VIRY.CZ

Dobrý den.Mám problém neustále mi v chromu vyskakují nežádoucí reklamy bohužel žádnej takovej rozšiřovací doplněk to není takže to musí být něco v počítači.Jak zjistíte z logu co sem dám mám nainstalované hned některé mallware detektory které doporučujete ale ani jeden to neodstranil.Ještě dodám že se tohle děje jen v chromu kterej jsem zkoušel reinstalovat (bezúspěšně) a jakmile ho pustím hlásí eset potenciálně nechtěnou aplikaci.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-01-2014 01
Ran by user (administrator) on USER-PC on 30-01-2014 13:32:03
Running from C:\Users\user\Desktop
Windows 8.1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Western Digital) C:\Program Files\Western Digital\WD Boost\WDBoost.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(AVerMedia) C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
() C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\NAT.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\NAT.exe
(Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
(PandoraTV) C:\Program Files (x86)\PANDORA.TV\PanService\KMPProcess.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(MSI) C:\Program Files (x86)\SCM\Radio Manager.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(MSI) C:\Program Files (x86)\SCM\SCM.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
() C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe
(WinZip Computing, S.L.) C:\Program Files\WinZip\WZQKPICK32.EXE
(MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
() C:\Users\user\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
() C:\Users\user\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(SteelSeries) C:\Program Files (x86)\SteelSeries\World of Warcraft Cataclysm MMO Gaming Mouse\WoWMHID2.exe
(Curse) C:\Users\user\AppData\Local\Apps\2.0\EK5ACXOA.6AJ\9R2BMJCQ.9OW\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\CurseClient.exe
(Crawler.com) C:\Program Files (x86)\CStart8\CStart8Tray64.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(SteelSeries) C:\Program Files (x86)\SteelSeries\World of Warcraft Cataclysm MMO Gaming Mouse\WoWMTray2.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccsvchst.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccsvchst.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.3.0.14\ARA.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13538376 2013-07-09] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2875728 2013-07-09] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BtServer] - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [452608 2013-01-28] (Realtek Semiconductor Corporation)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-03-22] (Intel Corporation)
HKLM\...\Run: [MBCfg64] - C:\Windows\system32\MBCfg64.dll [34432 2013-04-23] (Creative Technology Ltd.)
HKLM\...\Run: [Radio Manager] - C:\Program Files (x86)\SCM\Radio Manager.exe [406920 2013-04-18] (MSI)
HKLM\...\Run: [SCM] - C:\Program Files (x86)\SCM\SCM.exe [407968 2013-04-18] (MSI)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\WINDOWS\system32\nvspcap64.dll [1096480 2013-11-29] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [SpywareTerminatorShield] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2777736 2013-10-22] (Crawler.com)
HKLM\...\Run: [SpywareTerminatorUpdater] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [3684488 2013-10-22] (Crawler.com)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [AdAwareTray] - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareTray.exe [4114264 2014-01-23] ()
HKLM-x32\...\Run: [Sound Blaster Cinema] - C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2012-11-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] - C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [Super-Charger] - C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [490480 2013-02-07] (MSI)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [BlueStacks Agent] - c:\Program Files (x86)\BlueStacks\HD-Agent.exe [597880 2013-01-07] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SteelSeries World of Warcraft Cataclysm MMO Gaming Mouse] - C:\Program Files (x86)\SteelSeries\World of Warcraft Cataclysm MMO Gaming Mouse\WoWMHID2.exe [1993216 2011-08-18] (SteelSeries)
HKLM-x32\...\Run: [CStart8] - C:\Program Files (x86)\CStart8\CStart8Tray64.exe [3138656 2013-10-04] (Crawler.com)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [Ad-Aware Browsing Protection] - C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe [559696 2013-09-27] (Lavasoft)
HKLM-x32\...\Run: [Search Protection] - C:\ProgramData\Search Protection\SearchProtection.exe
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1815976 2014-01-27] (Valve Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\user\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\user\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKCU\...\Run: [Gyazo] - C:\Program Files (x86)\Gyazo\GyStation.exe [2990304 2013-10-30] (Nota Inc.)
HKCU\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6563608 2014-01-30] (SUPERAntiSpyware)
MountPoints2: {af0e3aba-810c-11e3-beaa-8c89a50dcc82} - "G:\Autorun.exe"
MountPoints2: {bcabd015-4615-11e3-824f-806e6f6e6963} - "E:\LaunchEAWG.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [168616 2013-11-14] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-11-14] (NVIDIA Corporation)
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://msi13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
SearchScopes: HKLM - DefaultScope {9E6EE421-6EC9-4EA7-A6DA-6D3A951C99B0} URL = http://www.bing.com/search?q={searchTer ... &pc=MAMIJS;
SearchScopes: HKLM - {9E6EE421-6EC9-4EA7-A6DA-6D3A951C99B0} URL = http://www.bing.com/search?q={searchTer ... &pc=MAMIJS;
SearchScopes: HKLM-x32 - {9E6EE421-6EC9-4EA7-A6DA-6D3A951C99B0} URL = http://www.bing.com/search?q={searchTer ... &pc=MAMIJS;
SearchScopes: HKCU - {01725489-9180-4720-8E69-016D6BFC6FE2} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKCU - {0B8AE18E-A6E1-45EB-9EEB-B29BE1708EDB} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKCU - {98B89DA1-C47E-4E8F-B269-986E459C52E5} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKCU - {A7B8B00E-9CC1-410C-9207-C346C533D877} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKCU - {ABC3BA3F-94A4-4DFC-8628-BF7AA437AC3C} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKCU - {BFF04600-C57B-43FD-A0C0-43A7C7654C29} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKCU - {D2DB7427-F7A7-4617-BB79-A20E5BDE7199} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKCU - {D6A70810-B545-4BA3-8E3D-D3DA20A78ED8} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {E7D7DAFF-5AEE-474F-8368-521CBF9F2ECE} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

Chrome:
=======
CHR Extension: (Webexp Enhanced) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\akabfajilllcedppanaondhoincdndll [2014-01-30]
CHR Extension: (Dokumenty Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-30]
CHR Extension: (Disk Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-30]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-30]
CHR Extension: (Vyhledávání Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-30]
CHR Extension: (Norton Identity Protection) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-01-30]
CHR Extension: (Video Player) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nchcmebkafbcdahjbdfamifmmoamndgn [2014-01-30]
CHR Extension: (Peněženka Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-30]
CHR Extension: (Lavasoft NewTab) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole [2014-01-30]
CHR Extension: (Media Player) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\omdmadjapcmlobjajdkjbpfmocjcbpie [2014-01-30]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-30]
CHR HKLM-x32\...\Chrome\Extension: [akabfajilllcedppanaondhoincdndll] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha273\ch\WebexpEnhancedV1alpha273.crx [2013-12-19]
CHR HKLM-x32\...\Chrome\Extension: [lgnpmcfjohgjgfimgbegoabmaljgkokk] - C:\Program Files (x86)\GreyGray\lgnpmcfjohgjgfimgbegoabmaljgkokk.crx [2013-10-01]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\Exts\Chrome.crx [2013-10-10]
CHR HKLM-x32\...\Chrome\Extension: [mmifolfpllfdhilecpdpmemhelmanajl] - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ch\BetterSurfPlus.crx [2013-10-10]
CHR HKLM-x32\...\Chrome\Extension: [nchcmebkafbcdahjbdfamifmmoamndgn] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta190\ch\VideoPlayerV3beta190.crx [2014-01-07]
CHR HKLM-x32\...\Chrome\Extension: [oejkcgajlodefenbbjdnaiahmbnnoole] - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx [2014-01-17]
CHR HKLM-x32\...\Chrome\Extension: [poheodfamflhhhdcmjfeggbgigeefaco] - C:\Program Files (x86)\Better-Surf\ch\Chrome.crx [2014-01-17]

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
R2 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [364544 2013-01-05] (AVerMedia)
R2 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [403456 2011-04-02] ()
R2 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2011-10-31] (AVerMedia TECHNOLOGIES, Inc.)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2013-11-20] (BitRaider, LLC)
S2 BstHdAndroidSvc; c:\Program Files (x86)\BlueStacks\HD-Service.exe [393080 2013-01-07] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; c:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384888 2013-01-07] (BlueStack Systems, Inc.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [39424 2012-12-07] ()
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-03-22] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-02-16] (Intel Corporation)
S2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareService.exe [702744 2014-01-23] ()
R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2013-04-18] (Micro-Star International Co., Ltd.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [154112 2013-02-08] (MSI)
R2 NAT; C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\NAT.exe [232424 2013-10-11] (Symantec Corporation)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
S3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4230016 2013-01-28] (Symantec Corporation)
R2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe [123320 2012-08-13] (Symantec Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912 2013-11-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15128352 2013-11-29] (NVIDIA Corporation)
R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)
R2 PCCUJobMgr; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe [126392 2012-08-13] (Symantec Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S2 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [1149104 2013-10-22] (Crawler.com)
S2 Update GreyGray; C:\Program Files (x86)\GreyGray\updateGreyGray.exe [102168 2014-01-25] ()
S2 Util GreyGray; C:\Program Files (x86)\GreyGray\bin\utilGreyGray.exe [102168 2014-01-25] ()
R2 WD Boost; C:\Program Files\Western Digital\WD Boost\WDBoost.exe [55056 2013-04-13] (Western Digital)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
S3 gusvc; "C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe" [x]

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 AVerPola; C:\Windows\system32\DRIVERS\AVerPola.sys [845312 2013-03-01] (AVerMedia TECHNOLOGIES, Inc.)
S3 AVPolCIR; C:\Windows\System32\drivers\AVPolCIR.sys [50688 2010-10-07] (AVerMedia TECHNOLOGIES, Inc.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20131114.001\BHDrvx64.sys [1524824 2013-10-23] (Symantec Corporation)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2013-10-11] (BitRaider)
S2 BstHdDrv; c:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [71032 2013-01-07] (BlueStack Systems)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R3 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0403000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
R1 ccSet_NAT; C:\Windows\system32\drivers\NATx64\010A000.009\ccSetx64.sys [150104 2013-07-29] (Symantec Corporation)
R3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-10-07] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [239296 2013-09-17] (ESET)
R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-21] (Symantec Corporation)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-21] (Symantec Corporation)
R1 hiofs; C:\Windows\System32\DRIVERS\hiofs.sys [28944 2013-04-13] (Western Digital)
R0 hiosd; C:\Windows\System32\DRIVERS\hiosd.sys [173840 2013-04-13] (Western Digital)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20131202.001\IDSvia64.sys [521816 2013-10-28] (Symantec Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20131203.002\ENG64.SYS [126040 2013-11-04] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20131203.002\EX64.SYS [2099288 2013-11-04] (Symantec Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-10-30] (NVIDIA Corporation)
S3 rccfg; C:\Windows\System32\drivers\rccfg.sys [21680 2013-03-28] (AMD, Inc.)
S3 rcraid; C:\Windows\System32\drivers\rcraid.sys [526000 2013-03-28] (AMD, Inc.)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [524360 2013-07-09] (Realtek Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2014-01-29] (Windows (R) Win 7 DDK provider)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1404000.028\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
R3 SRTSPX; C:\Windows\system32\drivers\NISx64\1404000.028\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation)
R3 SSMO3v2Filter; C:\Windows\system32\drivers\MO3v2Driver.sys [23040 2010-11-22] (Sagatek Co. Ltd.)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R3 SymDS; C:\Windows\system32\drivers\NISx64\1404000.028\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
R3 SymEFA; C:\Windows\system32\drivers\NISx64\1404000.028\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
S4 SymELAM; C:\Windows\system32\drivers\NISx64\1404000.028\SymELAM.sys [23448 2012-06-20] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2013-10-08] (Symantec Corporation)
R3 SymIRON; C:\Windows\system32\drivers\NISx64\1404000.028\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation)
R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [329800 2013-07-17] (BitDefender S.R.L.)
R3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-01-30 13:32 - 2014-01-30 13:32 - 00027460 _____ C:\Users\user\Desktop\FRST.txt
2014-01-30 13:31 - 2014-01-30 13:32 - 00000000 ____D C:\FRST
2014-01-30 13:31 - 2014-01-30 13:31 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2014-01-30 13:25 - 2014-01-30 13:25 - 02079744 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2014-01-30 13:11 - 2014-01-30 13:11 - 00000000 ___SH C:\DkHyperbootSync
2014-01-30 13:09 - 2014-01-30 13:11 - 00000000 ____D C:\Users\user\Desktop\hh
2014-01-30 12:54 - 2014-01-30 13:11 - 00000538 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Warhammer 40k dawn of war 2 (Win8) - poradna.net.website
2014-01-30 12:53 - 2014-01-30 13:11 - 00000495 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Prima Cool ONLINE TV.website
2014-01-30 12:45 - 2014-01-30 13:28 - 00019503 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-30 12:40 - 2014-01-30 12:40 - 00001238 _____ C:\WINDOWS\PFRO.log
2014-01-30 12:38 - 2014-01-30 12:39 - 00000000 ____D C:\AdwCleaner
2014-01-30 12:38 - 2014-01-30 12:38 - 01166132 _____ C:\Users\user\Downloads\adwcleaner.exe
2014-01-30 12:34 - 2014-01-30 12:43 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973.job
2014-01-30 12:34 - 2014-01-30 12:34 - 00003712 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973
2014-01-30 12:29 - 2014-01-30 12:44 - 00002213 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-30 12:29 - 2014-01-30 12:39 - 00000964 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-30 12:29 - 2014-01-30 12:34 - 00003936 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-30 12:29 - 2014-01-30 12:29 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-30 12:28 - 2014-01-30 12:29 - 00000000 ____D C:\Users\user\AppData\Local\Google
2014-01-30 03:06 - 2014-01-30 03:06 - 00002770 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-01-30 03:05 - 2014-01-30 03:06 - 00000000 ____D C:\Program Files\CCleaner
2014-01-30 02:49 - 2014-01-30 02:49 - 00000074 _____ C:\Users\user\Desktop\VIRY.CZ • Zobrazit téma - Preventivka.url
2014-01-30 02:18 - 2014-01-30 10:18 - 00000524 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task c2366258-f72f-4b3e-a345-a1e1a093dc54.job
2014-01-30 02:18 - 2014-01-30 02:50 - 00000524 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 000da97b-2080-4fe6-8d01-ffa4eb262f8c.job
2014-01-30 02:18 - 2014-01-30 02:33 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2014-01-30 02:18 - 2014-01-30 02:18 - 00003574 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task 000da97b-2080-4fe6-8d01-ffa4eb262f8c
2014-01-30 02:18 - 2014-01-30 02:18 - 00003492 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task c2366258-f72f-4b3e-a345-a1e1a093dc54
2014-01-30 02:18 - 2014-01-30 02:18 - 00001830 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-01-30 02:18 - 2014-01-30 02:18 - 00000000 ____D C:\Users\user\AppData\Roaming\SUPERAntiSpyware.com
2014-01-30 02:18 - 2014-01-30 02:18 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D C:\Users\user\AppData\Roaming\LavasoftStatistics
2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D C:\Users\user\AppData\Roaming\Lavasoft
2014-01-30 00:08 - 2014-01-30 12:44 - 00002339 _____ C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
2014-01-30 00:07 - 2014-01-30 00:34 - 00000000 ____D C:\Users\user\AppData\Local\adawarebp
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\Users\user\AppData\Roaming\SecureSearch
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\ProgramData\Ad-Aware Browsing Protection
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\Program Files\Lavasoft
2014-01-30 00:06 - 2014-01-30 00:06 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2014-01-30 00:05 - 2014-01-30 00:05 - 00000000 ____D C:\ProgramData\Lavasoft
2014-01-30 00:05 - 2014-01-30 00:05 - 00000000 ____D C:\Program Files\Common Files\Lavasoft
2014-01-30 00:01 - 2014-01-30 00:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2014-01-30 00:00 - 2014-01-30 00:01 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-30 00:00 - 2014-01-30 00:01 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-30 00:00 - 2014-01-30 00:00 - 00001401 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-01-30 00:00 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2014-01-29 23:42 - 2014-01-29 23:58 - 00000000 ____D C:\ProgramData\Spyware Terminator
2014-01-29 23:42 - 2014-01-29 23:42 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\stflt.sys
2014-01-29 23:42 - 2014-01-29 23:42 - 00001060 _____ C:\Users\Public\Desktop\Spyware Terminator 2012.lnk
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Users\user\AppData\Roaming\Spyware Terminator
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Users\user\AppData\Roaming\CStart8
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Program Files (x86)\CStart8
2014-01-29 23:25 - 2014-01-29 23:25 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-29 22:51 - 2014-01-29 22:51 - 00000000 ____D C:\Users\user\AppData\Roaming\ESET
2014-01-29 22:51 - 2014-01-29 22:51 - 00000000 ____D C:\Users\user\AppData\Local\ESET
2014-01-29 22:49 - 2014-01-29 22:49 - 00000000 ____D C:\ProgramData\ESET
2014-01-29 22:49 - 2014-01-29 22:49 - 00000000 ____D C:\Program Files\ESET
2014-01-29 22:12 - 2014-01-29 22:12 - 00000270 __RSH C:\ProgramData\ntuser.pol
2014-01-29 22:12 - 2014-01-29 22:12 - 00000000 ____D C:\Program Files (x86)\MediaPlayerV1
2014-01-25 17:47 - 2014-01-27 17:45 - 00000000 ____D C:\Users\user\AppData\Roaming\Hamachi
2014-01-25 17:47 - 2014-01-25 17:47 - 00033344 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\Drivers\hamachi.sys
2014-01-25 17:47 - 2014-01-25 17:47 - 00000967 _____ C:\Users\Public\Desktop\hamachi.lnk
2014-01-25 17:47 - 2014-01-25 17:47 - 00000000 ____D C:\Program Files (x86)\Hamachi
2014-01-25 16:52 - 2014-01-25 16:54 - 00000000 ____D C:\Users\user\Documents\Stronghold Crusader
2014-01-25 16:51 - 2014-01-25 16:51 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-01-25 16:45 - 2014-01-25 16:45 - 00000000 ____D C:\GOG Games
2014-01-25 02:49 - 2014-01-25 02:49 - 00000000 ____D C:\Program Files (x86)\1C
2014-01-21 16:39 - 2014-01-21 17:07 - 00000000 ____D C:\Users\user\AppData\Roaming\TeamViewer
2014-01-21 16:39 - 2014-01-21 16:39 - 00001188 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-21 16:39 - 2014-01-21 16:39 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-21 16:38 - 2014-01-21 16:38 - 06076392 _____ (TeamViewer GmbH) C:\Users\user\Downloads\TeamViewer_Setup_cs.exe
2014-01-20 15:49 - 2014-01-20 15:49 - 00000000 __SHD C:\WINDOWS\ftpcache
2014-01-20 12:02 - 2014-01-20 12:02 - 00041562 _____ C:\Users\user\Downloads\[CzT]Company_of_Heroes_Tales_of_Valor_Internal_Czech_PHOENiX.torrent
2014-01-19 20:25 - 2014-01-19 20:26 - 24921361 _____ C:\Users\user\Downloads\LotrBfMe2EP1-131073-english (1).exe
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\Users\user\AppData\Roaming\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\Users\user\AppData\Local\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\ProgramData\PACE Anti-Piracy
2014-01-19 20:19 - 2014-01-19 20:20 - 26337045 _____ C:\Users\user\Downloads\LotrBfMe2EP1-131073-english.exe
2014-01-19 20:17 - 2014-01-25 15:14 - 00000546 _____ C:\Users\user\Desktop\Bfme.txt
2014-01-19 20:11 - 2014-01-19 20:11 - 00000539 _____ C:\Users\user\Downloads\lotrbfme2_win_7_64bit_fix.zip
2014-01-19 20:08 - 2014-01-19 23:50 - 00000000 ____D C:\Users\user\AppData\Roaming\My The Lord of the Rings, The Rise of the Witch-king Files
2014-01-19 18:43 - 2014-01-19 18:45 - 00446762 _____ C:\Users\user\Downloads\LotrBfMe2EP1_Mi-poseden.rar
2014-01-18 22:02 - 2014-01-18 22:02 - 00000000 ____D C:\Users\user\AppData\Local\Rocket Bear Games
2014-01-16 19:51 - 2014-01-16 19:51 - 00016352 _____ C:\Users\user\Downloads\Supernatural_S09E10.rar
2014-01-16 16:58 - 2014-01-16 16:58 - 00000000 ____D C:\Users\user\Documents\Stronghold 3
2014-01-16 16:45 - 2014-01-16 16:45 - 00000000 ____D C:\Program Files (x86)\Firefly Studios
2014-01-16 16:31 - 2014-01-16 16:31 - 00011608 _____ C:\Users\user\Downloads\[CzT]Stronghold_3_Gold_CZ_2012_ (1).torrent
2014-01-15 18:04 - 2013-12-09 01:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-15 18:04 - 2013-11-27 16:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-15 18:04 - 2013-11-27 12:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-15 18:04 - 2013-11-27 11:34 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2014-01-15 18:04 - 2013-11-27 10:54 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-15 18:04 - 2013-11-27 09:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 18:04 - 2013-11-27 09:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-15 18:04 - 2013-11-27 09:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 18:04 - 2013-11-27 09:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-15 18:04 - 2013-11-27 09:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-15 18:04 - 2013-11-27 09:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-14 22:53 - 2014-01-14 22:53 - 00001808 _____ C:\Users\user\Downloads\addon (4).crx
2014-01-14 22:52 - 2014-01-14 22:52 - 00001808 _____ C:\Users\user\Downloads\addon (3).crx
2014-01-14 12:43 - 2014-01-14 12:43 - 00365067 _____ C:\Users\user\Downloads\[CzT]Star_Trek_Nova_generace_Star_Trek_The_Next_Generation.torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312988 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (1).torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312987 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (3).torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312987 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (2).torrent
2014-01-13 07:36 - 2014-01-13 07:36 - 06370092 _____ C:\Users\user\Desktop\2014.01.12-IV.zip
2014-01-11 16:57 - 2014-01-15 16:18 - 00000000 ____D C:\Users\user\AppData\Roaming\Tropico 4
2014-01-11 16:57 - 2014-01-11 16:57 - 00000000 ____D C:\Users\user\AppData\Roaming\Kalypso Media
2014-01-11 16:50 - 2014-01-11 16:50 - 00000000 ____D C:\Program Files (x86)\Kalypso Media
2014-01-11 15:22 - 2014-01-11 15:22 - 00020347 _____ C:\Users\user\Downloads\[CzT]Tropico_4.torrent
2014-01-11 04:44 - 2014-01-11 04:44 - 01079915 _____ C:\Users\user\Downloads\olfeabkoenfaoljndfecamgilllcpiak_21290.crx
2014-01-10 02:12 - 2014-01-10 02:12 - 00000000 ____D C:\Program Files (x86)\VideoPlayerV3
2014-01-10 01:20 - 2014-01-10 01:20 - 00001057 _____ C:\Users\user\Desktop\KMPlayer.lnk
2014-01-10 01:19 - 2014-01-10 01:19 - 32200464 _____ (PandoraTV) C:\Users\user\Downloads\3.8.0.117_20140108021056.exe
2014-01-09 20:40 - 2014-01-09 20:40 - 00312988 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_.torrent
2014-01-09 18:29 - 2014-01-09 18:30 - 21070065 _____ (LucasArts) C:\Users\user\Downloads\FOCUpdate1_1.exe
2014-01-09 17:58 - 2014-01-09 17:58 - 00114352 _____ (GameRanger Technologies) C:\Users\user\Downloads\GameRangerSetup.exe
2014-01-09 17:58 - 2014-01-09 17:58 - 00001130 _____ C:\Users\user\Desktop\GameRanger.lnk
2014-01-09 17:58 - 2014-01-09 17:58 - 00001116 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk
2014-01-09 17:58 - 2014-01-09 17:58 - 00000000 ____D C:\Users\user\AppData\Roaming\GameRanger
2014-01-09 17:55 - 2014-01-09 17:55 - 00096768 _____ (http://computerlimbo.com) C:\Users\user\Downloads\EAW + FOC Patch.exe
2014-01-08 23:12 - 2014-01-08 23:12 - 01463328 _____ C:\Users\user\Downloads\SystemCheck_enGB (1).exe
2014-01-08 17:27 - 2014-01-08 17:27 - 00001808 _____ C:\Users\user\Downloads\addon (2).crx
2014-01-08 17:27 - 2014-01-08 17:27 - 00001808 _____ C:\Users\user\Downloads\addon (1).crx
2014-01-08 17:26 - 2014-01-08 17:26 - 00001808 _____ C:\Users\user\Downloads\addon.crx
2014-01-06 20:23 - 2014-01-06 20:23 - 04558848 _____ (Google Inc.) C:\WINDOWS\SysWOW64\GPhotos.scr
2014-01-05 13:13 - 2013-07-03 18:21 - 1669848566 _____ (Republic at War Modding Team) C:\Users\user\Downloads\Republic at War.exe
2014-01-04 02:12 - 2014-01-04 02:12 - 11993368 _____ C:\Users\user\Downloads\Pattons_Mod.rar
2014-01-04 02:11 - 2014-01-04 03:18 - 1652184021 _____ C:\Users\user\Downloads\RaW_AUTO.zip
2014-01-04 02:10 - 2014-01-04 02:10 - 00011297 _____ C:\Users\user\Downloads\1.2.1.zip
2014-01-03 21:30 - 2014-01-30 03:08 - 00000000 ____D C:\Users\user\AppData\Roaming\TS3Client
2014-01-03 21:29 - 2014-01-03 21:29 - 00000989 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-01-03 21:29 - 2014-01-03 21:29 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2014-01-03 21:28 - 2014-01-03 21:29 - 32520760 _____ (TeamSpeak Systems GmbH) C:\Users\user\Downloads\TeamSpeak3-Client-win64-3.0.13.1.exe
2014-01-01 20:53 - 2014-01-30 03:08 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-01 14:33 - 2014-01-01 14:33 - 00000000 ____D C:\Users\user\Documents\Aspyr
2014-01-01 13:39 - 2014-01-01 13:39 - 00000000 ____D C:\Users\user\AppData\Local\Aspyr
2014-01-01 13:39 - 2014-01-01 13:39 - 00000000 ____D C:\Program Files (x86)\Aspyr
2014-01-01 02:47 - 2014-01-01 02:47 - 00037464 _____ C:\Users\user\Downloads\[CzT]Star_Wars_The_Force_Unleashed_Ultimate_Sith_Edition_2008_.torrent
2014-01-01 02:42 - 2014-01-01 02:42 - 00024143 _____ C:\Users\user\Downloads\[CzT]Star_Wars_The_Force_Unleashed.torrent
2013-12-31 21:27 - 2013-12-31 21:27 - 00000000 ____D C:\Program Files (x86)\Paradox Interactive
2013-12-31 03:27 - 2014-01-20 19:13 - 00001293 _____ C:\WINDOWS\system32\Drivers\etc\hosts.txt

