VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Sken AdwCleanerom

https://forum.viry.cz:443/viewtopic.php?t=138916

Stránka 1 z 2

Sken AdwCleanerom

Napsal: 02 črc 2014 16:41
od kostik123456
Dobrý den,dnes jsem proskenoval PC a adwcleaner mi tam něco podozrivého našel.Co z tím???
Tady je log


# AdwCleaner v3.214 - Report created 02/07/2014 at 17:35:50
# Updated 29/06/2014 by Xplode
# Operating System : Windows 8.1 Pro with Media Center (64 bits)
# Username : Kostík a Irenočka - PC-POKOJÍČEK
# Running from : C:\Users\Kostík a Irenočka\Desktop\adwcleaner 3.214.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17126


-\\ Mozilla Firefox v30.0 (cs)

[ File : C:\Users\Kostík a Irenočka\AppData\Roaming\Mozilla\Firefox\Profiles\befc6021.default\prefs.js ]


-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R68].txt - [1749 octets] - [02/07/2014 17:30:07]
AdwCleaner[R69].txt - [1995 octets] - [02/07/2014 17:30:47]
AdwCleaner[R70].txt - [1902 octets] - [02/07/2014 17:35:50]

########## EOF - C:\AdwCleaner\AdwCleaner[R70].txt - [1963 octets] ##########

Re: Sken AdwCleanerom

Napsal: 02 črc 2014 17:20
od vyosek
Zdravim :)

:arrow: Spustte znovu AdwCleaner
  • Pokud pouzivate Win Vista ci W7, kliknete na AdwCleaner pravym a dejte Run As Administrator ci Spustit jako spravce
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
:arrow: Dejte log z FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

Re: Sken AdwCleanerom

Napsal: 02 črc 2014 17:33
od kostik123456
Nevím který log potŘebujete,ale posílám oba,tady jsou -

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-07-2014
Ran by Kostík a Irenočka (administrator) on PC-POKOJÍČEK on 02-07-2014 18:29:54
Running from C:\Users\Kostík a Irenočka\Desktop
Platform: Windows 8.1 Pro with Media Center (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

() C:\Program Files\WinArchiver\WAService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(NETGATE Technologies s.r.o.) C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
() C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-12-15] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] => C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-04-02] (cyberlink)
HKLM-x32\...\Run: [EaseUS EPM Tray Agent] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe [254024 2014-02-13] ()
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766688 2014-04-23] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432 2014-07-01] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKU\S-1-5-21-1848220903-3089343494-3484960918-1001\...\Run: [DVSSkypeRecorder] => "C:\Program Files (x86)\DVDVideoSoft\Free Video Call Recorder for Skype\skyui.exe" /minimized
HKU\S-1-5-21-1848220903-3089343494-3484960918-1001\...\Run: [icq] => C:\Users\Kostík a Irenočka\AppData\Roaming\ICQM\icq.exe [34827272 2014-06-04] (ICQ)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com/search?q={searchT ... d=ie7&rlz=
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {AB127681-9983-4332-8528-A7360886054F} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: No Name - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Kostík a Irenočka\AppData\Roaming\Mozilla\Firefox\Profiles\befc6021.default
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: https://www.e-quip.cz/
FF Keyword.URL: https://www.google.com/search
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_14_0_0_139.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_139.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1213153.dll (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-06-01]

