VIRY.CZ

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-01-2014 01
Ran by JAKUB (administrator) on JAKUB-HP on 29-01-2014 19:32:20
Running from C:\Users\JAKUB\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Fork Ltd.) C:\Prey\platform\windows\cronsvc.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2014-01-11] (AVAST Software)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3813200 2014-01-23] (LogMeIn Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\Default\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Before =
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page Before = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL =
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 78.157.167.7

FireFox:
========
FF ProfilePath: C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default
FF NetworkProxy: "type",
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npnxgameEU.dll (Nexon)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\JAKUB\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\JAKUB\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\JAKUB\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: electronicarts.com/GameFacePlugin - C:\Users\JAKUB\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll (Electronic Arts)
FF Plugin ProgramFiles/Appdata: C:\Users\JAKUB\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\JAKUB\AppData\Roaming\mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin ProgramFiles/Appdata: C:\Users\JAKUB\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
FF Extension: Seznam lištička - C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2013-12-14]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-06-28]
FF Extension: Hotspot Shield Extension - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com [2013-12-14]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR HomePage: hxxp://www.seznam.cz/
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\pdf.dll ()
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (AdobeExManDetect) - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
CHR Plugin: (AdobeAAMDetect) - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Nexon Game Controller) - C:\ProgramData\NexonEU\NGM\npnxgameEU.dll (Nexon)
CHR Plugin: (Unity Player) - C:\Users\JAKUB\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Game Face Plugin) - C:\Users\JAKUB\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll (Electronic Arts)
CHR Plugin: (Google Talk Plugin) - C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
CHR Extension: (Dokumenty Google) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-23]
CHR Extension: (Disk Google) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-23]
CHR Extension: (YouTube) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-23]
CHR Extension: (Vyhledávání Google) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-23]
CHR Extension: (Lamborghini Sesto Elemento Theme) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb [2014-01-23]
CHR Extension: (Skype Click to Call) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-01-23]
CHR Extension: (Peněženka Google) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-23]
CHR Extension: (Gmail) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-23]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-08-14]

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-04-29] (Advanced Micro Devices, Inc.)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-05-09] (Atheros)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-11] (AVAST Software)
R2 CronService; C:\Prey\platform\windows\cronsvc.exe [23552 2013-05-08] (Fork Ltd.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-12-13] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1127448 2011-02-01] (PDF Complete Inc)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-11-23] (Realtek Semiconductor)

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
S3 AR5416; C:\Windows\System32\DRIVERS\athwx.sys [2793568 2011-02-25] (Atheros Communications, Inc.)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-11] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2014-01-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-01-11] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2014-01-11] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2014-01-11] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [79672 2014-01-11] (AVAST Software)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [44640 2014-01-11] (The OpenVPN Project)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-11] ()
S3 atillk64; No ImagePath
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-05-29] (DT Soft Ltd)
S3 EagleX64; No ImagePath
S3 GDPkIcpt; No ImagePath
R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [41704 2012-07-24] (AnchorFree Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [31136 2013-10-17] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 RTCore64; C:\Program Files (x86)\RMClock\RTCore64.sys [14352 2008-09-08] ()
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2013-09-14] ()
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-11-13] (Anchorfree Inc.)
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-11-13] (OpenLibSys.org)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [x]
S3 GPU-Z; \??\C:\Users\JAKUB\AppData\Local\Temp\GPU-Z.sys [x]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-01-29 19:32 - 2014-01-29 19:33 - 00018500 _____ C:\Users\JAKUB\Desktop\FRST.txt
2014-01-29 19:32 - 2014-01-29 19:32 - 00000000 ____D C:\FRST
2014-01-29 19:31 - 2014-01-29 19:31 - 02079744 _____ (Farbar) C:\Users\JAKUB\Desktop\FRST64.exe
2014-01-28 19:11 - 2014-01-28 19:11 - 00000000 ____D C:\Users\JAKUB\AppData\Local\SKIDROW
2014-01-28 19:10 - 2014-01-28 19:10 - 00000000 ____D C:\Users\JAKUB\AppData\Local\2K Games
2014-01-28 19:04 - 2014-01-28 19:04 - 00001083 _____ C:\Users\Public\Desktop\Mafia II Kompletní Edice.lnk
2014-01-28 15:36 - 2014-01-29 14:20 - 00000019 _____ C:\Users\JAKUB\Desktop\SOUTĚŽ - DOUPĚ.txt
2014-01-28 14:09 - 2014-01-28 14:09 - 00006416 _____ C:\Windows\system32\PerfStringBackup.TMP
2014-01-27 16:16 - 2014-01-27 16:16 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\hpqLog
2014-01-27 14:26 - 2014-01-27 14:28 - 00000000 ____D C:\Users\JAKUB\Downloads\Tom Clancy's Splinter Cell Conviction CZ
2014-01-27 14:22 - 2014-01-27 14:24 - 00000000 ____D C:\Users\JAKUB\Downloads\Mafia II - Kompletní Edice (CZ) (2010)
2014-01-27 14:20 - 2014-01-27 14:24 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Ubisoft Game Launcher
2014-01-26 21:45 - 2014-01-26 21:45 - 00000000 ____D C:\Users\JAKUB\AppData\Local\storage
2014-01-26 21:31 - 2014-01-26 22:10 - 00035026 _____ C:\Windows\DirectX.log
2014-01-26 13:30 - 2014-01-29 18:58 - 00281726 _____ C:\Windows\WindowsUpdate.log
2014-01-26 13:27 - 2014-01-29 14:27 - 00001070 _____ C:\Windows\setupact.log
2014-01-26 13:27 - 2014-01-26 13:27 - 00000000 _____ C:\Windows\setuperr.log
2014-01-26 13:22 - 2014-01-26 13:22 - 00085392 _____ C:\Users\JAKUB\Desktop\cc_20140126_132239.reg
2014-01-25 21:20 - 2014-01-26 20:59 - 4020043776 _____ C:\Users\JAKUB\Downloads\sr-tcscc.iso
2014-01-25 21:10 - 2014-01-25 21:10 - 00000000 ____D C:\Users\JAKUB\AppData\Local\VirtualStore
2014-01-25 17:50 - 2014-01-26 21:10 - 00000000 ____D C:\Users\JAKUB\Downloads\Test Drive Unlimited 2
2014-01-25 13:16 - 2014-01-25 13:16 - 00002886 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_Administrator
2014-01-25 13:16 - 2014-01-25 13:16 - 00001216 _____ C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2014-01-25 13:16 - 2014-01-25 13:16 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\ProductData
2014-01-25 13:16 - 2014-01-25 13:16 - 00000000 ____D C:\Program Files (x86)\IObit
2014-01-25 12:02 - 2014-01-25 12:42 - 00000000 ____D C:\Users\JAKUB\Downloads\Car.Mechanic.Simulator.2014 [PC] - Full.Game-SKIDROW
2014-01-25 12:00 - 2014-01-25 13:32 - 00000000 ____D C:\Users\JAKUB\Downloads\Car Mechanic Simulator 2014[Full PC Game Complete Version Full With Crack]-RELOADED
2014-01-25 11:57 - 2014-01-25 11:57 - 00000931 _____ C:\Users\JAKUB\Desktop\µTorrent.lnk
2014-01-25 11:57 - 2014-01-25 11:57 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2014-01-25 11:54 - 2014-01-25 11:54 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Opera
2014-01-24 14:12 - 2014-01-24 14:12 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Apple
2014-01-24 14:03 - 2014-01-29 14:29 - 00000000 ____D C:\Users\JAKUB\AppData\Local\LogMeIn Hamachi
2014-01-24 14:03 - 2014-01-24 14:03 - 00000000 ____D C:\Users\JAKUB\AppData\Local\LogMeIn
2014-01-23 20:51 - 2014-01-23 20:51 - 00388608 _____ (Trend Micro Inc.) C:\Users\JAKUB\Desktop\hijackthis.exe
2014-01-23 16:10 - 2014-01-23 16:10 - 00158928 _____ C:\Users\JAKUB\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-23 14:37 - 2014-01-23 14:37 - 00002219 _____ C:\Users\JAKUB\Desktop\Google Chrome.lnk
2014-01-23 14:37 - 2014-01-23 14:37 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-01-23 14:27 - 2014-01-29 14:15 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Adobe
2014-01-23 14:12 - 2014-01-25 09:30 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player
2014-01-19 16:12 - 2014-01-19 16:12 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-01-19 10:03 - 2014-01-19 10:04 - 00000000 ____D C:\Users\Public\Documents\GTA San Andreas User Files
2014-01-19 10:02 - 2014-01-19 10:02 - 00000000 ____D C:\Users\JAKUB\Documents\GTA San Andreas User Files
2014-01-18 22:23 - 2013-04-23 04:05 - 00000184 _____ C:\Users\JAKUB\Desktop\Dxtory.dxtorylic
2014-01-18 22:23 - 2013-02-15 22:44 - 08300544 _____ (Dxtory Software) C:\Windows\SysWOW64\DxtoryCodec.dll
2014-01-18 22:23 - 2013-02-15 22:44 - 08043008 _____ (Dxtory Software) C:\Windows\system32\DxtoryCodec.dll
2014-01-18 21:59 - 2014-01-18 21:59 - 00000952 _____ C:\Users\JAKUB\Desktop\Bandicam.lnk
2014-01-15 15:19 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 15:19 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 15:19 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 15:19 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 15:19 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 15:19 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 15:19 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 15:19 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 15:19 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-11 18:26 - 2014-01-11 18:26 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\AVAST Software
2014-01-11 18:25 - 2014-01-29 14:30 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-11 18:25 - 2014-01-11 18:25 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-11 18:25 - 2014-01-11 18:24 - 01034464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-11 18:25 - 2014-01-11 18:24 - 00422216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-01-11 18:25 - 2014-01-11 18:24 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2014-01-11 18:25 - 2014-01-11 18:24 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-01-11 18:25 - 2014-01-11 18:24 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-11 18:25 - 2014-01-11 18:24 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2014-01-11 18:24 - 2014-01-11 18:24 - 00044640 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\aswTap.sys
2014-01-11 18:24 - 2014-01-11 18:24 - 00043152 ____N (AVAST Software) C:\Windows\avastSS.scr
2014-01-11 08:21 - 2014-01-11 08:21 - 00000000 ____D C:\Program Files\COMODO
2014-01-04 17:40 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-01-04 17:40 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-01-04 17:40 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-01-04 17:40 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-01-04 12:43 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-01-04 12:43 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-01-04 12:43 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-01-04 12:43 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-01-04 12:43 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-01-04 12:43 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-01-04 12:43 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-01-04 12:43 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-01-04 12:43 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-01-04 12:43 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-01-04 12:43 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-01-04 12:43 - 2013-08-05 03:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-01-04 12:43 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-01-04 12:43 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-01-04 12:43 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-01-04 12:43 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-01-04 12:43 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-01-02 19:27 - 2014-01-02 19:27 - 00000000 ____D C:\Users\JAKUB\Desktop\FIFA14
2014-01-02 19:23 - 2014-01-02 19:29 - 00000000 ____D C:\Users\JAKUB\Documents\Plocha
2013-12-30 08:09 - 2013-12-30 08:18 - 00000000 ____D C:\Program Files (x86)\FIFA 14
2013-12-30 08:09 - 2013-12-30 08:09 - 00001143 _____ C:\Program Files (x86)\FIFA 14 – zástupce.lnk

