vyskakující okno avast newnext.me

[JackalXA]

Zdravím vespolek a prosím o pomoc.
Od odpoledne po zapnutí počítače začala vyskakovat hlaška Avastu zmíněné v tomto tématu http://forum.viry.cz/viewtopic.php?f=30&t=136290


Zde je log z MBAM

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.02.18.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16518
Emaneček :: ASUS-NTB [administrátor]

Ochrana: Zakázána

18.2.2014 17:01:57
MBAM-log-2014-02-18 (17-09-00).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 222082
Uplynulý čas: 6 minut, 23 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 1
C:\Users\Emaneček\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.

Nalezené klíče v registru: 2
HKCU\Software\InstallCore\1I1T1Q1S (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|NextLive (PUP.Optional.NextLive.A) -> Data: C:\Windows\SysWOW64\rundll32.exe "C:\Users\Emaneček\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l -> Nebyla provedena žádná instrukce.
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0H1L1J1L1S1R1N -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 2
C:\Users\Emaneček\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.
C:\Users\Emaneček\AppData\Roaming\newnext.me\cache (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 9
C:\Users\Emaneček\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.
C:\Users\Emaneček\AppData\Local\Temp\2dcd1d63cb45e6613582211c3d5f4b23.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Emaneček\AppData\Local\Temp\ICReinstall_PicasaPhotoViewerUpdateSetup.exe (PUP.Optional.TSA) -> Nebyla provedena žádná instrukce.
C:\Users\Emaneček\AppData\Local\Temp\PicasaPhotoViewerUpdateSetup.exe (PUP.Optional.TSA) -> Nebyla provedena žádná instrukce.
C:\Users\Emaneček\AppData\Local\Temp\T0f2E2M0.exe.part (PUP.Optional.RegCleanerPro) -> Nebyla provedena žádná instrukce.
C:\Users\Emaneček\AppData\Local\Temp\is1914646434\27499269_stp\Mobogenie_Setup_UN.exe (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.
C:\Users\Emaneček\AppData\Local\genienext\nengine.dll (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.
C:\Users\Emaneček\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.
C:\Users\Emaneček\AppData\Roaming\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.

(konec)

[JackalXA]

Zde je log z RSIT.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Emaneček at 2014-02-18 17:17:03
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 31 GB (26%) free of 119 GB
Total RAM: 4094 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:17:09, on 18.2.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16518)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
C:\Program Files\trend micro\Emaneček.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [Boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Emaneček\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Emaneček\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\nlssrv32.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12046 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\SysWOW64\nlssrv32.exe
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
taskeng.exe {FB6E1695-18A1-4C49-A675-236BE8E7C267}
"C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
C:\Windows\Explorer.EXE
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
ATKOSD.exe
WDC.exe
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe"
"C:\Windows\WindowsMobile\wmdc.exe"
C:\Windows\system32\svchost.exe -k WindowsMobile
"C:\Windows\SysWOW64\rundll32.exe" "C:\Users\Emaneček\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe"
"C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe" /f=srs_premium_sound_nopreset.zip /h
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=4520.11e98000.844285412 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 4520 "\\.\pipe\gecko-crash-server-pipe.4520" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --proxy-stub-channel=Flash5652.696BC768.19262 --host-broker-channel=Flash5652.696BC768.12191 --host-pid=5652 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --channel=2252.0038F8B8.1694763323 --proxy-stub-channel=Flash5652.696BC768.19262 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" --host-npapi-version=27 --type=renderer
"C:\Users\Emaneček\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-4212219506-591099161-2087032980-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-4212219506-591099161-2087032980-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.3.6&q="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.44 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.21.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.43 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\extensions\
2020Player_IKEA@2020Technologies.com

C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\
askcom.xml
icqplugin-1.xml
icqplugin-10.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-02-17 1390368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-02-17 1390368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-05-14 6307960]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-02-17 1143168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14 4531320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-02-17 1390368]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-02-17 1390368]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-02-17 1143168]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2010-04-13 649608]
"ASUS WebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [2010-03-16 1754448]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360]
"CanonSolutionMenu"=C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [2007-10-25 652624]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=C:\Users\Emaneček\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-12-26 138096]
"NextLive"=C:\Windows\SysWOW64\rundll32.exe [2009-07-14 44544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2010-10-07 3054136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-07-26 2782096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\Emaneček\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-12-26 138096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
C:\Program Files (x86)\Samsung\Kies\Kies.exe [2013-02-13 1509232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2013-02-13 310128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pocket Navigator Installer 6.0]
C:\Program Files (x86)\Navigator11\Setup Utility\clickertray.exe [2012-09-24 418304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-05-13 10810912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setwallpaper]
c:\programdata\SetWallpaper.cmd []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-11-14 20584608]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"UpdateP2GoShortCut"=C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"Boingo Wi-Fi"=C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2010-10-07 2429]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-04-07 102400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-06-25 6806144]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-05-03 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2010-07-02 1597440]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-02-17 3767096]
"mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes Anti-Malware"=C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [2013-04-04 532040]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe
SRS Premium Sound.lnk - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-02-18 17:17:03 ----D---- C:\rsit
2014-02-18 17:17:03 ----D---- C:\Program Files\trend micro
2014-02-18 17:01:07 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-18 17:01:07 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-02-18 16:28:56 ----D---- C:\Users\Emaneček\AppData\Roaming\Malwarebytes
2014-02-18 16:28:46 ----D---- C:\ProgramData\Malwarebytes
2014-02-18 16:09:01 ----D---- C:\Program Files (x86)\ESET
2014-02-17 08:50:25 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-02-13 08:26:04 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-02-13 08:26:04 ----A---- C:\Windows\system32\vbscript.dll
2014-02-13 08:24:52 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-02-13 08:24:52 ----A---- C:\Windows\system32\msrating.dll
2014-02-13 08:24:49 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-02-13 08:24:48 ----A---- C:\Windows\system32\ieui.dll
2014-02-13 08:24:46 ----A---- C:\Windows\system32\iernonce.dll
2014-02-13 08:24:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-02-13 08:24:46 ----A---- C:\Windows\system32\ie4uinit.exe
2014-02-13 08:24:44 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-02-13 08:24:44 ----A---- C:\Windows\system32\jsproxy.dll
2014-02-13 08:24:43 ----A---- C:\Windows\system32\msfeeds.dll
2014-02-13 08:24:42 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-02-13 08:24:42 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-02-13 08:24:41 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-02-13 08:24:41 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-02-13 08:24:41 ----A---- C:\Windows\system32\ieUnatt.exe
2014-02-13 08:24:41 ----A---- C:\Windows\system32\iesetup.dll
2014-02-13 08:24:40 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-02-13 08:24:38 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-02-13 08:24:38 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-02-13 08:24:37 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-02-13 08:24:37 ----A---- C:\Windows\system32\mshtml.dll
2014-02-13 08:24:36 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-02-13 08:24:36 ----A---- C:\Windows\system32\jscript9diag.dll
2014-02-13 08:24:35 ----A---- C:\Windows\system32\ieapfltr.dll
2014-02-13 08:24:34 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-02-13 08:24:33 ----A---- C:\Windows\system32\iertutil.dll
2014-02-13 08:24:32 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-02-13 08:24:32 ----A---- C:\Windows\system32\wininet.dll
2014-02-13 08:24:31 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-02-13 08:24:30 ----A---- C:\Windows\system32\urlmon.dll
2014-02-13 08:24:28 ----A---- C:\Windows\system32\ieframe.dll
2014-02-13 08:24:26 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-02-13 08:24:23 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-02-13 08:24:22 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-02-13 08:24:20 ----A---- C:\Windows\system32\jscript9.dll
2014-02-12 13:13:41 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-02-12 13:13:41 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-02-12 13:13:41 ----A---- C:\Windows\system32\msxml3r.dll
2014-02-12 13:13:41 ----A---- C:\Windows\system32\msxml3.dll
2014-02-12 13:13:30 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-02-12 13:13:30 ----A---- C:\Windows\system32\RMActivate.exe
2014-02-12 13:13:29 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-02-12 13:13:29 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-02-12 13:13:29 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-02-12 13:13:29 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-02-12 13:13:29 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-02-12 13:13:29 ----A---- C:\Windows\system32\secproc_isv.dll
2014-02-12 13:13:29 ----A---- C:\Windows\system32\secproc.dll
2014-02-12 13:13:29 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-12 13:13:29 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-02-12 13:13:29 ----A---- C:\Windows\system32\msdrm.dll
2014-02-12 13:13:28 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-02-12 13:13:28 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-02-12 13:13:28 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-02-12 13:13:28 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-02-12 13:13:28 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-02-12 13:13:28 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-02-12 13:13:24 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-02-12 13:13:24 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-02-12 13:13:24 ----A---- C:\Windows\system32\d3d10warp.dll
2014-02-12 13:13:24 ----A---- C:\Windows\system32\d2d1.dll
2014-02-05 11:33:08 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe

