28 09:35 - 00001065 _____ C:\Users\Public\Desktop\PokerStars.lnk
2013-11-28 09:34 - 2013-11-28 09:35 - 00000000 ____D C:\Program Files (x86)\PokerStars
2013-11-28 09:32 - 2013-11-28 09:33 - 29841944 _____ (PokerStars) C:\Users\Ladislav\Downloads\PokerStarsInstall (1).exe
2013-11-28 09:31 - 2013-11-28 09:32 - 21483554 _____ C:\Users\Ladislav\Downloads\PokerStarsInstall.exe
2013-11-27 18:43 - 2013-11-27 18:43 - 00338472 _____ (Amônétízé Ltd) C:\Users\Ladislav\Downloads\FlashPlayer__4369_i154994756_il14.exe
2013-11-27 17:40 - 2013-12-11 16:45 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-27 17:40 - 2013-12-11 14:01 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-27 17:40 - 2013-12-09 09:40 - 00003952 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-27 17:40 - 2013-12-09 09:40 - 00003700 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-27 17:35 - 2013-11-27 17:35 - 00819184 _____ (Google Inc.) C:\Users\Ladislav\Downloads\ChromeSetup (1).exe
2013-11-26 18:03 - 2013-11-26 18:05 - 34621208 _____ C:\Users\Ladislav\Downloads\Subzero-Necropolis.rar
2013-11-26 17:45 - 2013-11-26 17:46 - 30482052 _____ C:\Users\Ladislav\Downloads\stažený soubor (1)
2013-11-26 17:35 - 2013-11-26 17:36 - 37997172 _____ C:\Users\Ladislav\Downloads\stažený soubor
2013-11-26 17:32 - 2013-11-26 17:32 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream (3).m3u
2013-11-26 17:29 - 2013-11-26 17:29 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream (2).m3u
2013-11-26 17:25 - 2013-12-11 15:14 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\vlc
2013-11-26 17:22 - 2013-12-11 15:13 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-26 17:20 - 2013-11-26 17:21 - 30952744 _____ C:\Users\Ladislav\Downloads\vlc-setup.exe
2013-11-26 17:17 - 2013-11-26 17:17 - 00002964 _____ C:\Windows\System32\Tasks\{DCF06A89-8AEB-40CD-84B0-988AA3A62102}
2013-11-26 17:16 - 2013-11-26 17:16 - 00002964 _____ C:\Windows\System32\Tasks\{FB74915C-5EE3-4879-88A3-A93C6BCE9F66}
2013-11-26 17:15 - 2013-11-26 17:15 - 00002964 _____ C:\Windows\System32\Tasks\{08855C5F-B9E7-46B5-AA8F-DDFCC7E64A37}
2013-11-26 17:07 - 2013-11-26 17:08 - 22912657 _____ C:\Users\Ladislav\Downloads\vlc-2.0.4-win32.exe
2013-11-25 20:39 - 2013-11-25 20:39 - 00000000 ____D C:\Users\Ladislav\AppData\Local\TV_Online
2013-11-25 20:38 - 2013-11-25 20:38 - 00000000 ____D C:\ProgramData\Caphyon
2013-11-25 20:38 - 2013-11-25 20:38 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-11-25 20:34 - 2013-11-25 20:37 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\TV Online
2013-11-25 20:33 - 2013-11-25 20:34 - 10227527 _____ (TV Online) C:\Users\Ladislav\Downloads\tv-online_1.92.exe
2013-11-25 20:27 - 2013-11-25 20:27 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream (1).m3u
2013-11-25 20:26 - 2013-11-25 20:26 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream.m3u
2013-11-25 20:16 - 2013-11-25 20:16 - 02329256 _____ (Inbox.com, Inc. ) C:\Users\Ladislav\Downloads\TVSetup.exe
2013-11-21 18:30 - 2013-11-21 18:30 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-21 18:30 - 2013-11-21 18:30 - 00000000 ____D C:\Program Files\Adblock Plus for IE
2013-11-21 18:27 - 2013-11-21 18:27 - 00000000 ____D C:\Users\Ladislav\Downloads\Adblock plus IE
2013-11-21 18:26 - 2013-11-21 18:26 - 04871141 _____ C:\Users\Ladislav\Downloads\Adblock-plus-IE.rar
2013-11-21 18:14 - 2013-11-21 18:14 - 00819184 _____ (Google Inc.) C:\Users\Ladislav\Downloads\ChromeSetup.exe
2013-11-19 17:24 - 2013-11-19 17:24 - 00029275 _____ C:\Users\Ladislav\Downloads\South.Park.S17E07.HDTV.XviD-AFG.srt
2013-11-17 14:02 - 2013-11-17 14:41 - 354942838 _____ C:\Users\Ladislav\Downloads\South.Park.S17E07.720p.HDTV.x264-KILLERS.mkv
2013-11-17 14:02 - 2013-11-17 14:02 - 00025709 _____ C:\Users\Ladislav\Downloads\South-Park-S17E06.srt
2013-11-17 13:36 - 2013-11-17 13:56 - 188003264 _____ C:\Users\Ladislav\Downloads\South-Park-S17E06.avi
2013-11-17 13:35 - 2013-11-17 13:35 - 00030491 _____ C:\Users\Ladislav\Downloads\south.park.s17e05.hdtv.x264-2hd.srt
2013-11-17 11:38 - 2013-11-17 11:58 - 180692512 _____ C:\Users\Ladislav\Downloads\South-Park-S17E05.avi
2013-11-17 11:32 - 2013-11-17 11:32 - 00027145 _____ C:\Users\Ladislav\Downloads\South-Park-S17E04.srt
2013-11-17 11:10 - 2013-11-17 11:32 - 204400460 _____ C:\Users\Ladislav\Downloads\South.Park.S17E04.REAL.HDTV.XviD-AFG.avi
2013-11-17 10:46 - 2013-11-17 11:07 - 192015570 _____ C:\Users\Ladislav\Downloads\South.Park.S17E03.HDTV.XviD-AFG.avi
2013-11-17 10:35 - 2013-11-17 10:35 - 00011722 _____ C:\Users\Ladislav\Downloads\1703 (1).zip
2013-11-17 10:28 - 2013-11-17 10:29 - 00012118 _____ C:\Users\Ladislav\Downloads\1704.zip
2013-11-16 20:14 - 2013-11-16 20:14 - 00000000 _____ C:\extensions.sqlite
2013-11-16 09:44 - 2013-11-16 09:48 - 801548288 ____R C:\Users\Ladislav\Downloads\Looper CZ.avi
2013-11-16 09:43 - 2013-11-16 09:43 - 00015836 _____ C:\Users\Ladislav\Downloads\[CzT]Looper_CZ_2012_.torrent
2013-11-13 13:01 - 2013-11-13 13:03 - 00000000 ____D C:\Users\Ladislav\Downloads\Star Trek Do temnoty Star Trek Into Darkness (2013)
2013-11-13 13:01 - 2013-11-13 13:01 - 00011335 _____ C:\Users\Ladislav\Downloads\[CzT]Star_Trek_Do_temnoty_Star_Trek_Into_Darkness_2013_CZ_.torrent