==================== One Month Modified Files and Folders =======

2014-01-30 13:32 - 2014-01-30 13:32 - 00027460 _____ C:\Users\user\Desktop\FRST.txt
2014-01-30 13:32 - 2014-01-30 13:31 - 00000000 ____D C:\FRST
2014-01-30 13:31 - 2014-01-30 13:31 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2014-01-30 13:28 - 2014-01-30 12:45 - 00019503 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-30 13:25 - 2014-01-30 13:25 - 02079744 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2014-01-30 13:16 - 2013-10-05 04:06 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-22948852-3544084575-3188587028-1002
2014-01-30 13:11 - 2014-01-30 13:11 - 00000000 ___SH C:\DkHyperbootSync
2014-01-30 13:11 - 2014-01-30 13:09 - 00000000 ____D C:\Users\user\Desktop\hh
2014-01-30 13:11 - 2014-01-30 12:54 - 00000538 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Warhammer 40k dawn of war 2 (Win8) - poradna.net.website
2014-01-30 13:11 - 2014-01-30 12:53 - 00000495 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Prima Cool ONLINE TV.website
2014-01-30 13:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-30 12:44 - 2014-01-30 12:29 - 00002213 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-30 12:44 - 2014-01-30 00:08 - 00002339 _____ C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
2014-01-30 12:43 - 2014-01-30 12:34 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973.job
2014-01-30 12:43 - 2013-12-01 16:17 - 00000000 ____D C:\Users\user\AppData\Local\Deployment
2014-01-30 12:43 - 2013-10-07 15:38 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-30 12:41 - 2013-10-05 03:57 - 00098632 _____ C:\Users\user\AppData\Local\BTServer.log
2014-01-30 12:40 - 2014-01-30 12:40 - 00001238 _____ C:\WINDOWS\PFRO.log
2014-01-30 12:40 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-30 12:40 - 2013-07-10 15:56 - 00000000 ____D C:\ProgramData\Realtek
2014-01-30 12:39 - 2014-01-30 12:38 - 00000000 ____D C:\AdwCleaner
2014-01-30 12:39 - 2014-01-30 12:29 - 00000964 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-30 12:39 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-30 12:38 - 2014-01-30 12:38 - 01166132 _____ C:\Users\user\Downloads\adwcleaner.exe
2014-01-30 12:34 - 2014-01-30 12:34 - 00003712 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973
2014-01-30 12:34 - 2014-01-30 12:29 - 00003936 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-30 12:29 - 2014-01-30 12:29 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-30 12:29 - 2014-01-30 12:28 - 00000000 ____D C:\Users\user\AppData\Local\Google
2014-01-30 10:51 - 2013-11-11 14:24 - 00003962 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3EC6B964-A6DD-4601-812A-52A9F83D464C}
2014-01-30 10:18 - 2014-01-30 02:18 - 00000524 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task c2366258-f72f-4b3e-a345-a1e1a093dc54.job
2014-01-30 05:30 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2014-01-30 03:08 - 2014-01-03 21:30 - 00000000 ____D C:\Users\user\AppData\Roaming\TS3Client
2014-01-30 03:08 - 2014-01-01 20:53 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-30 03:08 - 2013-11-05 13:27 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-30 03:08 - 2013-10-07 23:30 - 00000000 ____D C:\Users\user\AppData\Roaming\DAEMON Tools Lite
2014-01-30 03:08 - 2013-10-07 15:59 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps
2014-01-30 03:08 - 2013-10-07 15:09 - 00000000 ____D C:\Users\user\AppData\Roaming\uTorrent
2014-01-30 03:07 - 2013-10-07 20:44 - 00000000 ___RD C:\Users\user\Desktop\Programy
2014-01-30 03:06 - 2014-01-30 03:06 - 00002770 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-01-30 03:06 - 2014-01-30 03:05 - 00000000 ____D C:\Program Files\CCleaner
2014-01-30 02:53 - 2013-11-05 14:08 - 00000000 __RDO C:\Users\user\SkyDrive
2014-01-30 02:50 - 2014-01-30 02:18 - 00000524 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 000da97b-2080-4fe6-8d01-ffa4eb262f8c.job
2014-01-30 02:49 - 2014-01-30 02:49 - 00000074 _____ C:\Users\user\Desktop\VIRY.CZ • Zobrazit téma - Preventivka.url
2014-01-30 02:33 - 2014-01-30 02:18 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2014-01-30 02:18 - 2014-01-30 02:18 - 00003574 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task 000da97b-2080-4fe6-8d01-ffa4eb262f8c
2014-01-30 02:18 - 2014-01-30 02:18 - 00003492 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task c2366258-f72f-4b3e-a345-a1e1a093dc54
2014-01-30 02:18 - 2014-01-30 02:18 - 00001830 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-01-30 02:18 - 2014-01-30 02:18 - 00000000 ____D C:\Users\user\AppData\Roaming\SUPERAntiSpyware.com
2014-01-30 02:18 - 2014-01-30 02:18 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2014-01-30 01:45 - 2013-10-08 05:54 - 00000000 ____D C:\Users\user\AppData\Local\Battle.net
2014-01-30 01:41 - 2013-11-25 14:03 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2014-01-30 00:34 - 2014-01-30 00:07 - 00000000 ____D C:\Users\user\AppData\Local\adawarebp
2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D C:\Users\user\AppData\Roaming\LavasoftStatistics
2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D C:\Users\user\AppData\Roaming\Lavasoft
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\Users\user\AppData\Roaming\SecureSearch
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\ProgramData\Ad-Aware Browsing Protection
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\Program Files\Lavasoft
2014-01-30 00:06 - 2014-01-30 00:06 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2014-01-30 00:05 - 2014-01-30 00:05 - 00000000 ____D C:\ProgramData\Lavasoft
2014-01-30 00:05 - 2014-01-30 00:05 - 00000000 ____D C:\Program Files\Common Files\Lavasoft
2014-01-30 00:01 - 2014-01-30 00:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2014-01-30 00:01 - 2014-01-30 00:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-30 00:01 - 2014-01-30 00:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-30 00:00 - 2014-01-30 00:00 - 00001401 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-01-29 23:58 - 2014-01-29 23:42 - 00000000 ____D C:\ProgramData\Spyware Terminator
2014-01-29 23:42 - 2014-01-29 23:42 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\stflt.sys
2014-01-29 23:42 - 2014-01-29 23:42 - 00001060 _____ C:\Users\Public\Desktop\Spyware Terminator 2012.lnk
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Users\user\AppData\Roaming\Spyware Terminator
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Users\user\AppData\Roaming\CStart8
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Program Files (x86)\CStart8
2014-01-29 23:25 - 2014-01-29 23:25 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-29 23:18 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-29 23:15 - 2013-10-30 00:23 - 00000000 ____D C:\Program Files (x86)\GreyGray
2014-01-29 23:09 - 2013-08-22 15:44 - 00344792 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-29 23:00 - 2013-10-05 04:11 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype
2014-01-29 22:51 - 2014-01-29 22:51 - 00000000 ____D C:\Users\user\AppData\Roaming\ESET
2014-01-29 22:51 - 2014-01-29 22:51 - 00000000 ____D C:\Users\user\AppData\Local\ESET
2014-01-29 22:49 - 2014-01-29 22:49 - 00000000 ____D C:\ProgramData\ESET
2014-01-29 22:49 - 2014-01-29 22:49 - 00000000 ____D C:\Program Files\ESET
2014-01-29 22:12 - 2014-01-29 22:12 - 00000270 __RSH C:\ProgramData\ntuser.pol
2014-01-29 22:12 - 2014-01-29 22:12 - 00000000 ____D C:\Program Files (x86)\MediaPlayerV1
2014-01-29 22:12 - 2013-12-10 17:12 - 00000308 _____ C:\extensions.ini
2014-01-29 22:12 - 2013-08-22 16:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2014-01-29 22:12 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2014-01-29 15:09 - 2013-12-09 18:04 - 00000000 ____D C:\Users\user\AppData\Roaming\vlc
2014-01-28 19:04 - 2013-10-15 21:58 - 00000000 ____D C:\Users\user\Documents\The KMPlayer
2014-01-28 15:40 - 2013-10-07 20:43 - 00000000 ____D C:\Users\user\Documents\StarCraft II
2014-01-28 02:41 - 2013-11-05 13:55 - 01749406 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-28 02:41 - 2013-09-30 04:56 - 00740962 _____ C:\WINDOWS\system32\perfh005.dat
2014-01-28 02:41 - 2013-09-30 04:56 - 00152146 _____ C:\WINDOWS\system32\perfc005.dat
2014-01-27 17:45 - 2014-01-25 17:47 - 00000000 ____D C:\Users\user\AppData\Roaming\Hamachi
2014-01-27 00:08 - 2013-10-07 18:23 - 00000000 ____D C:\Users\user\Documents\AVerTV
2014-01-26 03:04 - 2013-10-07 15:54 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-25 23:14 - 2013-10-07 20:44 - 00000000 ____D C:\Users\user\Desktop\Hry
2014-01-25 17:47 - 2014-01-25 17:47 - 00033344 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\Drivers\hamachi.sys
2014-01-25 17:47 - 2014-01-25 17:47 - 00000967 _____ C:\Users\Public\Desktop\hamachi.lnk
2014-01-25 17:47 - 2014-01-25 17:47 - 00000000 ____D C:\Program Files (x86)\Hamachi
2014-01-25 16:54 - 2014-01-25 16:52 - 00000000 ____D C:\Users\user\Documents\Stronghold Crusader
2014-01-25 16:51 - 2014-01-25 16:51 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-01-25 16:45 - 2014-01-25 16:45 - 00000000 ____D C:\GOG Games
2014-01-25 15:14 - 2014-01-19 20:17 - 00000546 _____ C:\Users\user\Desktop\Bfme.txt
2014-01-25 02:55 - 2013-10-07 23:51 - 00000000 ____D C:\Users\user\Documents\My Games
2014-01-25 02:54 - 2013-11-04 17:15 - 00000000 ____D C:\Users\user\AppData\Local\Adobe
2014-01-25 02:54 - 2013-10-05 04:09 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-25 02:49 - 2014-01-25 02:49 - 00000000 ____D C:\Program Files (x86)\1C
2014-01-24 03:37 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-22 05:07 - 2013-10-07 20:43 - 00000000 ____D C:\Program Files (x86)\StarCraft II
2014-01-21 17:07 - 2014-01-21 16:39 - 00000000 ____D C:\Users\user\AppData\Roaming\TeamViewer
2014-01-21 16:39 - 2014-01-21 16:39 - 00001188 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-21 16:39 - 2014-01-21 16:39 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-21 16:38 - 2014-01-21 16:38 - 06076392 _____ (TeamViewer GmbH) C:\Users\user\Downloads\TeamViewer_Setup_cs.exe
2014-01-20 19:13 - 2013-12-31 03:27 - 00001293 _____ C:\WINDOWS\system32\Drivers\etc\hosts.txt
2014-01-20 15:52 - 2013-11-01 14:50 - 00000000 ____D C:\Program Files (x86)\THQ
2014-01-20 15:49 - 2014-01-20 15:49 - 00000000 __SHD C:\WINDOWS\ftpcache
2014-01-20 12:02 - 2014-01-20 12:02 - 00041562 _____ C:\Users\user\Downloads\[CzT]Company_of_Heroes_Tales_of_Valor_Internal_Czech_PHOENiX.torrent
2014-01-19 23:50 - 2014-01-19 20:08 - 00000000 ____D C:\Users\user\AppData\Roaming\My The Lord of the Rings, The Rise of the Witch-king Files
2014-01-19 20:26 - 2014-01-19 20:25 - 24921361 _____ C:\Users\user\Downloads\LotrBfMe2EP1-131073-english (1).exe
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\Users\user\AppData\Roaming\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\Users\user\AppData\Local\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\ProgramData\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:19 - 26337045 _____ C:\Users\user\Downloads\LotrBfMe2EP1-131073-english.exe
2014-01-19 20:11 - 2014-01-19 20:11 - 00000539 _____ C:\Users\user\Downloads\lotrbfme2_win_7_64bit_fix.zip
2014-01-19 19:54 - 2013-10-11 18:33 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
2014-01-19 18:45 - 2014-01-19 18:43 - 00446762 _____ C:\Users\user\Downloads\LotrBfMe2EP1_Mi-poseden.rar
2014-01-19 08:38 - 2013-12-26 13:56 - 00270496 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-01-18 22:02 - 2014-01-18 22:02 - 00000000 ____D C:\Users\user\AppData\Local\Rocket Bear Games
2014-01-18 05:10 - 2013-11-12 21:04 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2014-01-17 11:14 - 2013-10-08 05:53 - 00000000 ____D C:\Program Files (x86)\Battle.net
2014-01-16 19:51 - 2014-01-16 19:51 - 00016352 _____ C:\Users\user\Downloads\Supernatural_S09E10.rar
2014-01-16 16:58 - 2014-01-16 16:58 - 00000000 ____D C:\Users\user\Documents\Stronghold 3
2014-01-16 16:45 - 2014-01-16 16:45 - 00000000 ____D C:\Program Files (x86)\Firefly Studios
2014-01-16 16:31 - 2014-01-16 16:31 - 00011608 _____ C:\Users\user\Downloads\[CzT]Stronghold_3_Gold_CZ_2012_ (1).torrent
2014-01-16 05:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-15 19:55 - 2013-10-07 20:43 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-15 19:54 - 2013-10-07 20:43 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-15 16:18 - 2014-01-11 16:57 - 00000000 ____D C:\Users\user\AppData\Roaming\Tropico 4
2014-01-14 22:53 - 2014-01-14 22:53 - 00001808 _____ C:\Users\user\Downloads\addon (4).crx
2014-01-14 22:52 - 2014-01-14 22:52 - 00001808 _____ C:\Users\user\Downloads\addon (3).crx
2014-01-14 12:43 - 2014-01-14 12:43 - 00365067 _____ C:\Users\user\Downloads\[CzT]Star_Trek_Nova_generace_Star_Trek_The_Next_Generation.torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312988 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (1).torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312987 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (3).torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312987 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (2).torrent
2014-01-13 07:36 - 2014-01-13 07:36 - 06370092 _____ C:\Users\user\Desktop\2014.01.12-IV.zip
2014-01-11 16:57 - 2014-01-11 16:57 - 00000000 ____D C:\Users\user\AppData\Roaming\Kalypso Media
2014-01-11 16:50 - 2014-01-11 16:50 - 00000000 ____D C:\Program Files (x86)\Kalypso Media
2014-01-11 15:22 - 2014-01-11 15:22 - 00020347 _____ C:\Users\user\Downloads\[CzT]Tropico_4.torrent
2014-01-11 04:44 - 2014-01-11 04:44 - 01079915 _____ C:\Users\user\Downloads\olfeabkoenfaoljndfecamgilllcpiak_21290.crx
2014-01-10 02:12 - 2014-01-10 02:12 - 00000000 ____D C:\Program Files (x86)\VideoPlayerV3
2014-01-10 01:20 - 2014-01-10 01:20 - 00001057 _____ C:\Users\user\Desktop\KMPlayer.lnk
2014-01-10 01:19 - 2014-01-10 01:19 - 32200464 _____ (PandoraTV) C:\Users\user\Downloads\3.8.0.117_20140108021056.exe
2014-01-09 20:40 - 2014-01-09 20:40 - 00312988 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_.torrent
2014-01-09 18:30 - 2014-01-09 18:29 - 21070065 _____ (LucasArts) C:\Users\user\Downloads\FOCUpdate1_1.exe
2014-01-09 17:58 - 2014-01-09 17:58 - 00114352 _____ (GameRanger Technologies) C:\Users\user\Downloads\GameRangerSetup.exe
2014-01-09 17:58 - 2014-01-09 17:58 - 00001130 _____ C:\Users\user\Desktop\GameRanger.lnk
2014-01-09 17:58 - 2014-01-09 17:58 - 00001116 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk
2014-01-09 17:58 - 2014-01-09 17:58 - 00000000 ____D C:\Users\user\AppData\Roaming\GameRanger
2014-01-09 17:55 - 2014-01-09 17:55 - 00096768 _____ (http://computerlimbo.com) C:\Users\user\Downloads\EAW + FOC Patch.exe
2014-01-08 23:12 - 2014-01-08 23:12 - 01463328 _____ C:\Users\user\Downloads\SystemCheck_enGB (1).exe
2014-01-08 17:27 - 2014-01-08 17:27 - 00001808 _____ C:\Users\user\Downloads\addon (2).crx
2014-01-08 17:27 - 2014-01-08 17:27 - 00001808 _____ C:\Users\user\Downloads\addon (1).crx
2014-01-08 17:26 - 2014-01-08 17:26 - 00001808 _____ C:\Users\user\Downloads\addon.crx
2014-01-07 14:26 - 2013-10-10 06:53 - 00000000 ____D C:\Users\user\Desktop\Škola
2014-01-07 12:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-06 20:23 - 2014-01-06 20:23 - 04558848 _____ (Google Inc.) C:\WINDOWS\SysWOW64\GPhotos.scr
2014-01-04 03:18 - 2014-01-04 02:11 - 1652184021 _____ C:\Users\user\Downloads\RaW_AUTO.zip
2014-01-04 02:12 - 2014-01-04 02:12 - 11993368 _____ C:\Users\user\Downloads\Pattons_Mod.rar
2014-01-04 02:10 - 2014-01-04 02:10 - 00011297 _____ C:\Users\user\Downloads\1.2.1.zip
2014-01-03 21:29 - 2014-01-03 21:29 - 00000989 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-01-03 21:29 - 2014-01-03 21:29 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2014-01-03 21:29 - 2014-01-03 21:28 - 32520760 _____ (TeamSpeak Systems GmbH) C:\Users\user\Downloads\TeamSpeak3-Client-win64-3.0.13.1.exe
2014-01-02 23:05 - 2013-10-09 23:20 - 00000000 ____D C:\Users\user\Documents\Electronic Arts
2014-01-02 22:55 - 2013-07-10 15:55 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-01 14:33 - 2014-01-01 14:33 - 00000000 ____D C:\Users\user\Documents\Aspyr
2014-01-01 13:39 - 2014-01-01 13:39 - 00000000 ____D C:\Users\user\AppData\Local\Aspyr
2014-01-01 13:39 - 2014-01-01 13:39 - 00000000 ____D C:\Program Files (x86)\Aspyr
2014-01-01 02:47 - 2014-01-01 02:47 - 00037464 _____ C:\Users\user\Downloads\[CzT]Star_Wars_The_Force_Unleashed_Ultimate_Sith_Edition_2008_.torrent
2014-01-01 02:42 - 2014-01-01 02:42 - 00024143 _____ C:\Users\user\Downloads\[CzT]Star_Wars_The_Force_Unleashed.torrent
2013-12-31 23:49 - 2013-11-22 21:18 - 00032256 ___SH C:\Users\user\Downloads\Thumbs.db
2013-12-31 21:27 - 2013-12-31 21:27 - 00000000 ____D C:\Program Files (x86)\Paradox Interactive