======List of files/folders modified in the last 1 month======

2014-02-18 17:17:09 ----D---- C:\Windows\Prefetch
2014-02-18 17:17:03 ----RD---- C:\Program Files
2014-02-18 17:01:58 ----D---- C:\Users\Emaneček\AppData\Roaming\ICQ
2014-02-18 17:01:07 ----RD---- C:\Program Files (x86)
2014-02-18 17:01:07 ----D---- C:\Windows\system32\drivers
2014-02-18 17:01:02 ----D---- C:\Users\Emaneček\AppData\Roaming\newnext.me
2014-02-18 16:29:06 ----D---- C:\Windows\Temp
2014-02-18 16:28:46 ----HD---- C:\ProgramData
2014-02-18 16:27:07 ----D---- C:\Program Files (x86)\File Type Assistant
2014-02-18 16:12:37 ----D---- C:\Windows\system32\config
2014-02-18 16:02:40 ----D---- C:\Windows\system32\Tasks
2014-02-18 16:01:03 ----D---- C:\Users\Emaneček\AppData\Roaming\Skype
2014-02-18 09:05:18 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-17 20:49:59 ----AD---- C:\Windows
2014-02-17 20:49:57 ----A---- C:\Windows\system32\aswBoot.exe
2014-02-17 20:48:58 ----SHD---- C:\System Volume Information
2014-02-17 10:57:21 ----D---- C:\Windows\rescache
2014-02-16 09:17:45 ----D---- C:\Windows\system32\MRT
2014-02-16 09:15:17 ----A---- C:\Windows\system32\MRT.exe
2014-02-16 08:42:30 ----D---- C:\Windows\System32
2014-02-16 08:42:30 ----D---- C:\Windows\inf
2014-02-16 08:42:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-02-13 21:49:03 ----D---- C:\Users\Emaneček\AppData\Roaming\SoftGrid Client
2014-02-13 09:15:18 ----D---- C:\Windows\Microsoft.NET
2014-02-13 09:14:41 ----RSD---- C:\Windows\assembly
2014-02-13 08:53:30 ----D---- C:\Windows\winsxs
2014-02-13 08:51:12 ----D---- C:\Windows\SysWOW64
2014-02-13 08:51:11 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-02-13 08:51:11 ----D---- C:\Windows\system32\cs-CZ
2014-02-13 08:51:11 ----D---- C:\Program Files (x86)\Internet Explorer
2014-02-13 08:51:10 ----D---- C:\Program Files\Internet Explorer
2014-02-13 08:35:34 ----SHD---- C:\Windows\Installer
2014-02-13 08:35:34 ----SHD---- C:\Config.Msi
2014-02-13 08:28:54 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-02-13 08:27:28 ----D---- C:\Windows\system32\catroot2
2014-02-13 08:27:28 ----D---- C:\Windows\system32\catroot
2014-02-11 21:39:53 ----A---- C:\Windows\system32\acovcnt.exe
2014-02-11 14:24:05 ----D---- C:\Windows\Tasks
2014-02-05 11:33:11 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-02-04 16:10:53 ----D---- C:\Users\Emaneček\AppData\Roaming\uTorrent

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-12-02 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-12-20 207904]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 lullaby;lullaby; C:\Windows\system32\DRIVERS\lullaby.sys [2009-06-18 15928]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-12-02 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2014-02-17 1038072]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2014-02-17 421704]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2014-02-17 78648]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-04-06 6659072]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-04-06 195584]
R3 aswStm;aswStm; \??\C:\Windows\system32\drivers\aswStm.sys [2014-02-17 80184]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-27 2753536]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-04-08 124944]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2010-01-15 98344]
R3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2010-01-15 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2010-01-15 21288]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-04-13 135560]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-05-13 2368160]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2009-08-18 143472]
R3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits); C:\Windows\system32\DRIVERS\JME.sys [2010-02-25 115312]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-06-05 1806400]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-12-22 38456]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-06-04 103448]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 HTCAND64;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2010-04-29 32768]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2012-09-25 36928]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-04-03 203672]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2010-06-22 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-04-06 202752]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-02-17 50344]
R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2010-03-12 873248]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\SysWOW64\nlssrv32.exe [2010-10-03 63488]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-10-08 166912]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]
S2 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-07 135664]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05 257928]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-08-11 654848]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-07 135664]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-09 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-02-06 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-02-17 118896]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-30 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[JackalXA]

a log z FRST

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-02-2014
Ran by Emaneček at 2014-02-18 17:26:51
Running from C:\Users\Emaneček\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

µTorrent (HKCU Version: 3.3.2.30416 - BitTorrent Inc.)
Acrobat.com (x32 Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1030 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1030 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Photoshop Elements 6.0 (x32 Version: 6.0 - Adobe Systems Inc.)
Adobe Photoshop Elements 6.0 (x32 Version: 6.0 - Adobe Systems Inc.) Hidden
Adobe Reader X (10.1.9) - Czech (x32 Version: 10.1.9 - Adobe Systems Incorporated)
AMD USB Filter Driver (x32 Version: 1.0.15.94 - Advanced Micro Devices, Inc.)
Asistent pro přihlášení ke službě Windows Live (x32 Version: 5.000.818.6 - Microsoft Corporation)
ASUS AI Recovery (x32 Version: 1.0.10 - ASUS)
ASUS AP Bank (x32 Version: 1.0.0.0 - ASUSTEK)
ASUS CopyProtect (x32 Version: 1.0.0015 - ASUS)
ASUS FancyStart (x32 Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS LifeFrame3 (x32 Version: 3.0.20 - ASUS)
ASUS Live Update (x32 Version: 2.5.9 - ASUS)
ASUS MultiFrame (x32 Version: 1.0.0021 - ASUS)
ASUS Power4Gear Hybrid (Version: 1.1.37 - ASUS)
ASUS SmartLogon (x32 Version: 1.0.0008 - ASUS)
ASUS Splendid Video Enhancement Technology (x32 Version: 1.02.0028 - ASUS)
ASUS Virtual Camera (x32 Version: 1.0.20 - asus)
ASUS WebStorage (x32 Version: 2.0.46.1429 - eCareme Technologies, Inc.)
ATI Catalyst Install Manager (Version: 3.0.769.0 - ATI Technologies, Inc.)
ATK Package (x32 Version: 1.0.0005 - ASUS)
avast! Free Antivirus (x32 Version: 9.0.2013 - Avast Software)
Bing Bar (x32 Version: 7.0.850.0 - Microsoft Corporation)
Boingo Wi-Fi (x32 Version: 1.7.0048 - Boingo Wireless, Inc.)
BS.Player PRO (x32 Version: 2.57.1051 - Webteh, d.o.o.)
Canon MOV Decoder (x32 Version: 1.8.0.7 - Canon Inc.)
Canon MOV Encoder (x32 Version: 1.6.0.1 - Canon Inc.)
Canon MovieEdit Task for ZoomBrowser EX (x32 Version: 3.7.0.4 - Canon Inc.)
Canon MP Navigator EX 1.2 (x32 Version: - )
Canon MP190 series MP Drivers (Version: - )
Canon My Printer (x32 Version: - )
Canon Utilities Digital Photo Professional 3.10 (x32 Version: 3.10.0.0 - Canon Inc.)
Canon Utilities Easy-PhotoPrint EX (x32 Version: - )
Canon Utilities EOS Utility (x32 Version: 2.10.0.0 - Canon Inc.)
Canon Utilities EOS Video Snapshot Task for ZoomBrowser EX (x32 Version: 1.0.0.10 - Canon Inc.)
Canon Utilities PhotoStitch (x32 Version: 3.1.22.46 - Canon Inc.)
Canon Utilities Picture Style Editor (x32 Version: 1.9.0.0 - Canon Inc.)
Canon Utilities Solution Menu (x32 Version: - )
Canon Utilities ZoomBrowser EX (x32 Version: 6.7.0.24 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (x32 Version: 1.5.0.9 - Canon Inc.)
Catalyst Control Center Core Implementation (x32 Version: 2010.0406.2133.36843 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2010.0406.2133.36843 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2010.0406.2133.36843 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2010.0406.2133.36843 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0406.2133.36843 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2010.0406.2133.36843 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2010.0406.2133.36843 - ATI) Hidden
CCC Help Czech (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Danish (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Dutch (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help English (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Finnish (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help French (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help German (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Greek (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Italian (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Japanese (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Korean (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Polish (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Russian (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Spanish (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Swedish (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Thai (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
CCC Help Turkish (x32 Version: 2010.0406.2132.36843 - ATI) Hidden
ccc-core-static (x32 Version: 2010.0406.2133.36843 - ATI) Hidden
ccc-utility64 (Version: 2010.0406.2133.36843 - ATI) Hidden
Centrum zařízení Windows Mobile (Version: 6.1.6965.0 - Microsoft Corporation)
ControlDeck (x32 Version: 1.0.8 - ASUS)
CyberLink LabelPrint (x32 Version: 2.5.1908 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.1908 - CyberLink Corp.) Hidden
CyberLink Power2Go (x32 Version: 6.1.3602c - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 6.1.3602c - CyberLink Corp.) Hidden
Dynamic-Photo HDR 5 (x32 Version: - )
ETDWare PS/2-x64 7.0.5.11_WHQL (Version: 7.0.5.11 - ELAN Microelectronics Corp.)
Facebook Video Calling 2.0.0.447 (x32 Version: 2.0.447 - Skype Limited)
Fast Boot (Version: 1.0.6 - ASUS)
File Type Assistant (x32 Version: 2014.1.24.0 - ) <==== ATTENTION
Foxtab (x32 Version: - FoxTab) <==== ATTENTION
Game Park Console (x32 Version: 6.2.0.2 - Oberon Media, Inc.)
Google Earth Plug-in (x32 Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
HTC BMP USB Driver (x32 Version: 1.0.5375 - HTC)
HTC Driver Installer (x32 Version: 2.0.7.016 - HTC Corporation)
HTC Driver Installer (x32 Version: 4.0.0.009 - HTC Corporation)
Choice Guard (x32 Version: 1.2.87.0 - Microsoft Corporation) Hidden
ICQ7.6 (x32 Version: 7.6 - ICQ)
IrfanView (remove only) (x32 Version: 4.36 - Irfan Skiljan)
Java 7 Update 21 (x32 Version: 7.0.210 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
JMicron Ethernet Adapter NDIS Driver (x32 Version: 6.0.17.1 - JMicron Technology Corp.)
JMicron Flash Media Controller Driver (x32 Version: 1.0.33.2 - JMicron Technology Corp.)
Junk Mail filter update (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
K_Series_ScreenSaver_EN (x32 Version: - )
Malwarebytes Anti-Malware verze 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 1.1 (x32 Version: - )
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 4 Client Profile CSY Language Pack (Version: 4.0.30320 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (Version: 4.0.30320 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Camera Codec Pack (x32 Version: 16.0.0652.0621 - Microsoft Corporation)
Microsoft Image Composite Editor (Version: 1.4.4 - Microsoft Corporation)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klikni a spusť 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office Klikni a spusť 2010 (x32 Version: 14.0.4763.1011 - Microsoft Corporation)
Microsoft Office Starter 2010 - čeština (x32 Version: 14.0.4763.1011 - Microsoft Corporation)
Microsoft PowerPoint Viewer (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (x32 Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (x32 Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 27.0.1 (x86 cs) (x32 Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (x32 Version: 27.0.1 - Mozilla)
MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (x32 Version: 4.30.2107.0 - Microsoft Corporation)
MyFreeCodec (HKCU Version: - )
Nástroj pro odesílání služby Windows Live (x32 Version: 14.0.8014.1029 - Microsoft Corporation)
Navigator 11 - Setup Utility 11.0.23-3 (x32 Version: 11.0.23-3 - MapFactor s.r.o)
Picasa 3 (x32 Version: 3.9 - Google, Inc.)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6110 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MP190 series (x32 Version: - )
Samsung Kies (x32 Version: 2.5.2.13021_10 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.2.13021_10 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.23.0 - SAMSUNG Electronics Co., Ltd.)
Skype Click to Call (x32 Version: 6.9.12585 - Skype Technologies S.A.)
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
SMPlayer 0.6.10 (x32 Version: 0.6.10 - Ricardo Villalba)
SRS Premium Sound Control Panel (Version: 1.8.5900 - SRS Labs, Inc.)
syncables desktop SE (x32 Version: 5.5.615.9518 - syncables)
USB 2.0 VGA UVC WebCam (Version: - )
WIDCOMM Bluetooth Software (Version: 6.2.5.600 - Broadcom Corporation)
Windows Driver Package - Broadcom (BTHUSB) Bluetooth (02/25/2010 6.2.0.9419) (Version: 02/25/2010 6.2.0.9419 - Broadcom)
Windows Driver Package - Broadcom Bluetooth (01/19/2010 6.2.0.1417) (Version: 01/19/2010 6.2.0.1417 - Broadcom)
Windows Driver Package - Broadcom Bluetooth (07/29/2009 6.1.7100.0) (Version: 07/29/2009 6.1.7100.0 - Broadcom)
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (Version: 07/30/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Live Communications Platform (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 14.0.8051.1204 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Sync (x32 Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Writer (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Zabezpečení rodiny (Version: 14.0.8052.1208 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8 - Microsoft Corp)
WinFlash (x32 Version: 2.30.3 - ASUS)
WinRAR 4.00 (64-bit) (Version: 4.00.0 - win.rar GmbH)
Wireless Console 3 (x32 Version: 3.0.17 - ASUS)
Zoner Photo Studio 14 (Version: 14.0.1.2 - ZONER software)

