Dobrý den, takže u toho launcheru mi avast hlasil vir a vymazal mi ten soubor, tak jsem musel vypnout intivir a test spustil. Zde jsou výsledky, adition posilám v souboru.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-04-2014
Ran by Radim (administrator) on RADIM-PC on 28-04-2014 21:39:41
Running from C:\Users\Radim\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(ASUSTeK Computer Inc.) C:\Windows\system32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apache Software Foundation) C:\xampp\apache\bin\httpd.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
() C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
() C:\xampp\mysql\bin\mysqld.exe
() C:\Program Files (x86)\Asus\Game Park\GameConsole\OberonGameConsoleService.exe
(Apache Software Foundation) C:\xampp\apache\bin\httpd.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
() C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ATK) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Capsa.cz, s.r.o.) C:\Program Files (x86)\easyCapsa\easyCapsa.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(ASUS) C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ASUS) C:\Windows\AsScrPro.exe
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.bin
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(forum.viry.cz) C:\Users\Radim\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [617856 2009-07-30] (ELAN Microelectronic Corp.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [323584 2009-09-01] (AlcorMicro Co., Ltd.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [6937216 2009-10-09] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [170624 2009-08-20] (ASUS)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3774312 2014-04-02] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [MSStp] => C:\Windows\inf\msstp.vbe [1584 2014-03-05] ()
HKLM-x32\...\Run: [mncykvuvhSrv] => C:\Windows\SysWOW64\mncykvuvh.vbe [7670 2014-03-05] ()
HKLM-x32\...\RunOnce: [20131224] - C:\Program Files\AVAST Software\Avast\setup\emupdate\0e247361-5574-4b16-aacc-f32dafa127f1.exe /check [181136 2014-04-28] (AVAST Software)
HKU\S-1-5-21-398937106-1008243777-736107848-1001\...\Run: [Google Update] => C:\Users\Radim\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-05-17] (Google Inc.)
HKU\S-1-5-21-398937106-1008243777-736107848-1001\...\Run: [easyCapsa] => C:\Program Files (x86)\easyCapsa\easyCapsa.exe [934288 2013-04-27] (Capsa.cz, s.r.o.)
HKU\S-1-5-21-398937106-1008243777-736107848-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-17] (DT Soft Ltd)
HKU\S-1-5-21-398937106-1008243777-736107848-1001\...\Run: [Ubuntu One] => "C:\Program Files (x86)\ubuntuone\dist\ubuntuone-syncdaemon.exe"
HKU\S-1-5-21-398937106-1008243777-736107848-1001\...\Run: [Ubuntu One Icon] => "C:\Program Files (x86)\ubuntuone\dist\ubuntuone-control-panel-qt.exe" --minimized --with-icon
HKU\S-1-5-21-398937106-1008243777-736107848-1001\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-398937106-1008243777-736107848-1001\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-398937106-1008243777-736107848-1001\...\MountPoints2: {e6c2f81a-b152-11e1-8676-002243d53dfb} - F:\autorun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.lnk
ShortcutTarget: OpenOffice.org 3.4.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe (No File)
Startup: C:\Users\Multivitamin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe (No File)
Startup: C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk
ShortcutTarget: GameRanger.lnk -> C:\Users\Radim\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies)
Startup: C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice 4.0.1.lnk
ShortcutTarget: OpenOffice 4.0.1.lnk -> C:\Program Files (x86)\OpenOffice 4\program\quickstart.exe ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.bing.com/search?q={searchTer ... ORM=IE10SR
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://asus.msn.com
URLSearchHook: HKCU - (No Name) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - No File
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
http://search.conduit.com/ResultsExt.as ... =CT2475029
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
http://search.conduit.com/ResultsExt.as ... =CT2475029
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: IE Developer Toolbar BHO - {CC7E636D-39AA-49b6-B511-65413DA137A1} - C:\Program Files (x86)\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
FireFox:
========
FF ProfilePath: C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\Profiles\fpxvwyv5.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll No File