Chrome:
=======
CHR HomePage: hxxp://www.centrum.cz/
CHR StartupUrls: "hxxp://www.google.cz/"
CHR NewTab: "chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR DefaultSearchKeyword: google.com_
CHR DefaultSearchURL: http://www.google.com/search?q={searchT ... RA_csCZ486
CHR DefaultNewTabURL:
CHR Extension: (Google Translate) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2014-02-22]
CHR Extension: (Dokumenty Google) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-08]
CHR Extension: (Disk Google) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-08]
CHR Extension: (Meteopress - p?edpov?? po?as?) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcpnncnkejclcjokemijhkikfeojpgno [2014-02-22]
CHR Extension: (Seznam Li?ti?ka - Email) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-02-22]
CHR Extension: (Seznam Li?ti?ka - Slovn?k) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-02-22]
CHR Extension: (YouTube) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-08]
CHR Extension: (Pool) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cedbddnnmhgnedpamoenmdkhnpnfbpjb [2014-02-22]
CHR Extension: (Digital clock) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehoiekgopjlnkinohiclellfpkfgfek [2014-02-22]
CHR Extension: (H?ada? v Google) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-08]
CHR Extension: (FlipClock) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\copjokjinhlflggeifkidlmodfepbpgl [2014-02-22]
CHR Extension: (8 Ball Pool Multiplayer) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddfplgpeamcbpecnihfpikllkfojgkai [2014-02-22]
CHR Extension: (Kalend?r Google) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2014-02-22]
CHR Extension: (Hodiny pre Google Chrome ™) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\emakkfldeggiinnfcdjkakdfcppbfhdg [2014-02-22]
CHR Extension: (Skype Links) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbmllnadbdnppblcebkkmapkinkdchd [2014-02-22]
CHR Extension: (Goolge mapy s preh?ad?van?m okolia) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbfnldkfkplmmmbfnjkdbbhjbopnocda [2014-02-22]
CHR Extension: (Facebook for Chrome) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdalhedleemkkdjddjgfjmcnbpejpapp [2014-02-22]
CHR Extension: (Hodiny) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2014-02-22]
CHR Extension: (AdBlock) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-02-22]
CHR Extension: (IP adresa) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjndloejlcbpkholmagjbddfkjmmploh [2014-02-22]
CHR Extension: (Uložiť na Disk Google) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2014-02-22]
CHR Extension: (avast! Online Security) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-02-22]
CHR Extension: (Allow Right-Click) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hompjdfbfmmmgflfjdlnkohcplmboaeo [2014-03-25]
CHR Extension: (AutoPagerize) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\igiofjhpmpihnifddepnpngfjhkfenbp [2014-04-14]
CHR Extension: (Downloads) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfchnphgogjhineanplmfkofljiagjfb [2014-02-22]
CHR Extension: (Preklada? Google pre Google+) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfppgkomfopklagggkjiaddgndkgopgl [2014-02-22]
CHR Extension: (Tlačidlo Google +1) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgoepmocgafhnchmokaimcmlojpnlkhp [2014-02-22]
CHR Extension: (*Ultimate Football Results*) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnpobggldcjebejmndignliobeifocj [2014-02-22]
CHR Extension: (World Clock) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\klalbmkcicglbbedmdlkidhkiaelhdog [2014-02-22]
CHR Extension: (Earth TV) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpnmncjdpbehanjnmpmodhbheohhcpdn [2014-02-22]
CHR Extension: (Satellite Finder) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\laadpcgmfdkmmkhnhoaalgbjoahkjlpn [2014-02-22]
CHR Extension: (Watch Live Football Streaming Online For Free) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\legocaboiicfjgofnmlgnogcngeokmga [2014-02-22]
CHR Extension: (Vyhled?v?n? na Ulo?to.cz) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmkajlpofgoacniacbaappohkglliini [2014-02-22]
CHR Extension: (Twoo Notifications) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\mggafhpkgkfebnjfbiefbbbicikgchlf [2014-02-22]
CHR Extension: (Hodiny) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjocghlclkpgheifflemilcnblodjohg [2014-02-22]
CHR Extension: (Pe?a?enka Google) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-08]
CHR Extension: (9-Ball Pool) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\oafdgpdaojfjhcolidaakebmnbibdbpb [2014-02-22]
CHR Extension: (Live Sports) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\oamjbefinnglappklpabmhpbcdiephoo [2014-02-22]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2014-02-22]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-02-22]
CHR Extension: (Desktop) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pafkcccccfmnjkhhndjfffifnflhkpdo [2014-02-22]
CHR Extension: (Gmail) - C:\Users\Kostík a Irenočka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-08]
CHR HKCU\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Kostík a Irenočka\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKLM-x32\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Kostík a Irenočka\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-01]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-11] (SUPERAntiSpyware.com)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-01] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [106488 2014-07-01] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [247768 2013-04-02] (CyberLink)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-05-27] (Freemake) [File not signed]
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-03-04] (Hewlett-Packard Company) [File not signed]
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S4 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2009-07-02] () [File not signed]
R2 SpyEmrgSrv; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe [3284008 2013-03-11] (NETGATE Technologies s.r.o.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
R2 WinArchiver Service; C:\Program Files\WinArchiver\WAService.exe [257336 2014-06-19] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
S2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [X]