==================== One Month Modified Files and Folders =======

2014-01-29 19:33 - 2014-01-29 19:32 - 00018500 _____ C:\Users\JAKUB\Desktop\FRST.txt
2014-01-29 19:32 - 2014-01-29 19:32 - 00000000 ____D C:\FRST
2014-01-29 19:31 - 2014-01-29 19:31 - 02079744 _____ (Farbar) C:\Users\JAKUB\Desktop\FRST64.exe
2014-01-29 19:24 - 2013-02-19 17:34 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Skype
2014-01-29 19:03 - 2009-07-14 05:45 - 00032064 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-29 19:03 - 2009-07-14 05:45 - 00032064 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-29 18:58 - 2014-01-26 13:30 - 00281726 _____ C:\Windows\WindowsUpdate.log
2014-01-29 18:54 - 2013-10-06 10:01 - 00000029 _____ C:\Windows\SysWOW64\TempWmicBatchFile.bat
2014-01-29 17:24 - 2013-08-20 13:11 - 00000234 _____ C:\Users\JAKUB\Desktop\sadasda.txt
2014-01-29 14:30 - 2014-01-11 18:25 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-29 14:29 - 2014-01-24 14:03 - 00000000 ____D C:\Users\JAKUB\AppData\Local\LogMeIn Hamachi
2014-01-29 14:28 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-29 14:27 - 2014-01-26 13:27 - 00001070 _____ C:\Windows\setupact.log
2014-01-29 14:20 - 2014-01-28 15:36 - 00000019 _____ C:\Users\JAKUB\Desktop\SOUTĚŽ - DOUPĚ.txt
2014-01-29 14:15 - 2014-01-23 14:27 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Adobe
2014-01-28 22:07 - 2013-02-19 17:44 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\uTorrent
2014-01-28 19:11 - 2014-01-28 19:11 - 00000000 ____D C:\Users\JAKUB\AppData\Local\SKIDROW
2014-01-28 19:10 - 2014-01-28 19:10 - 00000000 ____D C:\Users\JAKUB\AppData\Local\2K Games
2014-01-28 19:04 - 2014-01-28 19:04 - 00001083 _____ C:\Users\Public\Desktop\Mafia II Kompletní Edice.lnk
2014-01-28 19:04 - 2013-03-08 16:54 - 00000000 ____D C:\Program Files (x86)\Mafia II Kompletní Edice
2014-01-28 14:54 - 2013-05-19 18:14 - 05184272 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-28 14:09 - 2014-01-28 14:09 - 00006416 _____ C:\Windows\system32\PerfStringBackup.TMP
2014-01-27 16:16 - 2014-01-27 16:16 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\hpqLog
2014-01-27 16:16 - 2011-08-03 10:53 - 00000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard
2014-01-27 16:16 - 2011-08-03 10:24 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2014-01-27 16:15 - 2011-08-03 10:38 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-27 16:15 - 2011-02-10 20:23 - 00000000 ____D C:\SWSetup
2014-01-27 14:28 - 2014-01-27 14:26 - 00000000 ____D C:\Users\JAKUB\Downloads\Tom Clancy's Splinter Cell Conviction CZ
2014-01-27 14:24 - 2014-01-27 14:22 - 00000000 ____D C:\Users\JAKUB\Downloads\Mafia II - Kompletní Edice (CZ) (2010)
2014-01-27 14:24 - 2014-01-27 14:20 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Ubisoft Game Launcher
2014-01-27 14:06 - 2013-05-23 16:20 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2014-01-26 22:10 - 2014-01-26 21:31 - 00035026 _____ C:\Windows\DirectX.log
2014-01-26 21:45 - 2014-01-26 21:45 - 00000000 ____D C:\Users\JAKUB\AppData\Local\storage
2014-01-26 21:10 - 2014-01-25 17:50 - 00000000 ____D C:\Users\JAKUB\Downloads\Test Drive Unlimited 2
2014-01-26 20:59 - 2014-01-25 21:20 - 4020043776 _____ C:\Users\JAKUB\Downloads\sr-tcscc.iso
2014-01-26 20:59 - 2013-02-23 17:04 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\DAEMON Tools Lite
2014-01-26 17:23 - 2013-03-24 15:31 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-01-26 17:23 - 2013-02-24 20:18 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2014-01-26 13:27 - 2014-01-26 13:27 - 00000000 _____ C:\Windows\setuperr.log
2014-01-26 13:22 - 2014-01-26 13:22 - 00085392 _____ C:\Users\JAKUB\Desktop\cc_20140126_132239.reg
2014-01-26 13:21 - 2013-03-10 09:10 - 00000000 ____D C:\Windows\Minidump
2014-01-26 13:21 - 2007-01-02 02:25 - 00000000 ____D C:\Windows\Panther
2014-01-26 12:51 - 2013-12-22 20:33 - 00000000 ____D C:\Qoobox
2014-01-26 12:51 - 2013-09-27 16:45 - 00000000 ____D C:\AdwCleaner
2014-01-26 12:51 - 2013-02-19 15:44 - 00000000 ____D C:\Users\JAKUB
2014-01-26 08:31 - 2013-05-11 07:36 - 00000000 ____D C:\Program Files\trend micro
2014-01-25 21:10 - 2014-01-25 21:10 - 00000000 ____D C:\Users\JAKUB\AppData\Local\VirtualStore
2014-01-25 14:10 - 2013-04-20 18:21 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\.minecraft
2014-01-25 13:32 - 2014-01-25 12:00 - 00000000 ____D C:\Users\JAKUB\Downloads\Car Mechanic Simulator 2014[Full PC Game Complete Version Full With Crack]-RELOADED
2014-01-25 13:22 - 2013-07-02 19:07 - 00000000 ____D C:\New Folder
2014-01-25 13:16 - 2014-01-25 13:16 - 00002886 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_Administrator
2014-01-25 13:16 - 2014-01-25 13:16 - 00001216 _____ C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2014-01-25 13:16 - 2014-01-25 13:16 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\ProductData
2014-01-25 13:16 - 2014-01-25 13:16 - 00000000 ____D C:\Program Files (x86)\IObit
2014-01-25 13:16 - 2013-11-23 20:24 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\IObit
2014-01-25 12:42 - 2014-01-25 12:02 - 00000000 ____D C:\Users\JAKUB\Downloads\Car.Mechanic.Simulator.2014 [PC] - Full.Game-SKIDROW
2014-01-25 11:57 - 2014-01-25 11:57 - 00000931 _____ C:\Users\JAKUB\Desktop\µTorrent.lnk