FF Plugin-x32: @gametap.com/npdd,version=1.0 - C:\Program Files (x86)\Downloader\npdd.dll (Metaboli)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.3 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Radim\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Radim\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Radim\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Radim\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Users\Radim\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Radim\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: DownloadHelper - C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\Profiles\fpxvwyv5.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-04-26]
FF Extension: YouTube Video and Audio Downloader - C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\Profiles\fpxvwyv5.default\Extensions\
feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi [2014-04-26]
FF Extension: Save as PDF - C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\Profiles\fpxvwyv5.default\Extensions\
save-as-pdf-ff@pdfcrowd.com.xpi [2014-04-27]
FF HKLM-x32\...\Firefox\Extensions: [
wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-05-07]
Chrome:
=======
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Radim\AppData\Local\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Radim\AppData\Local\Google\Chrome\Application\34.0.1847.116\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Radim\AppData\Local\Google\Chrome\Application\34.0.1847.116\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Winamp Application Detector) - C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live® Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Radim\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Extension: (YouTube) - C:\Users\Radim\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-05-17]
CHR Extension: (Vyhledávání Google) - C:\Users\Radim\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-05-17]
CHR Extension: (Alík balík) - C:\Users\Radim\AppData\Local\Google\Chrome\User Data\Default\Extensions\djopiogeifmallbgfdmhfjfiliahcdop [2012-05-17]
CHR Extension: (ZenMate for Google Chrome™) - C:\Users\Radim\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2014-02-18]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Radim\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2012-05-25]
CHR Extension: (Peněženka Google) - C:\Users\Radim\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Gmail) - C:\Users\Radim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-05-17]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 Apache2.4; C:\xampp\apache\bin\httpd.exe [22016 2012-06-06] (Apache Software Foundation)
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-06] (AVAST Software)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2135232 2014-04-24] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 mysql; C:\xampp\mysql\bin\mysqld.exe [8180224 2012-06-29] ()
R2 OberonGameConsoleService; C:\Program Files (x86)\Asus\Game Park\GameConsole\OberonGameConsoleService.exe [44312 2009-09-15] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2012-12-13] ()
R3 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2009-05-27] ()
==================== Drivers (Whitelisted) ====================
R2 ASMMAP64; C:\Program Files\ATKGFNEX\ASMMAP64.sys [14904 2007-07-24] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-12] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-12] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-06] (AVAST Software)
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-07] ()
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-05-23] (DT Soft Ltd)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [16776 2011-07-29] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [14216 2011-07-29] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9096 2011-07-29] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [8456 2011-07-29] ()
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1806400 2009-06-05] ()
R0 vsock; C:\Windows\System32\drivers\vsock.sys [70256 2012-07-06] (VMware, Inc.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
U3 tmlwf;
U3 tmwfp;
S3 X6va013; \??\C:\Windows\SysWOW64\Drivers\X6va013 [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-04-28 21:39 - 2014-04-28 21:41 - 00023740 _____ () C:\Users\Radim\Desktop\FRST.txt
2014-04-28 21:39 - 2014-04-28 21:39 - 00000000 ____D () C:\FRST
2014-04-28 21:37 - 2014-04-28 21:37 - 00112640 _____ (forum.viry.cz) C:\Users\Radim\Desktop\FRSTLauncher.exe
2014-04-28 21:36 - 2014-04-28 21:36 - 02061824 _____ (Farbar) C:\Users\Radim\Desktop\FRST64.exe
2014-04-28 20:12 - 2014-04-28 20:27 - 386946558 _____ () C:\Users\Radim\Desktop\Semená smrti - Seeds Of Death (slovenské titulky).webm
2014-04-28 12:03 - 2014-04-28 11:34 - 00043993 _____ () C:\Users\Radim\Desktop\Game of Thrones - 04x04 - Přísežník - KILLERS720p.txt
2014-04-28 11:43 - 2014-04-28 11:43 - 00051919 _____ () C:\Users\Radim\Downloads\[kickass.to]game.of.thrones.s04e04.720p.hdtv.x264.killers.eztv.torrent