==================== Restore Points =========================

13-02-2014 07:23:07 Windows Update
16-02-2014 08:14:43 Windows Update
17-02-2014 19:48:38 avast! antivirus system restore point

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {1BB6FE29-D5CA-4AFD-975A-91DBCB39CB8E} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-02-17] (AVAST Software)
Task: {4F82D452-F25B-4438-A759-138C666B8C0A} - System32\Tasks\ProgramRefresh-ATFST => C:\Program Files (x86)\File Type Assistant\tsasetup.exe [2014-01-30] ( ) <==== ATTENTION
Task: {54A63956-B265-4935-8BE7-1EE28B094B70} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [2007-11-30] ()
Task: {6A8B2609-D12D-4336-83E3-45E4E5089A75} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2009-07-31] (ASUS)
Task: {73ED6C7B-BFDF-41D1-9E7C-C35F8FD9A2D9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-07] (Google Inc.)
Task: {76EA6A0D-312E-47B6-832B-905B075B4F6B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05] (Adobe Systems Incorporated)
Task: {78D61CF7-98A3-4E50-BD18-CBC6E91CDC79} - System32\Tasks\{DCBA8529-A592-42D3-A4C3-0DEADF6C1F38} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2013-11-14] (Skype Technologies S.A.)
Task: {96CFB8DC-BB0B-403B-B2F8-C47947AC207B} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
Task: {9D44259F-D5F4-461E-94BA-7C349D904C50} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-07] (Google Inc.)
Task: {9E6EA226-5CC8-4536-BB71-96AB59E90695} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4212219506-591099161-2087032980-1000Core => C:\Users\Emaneček\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-12-26] (Facebook Inc.)
Task: {A91C161B-139E-48D3-BF1E-69F2417E0838} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-05-28] (ATK)
Task: {B1A79391-6494-4571-A5EA-59EC14BBFAF7} - System32\Tasks\ASUSControlDeck => C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe [2010-06-09] (asus)
Task: {C4B4418A-431B-4F79-AB99-C16A6E749E6A} - System32\Tasks\ProgramUpdateCheck => C:\Program Files (x86)\File Type Assistant\TSAssist.exe [2014-01-24] (Trusted Software ApS) <==== ATTENTION
Task: {C5F1057B-A42B-46A0-BF4E-4F9CF9A761FB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4212219506-591099161-2087032980-1000UA => C:\Users\Emaneček\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-12-26] (Facebook Inc.)
Task: {C82663B7-8CCD-4205-A60F-EBD246690095} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2009-07-23] (ATK)
Task: {DAC15169-F848-4781-A3C1-2AEFC8C4B519} - System32\Tasks\ASPG => C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe [2009-06-29] (ASUS)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4212219506-591099161-2087032980-1000Core.job => C:\Users\Emane
ek\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4212219506-591099161-2087032980-1000UA.job => C:\Users\Emane
ek\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2010-10-07 22:49 - 2007-11-30 19:20 - 00051768 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
2010-01-11 18:27 - 2010-01-11 18:27 - 00017920 _____ () C:\Program Files\P4G\DevMng.dll
2010-05-06 02:22 - 2010-05-06 02:22 - 00108544 _____ () C:\Program Files\P4G\OvrClk.dll
2008-10-01 07:02 - 2008-10-01 07:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2010-03-16 02:48 - 2010-03-16 02:48 - 00148816 _____ () C:\Program Files (x86)\ASUS\ASUS WebStorage\EcaremeDLL.dll
2010-10-07 22:13 - 2010-10-07 22:13 - 00030032 _____ () C:\Windows\assembly\GAC_MSIL\SqliteShared\1.0.3726.20828__0d0f4b69e50e559b\SqliteShared.dll
2010-10-07 22:13 - 2010-10-07 22:13 - 00931840 _____ () C:\Windows\assembly\GAC_64\System.Data.SQLite\1.0.60.0__db937bc2d44ff139\System.Data.SQLite.dll
2011-04-30 18:32 - 2011-03-02 11:40 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2010-03-12 04:14 - 2010-03-12 04:14 - 00173344 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2010-03-16 02:48 - 2010-03-16 02:48 - 01754448 _____ () C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
2010-07-02 21:36 - 2010-07-02 21:36 - 01597440 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
2010-10-07 22:22 - 2010-10-07 22:22 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-02-18 15:46 - 2014-02-18 14:58 - 02181120 _____ () C:\Program Files\AVAST Software\Avast\defs\14021801\algo.dll
2012-10-08 16:40 - 2012-10-08 16:40 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2009-11-02 22:20 - 2009-11-02 22:20 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-02 22:23 - 2009-11-02 22:23 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2013-12-02 20:31 - 2013-12-02 20:31 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-02-17 08:50 - 2014-02-17 08:50 - 03578992 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2010-02-23 23:14 - 2010-02-23 23:14 - 00041472 _____ () C:\Program Files (x86)\ASUS\ControlDeck\HelpFunc.dll
2010-02-23 23:14 - 2010-02-23 23:14 - 00071680 _____ () C:\Program Files (x86)\ASUS\ControlDeck\Brightness.dll
2010-02-23 23:11 - 2010-02-23 23:11 - 00076288 _____ () C:\Program Files (x86)\ASUS\ControlDeck\Volume.dll
2010-02-23 23:12 - 2010-02-23 23:12 - 00186880 _____ () C:\Program Files (x86)\ASUS\ControlDeck\Resolution.dll
2010-02-23 23:14 - 2010-02-23 23:14 - 00050688 _____ () C:\Program Files (x86)\ASUS\ControlDeck\P4GControl.dll
2014-02-05 11:33 - 2014-02-05 11:33 - 16287624 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Windows:nlsPreferences

==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe
MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: Facebook Update => "C:\Users\Emaneček\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: KiesAirMessage => C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
MSCONFIG\startupreg: KiesPreload => C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: Pocket Navigator Installer 6.0 => C:\Program Files (x86)\Navigator11\Setup Utility\clickertray.exe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: Setwallpaper => c:\programdata\SetWallpaper.cmd
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