==================== One Month Modified Files and Folders =======

2013-12-11 17:24 - 2013-12-11 17:24 - 00029696 _____ C:\Users\Ladislav\AppData\Local\MSGBOX.EXE
2013-12-11 17:24 - 2013-12-11 17:24 - 00015327 _____ C:\Users\Ladislav\Desktop\LM.bat
2013-12-11 17:24 - 2013-12-11 17:23 - 00015884 _____ C:\Users\Ladislav\Desktop\FRST.txt
2013-12-11 17:24 - 2013-08-15 11:42 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\uTorrent
2013-12-11 17:23 - 2013-12-11 17:23 - 00052158 _____ C:\Users\Ladislav\Desktop\FRST3.txt
2013-12-11 17:20 - 2013-12-11 17:20 - 00112640 _____ (forum.viry.cz) C:\Users\Ladislav\Desktop\FRSTLauncher.exe
2013-12-11 17:19 - 2013-12-11 17:19 - 00000000 ____D C:\FRST
2013-12-11 17:18 - 2013-12-11 17:17 - 01928212 _____ (Farbar) C:\Users\Ladislav\Desktop\FRST64.exe
2013-12-11 17:18 - 2013-01-11 18:58 - 01108685 _____ C:\Windows\WindowsUpdate.log
2013-12-11 17:16 - 2013-12-11 17:16 - 00112107 _____ (forum.viry.cz) C:\Users\Ladislav\Downloads\VerzeOS.exe
2013-12-11 17:13 - 2013-01-23 19:46 - 00003994 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{3C980745-0D6E-4E48-927C-D7B6C1B58FBC}
2013-12-11 16:51 - 2013-01-11 20:12 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-11 16:45 - 2013-11-27 17:40 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-11 15:14 - 2013-11-26 17:25 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\vlc
2013-12-11 15:13 - 2013-11-26 17:22 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-12-11 15:10 - 2009-07-14 05:51 - 00106156 _____ C:\Windows\setupact.log
2013-12-11 15:00 - 2013-12-11 14:49 - 1467640135 ____R C:\Users\Ladislav\Downloads\Thor The Dark World V2 2013 CAM AAC x264-SSDD.mp4
2013-12-11 14:51 - 2013-01-11 20:12 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 14:51 - 2013-01-11 20:12 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 14:51 - 2013-01-11 20:12 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 14:48 - 2013-12-11 14:48 - 00014677 _____ C:\Users\Ladislav\Downloads\[CzT]Thor_Temny_svet_Thor_The_Dark_World_2013_CAM_.torrent
2013-12-11 14:08 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-11 14:08 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-11 14:01 - 2013-11-27 17:40 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-11 14:01 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-11 13:49 - 2013-11-28 10:53 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-11 13:47 - 2013-12-11 13:42 - 00000000 ____D C:\AdwCleaner
2013-12-11 13:47 - 2013-01-11 20:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-11 13:42 - 2013-12-11 13:42 - 01226802 _____ C:\Users\Ladislav\Downloads\adwcleaner.exe
2013-12-11 13:33 - 2013-12-11 13:33 - 01034531 _____ (Thisisu) C:\Users\Ladislav\Downloads\JRT.exe
2013-12-11 13:33 - 2013-12-11 13:33 - 00000000 ____D C:\Windows\ERUNT
2013-12-10 00:35 - 2013-12-09 22:45 - 00000000 ____D C:\Users\Ladislav\Documents\BotaniculaSaves
2013-12-09 22:44 - 2013-12-09 22:44 - 00002124 _____ C:\Users\Public\Desktop\Botanicula.lnk
2013-12-09 22:43 - 2013-12-09 22:43 - 00000000 ____D C:\Program Files (x86)\Amanita Design
2013-12-09 22:41 - 2013-12-09 21:59 - 737338045 _____ C:\Users\Ladislav\Downloads\Botanicula-(2012-Cz).exe
2013-12-09 21:57 - 2013-12-09 21:57 - 00000000 ____D C:\Users\Ladislav\Downloads\Botanicula-SKIDROW
2013-12-09 21:55 - 2013-12-09 21:55 - 00014695 _____ C:\Users\Ladislav\Downloads\[CzT]Botanicula_2012_.torrent
2013-12-09 20:36 - 2013-01-11 18:54 - 00052338 _____ C:\Windows\PFRO.log
2013-12-09 16:01 - 2013-12-09 16:01 - 00001240 _____ C:\Windows\SysWOW64\PokerRoom Home Game Organizer.log
2013-12-09 16:01 - 2013-12-09 16:01 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerRoom Home Game Organizer
2013-12-09 16:01 - 2013-12-09 16:01 - 00000000 ____D C:\Program Files (x86)\PokerRoom Home Game Organizer
2013-12-09 16:01 - 2013-12-09 16:00 - 01342737 _____ C:\Users\Ladislav\Downloads\homegame_installer.exe
2013-12-09 15:51 - 2013-12-09 15:46 - 00000000 ____D C:\Program Files\trend micro
2013-12-09 15:50 - 2013-12-09 15:50 - 00935175 _____ C:\Users\Ladislav\Downloads\RSITx64 (1).exe
2013-12-09 15:46 - 2013-12-09 15:46 - 00832273 _____ C:\Users\Ladislav\Downloads\RSITx64.exe
2013-12-09 15:46 - 2013-12-09 15:45 - 00000000 ____D C:\rsit
2013-12-09 15:45 - 2013-12-09 15:45 - 00000000 ____D C:\Program Files (x86)\trend micro
2013-12-09 15:44 - 2013-12-09 15:44 - 00781909 _____ C:\Users\Ladislav\Downloads\RSIT.exe
2013-12-09 10:54 - 2013-12-09 10:48 - 944230400 ____R C:\Users\Ladislav\Downloads\mesto_2010_cz.avi
2013-12-09 10:50 - 2013-12-09 10:50 - 00020136 _____ C:\Users\Ladislav\Downloads\[CzT]Closure_2012_.torrent
2013-12-09 10:47 - 2013-12-09 10:47 - 00018559 _____ C:\Users\Ladislav\Downloads\[CzT]Mesto_The_Town_2010_.torrent
2013-12-09 10:27 - 2013-11-28 22:42 - 00007601 _____ C:\Users\Ladislav\AppData\Local\Resmon.ResmonCfg
2013-12-09 09:49 - 2013-10-16 16:44 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\Seznam.cz
2013-12-09 09:49 - 2013-08-10 22:34 - 00000000 ____D C:\Program Files (x86)\HandyUpdater
2013-12-09 09:48 - 2013-12-09 09:48 - 00003134 _____ C:\Windows\System32\Tasks\{6BA4CF07-4050-479D-8BEE-8B269D67FDC9}
2013-12-09 09:48 - 2013-10-16 16:44 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2013-12-09 09:40 - 2013-11-27 17:40 - 00003952 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-09 09:40 - 2013-11-27 17:40 - 00003700 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-08 22:42 - 2013-12-08 22:42 - 00000000 ____D C:\Program Files\Machinarium
2013-12-08 22:39 - 2013-12-08 22:19 - 358766249 _____ C:\Users\Ladislav\Downloads\Machinarium-CZ-Full-Game.exe
2013-12-08 20:57 - 2013-12-08 20:42 - 260282368 _____ C:\Users\Ladislav\Downloads\Kulivočko.iso
2013-12-08 15:04 - 2013-12-08 15:04 - 00001921 _____ C:\Users\Ladislav\Desktop\Samorost2.lnk
2013-12-08 15:04 - 2013-12-08 15:04 - 00000000 ____D C:\Program Files (x86)\Samorost2
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ___HD C:\Users\Ladislav\AppData\Roaming\IFViewer
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ____D C:\Users\Ladislav\Downloads\samorost-1-2-3
2013-12-08 15:02 - 2013-12-08 15:00 - 34871797 _____ C:\Users\Ladislav\Downloads\samorost-1-2-3.zip
2013-12-05 18:51 - 2013-12-05 18:46 - 00000000 ____D C:\Users\Ladislav\Downloads\Kick-Ass 2 (2013) HDRip XviD-MAXSPEED
2013-12-05 18:45 - 2013-12-05 18:45 - 00014765 _____ C:\Users\Ladislav\Downloads\[CzT]Kick_Ass_2_2013_.torrent
2013-12-04 14:20 - 2013-06-03 16:57 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\SoftGrid Client
2013-12-02 18:58 - 2013-12-02 18:46 - 108498743 _____ C:\Users\Ladislav\Downloads\South.Park.S17E08.HDTV.x264-+-CZ-titulky.zip
2013-12-01 11:29 - 2013-12-01 11:26 - 00000000 ____D C:\Users\Ladislav\Downloads\Were the Millers 2013 BRRip XviD AC3-SANTi
2013-12-01 11:25 - 2013-12-01 11:25 - 00018603 _____ C:\Users\Ladislav\Downloads\[CzT]Millerovi_na_tripu_We_re_the_Millers_2013_.torrent
2013-11-29 11:48 - 2013-11-29 11:48 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-11-29 11:48 - 2013-11-29 11:48 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-11-29 11:48 - 2013-01-11 19:58 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\Adobe
2013-11-29 11:48 - 2010-05-14 05:10 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-11-29 11:47 - 2013-11-29 11:47 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Ladislav\Downloads\AdobeAIRInstaller (1).exe
2013-11-29 11:47 - 2013-01-13 21:05 - 00000000 ____D C:\Users\Ladislav\AppData\Local\Adobe
2013-11-29 09:56 - 2013-11-28 09:35 - 00000000 ____D C:\Users\Ladislav\AppData\Local\PokerStars
2013-11-29 09:54 - 2011-01-15 12:35 - 00000000 ____D C:\Mp3
2013-11-29 09:49 - 2013-11-29 08:41 - 1223028065 _____ C:\Users\Ladislav\Downloads\Deftones-Discography-320.rar
2013-11-28 17:28 - 2013-11-28 17:21 - 886418846 ____R C:\Users\Ladislav\Downloads\G.I.Joe.Retaliation.avi
2013-11-28 17:21 - 2013-11-28 17:21 - 00017465 _____ C:\Users\Ladislav\Downloads\[CzT]G_I_Joe_2_Odveta_G_I_Joe_Retaliation_2013_CZ_.torrent