2014-04-28 11:43 - 2014-04-28 11:43 - 00018031 _____ () C:\Users\Radim\Downloads\Game-of-Thrones-04x04-Přísežník-KILLERS720p.rar
2014-04-27 22:20 - 2014-04-27 22:22 - 202687350 _____ () C:\Users\Radim\Desktop\Hitlerova tajna veda SK.webm
2014-04-27 22:20 - 2014-04-27 22:22 - 200047398 _____ () C:\Users\Radim\Desktop\Tajemství mrtvých mužů Hitlerovy zázračné zbraně.webm
2014-04-27 22:19 - 2014-04-27 22:20 - 202610989 _____ () C:\Users\Radim\Desktop\Norad - Supertajná pevnosť - CZ 2005.webm
2014-04-27 21:53 - 2014-04-27 21:54 - 181827630 _____ () C:\Users\Radim\Desktop\Den po incidentu v Roswellu [CZ].webm
2014-04-27 20:34 - 2014-04-27 20:34 - 98750433 _____ () C:\Users\Radim\Desktop\Narsilion Arcadia (Full Album) (HQ).m4a
2014-04-27 20:25 - 2014-04-27 20:25 - 00030211 _____ () C:\Users\Radim\Downloads\[kickass.to]celtic.woman.9.albums.2005.2012.torrent
2014-04-27 20:13 - 2014-04-27 22:47 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\Audacity
2014-04-27 20:13 - 2014-04-27 20:13 - 00001019 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-04-27 20:13 - 2014-04-27 20:13 - 00001007 _____ () C:\Users\Public\Desktop\Audacity.lnk
2014-04-27 20:13 - 2014-04-27 20:13 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-04-27 20:12 - 2014-04-27 20:13 - 22180353 _____ (Audacity Team ) C:\Users\Radim\Downloads\audacity-win-2.0.5.exe
2014-04-27 20:05 - 2014-04-27 20:05 - 00000000 ____D () C:\Users\Radim\Desktop\ffmpeg-20140424-git-443936d-win32-static
2014-04-27 19:56 - 2014-04-27 20:03 - 159617187 _____ () C:\Users\Radim\Desktop\Celtic Music - Dreams And Fantasies Mix - DASH-1.m4a
2014-04-27 19:56 - 2014-04-27 19:59 - 698999360 _____ () C:\Users\Radim\Desktop\Celtic Music - Dreams And Fantasies Mix - DASH.mp4
2014-04-27 19:54 - 2014-04-27 19:55 - 124799920 _____ () C:\Users\Radim\Downloads\Bridget-McMahon---Celtic-Music-Songs-(2013).rar
2014-04-27 19:53 - 2014-04-27 19:54 - 159617187 _____ () C:\Users\Radim\Desktop\Celtic Music - Dreams And Fantasies Mix - DASH.m4a
2014-04-27 18:14 - 2014-04-27 18:14 - 92856301 _____ () C:\Users\Radim\Downloads\Hipnotic---Podle-Buzoly-(2013)-MP3-320kbps-CDrip).rar
2014-04-27 14:03 - 2014-04-27 14:10 - 00000000 ____D () C:\Users\Radim\Desktop\plosina 4
2014-04-27 10:56 - 2014-04-27 10:56 - 00000000 ____D () C:\Users\Radim\Desktop\Nová složka (3)
2014-04-26 21:33 - 2014-04-26 21:33 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-04-26 21:33 - 2014-04-26 21:33 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-04-26 21:33 - 2014-04-26 21:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-26 21:30 - 2014-04-28 19:27 - 00003170 _____ () C:\Windows\System32\Tasks\P4GIntlCtrl
2014-04-26 19:56 - 2014-04-26 19:56 - 00000000 __SHD () C:\found.000
2014-04-24 21:55 - 2014-04-24 21:55 - 11314776 _____ () C:\Users\Radim\Desktop\ffmpeg-20140424-git-443936d-win32-static.7z
2014-04-22 23:11 - 2014-04-22 23:11 - 00158284 ____H () C:\Windows\SysWOW64\mlfcache.dat
2014-04-22 23:11 - 2014-04-22 23:11 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\com.TheFinalHoursOfPortal2
2014-04-22 23:09 - 2014-04-22 23:09 - 00000222 _____ () C:\Users\Radim\Desktop\Portal 2 - The Final Hours.url
2014-04-20 15:27 - 2014-04-26 20:24 - 00000003 _____ () C:\Users\Guest\stut
2014-04-20 15:25 - 2014-04-20 15:26 - 00000330 _____ () C:\Users\Guest\rgut
2014-04-20 15:25 - 2014-04-20 15:25 - 00000000 __SHD () C:\Users\Guest\AppData\Local\EmieUserList
2014-04-20 15:25 - 2014-04-20 15:25 - 00000000 __SHD () C:\Users\Guest\AppData\Local\EmieSiteList
2014-04-14 20:34 - 2014-04-14 20:34 - 00000953 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publero Desktop.lnk
2014-04-12 21:09 - 2014-04-12 21:30 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\Ulozto File Manager
2014-04-12 21:09 - 2014-04-12 21:09 - 00000000 ____D () C:\Users\Radim\Documents\Ulozto
2014-04-12 21:09 - 2014-04-12 21:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ulož.to File Manager
2014-04-12 21:09 - 2014-04-12 21:09 - 00000000 ____D () C:\Program Files (x86)\Ulozto File Manager
2014-04-12 20:09 - 2014-04-12 20:09 - 00000000 ____D () C:\Users\Radim\Desktop\A_shocks - 2014
2014-04-11 12:57 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-04-11 12:57 - 2014-01-04 00:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-04-11 12:48 - 2014-04-11 12:48 - 00000000 __SHD () C:\Users\Radim\AppData\Local\EmieUserList
2014-04-11 12:48 - 2014-04-11 12:48 - 00000000 __SHD () C:\Users\Radim\AppData\Local\EmieSiteList