2014-01-25 11:57 - 2014-01-25 11:57 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2014-01-25 11:54 - 2014-01-25 11:54 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Opera
2014-01-25 09:30 - 2014-01-23 14:12 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player
2014-01-25 09:16 - 2013-12-14 16:13 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
2014-01-24 17:06 - 2013-05-05 18:03 - 00003186 _____ C:\Windows\System32\Tasks\HPCeeScheduleForJAKUB
2014-01-24 14:12 - 2014-01-24 14:12 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Apple
2014-01-24 14:03 - 2014-01-24 14:03 - 00000000 ____D C:\Users\JAKUB\AppData\Local\LogMeIn
2014-01-23 20:51 - 2014-01-23 20:51 - 00388608 _____ (Trend Micro Inc.) C:\Users\JAKUB\Desktop\hijackthis.exe
2014-01-23 16:10 - 2014-01-23 16:10 - 00158928 _____ C:\Users\JAKUB\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-23 14:37 - 2014-01-23 14:37 - 00002219 _____ C:\Users\JAKUB\Desktop\Google Chrome.lnk
2014-01-23 14:37 - 2014-01-23 14:37 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-01-23 14:22 - 2013-02-22 16:11 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Google
2014-01-22 15:14 - 2013-02-19 15:48 - 00003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{4A89B5EF-7001-4A95-A120-F4263B7BB0D1}
2014-01-19 17:10 - 2013-03-15 19:00 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2014-01-19 16:12 - 2014-01-19 16:12 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-01-19 10:04 - 2014-01-19 10:03 - 00000000 ____D C:\Users\Public\Documents\GTA San Andreas User Files
2014-01-19 10:02 - 2014-01-19 10:02 - 00000000 ____D C:\Users\JAKUB\Documents\GTA San Andreas User Files
2014-01-18 21:59 - 2014-01-18 21:59 - 00000952 _____ C:\Users\JAKUB\Desktop\Bandicam.lnk
2014-01-18 21:59 - 2013-04-23 15:42 - 00000000 ____D C:\Program Files (x86)\BandiMPEG1
2014-01-18 21:59 - 2013-04-23 15:42 - 00000000 ____D C:\Program Files (x86)\Bandicam
2014-01-18 21:49 - 2013-10-25 14:32 - 00000000 ____D C:\Users\JAKUB\Documents\Action!
2014-01-18 10:36 - 2013-02-19 18:14 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\vlc
2014-01-15 22:05 - 2013-09-22 12:39 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 22:02 - 2013-05-04 09:44 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-11 18:26 - 2014-01-11 18:26 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\AVAST Software
2014-01-11 18:25 - 2014-01-11 18:25 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-11 18:24 - 2014-01-11 18:25 - 01034464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-11 18:24 - 2014-01-11 18:25 - 00422216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-01-11 18:24 - 2014-01-11 18:25 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2014-01-11 18:24 - 2014-01-11 18:25 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-01-11 18:24 - 2014-01-11 18:25 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-11 18:24 - 2014-01-11 18:25 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2014-01-11 18:24 - 2014-01-11 18:24 - 00044640 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\aswTap.sys
2014-01-11 18:24 - 2014-01-11 18:24 - 00043152 ____N (AVAST Software) C:\Windows\avastSS.scr
2014-01-11 18:24 - 2013-02-19 16:17 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-01-11 18:21 - 2013-12-13 17:51 - 00001912 _____ C:\Windows\epplauncher.mif
2014-01-11 17:57 - 2013-12-05 20:27 - 00000000 __RHD C:\MSOCache
2014-01-11 17:57 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2014-01-11 08:21 - 2014-01-11 08:21 - 00000000 ____D C:\Program Files\COMODO
2014-01-07 20:40 - 2013-10-04 14:37 - 00000000 ____D C:\Users\JAKUB\Documents\FIFA 14
2014-01-07 20:17 - 2013-04-20 15:38 - 00000000 ____D C:\Program Files (x86)\Origin
2014-01-02 19:29 - 2014-01-02 19:23 - 00000000 ____D C:\Users\JAKUB\Documents\Plocha
2014-01-02 19:27 - 2014-01-02 19:27 - 00000000 ____D C:\Users\JAKUB\Desktop\FIFA14
2013-12-30 08:18 - 2013-12-30 08:09 - 00000000 ____D C:\Program Files (x86)\FIFA 14
2013-12-30 08:09 - 2013-12-30 08:09 - 00001143 _____ C:\Program Files (x86)\FIFA 14 – zástupce.lnk

Some content of TEMP:
====================
C:\Users\JAKUB\AppData\Local\Temp\sp64126.exe
C:\Users\JAKUB\AppData\Local\Temp\UninstallHPSA.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-01-17 17:59

==================== End Of Log ============================

Zdravím, smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém

Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po té proběhne sken a po jeho skončení klikni na Report a to co na Tebe vypadne mi sem zkopíruj.

Pak použij Mbam z mého podpisu a dej mi sem z něj log, předem nic nemazat !

# AdwCleaner v3.018 - Report created 30/01/2014 at 14:48:20
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : JAKUB - JAKUB-HP
# Running from : C:\Users\JAKUB\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

-\\ Mozilla Firefox v20.0.1 (cs)

[ File : C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\prefs.js ]

-\\ Google Chrome v29.0.1547.62

[ File : C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R8].txt - [756 octets] - [30/01/2014 14:48:20]

########## EOF - C:\AdwCleaner\AdwCleaner[R8].txt - [815 octets] ##########

Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.

V případě nejasností je ZDE obrázkový návod.