==================== Faulty Device Manager Devices =============

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (02/18/2014 04:41:15 PM) (Source: SideBySide) (User: )
Description: Generování kontextu aktivace pro C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2 na řádku C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Součást 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/18/2014 04:08:59 PM) (Source: SideBySide) (User: )
Description: Generování kontextu aktivace pro C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2 na řádku C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Součást 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/18/2014 04:08:55 PM) (Source: SideBySide) (User: )
Description: Generování kontextu aktivace pro C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2 na řádku C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Součást 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/17/2014 10:08:17 AM) (Source: Application Error) (User: )
Description: Název chybující aplikace: FlashPlayerPlugin_12_0_0_44.exe, verze: 12.0.0.44, časové razítko: 0x52e70cce
Název chybujícího modulu: FlashPlayerPlugin_12_0_0_44.exe, verze: 12.0.0.44, časové razítko: 0x52e70cce
Kód výjimky: 0x40000015
Posun chyby: 0x00017b60
ID chybujícího procesu: 0xf7c
Čas spuštění chybující aplikace: 0xFlashPlayerPlugin_12_0_0_44.exe0
Cesta k chybující aplikaci: FlashPlayerPlugin_12_0_0_44.exe1
Cesta k chybujícímu modulu: FlashPlayerPlugin_12_0_0_44.exe2
ID zprávy: FlashPlayerPlugin_12_0_0_44.exe3

Error: (02/16/2014 08:41:15 AM) (Source: Application Error) (User: )
Description: Název chybující aplikace: FBAgent.exe, verze: 1.0.6.0, časové razítko: 0x4c202b49
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521eaf24
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000053290
ID chybujícího procesu: 0x55c
Čas spuštění chybující aplikace: 0xFBAgent.exe0
Cesta k chybující aplikaci: FBAgent.exe1
Cesta k chybujícímu modulu: FBAgent.exe2
ID zprávy: FBAgent.exe3

Error: (02/14/2014 09:15:22 AM) (Source: Application Error) (User: )
Description: Název chybující aplikace: FlashPlayerPlugin_12_0_0_44.exe, verze: 12.0.0.44, časové razítko: 0x52e70cce
Název chybujícího modulu: FlashPlayerPlugin_12_0_0_44.exe, verze: 12.0.0.44, časové razítko: 0x52e70cce
Kód výjimky: 0x40000015
Posun chyby: 0x00017b60
ID chybujícího procesu: 0x1258
Čas spuštění chybující aplikace: 0xFlashPlayerPlugin_12_0_0_44.exe0
Cesta k chybující aplikaci: FlashPlayerPlugin_12_0_0_44.exe1
Cesta k chybujícímu modulu: FlashPlayerPlugin_12_0_0_44.exe2
ID zprávy: FlashPlayerPlugin_12_0_0_44.exe3

Error: (02/07/2014 00:54:54 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: FBAgent.exe, verze: 1.0.6.0, časové razítko: 0x4c202b49
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521eaf24
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000053290
ID chybujícího procesu: 0x598
Čas spuštění chybující aplikace: 0xFBAgent.exe0
Cesta k chybující aplikaci: FBAgent.exe1
Cesta k chybujícímu modulu: FBAgent.exe2
ID zprávy: FBAgent.exe3

Error: (02/03/2014 03:47:27 AM) (Source: Application Error) (User: )
Description: Název chybující aplikace: FBAgent.exe, verze: 1.0.6.0, časové razítko: 0x4c202b49
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521eaf24
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000053290
ID chybujícího procesu: 0x56c
Čas spuštění chybující aplikace: 0xFBAgent.exe0
Cesta k chybující aplikaci: FBAgent.exe1
Cesta k chybujícímu modulu: FBAgent.exe2
ID zprávy: FBAgent.exe3

Error: (01/26/2014 07:42:22 PM) (Source: CVHSVC) (User: )
Description: Pouze informace
(Patch task for {90140011-0066-0405-0000-0000000FF1CE}): DownloadLatest Failed:

Error: (01/24/2014 01:36:41 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: FBAgent.exe, verze: 1.0.6.0, časové razítko: 0x4c202b49
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521eaf24
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000053290
ID chybujícího procesu: 0x58c
Čas spuštění chybující aplikace: 0xFBAgent.exe0
Cesta k chybující aplikaci: FBAgent.exe1
Cesta k chybujícímu modulu: FBAgent.exe2
ID zprávy: FBAgent.exe3


System errors:
=============
Error: (02/16/2014 08:41:24 AM) (Source: Service Control Manager) (User: )
Description: Služba AFBAgent byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/07/2014 00:55:02 PM) (Source: Service Control Manager) (User: )
Description: Služba AFBAgent byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/05/2014 08:05:58 PM) (Source: Disk) (User: )
Description: Zařízení \Device\Harddisk1\DR1 ještě není připraveno pro přístup.

Error: (02/05/2014 08:05:58 PM) (Source: Disk) (User: )
Description: Zařízení \Device\Harddisk1\DR1 ještě není připraveno pro přístup.

Error: (02/03/2014 03:48:49 AM) (Source: Disk) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR1.

Error: (02/03/2014 03:48:48 AM) (Source: Disk) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR1.

Error: (02/03/2014 03:47:50 AM) (Source: Service Control Manager) (User: )
Description: Služba AFBAgent byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/30/2014 02:59:48 PM) (Source: volsnap) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error: (01/29/2014 04:44:50 PM) (Source: Disk) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR1.

Error: (01/29/2014 04:44:49 PM) (Source: Disk) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR1.


Microsoft Office Sessions:
=========================
Error: (02/18/2014 04:41:15 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Emaneček\Downloads\esetsmartinstaller_enu.exe

Error: (02/18/2014 04:08:59 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Emaneček\Downloads\esetsmartinstaller_enu.exe

Error: (02/18/2014 04:08:55 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Emaneček\Downloads\esetsmartinstaller_enu.exe

Error: (02/17/2014 10:08:17 AM) (Source: Application Error)(User: )
Description: FlashPlayerPlugin_12_0_0_44.exe12.0.0.4452e70cceFlashPlayerPlugin_12_0_0_44.exe12.0.0.4452e70cce4000001500017b60f7c01cf2bb49746a42eC:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exeC:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe09981902-97b3-11e3-9b8b-74f06da48ca5

Error: (02/16/2014 08:41:15 AM) (Source: Application Error)(User: )
Description: FBAgent.exe1.0.6.04c202b49ntdll.dll6.1.7601.18247521eaf24c0000005000000000005329055c01cf2aea0a22cca1C:\Windows\system32\FBAgent.exeC:\Windows\SYSTEM32\ntdll.dllb66bfb40-96dd-11e3-841a-74f06da48ca5

Error: (02/14/2014 09:15:22 AM) (Source: Application Error)(User: )
Description: FlashPlayerPlugin_12_0_0_44.exe12.0.0.4452e70cceFlashPlayerPlugin_12_0_0_44.exe12.0.0.4452e70cce4000001500017b60125801cf2956546d0e6eC:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exeC:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe25deb1f7-9550-11e3-941d-74f06da48ca5

Error: (02/07/2014 00:54:54 PM) (Source: Application Error)(User: )
Description: FBAgent.exe1.0.6.04c202b49ntdll.dll6.1.7601.18247521eaf24c0000005000000000005329059801cf23fa0f14a217C:\Windows\system32\FBAgent.exeC:\Windows\SYSTEM32\ntdll.dlla81ff7e2-8fee-11e3-9595-74f06da48ca5

Error: (02/03/2014 03:47:27 AM) (Source: Application Error)(User: )
Description: FBAgent.exe1.0.6.04c202b49ntdll.dll6.1.7601.18247521eaf24c0000005000000000005329056c01cf2089fa0ff6dcC:\Windows\system32\FBAgent.exeC:\Windows\SYSTEM32\ntdll.dll83d2820d-8c7d-11e3-8c24-74f06da48ca5

Error: (01/26/2014 07:42:22 PM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0405-0000-0000000FF1CE}): DownloadLatest Failed:

Error: (01/24/2014 01:36:41 PM) (Source: Application Error)(User: )
Description: FBAgent.exe1.0.6.04c202b49ntdll.dll6.1.7601.18247521eaf24c0000005000000000005329058c01cf18fefd0144c7C:\Windows\system32\FBAgent.exeC:\Windows\SYSTEM32\ntdll.dll2c80a927-84f4-11e3-893d-74f06da48ca5


CodeIntegrity Errors:
===================================
Date: 2014-01-08 17:47:19.533
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\atiu9p64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-01-08 17:47:18.747
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\atiu9p64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-01-08 17:40:39.345
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\atiu9p64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-01-08 17:40:38.425
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\atiu9p64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-12-26 18:58:44.394
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\atiu9p64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-12-26 18:58:42.940
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\atiu9p64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-12-26 18:41:20.280
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\atiu9p64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-12-26 18:41:18.806
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\atiu9p64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-14 22:19:35.669
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\USBSTOR.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-01-14 22:19:35.669
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\USBSTOR.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 51%
Total physical RAM: 4093.82 MB
Available physical RAM: 1991.37 MB
Total Pagefile: 8185.83 MB
Available Pagefile: 5913.7 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:116.44 GB) (Free:29.92 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (DATA) (Fixed) (Total:329.79 GB) (Free:84.26 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: E0C5913D)
Partition 1: (Not Active) - (Size=20 GB) - (Type=1C)
Partition 2: (Active) - (Size=116 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=330 GB) - (Type=OF Extended)

==================== End Of Log ============================

[vyosek]

Zdravim

Nalezy MBAMu smazte - objevi se log, ten rad uvidim

[JackalXA]

tady je:

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.02.18.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16518
Emaneček :: ASUS-NTB [limited]

Ochrana: Zakázána

18.2.2014 17:01:57
mbam-log-2014-02-18 (17-01-57).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 222082
Uplynulý čas: 6 minut, 23 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 1
C:\Users\Emaneček\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Bude smazán při restartu.

Nalezené klíče v registru: 2
HKCU\Software\InstallCore\1I1T1Q1S (PUP.Optional.InstallCore.A) -> Přesun do karantény a smazání se zdařilo.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Přesun do karantény a smazání se zdařilo.