2014-04-10 23:40 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-04-10 23:40 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-04-10 23:40 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-04-10 23:40 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-04-10 23:40 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-04-10 23:40 - 2013-10-02 03:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-04-10 23:40 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-04-10 23:40 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-04-10 23:40 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-04-10 23:40 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-04-10 23:40 - 2013-10-02 02:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-04-10 23:40 - 2013-10-02 02:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-04-10 23:40 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-04-10 23:40 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-04-10 23:40 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-04-10 23:40 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-04-10 23:39 - 2014-03-06 12:21 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-10 23:39 - 2014-03-06 11:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-10 23:39 - 2014-03-06 11:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-10 23:39 - 2014-03-06 10:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-10 23:39 - 2014-03-06 10:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-10 23:39 - 2014-03-06 10:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-10 23:39 - 2014-03-06 10:53 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-10 23:39 - 2014-03-06 10:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-10 23:39 - 2014-03-06 10:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-10 23:39 - 2014-03-06 10:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-10 23:39 - 2014-03-06 10:32 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-10 23:39 - 2014-03-06 10:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-10 23:39 - 2014-03-06 10:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-10 23:39 - 2014-03-06 10:28 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-10 23:39 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-10 23:39 - 2014-03-06 10:09 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-10 23:39 - 2014-03-06 10:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-10 23:39 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-10 23:39 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-10 23:39 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-10 23:39 - 2014-03-06 09:56 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-10 23:39 - 2014-03-06 09:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-10 23:39 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-10 23:39 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-10 23:39 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-10 23:39 - 2014-03-06 09:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-10 23:39 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-10 23:39 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-10 23:39 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-10 23:39 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-10 23:39 - 2014-03-06 09:21 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-10 23:39 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-10 23:39 - 2014-03-06 09:11 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-10 23:39 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-10 23:39 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-10 23:39 - 2014-03-06 08:53 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-10 23:39 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-10 23:39 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-10 23:39 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-10 23:39 - 2014-03-06 08:22 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-10 23:39 - 2014-03-06 07:58 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-10 23:39 - 2014-03-06 07:50 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-10 23:39 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-10 23:39 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-10 23:39 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-10 23:38 - 2014-03-06 11:19 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-10 23:38 - 2014-03-06 10:11 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-10 23:38 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-10 23:33 - 2013-09-25 04:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-04-10 23:33 - 2013-09-25 03:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-04-10 07:16 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-10 07:16 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-04-10 07:16 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-04-10 07:16 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-04-10 07:16 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-04-10 07:16 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-04-10 07:16 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-10 07:16 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-04-10 07:16 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-04-10 07:16 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-04-10 07:16 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-04-10 07:16 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-10 07:16 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-10 07:16 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-10 07:16 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-10 07:16 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-04-10 07:16 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-08 18:16 - 2014-04-28 20:53 - 00000374 _____ () C:\Windows\Tasks\WpsNotifyTask_Radim.job