Ještě ten log z MBAM

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.01.29.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
JAKUB :: JAKUB-HP [administrátor]

Ochrana: Zakázána

30.1.2014 14:50:58
mbam-log-2014-01-30 (14-50-58).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 513181
Uplynulý čas: 2 hodin, 21 minut, 51 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

ComboFix 14-01-29.01 - JAKUB 30.01.2014 20:05:02.17.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3835.2242 [GMT 1:00]
Spuštěný z: c:\users\JAKUB\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-12-28 do 2014-01-30 )))))))))))))))))))))))))))))))
.
.
2014-01-30 19:13 . 2014-01-30 19:13 -------- d-----w- c:\users\Public\AppData\Local\temp
2014-01-30 19:13 . 2014-01-30 19:13 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-01-30 14:43 . 2014-01-30 14:43 -------- d-----w- c:\users\JAKUB\AppData\Local\CrashRpt
2014-01-30 14:43 . 2014-01-30 14:44 -------- d-----w- c:\program files (x86)\Mafia 2 Multiplayer
2014-01-29 18:56 . 2014-01-29 18:56 -------- d-----w- c:\windows\SysWow64\Adobe
2014-01-29 18:32 . 2014-01-29 18:34 -------- d-----w- C:\FRST
2014-01-28 18:11 . 2014-01-28 18:11 -------- d-----w- c:\users\JAKUB\AppData\Local\SKIDROW
2014-01-28 18:10 . 2014-01-28 18:10 -------- d-----w- c:\users\JAKUB\AppData\Local\2K Games
2014-01-28 13:18 . 2013-12-16 00:54 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1060CFEA-F4E6-4CDD-9820-90EB60DA790C}\mpengine.dll
2014-01-28 13:09 . 2014-01-28 13:09 6416 ----a-w- c:\windows\system32\PerfStringBackup.TMP
2014-01-27 15:17 . 2014-01-27 15:17 -------- d-----w- c:\programdata\{18165758-115C-4DC0-9EC2-FF89F725767F}
2014-01-27 15:16 . 2014-01-27 15:16 -------- d-----w- c:\users\JAKUB\AppData\Roaming\hpqLog
2014-01-27 13:20 . 2014-01-27 13:24 -------- d-----w- c:\users\JAKUB\AppData\Local\Ubisoft Game Launcher
2014-01-26 20:45 . 2014-01-26 20:45 -------- d-----w- c:\users\JAKUB\AppData\Local\storage
2014-01-25 20:10 . 2014-01-25 20:10 -------- d-----w- c:\users\JAKUB\AppData\Local\VirtualStore
2014-01-25 12:16 . 2014-01-25 12:16 -------- d-----w- c:\users\JAKUB\AppData\Roaming\ProductData
2014-01-25 12:16 . 2014-01-25 12:16 -------- d-----w- c:\programdata\ProductData
2014-01-25 12:16 . 2014-01-25 12:16 -------- d-----w- c:\program files (x86)\IObit
2014-01-25 10:54 . 2014-01-25 10:54 -------- d-----w- c:\users\JAKUB\AppData\Local\Opera
2014-01-24 13:12 . 2014-01-24 13:12 -------- d-----w- c:\users\JAKUB\AppData\Local\Apple
2014-01-24 13:03 . 2014-01-30 19:14 -------- d-----w- c:\users\JAKUB\AppData\Local\LogMeIn Hamachi
2014-01-24 13:03 . 2014-01-24 13:03 -------- d-----w- c:\users\JAKUB\AppData\Local\LogMeIn
2014-01-23 13:27 . 2014-01-30 13:09 -------- d-----w- c:\users\JAKUB\AppData\Local\Adobe
2014-01-18 21:23 . 2013-02-15 21:44 8300544 ----a-w- c:\windows\SysWow64\DxtoryCodec.dll
2014-01-18 21:23 . 2013-02-15 21:44 8043008 ----a-w- c:\windows\system32\DxtoryCodec.dll
2014-01-15 14:19 . 2013-11-27 01:41 53248 ----a-w- c:\windows\system32\drivers\usbehci.sys
2014-01-15 14:19 . 2013-11-27 01:41 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2014-01-15 14:19 . 2013-11-27 01:41 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-01-15 14:19 . 2013-11-27 01:41 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2014-01-15 14:19 . 2013-11-27 01:41 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2014-01-15 14:19 . 2013-11-27 01:41 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2014-01-15 14:19 . 2013-11-27 01:41 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2014-01-15 14:19 . 2013-11-26 10:32 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-01-15 14:19 . 2013-11-26 11:40 376768 ----a-w- c:\windows\system32\drivers\netio.sys
2014-01-11 17:26 . 2014-01-11 17:26 -------- d-----w- c:\users\JAKUB\AppData\Roaming\AVAST Software
2014-01-11 17:25 . 2014-01-11 17:25 79672 ----a-w- c:\windows\system32\drivers\aswstm.sys
2014-01-11 17:25 . 2014-01-11 17:24 207904 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-01-11 17:25 . 2014-01-11 17:24 65776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-01-11 17:25 . 2014-01-11 17:24 422216 ----a-w- c:\windows\system32\drivers\aswSP.sys
2014-01-11 17:25 . 2014-01-11 17:24 1034464 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-01-11 17:25 . 2014-01-11 17:24 78648 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-01-11 17:25 . 2014-01-11 17:24 92544 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-01-11 17:24 . 2014-01-11 17:24 43152 ------w- c:\windows\avastSS.scr
2014-01-11 17:24 . 2014-01-11 17:24 44640 ----a-w- c:\windows\system32\drivers\aswTap.sys
2014-01-11 17:21 . 2014-01-11 17:21 -------- d-----w- c:\programdata\AVAST Software
2014-01-11 07:21 . 2014-01-11 16:32 -------- d-s---w- c:\programdata\Shared Space
2014-01-11 07:21 . 2014-01-11 16:57 -------- d-----w- c:\programdata\COMODO
2014-01-11 07:21 . 2014-01-11 07:21 -------- d-----w- c:\program files\COMODO
2014-01-11 07:20 . 2014-01-11 07:20 -------- d-----w- c:\programdata\Comodo Downloader
2014-01-04 16:40 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2014-01-04 16:40 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2014-01-04 16:40 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2014-01-04 16:40 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2014-01-04 16:40 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-30 19:03 . 2013-10-06 09:01 29 ----a-w- c:\windows\SysWow64\TempWmicBatchFile.bat
2014-01-15 21:02 . 2013-05-04 08:44 86054176 ----a-w- c:\windows\system32\MRT.exe
2014-01-11 17:24 . 2013-02-19 15:17 334136 ----a-w- c:\windows\system32\aswBoot.exe
2013-12-18 05:13 . 2010-11-21 03:27 270496 ------w- c:\windows\system32\MpSigStub.exe
2013-12-11 13:37 . 2013-02-19 17:35 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-11 13:37 . 2013-02-19 17:35 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-12-11 13:37 . 2013-12-11 13:37 9293192 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2013-12-03 20:59 . 2013-12-03 20:59 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-12-03 20:59 . 2013-12-03 20:59 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-12-03 20:59 . 2013-12-03 20:59 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-12-03 20:59 . 2013-12-03 20:59 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2013-12-03 20:59 . 2013-12-03 20:59 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-12-03 20:59 . 2013-12-03 20:59 34816 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-12-03 20:59 . 2013-12-03 20:59 337408 ----a-w- c:\windows\SysWow64\html.iec
2013-12-03 20:59 . 2013-12-03 20:59 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-12-03 20:59 . 2013-12-03 20:59 235008 ----a-w- c:\windows\system32\elshyph.dll
2013-12-03 20:59 . 2013-12-03 20:59 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2013-12-03 20:59 . 2013-12-03 20:59 61952 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2013-12-03 20:59 . 2013-12-03 20:59 61952 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-12-03 20:59 . 2013-12-03 20:59 51200 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2013-12-03 20:59 . 2013-12-03 20:59 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-12-03 20:59 . 2013-12-03 20:59 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-12-03 20:59 . 2013-12-03 20:59 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2013-12-03 20:59 . 2013-12-03 20:59 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-12-03 20:59 . 2013-12-03 20:59 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2013-12-03 20:59 . 2013-12-03 20:59 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2013-12-03 20:59 . 2013-12-03 20:59 112128 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-12-03 20:59 . 2013-12-03 20:59 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-12-03 20:59 . 2013-12-03 20:59 1051136 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-12-03 20:59 . 2013-12-03 20:59 942592 ----a-w- c:\windows\system32\jsIntl.dll
2013-12-03 20:59 . 2013-12-03 20:59 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-12-03 20:59 . 2013-12-03 20:59 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-12-03 20:59 . 2013-12-03 20:59 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-12-03 20:59 . 2013-12-03 20:59 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-12-03 20:59 . 2013-12-03 20:59 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-12-03 20:59 . 2013-12-03 20:59 247808 ----a-w- c:\windows\system32\msls31.dll