==================== Drivers (Whitelisted) ====================

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-01] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-07-01] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-01] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [448400 2014-07-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-01] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-07-01] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [426848 2014-07-01] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-01] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-01] ()
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider)
R3 dvdfab; C:\Windows\System32\drivers\dvdfab.sys [79232 2011-08-15] (Fengtao Software Inc.)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [17480 2013-03-07] ()
S3 epmntdrv; C:\WINDOWS\SysWOW64\epmntdrv.sys [14920 2013-03-07] ()
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [9800 2013-03-07] ()
S3 EuGdiDrv; C:\WINDOWS\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] ()
R1 Eve; C:\Windows\system32\DRIVERS\eve.sys [41304 2014-01-23] ()
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2010-07-16] (CACE Technologies, Inc.)
R3 PciSPorts; C:\Windows\system32\DRIVERS\PciSPorts.sys [122880 2008-12-19] ()
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SpyEmrg; C:\Windows\System32\Drivers\spyemrg.sys [17240 2011-04-21] (NETGATE Technologies s.r.o.)
S3 SpyEmrgAccess; C:\Windows\System32\Drivers\spyemrg_access.sys [24408 2011-04-21] (NETGATE Technologies s.r.o.)
R3 SpyEmrgGuard; C:\Windows\System32\Drivers\spyemrg_guard.sys [18776 2011-04-21] (NETGATE Technologies s.r.o.)
R3 TBS6928_64; C:\Windows\system32\DRIVERS\TBS6928_64.sys [1934792 2012-12-19] (www.tbsdtv.com)
R0 waemu; C:\Windows\System32\Drivers\waemu.sys [142096 2014-06-19] (Power Software Ltd)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
U3 DfSdkS;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-02 18:29 - 2014-07-02 18:30 - 00026512 _____ () C:\Users\Kostík a Irenočka\Desktop\FRST.txt
2014-07-02 18:29 - 2014-07-02 18:29 - 00000000 ____D () C:\Users\Kostík a Irenočka\Desktop\FRST-OlderVersion
2014-07-02 18:29 - 2014-07-02 18:29 - 00000000 ____D () C:\FRST
2014-07-02 18:28 - 2014-07-02 18:29 - 02083840 _____ (Farbar) C:\Users\Kostík a Irenočka\Desktop\FRST64.exe
2014-07-02 17:30 - 2014-07-02 18:24 - 00000000 ____D () C:\AdwCleaner
2014-07-02 17:29 - 2014-07-02 17:29 - 01346519 _____ () C:\Users\Kostík a Irenočka\Desktop\adwcleaner 3.214.exe
2014-07-02 17:23 - 2014-07-02 17:26 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Spy Emergency
2014-07-02 17:23 - 2014-07-02 17:23 - 00000965 _____ () C:\Users\Public\Desktop\Spy Emergency.lnk
2014-07-02 17:23 - 2014-07-02 17:23 - 00000965 _____ () C:\ProgramData\Desktop\Spy Emergency.lnk
2014-07-02 17:23 - 2014-07-02 17:23 - 00000000 ____D () C:\ProgramData\NETGATE
2014-07-02 17:23 - 2014-07-02 17:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Emergency
2014-07-02 17:23 - 2011-04-21 11:31 - 00024408 _____ (NETGATE Technologies s.r.o.) C:\WINDOWS\system32\Drivers\spyemrg_access.sys
2014-07-02 17:23 - 2011-04-21 11:31 - 00018776 _____ (NETGATE Technologies s.r.o.) C:\WINDOWS\system32\Drivers\spyemrg_guard.sys
2014-07-02 17:23 - 2011-04-21 11:31 - 00017240 _____ (NETGATE Technologies s.r.o.) C:\WINDOWS\system32\Drivers\spyemrg.sys
2014-07-02 17:20 - 2014-07-02 18:25 - 00000658 _____ () C:\WINDOWS\PFRO.log
2014-07-02 17:04 - 2014-07-02 17:35 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-07-02 17:04 - 2014-07-02 17:05 - 00000000 ____D () C:\Program Files\HitmanPro
2014-07-02 17:04 - 2014-07-02 17:04 - 00001869 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2014-07-02 17:04 - 2014-07-02 17:04 - 00001869 _____ () C:\ProgramData\Desktop\HitmanPro.lnk
2014-07-02 17:04 - 2014-07-02 17:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2014-07-02 17:02 - 2014-07-02 17:02 - 00000000 ____D () C:\WINDOWS\SysWOW64\Adobe
2014-07-02 16:18 - 2014-07-02 17:46 - 00053373 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-01 17:00 - 2014-07-01 17:00 - 00448400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdisFlt.sys
2014-07-01 17:00 - 2014-07-01 17:00 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-06-29 10:54 - 2014-06-29 10:54 - 00001965 _____ () C:\Users\Kostík a Irenočka\Desktop\dreamboxEDIT.lnk
2014-06-29 10:54 - 2014-06-29 10:54 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dreamboxEDIT