2013-11-28 15:45 - 2013-11-28 15:41 - 00000000 ____D C:\Users\Ladislav\Downloads\The Last Days On Mars 2013 HDRIP x264 AC3-TiTAN
2013-11-28 15:40 - 2013-11-28 15:40 - 00016478 _____ C:\Users\Ladislav\Downloads\[CzT]The_Last_Days_On_Mars_2013_.torrent
2013-11-28 15:01 - 2013-11-28 14:55 - 992375592 ____R C:\Users\Ladislav\Downloads\Riddick 3 2013-DVDscr-CZtit-JO.avi
2013-11-28 14:55 - 2013-11-28 14:55 - 00019605 _____ C:\Users\Ladislav\Downloads\[CzT]Riddick_2013_DVDSCR_.torrent
2013-11-28 11:38 - 2013-11-28 11:38 - 00000000 ____D C:\Intel
2013-11-28 11:23 - 2013-11-28 11:23 - 00003704 _____ C:\Windows\System32\Tasks\Java Update Scheduler
2013-11-28 11:21 - 2013-11-28 11:13 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-11-28 11:16 - 2013-11-28 11:14 - 00000000 ____D C:\ProgramData\AVG
2013-11-28 11:14 - 2013-11-28 11:14 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Ladislav\Downloads\AdobeAIRInstaller.exe
2013-11-28 11:14 - 2013-11-28 11:14 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\AVG
2013-11-28 11:13 - 2013-01-18 09:32 - 00001213 _____ C:\Users\Ladislav\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2013-11-28 11:12 - 2013-11-28 11:12 - 12850864 _____ (Gretech Corporation) C:\Users\Ladislav\Downloads\GOMPLAYERENSETUP.EXE
2013-11-28 10:53 - 2013-11-28 10:53 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-28 10:53 - 2013-11-28 10:53 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-28 10:53 - 2013-11-28 10:53 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\AVAST Software
2013-11-28 10:49 - 2013-11-28 10:49 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-28 10:48 - 2013-11-28 10:48 - 04733592 _____ (AVAST Software) C:\Users\Ladislav\Downloads\avast_free_antivirus_setup_online.exe
2013-11-28 10:48 - 2013-11-28 10:48 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-28 09:35 - 2013-11-28 09:35 - 00001065 _____ C:\Users\Public\Desktop\PokerStars.lnk
2013-11-28 09:35 - 2013-11-28 09:34 - 00000000 ____D C:\Program Files (x86)\PokerStars
2013-11-28 09:33 - 2013-11-28 09:32 - 29841944 _____ (PokerStars) C:\Users\Ladislav\Downloads\PokerStarsInstall (1).exe
2013-11-28 09:32 - 2013-11-28 09:31 - 21483554 _____ C:\Users\Ladislav\Downloads\PokerStarsInstall.exe
2013-11-27 22:23 - 2010-05-14 05:05 - 00000000 ____D C:\Program Files\Google
2013-11-27 22:23 - 2010-05-14 05:05 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-27 18:43 - 2013-11-27 18:43 - 00338472 _____ (Amônétízé Ltd) C:\Users\Ladislav\Downloads\FlashPlayer__4369_i154994756_il14.exe
2013-11-27 17:35 - 2013-11-27 17:35 - 00819184 _____ (Google Inc.) C:\Users\Ladislav\Downloads\ChromeSetup (1).exe
2013-11-27 17:35 - 2013-01-11 19:58 - 00000000 ____D C:\Users\Ladislav\AppData\Local\Google
2013-11-27 17:35 - 2010-05-14 05:05 - 00000000 ____D C:\ProgramData\Google
2013-11-27 05:19 - 2009-07-14 06:08 - 00032562 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-26 23:07 - 2013-06-03 16:56 - 01556560 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-11-26 23:07 - 2013-01-12 03:31 - 00666708 _____ C:\Windows\system32\perfh005.dat
2013-11-26 23:07 - 2013-01-12 03:31 - 00140114 _____ C:\Windows\system32\perfc005.dat
2013-11-26 23:07 - 2009-07-14 06:13 - 01556560 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-26 18:05 - 2013-11-26 18:03 - 34621208 _____ C:\Users\Ladislav\Downloads\Subzero-Necropolis.rar
2013-11-26 17:46 - 2013-11-26 17:45 - 30482052 _____ C:\Users\Ladislav\Downloads\stažený soubor (1)
2013-11-26 17:36 - 2013-11-26 17:35 - 37997172 _____ C:\Users\Ladislav\Downloads\stažený soubor
2013-11-26 17:32 - 2013-11-26 17:32 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream (3).m3u
2013-11-26 17:29 - 2013-11-26 17:29 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream (2).m3u
2013-11-26 17:21 - 2013-11-26 17:20 - 30952744 _____ C:\Users\Ladislav\Downloads\vlc-setup.exe
2013-11-26 17:17 - 2013-11-26 17:17 - 00002964 _____ C:\Windows\System32\Tasks\{DCF06A89-8AEB-40CD-84B0-988AA3A62102}
2013-11-26 17:16 - 2013-11-26 17:16 - 00002964 _____ C:\Windows\System32\Tasks\{FB74915C-5EE3-4879-88A3-A93C6BCE9F66}
2013-11-26 17:15 - 2013-11-26 17:15 - 00002964 _____ C:\Windows\System32\Tasks\{08855C5F-B9E7-46B5-AA8F-DDFCC7E64A37}
2013-11-26 17:08 - 2013-11-26 17:07 - 22912657 _____ C:\Users\Ladislav\Downloads\vlc-2.0.4-win32.exe
2013-11-26 17:03 - 2009-07-14 05:45 - 00271376 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-25 20:39 - 2013-11-25 20:39 - 00000000 ____D C:\Users\Ladislav\AppData\Local\TV_Online
2013-11-25 20:39 - 2013-01-11 19:08 - 00058016 _____ C:\Users\Ladislav\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-25 20:38 - 2013-11-25 20:38 - 00000000 ____D C:\ProgramData\Caphyon
2013-11-25 20:38 - 2013-11-25 20:38 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-11-25 20:37 - 2013-11-25 20:34 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\TV Online
2013-11-25 20:34 - 2013-11-25 20:33 - 10227527 _____ (TV Online) C:\Users\Ladislav\Downloads\tv-online_1.92.exe
2013-11-25 20:27 - 2013-11-25 20:27 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream (1).m3u
2013-11-25 20:26 - 2013-11-25 20:26 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream.m3u
2013-11-25 20:16 - 2013-11-25 20:16 - 02329256 _____ (Inbox.com, Inc. ) C:\Users\Ladislav\Downloads\TVSetup.exe
2013-11-22 18:58 - 2013-12-02 19:16 - 00025368 _____ C:\Users\Ladislav\Downloads\South.Park.S17E08.HDTV.x264.srt
2013-11-22 18:37 - 2013-12-02 19:16 - 108962372 _____ C:\Users\Ladislav\Downloads\South.Park.S17E08.HDTV.x264-KILLERS.mp4
2013-11-21 18:30 - 2013-11-21 18:30 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-21 18:30 - 2013-11-21 18:30 - 00000000 ____D C:\Program Files\Adblock Plus for IE
2013-11-21 18:27 - 2013-11-21 18:27 - 00000000 ____D C:\Users\Ladislav\Downloads\Adblock plus IE
2013-11-21 18:26 - 2013-11-21 18:26 - 04871141 _____ C:\Users\Ladislav\Downloads\Adblock-plus-IE.rar
2013-11-21 18:14 - 2013-11-21 18:14 - 00819184 _____ (Google Inc.) C:\Users\Ladislav\Downloads\ChromeSetup.exe
2013-11-19 17:24 - 2013-11-19 17:24 - 00029275 _____ C:\Users\Ladislav\Downloads\South.Park.S17E07.HDTV.XviD-AFG.srt
2013-11-19 11:21 - 2013-01-11 22:24 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-18 01:21 - 2013-01-11 20:22 - 00001912 _____ C:\Windows\epplauncher.mif
2013-11-18 01:21 - 2013-01-11 20:22 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-11-18 01:21 - 2013-01-11 20:22 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2013-11-17 14:41 - 2013-11-17 14:02 - 354942838 _____ C:\Users\Ladislav\Downloads\South.Park.S17E07.720p.HDTV.x264-KILLERS.mkv
2013-11-17 14:02 - 2013-11-17 14:02 - 00025709 _____ C:\Users\Ladislav\Downloads\South-Park-S17E06.srt
2013-11-17 13:56 - 2013-11-17 13:36 - 188003264 _____ C:\Users\Ladislav\Downloads\South-Park-S17E06.avi
2013-11-17 13:35 - 2013-11-17 13:35 - 00030491 _____ C:\Users\Ladislav\Downloads\south.park.s17e05.hdtv.x264-2hd.srt
2013-11-17 11:58 - 2013-11-17 11:38 - 180692512 _____ C:\Users\Ladislav\Downloads\South-Park-S17E05.avi
2013-11-17 11:32 - 2013-11-17 11:32 - 00027145 _____ C:\Users\Ladislav\Downloads\South-Park-S17E04.srt
2013-11-17 11:32 - 2013-11-17 11:10 - 204400460 _____ C:\Users\Ladislav\Downloads\South.Park.S17E04.REAL.HDTV.XviD-AFG.avi
2013-11-17 11:07 - 2013-11-17 10:46 - 192015570 _____ C:\Users\Ladislav\Downloads\South.Park.S17E03.HDTV.XviD-AFG.avi
2013-11-17 10:35 - 2013-11-17 10:35 - 00011722 _____ C:\Users\Ladislav\Downloads\1703 (1).zip
2013-11-17 10:29 - 2013-11-17 10:28 - 00012118 _____ C:\Users\Ladislav\Downloads\1704.zip
2013-11-16 20:14 - 2013-11-16 20:14 - 00000000 _____ C:\extensions.sqlite
2013-11-16 09:48 - 2013-11-16 09:44 - 801548288 ____R C:\Users\Ladislav\Downloads\Looper CZ.avi
2013-11-16 09:43 - 2013-11-16 09:43 - 00015836 _____ C:\Users\Ladislav\Downloads\[CzT]Looper_CZ_2012_.torrent
2013-11-13 13:03 - 2013-11-13 13:01 - 00000000 ____D C:\Users\Ladislav\Downloads\Star Trek Do temnoty Star Trek Into Darkness (2013)
2013-11-13 13:01 - 2013-11-13 13:01 - 00011335 _____ C:\Users\Ladislav\Downloads\[CzT]Star_Trek_Do_temnoty_Star_Trek_Into_Darkness_2013_CZ_.torrent