2013-12-03 20:59 . 2013-12-03 20:59 195584 ----a-w- c:\windows\system32\msrating.dll
2013-12-03 20:59 . 2013-12-03 20:59 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2013-12-03 20:59 . 2013-12-03 20:59 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-12-03 20:59 . 2013-12-03 20:59 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-12-03 20:59 . 2013-12-03 20:59 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-12-03 20:59 . 2013-12-03 20:59 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-12-03 20:59 . 2013-12-03 20:59 40448 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2013-12-03 20:59 . 2013-12-03 20:59 105984 ----a-w- c:\windows\system32\iesysprep.dll
2013-12-03 20:59 . 2013-12-03 20:59 84992 ----a-w- c:\windows\system32\mshtmled.dll
2013-12-03 20:59 . 2013-12-03 20:59 83968 ----a-w- c:\windows\system32\MshtmlDac.dll
2013-12-03 20:59 . 2013-12-03 20:59 81408 ----a-w- c:\windows\system32\icardie.dll
2013-12-03 20:59 . 2013-12-03 20:59 774144 ----a-w- c:\windows\system32\jscript.dll
2013-12-03 20:59 . 2013-12-03 20:59 626176 ----a-w- c:\windows\system32\msfeeds.dll
2013-12-03 20:59 . 2013-12-03 20:59 62464 ----a-w- c:\windows\system32\pngfilt.dll
2013-12-03 20:59 . 2013-12-03 20:59 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2013-12-03 20:59 . 2013-12-03 20:59 548352 ----a-w- c:\windows\system32\vbscript.dll
2013-12-03 20:59 . 2013-12-03 20:59 453120 ----a-w- c:\windows\system32\dxtmsft.dll
2013-12-03 20:59 . 2013-12-03 20:59 413696 ----a-w- c:\windows\system32\html.iec
2013-12-03 20:59 . 2013-12-03 20:59 30208 ----a-w- c:\windows\system32\licmgr10.dll
2013-12-03 20:59 . 2013-12-03 20:59 296960 ----a-w- c:\windows\system32\dxtrans.dll
2013-12-03 20:59 . 2013-12-03 20:59 263376 ----a-w- c:\windows\system32\iedkcs32.dll
2013-12-03 20:59 . 2013-12-03 20:59 243200 ----a-w- c:\windows\system32\webcheck.dll
2013-12-03 20:59 . 2013-12-03 20:59 235520 ----a-w- c:\windows\system32\url.dll
2013-12-03 20:59 . 2013-12-03 20:59 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-12-03 20:59 . 2013-12-03 20:59 147968 ----a-w- c:\windows\system32\occache.dll
2013-12-03 20:59 . 2013-12-03 20:59 143872 ----a-w- c:\windows\system32\wextract.exe
2013-12-03 20:59 . 2013-12-03 20:59 13824 ----a-w- c:\windows\system32\mshta.exe
2013-12-03 20:59 . 2013-12-03 20:59 1228800 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-12-03 20:59 . 2013-12-03 20:59 101376 ----a-w- c:\windows\system32\inseng.dll
2013-12-03 20:59 . 2013-12-03 20:59 48128 ----a-w- c:\windows\system32\imgutil.dll
2013-12-03 20:59 . 2013-12-03 20:59 135680 ----a-w- c:\windows\system32\iepeers.dll
2013-12-03 20:58 . 2013-12-03 20:58 878080 ----a-w- c:\windows\system32\advapi32.dll
2013-12-03 20:58 . 2013-12-03 20:58 859648 ----a-w- c:\windows\system32\tdh.dll
2013-12-03 20:58 . 2013-12-03 20:58 5549504 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-12-03 20:58 . 2013-12-03 20:58 243712 ----a-w- c:\windows\system32\wow64.dll
2013-12-03 20:58 . 2013-12-03 20:58 1732032 ----a-w- c:\windows\system32\ntdll.dll
2013-12-03 20:58 . 2013-12-03 20:58 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-12-03 20:58 . 2013-12-03 20:58 640512 ----a-w- c:\windows\SysWow64\advapi32.dll
2013-12-03 20:58 . 2013-12-03 20:58 619520 ----a-w- c:\windows\SysWow64\tdh.dll
2013-12-03 20:58 . 2013-12-03 20:58 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-12-03 20:58 . 2013-12-03 20:58 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-12-03 20:58 . 2013-12-03 20:58 3969472 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-12-03 20:58 . 2013-12-03 20:58 3914176 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-12-03 20:58 . 2013-12-03 20:58 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-12-03 20:58 . 2013-12-03 20:58 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-12-03 20:58 . 2013-12-03 20:58 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-12-03 20:58 . 2013-12-03 20:58 1292192 ----a-w- c:\windows\SysWow64\ntdll.dll
2013-12-03 20:58 . 2013-12-03 20:58 327168 ----a-w- c:\windows\system32\mswsock.dll
2013-12-03 20:58 . 2013-12-03 20:58 231424 ----a-w- c:\windows\SysWow64\mswsock.dll
2013-12-03 20:58 . 2013-12-03 20:58 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-11-26 11:54 . 2013-12-20 21:33 23183360 ----a-w- c:\windows\system32\mshtml.dll
2013-11-26 10:19 . 2013-12-20 21:34 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2013-11-26 10:18 . 2013-12-20 21:34 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2013-11-26 09:48 . 2013-12-20 21:34 66048 ----a-w- c:\windows\system32\iesetup.dll
2013-11-26 09:46 . 2013-12-20 21:33 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll
2013-11-26 09:41 . 2013-12-20 21:33 2764288 ----a-w- c:\windows\system32\iertutil.dll
2013-11-26 09:29 . 2013-12-20 21:34 53760 ----a-w- c:\windows\system32\jsproxy.dll
2013-11-26 09:27 . 2013-12-20 21:34 33792 ----a-w- c:\windows\system32\iernonce.dll
2013-11-26 09:23 . 2013-12-20 21:34 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-11-26 09:21 . 2013-12-20 21:34 574976 ----a-w- c:\windows\system32\ieui.dll
2013-11-26 09:18 . 2013-12-20 21:34 139264 ----a-w- c:\windows\system32\ieUnatt.exe
2013-11-26 09:18 . 2013-12-20 21:33 111616 ----a-w- c:\windows\system32\ieetwcollector.exe
2013-11-26 09:16 . 2013-12-20 21:33 708608 ----a-w- c:\windows\system32\jscript9diag.dll
2013-11-26 08:57 . 2013-12-20 21:34 218624 ----a-w- c:\windows\system32\ie4uinit.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-01-11 3764024]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2014-01-23 3813200]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"20131224"="c:\program files\AVAST Software\Avast\setup\emupdate\b7a5fa52-26e2-4d3f-bf5a-45ac6e219b5c.exe" [2014-01-30 181136]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux7"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R3 aswTap;avast! SecureLine TAP Adapter v3;c:\windows\system32\DRIVERS\aswTap.sys;c:\windows\SYSNATIVE\DRIVERS\aswTap.sys [x]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
R3 atillk64;atillk64; [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
R3 EagleX64;EagleX64; [x]
R3 FairplayKD;FairplayKD;c:\programdata\MTA San Andreas All\Common\temp\FairplayKD.sys;c:\programdata\MTA San Andreas All\Common\temp\FairplayKD.sys [x]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [x]
R3 GDPkIcpt;GDPkIcpt; [x]
R3 GPU-Z;GPU-Z;c:\users\JAKUB\AppData\Local\Temp\GPU-Z.sys;c:\users\JAKUB\AppData\Local\Temp\GPU-Z.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTCore64;RTCore64;c:\program files (x86)\RMClock\RTCore64.sys;c:\program files (x86)\RMClock\RTCore64.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys;c:\windows\SYSNATIVE\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\DRIVERS\hssdrv6.sys;c:\windows\SYSNATIVE\DRIVERS\hssdrv6.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 CronService;Cron Service for Prey;c:\prey\platform\windows\cronsvc.exe;c:\prey\platform\windows\cronsvc.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
S2 RtkAudioService;Realtek Audio Service;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe [x]
S2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsPStor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys;c:\windows\SYSNATIVE\DRIVERS\teamviewervpn.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-08-29 18:32 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.62\Installer\chrmstp.exe
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-01-25 12:16 2471744 ----a-w- c:\program files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SYSTEM32\blank.htm
FF - ProfilePath - c:\users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\
FF - prefs.js: network.proxy.type -
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
AddRemove-SLABCOMM&10C4&EA60 - c:\program files (x86)\Silabs\MCU\DriverUninstall\DriverUninstaller.exe VCP CP210x Cardinal\SLABCOMM&10C4&EA60
AddRemove-{EE202411-2C26-49E8-9784-1BC1DBF7DE96} - c:\program files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe
AddRemove-GamersFirst LIVE! - c:\users\JAKUB\AppData\Local\GamersFirst\LIVE!\uninstall.exe
AddRemove-UnityWebPlayer - c:\users\JAKUB\AppData\Local\Unity\WebPlayer\Uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Celkový čas: 2014-01-30 20:16:38
ComboFix-quarantined-files.txt 2014-01-30 19:16
.
Před spuštěním: Volných bajtů: 79 934 500 864
Po spuštění: Volných bajtů: 79 753 146 368
.
- - End Of File - - 3B943647FACEACA4539049BA835F9B3B
A36C5E4F47E84449FF07ED3517B43A31