2014-06-29 10:54 - 2014-06-29 10:54 - 00000000 ____D () C:\Program Files (x86)\dreamboxEDIT
2014-06-28 12:46 - 2014-06-28 12:46 - 00001252 _____ () C:\Users\Kostík a Irenočka\Desktop\ConvertXToDVD 5.lnk
2014-06-27 18:02 - 2014-06-27 18:02 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\25072
2014-06-27 17:57 - 2014-06-27 17:57 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-27 17:57 - 2014-06-27 17:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-27 17:48 - 2014-06-27 17:48 - 00000933 _____ () C:\Users\Kostík a Irenočka\Desktop\BitTorrent.lnk
2014-06-27 17:48 - 2014-06-27 17:48 - 00000913 _____ () C:\Users\Kostík a Irenočka\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2014-06-27 17:42 - 2014-06-27 17:42 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\20977
2014-06-26 17:19 - 2014-06-26 17:19 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-26 17:19 - 2014-06-26 17:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-26 17:16 - 2014-06-26 17:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinArchiver
2014-06-26 17:16 - 2014-06-19 13:21 - 00142096 _____ (Power Software Ltd) C:\WINDOWS\system32\Drivers\waemu.sys
2014-06-26 17:02 - 2014-06-26 17:02 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\26046
2014-06-22 13:00 - 2014-06-22 13:00 - 00012581 _____ () C:\ProgramData\mxnhytee.feu
2014-06-22 10:51 - 2014-06-22 10:51 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Local\CrashRpt
2014-06-22 10:50 - 2014-06-22 12:51 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Local\SmartDVB
2014-06-21 17:00 - 2014-07-02 17:35 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2014-06-21 16:46 - 2014-06-21 16:46 - 00000921 _____ () C:\Users\Public\Desktop\AIMP3.lnk
2014-06-21 16:46 - 2014-06-21 16:46 - 00000921 _____ () C:\ProgramData\Desktop\AIMP3.lnk
2014-06-21 16:46 - 2014-06-21 16:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
2014-06-21 15:39 - 2014-06-21 15:39 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\8058
2014-06-14 13:40 - 2014-05-31 08:27 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2014-06-14 13:40 - 2014-05-15 00:47 - 04720640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-06-14 13:40 - 2014-05-13 09:01 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-06-14 13:40 - 2014-05-13 07:07 - 02844160 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-06-14 13:40 - 2014-05-13 06:41 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-06-14 13:40 - 2014-05-13 06:27 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-06-14 13:40 - 2014-05-13 06:26 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-06-14 13:40 - 2014-05-13 05:59 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-06-14 13:40 - 2014-05-13 05:41 - 01118720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-06-14 13:40 - 2014-05-13 05:31 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-06-14 13:40 - 2014-05-05 08:11 - 00440664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2014-06-14 13:40 - 2014-05-05 08:11 - 00418136 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2014-06-14 13:40 - 2014-05-05 08:11 - 00089944 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2014-06-14 13:40 - 2014-05-05 08:11 - 00027480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2014-06-14 13:40 - 2014-05-03 13:29 - 01726224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-06-14 13:40 - 2014-05-03 11:20 - 01473080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-06-14 13:40 - 2014-05-03 09:41 - 04190208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-06-14 13:40 - 2014-05-03 09:40 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2014-06-14 13:40 - 2014-05-03 07:36 - 00997888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-06-14 13:40 - 2014-05-03 07:19 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2014-06-14 13:40 - 2014-05-03 07:08 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2014-06-14 13:40 - 2014-05-03 07:07 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedyn.dll
2014-06-14 13:40 - 2014-05-03 06:46 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncobjapi.dll
2014-06-14 13:40 - 2014-05-03 06:37 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2014-06-14 13:40 - 2014-05-03 06:37 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedyn.dll
2014-06-14 13:40 - 2014-05-03 05:30 - 02641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-06-14 13:40 - 2014-05-03 05:27 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-06-14 13:40 - 2014-05-03 01:26 - 00050745 _____ () C:\WINDOWS\system32\srms.dat