Some content of TEMP:
====================
C:\Users\Ladislav\AppData\Local\Temp\Quarantine.exe
C:\Users\Ladislav\AppData\Local\Temp\vlc-2.1.2-win32.exe
C:\Users\Ladislav\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2013-11-30 01:49

==================== End Of Log ============================

#9 Příspěvek od **vyosek** » 11 pro 2013 22:14

Dejte mi sem prosim tento log C:\Users\Ladislav\Desktop\FRST3.txt

leopold666 · #10 Příspěvek od **leopold666** » 12 pro 2013 14:55

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-12-2013 01
Ran by Ladislav (administrator) on LADISLAV-PC on 11-12-2013 17:21:34
Running from C:\Users\Ladislav\Desktop
Windows 7 Home Premium (X64) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
() C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerEvent.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(BitTorrent Inc.) C:\Users\Ladislav\AppData\Roaming\uTorrent\utorrent.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Ladislav\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10775072 2010-04-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2040352 2010-04-22] (Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [320000 2009-04-09] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [ODDPwr] - C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe [223264 2010-04-22] (Acer Incorporated)
HKLM\...\Run: [mwlDaemon] - C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-04-17] (Egis Technology Inc.)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2107176 2010-03-11] (Synaptics Incorporated)
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [496160 2010-04-23] (Acer Incorporated)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3674320 2013-01-08] (DT Soft Ltd)
MountPoints2: {a006b720-5c1e-11e2-ab1d-c44619b94787} - E:\Setup.exe
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation)
HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [337264 2010-04-17] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [260608 2010-03-09] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-04-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1300560 2010-03-03] (Dritek System Inc.)
HKLM-x32\...\Run: [MDS_Menu] - C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [ArcadeMovieService] - C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe [124136 2010-04-23] (CyberLink Corp.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-28] (AVAST Software)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-01-15] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-01-15] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - 10D242C8AA6E46B6847EC9AF5864CDA9 URL = http://isearch.avg.com/search?cid={A9CE ... 2013-01-18 09:32:09&v=14.2.0.1&pid=avg&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {28CCB0DD-B57C-4B85-A0D6-BF2BAF38B4A1} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Adblock Plus)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Adblock Plus)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