Some content of TEMP:
====================
C:\Users\user\AppData\Local\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 000da97b-2080-4fe6-8d01-ffa4eb262f8c.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task c2366258-f72f-4b3e-a345-a1e1a093dc54.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\user\SkyDrive:ms-properties

==================== Security Center ==================

AV: Ad-Aware Antivirus (Disabled - Out of date) {D87B6541-12A1-DAEA-0033-9B8057AAB996}
AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Internet Security (Disabled - Out of date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Ad-Aware Antivirus (Disabled - Out of date) {631A84A5-349B-D564-3A83-A0F22C2DF32B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: Norton Internet Security (Disabled - Out of date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
FW: Norton Internet Security (Disabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
FW: Ad-Aware Firewall (Disabled) {E040E464-58CE-DBB2-2B6C-32B5A979FEED}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\user\Desktop" je 560 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDTray.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDFSSvc.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdate.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdSvc.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

Zdravim

Poprosim i o druhy log z FRST s nazvem Addition.txt, je ulozen na plose

Predpokladam, ze ten ESET jak ma byt = zakoupena licence

Stahnete SecurityCheck http://screen317.spywareinfoforum.org/SecurityCheck.exe

Ulozte nejlepe na Plochu
Spustte tradicne dvouklikem a postupujte dle pokynu utility
Po dokonceni skenu se vytvori a otevre log, ten mi sem vlozte

Eset je zatím jen zkušební doba na 30 dnů.