Přes Odebrat programy odinstaluj IObit

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.

Použij T-Cleaner, který smaže případné zbytky po aplikacích které jsme použili.

Jen před jeho stažením a při použití stopni antivir, protože ho muže detekovat jako vir ale není tomu tak.

Pak dej vědět jaký je stav PC.

Stejný stav.

Pokud se PC seká bude problém jinde, protože šmejdi už tam nejsou.

Stáhni HD Tune a otestuj HDD.

Benchmark - Test disku Klikni na tlačítko Start a vyčkej dokud se nezaplní celý graf. Poté se dozvíš přenosovou rychlost a přístupový čas pevného disku.

Info Přesná kapacita, souborový systém, podporované funkce, verze firmware, sériové číslo a typ zapojení disků.

Health - Kondice Seznam důležitých parametrů a jejich hodnoty. Ideální je mít všude OK.

Když je nějaká položka žlutá pravděpodobně brzy změní status na failed. Když je červená má status failed, to by znamenalo výměnu disku.

Error Scan - Hledání chyb Klikni na tlačítko Start a program prozkoumá disk zda na něm nejsou vadné bloky.

Pokud na konci testu jsou všechny zelené, je vše v pořádku. Když je byť jeden z nich červený, doporučuji zazálohovat data a počítat s výměnou disku.

Teplota Teploměr nahoře a číslo vedle něj znázorňují teplotu disku. Normální hodnota je pod 50°C. Teplota ale nesmí přesáhnout 60°C, program upozorní když dosáhne hranice 55°C.

Stáhni MEMTEST

soubor rozbal a spusť exe soubor.

Připoj flashdisk pozor vše co na něm je bude smazáno !,

v okénku Select your USB Flash Drive vyber tento disk a dej Create.

Během chvilky se Memtest nainstaluje.

Flashdisk nech v USB, restartuj PC a nabootuj z něj.

Před tím samozřemě musíš v Bios Setup do kterého se dostaneš při restartu mačkáním klávesy :

* DEL
* F2
* F1
* F10

záleží na PC, ale vždy je to na monitoru napsáno,

otevři nabídku ADVANCED BIOS FEATURES a vyhledej Boot Devices 0 až 4 nebo Boot Sequence.

Na první místo nastav Flashdisk,

na druhé pevný disk HDD, u obou položek bývá napsán i výrobce.

Stisknutím Save většinou je to F10 a potvrzením Entrem uložíš nastavení,

pak ještě stisknutím Save and Exit se dostaneš z Biosu.

Test nech projet minimálně jednou, ideálně však několikrát třeba přes noc a s každým RAM modulem zvlášť.

Pak dej vědět jak to dopadlo.

S tím MEM... když nechci aby se mi smazalo věci na USB?

HD TUNE: v Health nic nemám, vadný blok žádný nemám a teplota se mi neukazuje.

MrAnnix99 píše:S tím MEM... když nechci aby se mi smazalo věci na USB?

Jinak to nejde nebo potom plán B

Stáhni MEMTEST

soubor rozbal a obraz (ISO) vypal jako z image CD, nikoliv jako data.

V Bios Setup do kterého se dostaneš při restartu mačkáním klávesy :

* DEL
* F2
* F1
* F10

záleží na PC, ale vždy je to na monitoru napsáno,

otevři nabídku ADVANCED BIOS FEATURES a vyhledej Boot Devices 0 až 4 nebo Boot Sequence.

Na první místo nastav CD-ROM,

na druhé pevný disk HDD, u obou položek bývá napsán i výrobce.

Stisknutím Save většinou je to F10 a potvrzením Entrem uložíš nastavení,

pak ještě stisknutím Save and Exit se dostaneš z Biosu.

Vlož CD z Memetestem do mechaniky a po restartu z něj PC nabootuje.

Test nech projet minimálně jednou, ideálně však několikrát třeba přes noc a s každým RAM modulem zvlášť.

Pak dej vědět jak to dopadlo.

P.S. disk má jen lehce pomalejší přístupovou dobu ale to není příčinou sekání.

Memtest hotovo, žádný error..

----------------------------------------------

Stav PC? Trošku, ale jen trošku lepší.. BTW: Start se velmi zhoršil (o 10 - 15s)

MrAnnix99 píše:Stav PC? Trošku, ale jen trošku lepší.. BTW: Start se velmi zhoršil (o 10 - 15s)

Nedělali jsme však nic co by to mělo zhoršit, ba naopak.