Chrome:
=======
CHR HomePage: https://www.google.cz/
CHR RestoreOnStartup: "https://www.google.com/"
CHR DefaultSearchKeyword: google.cz
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL: {google:baseURL}_/chrome/newtab?{google:RLZ}{google:instantExtendedEnabledParameter}{google:ntpIsThemedParameter}ie={inputEncoding}
CHR Extension: (Google Docs) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (avast! Online Security) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2005.45_0
CHR Extension: (Google Wallet) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Users\Ladislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-28] (AVAST Software)
R2 ePowerSvc; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [820768 2010-04-23] (Acer Incorporated)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-04-17] (Egis Technology Inc.)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 ODDPwrSvc; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [171040 2010-04-22] (Acer Incorporated)
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [244904 2010-02-03] ()
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-30] (Acer Incorporated)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-28] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-28] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-28] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-28] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-01-11] (DT Soft Ltd)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-12-11 17:21 - 2013-12-11 17:22 - 00015884 _____ C:\Users\Ladislav\Desktop\FRST.txt
2013-12-11 17:20 - 2013-12-11 17:20 - 00112640 _____ (forum.viry.cz) C:\Users\Ladislav\Desktop\FRSTLauncher.exe
2013-12-11 17:19 - 2013-12-11 17:19 - 00000000 ____D C:\FRST
2013-12-11 17:17 - 2013-12-11 17:18 - 01928212 _____ (Farbar) C:\Users\Ladislav\Desktop\FRST64.exe
2013-12-11 17:16 - 2013-12-11 17:16 - 00112107 _____ (forum.viry.cz) C:\Users\Ladislav\Downloads\VerzeOS.exe
2013-12-11 14:49 - 2013-12-11 15:00 - 1467640135 ____R C:\Users\Ladislav\Downloads\Thor The Dark World V2 2013 CAM AAC x264-SSDD.mp4
2013-12-11 14:48 - 2013-12-11 14:48 - 00014677 _____ C:\Users\Ladislav\Downloads\[CzT]Thor_Temny_svet_Thor_The_Dark_World_2013_CAM_.torrent
2013-12-11 13:42 - 2013-12-11 13:47 - 00000000 ____D C:\AdwCleaner
2013-12-11 13:42 - 2013-12-11 13:42 - 01226802 _____ C:\Users\Ladislav\Downloads\adwcleaner.exe
2013-12-11 13:33 - 2013-12-11 13:33 - 01034531 _____ (Thisisu) C:\Users\Ladislav\Downloads\JRT.exe
2013-12-11 13:33 - 2013-12-11 13:33 - 00000000 ____D C:\Windows\ERUNT
2013-12-09 22:45 - 2013-12-10 00:35 - 00000000 ____D C:\Users\Ladislav\Documents\BotaniculaSaves
2013-12-09 22:44 - 2013-12-09 22:44 - 00002124 _____ C:\Users\Public\Desktop\Botanicula.lnk
2013-12-09 22:43 - 2013-12-09 22:43 - 00000000 ____D C:\Program Files (x86)\Amanita Design
2013-12-09 22:41 - 2012-08-02 04:31 - 00000000 ____D C:\Users\Ladislav\Downloads\Botanicula (2012 Cz)
2013-12-09 21:59 - 2013-12-09 22:41 - 737338045 _____ C:\Users\Ladislav\Downloads\Botanicula-(2012-Cz).exe
2013-12-09 21:57 - 2013-12-09 21:57 - 00000000 ____D C:\Users\Ladislav\Downloads\Botanicula-SKIDROW
2013-12-09 21:55 - 2013-12-09 21:55 - 00014695 _____ C:\Users\Ladislav\Downloads\[CzT]Botanicula_2012_.torrent
2013-12-09 16:01 - 2013-12-09 16:01 - 00001240 _____ C:\Windows\SysWOW64\PokerRoom Home Game Organizer.log
2013-12-09 16:01 - 2013-12-09 16:01 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerRoom Home Game Organizer
2013-12-09 16:01 - 2013-12-09 16:01 - 00000000 ____D C:\Program Files (x86)\PokerRoom Home Game Organizer
2013-12-09 16:00 - 2013-12-09 16:01 - 01342737 _____ C:\Users\Ladislav\Downloads\homegame_installer.exe
2013-12-09 15:50 - 2013-12-09 15:50 - 00935175 _____ C:\Users\Ladislav\Downloads\RSITx64 (1).exe
2013-12-09 15:46 - 2013-12-09 15:51 - 00000000 ____D C:\Program Files\trend micro
2013-12-09 15:46 - 2013-12-09 15:46 - 00832273 _____ C:\Users\Ladislav\Downloads\RSITx64.exe
2013-12-09 15:45 - 2013-12-09 15:46 - 00000000 ____D C:\rsit
2013-12-09 15:45 - 2013-12-09 15:45 - 00000000 ____D C:\Program Files (x86)\trend micro
2013-12-09 15:44 - 2013-12-09 15:44 - 00781909 _____ C:\Users\Ladislav\Downloads\RSIT.exe
2013-12-09 10:50 - 2013-12-09 10:50 - 00020136 _____ C:\Users\Ladislav\Downloads\[CzT]Closure_2012_.torrent
2013-12-09 10:48 - 2013-12-09 10:54 - 944230400 ____R C:\Users\Ladislav\Downloads\mesto_2010_cz.avi
2013-12-09 10:47 - 2013-12-09 10:47 - 00018559 _____ C:\Users\Ladislav\Downloads\[CzT]Mesto_The_Town_2010_.torrent
2013-12-09 09:48 - 2013-12-09 09:48 - 00003134 _____ C:\Windows\System32\Tasks\{6BA4CF07-4050-479D-8BEE-8B269D67FDC9}
2013-12-08 22:42 - 2013-12-08 22:42 - 00000000 ____D C:\Program Files\Machinarium
2013-12-08 22:19 - 2013-12-08 22:39 - 358766249 _____ C:\Users\Ladislav\Downloads\Machinarium-CZ-Full-Game.exe
2013-12-08 20:42 - 2013-12-08 20:57 - 260282368 _____ C:\Users\Ladislav\Downloads\Kulivočko.iso
2013-12-08 15:04 - 2013-12-08 15:04 - 00001921 _____ C:\Users\Ladislav\Desktop\Samorost2.lnk
2013-12-08 15:04 - 2013-12-08 15:04 - 00000000 ____D C:\Program Files (x86)\Samorost2
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ___HD C:\Users\Ladislav\AppData\Roaming\IFViewer
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ____D C:\Users\Ladislav\Downloads\samorost-1-2-3
2013-12-08 15:00 - 2013-12-08 15:02 - 34871797 _____ C:\Users\Ladislav\Downloads\samorost-1-2-3.zip
2013-12-05 18:46 - 2013-12-05 18:51 - 00000000 ____D C:\Users\Ladislav\Downloads\Kick-Ass 2 (2013) HDRip XviD-MAXSPEED
2013-12-05 18:45 - 2013-12-05 18:45 - 00014765 _____ C:\Users\Ladislav\Downloads\[CzT]Kick_Ass_2_2013_.torrent
2013-12-02 19:16 - 2013-11-22 18:58 - 00025368 _____ C:\Users\Ladislav\Downloads\South.Park.S17E08.HDTV.x264.srt
2013-12-02 19:16 - 2013-11-22 18:37 - 108962372 _____ C:\Users\Ladislav\Downloads\South.Park.S17E08.HDTV.x264-KILLERS.mp4
2013-12-02 18:46 - 2013-12-02 18:58 - 108498743 _____ C:\Users\Ladislav\Downloads\South.Park.S17E08.HDTV.x264-+-CZ-titulky.zip
2013-12-01 11:26 - 2013-12-01 11:29 - 00000000 ____D C:\Users\Ladislav\Downloads\Were the Millers 2013 BRRip XviD AC3-SANTi
2013-12-01 11:25 - 2013-12-01 11:25 - 00018603 _____ C:\Users\Ladislav\Downloads\[CzT]Millerovi_na_tripu_We_re_the_Millers_2013_.torrent
2013-11-29 11:48 - 2013-11-29 11:48 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-11-29 11:48 - 2013-11-29 11:48 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-11-29 11:47 - 2013-11-29 11:47 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Ladislav\Downloads\AdobeAIRInstaller (1).exe
2013-11-29 08:41 - 2013-11-29 09:49 - 1223028065 _____ C:\Users\Ladislav\Downloads\Deftones-Discography-320.rar
2013-11-28 22:42 - 2013-12-09 10:27 - 00007601 _____ C:\Users\Ladislav\AppData\Local\Resmon.ResmonCfg
2013-11-28 17:21 - 2013-11-28 17:28 - 886418846 ____R C:\Users\Ladislav\Downloads\G.I.Joe.Retaliation.avi
2013-11-28 17:21 - 2013-11-28 17:21 - 00017465 _____ C:\Users\Ladislav\Downloads\[CzT]G_I_Joe_2_Odveta_G_I_Joe_Retaliation_2013_CZ_.torrent
2013-11-28 15:41 - 2013-11-28 15:45 - 00000000 ____D C:\Users\Ladislav\Downloads\The Last Days On Mars 2013 HDRIP x264 AC3-TiTAN
2013-11-28 15:40 - 2013-11-28 15:40 - 00016478 _____ C:\Users\Ladislav\Downloads\[CzT]The_Last_Days_On_Mars_2013_.torrent
2013-11-28 14:55 - 2013-11-28 15:01 - 992375592 ____R C:\Users\Ladislav\Downloads\Riddick 3 2013-DVDscr-CZtit-JO.avi
2013-11-28 14:55 - 2013-11-28 14:55 - 00019605 _____ C:\Users\Ladislav\Downloads\[CzT]Riddick_2013_DVDSCR_.torrent
2013-11-28 11:38 - 2013-11-28 11:38 - 00000000 ____D C:\Intel
2013-11-28 11:23 - 2013-11-28 11:23 - 00003704 _____ C:\Windows\System32\Tasks\Java Update Scheduler
2013-11-28 11:14 - 2013-11-28 11:16 - 00000000 ____D C:\ProgramData\AVG
2013-11-28 11:14 - 2013-11-28 11:14 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Ladislav\Downloads\AdobeAIRInstaller.exe
2013-11-28 11:14 - 2013-11-28 11:14 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\AVG
2013-11-28 11:13 - 2013-11-28 11:21 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-11-28 11:12 - 2013-11-28 11:12 - 12850864 _____ (Gretech Corporation) C:\Users\Ladislav\Downloads\GOMPLAYERENSETUP.EXE
2013-11-28 10:53 - 2013-12-11 13:49 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-28 10:53 - 2013-11-28 10:53 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-28 10:53 - 2013-11-28 10:53 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-28 10:53 - 2013-11-28 10:53 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\AVAST Software
2013-11-28 10:49 - 2013-11-28 10:49 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-28 10:48 - 2013-11-28 10:48 - 04733592 _____ (AVAST Software) C:\Users\Ladislav\Downloads\avast_free_antivirus_setup_online.exe
2013-11-28 10:48 - 2013-11-28 10:48 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-28 09:35 - 2013-11-29 09:56 - 00000000 ____D C:\Users\Ladislav\AppData\Local\PokerStars
2013-11-28 09:35 - 2013-11-28 09:35 - 00001065 _____ C:\Users\Public\Desktop\PokerStars.lnk
2013-11-28 09:34 - 2013-11-28 09:35 - 00000000 ____D C:\Program Files (x86)\PokerStars
2013-11-28 09:32 - 2013-11-28 09:33 - 29841944 _____ (PokerStars) C:\Users\Ladislav\Downloads\PokerStarsInstall (1).exe
2013-11-28 09:31 - 2013-11-28 09:32 - 21483554 _____ C:\Users\Ladislav\Downloads\PokerStarsInstall.exe
2013-11-27 18:43 - 2013-11-27 18:43 - 00338472 _____ (Amônétízé Ltd) C:\Users\Ladislav\Downloads\FlashPlayer__4369_i154994756_il14.exe
2013-11-27 17:40 - 2013-12-11 16:45 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-27 17:40 - 2013-12-11 14:01 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-27 17:40 - 2013-12-09 09:40 - 00003952 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-27 17:40 - 2013-12-09 09:40 - 00003700 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-27 17:35 - 2013-11-27 17:35 - 00819184 _____ (Google Inc.) C:\Users\Ladislav\Downloads\ChromeSetup (1).exe
2013-11-26 18:03 - 2013-11-26 18:05 - 34621208 _____ C:\Users\Ladislav\Downloads\Subzero-Necropolis.rar
2013-11-26 17:45 - 2013-11-26 17:46 - 30482052 _____ C:\Users\Ladislav\Downloads\stažený soubor (1)
2013-11-26 17:35 - 2013-11-26 17:36 - 37997172 _____ C:\Users\Ladislav\Downloads\stažený soubor
2013-11-26 17:32 - 2013-11-26 17:32 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream (3).m3u
2013-11-26 17:29 - 2013-11-26 17:29 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream (2).m3u
2013-11-26 17:25 - 2013-12-11 15:14 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\vlc
2013-11-26 17:22 - 2013-12-11 15:13 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-26 17:20 - 2013-11-26 17:21 - 30952744 _____ C:\Users\Ladislav\Downloads\vlc-setup.exe
2013-11-26 17:17 - 2013-11-26 17:17 - 00002964 _____ C:\Windows\System32\Tasks\{DCF06A89-8AEB-40CD-84B0-988AA3A62102}
2013-11-26 17:16 - 2013-11-26 17:16 - 00002964 _____ C:\Windows\System32\Tasks\{FB74915C-5EE3-4879-88A3-A93C6BCE9F66}
2013-11-26 17:15 - 2013-11-26 17:15 - 00002964 _____ C:\Windows\System32\Tasks\{08855C5F-B9E7-46B5-AA8F-DDFCC7E64A37}
2013-11-26 17:07 - 2013-11-26 17:08 - 22912657 _____ C:\Users\Ladislav\Downloads\vlc-2.0.4-win32.exe
2013-11-25 20:39 - 2013-11-25 20:39 - 00000000 ____D C:\Users\Ladislav\AppData\Local\TV_Online
2013-11-25 20:38 - 2013-11-25 20:38 - 00000000 ____D C:\ProgramData\Caphyon
2013-11-25 20:38 - 2013-11-25 20:38 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-11-25 20:34 - 2013-11-25 20:37 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\TV Online
2013-11-25 20:33 - 2013-11-25 20:34 - 10227527 _____ (TV Online) C:\Users\Ladislav\Downloads\tv-online_1.92.exe
2013-11-25 20:27 - 2013-11-25 20:27 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream (1).m3u
2013-11-25 20:26 - 2013-11-25 20:26 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream.m3u
2013-11-25 20:16 - 2013-11-25 20:16 - 02329256 _____ (Inbox.com, Inc. ) C:\Users\Ladislav\Downloads\TVSetup.exe
2013-11-21 18:30 - 2013-11-21 18:30 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-21 18:30 - 2013-11-21 18:30 - 00000000 ____D C:\Program Files\Adblock Plus for IE
2013-11-21 18:27 - 2013-11-21 18:27 - 00000000 ____D C:\Users\Ladislav\Downloads\Adblock plus IE
2013-11-21 18:26 - 2013-11-21 18:26 - 04871141 _____ C:\Users\Ladislav\Downloads\Adblock-plus-IE.rar
2013-11-21 18:14 - 2013-11-21 18:14 - 00819184 _____ (Google Inc.) C:\Users\Ladislav\Downloads\ChromeSetup.exe
2013-11-19 17:24 - 2013-11-19 17:24 - 00029275 _____ C:\Users\Ladislav\Downloads\South.Park.S17E07.HDTV.XviD-AFG.srt
2013-11-17 14:02 - 2013-11-17 14:41 - 354942838 _____ C:\Users\Ladislav\Downloads\South.Park.S17E07.720p.HDTV.x264-KILLERS.mkv
2013-11-17 14:02 - 2013-11-17 14:02 - 00025709 _____ C:\Users\Ladislav\Downloads\South-Park-S17E06.srt
2013-11-17 13:36 - 2013-11-17 13:56 - 188003264 _____ C:\Users\Ladislav\Downloads\South-Park-S17E06.avi
2013-11-17 13:35 - 2013-11-17 13:35 - 00030491 _____ C:\Users\Ladislav\Downloads\south.park.s17e05.hdtv.x264-2hd.srt
2013-11-17 11:38 - 2013-11-17 11:58 - 180692512 _____ C:\Users\Ladislav\Downloads\South-Park-S17E05.avi
2013-11-17 11:32 - 2013-11-17 11:32 - 00027145 _____ C:\Users\Ladislav\Downloads\South-Park-S17E04.srt
2013-11-17 11:10 - 2013-11-17 11:32 - 204400460 _____ C:\Users\Ladislav\Downloads\South.Park.S17E04.REAL.HDTV.XviD-AFG.avi
2013-11-17 10:46 - 2013-11-17 11:07 - 192015570 _____ C:\Users\Ladislav\Downloads\South.Park.S17E03.HDTV.XviD-AFG.avi
2013-11-17 10:35 - 2013-11-17 10:35 - 00011722 _____ C:\Users\Ladislav\Downloads\1703 (1).zip
2013-11-17 10:28 - 2013-11-17 10:29 - 00012118 _____ C:\Users\Ladislav\Downloads\1704.zip
2013-11-16 20:14 - 2013-11-16 20:14 - 00000000 _____ C:\extensions.sqlite
2013-11-16 09:44 - 2013-11-16 09:48 - 801548288 ____R C:\Users\Ladislav\Downloads\Looper CZ.avi
2013-11-16 09:43 - 2013-11-16 09:43 - 00015836 _____ C:\Users\Ladislav\Downloads\[CzT]Looper_CZ_2012_.torrent
2013-11-13 13:01 - 2013-11-13 13:03 - 00000000 ____D C:\Users\Ladislav\Downloads\Star Trek Do temnoty Star Trek Into Darkness (2013)
2013-11-13 13:01 - 2013-11-13 13:01 - 00011335 _____ C:\Users\Ladislav\Downloads\[CzT]Star_Trek_Do_temnoty_Star_Trek_Into_Darkness_2013_CZ_.torrent