Results of screen317's Security Check version 0.99.79
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Ad-Aware Antivirus
ESET Smart Security 7.0
Windows Defender
Norton Internet Security
Antivirus up to date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
Spyware Terminator 2012
Spybot - Search & Destroy
Adobe Flash Player 11.6.602.180
Adobe Reader XI
Google Chrome 32.0.1700.102
````````Process Check: objlist.exe by Laurent````````
Norton ccSvcHst.exe
ESET NOD32 Antivirus egui.exe
ESET NOD32 Antivirus ekrn.exe
Spybot Teatimer.exe is disabled!
Norton Online Backup ARA Engine 4.3.0.14 ARA.ex
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````

Tak ale udelame poradek v zabezpeceni, v PC muze byt jen jeden aktivni rezidentni stit, jinak se budou prat. Tudiz ponechame jen ESET, vse ostatni do pryc.

Odinstalujte nasledujici

Ad-Aware Antivirus
Norton Internet Security
Spyware Terminator 2012
Spybot - Search & Destroy
Ad-Aware Browsing Protection
SUPERAntiSpyware

Spustte znovu AdwCleaner

Pokud pouzivate Win Vista ci W7, kliknete na AdwCleaner pravym a dejte Run As Administrator ci Spustit jako spravce
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Hotovo.Problém to bohužel neodstranilo.
Log z adwcleaner
# AdwCleaner v3.018 - Report created 30/01/2014 at 22:51:59
# Updated 28/01/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : user - USER-PC
# Running from : C:\Users\user\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\boost_interprocess

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16384

-\\ Google Chrome v32.0.1700.102

[ File : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [2697 octets] - [30/01/2014 12:38:49]
AdwCleaner[R1].txt - [980 octets] - [30/01/2014 22:51:32]
AdwCleaner[S0].txt - [2631 octets] - [30/01/2014 12:39:23]
AdwCleaner[S1].txt - [908 octets] - [30/01/2014 22:51:59]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [967 octets] ##########

Poprosim o novy log z FRSTLauncheru

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-01-2014 01
Ran by user (administrator) on USER-PC on 31-01-2014 10:30:07
Running from C:\Users\user\Desktop
Windows 8.1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Western Digital) C:\Program Files\Western Digital\WD Boost\WDBoost.exe
(AVerMedia) C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
() C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(PandoraTV) C:\Program Files (x86)\PANDORA.TV\PanService\KMPProcess.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(MSI) C:\Program Files (x86)\SCM\Radio Manager.exe
(MSI) C:\Program Files (x86)\SCM\SCM.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
() C:\Users\user\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\user\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
() C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(WinZip Computing, S.L.) C:\Program Files\WinZip\WZQKPICK32.EXE
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(SteelSeries) C:\Program Files (x86)\SteelSeries\World of Warcraft Cataclysm MMO Gaming Mouse\WoWMHID2.exe
(Crawler.com) C:\Program Files (x86)\CStart8\CStart8Tray64.exe
(SteelSeries) C:\Program Files (x86)\SteelSeries\World of Warcraft Cataclysm MMO Gaming Mouse\WoWMTray2.exe
(Lavasoft) C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.4124\Battle.net.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13538376 2013-07-09] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2875728 2013-07-09] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BtServer] - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [452608 2013-01-28] (Realtek Semiconductor Corporation)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-03-22] (Intel Corporation)
HKLM\...\Run: [MBCfg64] - C:\Windows\system32\MBCfg64.dll [34432 2013-04-23] (Creative Technology Ltd.)
HKLM\...\Run: [Radio Manager] - C:\Program Files (x86)\SCM\Radio Manager.exe [406920 2013-04-18] (MSI)
HKLM\...\Run: [SCM] - C:\Program Files (x86)\SCM\SCM.exe [407968 2013-04-18] (MSI)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\WINDOWS\system32\nvspcap64.dll [1096480 2013-11-29] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [SpywareTerminatorShield] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
HKLM\...\Run: [SpywareTerminatorUpdater] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
HKLM-x32\...\Run: [Sound Blaster Cinema] - C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2012-11-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] - C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [Super-Charger] - C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [490480 2013-02-07] (MSI)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [BlueStacks Agent] - c:\Program Files (x86)\BlueStacks\HD-Agent.exe [597880 2013-01-07] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SteelSeries World of Warcraft Cataclysm MMO Gaming Mouse] - C:\Program Files (x86)\SteelSeries\World of Warcraft Cataclysm MMO Gaming Mouse\WoWMHID2.exe [1993216 2011-08-18] (SteelSeries)
HKLM-x32\...\Run: [CStart8] - C:\Program Files (x86)\CStart8\CStart8Tray64.exe [3138656 2013-10-04] (Crawler.com)
HKLM-x32\...\Run: [Ad-Aware Browsing Protection] - C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe [559696 2013-09-27] (Lavasoft)
HKLM-x32\...\Run: [Search Protection] - C:\ProgramData\Search Protection\SearchProtection.exe
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1815976 2014-01-27] (Valve Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\user\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\user\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKCU\...\Run: [Gyazo] - C:\Program Files (x86)\Gyazo\GyStation.exe [2990304 2013-10-30] (Nota Inc.)
MountPoints2: {af0e3aba-810c-11e3-beaa-8c89a50dcc82} - "G:\Autorun.exe"
MountPoints2: {bcabd015-4615-11e3-824f-806e6f6e6963} - "E:\LaunchEAWG.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [168616 2013-11-14] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-11-14] (NVIDIA Corporation)
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://msi13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
SearchScopes: HKLM - DefaultScope {9E6EE421-6EC9-4EA7-A6DA-6D3A951C99B0} URL = http://www.bing.com/search?q={searchTer ... &pc=MAMIJS;
SearchScopes: HKLM - {9E6EE421-6EC9-4EA7-A6DA-6D3A951C99B0} URL = http://www.bing.com/search?q={searchTer ... &pc=MAMIJS;
SearchScopes: HKLM-x32 - {9E6EE421-6EC9-4EA7-A6DA-6D3A951C99B0} URL = http://www.bing.com/search?q={searchTer ... &pc=MAMIJS;
SearchScopes: HKCU - {01725489-9180-4720-8E69-016D6BFC6FE2} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKCU - {0B8AE18E-A6E1-45EB-9EEB-B29BE1708EDB} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKCU - {98B89DA1-C47E-4E8F-B269-986E459C52E5} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKCU - {A7B8B00E-9CC1-410C-9207-C346C533D877} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKCU - {ABC3BA3F-94A4-4DFC-8628-BF7AA437AC3C} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKCU - {BFF04600-C57B-43FD-A0C0-43A7C7654C29} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKCU - {D2DB7427-F7A7-4617-BB79-A20E5BDE7199} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKCU - {D6A70810-B545-4BA3-8E3D-D3DA20A78ED8} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {E7D7DAFF-5AEE-474F-8368-521CBF9F2ECE} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

Chrome:
=======
CHR Extension: (Webexp Enhanced) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\akabfajilllcedppanaondhoincdndll [2014-01-30]
CHR Extension: (Dokumenty Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-30]
CHR Extension: (Disk Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-30]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-30]
CHR Extension: (Vyhled00E1v00E1n00ED Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-30]
CHR Extension: (Video Player) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nchcmebkafbcdahjbdfamifmmoamndgn [2014-01-30]
CHR Extension: (Pen011B017Eenka Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-30]
CHR Extension: (Lavasoft NewTab) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole [2014-01-30]
CHR Extension: (Media Player) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\omdmadjapcmlobjajdkjbpfmocjcbpie [2014-01-30]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-30]
CHR HKLM-x32\...\Chrome\Extension: [akabfajilllcedppanaondhoincdndll] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha273\ch\WebexpEnhancedV1alpha273.crx [2013-12-19]
CHR HKLM-x32\...\Chrome\Extension: [lgnpmcfjohgjgfimgbegoabmaljgkokk] - C:\Program Files (x86)\GreyGray\lgnpmcfjohgjgfimgbegoabmaljgkokk.crx [2013-10-01]
CHR HKLM-x32\...\Chrome\Extension: [mmifolfpllfdhilecpdpmemhelmanajl] - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ch\BetterSurfPlus.crx [2013-10-01]
CHR HKLM-x32\...\Chrome\Extension: [nchcmebkafbcdahjbdfamifmmoamndgn] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta190\ch\VideoPlayerV3beta190.crx [2014-01-07]
CHR HKLM-x32\...\Chrome\Extension: [oejkcgajlodefenbbjdnaiahmbnnoole] - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx [2014-01-17]
CHR HKLM-x32\...\Chrome\Extension: [poheodfamflhhhdcmjfeggbgigeefaco] - C:\Program Files (x86)\Better-Surf\ch\Chrome.crx [2014-01-17]

==================== Services (Whitelisted) =================

R2 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [364544 2013-01-05] (AVerMedia)
R2 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [403456 2011-04-02] ()
R2 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2011-10-31] (AVerMedia TECHNOLOGIES, Inc.)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2013-11-20] (BitRaider, LLC)
S2 BstHdAndroidSvc; c:\Program Files (x86)\BlueStacks\HD-Service.exe [393080 2013-01-07] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; c:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384888 2013-01-07] (BlueStack Systems, Inc.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [39424 2012-12-07] ()
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-03-22] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-02-16] (Intel Corporation)
R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2013-04-18] (Micro-Star International Co., Ltd.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [154112 2013-02-08] (MSI)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912 2013-11-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15128352 2013-11-29] (NVIDIA Corporation)
R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)
R2 WD Boost; C:\Program Files\Western Digital\WD Boost\WDBoost.exe [55056 2013-04-13] (Western Digital)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
S3 gusvc; "C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe" [x]
S2 Update GreyGray; "C:\Program Files (x86)\GreyGray\updateGreyGray.exe" [x]
S2 Util GreyGray; "C:\Program Files (x86)\GreyGray\bin\utilGreyGray.exe" [x]

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 AVerPola; C:\Windows\system32\DRIVERS\AVerPola.sys [845312 2013-03-01] (AVerMedia TECHNOLOGIES, Inc.)
S3 AVPolCIR; C:\Windows\System32\drivers\AVPolCIR.sys [50688 2010-10-07] (AVerMedia TECHNOLOGIES, Inc.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2013-10-11] (BitRaider)
S2 BstHdDrv; c:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [71032 2013-01-07] (BlueStack Systems)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-10-07] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
R1 hiofs; C:\Windows\System32\DRIVERS\hiofs.sys [28944 2013-04-13] (Western Digital)
R0 hiosd; C:\Windows\System32\DRIVERS\hiosd.sys [173840 2013-04-13] (Western Digital)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-10-30] (NVIDIA Corporation)
S3 rccfg; C:\Windows\System32\drivers\rccfg.sys [21680 2013-03-28] (AMD, Inc.)
S3 rcraid; C:\Windows\System32\drivers\rcraid.sys [526000 2013-03-28] (AMD, Inc.)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [524360 2013-07-09] (Realtek Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation )
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
R3 SSMO3v2Filter; C:\Windows\system32\drivers\MO3v2Driver.sys [23040 2010-11-22] (Sagatek Co. Ltd.)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-01-31 10:29 - 2014-01-31 10:29 - 00029696 _____ C:\Users\user\AppData\Local\MSGBOX.EXE
2014-01-31 10:29 - 2014-01-31 10:29 - 00015327 _____ C:\Users\user\Desktop\LM.bat
2014-01-31 00:54 - 2014-01-31 00:54 - 00000000 ___SH C:\DkHyperbootSync
2014-01-30 22:40 - 2014-01-30 22:41 - 00000085 _____ C:\WINDOWS\wininit.ini
2014-01-30 17:27 - 2014-01-30 17:27 - 00009227 _____ C:\Users\user\Desktop\Addition.rar
2014-01-30 17:23 - 2014-01-30 17:23 - 00987425 _____ C:\Users\user\Downloads\SecurityCheck.exe
2014-01-30 17:23 - 2014-01-30 17:23 - 00987425 _____ C:\Users\user\Desktop\SecurityCheck.exe
2014-01-30 13:32 - 2014-01-31 10:30 - 00020944 _____ C:\Users\user\Desktop\FRST.txt
2014-01-30 13:31 - 2014-01-30 13:32 - 00000000 ____D C:\FRST
2014-01-30 13:31 - 2014-01-30 13:31 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2014-01-30 13:25 - 2014-01-30 13:25 - 02079744 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2014-01-30 13:09 - 2014-01-30 13:11 - 00000000 ____D C:\Users\user\Desktop\hh
2014-01-30 12:54 - 2014-01-30 13:11 - 00000538 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Warhammer 40k dawn of war 2 (Win8) - poradna.net.website
2014-01-30 12:53 - 2014-01-30 13:11 - 00000495 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Prima Cool ONLINE TV.website
2014-01-30 12:45 - 2014-01-31 10:28 - 00090149 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-30 12:40 - 2014-01-30 22:52 - 00939760 _____ C:\WINDOWS\PFRO.log
2014-01-30 12:38 - 2014-01-30 22:52 - 00000000 ____D C:\AdwCleaner
2014-01-30 12:38 - 2014-01-30 12:38 - 01166132 _____ C:\Users\user\Desktop\adwcleaner.exe
2014-01-30 12:34 - 2014-01-30 22:55 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973.job
2014-01-30 12:34 - 2014-01-30 12:34 - 00003712 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973
2014-01-30 12:29 - 2014-01-31 09:39 - 00000964 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-30 12:29 - 2014-01-30 22:55 - 00002213 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-30 12:29 - 2014-01-30 12:34 - 00003936 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-30 12:29 - 2014-01-30 12:29 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-30 12:28 - 2014-01-30 12:29 - 00000000 ____D C:\Users\user\AppData\Local\Google
2014-01-30 03:06 - 2014-01-30 03:06 - 00002770 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-01-30 03:05 - 2014-01-30 03:06 - 00000000 ____D C:\Program Files\CCleaner
2014-01-30 02:49 - 2014-01-30 02:49 - 00000074 _____ C:\Users\user\Desktop\VIRY.CZ • Zobrazit téma - Preventivka.url
2014-01-30 02:18 - 2014-01-30 02:18 - 00001830 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D C:\Users\user\AppData\Roaming\LavasoftStatistics
2014-01-30 00:07 - 2014-01-30 00:34 - 00000000 ____D C:\Users\user\AppData\Local\adawarebp
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\Users\user\AppData\Roaming\SecureSearch
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\ProgramData\Ad-Aware Browsing Protection
2014-01-30 00:06 - 2014-01-30 00:06 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2014-01-30 00:05 - 2014-01-30 00:05 - 00000000 ____D C:\ProgramData\Lavasoft
2014-01-30 00:01 - 2014-01-30 00:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2014-01-30 00:00 - 2014-01-30 22:43 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-30 00:00 - 2014-01-30 22:41 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-29 23:42 - 2014-01-30 22:43 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2014-01-29 23:42 - 2014-01-29 23:42 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\stflt.sys
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Users\user\AppData\Roaming\CStart8
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Program Files (x86)\CStart8
2014-01-29 23:25 - 2014-01-29 23:25 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-29 22:51 - 2014-01-29 22:51 - 00000000 ____D C:\Users\user\AppData\Roaming\ESET
2014-01-29 22:51 - 2014-01-29 22:51 - 00000000 ____D C:\Users\user\AppData\Local\ESET
2014-01-29 22:49 - 2014-01-29 22:49 - 00000000 ____D C:\ProgramData\ESET
2014-01-29 22:49 - 2014-01-29 22:49 - 00000000 ____D C:\Program Files\ESET
2014-01-29 22:12 - 2014-01-29 22:12 - 00000270 __RSH C:\ProgramData\ntuser.pol
2014-01-29 22:12 - 2014-01-29 22:12 - 00000000 ____D C:\Program Files (x86)\MediaPlayerV1
2014-01-25 17:47 - 2014-01-27 17:45 - 00000000 ____D C:\Users\user\AppData\Roaming\Hamachi
2014-01-25 17:47 - 2014-01-25 17:47 - 00033344 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\Drivers\hamachi.sys
2014-01-25 17:47 - 2014-01-25 17:47 - 00000967 _____ C:\Users\Public\Desktop\hamachi.lnk
2014-01-25 17:47 - 2014-01-25 17:47 - 00000000 ____D C:\Program Files (x86)\Hamachi
2014-01-25 16:52 - 2014-01-25 16:54 - 00000000 ____D C:\Users\user\Documents\Stronghold Crusader
2014-01-25 16:51 - 2014-01-25 16:51 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-01-25 16:45 - 2014-01-25 16:45 - 00000000 ____D C:\GOG Games
2014-01-25 02:49 - 2014-01-25 02:49 - 00000000 ____D C:\Program Files (x86)\1C
2014-01-21 16:39 - 2014-01-21 17:07 - 00000000 ____D C:\Users\user\AppData\Roaming\TeamViewer
2014-01-21 16:39 - 2014-01-21 16:39 - 00001188 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-21 16:39 - 2014-01-21 16:39 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-21 16:38 - 2014-01-21 16:38 - 06076392 _____ (TeamViewer GmbH) C:\Users\user\Downloads\TeamViewer_Setup_cs.exe
2014-01-20 15:49 - 2014-01-20 15:49 - 00000000 __SHD C:\WINDOWS\ftpcache
2014-01-20 12:02 - 2014-01-20 12:02 - 00041562 _____ C:\Users\user\Downloads\[CzT]Company_of_Heroes_Tales_of_Valor_Internal_Czech_PHOENiX.torrent
2014-01-19 20:25 - 2014-01-19 20:26 - 24921361 _____ C:\Users\user\Downloads\LotrBfMe2EP1-131073-english (1).exe
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\Users\user\AppData\Roaming\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\Users\user\AppData\Local\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\ProgramData\PACE Anti-Piracy
2014-01-19 20:19 - 2014-01-19 20:20 - 26337045 _____ C:\Users\user\Downloads\LotrBfMe2EP1-131073-english.exe
2014-01-19 20:17 - 2014-01-25 15:14 - 00000546 _____ C:\Users\user\Desktop\Bfme.txt
2014-01-19 20:11 - 2014-01-19 20:11 - 00000539 _____ C:\Users\user\Downloads\lotrbfme2_win_7_64bit_fix.zip
2014-01-19 20:08 - 2014-01-19 23:50 - 00000000 ____D C:\Users\user\AppData\Roaming\My The Lord of the Rings, The Rise of the Witch-king Files
2014-01-19 18:43 - 2014-01-19 18:45 - 00446762 _____ C:\Users\user\Downloads\LotrBfMe2EP1_Mi-poseden.rar
2014-01-18 22:02 - 2014-01-18 22:02 - 00000000 ____D C:\Users\user\AppData\Local\Rocket Bear Games
2014-01-16 19:51 - 2014-01-16 19:51 - 00016352 _____ C:\Users\user\Downloads\Supernatural_S09E10.rar
2014-01-16 16:58 - 2014-01-16 16:58 - 00000000 ____D C:\Users\user\Documents\Stronghold 3
2014-01-16 16:45 - 2014-01-16 16:45 - 00000000 ____D C:\Program Files (x86)\Firefly Studios
2014-01-16 16:31 - 2014-01-16 16:31 - 00011608 _____ C:\Users\user\Downloads\[CzT]Stronghold_3_Gold_CZ_2012_ (1).torrent