2014-04-08 18:16 - 2014-04-28 20:47 - 00000374 _____ () C:\Windows\Tasks\WpsUpdateTask_Radim.job
2014-04-08 18:16 - 2014-04-08 18:16 - 00003358 _____ () C:\Windows\System32\Tasks\WpsUpdateTask_Radim
2014-04-08 18:16 - 2014-04-08 18:16 - 00003358 _____ () C:\Windows\System32\Tasks\WpsNotifyTask_Radim
2014-04-08 18:16 - 2014-04-08 18:16 - 00001404 _____ () C:\Users\Public\Desktop\Kingsoft Writer.lnk
2014-04-08 18:16 - 2014-04-08 18:16 - 00001402 _____ () C:\Users\Public\Desktop\Kingsoft Presentation.lnk
2014-04-08 18:16 - 2014-04-08 18:16 - 00001383 _____ () C:\Users\Public\Desktop\Kingsoft Spreadsheets.lnk
2014-04-08 18:16 - 2014-04-08 18:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingsoft Office
2014-04-08 18:16 - 2014-04-08 18:16 - 00000000 ____D () C:\ProgramData\Kingsoft
2014-04-08 18:15 - 2014-04-08 18:15 - 00000000 ____D () C:\Program Files (x86)\Kingsoft
2014-04-08 18:14 - 2014-04-08 18:14 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\Kingsoft
2014-04-06 20:37 - 2014-04-06 20:37 - 00000713 _____ () C:\Users\Radim\output.txt
2014-04-06 20:37 - 2014-04-06 20:37 - 00000003 _____ () C:\Users\Radim\stut
2014-04-06 20:35 - 2014-04-28 15:18 - 00000510 _____ () C:\Users\Radim\rgut
2014-04-05 20:21 - 2014-04-05 20:21 - 00000000 ____D () C:\Windows\SysWOW64\bitstreams
2014-04-05 20:21 - 2014-04-05 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingdom Rush v.1.13 (premium)
2014-04-05 20:21 - 2014-04-05 20:21 - 00000000 ____D () C:\Program Files (x86)\Kingdom Rush v.1.13 (premium)
2014-04-05 20:21 - 2014-03-05 23:19 - 00007670 ____S () C:\Windows\SysWOW64\mncykvuvh.vbe
2014-04-05 20:21 - 2013-12-10 01:30 - 10236928 ____S () C:\Windows\SysWOW64\acumncykvuvh.exe
2014-04-05 20:21 - 2013-10-26 21:30 - 01704448 ____S (The OpenSSL Project,
http://www.openssl.org/) C:\Windows\SysWOW64\libeay32.dll
2014-04-05 20:21 - 2013-10-26 21:30 - 00538126 ____S () C:\Windows\SysWOW64\libcurl-4.dll
2014-04-05 20:21 - 2013-10-26 21:30 - 00364544 ____S (The OpenSSL Project,
http://www.openssl.org/) C:\Windows\SysWOW64\ssleay32.dll
2014-04-05 20:21 - 2013-10-26 21:30 - 00192512 ____S () C:\Windows\SysWOW64\libidn-11.dll
2014-04-05 20:21 - 2013-10-26 21:30 - 00171008 ____S (The libssh2 library,
http://www.libssh2.org/) C:\Windows\SysWOW64\libssh2.dll
2014-04-05 20:21 - 2013-10-26 21:30 - 00133632 ____S () C:\Windows\SysWOW64\librtmp.dll
2014-04-05 20:21 - 2013-10-26 21:30 - 00044727 ____S () C:\Windows\SysWOW64\diablo130302.cl
2014-04-05 20:21 - 2013-10-26 21:30 - 00043810 ____S () C:\Windows\SysWOW64\poclbm130302.cl
2014-04-05 20:21 - 2013-10-26 21:30 - 00030802 ____S () C:\Windows\SysWOW64\diakgcn121016.cl
2014-04-05 20:21 - 2013-10-26 21:30 - 00023825 ____S () C:\Windows\SysWOW64\scrypt130511.cl
2014-04-05 20:21 - 2013-10-26 21:30 - 00013062 ____S () C:\Windows\SysWOW64\phatk121016.cl
2014-04-05 20:21 - 2013-06-12 16:15 - 00119888 ____S (Open Source Software community LGPL) C:\Windows\SysWOW64\pthreadGC2.dll
2014-04-05 20:21 - 2013-06-12 16:15 - 00100864 ____S () C:\Windows\SysWOW64\zlib1.dll
2014-04-05 20:21 - 2012-09-26 00:46 - 00472424 ____S (NVIDIA Corporation) C:\Windows\SysWOW64\cudart32_50_35.dll
2014-04-05 20:21 - 2012-05-27 02:36 - 00055808 ____S (Open Source Software community LGPL) C:\Windows\SysWOW64\pthreadVC2.dll
2014-04-03 20:06 - 2014-04-03 20:06 - 00000000 ____D () C:\Users\Radim\Desktop\d
2014-03-31 00:28 - 2014-03-31 00:28 - 00000151 _____ () C:\Users\Radim\Desktop\Nový textový dokument.TXT
==================== One Month Modified Files and Folders =======
2014-04-28 21:41 - 2014-04-28 21:39 - 00023740 _____ () C:\Users\Radim\Desktop\FRST.txt
2014-04-28 21:39 - 2014-04-28 21:39 - 00000000 ____D () C:\FRST
2014-04-28 21:37 - 2014-04-28 21:37 - 00112640 _____ (forum.viry.cz) C:\Users\Radim\Desktop\FRSTLauncher.exe
2014-04-28 21:36 - 2014-04-28 21:36 - 02061824 _____ (Farbar) C:\Users\Radim\Desktop\FRST64.exe
2014-04-28 21:20 - 2012-05-10 14:13 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-28 21:19 - 2012-12-19 20:14 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-28 20:53 - 2014-04-08 18:16 - 00000374 _____ () C:\Windows\Tasks\WpsNotifyTask_Radim.job
2014-04-28 20:49 - 2012-06-28 15:13 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\Mozilla