Nalezené hodnoty v registru: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|NextLive (PUP.Optional.NextLive.A) -> Data: C:\Windows\SysWOW64\rundll32.exe "C:\Users\Emaneček\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l -> Přesun do karantény a smazání se zdařilo.
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0H1L1J1L1S1R1N -> Přesun do karantény a smazání se zdařilo.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 2
C:\Users\Emaneček\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Bude smazán při restartu.
C:\Users\Emaneček\AppData\Roaming\newnext.me\cache (PUP.Optional.NextLive.A) -> Přesun do karantény a smazání se zdařilo.

Nalezené soubory: 9
C:\Users\Emaneček\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Bude smazán při restartu.
C:\Users\Emaneček\AppData\Local\Temp\2dcd1d63cb45e6613582211c3d5f4b23.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Emaneček\AppData\Local\Temp\ICReinstall_PicasaPhotoViewerUpdateSetup.exe (PUP.Optional.TSA) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Emaneček\AppData\Local\Temp\PicasaPhotoViewerUpdateSetup.exe (PUP.Optional.TSA) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Emaneček\AppData\Local\Temp\T0f2E2M0.exe.part (PUP.Optional.RegCleanerPro) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Emaneček\AppData\Local\Temp\is1914646434\27499269_stp\Mobogenie_Setup_UN.exe (PUP.Optional.NextLive.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Emaneček\AppData\Local\genienext\nengine.dll (PUP.Optional.NextLive.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Emaneček\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Emaneček\AppData\Roaming\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Přesun do karantény a smazání se zdařilo.

(konec)

[vyosek]

Pres MBAM ted udelejte uplnou - kompletni kontrolu

[JackalXA]

Takže jsem zpět. Test probíhal poměrně dlouho
Zde je výsledek:

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
http://www.malwarebytes.org

Verze: v2014.02.18.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16518
Emaneček :: ASUS-NTB [administrátor]

Ochrana: Povolena

18.2.2014 18:18:26
MBAM-log-2014-02-18 (21-05-34).txt

Typ: Kompletní kontrola (C:\|D:\|Q:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 425099
Uplynulý čas: 1 hodin, 38 minut, 4 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 8
C:\Program Files (x86)\ICQ7.5\upgrade\2dcd1d63cb45e6613582211c3d5f4b23 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\ICQ7.5\upgrade\53e83dd5315bfb1f928441c9b4618b68 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\ICQ7.6\install_dll\OCSetupHlp.dll (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Mobogenie\nengine.dll (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.
C:\Users\Emaneček\AppData\Local\Mobogenie\Version\NewVersion\Mobogenie2.1.36.zip (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.
D:\Servis IT\programy\PowerISO_4.6\PowerISO 4.6\Keygen.exe (RiskWare.Tool.HCK) -> Nebyla provedena žádná instrukce.
D:\Servis IT\programy\Zoner Photo Studio 14.0.1.2 Professional CZ + keygen\keygen.exe (PUP.RiskwareTool.CK) -> Nebyla provedena žádná instrukce.
D:\Věci starý disk ntb\Fotky\na vypálení servisní dvd\PowerISO_4.6\PowerISO 4.6\Keygen.exe (RiskWare.Tool.HCK) -> Nebyla provedena žádná instrukce.

(konec)

=

[vyosek]

Nalezy MBAMu smazte

Ono nema cenu moc lecit PC, ktere si uzivatel s prominutim zaliska hned vlastni blbosti zpatky diky crackum\keygenum a podobnym "dobrotami". Nehlede na porusovani autorskeho zakona

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

[JackalXA]

Dobré ráno,

chápu na co narážíte,nicméně ty programy které máte na mysli nejsou používané a to včetně keygenu.
Z PC jdu tyto soubory smazat. Jsou to pozůstatky z předchozího počítače s jiným diskem.
Zde je MBAM LOG po smazání




Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.02.18.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16518
Emaneček :: ASUS-NTB [administrátor]

Ochrana: Povolena

18.2.2014 18:18:26
mbam-log-2014-02-18 (18-18-26).txt

Typ: Kompletní kontrola (C:\|D:\|Q:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 425099
Uplynulý čas: 1 hodin, 38 minut, 4 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 8
C:\Program Files (x86)\ICQ7.5\upgrade\2dcd1d63cb45e6613582211c3d5f4b23 (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files (x86)\ICQ7.5\upgrade\53e83dd5315bfb1f928441c9b4618b68 (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files (x86)\ICQ7.6\install_dll\OCSetupHlp.dll (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files (x86)\Mobogenie\nengine.dll (PUP.Optional.NextLive.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Emaneček\AppData\Local\Mobogenie\Version\NewVersion\Mobogenie2.1.36.zip (PUP.Optional.NextLive.A) -> Přesun do karantény a smazání se zdařilo.
D:\Servis IT\programy\PowerISO_4.6\PowerISO 4.6\Keygen.exe (RiskWare.Tool.HCK) -> Přesun do karantény a smazání se zdařilo.
D:\Servis IT\programy\Zoner Photo Studio 14.0.1.2 Professional CZ + keygen\keygen.exe (PUP.RiskwareTool.CK) -> Přesun do karantény a smazání se zdařilo.
D:\Věci starý disk ntb\Fotky\na vypálení servisní dvd\PowerISO_4.6\PowerISO 4.6\Keygen.exe (RiskWare.Tool.HCK) -> Přesun do karantény a smazání se zdařilo.

(konec)

[JackalXA]

Tak zde je log po čištění AdwCleaner


# AdwCleaner v3.019 - Report created 19/02/2014 at 07:25:01
# Updated 17/02/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Emaneček - ASUS-NTB
# Running from : C:\Users\Emaneček\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Deleted : C:\Program Files (x86)\FoxTab
Folder Deleted : C:\Program Files (x86)\ICQ6Toolbar
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Program Files (x86)\myfree codec
Folder Deleted : C:\Users\Emaneček\AppData\Local\filetypeassistant
Folder Deleted : C:\Users\Emaneček\AppData\Local\genienext
Folder Deleted : C:\Users\Emaneček\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Emaneček\AppData\Roaming\FoxTab
Folder Deleted : C:\Users\Emaneček\Documents\Mobogenie
Folder Deleted : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\ICQToolbarData
File Deleted : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\Askcom.xml
File Deleted : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\icqplugin.xml
File Deleted : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\icqplugin-1.xml
File Deleted : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\icqplugin-10.xml
File Deleted : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\icqplugin-2.xml
File Deleted : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\icqplugin-3.xml
File Deleted : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\icqplugin-4.xml
File Deleted : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\icqplugin-5.xml
File Deleted : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\icqplugin-6.xml
File Deleted : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\icqplugin-7.xml
File Deleted : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\icqplugin-8.xml
File Deleted : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\icqplugin-9.xml

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\InstallCore
Key Deleted : HKLM\Software\Myfree Codec
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16518

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v27.0.1 (cs)

[ File : C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\prefs.js ]

Line Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.2.9&q=");
Line Deleted : user_pref("browser.search.order.1", "Ask.com");
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Deleted : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
Line Deleted : user_pref("icqtoolbar.engineVerified", false);
Line Deleted : user_pref("icqtoolbar.geolastmodified", 1320784700);
Line Deleted : user_pref("icqtoolbar.hiddenElements", "itb_options");
Line Deleted : user_pref("icqtoolbar.history", "STK%20a%20emise||r%C3%A9gulateur%20hydractive||citroen%20hydractive%20valve||hydroactive%20valve||ventil%C3%A1tor||chunge%20%20up||vol||ZRZOUNEK||srt||Dlouh%C3%A1%2015[...]
Line Deleted : user_pref("icqtoolbar.hpChange", true);
Line Deleted : user_pref("icqtoolbar.icqgeo", 42);
Line Deleted : user_pref("icqtoolbar.installTime", "1320822281");
Line Deleted : user_pref("icqtoolbar.installsource", "1");
Line Deleted : user_pref("icqtoolbar.newtab_state", "1");
Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
Line Deleted : user_pref("icqtoolbar.previousFFVersion", "7.0.1");
Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Line Deleted : user_pref("icqtoolbar.suggestions", false);
Line Deleted : user_pref("icqtoolbar.uniqueID", "130452980613045300471304615895460");
Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1320915737);
Line Deleted : user_pref("icqtoolbar.userHpApproved", true);
Line Deleted : user_pref("icqtoolbar.version", "1.3.6");
Line Deleted : user_pref("icqtoolbar.voucherHideClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherWasShown", 0);
Line Deleted : user_pref("icqtoolbar.xmlEnableHomePageDsGuard", false);
Line Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Line Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
Line Deleted : user_pref("keyword.URL", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.6&q=");

*************************

AdwCleaner[R0].txt - [9037 octets] - [19/02/2014 07:24:06]
AdwCleaner[S0].txt - [8896 octets] - [19/02/2014 07:25:01]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [8956 octets] ##########

[vyosek]