2014-01-15 18:04 - 2013-12-09 01:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-15 18:04 - 2013-11-27 16:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-15 18:04 - 2013-11-27 12:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-15 18:04 - 2013-11-27 11:34 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2014-01-15 18:04 - 2013-11-27 10:54 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-15 18:04 - 2013-11-27 09:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 18:04 - 2013-11-27 09:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-15 18:04 - 2013-11-27 09:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 18:04 - 2013-11-27 09:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-15 18:04 - 2013-11-27 09:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-15 18:04 - 2013-11-27 09:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-14 22:53 - 2014-01-14 22:53 - 00001808 _____ C:\Users\user\Downloads\addon (4).crx
2014-01-14 22:52 - 2014-01-14 22:52 - 00001808 _____ C:\Users\user\Downloads\addon (3).crx
2014-01-14 12:43 - 2014-01-14 12:43 - 00365067 _____ C:\Users\user\Downloads\[CzT]Star_Trek_Nova_generace_Star_Trek_The_Next_Generation.torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312988 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (1).torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312987 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (3).torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312987 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (2).torrent
2014-01-13 07:36 - 2014-01-13 07:36 - 06370092 _____ C:\Users\user\Desktop\2014.01.12-IV.zip
2014-01-11 16:57 - 2014-01-15 16:18 - 00000000 ____D C:\Users\user\AppData\Roaming\Tropico 4
2014-01-11 16:57 - 2014-01-11 16:57 - 00000000 ____D C:\Users\user\AppData\Roaming\Kalypso Media
2014-01-11 16:50 - 2014-01-11 16:50 - 00000000 ____D C:\Program Files (x86)\Kalypso Media
2014-01-11 15:22 - 2014-01-11 15:22 - 00020347 _____ C:\Users\user\Downloads\[CzT]Tropico_4.torrent
2014-01-11 04:44 - 2014-01-11 04:44 - 01079915 _____ C:\Users\user\Downloads\olfeabkoenfaoljndfecamgilllcpiak_21290.crx
2014-01-10 02:12 - 2014-01-10 02:12 - 00000000 ____D C:\Program Files (x86)\VideoPlayerV3
2014-01-10 01:20 - 2014-01-10 01:20 - 00001057 _____ C:\Users\user\Desktop\KMPlayer.lnk
2014-01-10 01:19 - 2014-01-10 01:19 - 32200464 _____ (PandoraTV) C:\Users\user\Downloads\3.8.0.117_20140108021056.exe
2014-01-09 20:40 - 2014-01-09 20:40 - 00312988 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_.torrent
2014-01-09 18:29 - 2014-01-09 18:30 - 21070065 _____ (LucasArts) C:\Users\user\Downloads\FOCUpdate1_1.exe
2014-01-09 17:58 - 2014-01-09 17:58 - 00114352 _____ (GameRanger Technologies) C:\Users\user\Downloads\GameRangerSetup.exe
2014-01-09 17:58 - 2014-01-09 17:58 - 00001130 _____ C:\Users\user\Desktop\GameRanger.lnk
2014-01-09 17:58 - 2014-01-09 17:58 - 00001116 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk
2014-01-09 17:58 - 2014-01-09 17:58 - 00000000 ____D C:\Users\user\AppData\Roaming\GameRanger
2014-01-09 17:55 - 2014-01-09 17:55 - 00096768 _____ (http://computerlimbo.com) C:\Users\user\Downloads\EAW + FOC Patch.exe
2014-01-08 23:12 - 2014-01-08 23:12 - 01463328 _____ C:\Users\user\Downloads\SystemCheck_enGB (1).exe
2014-01-08 17:27 - 2014-01-08 17:27 - 00001808 _____ C:\Users\user\Downloads\addon (2).crx
2014-01-08 17:27 - 2014-01-08 17:27 - 00001808 _____ C:\Users\user\Downloads\addon (1).crx
2014-01-08 17:26 - 2014-01-08 17:26 - 00001808 _____ C:\Users\user\Downloads\addon.crx
2014-01-06 20:23 - 2014-01-06 20:23 - 04558848 _____ (Google Inc.) C:\WINDOWS\SysWOW64\GPhotos.scr
2014-01-05 13:13 - 2013-07-03 18:21 - 1669848566 _____ (Republic at War Modding Team) C:\Users\user\Downloads\Republic at War.exe
2014-01-04 02:12 - 2014-01-04 02:12 - 11993368 _____ C:\Users\user\Downloads\Pattons_Mod.rar
2014-01-04 02:11 - 2014-01-04 03:18 - 1652184021 _____ C:\Users\user\Downloads\RaW_AUTO.zip
2014-01-04 02:10 - 2014-01-04 02:10 - 00011297 _____ C:\Users\user\Downloads\1.2.1.zip
2014-01-03 21:30 - 2014-01-30 03:08 - 00000000 ____D C:\Users\user\AppData\Roaming\TS3Client
2014-01-03 21:29 - 2014-01-03 21:29 - 00000989 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-01-03 21:29 - 2014-01-03 21:29 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2014-01-03 21:28 - 2014-01-03 21:29 - 32520760 _____ (TeamSpeak Systems GmbH) C:\Users\user\Downloads\TeamSpeak3-Client-win64-3.0.13.1.exe
2014-01-01 20:53 - 2014-01-30 03:08 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-01 14:33 - 2014-01-01 14:33 - 00000000 ____D C:\Users\user\Documents\Aspyr
2014-01-01 13:39 - 2014-01-01 13:39 - 00000000 ____D C:\Users\user\AppData\Local\Aspyr
2014-01-01 13:39 - 2014-01-01 13:39 - 00000000 ____D C:\Program Files (x86)\Aspyr
2014-01-01 02:47 - 2014-01-01 02:47 - 00037464 _____ C:\Users\user\Downloads\[CzT]Star_Wars_The_Force_Unleashed_Ultimate_Sith_Edition_2008_.torrent
2014-01-01 02:42 - 2014-01-01 02:42 - 00024143 _____ C:\Users\user\Downloads\[CzT]Star_Wars_The_Force_Unleashed.torrent

==================== One Month Modified Files and Folders =======

2014-01-31 10:30 - 2014-01-30 13:32 - 00020944 _____ C:\Users\user\Desktop\FRST.txt
2014-01-31 10:29 - 2014-01-31 10:29 - 00029696 _____ C:\Users\user\AppData\Local\MSGBOX.EXE
2014-01-31 10:29 - 2014-01-31 10:29 - 00015327 _____ C:\Users\user\Desktop\LM.bat
2014-01-31 10:28 - 2014-01-30 12:45 - 00090149 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-31 10:28 - 2013-10-08 05:54 - 00000000 ____D C:\Users\user\AppData\Local\Battle.net
2014-01-31 10:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-31 09:39 - 2014-01-30 12:29 - 00000964 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-31 09:16 - 2013-11-05 13:55 - 01749406 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-31 09:16 - 2013-09-30 04:56 - 00740962 _____ C:\WINDOWS\system32\perfh005.dat
2014-01-31 09:16 - 2013-09-30 04:56 - 00152146 _____ C:\WINDOWS\system32\perfc005.dat
2014-01-31 09:13 - 2013-10-05 03:57 - 00100093 _____ C:\Users\user\AppData\Local\BTServer.log
2014-01-31 05:03 - 2013-11-11 14:24 - 00003962 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3EC6B964-A6DD-4601-812A-52A9F83D464C}
2014-01-31 04:31 - 2013-10-05 04:06 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-22948852-3544084575-3188587028-1002
2014-01-31 00:54 - 2014-01-31 00:54 - 00000000 ___SH C:\DkHyperbootSync
2014-01-30 22:55 - 2014-01-30 12:34 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973.job
2014-01-30 22:55 - 2014-01-30 12:29 - 00002213 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-30 22:55 - 2013-11-05 14:08 - 00000000 __RDO C:\Users\user\SkyDrive
2014-01-30 22:54 - 2013-10-07 15:38 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-30 22:53 - 2013-07-10 15:56 - 00000000 ____D C:\ProgramData\Realtek
2014-01-30 22:52 - 2014-01-30 12:40 - 00939760 _____ C:\WINDOWS\PFRO.log
2014-01-30 22:52 - 2014-01-30 12:38 - 00000000 ____D C:\AdwCleaner
2014-01-30 22:52 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-30 22:52 - 2013-02-22 08:24 - 00000000 ____D C:\ProgramData\Norton
2014-01-30 22:46 - 2013-10-30 00:23 - 00000000 ____D C:\Program Files (x86)\GreyGray
2014-01-30 22:43 - 2014-01-30 00:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-30 22:43 - 2014-01-29 23:42 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2014-01-30 22:41 - 2014-01-30 22:40 - 00000085 _____ C:\WINDOWS\wininit.ini
2014-01-30 22:41 - 2014-01-30 00:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-30 22:40 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-30 22:40 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2014-01-30 22:30 - 2013-10-05 04:11 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype
2014-01-30 21:52 - 2013-12-01 16:17 - 00000000 ____D C:\Users\user\AppData\Local\Deployment
2014-01-30 19:10 - 2013-12-09 18:04 - 00000000 ____D C:\Users\user\AppData\Roaming\vlc
2014-01-30 17:27 - 2014-01-30 17:27 - 00009227 _____ C:\Users\user\Desktop\Addition.rar
2014-01-30 17:23 - 2014-01-30 17:23 - 00987425 _____ C:\Users\user\Downloads\SecurityCheck.exe
2014-01-30 17:23 - 2014-01-30 17:23 - 00987425 _____ C:\Users\user\Desktop\SecurityCheck.exe
2014-01-30 13:47 - 2013-11-25 14:03 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2014-01-30 13:32 - 2014-01-30 13:31 - 00000000 ____D C:\FRST
2014-01-30 13:31 - 2014-01-30 13:31 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2014-01-30 13:25 - 2014-01-30 13:25 - 02079744 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2014-01-30 13:11 - 2014-01-30 13:09 - 00000000 ____D C:\Users\user\Desktop\hh
2014-01-30 13:11 - 2014-01-30 12:54 - 00000538 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Warhammer 40k dawn of war 2 (Win8) - poradna.net.website
2014-01-30 13:11 - 2014-01-30 12:53 - 00000495 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Prima Cool ONLINE TV.website
2014-01-30 12:39 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-30 12:38 - 2014-01-30 12:38 - 01166132 _____ C:\Users\user\Desktop\adwcleaner.exe
2014-01-30 12:34 - 2014-01-30 12:34 - 00003712 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973
2014-01-30 12:34 - 2014-01-30 12:29 - 00003936 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-30 12:29 - 2014-01-30 12:29 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-30 12:29 - 2014-01-30 12:28 - 00000000 ____D C:\Users\user\AppData\Local\Google
2014-01-30 05:30 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2014-01-30 03:08 - 2014-01-03 21:30 - 00000000 ____D C:\Users\user\AppData\Roaming\TS3Client
2014-01-30 03:08 - 2014-01-01 20:53 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-30 03:08 - 2013-11-05 13:27 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-30 03:08 - 2013-10-07 23:30 - 00000000 ____D C:\Users\user\AppData\Roaming\DAEMON Tools Lite
2014-01-30 03:08 - 2013-10-07 15:59 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps
2014-01-30 03:08 - 2013-10-07 15:09 - 00000000 ____D C:\Users\user\AppData\Roaming\uTorrent
2014-01-30 03:07 - 2013-10-07 20:44 - 00000000 ___RD C:\Users\user\Desktop\Programy
2014-01-30 03:06 - 2014-01-30 03:06 - 00002770 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-01-30 03:06 - 2014-01-30 03:05 - 00000000 ____D C:\Program Files\CCleaner
2014-01-30 02:49 - 2014-01-30 02:49 - 00000074 _____ C:\Users\user\Desktop\VIRY.CZ • Zobrazit téma - Preventivka.url
2014-01-30 02:18 - 2014-01-30 02:18 - 00001830 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-01-30 00:34 - 2014-01-30 00:07 - 00000000 ____D C:\Users\user\AppData\Local\adawarebp
2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D C:\Users\user\AppData\Roaming\LavasoftStatistics
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\Users\user\AppData\Roaming\SecureSearch
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\ProgramData\Ad-Aware Browsing Protection
2014-01-30 00:06 - 2014-01-30 00:06 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2014-01-30 00:05 - 2014-01-30 00:05 - 00000000 ____D C:\ProgramData\Lavasoft
2014-01-30 00:01 - 2014-01-30 00:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2014-01-29 23:42 - 2014-01-29 23:42 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\stflt.sys
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Users\user\AppData\Roaming\CStart8
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Program Files (x86)\CStart8
2014-01-29 23:25 - 2014-01-29 23:25 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-29 23:09 - 2013-08-22 15:44 - 00344792 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-29 22:51 - 2014-01-29 22:51 - 00000000 ____D C:\Users\user\AppData\Roaming\ESET
2014-01-29 22:51 - 2014-01-29 22:51 - 00000000 ____D C:\Users\user\AppData\Local\ESET
2014-01-29 22:49 - 2014-01-29 22:49 - 00000000 ____D C:\ProgramData\ESET
2014-01-29 22:49 - 2014-01-29 22:49 - 00000000 ____D C:\Program Files\ESET
2014-01-29 22:12 - 2014-01-29 22:12 - 00000270 __RSH C:\ProgramData\ntuser.pol
2014-01-29 22:12 - 2014-01-29 22:12 - 00000000 ____D C:\Program Files (x86)\MediaPlayerV1
2014-01-29 22:12 - 2013-12-10 17:12 - 00000308 _____ C:\extensions.ini
2014-01-29 22:12 - 2013-08-22 16:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2014-01-29 22:12 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2014-01-28 19:04 - 2013-10-15 21:58 - 00000000 ____D C:\Users\user\Documents\The KMPlayer
2014-01-28 15:40 - 2013-10-07 20:43 - 00000000 ____D C:\Users\user\Documents\StarCraft II
2014-01-27 17:45 - 2014-01-25 17:47 - 00000000 ____D C:\Users\user\AppData\Roaming\Hamachi
2014-01-27 00:08 - 2013-10-07 18:23 - 00000000 ____D C:\Users\user\Documents\AVerTV
2014-01-26 03:04 - 2013-10-07 15:54 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-25 23:14 - 2013-10-07 20:44 - 00000000 ____D C:\Users\user\Desktop\Hry
2014-01-25 17:47 - 2014-01-25 17:47 - 00033344 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\Drivers\hamachi.sys
2014-01-25 17:47 - 2014-01-25 17:47 - 00000967 _____ C:\Users\Public\Desktop\hamachi.lnk
2014-01-25 17:47 - 2014-01-25 17:47 - 00000000 ____D C:\Program Files (x86)\Hamachi
2014-01-25 16:54 - 2014-01-25 16:52 - 00000000 ____D C:\Users\user\Documents\Stronghold Crusader
2014-01-25 16:51 - 2014-01-25 16:51 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-01-25 16:45 - 2014-01-25 16:45 - 00000000 ____D C:\GOG Games
2014-01-25 15:14 - 2014-01-19 20:17 - 00000546 _____ C:\Users\user\Desktop\Bfme.txt
2014-01-25 02:55 - 2013-10-07 23:51 - 00000000 ____D C:\Users\user\Documents\My Games
2014-01-25 02:54 - 2013-11-04 17:15 - 00000000 ____D C:\Users\user\AppData\Local\Adobe
2014-01-25 02:54 - 2013-10-05 04:09 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-25 02:49 - 2014-01-25 02:49 - 00000000 ____D C:\Program Files (x86)\1C
2014-01-24 03:37 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-22 05:07 - 2013-10-07 20:43 - 00000000 ____D C:\Program Files (x86)\StarCraft II
2014-01-21 17:07 - 2014-01-21 16:39 - 00000000 ____D C:\Users\user\AppData\Roaming\TeamViewer
2014-01-21 16:39 - 2014-01-21 16:39 - 00001188 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-21 16:39 - 2014-01-21 16:39 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-21 16:38 - 2014-01-21 16:38 - 06076392 _____ (TeamViewer GmbH) C:\Users\user\Downloads\TeamViewer_Setup_cs.exe
2014-01-20 19:13 - 2013-12-31 03:27 - 00001293 _____ C:\WINDOWS\system32\Drivers\etc\hosts.txt
2014-01-20 15:52 - 2013-11-01 14:50 - 00000000 ____D C:\Program Files (x86)\THQ
2014-01-20 15:49 - 2014-01-20 15:49 - 00000000 __SHD C:\WINDOWS\ftpcache
2014-01-20 12:02 - 2014-01-20 12:02 - 00041562 _____ C:\Users\user\Downloads\[CzT]Company_of_Heroes_Tales_of_Valor_Internal_Czech_PHOENiX.torrent
2014-01-19 23:50 - 2014-01-19 20:08 - 00000000 ____D C:\Users\user\AppData\Roaming\My The Lord of the Rings, The Rise of the Witch-king Files
2014-01-19 20:26 - 2014-01-19 20:25 - 24921361 _____ C:\Users\user\Downloads\LotrBfMe2EP1-131073-english (1).exe
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\Users\user\AppData\Roaming\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\Users\user\AppData\Local\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\ProgramData\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:19 - 26337045 _____ C:\Users\user\Downloads\LotrBfMe2EP1-131073-english.exe
2014-01-19 20:11 - 2014-01-19 20:11 - 00000539 _____ C:\Users\user\Downloads\lotrbfme2_win_7_64bit_fix.zip
2014-01-19 19:54 - 2013-10-11 18:33 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
2014-01-19 18:45 - 2014-01-19 18:43 - 00446762 _____ C:\Users\user\Downloads\LotrBfMe2EP1_Mi-poseden.rar
2014-01-19 08:38 - 2013-12-26 13:56 - 00270496 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-01-18 22:02 - 2014-01-18 22:02 - 00000000 ____D C:\Users\user\AppData\Local\Rocket Bear Games
2014-01-18 05:10 - 2013-11-12 21:04 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2014-01-17 11:14 - 2013-10-08 05:53 - 00000000 ____D C:\Program Files (x86)\Battle.net
2014-01-16 19:51 - 2014-01-16 19:51 - 00016352 _____ C:\Users\user\Downloads\Supernatural_S09E10.rar
2014-01-16 16:58 - 2014-01-16 16:58 - 00000000 ____D C:\Users\user\Documents\Stronghold 3
2014-01-16 16:45 - 2014-01-16 16:45 - 00000000 ____D C:\Program Files (x86)\Firefly Studios
2014-01-16 16:31 - 2014-01-16 16:31 - 00011608 _____ C:\Users\user\Downloads\[CzT]Stronghold_3_Gold_CZ_2012_ (1).torrent
2014-01-16 05:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-15 19:55 - 2013-10-07 20:43 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-15 19:54 - 2013-10-07 20:43 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-15 16:18 - 2014-01-11 16:57 - 00000000 ____D C:\Users\user\AppData\Roaming\Tropico 4
2014-01-14 22:53 - 2014-01-14 22:53 - 00001808 _____ C:\Users\user\Downloads\addon (4).crx
2014-01-14 22:52 - 2014-01-14 22:52 - 00001808 _____ C:\Users\user\Downloads\addon (3).crx
2014-01-14 12:43 - 2014-01-14 12:43 - 00365067 _____ C:\Users\user\Downloads\[CzT]Star_Trek_Nova_generace_Star_Trek_The_Next_Generation.torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312988 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (1).torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312987 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (3).torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312987 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (2).torrent
2014-01-13 07:36 - 2014-01-13 07:36 - 06370092 _____ C:\Users\user\Desktop\2014.01.12-IV.zip
2014-01-11 16:57 - 2014-01-11 16:57 - 00000000 ____D C:\Users\user\AppData\Roaming\Kalypso Media
2014-01-11 16:50 - 2014-01-11 16:50 - 00000000 ____D C:\Program Files (x86)\Kalypso Media
2014-01-11 15:22 - 2014-01-11 15:22 - 00020347 _____ C:\Users\user\Downloads\[CzT]Tropico_4.torrent
2014-01-11 04:44 - 2014-01-11 04:44 - 01079915 _____ C:\Users\user\Downloads\olfeabkoenfaoljndfecamgilllcpiak_21290.crx
2014-01-10 02:12 - 2014-01-10 02:12 - 00000000 ____D C:\Program Files (x86)\VideoPlayerV3
2014-01-10 01:20 - 2014-01-10 01:20 - 00001057 _____ C:\Users\user\Desktop\KMPlayer.lnk
2014-01-10 01:19 - 2014-01-10 01:19 - 32200464 _____ (PandoraTV) C:\Users\user\Downloads\3.8.0.117_20140108021056.exe
2014-01-09 20:40 - 2014-01-09 20:40 - 00312988 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_.torrent
2014-01-09 18:30 - 2014-01-09 18:29 - 21070065 _____ (LucasArts) C:\Users\user\Downloads\FOCUpdate1_1.exe
2014-01-09 17:58 - 2014-01-09 17:58 - 00114352 _____ (GameRanger Technologies) C:\Users\user\Downloads\GameRangerSetup.exe
2014-01-09 17:58 - 2014-01-09 17:58 - 00001130 _____ C:\Users\user\Desktop\GameRanger.lnk
2014-01-09 17:58 - 2014-01-09 17:58 - 00001116 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk
2014-01-09 17:58 - 2014-01-09 17:58 - 00000000 ____D C:\Users\user\AppData\Roaming\GameRanger
2014-01-09 17:55 - 2014-01-09 17:55 - 00096768 _____ (http://computerlimbo.com) C:\Users\user\Downloads\EAW + FOC Patch.exe
2014-01-08 23:12 - 2014-01-08 23:12 - 01463328 _____ C:\Users\user\Downloads\SystemCheck_enGB (1).exe
2014-01-08 17:27 - 2014-01-08 17:27 - 00001808 _____ C:\Users\user\Downloads\addon (2).crx
2014-01-08 17:27 - 2014-01-08 17:27 - 00001808 _____ C:\Users\user\Downloads\addon (1).crx
2014-01-08 17:26 - 2014-01-08 17:26 - 00001808 _____ C:\Users\user\Downloads\addon.crx
2014-01-07 14:26 - 2013-10-10 06:53 - 00000000 ____D C:\Users\user\Desktop\Škola