2014-04-28 20:49 - 2012-05-17 23:05 - 00000962 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-398937106-1008243777-736107848-1001UA.job
2014-04-28 20:48 - 2009-11-15 15:08 - 01506313 _____ () C:\Windows\WindowsUpdate.log
2014-04-28 20:47 - 2014-04-08 18:16 - 00000374 _____ () C:\Windows\Tasks\WpsUpdateTask_Radim.job
2014-04-28 20:27 - 2014-04-28 20:12 - 386946558 _____ () C:\Users\Radim\Desktop\Semená smrti - Seeds Of Death (slovenské titulky).webm
2014-04-28 19:27 - 2014-04-26 21:30 - 00003170 _____ () C:\Windows\System32\Tasks\P4GIntlCtrl
2014-04-28 18:19 - 2012-12-19 20:14 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-28 18:13 - 2012-06-07 13:25 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\Skype
2014-04-28 15:25 - 2009-07-14 06:45 - 00010240 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-28 15:25 - 2009-07-14 06:45 - 00010240 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-28 15:18 - 2014-04-06 20:35 - 00000510 _____ () C:\Users\Radim\rgut
2014-04-28 15:16 - 2012-08-27 01:03 - 00000000 ____D () C:\ProgramData\VMware
2014-04-28 15:15 - 2013-05-24 13:04 - 00006267 _____ () C:\Windows\setupact.log
2014-04-28 15:15 - 2009-11-15 16:07 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-28 15:15 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-28 11:43 - 2014-04-28 11:43 - 00051919 _____ () C:\Users\Radim\Downloads\[kickass.to]game.of.thrones.s04e04.720p.hdtv.x264.killers.eztv.torrent
2014-04-28 11:43 - 2014-04-28 11:43 - 00018031 _____ () C:\Users\Radim\Downloads\Game-of-Thrones-04x04-Přísežník-KILLERS720p.rar
2014-04-28 11:34 - 2014-04-28 12:03 - 00043993 _____ () C:\Users\Radim\Desktop\Game of Thrones - 04x04 - Přísežník - KILLERS720p.txt
2014-04-28 08:55 - 2012-09-08 17:25 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-04-27 22:47 - 2014-04-27 20:13 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\Audacity
2014-04-27 22:47 - 2012-05-17 23:05 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-398937106-1008243777-736107848-1001Core.job
2014-04-27 22:22 - 2014-04-27 22:20 - 202687350 _____ () C:\Users\Radim\Desktop\Hitlerova tajna veda SK.webm
2014-04-27 22:22 - 2014-04-27 22:20 - 200047398 _____ () C:\Users\Radim\Desktop\Tajemství mrtvých mužů Hitlerovy zázračné zbraně.webm
2014-04-27 22:20 - 2014-04-27 22:19 - 202610989 _____ () C:\Users\Radim\Desktop\Norad - Supertajná pevnosť - CZ 2005.webm
2014-04-27 21:54 - 2014-04-27 21:53 - 181827630 _____ () C:\Users\Radim\Desktop\Den po incidentu v Roswellu [CZ].webm
2014-04-27 20:34 - 2014-04-27 20:34 - 98750433 _____ () C:\Users\Radim\Desktop\Narsilion Arcadia (Full Album) (HQ).m4a
2014-04-27 20:25 - 2014-04-27 20:25 - 00030211 _____ () C:\Users\Radim\Downloads\[kickass.to]celtic.woman.9.albums.2005.2012.torrent
2014-04-27 20:13 - 2014-04-27 20:13 - 00001019 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-04-27 20:13 - 2014-04-27 20:13 - 00001007 _____ () C:\Users\Public\Desktop\Audacity.lnk
2014-04-27 20:13 - 2014-04-27 20:13 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-04-27 20:13 - 2014-04-27 20:12 - 22180353 _____ (Audacity Team ) C:\Users\Radim\Downloads\audacity-win-2.0.5.exe
2014-04-27 20:05 - 2014-04-27 20:05 - 00000000 ____D () C:\Users\Radim\Desktop\ffmpeg-20140424-git-443936d-win32-static
2014-04-27 20:03 - 2014-04-27 19:56 - 159617187 _____ () C:\Users\Radim\Desktop\Celtic Music - Dreams And Fantasies Mix - DASH-1.m4a
2014-04-27 19:59 - 2014-04-27 19:56 - 698999360 _____ () C:\Users\Radim\Desktop\Celtic Music - Dreams And Fantasies Mix - DASH.mp4
2014-04-27 19:55 - 2014-04-27 19:54 - 124799920 _____ () C:\Users\Radim\Downloads\Bridget-McMahon---Celtic-Music-Songs-(2013).rar
2014-04-27 19:54 - 2014-04-27 19:53 - 159617187 _____ () C:\Users\Radim\Desktop\Celtic Music - Dreams And Fantasies Mix - DASH.m4a
2014-04-27 19:54 - 2012-05-17 12:49 - 00000000 ____D () C:\Users\Radim\dwhelper
2014-04-27 18:14 - 2014-04-27 18:14 - 92856301 _____ () C:\Users\Radim\Downloads\Hipnotic---Podle-Buzoly-(2013)-MP3-320kbps-CDrip).rar
2014-04-27 14:10 - 2014-04-27 14:03 - 00000000 ____D () C:\Users\Radim\Desktop\plosina 4
2014-04-27 10:56 - 2014-04-27 10:56 - 00000000 ____D () C:\Users\Radim\Desktop\Nová složka (3)
2014-04-26 21:33 - 2014-04-26 21:33 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-04-26 21:33 - 2014-04-26 21:33 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-04-26 21:33 - 2014-04-26 21:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-26 21:33 - 2014-03-22 18:01 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-26 21:30 - 2012-07-08 13:09 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-04-26 21:27 - 2013-05-24 13:04 - 00328656 _____ () C:\Windows\PFRO.log
2014-04-26 20:24 - 2014-04-20 15:27 - 00000003 _____ () C:\Users\Guest\stut
2014-04-26 19:56 - 2014-04-26 19:56 - 00000000 __SHD () C:\found.000
2014-04-25 14:52 - 2013-11-12 00:19 - 00057096 _____ (COMODO CA Limited) C:\Windows\system32\certsentry.dll