Poprosim o log z FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

[JackalXA]

zde je log


Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-02-2014
Ran by Emaneček (administrator) on ASUS-NTB on 19-02-2014 12:14:41
Running from C:\Users\Emaneček\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(ASUSTeK Computer Inc.) C:\Windows\system32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ATK) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe
() C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ASUS) C:\Windows\AsScrPro.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
() C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Boingo Wireless, Inc.) C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(asus) C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ETDWare] - C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
HKLM\...\Run: [ASUS WebStorage] - C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [1754448 2010-03-16] ()
HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [CanonSolutionMenu] - C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [652624 2007-10-25] (CANON INC.)
HKLM-x32\...\Run: [UpdateLBPShortCut] - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [Boingo Wi-Fi] - C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2429 2010-10-07] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [102400 2010-04-07] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ATKOSD2] - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [6806144 2010-06-25] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] - C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-05-03] (ASUS)
HKLM-x32\...\Run: [HControlUser] - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1597440 2010-07-02] ()
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-02-17] (AVAST Software)
HKU\S-1-5-21-4212219506-591099161-2087032980-1000\...\Run: [Facebook Update] - C:\Users\Emaneček\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-12-26] (Facebook Inc.)
HKU\S-1-5-21-4212219506-591099161-2087032980-1000\...\MountPoints2: {f9487e86-941f-11e1-b942-74f06da48ca5} - G:\setup.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=i ... lz=1I7ASUT
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {7AEE8EC4-304C-4560-9E3E-7FE5EF9680D6} URL = http://websearch.ask.com/redirect?clien ... AE5AE720F2
SearchScopes: HKCU - {E9DB9E7B-A275-41D1-8158-D0423FBEBDEB} URL = http://www.google.com/cse?cx=partner-pu ... earchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live Family Safety Browser Helper Class - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default
FF Homepage: hxxp://www.seznam.cz/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8051.1204 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Emaneček\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: 20-20 3D Viewer - IKEA - C:\Users\Emaneček\AppData\Roaming\Mozilla\Firefox\Profiles\qogazxet.default\Extensions\2020Player_IKEA@2020Technologies.com [2013-05-20]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-02-17]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-02-17]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-06-28]

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-17] (AVAST Software)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2012-10-08] ()

==================== Drivers (Whitelisted) ====================

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-17] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-12-02] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-12-02] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-17] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-17] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-17] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-20] ()
S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [32768 2010-04-29] (Google Inc)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19032 2012-08-20] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12384 2012-08-20] ()
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1806400 2009-06-05] ()
U3 tmlwf;
U3 tmwfp;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-19 12:14 - 2014-02-19 12:14 - 00000000 ____D () C:\Users\Emaneček\Desktop\FRST-OlderVersion
2014-02-19 09:19 - 2014-02-19 09:19 - 00074639 _____ () C:\Users\Emaneček\Downloads\Oldboy(0000232269).srt
2014-02-19 09:17 - 2014-02-19 09:21 - 1765861058 _____ () C:\Users\Emaneček\Downloads\Oldboy.2013.1080p.BluRay.x264.YIFY.mp4
2014-02-19 07:26 - 2014-02-19 07:26 - 00000000 ____D () C:\Users\Emaneček\AppData\Local\FileTypeAssistant
2014-02-19 07:24 - 2014-02-19 07:25 - 00000000 ____D () C:\AdwCleaner
2014-02-19 07:22 - 2014-02-19 07:22 - 01241834 _____ () C:\Users\Emaneček\Desktop\adwcleaner.exe
2014-02-18 17:26 - 2014-02-19 12:14 - 00015969 _____ () C:\Users\Emaneček\Desktop\FRST.txt
2014-02-18 17:26 - 2014-02-18 17:29 - 00038150 _____ () C:\Users\Emaneček\Desktop\Addition.txt
2014-02-18 17:25 - 2014-02-19 12:14 - 00000000 ____D () C:\FRST
2014-02-18 17:17 - 2014-02-18 17:17 - 00000000 ____D () C:\rsit
2014-02-18 17:17 - 2014-02-18 17:17 - 00000000 ____D () C:\Program Files\trend micro
2014-02-18 17:01 - 2014-02-18 17:01 - 00001111 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-18 17:01 - 2014-02-18 17:01 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-18 17:01 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-18 16:46 - 2014-02-18 16:46 - 00935175 _____ () C:\Users\Emaneček\Desktop\RSITx64.exe
2014-02-18 16:40 - 2014-02-19 12:14 - 02153472 _____ (Farbar) C:\Users\Emaneček\Desktop\FRST64.exe
2014-02-18 16:29 - 2014-02-18 16:29 - 00000000 ____D () C:\Users\Emaneček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2014-02-18 16:28 - 2014-02-18 16:28 - 00000000 ____D () C:\Users\Emaneček\AppData\Roaming\Malwarebytes
2014-02-18 16:28 - 2014-02-18 16:28 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-18 16:13 - 2014-02-18 16:13 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Emaneček\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-18 16:08 - 2014-02-18 16:08 - 02347384 _____ (ESET) C:\Users\Emaneček\Downloads\esetsmartinstaller_enu.exe
2014-02-17 20:50 - 2014-02-17 20:50 - 00001968 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-02-17 08:50 - 2014-02-17 08:50 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-13 08:26 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-13 08:26 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-13 08:24 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-13 08:24 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-13 08:24 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-13 08:24 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-13 08:24 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-13 08:24 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-13 08:24 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-13 08:24 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-13 08:24 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-13 08:24 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-13 08:24 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-13 08:24 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-13 08:24 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-13 08:24 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-13 08:24 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-13 08:24 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-13 08:24 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-13 08:24 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-13 08:24 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-13 08:24 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-13 08:24 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-13 08:24 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-13 08:24 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-13 08:24 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-13 08:24 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-13 08:24 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-13 08:24 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-13 08:24 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-13 08:24 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-13 08:24 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-13 08:24 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-13 08:24 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-13 08:24 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-13 08:24 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-13 08:24 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-13 08:24 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-13 08:24 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-13 08:24 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-13 08:24 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-12 15:33 - 2014-02-12 15:33 - 00001618 _____ () C:\Users\Emaneček\Downloads\smime.p7s
2014-02-12 13:13 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-12 13:13 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-12 13:13 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-12 13:13 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 13:13 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 13:13 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-12 13:13 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 13:13 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-12 13:13 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-12 13:13 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-12 13:13 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-12 13:13 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-12 13:13 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-12 13:13 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-12 13:13 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-12 13:13 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-12 13:13 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-12 13:13 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-12 13:13 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-12 13:13 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-12 13:13 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-12 13:13 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-12 13:13 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-12 13:13 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-12 13:13 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-12 13:13 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-12 13:13 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-12 13:13 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-10 14:15 - 2014-02-10 14:48 - 861694204 _____ () C:\Users\Emaneček\Downloads\Rákosníček-a-jeho-rybník-(pohádky--CZ).rar
2014-02-10 13:26 - 2014-02-10 13:28 - 59768611 _____ () C:\Users\Emaneček\Downloads\9.-Jak-Rákosníček-předělával-mrtvou-vodu-na-živou.avi
2014-02-10 13:25 - 2014-02-10 13:29 - 70852608 _____ () C:\Users\Emaneček\Downloads\11.-Jak-Rákosníček-udělal-z-nebeského-draka-kolotoč.mpg
2014-02-10 13:25 - 2014-02-10 13:29 - 68028416 _____ () C:\Users\Emaneček\Downloads\08.-Jak-Rákosníček-vysvobodil-zakletou-labuť,která-vůbec-nebyla-zakletá.mpg
2014-02-10 13:25 - 2014-02-10 13:28 - 75841536 _____ () C:\Users\Emaneček\Downloads\09.-Jak-Rákosníček-udělal-na-nebi-kluziště-a-pořád-se-diví,-proč-mu-lidé-říkají-Mléčná-dráha.mpg
2014-02-10 13:25 - 2014-02-10 13:28 - 67209216 _____ () C:\Users\Emaneček\Downloads\10.-Jak-Rákosníček-vyzrál-na-nebeského-střelce.mpg
2014-02-10 13:25 - 2014-02-10 13:28 - 66723840 _____ () C:\Users\Emaneček\Downloads\06.-Jak-Rákosníček-zachraňoval-raka,až-se-mu-z-toho-zatočila-hlava.mpg
2014-02-10 13:25 - 2014-02-10 13:28 - 65861632 _____ () C:\Users\Emaneček\Downloads\07.-Jak-Rákosníček-s-Malým-a-Velkým-psem-neuhlídali-měsíc.mpg
2014-02-10 13:25 - 2014-02-10 13:28 - 64847872 _____ () C:\Users\Emaneček\Downloads\13.-Jak-Rákosníček-přivedl-nebeskému-Pastýři-zatoulanou-hvězdu.mpg
2014-02-10 13:25 - 2014-02-10 13:28 - 61769728 _____ () C:\Users\Emaneček\Downloads\12.-Jak-si-Rákosníček-nepomohl-k-nebeské-Koruně.mpg
2014-02-10 13:24 - 2014-02-10 13:28 - 70727680 _____ () C:\Users\Emaneček\Downloads\04.-Jak-Rákosníček-s-Vodnářem-zařídili,-aby-zase-pršelo.mpg
2014-02-10 13:24 - 2014-02-10 13:28 - 69783552 _____ () C:\Users\Emaneček\Downloads\02.-Jak-Rákosníček-zachránil-mráčky-beránky-před-hvězdným-Orlem.mpg
2014-02-10 13:24 - 2014-02-10 13:28 - 69187584 _____ () C:\Users\Emaneček\Downloads\05.-Jak-Rákosníček-zachránil-Polárku-před-slunečním-paprskem.mpg
2014-02-10 13:24 - 2014-02-10 13:27 - 69459968 _____ () C:\Users\Emaneček\Downloads\01.-Jak-Rákosníček-předjížděl-Velký-vůz-a-co-z-toho-bylo.mpg
2014-02-10 13:24 - 2014-02-10 13:27 - 69222400 _____ () C:\Users\Emaneček\Downloads\03.-Jak-si-Rákosníček-nevysloužil-hvězdu.mpg
2014-02-05 11:33 - 2014-02-05 11:33 - 03544968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-02-04 15:36 - 2014-02-04 15:45 - 1308749824 _____ () C:\Users\Emaneček\Downloads\Feuchtgebiete.2013.BDRip.AC3.German.XviD-POE.avi
2014-02-04 15:36 - 2014-02-04 15:36 - 00060961 _____ () C:\Users\Emaneček\Downloads\Feuchtgebiete.2013.BDRip.AC3.German.XviD-POE.srt
2014-02-04 15:14 - 2014-02-04 16:09 - 1299973222 _____ () C:\Users\Emaneček\Downloads\The Adventurer The Curse of the Midas Box (2013) BluRay 1080p 5.1CH x264 Ganool.mkv
2014-02-04 15:14 - 2014-02-04 15:14 - 00069450 _____ () C:\Users\Emaneček\Downloads\The Adventurer The Curse of the Midas Box (2013) BluRay 1080p 5.1CH x264 Ganool.srt
2014-01-30 19:50 - 2014-02-07 14:08 - 00000000 ____D () C:\Users\Emaneček\Downloads\Grudge Match.2013 VODRip.AC3-MiLLENiUM
2014-01-30 18:34 - 2014-02-07 14:08 - 00000000 ____D () C:\Users\Emaneček\Downloads\Grudge.Match.2013 HDRip XViD NO1KNOWS rozsypaný čaj
2014-01-30 18:31 - 2014-02-07 14:07 - 00000000 ____D () C:\Users\Emaneček\Downloads\The.Counselor.2013.HDRip.XviD-AQOS
2014-01-30 18:01 - 2014-02-07 14:08 - 00000000 ____D () C:\Users\Emaneček\Downloads\In.The.Name.Of.The.King.3.2014.DVDRip.XVID-ASR
2014-01-30 17:58 - 2014-02-07 14:09 - 00000000 ____D () C:\Users\Emaneček\Downloads\7.Assassins.2013.720p.WEB-DLX264.AAC-SmY
2014-01-27 08:21 - 2014-01-29 16:41 - 00000000 ____D () C:\Users\Emaneček\Downloads\The.Starving.Games.2013.1080p.BluRay.x264-SONiDO [PublicHD]
2014-01-27 08:20 - 2014-01-29 16:42 - 00000000 ____D () C:\Users\Emaneček\Downloads\How.I.Live.Now.2013.LiMiTED.720p.BluRay.x264-GECKOS [PublicHD]
2014-01-27 07:57 - 2014-01-27 08:31 - 00000000 ____D () C:\Users\Emaneček\Downloads\Austenland.2013.BRRiP.XVID-FiRE
2014-01-27 07:53 - 2014-01-27 08:32 - 00000000 ____D () C:\Users\Emaneček\Downloads\Odd.Thomas.BRRip.XviD.AC3-WAR
2014-01-26 21:28 - 2014-01-27 08:01 - 00000000 ____D () C:\Users\Emaneček\Downloads\In.A.World.2013.LiMiTED.720p.BluRay.x264-iMMORTALs [PublicHD]
2014-01-26 21:07 - 2014-01-27 07:47 - 00000000 ____D () C:\Users\Emaneček\Downloads\Filth.2013.720p.BluRay.DTS.x264-PublicHD
2014-01-20 21:21 - 2014-01-27 08:32 - 00000000 ____D () C:\Users\Emaneček\Downloads\Out.Of.The.Funrace.2013.DVDSCR.XViD.AC3-LEGi0N