2014-01-07 12:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-06 20:23 - 2014-01-06 20:23 - 04558848 _____ (Google Inc.) C:\WINDOWS\SysWOW64\GPhotos.scr
2014-01-04 03:18 - 2014-01-04 02:11 - 1652184021 _____ C:\Users\user\Downloads\RaW_AUTO.zip
2014-01-04 02:12 - 2014-01-04 02:12 - 11993368 _____ C:\Users\user\Downloads\Pattons_Mod.rar
2014-01-04 02:10 - 2014-01-04 02:10 - 00011297 _____ C:\Users\user\Downloads\1.2.1.zip
2014-01-03 21:29 - 2014-01-03 21:29 - 00000989 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-01-03 21:29 - 2014-01-03 21:29 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2014-01-03 21:29 - 2014-01-03 21:28 - 32520760 _____ (TeamSpeak Systems GmbH) C:\Users\user\Downloads\TeamSpeak3-Client-win64-3.0.13.1.exe
2014-01-02 23:05 - 2013-10-09 23:20 - 00000000 ____D C:\Users\user\Documents\Electronic Arts
2014-01-02 22:55 - 2013-07-10 15:55 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-01 14:33 - 2014-01-01 14:33 - 00000000 ____D C:\Users\user\Documents\Aspyr
2014-01-01 13:39 - 2014-01-01 13:39 - 00000000 ____D C:\Users\user\AppData\Local\Aspyr
2014-01-01 13:39 - 2014-01-01 13:39 - 00000000 ____D C:\Program Files (x86)\Aspyr
2014-01-01 02:47 - 2014-01-01 02:47 - 00037464 _____ C:\Users\user\Downloads\[CzT]Star_Wars_The_Force_Unleashed_Ultimate_Sith_Edition_2008_.torrent
2014-01-01 02:42 - 2014-01-01 02:42 - 00024143 _____ C:\Users\user\Downloads\[CzT]Star_Wars_The_Force_Unleashed.torrent

Some content of TEMP:
====================
C:\Users\user\AppData\Local\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-01-31 04:31

==================== End Of Log ============================

Provedl jste odinstalaci programu co jsem psal?? Jelikoz je v logu stale a porad vidim

Ano přes Ccleaner jsem je odinstaloval už by tam žádnej být neměl.

Tak poprosim o novy log

Po opravě registrů v CC.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-01-2014 01
Ran by user (administrator) on USER-PC on 31-01-2014 13:41:30
Running from C:\Users\user\Desktop
Windows 8.1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Western Digital) C:\Program Files\Western Digital\WD Boost\WDBoost.exe
(AVerMedia) C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
() C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(PandoraTV) C:\Program Files (x86)\PANDORA.TV\PanService\KMPProcess.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(MSI) C:\Program Files (x86)\SCM\Radio Manager.exe
(MSI) C:\Program Files (x86)\SCM\SCM.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
() C:\Users\user\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\user\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
() C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(WinZip Computing, S.L.) C:\Program Files\WinZip\WZQKPICK32.EXE
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(SteelSeries) C:\Program Files (x86)\SteelSeries\World of Warcraft Cataclysm MMO Gaming Mouse\WoWMHID2.exe
(Crawler.com) C:\Program Files (x86)\CStart8\CStart8Tray64.exe
(SteelSeries) C:\Program Files (x86)\SteelSeries\World of Warcraft Cataclysm MMO Gaming Mouse\WoWMTray2.exe
(Lavasoft) C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.4124\Battle.net.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13538376 2013-07-09] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2875728 2013-07-09] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BtServer] - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [452608 2013-01-28] (Realtek Semiconductor Corporation)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-03-22] (Intel Corporation)
HKLM\...\Run: [MBCfg64] - C:\Windows\system32\MBCfg64.dll [34432 2013-04-23] (Creative Technology Ltd.)
HKLM\...\Run: [Radio Manager] - C:\Program Files (x86)\SCM\Radio Manager.exe [406920 2013-04-18] (MSI)
HKLM\...\Run: [SCM] - C:\Program Files (x86)\SCM\SCM.exe [407968 2013-04-18] (MSI)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\WINDOWS\system32\nvspcap64.dll [1096480 2013-11-29] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM-x32\...\Run: [Sound Blaster Cinema] - C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2012-11-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] - C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [Super-Charger] - C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [490480 2013-02-07] (MSI)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [BlueStacks Agent] - c:\Program Files (x86)\BlueStacks\HD-Agent.exe [597880 2013-01-07] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SteelSeries World of Warcraft Cataclysm MMO Gaming Mouse] - C:\Program Files (x86)\SteelSeries\World of Warcraft Cataclysm MMO Gaming Mouse\WoWMHID2.exe [1993216 2011-08-18] (SteelSeries)
HKLM-x32\...\Run: [CStart8] - C:\Program Files (x86)\CStart8\CStart8Tray64.exe [3138656 2013-10-04] (Crawler.com)
HKLM-x32\...\Run: [Ad-Aware Browsing Protection] - C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe [559696 2013-09-27] (Lavasoft)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1815976 2014-01-27] (Valve Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\user\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\user\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKCU\...\Run: [Gyazo] - C:\Program Files (x86)\Gyazo\GyStation.exe [2990304 2013-10-30] (Nota Inc.)
MountPoints2: {af0e3aba-810c-11e3-beaa-8c89a50dcc82} - "G:\Autorun.exe"
MountPoints2: {bcabd015-4615-11e3-824f-806e6f6e6963} - "E:\LaunchEAWG.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [168616 2013-11-14] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-11-14] (NVIDIA Corporation)
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://msi13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
SearchScopes: HKLM - DefaultScope {9E6EE421-6EC9-4EA7-A6DA-6D3A951C99B0} URL = http://www.bing.com/search?q={searchTer ... &pc=MAMIJS;
SearchScopes: HKLM - {9E6EE421-6EC9-4EA7-A6DA-6D3A951C99B0} URL = http://www.bing.com/search?q={searchTer ... &pc=MAMIJS;
SearchScopes: HKLM-x32 - {9E6EE421-6EC9-4EA7-A6DA-6D3A951C99B0} URL = http://www.bing.com/search?q={searchTer ... &pc=MAMIJS;
SearchScopes: HKCU - {01725489-9180-4720-8E69-016D6BFC6FE2} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKCU - {0B8AE18E-A6E1-45EB-9EEB-B29BE1708EDB} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKCU - {98B89DA1-C47E-4E8F-B269-986E459C52E5} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKCU - {A7B8B00E-9CC1-410C-9207-C346C533D877} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKCU - {ABC3BA3F-94A4-4DFC-8628-BF7AA437AC3C} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKCU - {BFF04600-C57B-43FD-A0C0-43A7C7654C29} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKCU - {D2DB7427-F7A7-4617-BB79-A20E5BDE7199} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKCU - {D6A70810-B545-4BA3-8E3D-D3DA20A78ED8} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {E7D7DAFF-5AEE-474F-8368-521CBF9F2ECE} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

Chrome:
=======
CHR Extension: (Dokumenty Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-30]
CHR Extension: (Disk Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-30]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-30]
CHR Extension: (Vyhled00E1v00E1n00ED Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-30]
CHR Extension: (Pen011B017Eenka Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-30]
CHR Extension: (Media Player) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\omdmadjapcmlobjajdkjbpfmocjcbpie [2014-01-30]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-30]
CHR HKLM-x32\...\Chrome\Extension: [akabfajilllcedppanaondhoincdndll] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha273\ch\WebexpEnhancedV1alpha273.crx [2013-12-19]
CHR HKLM-x32\...\Chrome\Extension: [lgnpmcfjohgjgfimgbegoabmaljgkokk] - C:\Program Files (x86)\GreyGray\lgnpmcfjohgjgfimgbegoabmaljgkokk.crx [2013-10-01]
CHR HKLM-x32\...\Chrome\Extension: [mmifolfpllfdhilecpdpmemhelmanajl] - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ch\BetterSurfPlus.crx [2013-10-01]
CHR HKLM-x32\...\Chrome\Extension: [nchcmebkafbcdahjbdfamifmmoamndgn] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta190\ch\VideoPlayerV3beta190.crx [2014-01-07]
CHR HKLM-x32\...\Chrome\Extension: [oejkcgajlodefenbbjdnaiahmbnnoole] - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx [2014-01-17]
CHR HKLM-x32\...\Chrome\Extension: [poheodfamflhhhdcmjfeggbgigeefaco] - C:\Program Files (x86)\Better-Surf\ch\Chrome.crx [2014-01-17]

==================== Services (Whitelisted) =================

R2 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [364544 2013-01-05] (AVerMedia)
R2 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [403456 2011-04-02] ()
R2 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2011-10-31] (AVerMedia TECHNOLOGIES, Inc.)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2013-11-20] (BitRaider, LLC)
S2 BstHdAndroidSvc; c:\Program Files (x86)\BlueStacks\HD-Service.exe [393080 2013-01-07] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; c:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384888 2013-01-07] (BlueStack Systems, Inc.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [39424 2012-12-07] ()
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-03-22] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-02-16] (Intel Corporation)
R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2013-04-18] (Micro-Star International Co., Ltd.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [154112 2013-02-08] (MSI)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912 2013-11-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15128352 2013-11-29] (NVIDIA Corporation)
R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)
R2 WD Boost; C:\Program Files\Western Digital\WD Boost\WDBoost.exe [55056 2013-04-13] (Western Digital)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 AVerPola; C:\Windows\system32\DRIVERS\AVerPola.sys [845312 2013-03-01] (AVerMedia TECHNOLOGIES, Inc.)
S3 AVPolCIR; C:\Windows\System32\drivers\AVPolCIR.sys [50688 2010-10-07] (AVerMedia TECHNOLOGIES, Inc.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2013-10-11] (BitRaider)
S2 BstHdDrv; c:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [71032 2013-01-07] (BlueStack Systems)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-10-07] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
R1 hiofs; C:\Windows\System32\DRIVERS\hiofs.sys [28944 2013-04-13] (Western Digital)
R0 hiosd; C:\Windows\System32\DRIVERS\hiosd.sys [173840 2013-04-13] (Western Digital)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-10-30] (NVIDIA Corporation)
S3 rccfg; C:\Windows\System32\drivers\rccfg.sys [21680 2013-03-28] (AMD, Inc.)
S3 rcraid; C:\Windows\System32\drivers\rcraid.sys [526000 2013-03-28] (AMD, Inc.)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [524360 2013-07-09] (Realtek Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation )
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
R3 SSMO3v2Filter; C:\Windows\system32\drivers\MO3v2Driver.sys [23040 2010-11-22] (Sagatek Co. Ltd.)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-01-31 13:35 - 2014-01-31 13:35 - 00028151 _____ C:\Users\user\Desktop\Addition.txt
2014-01-31 13:34 - 2014-01-31 13:34 - 00015327 _____ C:\Users\user\Desktop\LM.bat
2014-01-31 00:54 - 2014-01-31 00:54 - 00000000 ___SH C:\DkHyperbootSync
2014-01-30 22:40 - 2014-01-30 22:41 - 00000085 _____ C:\WINDOWS\wininit.ini
2014-01-30 17:27 - 2014-01-31 10:32 - 00008442 _____ C:\Users\user\Desktop\Addition.rar
2014-01-30 17:23 - 2014-01-30 17:23 - 00987425 _____ C:\Users\user\Downloads\SecurityCheck.exe
2014-01-30 17:23 - 2014-01-30 17:23 - 00987425 _____ C:\Users\user\Desktop\SecurityCheck.exe
2014-01-30 13:32 - 2014-01-31 13:41 - 00019919 _____ C:\Users\user\Desktop\FRST.txt
2014-01-30 13:31 - 2014-01-31 13:41 - 00000000 ____D C:\FRST
2014-01-30 13:31 - 2014-01-30 13:31 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2014-01-30 13:25 - 2014-01-30 13:25 - 02079744 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2014-01-30 13:09 - 2014-01-30 13:11 - 00000000 ____D C:\Users\user\Desktop\hh
2014-01-30 12:54 - 2014-01-30 13:11 - 00000538 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Warhammer 40k dawn of war 2 (Win8) - poradna.net.website
2014-01-30 12:53 - 2014-01-30 13:11 - 00000495 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Prima Cool ONLINE TV.website
2014-01-30 12:45 - 2014-01-31 10:28 - 00108605 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-30 12:40 - 2014-01-30 22:52 - 00939760 _____ C:\WINDOWS\PFRO.log
2014-01-30 12:38 - 2014-01-30 22:52 - 00000000 ____D C:\AdwCleaner
2014-01-30 12:38 - 2014-01-30 12:38 - 01166132 _____ C:\Users\user\Desktop\adwcleaner.exe
2014-01-30 12:34 - 2014-01-31 12:39 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973.job
2014-01-30 12:34 - 2014-01-30 12:34 - 00003712 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973
2014-01-30 12:29 - 2014-01-31 13:39 - 00000964 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-30 12:29 - 2014-01-31 12:39 - 00002213 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-30 12:29 - 2014-01-30 12:34 - 00003936 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-30 12:29 - 2014-01-30 12:29 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-30 12:28 - 2014-01-30 12:29 - 00000000 ____D C:\Users\user\AppData\Local\Google
2014-01-30 03:06 - 2014-01-30 03:06 - 00002770 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-01-30 03:05 - 2014-01-30 03:06 - 00000000 ____D C:\Program Files\CCleaner
2014-01-30 02:49 - 2014-01-30 02:49 - 00000074 _____ C:\Users\user\Desktop\VIRY.CZ • Zobrazit téma - Preventivka.url
2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D C:\Users\user\AppData\Roaming\LavasoftStatistics
2014-01-30 00:07 - 2014-01-30 00:34 - 00000000 ____D C:\Users\user\AppData\Local\adawarebp
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\Users\user\AppData\Roaming\SecureSearch
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\ProgramData\Ad-Aware Browsing Protection
2014-01-30 00:06 - 2014-01-30 00:06 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2014-01-30 00:05 - 2014-01-30 00:05 - 00000000 ____D C:\ProgramData\Lavasoft
2014-01-30 00:01 - 2014-01-30 00:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2014-01-30 00:00 - 2014-01-30 22:43 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-30 00:00 - 2014-01-30 22:41 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-29 23:42 - 2014-01-30 22:43 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2014-01-29 23:42 - 2014-01-29 23:42 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\stflt.sys
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Users\user\AppData\Roaming\CStart8
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Program Files (x86)\CStart8
2014-01-29 23:25 - 2014-01-29 23:25 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-29 22:51 - 2014-01-29 22:51 - 00000000 ____D C:\Users\user\AppData\Roaming\ESET
2014-01-29 22:51 - 2014-01-29 22:51 - 00000000 ____D C:\Users\user\AppData\Local\ESET
2014-01-29 22:49 - 2014-01-29 22:49 - 00000000 ____D C:\ProgramData\ESET
2014-01-29 22:49 - 2014-01-29 22:49 - 00000000 ____D C:\Program Files\ESET
2014-01-29 22:12 - 2014-01-29 22:12 - 00000270 __RSH C:\ProgramData\ntuser.pol
2014-01-29 22:12 - 2014-01-29 22:12 - 00000000 ____D C:\Program Files (x86)\MediaPlayerV1
2014-01-25 17:47 - 2014-01-27 17:45 - 00000000 ____D C:\Users\user\AppData\Roaming\Hamachi
2014-01-25 17:47 - 2014-01-25 17:47 - 00033344 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\Drivers\hamachi.sys
2014-01-25 17:47 - 2014-01-25 17:47 - 00000967 _____ C:\Users\Public\Desktop\hamachi.lnk
2014-01-25 17:47 - 2014-01-25 17:47 - 00000000 ____D C:\Program Files (x86)\Hamachi
2014-01-25 16:52 - 2014-01-25 16:54 - 00000000 ____D C:\Users\user\Documents\Stronghold Crusader
2014-01-25 16:51 - 2014-01-25 16:51 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-01-25 16:45 - 2014-01-25 16:45 - 00000000 ____D C:\GOG Games
2014-01-25 02:49 - 2014-01-25 02:49 - 00000000 ____D C:\Program Files (x86)\1C
2014-01-21 16:39 - 2014-01-21 17:07 - 00000000 ____D C:\Users\user\AppData\Roaming\TeamViewer
2014-01-21 16:39 - 2014-01-21 16:39 - 00001188 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-21 16:39 - 2014-01-21 16:39 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-21 16:38 - 2014-01-21 16:38 - 06076392 _____ (TeamViewer GmbH) C:\Users\user\Downloads\TeamViewer_Setup_cs.exe
2014-01-20 15:49 - 2014-01-20 15:49 - 00000000 __SHD C:\WINDOWS\ftpcache
2014-01-20 12:02 - 2014-01-20 12:02 - 00041562 _____ C:\Users\user\Downloads\[CzT]Company_of_Heroes_Tales_of_Valor_Internal_Czech_PHOENiX.torrent
2014-01-19 20:25 - 2014-01-19 20:26 - 24921361 _____ C:\Users\user\Downloads\LotrBfMe2EP1-131073-english (1).exe
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\Users\user\AppData\Roaming\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\Users\user\AppData\Local\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\ProgramData\PACE Anti-Piracy
2014-01-19 20:19 - 2014-01-19 20:20 - 26337045 _____ C:\Users\user\Downloads\LotrBfMe2EP1-131073-english.exe
2014-01-19 20:17 - 2014-01-25 15:14 - 00000546 _____ C:\Users\user\Desktop\Bfme.txt
2014-01-19 20:11 - 2014-01-19 20:11 - 00000539 _____ C:\Users\user\Downloads\lotrbfme2_win_7_64bit_fix.zip
2014-01-19 20:08 - 2014-01-19 23:50 - 00000000 ____D C:\Users\user\AppData\Roaming\My The Lord of the Rings, The Rise of the Witch-king Files
2014-01-19 18:43 - 2014-01-19 18:45 - 00446762 _____ C:\Users\user\Downloads\LotrBfMe2EP1_Mi-poseden.rar
2014-01-18 22:02 - 2014-01-18 22:02 - 00000000 ____D C:\Users\user\AppData\Local\Rocket Bear Games
2014-01-16 19:51 - 2014-01-16 19:51 - 00016352 _____ C:\Users\user\Downloads\Supernatural_S09E10.rar
2014-01-16 16:58 - 2014-01-16 16:58 - 00000000 ____D C:\Users\user\Documents\Stronghold 3
2014-01-16 16:45 - 2014-01-16 16:45 - 00000000 ____D C:\Program Files (x86)\Firefly Studios
2014-01-16 16:31 - 2014-01-16 16:31 - 00011608 _____ C:\Users\user\Downloads\[CzT]Stronghold_3_Gold_CZ_2012_ (1).torrent
2014-01-15 18:04 - 2013-12-09 01:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-15 18:04 - 2013-11-27 16:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-15 18:04 - 2013-11-27 12:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-15 18:04 - 2013-11-27 11:34 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2014-01-15 18:04 - 2013-11-27 10:54 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-15 18:04 - 2013-11-27 09:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 18:04 - 2013-11-27 09:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-15 18:04 - 2013-11-27 09:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 18:04 - 2013-11-27 09:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-15 18:04 - 2013-11-27 09:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-15 18:04 - 2013-11-27 09:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-14 22:53 - 2014-01-14 22:53 - 00001808 _____ C:\Users\user\Downloads\addon (4).crx
2014-01-14 22:52 - 2014-01-14 22:52 - 00001808 _____ C:\Users\user\Downloads\addon (3).crx