Použij tedy ještě Rsit z mého podpisu a dej mi sem z něj log.txt

Logfile of random's system information tool 1.08 (written by random/random)
Run by JAKUB at 2014-02-03 17:15:07
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 76 GB (17%) free of 460 GB
Total RAM: 3835 MB (31% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:15:15, on 3.2.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Users\JAKUB\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\JAKUB.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKCU\..\Run: [Steam] "c:\new folder\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Startup: Dropbox.lnk = JAKUB\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Svátky a narozeniny.lnk = ?
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Cron Service for Prey (CronService) - Fork Ltd. - C:\Prey\platform\windows\cronsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lokátor vzdáleného volání procedur (RPC) (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Zachytávání pro službu SNMP (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Služba Windows Media Player Network Sharing (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9596 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\system32\Dwm.exe"
C:\Windows\system32\WLANExt.exe 3245472
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\Explorer.EXE
\??\C:\Windows\system32\conhost.exe "2114413506247669655-159107699-14292217551416363892-545057112511952160-1095738076
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Users\JAKUB\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
taskeng.exe {EE8744B8-893E-42A1-86D9-10554B74FF0F}
C:\Windows\System32\spoolsv.exe
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"taskhost.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
taskeng.exe {252C864D-A737-4BE1-AA30-90FDD1EBD894}
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Prey\platform\windows\cronsvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc" /escort 4008
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc" /escort 4876
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5816.0.1451582914\859964944" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19 --gpu-vendor-id=0x1002 --gpu-device-id=0x68e4 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.812.1.3000 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/Prerender/PrerenderEnabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_06/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/group_01/ --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5816.2.1812669762\85229118" /prefetch:673131151
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_06/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/group_01/ --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5816.21.1780844436\328547280" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_06/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/group_01/ --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5816.34.1230088547\660098844" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5816.35.1164174674\2009965039" --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe" "C:\Users\JAKUB\Desktop\tumblr_mub5lklzXZ1scaqlco4_1280.jpg"
"C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" "-launchedbycsxs"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe12_ Global\UsGthrCtrlFltPipeMssGthrPipe12 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_06/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/group_01/ --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5816.61.1049974632\1630546536" /prefetch:673131151
"C:\Users\JAKUB\Desktop\RSITx64.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-01-11 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-03 49440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-05-09 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-01-11 1138536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-01-11 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-01-11 1138536]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-11-23 7174728]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-05-09 627360]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-05-09 379552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=c:\new folder\steam.exe [2014-01-07 1815464]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-01-11 3764024]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-04-29 642304]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\JAKUB\AppData\Roaming\Dropbox\bin\Dropbox.exe
Svátky a narozeniny.lnk - C:\Program Files (x86)\Svátky a narozeniny\SaN.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine.exe"
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2014-02-03 17:15:07 ----D---- C:\rsit
2014-02-02 19:52:40 ----D---- C:\Users\JAKUB\AppData\Roaming\QuiteRss
2014-02-02 19:52:25 ----D---- C:\Program Files (x86)\QuiteRSS
2014-02-02 08:21:15 ----D---- C:\Users\JAKUB\AppData\Roaming\ATI
2014-02-01 11:35:24 ----D---- C:\Users\JAKUB\AppData\Roaming\DropboxMaster
2014-02-01 11:34:45 ----D---- C:\Users\JAKUB\AppData\Roaming\Dropbox
2014-02-01 08:44:20 ----D---- C:\Program Files (x86)\HD Tune
2014-01-31 20:28:34 ----D---- C:\ProgramData\LogMeIn
2014-01-31 20:27:39 ----D---- C:\ProgramData\PDFC
2014-01-31 11:12:07 ----HD---- C:\Windows\msdownld.tmp
2014-01-31 11:02:49 ----D---- C:\Program Files (x86)\Test Drive Unlimited 2
2014-01-31 10:59:17 ----SHD---- C:\$RECYCLE.BIN
2014-01-30 20:16:40 ----D---- C:\Windows\temp
2014-01-29 19:56:16 ----D---- C:\Windows\SYSWOW64\Adobe
2014-01-28 14:09:27 ----A---- C:\Windows\system32\PerfStringBackup.TMP
2014-01-27 16:17:08 ----D---- C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
2014-01-27 16:16:17 ----D---- C:\Users\JAKUB\AppData\Roaming\hpqLog
2014-01-25 13:16:55 ----D---- C:\Users\JAKUB\AppData\Roaming\ProductData
2014-01-25 13:16:32 ----D---- C:\ProgramData\ProductData
2014-01-25 13:16:28 ----D---- C:\Program Files (x86)\IObit
2014-01-18 22:23:09 ----A---- C:\Windows\SYSWOW64\DxtoryCodec.dll
2014-01-18 22:23:09 ----A---- C:\Windows\system32\DxtoryCodec.dll
2014-01-15 15:19:54 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-01-15 15:19:53 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2014-01-15 15:19:53 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-01-15 15:19:53 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-01-15 15:19:53 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-01-15 15:19:53 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-01-15 15:19:53 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-01-15 15:19:51 ----A---- C:\Windows\system32\win32k.sys
2014-01-15 15:19:49 ----A---- C:\Windows\system32\drivers\netio.sys
2014-01-11 18:26:13 ----D---- C:\Users\JAKUB\AppData\Roaming\AVAST Software
2014-01-11 18:25:25 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2014-01-11 18:25:25 ----A---- C:\Windows\system32\drivers\aswstm.sys
2014-01-11 18:25:24 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2014-01-11 18:25:23 ----A---- C:\Windows\system32\drivers\aswSP.sys
2014-01-11 18:25:23 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2014-01-11 18:25:20 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2014-01-11 18:25:16 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2014-01-11 18:24:51 ----A---- C:\Windows\system32\drivers\aswTap.sys
2014-01-11 18:21:36 ----D---- C:\ProgramData\AVAST Software
2014-01-11 08:21:57 ----SD---- C:\ProgramData\Shared Space
2014-01-11 08:21:16 ----D---- C:\ProgramData\COMODO
2014-01-11 08:21:05 ----D---- C:\Program Files\COMODO
2014-01-11 08:20:56 ----D---- C:\ProgramData\Comodo Downloader
2014-01-04 17:40:53 ----A---- C:\Windows\system32\wmploc.DLL
2014-01-04 17:40:52 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-01-04 17:40:52 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-01-04 17:40:50 ----A---- C:\Windows\system32\wmp.dll
2014-01-04 12:43:52 ----A---- C:\Windows\system32\msieftp.dll
2014-01-04 12:43:51 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-01-04 12:43:51 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-01-04 12:43:51 ----A---- C:\Windows\system32\WMPhoto.dll
2014-01-04 12:43:50 ----A---- C:\Windows\system32\drivers\ataport.sys
2014-01-04 12:43:44 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2014-01-04 12:43:44 ----A---- C:\Windows\SYSWOW64\credui.dll
2014-01-04 12:43:44 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-01-04 12:43:44 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2014-01-04 12:43:44 ----A---- C:\Windows\system32\credui.dll
2014-01-04 12:43:44 ----A---- C:\Windows\system32\authui.dll
2014-01-04 12:43:35 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2014-01-04 12:43:35 ----A---- C:\Windows\system32\WebClnt.dll
2014-01-04 12:43:34 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-01-04 12:43:34 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-01-04 12:43:34 ----A---- C:\Windows\system32\davclnt.dll
2014-01-04 12:43:29 ----A---- C:\Windows\system32\scavengeui.dll