==================== One Month Modified Files and Folders =======

2014-02-19 12:15 - 2014-02-18 17:26 - 00015969 _____ () C:\Users\Emaneček\Desktop\FRST.txt
2014-02-19 12:14 - 2014-02-19 12:14 - 00000000 ____D () C:\Users\Emaneček\Desktop\FRST-OlderVersion
2014-02-19 12:14 - 2014-02-18 17:25 - 00000000 ____D () C:\FRST
2014-02-19 12:14 - 2014-02-18 16:40 - 02153472 _____ (Farbar) C:\Users\Emaneček\Desktop\FRST64.exe
2014-02-19 12:14 - 2011-04-29 10:24 - 00000000 ____D () C:\Users\Emaneček\AppData\Roaming\ICQ
2014-02-19 11:45 - 2010-10-07 22:12 - 00000966 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-19 11:33 - 2012-03-31 06:46 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-19 10:31 - 2011-11-11 18:37 - 00000940 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4212219506-591099161-2087032980-1000UA.job
2014-02-19 10:31 - 2011-11-11 18:37 - 00000918 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4212219506-591099161-2087032980-1000Core.job
2014-02-19 09:21 - 2014-02-19 09:17 - 1765861058 _____ () C:\Users\Emaneček\Downloads\Oldboy.2013.1080p.BluRay.x264.YIFY.mp4
2014-02-19 09:19 - 2014-02-19 09:19 - 00074639 _____ () C:\Users\Emaneček\Downloads\Oldboy(0000232269).srt
2014-02-19 07:34 - 2009-07-14 05:45 - 00010240 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-19 07:34 - 2009-07-14 05:45 - 00010240 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-19 07:26 - 2014-02-19 07:26 - 00000000 ____D () C:\Users\Emaneček\AppData\Local\FileTypeAssistant
2014-02-19 07:26 - 2010-10-07 22:12 - 00000962 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-19 07:26 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-19 07:26 - 2009-07-14 05:51 - 00129339 _____ () C:\Windows\setupact.log
2014-02-19 07:25 - 2014-02-19 07:24 - 00000000 ____D () C:\AdwCleaner
2014-02-19 07:25 - 2010-10-07 21:56 - 01358138 _____ () C:\Windows\WindowsUpdate.log
2014-02-19 07:22 - 2014-02-19 07:22 - 01241834 _____ () C:\Users\Emaneček\Desktop\adwcleaner.exe
2014-02-19 07:03 - 2010-10-07 22:48 - 00001286 _____ () C:\Windows\system32\ServiceFilter.ini
2014-02-19 07:02 - 2010-10-07 22:24 - 00314918 _____ () C:\Windows\PFRO.log
2014-02-18 17:29 - 2014-02-18 17:26 - 00038150 _____ () C:\Users\Emaneček\Desktop\Addition.txt
2014-02-18 17:17 - 2014-02-18 17:17 - 00000000 ____D () C:\rsit
2014-02-18 17:17 - 2014-02-18 17:17 - 00000000 ____D () C:\Program Files\trend micro
2014-02-18 17:01 - 2014-02-18 17:01 - 00001111 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-18 17:01 - 2014-02-18 17:01 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-18 16:46 - 2014-02-18 16:46 - 00935175 _____ () C:\Users\Emaneček\Desktop\RSITx64.exe
2014-02-18 16:29 - 2014-02-18 16:29 - 00000000 ____D () C:\Users\Emaneček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2014-02-18 16:28 - 2014-02-18 16:28 - 00000000 ____D () C:\Users\Emaneček\AppData\Roaming\Malwarebytes
2014-02-18 16:28 - 2014-02-18 16:28 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-18 16:27 - 2014-01-08 16:25 - 00000000 ____D () C:\Program Files (x86)\File Type Assistant
2014-02-18 16:13 - 2014-02-18 16:13 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Emaneček\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-18 16:08 - 2014-02-18 16:08 - 02347384 _____ (ESET) C:\Users\Emaneček\Downloads\esetsmartinstaller_enu.exe
2014-02-18 16:01 - 2011-04-29 10:41 - 00000000 ____D () C:\Users\Emaneček\AppData\Roaming\Skype
2014-02-18 09:07 - 2012-07-12 20:13 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-02-18 09:05 - 2012-05-10 21:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-17 20:50 - 2014-02-17 20:50 - 00001968 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-02-17 20:49 - 2013-12-20 14:16 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-02-17 20:49 - 2011-06-28 18:38 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-02-17 20:49 - 2011-06-28 18:38 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-02-17 20:49 - 2011-06-28 18:38 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-02-17 20:49 - 2011-06-28 18:38 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-02-17 20:49 - 2011-06-28 18:37 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-02-17 10:57 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-17 10:08 - 2012-12-15 22:02 - 00000000 ____D () C:\Users\Emaneček\AppData\Local\CrashDumps
2014-02-17 08:50 - 2014-02-17 08:50 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-16 09:17 - 2013-08-14 14:19 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-16 09:15 - 2011-04-29 09:34 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-16 08:42 - 2009-08-03 21:00 - 00678306 _____ () C:\Windows\system32\perfh005.dat
2014-02-16 08:42 - 2009-08-03 21:00 - 00146934 _____ () C:\Windows\system32\perfc005.dat
2014-02-16 08:42 - 2009-07-14 06:13 - 01613520 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-13 21:49 - 2011-04-29 10:48 - 00000000 ____D () C:\Users\Emaneček\AppData\Roaming\SoftGrid Client
2014-02-13 08:28 - 2011-04-29 10:48 - 01589170 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-12 15:33 - 2014-02-12 15:33 - 00001618 _____ () C:\Users\Emaneček\Downloads\smime.p7s
2014-02-11 21:39 - 2011-10-06 09:24 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-02-11 13:40 - 2010-10-07 22:12 - 00003962 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-11 13:40 - 2010-10-07 22:12 - 00003710 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-11 13:38 - 2011-04-28 19:43 - 00059600 _____ () C:\Users\Emaneček\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-10 14:48 - 2014-02-10 14:15 - 861694204 _____ () C:\Users\Emaneček\Downloads\Rákosníček-a-jeho-rybník-(pohádky--CZ).rar
2014-02-10 13:29 - 2014-02-10 13:25 - 70852608 _____ () C:\Users\Emaneček\Downloads\11.-Jak-Rákosníček-udělal-z-nebeského-draka-kolotoč.mpg
2014-02-10 13:29 - 2014-02-10 13:25 - 68028416 _____ () C:\Users\Emaneček\Downloads\08.-Jak-Rákosníček-vysvobodil-zakletou-labuť,která-vůbec-nebyla-zakletá.mpg
2014-02-10 13:28 - 2014-02-10 13:26 - 59768611 _____ () C:\Users\Emaneček\Downloads\9.-Jak-Rákosníček-předělával-mrtvou-vodu-na-živou.avi
2014-02-10 13:28 - 2014-02-10 13:25 - 75841536 _____ () C:\Users\Emaneček\Downloads\09.-Jak-Rákosníček-udělal-na-nebi-kluziště-a-pořád-se-diví,-proč-mu-lidé-říkají-Mléčná-dráha.mpg
2014-02-10 13:28 - 2014-02-10 13:25 - 67209216 _____ () C:\Users\Emaneček\Downloads\10.-Jak-Rákosníček-vyzrál-na-nebeského-střelce.mpg
2014-02-10 13:28 - 2014-02-10 13:25 - 66723840 _____ () C:\Users\Emaneček\Downloads\06.-Jak-Rákosníček-zachraňoval-raka,až-se-mu-z-toho-zatočila-hlava.mpg
2014-02-10 13:28 - 2014-02-10 13:25 - 65861632 _____ () C:\Users\Emaneček\Downloads\07.-Jak-Rákosníček-s-Malým-a-Velkým-psem-neuhlídali-měsíc.mpg
2014-02-10 13:28 - 2014-02-10 13:25 - 64847872 _____ () C:\Users\Emaneček\Downloads\13.-Jak-Rákosníček-přivedl-nebeskému-Pastýři-zatoulanou-hvězdu.mpg
2014-02-10 13:28 - 2014-02-10 13:25 - 61769728 _____ () C:\Users\Emaneček\Downloads\12.-Jak-si-Rákosníček-nepomohl-k-nebeské-Koruně.mpg
2014-02-10 13:28 - 2014-02-10 13:24 - 70727680 _____ () C:\Users\Emaneček\Downloads\04.-Jak-Rákosníček-s-Vodnářem-zařídili,-aby-zase-pršelo.mpg
2014-02-10 13:28 - 2014-02-10 13:24 - 69783552 _____ () C:\Users\Emaneček\Downloads\02.-Jak-Rákosníček-zachránil-mráčky-beránky-před-hvězdným-Orlem.mpg
2014-02-10 13:28 - 2014-02-10 13:24 - 69187584 _____ () C:\Users\Emaneček\Downloads\05.-Jak-Rákosníček-zachránil-Polárku-před-slunečním-paprskem.mpg
2014-02-10 13:27 - 2014-02-10 13:24 - 69459968 _____ () C:\Users\Emaneček\Downloads\01.-Jak-Rákosníček-předjížděl-Velký-vůz-a-co-z-toho-bylo.mpg