2014-01-14 12:43 - 2014-01-14 12:43 - 00365067 _____ C:\Users\user\Downloads\[CzT]Star_Trek_Nova_generace_Star_Trek_The_Next_Generation.torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312988 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (1).torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312987 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (3).torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312987 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (2).torrent
2014-01-13 07:36 - 2014-01-13 07:36 - 06370092 _____ C:\Users\user\Desktop\2014.01.12-IV.zip
2014-01-11 16:57 - 2014-01-15 16:18 - 00000000 ____D C:\Users\user\AppData\Roaming\Tropico 4
2014-01-11 16:57 - 2014-01-11 16:57 - 00000000 ____D C:\Users\user\AppData\Roaming\Kalypso Media
2014-01-11 16:50 - 2014-01-11 16:50 - 00000000 ____D C:\Program Files (x86)\Kalypso Media
2014-01-11 15:22 - 2014-01-11 15:22 - 00020347 _____ C:\Users\user\Downloads\[CzT]Tropico_4.torrent
2014-01-11 04:44 - 2014-01-11 04:44 - 01079915 _____ C:\Users\user\Downloads\olfeabkoenfaoljndfecamgilllcpiak_21290.crx
2014-01-10 02:12 - 2014-01-10 02:12 - 00000000 ____D C:\Program Files (x86)\VideoPlayerV3
2014-01-10 01:20 - 2014-01-10 01:20 - 00001057 _____ C:\Users\user\Desktop\KMPlayer.lnk
2014-01-10 01:19 - 2014-01-10 01:19 - 32200464 _____ (PandoraTV) C:\Users\user\Downloads\3.8.0.117_20140108021056.exe
2014-01-09 20:40 - 2014-01-09 20:40 - 00312988 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_.torrent
2014-01-09 18:29 - 2014-01-09 18:30 - 21070065 _____ (LucasArts) C:\Users\user\Downloads\FOCUpdate1_1.exe
2014-01-09 17:58 - 2014-01-09 17:58 - 00114352 _____ (GameRanger Technologies) C:\Users\user\Downloads\GameRangerSetup.exe
2014-01-09 17:58 - 2014-01-09 17:58 - 00001130 _____ C:\Users\user\Desktop\GameRanger.lnk
2014-01-09 17:58 - 2014-01-09 17:58 - 00001116 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk
2014-01-09 17:58 - 2014-01-09 17:58 - 00000000 ____D C:\Users\user\AppData\Roaming\GameRanger
2014-01-09 17:55 - 2014-01-09 17:55 - 00096768 _____ (http://computerlimbo.com) C:\Users\user\Downloads\EAW + FOC Patch.exe
2014-01-08 23:12 - 2014-01-08 23:12 - 01463328 _____ C:\Users\user\Downloads\SystemCheck_enGB (1).exe
2014-01-08 17:27 - 2014-01-08 17:27 - 00001808 _____ C:\Users\user\Downloads\addon (2).crx
2014-01-08 17:27 - 2014-01-08 17:27 - 00001808 _____ C:\Users\user\Downloads\addon (1).crx
2014-01-08 17:26 - 2014-01-08 17:26 - 00001808 _____ C:\Users\user\Downloads\addon.crx
2014-01-06 20:23 - 2014-01-06 20:23 - 04558848 _____ (Google Inc.) C:\WINDOWS\SysWOW64\GPhotos.scr
2014-01-05 13:13 - 2013-07-03 18:21 - 1669848566 _____ (Republic at War Modding Team) C:\Users\user\Downloads\Republic at War.exe
2014-01-04 02:12 - 2014-01-04 02:12 - 11993368 _____ C:\Users\user\Downloads\Pattons_Mod.rar
2014-01-04 02:11 - 2014-01-04 03:18 - 1652184021 _____ C:\Users\user\Downloads\RaW_AUTO.zip
2014-01-04 02:10 - 2014-01-04 02:10 - 00011297 _____ C:\Users\user\Downloads\1.2.1.zip
2014-01-03 21:30 - 2014-01-30 03:08 - 00000000 ____D C:\Users\user\AppData\Roaming\TS3Client
2014-01-03 21:29 - 2014-01-03 21:29 - 00000989 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-01-03 21:29 - 2014-01-03 21:29 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2014-01-03 21:28 - 2014-01-03 21:29 - 32520760 _____ (TeamSpeak Systems GmbH) C:\Users\user\Downloads\TeamSpeak3-Client-win64-3.0.13.1.exe
2014-01-01 20:53 - 2014-01-30 03:08 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-01 14:33 - 2014-01-01 14:33 - 00000000 ____D C:\Users\user\Documents\Aspyr
2014-01-01 13:39 - 2014-01-01 13:39 - 00000000 ____D C:\Users\user\AppData\Local\Aspyr
2014-01-01 13:39 - 2014-01-01 13:39 - 00000000 ____D C:\Program Files (x86)\Aspyr
2014-01-01 02:47 - 2014-01-01 02:47 - 00037464 _____ C:\Users\user\Downloads\[CzT]Star_Wars_The_Force_Unleashed_Ultimate_Sith_Edition_2008_.torrent
2014-01-01 02:42 - 2014-01-01 02:42 - 00024143 _____ C:\Users\user\Downloads\[CzT]Star_Wars_The_Force_Unleashed.torrent

==================== One Month Modified Files and Folders =======

2014-01-31 13:41 - 2014-01-30 13:32 - 00019919 _____ C:\Users\user\Desktop\FRST.txt
2014-01-31 13:41 - 2014-01-30 13:31 - 00000000 ____D C:\FRST
2014-01-31 13:39 - 2014-01-30 12:29 - 00000964 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-31 13:38 - 2013-10-08 05:54 - 00000000 ____D C:\Users\user\AppData\Local\Battle.net
2014-01-31 13:35 - 2014-01-31 13:35 - 00028151 _____ C:\Users\user\Desktop\Addition.txt
2014-01-31 13:34 - 2014-01-31 13:34 - 00015327 _____ C:\Users\user\Desktop\LM.bat
2014-01-31 13:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-31 12:44 - 2013-10-05 04:06 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-22948852-3544084575-3188587028-1002
2014-01-31 12:39 - 2014-01-30 12:34 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973.job
2014-01-31 12:39 - 2014-01-30 12:29 - 00002213 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-31 11:15 - 2013-11-11 14:24 - 00003962 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3EC6B964-A6DD-4601-812A-52A9F83D464C}
2014-01-31 10:32 - 2014-01-30 17:27 - 00008442 _____ C:\Users\user\Desktop\Addition.rar
2014-01-31 10:28 - 2014-01-30 12:45 - 00108605 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-31 09:16 - 2013-11-05 13:55 - 01749406 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-31 09:16 - 2013-09-30 04:56 - 00740962 _____ C:\WINDOWS\system32\perfh005.dat
2014-01-31 09:16 - 2013-09-30 04:56 - 00152146 _____ C:\WINDOWS\system32\perfc005.dat
2014-01-31 09:13 - 2013-10-05 03:57 - 00100093 _____ C:\Users\user\AppData\Local\BTServer.log
2014-01-31 00:54 - 2014-01-31 00:54 - 00000000 ___SH C:\DkHyperbootSync
2014-01-30 22:55 - 2013-11-05 14:08 - 00000000 __RDO C:\Users\user\SkyDrive
2014-01-30 22:54 - 2013-10-07 15:38 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-30 22:53 - 2013-07-10 15:56 - 00000000 ____D C:\ProgramData\Realtek
2014-01-30 22:52 - 2014-01-30 12:40 - 00939760 _____ C:\WINDOWS\PFRO.log
2014-01-30 22:52 - 2014-01-30 12:38 - 00000000 ____D C:\AdwCleaner
2014-01-30 22:52 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-30 22:52 - 2013-02-22 08:24 - 00000000 ____D C:\ProgramData\Norton
2014-01-30 22:46 - 2013-10-30 00:23 - 00000000 ____D C:\Program Files (x86)\GreyGray
2014-01-30 22:43 - 2014-01-30 00:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-30 22:43 - 2014-01-29 23:42 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2014-01-30 22:41 - 2014-01-30 22:40 - 00000085 _____ C:\WINDOWS\wininit.ini
2014-01-30 22:41 - 2014-01-30 00:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-30 22:40 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-30 22:40 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2014-01-30 22:30 - 2013-10-05 04:11 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype
2014-01-30 21:52 - 2013-12-01 16:17 - 00000000 ____D C:\Users\user\AppData\Local\Deployment
2014-01-30 19:10 - 2013-12-09 18:04 - 00000000 ____D C:\Users\user\AppData\Roaming\vlc
2014-01-30 17:23 - 2014-01-30 17:23 - 00987425 _____ C:\Users\user\Downloads\SecurityCheck.exe
2014-01-30 17:23 - 2014-01-30 17:23 - 00987425 _____ C:\Users\user\Desktop\SecurityCheck.exe
2014-01-30 13:47 - 2013-11-25 14:03 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2014-01-30 13:31 - 2014-01-30 13:31 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2014-01-30 13:25 - 2014-01-30 13:25 - 02079744 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2014-01-30 13:11 - 2014-01-30 13:09 - 00000000 ____D C:\Users\user\Desktop\hh
2014-01-30 13:11 - 2014-01-30 12:54 - 00000538 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Warhammer 40k dawn of war 2 (Win8) - poradna.net.website
2014-01-30 13:11 - 2014-01-30 12:53 - 00000495 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Prima Cool ONLINE TV.website
2014-01-30 12:39 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-30 12:38 - 2014-01-30 12:38 - 01166132 _____ C:\Users\user\Desktop\adwcleaner.exe
2014-01-30 12:34 - 2014-01-30 12:34 - 00003712 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973
2014-01-30 12:34 - 2014-01-30 12:29 - 00003936 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-30 12:29 - 2014-01-30 12:29 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-30 12:29 - 2014-01-30 12:28 - 00000000 ____D C:\Users\user\AppData\Local\Google
2014-01-30 05:30 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2014-01-30 03:08 - 2014-01-03 21:30 - 00000000 ____D C:\Users\user\AppData\Roaming\TS3Client
2014-01-30 03:08 - 2014-01-01 20:53 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-30 03:08 - 2013-11-05 13:27 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-30 03:08 - 2013-10-07 23:30 - 00000000 ____D C:\Users\user\AppData\Roaming\DAEMON Tools Lite
2014-01-30 03:08 - 2013-10-07 15:59 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps
2014-01-30 03:08 - 2013-10-07 15:09 - 00000000 ____D C:\Users\user\AppData\Roaming\uTorrent
2014-01-30 03:07 - 2013-10-07 20:44 - 00000000 ___RD C:\Users\user\Desktop\Programy
2014-01-30 03:06 - 2014-01-30 03:06 - 00002770 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-01-30 03:06 - 2014-01-30 03:05 - 00000000 ____D C:\Program Files\CCleaner
2014-01-30 02:49 - 2014-01-30 02:49 - 00000074 _____ C:\Users\user\Desktop\VIRY.CZ • Zobrazit téma - Preventivka.url
2014-01-30 00:34 - 2014-01-30 00:07 - 00000000 ____D C:\Users\user\AppData\Local\adawarebp
2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D C:\Users\user\AppData\Roaming\LavasoftStatistics
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\Users\user\AppData\Roaming\SecureSearch
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\ProgramData\Ad-Aware Browsing Protection
2014-01-30 00:06 - 2014-01-30 00:06 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2014-01-30 00:05 - 2014-01-30 00:05 - 00000000 ____D C:\ProgramData\Lavasoft
2014-01-30 00:01 - 2014-01-30 00:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2014-01-29 23:42 - 2014-01-29 23:42 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\stflt.sys
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Users\user\AppData\Roaming\CStart8
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\Program Files (x86)\CStart8
2014-01-29 23:25 - 2014-01-29 23:25 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-29 23:09 - 2013-08-22 15:44 - 00344792 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-29 22:51 - 2014-01-29 22:51 - 00000000 ____D C:\Users\user\AppData\Roaming\ESET
2014-01-29 22:51 - 2014-01-29 22:51 - 00000000 ____D C:\Users\user\AppData\Local\ESET
2014-01-29 22:49 - 2014-01-29 22:49 - 00000000 ____D C:\ProgramData\ESET
2014-01-29 22:49 - 2014-01-29 22:49 - 00000000 ____D C:\Program Files\ESET
2014-01-29 22:12 - 2014-01-29 22:12 - 00000270 __RSH C:\ProgramData\ntuser.pol
2014-01-29 22:12 - 2014-01-29 22:12 - 00000000 ____D C:\Program Files (x86)\MediaPlayerV1
2014-01-29 22:12 - 2013-12-10 17:12 - 00000308 _____ C:\extensions.ini
2014-01-29 22:12 - 2013-08-22 16:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2014-01-29 22:12 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2014-01-28 19:04 - 2013-10-15 21:58 - 00000000 ____D C:\Users\user\Documents\The KMPlayer
2014-01-28 15:40 - 2013-10-07 20:43 - 00000000 ____D C:\Users\user\Documents\StarCraft II
2014-01-27 17:45 - 2014-01-25 17:47 - 00000000 ____D C:\Users\user\AppData\Roaming\Hamachi
2014-01-27 00:08 - 2013-10-07 18:23 - 00000000 ____D C:\Users\user\Documents\AVerTV
2014-01-26 03:04 - 2013-10-07 15:54 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-25 23:14 - 2013-10-07 20:44 - 00000000 ____D C:\Users\user\Desktop\Hry
2014-01-25 17:47 - 2014-01-25 17:47 - 00033344 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\Drivers\hamachi.sys
2014-01-25 17:47 - 2014-01-25 17:47 - 00000967 _____ C:\Users\Public\Desktop\hamachi.lnk
2014-01-25 17:47 - 2014-01-25 17:47 - 00000000 ____D C:\Program Files (x86)\Hamachi
2014-01-25 16:54 - 2014-01-25 16:52 - 00000000 ____D C:\Users\user\Documents\Stronghold Crusader
2014-01-25 16:51 - 2014-01-25 16:51 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-01-25 16:51 - 2014-01-25 16:51 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-01-25 16:51 - 2014-01-25 16:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-01-25 16:45 - 2014-01-25 16:45 - 00000000 ____D C:\GOG Games
2014-01-25 15:14 - 2014-01-19 20:17 - 00000546 _____ C:\Users\user\Desktop\Bfme.txt
2014-01-25 02:55 - 2013-10-07 23:51 - 00000000 ____D C:\Users\user\Documents\My Games
2014-01-25 02:54 - 2013-11-04 17:15 - 00000000 ____D C:\Users\user\AppData\Local\Adobe
2014-01-25 02:54 - 2013-10-05 04:09 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-25 02:49 - 2014-01-25 02:49 - 00000000 ____D C:\Program Files (x86)\1C
2014-01-24 03:37 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-22 05:07 - 2013-10-07 20:43 - 00000000 ____D C:\Program Files (x86)\StarCraft II
2014-01-21 17:07 - 2014-01-21 16:39 - 00000000 ____D C:\Users\user\AppData\Roaming\TeamViewer
2014-01-21 16:39 - 2014-01-21 16:39 - 00001188 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-21 16:39 - 2014-01-21 16:39 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-21 16:38 - 2014-01-21 16:38 - 06076392 _____ (TeamViewer GmbH) C:\Users\user\Downloads\TeamViewer_Setup_cs.exe
2014-01-20 19:13 - 2013-12-31 03:27 - 00001293 _____ C:\WINDOWS\system32\Drivers\etc\hosts.txt
2014-01-20 15:52 - 2013-11-01 14:50 - 00000000 ____D C:\Program Files (x86)\THQ
2014-01-20 15:49 - 2014-01-20 15:49 - 00000000 __SHD C:\WINDOWS\ftpcache
2014-01-20 12:02 - 2014-01-20 12:02 - 00041562 _____ C:\Users\user\Downloads\[CzT]Company_of_Heroes_Tales_of_Valor_Internal_Czech_PHOENiX.torrent
2014-01-19 23:50 - 2014-01-19 20:08 - 00000000 ____D C:\Users\user\AppData\Roaming\My The Lord of the Rings, The Rise of the Witch-king Files
2014-01-19 20:26 - 2014-01-19 20:25 - 24921361 _____ C:\Users\user\Downloads\LotrBfMe2EP1-131073-english (1).exe
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\Users\user\AppData\Roaming\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\Users\user\AppData\Local\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:20 - 00000000 ____D C:\ProgramData\PACE Anti-Piracy
2014-01-19 20:20 - 2014-01-19 20:19 - 26337045 _____ C:\Users\user\Downloads\LotrBfMe2EP1-131073-english.exe
2014-01-19 20:11 - 2014-01-19 20:11 - 00000539 _____ C:\Users\user\Downloads\lotrbfme2_win_7_64bit_fix.zip
2014-01-19 19:54 - 2013-10-11 18:33 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
2014-01-19 18:45 - 2014-01-19 18:43 - 00446762 _____ C:\Users\user\Downloads\LotrBfMe2EP1_Mi-poseden.rar
2014-01-19 08:38 - 2013-12-26 13:56 - 00270496 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-01-18 22:02 - 2014-01-18 22:02 - 00000000 ____D C:\Users\user\AppData\Local\Rocket Bear Games
2014-01-18 05:10 - 2013-11-12 21:04 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2014-01-17 11:14 - 2013-10-08 05:53 - 00000000 ____D C:\Program Files (x86)\Battle.net
2014-01-16 19:51 - 2014-01-16 19:51 - 00016352 _____ C:\Users\user\Downloads\Supernatural_S09E10.rar
2014-01-16 16:58 - 2014-01-16 16:58 - 00000000 ____D C:\Users\user\Documents\Stronghold 3
2014-01-16 16:45 - 2014-01-16 16:45 - 00000000 ____D C:\Program Files (x86)\Firefly Studios
2014-01-16 16:31 - 2014-01-16 16:31 - 00011608 _____ C:\Users\user\Downloads\[CzT]Stronghold_3_Gold_CZ_2012_ (1).torrent
2014-01-16 05:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-15 19:55 - 2013-10-07 20:43 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-15 19:54 - 2013-10-07 20:43 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-15 16:18 - 2014-01-11 16:57 - 00000000 ____D C:\Users\user\AppData\Roaming\Tropico 4
2014-01-14 22:53 - 2014-01-14 22:53 - 00001808 _____ C:\Users\user\Downloads\addon (4).crx
2014-01-14 22:52 - 2014-01-14 22:52 - 00001808 _____ C:\Users\user\Downloads\addon (3).crx
2014-01-14 12:43 - 2014-01-14 12:43 - 00365067 _____ C:\Users\user\Downloads\[CzT]Star_Trek_Nova_generace_Star_Trek_The_Next_Generation.torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312988 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (1).torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312987 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (3).torrent
2014-01-14 12:41 - 2014-01-14 12:41 - 00312987 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_ (2).torrent
2014-01-13 07:36 - 2014-01-13 07:36 - 06370092 _____ C:\Users\user\Desktop\2014.01.12-IV.zip
2014-01-11 16:57 - 2014-01-11 16:57 - 00000000 ____D C:\Users\user\AppData\Roaming\Kalypso Media
2014-01-11 16:50 - 2014-01-11 16:50 - 00000000 ____D C:\Program Files (x86)\Kalypso Media
2014-01-11 15:22 - 2014-01-11 15:22 - 00020347 _____ C:\Users\user\Downloads\[CzT]Tropico_4.torrent
2014-01-11 04:44 - 2014-01-11 04:44 - 01079915 _____ C:\Users\user\Downloads\olfeabkoenfaoljndfecamgilllcpiak_21290.crx
2014-01-10 02:12 - 2014-01-10 02:12 - 00000000 ____D C:\Program Files (x86)\VideoPlayerV3
2014-01-10 01:20 - 2014-01-10 01:20 - 00001057 _____ C:\Users\user\Desktop\KMPlayer.lnk
2014-01-10 01:19 - 2014-01-10 01:19 - 32200464 _____ (PandoraTV) C:\Users\user\Downloads\3.8.0.117_20140108021056.exe
2014-01-09 20:40 - 2014-01-09 20:40 - 00312988 _____ C:\Users\user\Downloads\[CzT]Star_trek_Voyager_1_7_serie_.torrent
2014-01-09 18:30 - 2014-01-09 18:29 - 21070065 _____ (LucasArts) C:\Users\user\Downloads\FOCUpdate1_1.exe
2014-01-09 17:58 - 2014-01-09 17:58 - 00114352 _____ (GameRanger Technologies) C:\Users\user\Downloads\GameRangerSetup.exe
2014-01-09 17:58 - 2014-01-09 17:58 - 00001130 _____ C:\Users\user\Desktop\GameRanger.lnk
2014-01-09 17:58 - 2014-01-09 17:58 - 00001116 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk
2014-01-09 17:58 - 2014-01-09 17:58 - 00000000 ____D C:\Users\user\AppData\Roaming\GameRanger
2014-01-09 17:55 - 2014-01-09 17:55 - 00096768 _____ (http://computerlimbo.com) C:\Users\user\Downloads\EAW + FOC Patch.exe
2014-01-08 23:12 - 2014-01-08 23:12 - 01463328 _____ C:\Users\user\Downloads\SystemCheck_enGB (1).exe
2014-01-08 17:27 - 2014-01-08 17:27 - 00001808 _____ C:\Users\user\Downloads\addon (2).crx
2014-01-08 17:27 - 2014-01-08 17:27 - 00001808 _____ C:\Users\user\Downloads\addon (1).crx
2014-01-08 17:26 - 2014-01-08 17:26 - 00001808 _____ C:\Users\user\Downloads\addon.crx
2014-01-07 14:26 - 2013-10-10 06:53 - 00000000 ____D C:\Users\user\Desktop\Škola
2014-01-07 12:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-06 20:23 - 2014-01-06 20:23 - 04558848 _____ (Google Inc.) C:\WINDOWS\SysWOW64\GPhotos.scr
2014-01-04 03:18 - 2014-01-04 02:11 - 1652184021 _____ C:\Users\user\Downloads\RaW_AUTO.zip
2014-01-04 02:12 - 2014-01-04 02:12 - 11993368 _____ C:\Users\user\Downloads\Pattons_Mod.rar
2014-01-04 02:10 - 2014-01-04 02:10 - 00011297 _____ C:\Users\user\Downloads\1.2.1.zip
2014-01-03 21:29 - 2014-01-03 21:29 - 00000989 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-01-03 21:29 - 2014-01-03 21:29 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2014-01-03 21:29 - 2014-01-03 21:28 - 32520760 _____ (TeamSpeak Systems GmbH) C:\Users\user\Downloads\TeamSpeak3-Client-win64-3.0.13.1.exe
2014-01-02 23:05 - 2013-10-09 23:20 - 00000000 ____D C:\Users\user\Documents\Electronic Arts
2014-01-02 22:55 - 2013-07-10 15:55 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-01 14:33 - 2014-01-01 14:33 - 00000000 ____D C:\Users\user\Documents\Aspyr