2014-04-25 14:51 - 2012-06-18 23:24 - 00000000 ____D () C:\Program Files (x86)\Comodo
2014-04-25 10:10 - 2013-11-15 15:02 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\easyCapsa
2014-04-24 21:55 - 2014-04-24 21:55 - 11314776 _____ () C:\Users\Radim\Desktop\ffmpeg-20140424-git-443936d-win32-static.7z
2014-04-23 22:12 - 2009-08-03 22:00 - 00675130 _____ () C:\Windows\system32\perfh005.dat
2014-04-23 22:12 - 2009-08-03 22:00 - 00144220 _____ () C:\Windows\system32\perfc005.dat
2014-04-23 22:12 - 2009-07-14 07:13 - 01601580 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-23 20:47 - 2013-08-15 13:04 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-04-22 23:11 - 2014-04-22 23:11 - 00158284 ____H () C:\Windows\SysWOW64\mlfcache.dat
2014-04-22 23:11 - 2014-04-22 23:11 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\com.TheFinalHoursOfPortal2
2014-04-22 23:09 - 2014-04-22 23:09 - 00000222 _____ () C:\Users\Radim\Desktop\Portal 2 - The Final Hours.url
2014-04-22 09:10 - 2012-05-06 22:54 - 00000000 ____D () C:\Users\Radim
2014-04-22 08:38 - 2013-10-22 12:29 - 00000000 ____D () C:\Users\Radim\Desktop\plosina
2014-04-21 22:58 - 2012-05-08 16:23 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\vlc
2014-04-20 19:29 - 2012-05-10 14:13 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-20 19:29 - 2012-05-10 14:13 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-20 19:29 - 2012-05-10 14:13 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-20 19:29 - 2012-05-06 23:40 - 00000000 ____D () C:\Users\Radim\AppData\Local\Adobe
2014-04-20 15:27 - 2012-08-21 10:40 - 00000000 ____D () C:\Users\Guest
2014-04-20 15:26 - 2014-04-20 15:25 - 00000330 _____ () C:\Users\Guest\rgut
2014-04-20 15:25 - 2014-04-20 15:25 - 00000000 __SHD () C:\Users\Guest\AppData\Local\EmieUserList
2014-04-20 15:25 - 2014-04-20 15:25 - 00000000 __SHD () C:\Users\Guest\AppData\Local\EmieSiteList
2014-04-19 15:36 - 2014-01-14 14:26 - 00000000 ____D () C:\Users\Radim\.FBReader
2014-04-14 20:42 - 2013-05-22 00:58 - 00000000 ____D () C:\Users\Radim\Desktop\Nová složka
2014-04-14 20:34 - 2014-04-14 20:34 - 00000953 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publero Desktop.lnk
2014-04-12 21:30 - 2014-04-12 21:09 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\Ulozto File Manager
2014-04-12 21:09 - 2014-04-12 21:09 - 00000000 ____D () C:\Users\Radim\Documents\Ulozto
2014-04-12 21:09 - 2014-04-12 21:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ulož.to File Manager
2014-04-12 21:09 - 2014-04-12 21:09 - 00000000 ____D () C:\Program Files (x86)\Ulozto File Manager
2014-04-12 20:09 - 2014-04-12 20:09 - 00000000 ____D () C:\Users\Radim\Desktop\A_shocks - 2014
2014-04-12 13:57 - 2013-06-19 15:05 - 00000000 ____D () C:\Users\Radim\AppData\Local\JDownloader v2.0
2014-04-12 13:31 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-11 22:09 - 2012-09-19 16:09 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-04-11 12:48 - 2014-04-11 12:48 - 00000000 __SHD () C:\Users\Radim\AppData\Local\EmieUserList
2014-04-11 12:48 - 2014-04-11 12:48 - 00000000 __SHD () C:\Users\Radim\AppData\Local\EmieSiteList
2014-04-11 00:11 - 2009-11-15 16:17 - 00002304 _____ () C:\Windows\system32\AutoRunFilter.ini
2014-04-11 00:09 - 2013-05-22 08:07 - 00444344 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-11 00:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-10 23:47 - 2012-08-18 17:40 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-04-10 23:38 - 2012-05-07 00:33 - 01577230 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-04-10 23:37 - 2013-08-15 01:36 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-10 23:33 - 2012-05-07 10:22 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-09 20:19 - 2013-11-24 03:24 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\foobar2000
2014-04-08 18:16 - 2014-04-08 18:16 - 00003358 _____ () C:\Windows\System32\Tasks\WpsUpdateTask_Radim
2014-04-08 18:16 - 2014-04-08 18:16 - 00003358 _____ () C:\Windows\System32\Tasks\WpsNotifyTask_Radim
2014-04-08 18:16 - 2014-04-08 18:16 - 00001404 _____ () C:\Users\Public\Desktop\Kingsoft Writer.lnk
2014-04-08 18:16 - 2014-04-08 18:16 - 00001402 _____ () C:\Users\Public\Desktop\Kingsoft Presentation.lnk
2014-04-08 18:16 - 2014-04-08 18:16 - 00001383 _____ () C:\Users\Public\Desktop\Kingsoft Spreadsheets.lnk
2014-04-08 18:16 - 2014-04-08 18:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingsoft Office
2014-04-08 18:16 - 2014-04-08 18:16 - 00000000 ____D () C:\ProgramData\Kingsoft
2014-04-08 18:16 - 2009-07-14 09:45 - 00000000 ____D () C:\Windows\ShellNew
2014-04-08 18:15 - 2014-04-08 18:15 - 00000000 ____D () C:\Program Files (x86)\Kingsoft
2014-04-08 18:15 - 2009-11-15 15:19 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-04-08 18:14 - 2014-04-08 18:14 - 00000000 ____D () C:\Users\Radim\AppData\Roaming\Kingsoft