==================== One Month Modified Files and Folders =======

2013-12-11 17:22 - 2013-12-11 17:21 - 00015884 _____ C:\Users\Ladislav\Desktop\FRST.txt
2013-12-11 17:20 - 2013-12-11 17:20 - 00112640 _____ (forum.viry.cz) C:\Users\Ladislav\Desktop\FRSTLauncher.exe
2013-12-11 17:19 - 2013-12-11 17:19 - 00000000 ____D C:\FRST
2013-12-11 17:19 - 2013-08-15 11:42 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\uTorrent
2013-12-11 17:18 - 2013-12-11 17:17 - 01928212 _____ (Farbar) C:\Users\Ladislav\Desktop\FRST64.exe
2013-12-11 17:18 - 2013-01-11 18:58 - 01108685 _____ C:\Windows\WindowsUpdate.log
2013-12-11 17:16 - 2013-12-11 17:16 - 00112107 _____ (forum.viry.cz) C:\Users\Ladislav\Downloads\VerzeOS.exe
2013-12-11 17:13 - 2013-01-23 19:46 - 00003994 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{3C980745-0D6E-4E48-927C-D7B6C1B58FBC}
2013-12-11 16:51 - 2013-01-11 20:12 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-11 16:45 - 2013-11-27 17:40 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-11 15:14 - 2013-11-26 17:25 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\vlc
2013-12-11 15:13 - 2013-11-26 17:22 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-12-11 15:10 - 2009-07-14 05:51 - 00106156 _____ C:\Windows\setupact.log
2013-12-11 15:00 - 2013-12-11 14:49 - 1467640135 ____R C:\Users\Ladislav\Downloads\Thor The Dark World V2 2013 CAM AAC x264-SSDD.mp4
2013-12-11 14:51 - 2013-01-11 20:12 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 14:51 - 2013-01-11 20:12 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 14:51 - 2013-01-11 20:12 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 14:48 - 2013-12-11 14:48 - 00014677 _____ C:\Users\Ladislav\Downloads\[CzT]Thor_Temny_svet_Thor_The_Dark_World_2013_CAM_.torrent
2013-12-11 14:08 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-11 14:08 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-11 14:01 - 2013-11-27 17:40 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-11 14:01 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-11 13:49 - 2013-11-28 10:53 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-11 13:47 - 2013-12-11 13:42 - 00000000 ____D C:\AdwCleaner
2013-12-11 13:47 - 2013-01-11 20:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-11 13:42 - 2013-12-11 13:42 - 01226802 _____ C:\Users\Ladislav\Downloads\adwcleaner.exe
2013-12-11 13:33 - 2013-12-11 13:33 - 01034531 _____ (Thisisu) C:\Users\Ladislav\Downloads\JRT.exe
2013-12-11 13:33 - 2013-12-11 13:33 - 00000000 ____D C:\Windows\ERUNT
2013-12-10 00:35 - 2013-12-09 22:45 - 00000000 ____D C:\Users\Ladislav\Documents\BotaniculaSaves
2013-12-09 22:44 - 2013-12-09 22:44 - 00002124 _____ C:\Users\Public\Desktop\Botanicula.lnk
2013-12-09 22:43 - 2013-12-09 22:43 - 00000000 ____D C:\Program Files (x86)\Amanita Design
2013-12-09 22:41 - 2013-12-09 21:59 - 737338045 _____ C:\Users\Ladislav\Downloads\Botanicula-(2012-Cz).exe
2013-12-09 21:57 - 2013-12-09 21:57 - 00000000 ____D C:\Users\Ladislav\Downloads\Botanicula-SKIDROW
2013-12-09 21:55 - 2013-12-09 21:55 - 00014695 _____ C:\Users\Ladislav\Downloads\[CzT]Botanicula_2012_.torrent
2013-12-09 20:36 - 2013-01-11 18:54 - 00052338 _____ C:\Windows\PFRO.log
2013-12-09 16:01 - 2013-12-09 16:01 - 00001240 _____ C:\Windows\SysWOW64\PokerRoom Home Game Organizer.log
2013-12-09 16:01 - 2013-12-09 16:01 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerRoom Home Game Organizer
2013-12-09 16:01 - 2013-12-09 16:01 - 00000000 ____D C:\Program Files (x86)\PokerRoom Home Game Organizer
2013-12-09 16:01 - 2013-12-09 16:00 - 01342737 _____ C:\Users\Ladislav\Downloads\homegame_installer.exe
2013-12-09 15:51 - 2013-12-09 15:46 - 00000000 ____D C:\Program Files\trend micro
2013-12-09 15:50 - 2013-12-09 15:50 - 00935175 _____ C:\Users\Ladislav\Downloads\RSITx64 (1).exe
2013-12-09 15:46 - 2013-12-09 15:46 - 00832273 _____ C:\Users\Ladislav\Downloads\RSITx64.exe
2013-12-09 15:46 - 2013-12-09 15:45 - 00000000 ____D C:\rsit
2013-12-09 15:45 - 2013-12-09 15:45 - 00000000 ____D C:\Program Files (x86)\trend micro
2013-12-09 15:44 - 2013-12-09 15:44 - 00781909 _____ C:\Users\Ladislav\Downloads\RSIT.exe
2013-12-09 10:54 - 2013-12-09 10:48 - 944230400 ____R C:\Users\Ladislav\Downloads\mesto_2010_cz.avi
2013-12-09 10:50 - 2013-12-09 10:50 - 00020136 _____ C:\Users\Ladislav\Downloads\[CzT]Closure_2012_.torrent
2013-12-09 10:47 - 2013-12-09 10:47 - 00018559 _____ C:\Users\Ladislav\Downloads\[CzT]Mesto_The_Town_2010_.torrent
2013-12-09 10:27 - 2013-11-28 22:42 - 00007601 _____ C:\Users\Ladislav\AppData\Local\Resmon.ResmonCfg
2013-12-09 09:49 - 2013-10-16 16:44 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\Seznam.cz
2013-12-09 09:49 - 2013-08-10 22:34 - 00000000 ____D C:\Program Files (x86)\HandyUpdater
2013-12-09 09:48 - 2013-12-09 09:48 - 00003134 _____ C:\Windows\System32\Tasks\{6BA4CF07-4050-479D-8BEE-8B269D67FDC9}
2013-12-09 09:48 - 2013-10-16 16:44 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2013-12-09 09:40 - 2013-11-27 17:40 - 00003952 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-09 09:40 - 2013-11-27 17:40 - 00003700 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-08 22:42 - 2013-12-08 22:42 - 00000000 ____D C:\Program Files\Machinarium
2013-12-08 22:39 - 2013-12-08 22:19 - 358766249 _____ C:\Users\Ladislav\Downloads\Machinarium-CZ-Full-Game.exe
2013-12-08 20:57 - 2013-12-08 20:42 - 260282368 _____ C:\Users\Ladislav\Downloads\Kulivočko.iso
2013-12-08 15:04 - 2013-12-08 15:04 - 00001921 _____ C:\Users\Ladislav\Desktop\Samorost2.lnk
2013-12-08 15:04 - 2013-12-08 15:04 - 00000000 ____D C:\Program Files (x86)\Samorost2
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ___HD C:\Users\Ladislav\AppData\Roaming\IFViewer
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ____D C:\Users\Ladislav\Downloads\samorost-1-2-3
2013-12-08 15:02 - 2013-12-08 15:00 - 34871797 _____ C:\Users\Ladislav\Downloads\samorost-1-2-3.zip
2013-12-05 18:51 - 2013-12-05 18:46 - 00000000 ____D C:\Users\Ladislav\Downloads\Kick-Ass 2 (2013) HDRip XviD-MAXSPEED
2013-12-05 18:45 - 2013-12-05 18:45 - 00014765 _____ C:\Users\Ladislav\Downloads\[CzT]Kick_Ass_2_2013_.torrent
2013-12-04 14:20 - 2013-06-03 16:57 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\SoftGrid Client
2013-12-02 18:58 - 2013-12-02 18:46 - 108498743 _____ C:\Users\Ladislav\Downloads\South.Park.S17E08.HDTV.x264-+-CZ-titulky.zip
2013-12-01 11:29 - 2013-12-01 11:26 - 00000000 ____D C:\Users\Ladislav\Downloads\Were the Millers 2013 BRRip XviD AC3-SANTi
2013-12-01 11:25 - 2013-12-01 11:25 - 00018603 _____ C:\Users\Ladislav\Downloads\[CzT]Millerovi_na_tripu_We_re_the_Millers_2013_.torrent
2013-11-29 11:48 - 2013-11-29 11:48 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-11-29 11:48 - 2013-11-29 11:48 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-11-29 11:48 - 2013-01-11 19:58 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\Adobe
2013-11-29 11:48 - 2010-05-14 05:10 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-11-29 11:47 - 2013-11-29 11:47 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Ladislav\Downloads\AdobeAIRInstaller (1).exe
2013-11-29 11:47 - 2013-01-13 21:05 - 00000000 ____D C:\Users\Ladislav\AppData\Local\Adobe
2013-11-29 09:56 - 2013-11-28 09:35 - 00000000 ____D C:\Users\Ladislav\AppData\Local\PokerStars
2013-11-29 09:54 - 2011-01-15 12:35 - 00000000 ____D C:\Mp3
2013-11-29 09:49 - 2013-11-29 08:41 - 1223028065 _____ C:\Users\Ladislav\Downloads\Deftones-Discography-320.rar
2013-11-28 17:28 - 2013-11-28 17:21 - 886418846 ____R C:\Users\Ladislav\Downloads\G.I.Joe.Retaliation.avi
2013-11-28 17:21 - 2013-11-28 17:21 - 00017465 _____ C:\Users\Ladislav\Downloads\[CzT]G_I_Joe_2_Odveta_G_I_Joe_Retaliation_2013_CZ_.torrent
2013-11-28 15:45 - 2013-11-28 15:41 - 00000000 ____D C:\Users\Ladislav\Downloads\The Last Days On Mars 2013 HDRIP x264 AC3-TiTAN
2013-11-28 15:40 - 2013-11-28 15:40 - 00016478 _____ C:\Users\Ladislav\Downloads\[CzT]The_Last_Days_On_Mars_2013_.torrent