2014-02-10 13:27 - 2014-02-10 13:24 - 69222400 _____ () C:\Users\Emaneček\Downloads\03.-Jak-si-Rákosníček-nevysloužil-hvězdu.mpg
2014-02-08 08:24 - 2014-01-08 17:24 - 00000146 _____ () C:\Users\Emaneček\AppData\Roaming\WB.CFG
2014-02-07 14:09 - 2014-01-30 17:58 - 00000000 ____D () C:\Users\Emaneček\Downloads\7.Assassins.2013.720p.WEB-DLX264.AAC-SmY
2014-02-07 14:08 - 2014-01-30 19:50 - 00000000 ____D () C:\Users\Emaneček\Downloads\Grudge Match.2013 VODRip.AC3-MiLLENiUM
2014-02-07 14:08 - 2014-01-30 18:34 - 00000000 ____D () C:\Users\Emaneček\Downloads\Grudge.Match.2013 HDRip XViD NO1KNOWS rozsypaný čaj
2014-02-07 14:08 - 2014-01-30 18:01 - 00000000 ____D () C:\Users\Emaneček\Downloads\In.The.Name.Of.The.King.3.2014.DVDRip.XVID-ASR
2014-02-07 14:07 - 2014-01-30 18:31 - 00000000 ____D () C:\Users\Emaneček\Downloads\The.Counselor.2013.HDRip.XviD-AQOS
2014-02-06 13:16 - 2014-02-13 08:24 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-13 08:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-13 08:24 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-13 08:24 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-13 08:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-13 08:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-13 08:24 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-13 08:24 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-13 08:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-13 08:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-13 08:24 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-13 08:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-13 08:24 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-13 08:24 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-13 08:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-13 08:24 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-13 08:24 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-13 08:24 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-13 08:24 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-13 08:24 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-13 08:24 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-13 08:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-13 08:24 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-13 08:24 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-13 08:24 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-13 08:24 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-13 08:24 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-13 08:24 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-13 08:24 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-13 08:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-13 08:24 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-13 08:24 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-13 08:24 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-13 08:24 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-13 08:24 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-13 08:24 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-13 08:24 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-13 08:24 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-13 08:24 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-05 11:33 - 2014-02-05 11:33 - 03544968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-02-05 11:33 - 2012-03-31 06:46 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-05 11:33 - 2012-03-31 06:46 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-05 11:33 - 2011-06-27 20:57 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-04 16:10 - 2013-12-26 11:30 - 00000000 ____D () C:\Users\Emaneček\AppData\Roaming\uTorrent
2014-02-04 16:09 - 2014-02-04 15:14 - 1299973222 _____ () C:\Users\Emaneček\Downloads\The Adventurer The Curse of the Midas Box (2013) BluRay 1080p 5.1CH x264 Ganool.mkv
2014-02-04 15:45 - 2014-02-04 15:36 - 1308749824 _____ () C:\Users\Emaneček\Downloads\Feuchtgebiete.2013.BDRip.AC3.German.XviD-POE.avi
2014-02-04 15:36 - 2014-02-04 15:36 - 00060961 _____ () C:\Users\Emaneček\Downloads\Feuchtgebiete.2013.BDRip.AC3.German.XviD-POE.srt
2014-02-04 15:14 - 2014-02-04 15:14 - 00069450 _____ () C:\Users\Emaneček\Downloads\The Adventurer The Curse of the Midas Box (2013) BluRay 1080p 5.1CH x264 Ganool.srt
2014-01-29 16:42 - 2014-01-27 08:20 - 00000000 ____D () C:\Users\Emaneček\Downloads\How.I.Live.Now.2013.LiMiTED.720p.BluRay.x264-GECKOS [PublicHD]
2014-01-29 16:41 - 2014-01-27 08:21 - 00000000 ____D () C:\Users\Emaneček\Downloads\The.Starving.Games.2013.1080p.BluRay.x264-SONiDO [PublicHD]
2014-01-27 08:32 - 2014-01-27 07:53 - 00000000 ____D () C:\Users\Emaneček\Downloads\Odd.Thomas.BRRip.XviD.AC3-WAR
2014-01-27 08:32 - 2014-01-20 21:21 - 00000000 ____D () C:\Users\Emaneček\Downloads\Out.Of.The.Funrace.2013.DVDSCR.XViD.AC3-LEGi0N
2014-01-27 08:31 - 2014-01-27 07:57 - 00000000 ____D () C:\Users\Emaneček\Downloads\Austenland.2013.BRRiP.XVID-FiRE
2014-01-27 08:01 - 2014-01-26 21:28 - 00000000 ____D () C:\Users\Emaneček\Downloads\In.A.World.2013.LiMiTED.720p.BluRay.x264-iMMORTALs [PublicHD]
2014-01-27 07:47 - 2014-01-26 21:07 - 00000000 ____D () C:\Users\Emaneček\Downloads\Filth.2013.720p.BluRay.DTS.x264-PublicHD

Some content of TEMP:
====================
C:\Users\Emaneček\AppData\Local\Temp\0a50e25a83046228c11dcaa7eeed09bb.exe
C:\Users\Emaneček\AppData\Local\Temp\AskSLib.dll
C:\Users\Emaneček\AppData\Local\Temp\atl80.dll
C:\Users\Emaneček\AppData\Local\Temp\bmrc2sog.dll
C:\Users\Emaneček\AppData\Local\Temp\firefoxjre_exe.exe
C:\Users\Emaneček\AppData\Local\Temp\iyzwlfrb.dll
C:\Users\Emaneček\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
C:\Users\Emaneček\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Emaneček\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Emaneček\AppData\Local\Temp\jre-7u7-windows-i586-iftw.exe
C:\Users\Emaneček\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
C:\Users\Emaneček\AppData\Local\Temp\mfc80.dll
C:\Users\Emaneček\AppData\Local\Temp\mfc80u.dll
C:\Users\Emaneček\AppData\Local\Temp\mfcm80.dll
C:\Users\Emaneček\AppData\Local\Temp\mfcm80u.dll
C:\Users\Emaneček\AppData\Local\Temp\MSETUP4.EXE
C:\Users\Emaneček\AppData\Local\Temp\msvcm80.dll
C:\Users\Emaneček\AppData\Local\Temp\msvcp80.dll
C:\Users\Emaneček\AppData\Local\Temp\msvcr80.dll
C:\Users\Emaneček\AppData\Local\Temp\pcspeedup.exe
C:\Users\Emaneček\AppData\Local\Temp\Quarantine.exe
C:\Users\Emaneček\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Emaneček\AppData\Local\Temp\TmDbg32.dll
C:\Users\Emaneček\AppData\Local\Temp\TmDbg64.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-18 20:32

==================== End Of Log ============================

[JackalXA]

Tak jsem to dnes prošel znova kompletně MBAM a zde je log.
Jsou tam 3 nálezy


Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.02.20.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16518
Emaneček :: ASUS-NTB [administrátor]

Ochrana: Povolena

20.2.2014 8:21:05
MBAM-log-2014-02-20 (09-56-14).txt

Typ: Kompletní kontrola (C:\|D:\|Q:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 424485
Uplynulý čas: 1 hodin, 34 minut, 25 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 2
HKCU\Software\InstallCore\1I1T1Q1S (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 1
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0M2P0U0F0B1O1O1G -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

[vyosek]

Nalezy smazte, objevi se log, ten rad uvidim