======List of files/folders modified in the last 1 months======

2014-02-03 17:15:11 ----D---- C:\Program Files\trend micro
2014-02-03 16:44:02 ----RSD---- C:\Windows\Fonts
2014-02-03 16:19:36 ----A---- C:\Windows\SYSWOW64\TempWmicBatchFile.bat
2014-02-03 15:37:16 ----D---- C:\Windows\system32\config
2014-02-03 15:21:57 ----D---- C:\New Folder
2014-02-03 15:20:37 ----D---- C:\Windows\Prefetch
2014-02-02 19:52:25 ----D---- C:\Program Files (x86)
2014-02-02 13:07:19 ----D---- C:\Windows\System32
2014-02-02 13:07:19 ----D---- C:\Windows\inf
2014-02-02 09:59:57 ----D---- C:\Program Files (x86)\Origin
2014-02-01 21:39:56 ----D---- C:\Users\JAKUB\AppData\Roaming\Skype
2014-02-01 20:09:53 ----D---- C:\ProgramData\Adobe
2014-02-01 15:47:43 ----D---- C:\Users\JAKUB\AppData\Roaming\Adobe
2014-02-01 10:15:58 ----SD---- C:\Users\JAKUB\AppData\Roaming\Microsoft
2014-01-31 20:54:19 ----D---- C:\Users\JAKUB\AppData\Roaming\GlarySoft
2014-01-31 20:54:09 ----D---- C:\Windows\system32\Tasks
2014-01-31 20:54:08 ----D---- C:\Windows\Tasks
2014-01-31 20:40:32 ----D---- C:\Windows\pss
2014-01-31 20:28:34 ----D---- C:\ProgramData
2014-01-31 20:25:56 ----D---- C:\Windows
2014-01-31 20:20:17 ----D---- C:\Windows\system32\drivers
2014-01-31 19:48:23 ----D---- C:\Users\JAKUB\AppData\Roaming\uTorrent
2014-01-31 19:48:23 ----D---- C:\Users\JAKUB\AppData\Roaming\TS3Client
2014-01-31 19:48:23 ----D---- C:\Users\JAKUB\AppData\Roaming\skyz
2014-01-31 19:48:23 ----D---- C:\ProgramData\Origin
2014-01-31 19:48:22 ----D---- C:\Users\JAKUB\AppData\Roaming\Sony
2014-01-31 19:48:21 ----D---- C:\Users\JAKUB\AppData\Roaming\OBS
2014-01-31 19:48:20 ----D---- C:\Users\JAKUB\AppData\Roaming\DG
2014-01-31 19:48:18 ----D---- C:\Users\JAKUB\AppData\Roaming\.minecraft
2014-01-31 19:48:10 ----D---- C:\ProgramData\Ubisoft
2014-01-31 19:48:10 ----D---- C:\ProgramData\Stardock
2014-01-31 19:48:10 ----D---- C:\ProgramData\Pinnacle
2014-01-31 19:48:10 ----D---- C:\ProgramData\Norton
2014-01-31 19:48:09 ----SD---- C:\ProgramData\Microsoft
2014-01-31 19:48:09 ----D---- C:\ProgramData\Electronic Arts
2014-01-31 19:48:09 ----D---- C:\ProgramData\EgisTec
2014-01-31 19:48:09 ----D---- C:\ProgramData\Codemasters
2014-01-31 19:48:03 ----RD---- C:\Program Files
2014-01-31 19:48:03 ----D---- C:\Program Files\Windows Media Player
2014-01-31 19:48:03 ----D---- C:\Program Files\Internet Explorer
2014-01-31 19:48:03 ----D---- C:\Program Files (x86)\Windows Media Player
2014-01-31 19:48:03 ----D---- C:\Program Files (x86)\The Bureau
2014-01-31 19:48:02 ----D---- C:\Program Files (x86)\OBS
2014-01-31 19:48:01 ----D---- C:\Program Files (x86)\Hewlett-Packard
2014-01-31 19:48:01 ----D---- C:\Program Files (x86)\Google
2014-01-31 19:47:58 ----D---- C:\Hry
2014-01-31 19:47:58 ----D---- C:\Fraps
2014-01-31 19:47:58 ----D---- C:\AW-Manager
2014-01-31 19:47:09 ----D---- C:\Program Files (x86)\WinRAR
2014-01-31 19:42:24 ----D---- C:\Windows\Logs
2014-01-31 19:41:16 ----D---- C:\ProgramData\GlarySoft
2014-01-31 18:32:35 ----D---- C:\Program Files (x86)\Mafia II Kompletní Edice
2014-01-31 18:06:55 ----D---- C:\Users\JAKUB\AppData\Roaming\DAEMON Tools Lite
2014-01-31 11:13:04 ----SHD---- C:\Windows\Installer
2014-01-31 11:13:03 ----D---- C:\Config.Msi
2014-01-31 10:46:56 ----SHD---- C:\System Volume Information
2014-01-30 20:13:59 ----A---- C:\Windows\system.ini
2014-01-30 20:10:23 ----D---- C:\Windows\SYSWOW64\drivers
2014-01-30 20:10:23 ----D---- C:\Windows\SysWOW64
2014-01-30 20:10:23 ----D---- C:\Windows\AppPatch
2014-01-30 20:10:22 ----D---- C:\Program Files (x86)\Common Files
2014-01-27 16:19:07 ----RSD---- C:\Windows\assembly
2014-01-27 16:16:33 ----D---- C:\ProgramData\Hewlett-Packard
2014-01-27 16:15:57 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-01-27 16:15:53 ----D---- C:\SWSetup
2014-01-27 14:06:51 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2014-01-26 17:23:03 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-01-26 13:30:53 ----D---- C:\Windows\SoftwareDistribution
2014-01-26 13:21:47 ----D---- C:\Windows\Panther
2014-01-26 13:21:47 ----D---- C:\Windows\Minidump
2014-01-26 13:21:47 ----D---- C:\Windows\debug
2014-01-26 08:30:01 ----D---- C:\ProgramData\IObit
2014-01-25 13:16:50 ----D---- C:\Users\JAKUB\AppData\Roaming\IObit
2014-01-23 21:16:37 ----D---- C:\Windows\system32\catroot2
2014-01-19 17:10:41 ----D---- C:\Program Files (x86)\Rockstar Games
2014-01-19 16:47:52 ----D---- C:\Windows\system32\catroot
2014-01-19 16:47:51 ----D---- C:\Windows\system32\DriverStore
2014-01-19 08:17:25 ----D---- C:\Windows\Microsoft.NET
2014-01-18 21:59:55 ----D---- C:\Program Files (x86)\Bandicam
2014-01-18 21:59:47 ----D---- C:\Program Files (x86)\BandiMPEG1
2014-01-18 10:36:17 ----D---- C:\Users\JAKUB\AppData\Roaming\vlc
2014-01-16 14:40:55 ----D---- C:\Windows\winsxs
2014-01-15 22:05:53 ----D---- C:\Windows\system32\MRT
2014-01-15 22:02:09 ----A---- C:\Windows\system32\MRT.exe
2014-01-11 18:24:56 ----A---- C:\Windows\system32\aswBoot.exe
2014-01-11 18:04:04 ----D---- C:\Windows\system32\wfp
2014-01-11 18:04:01 ----D---- C:\Windows\system32\wbem
2014-01-11 17:57:59 ----D---- C:\Windows\system32\CodeIntegrity
2014-01-11 17:57:52 ----D---- C:\Windows\registration
2014-01-11 17:57:34 ----RD---- C:\MSOCache
2014-01-04 20:59:31 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-01-04 20:59:31 ----D---- C:\Windows\system32\cs-CZ

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2000-01-01 79488]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2000-01-01 40064]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-01-11 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-01-11 207904]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie64.sys [2010-06-17 16440]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-09-14 834544]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2014-01-11 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2014-01-11 1034464]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2014-01-11 422216]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-05-29 283200]
R1 HssDRV6;Hotspot Shield Routing Driver 6; C:\Windows\system32\DRIVERS\hssdrv6.sys [2012-07-24 41704]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2013-10-17 31136]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2014-01-11 78648]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-04-30 11922944]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-04-30 359936]
R3 aswStm;aswStm; \??\C:\Windows\system32\drivers\aswStm.sys [2014-01-11 79672]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-10-24 3802112]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-05-09 29344]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2011-02-09 31088]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-11-23 3379272]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 25928]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2000-01-01 339600]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-11-23 883928]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-12-21 1402416]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2012-11-28 35112]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2010-12-16 47232]
S3 AR5416;Atheros Wireless Adapter Service; C:\Windows\system32\DRIVERS\athwx.sys [2011-02-25 2793568]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\Windows\system32\DRIVERS\aswTap.sys [2014-01-11 44640]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-05-09 36000]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-05-06 125456]
S3 atillk64;atillk64; C:\Windows\system32\drivers\atillk64.sys []
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-05-09 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-05-09 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-05-09 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-05-09 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-05-09 281760]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 EagleX64;EagleX64; C:\Windows\system32\drivers\EagleX64.sys []
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2011-12-28 69192]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2011-12-28 84808]
S3 GDPkIcpt;GDPkIcpt; C:\Windows\system32\drivers\GDPkIcpt.sys []
S3 GearAspiWDM;GEARAspiWDM; C:\Windows\System32\drivers\GEARAspiWDM.sys [2008-02-22 19496]
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2013-07-01 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTCore64;RTCore64; \??\C:\Program Files (x86)\RMClock\RTCore64.sys [2008-09-08 14352]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 tap0901;TAP-Win32 Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2010-02-25 29696]
S3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys [2012-07-24 38632]
S3 taphss6;Anchorfree HSS VPN Adapter; C:\Windows\system32\DRIVERS\taphss6.sys [2013-11-13 42184]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-07-01 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2013-07-01 30208]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-10 144152]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-04-30 238080]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-04-29 361984]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-05-09 146592]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-05-09 80032]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-01-11 50344]
R2 CronService;Cron Service for Prey; C:\Prey\platform\windows\cronsvc.exe [2013-05-08 23552]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-01-23 2221904]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-07-21 103992]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-03-05 35200]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2000-01-01 2451456]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2013-12-13 377104]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-11-23 239176]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2013-12-17 5341536]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-02-20 1255736]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2012-12-17 137488]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 50899608]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-13 115608]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-08-28 563624]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

-----------------EOF-----------------

VIRY.CZ

Prosím o kontrolu - zasekaný pc a i tak kontrola

Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola

Re: Prosím o kontrolu - zasekaný pc a i tak kontrola