2014-04-06 20:37 - 2014-04-06 20:37 - 00000713 _____ () C:\Users\Radim\output.txt
2014-04-06 20:37 - 2014-04-06 20:37 - 00000003 _____ () C:\Users\Radim\stut
2014-04-05 20:21 - 2014-04-05 20:21 - 00000000 ____D () C:\Windows\SysWOW64\bitstreams
2014-04-05 20:21 - 2014-04-05 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingdom Rush v.1.13 (premium)
2014-04-05 20:21 - 2014-04-05 20:21 - 00000000 ____D () C:\Program Files (x86)\Kingdom Rush v.1.13 (premium)
2014-04-03 20:06 - 2014-04-03 20:06 - 00000000 ____D () C:\Users\Radim\Desktop\d
2014-04-03 18:14 - 2012-12-19 20:14 - 00003946 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-04-03 18:14 - 2012-12-19 20:14 - 00003694 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-04-03 17:03 - 2014-01-04 22:35 - 00000000 ____D () C:\Program Files (x86)\ubuntuone
2014-04-01 23:45 - 2014-02-27 13:07 - 00007684 _____ () C:\Users\Radim\Desktop\poznamky.ods
2014-03-31 00:28 - 2014-03-31 00:28 - 00000151 _____ () C:\Users\Radim\Desktop\Nový textový dokument.TXT
Files to move or delete:
====================
C:\ProgramData\hash.dat
Some content of TEMP:
====================
C:\Users\Guest\AppData\Local\Temp\Foxit Updater.exe
C:\Users\Multivitamin\AppData\Local\Temp\drm_dyndata_7380014.dll
C:\Users\Multivitamin\AppData\Local\Temp\Foxit Reader Updater.exe
C:\Users\Multivitamin\AppData\Local\Temp\Foxit Updater.exe
C:\Users\Multivitamin\AppData\Local\Temp\i4jdel0.exe
C:\Users\Multivitamin\AppData\Local\Temp\ICReinstall_JDownloaderSetup_jdownloader.org.exe
C:\Users\Multivitamin\AppData\Local\Temp\JDownloaderSetup_jdownloader.org.exe
C:\Users\Multivitamin\AppData\Local\Temp\mirc732.exe
C:\Users\Multivitamin\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Multivitamin\AppData\Local\Temp\SRLDetectionLibrary2462500947757907511.dll
C:\Users\Radim\AppData\Local\Temp\bdfilters.dll
C:\Users\Radim\AppData\Local\Temp\CH.dll
C:\Users\Radim\AppData\Local\Temp\Checkupdate.exe
C:\Users\Radim\AppData\Local\Temp\Foxit Reader Updater.exe
C:\Users\Radim\AppData\Local\Temp\Foxit Updater.exe
C:\Users\Radim\AppData\Local\Temp\gcapi_dll.dll
C:\Users\Radim\AppData\Local\Temp\gtapi_signed.dll
C:\Users\Radim\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Radim\AppData\Local\Temp\kkflcz3b.dll
C:\Users\Radim\AppData\Local\Temp\proxy_vole8918178458607837734.dll
C:\Users\Radim\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Radim\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll
C:\Users\Radim\AppData\Local\Temp\SRLDetectionLibrary6495390898878130080.dll
C:\Users\Radim\AppData\Local\Temp\vlc-2.0.7-win32.exe
C:\Users\Radim\AppData\Local\Temp\vlc-2.0.8-win32.exe
C:\Users\Radim\AppData\Local\Temp\vlc-2.1.1-win32.exe
C:\Users\Radim\AppData\Local\Temp\vlc-2.1.2-win32.exe
C:\Users\Radim\AppData\Local\Temp\vlc-2.1.3-win32.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-398937106-1008243777-736107848-1001Core.job => C:\Users\Radim\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-398937106-1008243777-736107848-1001UA.job => C:\Users\Radim\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\WpsNotifyTask_Radim.job => C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsnotify.exe
Task: C:\Windows\Tasks\WpsUpdateTask_Radim.job => C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Radim\Desktop" je 23531 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSMTray
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector
C:\Windows\AsScrPro.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EeeStorageBackup
C:\Program Files (x86)\ASUS\Asus WebStorage\BackupService.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update
"C:\Users\Radim\AppData\Local\Google\Update\GoogleUpdate.exe" /c [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MDS_Menu
"C:\Program Files (x86)\Cyberlink\MediaShowEspresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Cyberlink\MediaShowEspresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.0" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut
"C:\Program Files (x86)\Cyberlink\PowerDVD9\Language\Language.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl9
"C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam
"C:\Program Files (x86)\Steam\Steam.exe" -silent [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateLBPShortCut
"C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GoShortCut
"C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePSTShortCut
"C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Cyberlink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent
"C:\Program Files (x86)\Winamp\winampa.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SRS Premium Sound.lnk
C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe /f=srs_premium_sound_nopreset.zip /h [x]
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================