2013-11-28 15:01 - 2013-11-28 14:55 - 992375592 ____R C:\Users\Ladislav\Downloads\Riddick 3 2013-DVDscr-CZtit-JO.avi
2013-11-28 14:55 - 2013-11-28 14:55 - 00019605 _____ C:\Users\Ladislav\Downloads\[CzT]Riddick_2013_DVDSCR_.torrent
2013-11-28 11:38 - 2013-11-28 11:38 - 00000000 ____D C:\Intel
2013-11-28 11:23 - 2013-11-28 11:23 - 00003704 _____ C:\Windows\System32\Tasks\Java Update Scheduler
2013-11-28 11:21 - 2013-11-28 11:13 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-11-28 11:16 - 2013-11-28 11:14 - 00000000 ____D C:\ProgramData\AVG
2013-11-28 11:14 - 2013-11-28 11:14 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Ladislav\Downloads\AdobeAIRInstaller.exe
2013-11-28 11:14 - 2013-11-28 11:14 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\AVG
2013-11-28 11:13 - 2013-01-18 09:32 - 00001213 _____ C:\Users\Ladislav\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2013-11-28 11:12 - 2013-11-28 11:12 - 12850864 _____ (Gretech Corporation) C:\Users\Ladislav\Downloads\GOMPLAYERENSETUP.EXE
2013-11-28 10:53 - 2013-11-28 10:53 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-28 10:53 - 2013-11-28 10:53 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-28 10:53 - 2013-11-28 10:53 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-28 10:53 - 2013-11-28 10:53 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\AVAST Software
2013-11-28 10:49 - 2013-11-28 10:49 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-28 10:48 - 2013-11-28 10:48 - 04733592 _____ (AVAST Software) C:\Users\Ladislav\Downloads\avast_free_antivirus_setup_online.exe
2013-11-28 10:48 - 2013-11-28 10:48 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-28 09:35 - 2013-11-28 09:35 - 00001065 _____ C:\Users\Public\Desktop\PokerStars.lnk
2013-11-28 09:35 - 2013-11-28 09:34 - 00000000 ____D C:\Program Files (x86)\PokerStars
2013-11-28 09:33 - 2013-11-28 09:32 - 29841944 _____ (PokerStars) C:\Users\Ladislav\Downloads\PokerStarsInstall (1).exe
2013-11-28 09:32 - 2013-11-28 09:31 - 21483554 _____ C:\Users\Ladislav\Downloads\PokerStarsInstall.exe
2013-11-27 22:23 - 2010-05-14 05:05 - 00000000 ____D C:\Program Files\Google
2013-11-27 22:23 - 2010-05-14 05:05 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-27 18:43 - 2013-11-27 18:43 - 00338472 _____ (Amônétízé Ltd) C:\Users\Ladislav\Downloads\FlashPlayer__4369_i154994756_il14.exe
2013-11-27 17:35 - 2013-11-27 17:35 - 00819184 _____ (Google Inc.) C:\Users\Ladislav\Downloads\ChromeSetup (1).exe
2013-11-27 17:35 - 2013-01-11 19:58 - 00000000 ____D C:\Users\Ladislav\AppData\Local\Google
2013-11-27 17:35 - 2010-05-14 05:05 - 00000000 ____D C:\ProgramData\Google
2013-11-27 05:19 - 2009-07-14 06:08 - 00032562 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-26 23:07 - 2013-06-03 16:56 - 01556560 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-11-26 23:07 - 2013-01-12 03:31 - 00666708 _____ C:\Windows\system32\perfh005.dat
2013-11-26 23:07 - 2013-01-12 03:31 - 00140114 _____ C:\Windows\system32\perfc005.dat
2013-11-26 23:07 - 2009-07-14 06:13 - 01556560 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-26 18:05 - 2013-11-26 18:03 - 34621208 _____ C:\Users\Ladislav\Downloads\Subzero-Necropolis.rar
2013-11-26 17:46 - 2013-11-26 17:45 - 30482052 _____ C:\Users\Ladislav\Downloads\stažený soubor (1)
2013-11-26 17:36 - 2013-11-26 17:35 - 37997172 _____ C:\Users\Ladislav\Downloads\stažený soubor
2013-11-26 17:32 - 2013-11-26 17:32 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream (3).m3u
2013-11-26 17:29 - 2013-11-26 17:29 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream (2).m3u
2013-11-26 17:21 - 2013-11-26 17:20 - 30952744 _____ C:\Users\Ladislav\Downloads\vlc-setup.exe
2013-11-26 17:17 - 2013-11-26 17:17 - 00002964 _____ C:\Windows\System32\Tasks\{DCF06A89-8AEB-40CD-84B0-988AA3A62102}
2013-11-26 17:16 - 2013-11-26 17:16 - 00002964 _____ C:\Windows\System32\Tasks\{FB74915C-5EE3-4879-88A3-A93C6BCE9F66}
2013-11-26 17:15 - 2013-11-26 17:15 - 00002964 _____ C:\Windows\System32\Tasks\{08855C5F-B9E7-46B5-AA8F-DDFCC7E64A37}
2013-11-26 17:08 - 2013-11-26 17:07 - 22912657 _____ C:\Users\Ladislav\Downloads\vlc-2.0.4-win32.exe
2013-11-26 17:03 - 2009-07-14 05:45 - 00271376 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-25 20:39 - 2013-11-25 20:39 - 00000000 ____D C:\Users\Ladislav\AppData\Local\TV_Online
2013-11-25 20:39 - 2013-01-11 19:08 - 00058016 _____ C:\Users\Ladislav\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-25 20:38 - 2013-11-25 20:38 - 00000000 ____D C:\ProgramData\Caphyon
2013-11-25 20:38 - 2013-11-25 20:38 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-11-25 20:37 - 2013-11-25 20:34 - 00000000 ____D C:\Users\Ladislav\AppData\Roaming\TV Online
2013-11-25 20:34 - 2013-11-25 20:33 - 10227527 _____ (TV Online) C:\Users\Ladislav\Downloads\tv-online_1.92.exe
2013-11-25 20:27 - 2013-11-25 20:27 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream (1).m3u
2013-11-25 20:26 - 2013-11-25 20:26 - 00000585 _____ C:\Users\Ladislav\Downloads\vlc-stream.m3u
2013-11-25 20:16 - 2013-11-25 20:16 - 02329256 _____ (Inbox.com, Inc. ) C:\Users\Ladislav\Downloads\TVSetup.exe
2013-11-22 18:58 - 2013-12-02 19:16 - 00025368 _____ C:\Users\Ladislav\Downloads\South.Park.S17E08.HDTV.x264.srt
2013-11-22 18:37 - 2013-12-02 19:16 - 108962372 _____ C:\Users\Ladislav\Downloads\South.Park.S17E08.HDTV.x264-KILLERS.mp4
2013-11-21 18:30 - 2013-11-21 18:30 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-21 18:30 - 2013-11-21 18:30 - 00000000 ____D C:\Program Files\Adblock Plus for IE
2013-11-21 18:27 - 2013-11-21 18:27 - 00000000 ____D C:\Users\Ladislav\Downloads\Adblock plus IE
2013-11-21 18:26 - 2013-11-21 18:26 - 04871141 _____ C:\Users\Ladislav\Downloads\Adblock-plus-IE.rar
2013-11-21 18:14 - 2013-11-21 18:14 - 00819184 _____ (Google Inc.) C:\Users\Ladislav\Downloads\ChromeSetup.exe
2013-11-19 17:24 - 2013-11-19 17:24 - 00029275 _____ C:\Users\Ladislav\Downloads\South.Park.S17E07.HDTV.XviD-AFG.srt
2013-11-19 11:21 - 2013-01-11 22:24 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-18 01:21 - 2013-01-11 20:22 - 00001912 _____ C:\Windows\epplauncher.mif
2013-11-18 01:21 - 2013-01-11 20:22 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-11-18 01:21 - 2013-01-11 20:22 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2013-11-17 14:41 - 2013-11-17 14:02 - 354942838 _____ C:\Users\Ladislav\Downloads\South.Park.S17E07.720p.HDTV.x264-KILLERS.mkv
2013-11-17 14:02 - 2013-11-17 14:02 - 00025709 _____ C:\Users\Ladislav\Downloads\South-Park-S17E06.srt
2013-11-17 13:56 - 2013-11-17 13:36 - 188003264 _____ C:\Users\Ladislav\Downloads\South-Park-S17E06.avi
2013-11-17 13:35 - 2013-11-17 13:35 - 00030491 _____ C:\Users\Ladislav\Downloads\south.park.s17e05.hdtv.x264-2hd.srt
2013-11-17 11:58 - 2013-11-17 11:38 - 180692512 _____ C:\Users\Ladislav\Downloads\South-Park-S17E05.avi
2013-11-17 11:32 - 2013-11-17 11:32 - 00027145 _____ C:\Users\Ladislav\Downloads\South-Park-S17E04.srt
2013-11-17 11:32 - 2013-11-17 11:10 - 204400460 _____ C:\Users\Ladislav\Downloads\South.Park.S17E04.REAL.HDTV.XviD-AFG.avi
2013-11-17 11:07 - 2013-11-17 10:46 - 192015570 _____ C:\Users\Ladislav\Downloads\South.Park.S17E03.HDTV.XviD-AFG.avi
2013-11-17 10:35 - 2013-11-17 10:35 - 00011722 _____ C:\Users\Ladislav\Downloads\1703 (1).zip
2013-11-17 10:29 - 2013-11-17 10:28 - 00012118 _____ C:\Users\Ladislav\Downloads\1704.zip
2013-11-16 20:14 - 2013-11-16 20:14 - 00000000 _____ C:\extensions.sqlite
2013-11-16 09:48 - 2013-11-16 09:44 - 801548288 ____R C:\Users\Ladislav\Downloads\Looper CZ.avi
2013-11-16 09:43 - 2013-11-16 09:43 - 00015836 _____ C:\Users\Ladislav\Downloads\[CzT]Looper_CZ_2012_.torrent
2013-11-13 13:03 - 2013-11-13 13:01 - 00000000 ____D C:\Users\Ladislav\Downloads\Star Trek Do temnoty Star Trek Into Darkness (2013)
2013-11-13 13:01 - 2013-11-13 13:01 - 00011335 _____ C:\Users\Ladislav\Downloads\[CzT]Star_Trek_Do_temnoty_Star_Trek_Into_Darkness_2013_CZ_.torrent