2014-01-01 13:39 - 2014-01-01 13:39 - 00000000 ____D C:\Users\user\AppData\Local\Aspyr
2014-01-01 13:39 - 2014-01-01 13:39 - 00000000 ____D C:\Program Files (x86)\Aspyr
2014-01-01 02:47 - 2014-01-01 02:47 - 00037464 _____ C:\Users\user\Downloads\[CzT]Star_Wars_The_Force_Unleashed_Ultimate_Sith_Edition_2008_.torrent
2014-01-01 02:42 - 2014-01-01 02:42 - 00024143 _____ C:\Users\user\Downloads\[CzT]Star_Wars_The_Force_Unleashed.torrent

Some content of TEMP:
====================
C:\Users\user\AppData\Local\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-01-31 04:31

==================== End Of Log ============================

Tvorba fixlistu pro FRST

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

Start
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SteelSeries World of Warcraft Cataclysm MMO Gaming Mouse] - C:\Program Files (x86)\SteelSeries\World of Warcraft Cataclysm MMO Gaming Mouse\WoWMHID2.exe [1993216 2011-08-18] (SteelSeries)
HKLM-x32\...\Run: [Ad-Aware Browsing Protection] - C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe [559696 2013-09-27] (Lavasoft)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1815976 2014-01-27] (Valve Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\user\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\user\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKCU\...\Run: [Gyazo] - C:\Program Files (x86)\Gyazo\GyStation.exe [2990304 2013-10-30] (Nota Inc.)
MountPoints2: {af0e3aba-810c-11e3-beaa-8c89a50dcc82} - "G:\Autorun.exe"
MountPoints2: {bcabd015-4615-11e3-824f-806e6f6e6963} - "E:\LaunchEAWG.exe" 

CHR HKLM-x32\...\Chrome\Extension: [lgnpmcfjohgjgfimgbegoabmaljgkokk] - C:\Program Files (x86)\GreyGray\lgnpmcfjohgjgfimgbegoabmaljgkokk.crx [2013-10-01]
CHR HKLM-x32\...\Chrome\Extension: [mmifolfpllfdhilecpdpmemhelmanajl] - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ch\BetterSurfPlus.crx [2013-10-01]
CHR HKLM-x32\...\Chrome\Extension: [nchcmebkafbcdahjbdfamifmmoamndgn] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta190\ch\VideoPlayerV3beta190.crx [2014-01-07]
CHR HKLM-x32\...\Chrome\Extension: [oejkcgajlodefenbbjdnaiahmbnnoole] - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx [2014-01-17]
CHR HKLM-x32\...\Chrome\Extension: [poheodfamflhhhdcmjfeggbgigeefaco] - C:\Program Files (x86)\Better-Surf\ch\Chrome.crx [2014-01-17]

R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]

2014-01-31 13:35 - 2014-01-31 13:35 - 00028151 _____ C:\Users\user\Desktop\Addition.txt
2014-01-31 13:34 - 2014-01-31 13:34 - 00015327 _____ C:\Users\user\Desktop\LM.bat
2014-01-30 17:27 - 2014-01-31 10:32 - 00008442 _____ C:\Users\user\Desktop\Addition.rar
2014-01-30 17:23 - 2014-01-30 17:23 - 00987425 _____ C:\Users\user\Downloads\SecurityCheck.exe
2014-01-30 17:23 - 2014-01-30 17:23 - 00987425 _____ C:\Users\user\Desktop\SecurityCheck.exe
2014-01-30 13:32 - 2014-01-31 13:41 - 00019919 _____ C:\Users\user\Desktop\FRST.txt
2014-01-30 13:31 - 2014-01-30 13:31 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2014-01-30 12:38 - 2014-01-30 12:38 - 01166132 _____ C:\Users\user\Desktop\adwcleaner.exe
2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D C:\Users\user\AppData\Roaming\LavasoftStatistics
2014-01-30 00:07 - 2014-01-30 00:34 - 00000000 ____D C:\Users\user\AppData\Local\adawarebp
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\Users\user\AppData\Roaming\SecureSearch
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\ProgramData\Ad-Aware Browsing Protection
2014-01-30 00:06 - 2014-01-30 00:06 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2014-01-30 00:05 - 2014-01-30 00:05 - 00000000 ____D C:\ProgramData\Lavasoft
2014-01-30 00:01 - 2014-01-30 00:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2014-01-30 00:00 - 2014-01-30 22:43 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-30 00:00 - 2014-01-30 22:41 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-29 23:42 - 2014-01-30 22:43 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2014-01-29 23:25 - 2014-01-29 23:25 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-11 04:44 - 2014-01-11 04:44 - 01079915 _____ C:\Users\user\Downloads\olfeabkoenfaoljndfecamgilllcpiak_21290.crx
C:\Program Files\Enigma Software Group
C:\Program Files (x86)\PANDORA.TV
C:\Program Files (x86)\GreyGray
C:\Program Files (x86)\BetterSurf
C:\Program Files (x86)\VideoPlayerV3
C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar
C:\ProgramData\Ad-Aware Browsing Protection

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 000da97b-2080-4fe6-8d01-ffa4eb262f8c.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task c2366258-f72f-4b3e-a345-a1e1a093dc54.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

Hosts:
CMD: shutdown /r /f /t 2

End

Ulozte vytvoreny TXT jako fixlist.txt
Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

Kliknete na Fix
Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

Musim se omluvit jsem blbec a ten fix jsem spustil dvakrát neboť jsem ten fix pustil dvakrát (nebyl jsem si jistý zda jsem to udělal správně a spanikařil jsem) důsledkem toho v tomto fixlogu je u většiny value not found ale co jsem se v tom prvním fixlogu díval tak u všech bylo moved Moved successfully popř. key deleted successfully.Opravdu se ještě jednou za tohle omlouvám.Každopádně jinak problém stále přetrvává a co jsem se díval do doplňků na chrome tak je tam tzv. media player který nelze smazat neboť je chráněný podnikovými zásadami.

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 29-01-2014 01
Ran by user at 2014-01-31 22:25:51 Run:2
Running from C:\Users\user\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SteelSeries World of Warcraft Cataclysm MMO Gaming Mouse] - C:\Program Files (x86)\SteelSeries\World of Warcraft Cataclysm MMO Gaming Mouse\WoWMHID2.exe [1993216 2011-08-18] (SteelSeries)
HKLM-x32\...\Run: [Ad-Aware Browsing Protection] - C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe [559696 2013-09-27] (Lavasoft)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1815976 2014-01-27] (Valve Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\user\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\user\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKCU\...\Run: [Gyazo] - C:\Program Files (x86)\Gyazo\GyStation.exe [2990304 2013-10-30] (Nota Inc.)
MountPoints2: {af0e3aba-810c-11e3-beaa-8c89a50dcc82} - "G:\Autorun.exe"
MountPoints2: {bcabd015-4615-11e3-824f-806e6f6e6963} - "E:\LaunchEAWG.exe"

CHR HKLM-x32\...\Chrome\Extension: [lgnpmcfjohgjgfimgbegoabmaljgkokk] - C:\Program Files (x86)\GreyGray\lgnpmcfjohgjgfimgbegoabmaljgkokk.crx [2013-10-01]
CHR HKLM-x32\...\Chrome\Extension: [mmifolfpllfdhilecpdpmemhelmanajl] - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ch\BetterSurfPlus.crx [2013-10-01]
CHR HKLM-x32\...\Chrome\Extension: [nchcmebkafbcdahjbdfamifmmoamndgn] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta190\ch\VideoPlayerV3beta190.crx [2014-01-07]
CHR HKLM-x32\...\Chrome\Extension: [oejkcgajlodefenbbjdnaiahmbnnoole] - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx [2014-01-17]
CHR HKLM-x32\...\Chrome\Extension: [poheodfamflhhhdcmjfeggbgigeefaco] - C:\Program Files (x86)\Better-Surf\ch\Chrome.crx [2014-01-17]

R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]

2014-01-31 13:35 - 2014-01-31 13:35 - 00028151 _____ C:\Users\user\Desktop\Addition.txt
2014-01-31 13:34 - 2014-01-31 13:34 - 00015327 _____ C:\Users\user\Desktop\LM.bat
2014-01-30 17:27 - 2014-01-31 10:32 - 00008442 _____ C:\Users\user\Desktop\Addition.rar
2014-01-30 17:23 - 2014-01-30 17:23 - 00987425 _____ C:\Users\user\Downloads\SecurityCheck.exe
2014-01-30 17:23 - 2014-01-30 17:23 - 00987425 _____ C:\Users\user\Desktop\SecurityCheck.exe
2014-01-30 13:32 - 2014-01-31 13:41 - 00019919 _____ C:\Users\user\Desktop\FRST.txt
2014-01-30 13:31 - 2014-01-30 13:31 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2014-01-30 12:38 - 2014-01-30 12:38 - 01166132 _____ C:\Users\user\Desktop\adwcleaner.exe
2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D C:\Users\user\AppData\Roaming\LavasoftStatistics
2014-01-30 00:07 - 2014-01-30 00:34 - 00000000 ____D C:\Users\user\AppData\Local\adawarebp
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\Users\user\AppData\Roaming\SecureSearch
2014-01-30 00:07 - 2014-01-30 00:07 - 00000000 ____D C:\ProgramData\Ad-Aware Browsing Protection
2014-01-30 00:06 - 2014-01-30 00:06 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2014-01-30 00:05 - 2014-01-30 00:05 - 00000000 ____D C:\ProgramData\Lavasoft
2014-01-30 00:01 - 2014-01-30 00:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2014-01-30 00:00 - 2014-01-30 22:43 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-30 00:00 - 2014-01-30 22:41 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-29 23:42 - 2014-01-30 22:43 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2014-01-29 23:25 - 2014-01-29 23:25 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-11 04:44 - 2014-01-11 04:44 - 01079915 _____ C:\Users\user\Downloads\olfeabkoenfaoljndfecamgilllcpiak_21290.crx
C:\Program Files\Enigma Software Group
C:\Program Files (x86)\PANDORA.TV
C:\Program Files (x86)\GreyGray
C:\Program Files (x86)\BetterSurf
C:\Program Files (x86)\VideoPlayerV3
C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar
C:\ProgramData\Ad-Aware Browsing Protection

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 000da97b-2080-4fe6-8d01-ffa4eb262f8c.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task c2366258-f72f-4b3e-a345-a1e1a093dc54.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

Hosts:
CMD: shutdown /r /f /t 2

End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Nvtmru => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RemoteControl10 => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SteelSeries World of Warcraft Cataclysm MMO Gaming Mouse => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Ad-Aware Browsing Protection => Value not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Steam => Value not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => Value not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => Value not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Gyazo => Value not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{af0e3aba-810c-11e3-beaa-8c89a50dcc82} => Key not found.
HKCR\CLSID\{af0e3aba-810c-11e3-beaa-8c89a50dcc82} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bcabd015-4615-11e3-824f-806e6f6e6963} => Key deleted successfully.
HKCR\CLSID\{bcabd015-4615-11e3-824f-806e6f6e6963} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lgnpmcfjohgjgfimgbegoabmaljgkokk => Key not found.
"C:\Program Files (x86)\GreyGray\lgnpmcfjohgjgfimgbegoabmaljgkokk.crx" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\mmifolfpllfdhilecpdpmemhelmanajl => Key not found.
"C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ch\BetterSurfPlus.crx" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\nchcmebkafbcdahjbdfamifmmoamndgn => Key not found.
"C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta190\ch\VideoPlayerV3beta190.crx" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole => Key not found.
"C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\poheodfamflhhhdcmjfeggbgigeefaco => Key not found.
"C:\Program Files (x86)\Better-Surf\ch\Chrome.crx" => File/Directory not found.
PanService => Service not found.
esgiguard => Service not found.
"C:\Users\user\Desktop\Addition.txt" => File/Directory not found.
"C:\Users\user\Desktop\LM.bat" => File/Directory not found.
"C:\Users\user\Desktop\Addition.rar" => File/Directory not found.
"C:\Users\user\Downloads\SecurityCheck.exe" => File/Directory not found.
"C:\Users\user\Desktop\SecurityCheck.exe" => File/Directory not found.
"C:\Users\user\Desktop\FRST.txt" => File/Directory not found.
"C:\Users\user\Desktop\FRSTLauncher.exe" => File/Directory not found.
"C:\Users\user\Desktop\adwcleaner.exe" => File/Directory not found.
"C:\Users\user\AppData\Roaming\LavasoftStatistics" => File/Directory not found.
"C:\Users\user\AppData\Local\adawarebp" => File/Directory not found.
"C:\Users\user\AppData\Roaming\SecureSearch" => File/Directory not found.
"C:\ProgramData\Ad-Aware Browsing Protection" => File/Directory not found.
"C:\Program Files (x86)\Lavasoft" => File/Directory not found.
"C:\ProgramData\Lavasoft" => File/Directory not found.
"C:\WINDOWS\System32\Tasks\Safer-Networking" => File/Directory not found.
"C:\Program Files (x86)\Spybot - Search & Destroy 2" => File/Directory not found.
"C:\ProgramData\Spybot - Search & Destroy" => File/Directory not found.
"C:\Program Files (x86)\Spyware Terminator" => File/Directory not found.
"C:\Program Files\Enigma Software Group" => File/Directory not found.
"C:\Users\user\Downloads\olfeabkoenfaoljndfecamgilllcpiak_21290.crx" => File/Directory not found.
"C:\Program Files\Enigma Software Group" => File/Directory not found.
"C:\Program Files (x86)\PANDORA.TV" => File/Directory not found.
"C:\Program Files (x86)\GreyGray" => File/Directory not found.
"C:\Program Files (x86)\BetterSurf" => File/Directory not found.
"C:\Program Files (x86)\VideoPlayerV3" => File/Directory not found.
"C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar" => File/Directory not found.
"C:\ProgramData\Ad-Aware Browsing Protection" => File/Directory not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf1daf35627973.job not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job not found.
C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 000da97b-2080-4fe6-8d01-ffa4eb262f8c.job not found.
C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task c2366258-f72f-4b3e-a345-a1e1a093dc54.job not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========

========= End of CMD: =========

==== End of Fixlog ====

No uvidime jestli odola i tomuto nastroji, pak bych asi zvazil odistalaci Chrome, smazani profiloveho uctu jeho a nova instalace

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

Kód: Vybrat vše

srinfo;
autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Super vypadá to že to zabralo v chromu reklamy už nejsou.Takže moc děkuju za pomoc jste super !

Zoek.exe v5.0.0.0 Updated 31-January-2014
Tool run by user on so 01. 02. 2014 at 15:25:30,91.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\user\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

1. 2. 2014 15:27:32 Zoek.exe System Restore Point Created Succesfully.

==== Creating Sample_201401.02._1532.zip ======================

Process iexplore.exe killed
Copied file C:\Users\user\AppData\Local\MSGBOX.EXE to sample\MSGBOX.EXE
sample\MSGBOX.EXE renamed to DD091A1C8075F061811515A1B13A5E07

C:\Users\Public\Desktop\sample_201401.02._1532.zip created successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-22948852-3544084575-3188587028-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5} deleted successfully
HKEY_USERS\S-1-5-21-22948852-3544084575-3188587028-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5} deleted successfully
HKEY_USERS\S-1-5-21-22948852-3544084575-3188587028-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95e0fca0-70ba-40fe-827a-09a06cc11b03} deleted successfully
HKEY_USERS\S-1-5-21-22948852-3544084575-3188587028-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95e0fca0-70ba-40fe-827a-09a06cc11b03} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{95e0fca0-70ba-40fe-827a-09a06cc11b03} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{6c2d1c8d-2e9b-470c-8908-74edf1861bfc} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\12x3q4@3244516.com deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@bettersurfplus.com deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@VideoPlayerV3beta190.net deleted successfully

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\PROGRA~2\MediaPlayerV1 deleted
C:\PROGRA~2\WebexpEnhancedV1 deleted
C:\extensions.sqlite deleted
C:\extensions.ini deleted
C:\ProgramData\Package Cache deleted
C:\WINDOWS\wininit.ini deleted
C:\Users\user\AppData\Local\MSGBOX.EXE deleted

======== System Restore Points ========

RP27: 25. 1. 2014 16:50:30 - Instalační služba modulů systému Windows
RP28: 29. 1. 2014 23:23:08 - Installed SpyHunter
RP29: 1. 2. 2014 15:27:04 - zoek.exe restore point

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"ext@MediaPlayerV1alpha984.net"="C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha984\ff" []

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
akabfajilllcedppanaondhoincdndll - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha273\ch\WebexpEnhancedV1alpha273.crx[]

Media Player - user\AppData\Local\Google\Chrome\User Data\Default\Extensions\omdmadjapcmlobjajdkjbpfmocjcbpie

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.cz/"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="https://www.google.cz/"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{A37956B7-E636-4703-879E-1FD78839CBF1}"
{01725489-9180-4720-8E69-016D6BFC6FE2} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTer ... arch_13415"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE11SR"
{0B8AE18E-A6E1-45EB-9EEB-B29BE1708EDB} Slovnˇk EN/CZ Url="http://slovnik.seznam.cz/?q={searchTerm ... arch_13415"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... {startPage}"
{98B89DA1-C47E-4E8F-B269-986E459C52E5} Encyklopedie Seznam Url="http://encyklopedie.seznam.cz/search?q= ... arch_13415"
{A37956B7-E636-4703-879E-1FD78839CBF1} Google Url="http://www.google.com/search?q={searchT ... f8&oe=utf8"
{A7B8B00E-9CC1-410C-9207-C346C533D877} Zbo§ˇ.cz Url="http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415"
{ABC3BA3F-94A4-4DFC-8628-BF7AA437AC3C} Seznam Url="http://search.seznam.cz/?q={searchTerms ... arch_13415"
{BFF04600-C57B-43FD-A0C0-43A7C7654C29} Firmy.cz Url="http://www.firmy.cz/?q={searchTerms}&so ... arch_13415"
{D2DB7427-F7A7-4617-BB79-A20E5BDE7199} Mapy.cz Url="http://www.mapy.cz/?query={searchTerms} ... arch_13415"
{D6A70810-B545-4BA3-8E3D-D3DA20A78ED8} Slovnˇk CZ/EN Url="http://slovnik.seznam.cz/?q={searchTerm ... arch_13415"
{E7D7DAFF-5AEE-474F-8368-521CBF9F2ECE} Novinky.cz Url="http://www.novinky.cz/hledej?w={searchT ... arch_13415"

==== Reset Google Chrome ======================

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@WebexpEnhancedV1alpha273.net deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@MediaPlayerV1alpha984.net deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\akabfajilllcedppanaondhoincdndll deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Video Player deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=29 folders=26 8497808 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\hedev\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Users\user\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\user\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on so 01. 02. 2014 at 15:39:59,06 ======================

VIRY.CZ

Reklamy v chromu.

Reklamy v chromu.

Re: Reklamy v chromu.

Re: Reklamy v chromu.

Re: Reklamy v chromu.

Re: Reklamy v chromu.

Re: Reklamy v chromu.

Re: Reklamy v chromu.

Re: Reklamy v chromu.

Re: Reklamy v chromu.

Re: Reklamy v chromu.

Re: Reklamy v chromu.

Re: Reklamy v chromu.

Re: Reklamy v chromu.

Re: Reklamy v chromu.

Re: Reklamy v chromu.