Some content of TEMP:
====================
C:\Users\Ladislav\AppData\Local\Temp\Quarantine.exe
C:\Users\Ladislav\AppData\Local\Temp\vlc-2.1.2-win32.exe
C:\Users\Ladislav\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2013-11-30 01:49

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Acer) (Fixed) (Total:685.54 GB) (Free:507.61 GB) NTFS
Drive e: (Botanicula) (CDROM) (Total:0.69 GB) (Free:0 GB) CDFS

Available physical RAM: 2020.8 MB
Total physical RAM: 3766.69 MB
Percentage of memory in use: 46%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: 43216F2B)
Partition 1: (Not Active) - (Size=13 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=686 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Ladislav\Desktop" je 6 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr
~"C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM
C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sweetpacks Communicator
C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg
"C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [x]

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#11 Příspěvek od **vyosek** » 13 pro 2013 06:39

Omlouvam se, nejak jsem ted nestihal

Mate tam dva antiviry - MSE a Avast - jeden z nich musi pryc jinak bude dochazet ke kolizi

Tvorba fixlistu pro FRST

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

Start
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3674320 2013-01-08] (DT Soft Ltd)
MountPoints2: {a006b720-5c1e-11e2-ab1d-c44619b94787} - E:\Setup.exe
HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [MDS_Menu] - C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
earchScopes: HKCU - 10D242C8AA6E46B6847EC9AF5864CDA9 URL = http://isearch.avg.com/search?cid={A9CEF26B-2431-4A92-8907-FE53A3E55A60}&mid=d6847b8f575847d0864bb1a22fb2dba1-2ef194b52e7a393046ce81b5db6983e924b0614d&lang=cs&ds=gm011&pr=sa&d=2013-01-18 09:32:09&v=14.2.0.1&pid=avg&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {28CCB0DD-B57C-4B85-A0D6-BF2BAF38B4A1} URL = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File

DisableService: RichVideo

2013-12-11 17:24 - 2013-12-11 17:24 - 00029696 _____ C:\Users\Ladislav\AppData\Local\MSGBOX.EXE
2013-12-11 17:24 - 2013-12-11 17:24 - 00015327 _____ C:\Users\Ladislav\Desktop\LM.bat
2013-12-11 17:23 - 2013-12-11 17:24 - 00015884 _____ C:\Users\Ladislav\Desktop\FRST.txt
2013-12-11 17:23 - 2013-12-11 17:23 - 00052158 _____ C:\Users\Ladislav\Desktop\FRST3.txt
2013-12-11 17:20 - 2013-12-11 17:20 - 00112640 _____ (forum.viry.cz) C:\Users\Ladislav\Desktop\FRSTLauncher.exe
2013-12-11 17:16 - 2013-12-11 17:16 - 00112107 _____ (forum.viry.cz) C:\Users\Ladislav\Downloads\VerzeOS.exe
C:\Program Files (x86)\SweetIM
C:\Users\Ladislav\AppData\Local\Temp\Quarantine.exe
C:\Users\Ladislav\AppData\Local\Temp\vlc-2.1.2-win32.exe
C:\Users\Ladislav\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sweetpacks Communicator" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg" /f

Hosts:
CMD: shutdown /r /f /t 2

End

Ulozte vytvoreny TXT jako fixlist.txt
Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

Kliknete na Fix
Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

leopold666 · #12 Příspěvek od **leopold666** » 13 pro 2013 14:41

néé v pořádku nic se nestalo,chápu že tu nemužete být 24 hodin denně

leopold666 · #13 Příspěvek od **leopold666** » 13 pro 2013 14:41

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-12-2013 01
Ran by Ladislav at 2013-12-13 14:29:10 Run:1
Running from C:\Users\Ladislav\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3674320 2013-01-08] (DT Soft Ltd)
MountPoints2: {a006b720-5c1e-11e2-ab1d-c44619b94787} - E:\Setup.exe
HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [MDS_Menu] - C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t7751k49o
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
earchScopes: HKCU - 10D242C8AA6E46B6847EC9AF5864CDA9 URL = http://isearch.avg.com/search?cid={A9CE ... 2013-01-18 09:32:09&v=14.2.0.1&pid=avg&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {28CCB0DD-B57C-4B85-A0D6-BF2BAF38B4A1} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File

DisableService: RichVideo

2013-12-11 17:24 - 2013-12-11 17:24 - 00029696 _____ C:\Users\Ladislav\AppData\Local\MSGBOX.EXE
2013-12-11 17:24 - 2013-12-11 17:24 - 00015327 _____ C:\Users\Ladislav\Desktop\LM.bat
2013-12-11 17:23 - 2013-12-11 17:24 - 00015884 _____ C:\Users\Ladislav\Desktop\FRST.txt
2013-12-11 17:23 - 2013-12-11 17:23 - 00052158 _____ C:\Users\Ladislav\Desktop\FRST3.txt
2013-12-11 17:20 - 2013-12-11 17:20 - 00112640 _____ (forum.viry.cz) C:\Users\Ladislav\Desktop\FRSTLauncher.exe
2013-12-11 17:16 - 2013-12-11 17:16 - 00112107 _____ (forum.viry.cz) C:\Users\Ladislav\Downloads\VerzeOS.exe
C:\Program Files (x86)\SweetIM
C:\Users\Ladislav\AppData\Local\Temp\Quarantine.exe
C:\Users\Ladislav\AppData\Local\Temp\vlc-2.1.2-win32.exe
C:\Users\Ladislav\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sweetpacks Communicator" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg" /f

Hosts:
CMD: shutdown /r /f /t 2

End
*****************

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a006b720-5c1e-11e2-ab1d-c44619b94787} => Key deleted successfully.
HKCR\CLSID\{a006b720-5c1e-11e2-ab1d-c44619b94787} => Key not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\EgisUpdate => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\EgisTecPMMUpdate => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\MDS_Menu => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
Default URLSearchHook was restored successfully .
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{28CCB0DD-B57C-4B85-A0D6-BF2BAF38B4A1} => Key deleted successfully.
HKCR\CLSID\{28CCB0DD-B57C-4B85-A0D6-BF2BAF38B4A1} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Value deleted successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Key not found.
RichVideo service was disabled
C:\Users\Ladislav\AppData\Local\MSGBOX.EXE => Moved successfully.
"C:\Users\Ladislav\Desktop\LM.bat" => File/Directory not found.
C:\Users\Ladislav\Desktop\FRST.txt => Moved successfully.
C:\Users\Ladislav\Desktop\FRST3.txt => Moved successfully.
"C:\Users\Ladislav\Desktop\FRSTLauncher.exe" => File/Directory not found.
C:\Users\Ladislav\Downloads\VerzeOS.exe => Moved successfully.
"C:\Program Files (x86)\SweetIM" => File/Directory not found.
C:\Users\Ladislav\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\Ladislav\AppData\Local\Temp\vlc-2.1.2-win32.exe => Moved successfully.
C:\Users\Ladislav\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.

========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr" /f =========

Operace byla dokonźena ŁspŘçnŘ.

========= End of Reg: =========

========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM" /f =========

Operace byla dokonźena ŁspŘçnŘ.

========= End of Reg: =========

========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sweetpacks Communicator" /f =========

Operace byla dokonźena ŁspŘçnŘ.

========= End of Reg: =========

========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg" /f =========

Operace byla dokonźena ŁspŘçnŘ.

========= End of Reg: =========

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========

========= End of CMD: =========

==== End of Fixlog ====

#14 Příspěvek od **vyosek** » 14 pro 2013 06:36

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

leopold666 · #15 Příspěvek od **leopold666** » 14 pro 2013 09:54

Tak jsem udělal vše co jste napsal.Vytížení RAMky kleslo z 35 na 26 procent,jsem vám moc vděčný,ale nešlo by to ještě nějak stáhnout dolů?

VIRY.CZ

Problém s RAM pamětí

Problém s RAM pamětí

Re: Problém s RAM pamětí

Re: Problém s RAM pamětí

Re: Problém s RAM pamětí

Re: Problém s RAM pamětí

Re: Problém s RAM pamětí

Re: Problém s RAM pamětí

Re: Problém s RAM pamětí

Re: Problém s RAM pamětí

Re: Problém s RAM pamětí

Re: Problém s RAM pamětí

Re: Problém s RAM pamětí

Re: Problém s RAM pamětí

Re: Problém s RAM pamětí

Re: Problém s RAM pamětí