2014-06-14 13:40 - 2014-05-01 15:19 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-06-14 13:40 - 2014-05-01 07:44 - 01025536 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-06-14 13:40 - 2014-05-01 07:34 - 03464192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-06-14 13:40 - 2014-04-30 09:11 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-06-14 13:40 - 2014-04-30 08:43 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2014-06-14 13:40 - 2014-04-30 08:41 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-06-14 13:40 - 2014-04-30 08:41 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2014-06-14 13:40 - 2014-04-30 08:41 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2014-06-14 13:40 - 2014-04-30 08:10 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-06-14 13:40 - 2014-04-30 07:45 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2014-06-14 13:40 - 2014-04-30 06:48 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2014-06-14 13:40 - 2014-04-30 06:24 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2014-06-14 13:40 - 2014-04-30 06:23 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2014-06-14 13:40 - 2014-04-30 06:23 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2014-06-14 13:40 - 2014-04-30 06:23 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2014-06-14 13:40 - 2014-04-30 06:21 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-06-14 13:40 - 2014-04-30 06:14 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-06-14 13:40 - 2014-04-30 05:59 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-06-14 13:40 - 2014-04-30 05:46 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2014-06-14 13:40 - 2014-04-30 05:46 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2014-06-14 13:40 - 2014-04-30 05:46 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2014-06-14 13:40 - 2014-04-30 05:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2014-06-14 13:40 - 2014-04-30 05:42 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2014-06-14 13:40 - 2014-04-29 00:40 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2014-06-14 13:40 - 2014-04-27 00:03 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-06-14 13:40 - 2014-04-26 22:14 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-06-14 13:40 - 2014-04-26 20:41 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfg.exe
2014-06-14 13:40 - 2014-04-26 20:22 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-06-14 13:40 - 2014-04-26 20:04 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2014-06-14 13:40 - 2014-04-26 19:36 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2014-06-14 13:40 - 2014-04-26 18:39 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2014-06-14 13:40 - 2014-04-14 11:37 - 02125344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2014-06-14 13:40 - 2014-04-14 10:08 - 01797896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2014-06-14 13:40 - 2014-04-14 07:18 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2014-06-14 13:40 - 2014-04-09 08:11 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2014-06-14 13:40 - 2014-04-09 07:20 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2014-06-14 13:39 - 2014-06-14 13:39 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-06-14 13:26 - 2014-07-02 17:38 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-06-14 13:26 - 2014-06-26 17:15 - 00003802 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-06-14 13:22 - 2014-06-14 13:22 - 00002703 _____ () C:\Users\Kostík a Irenočka\Desktop\The Bat! E-Mail Client.lnk
2014-06-14 13:21 - 2014-06-14 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Bat! E-Mail
2014-06-14 13:10 - 2014-06-14 13:10 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\2692
2014-06-14 13:04 - 2014-06-21 15:52 - 00001118 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-06-14 13:04 - 2014-06-21 15:52 - 00001106 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-06-14 13:04 - 2014-06-21 15:52 - 00001106 _____ () C:\ProgramData\Desktop\TeamViewer 9.lnk
2014-06-14 13:04 - 2014-06-14 13:04 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-14 13:02 - 2014-06-14 13:02 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\TeamViewer
2014-06-14 13:00 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-06-14 13:00 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-06-14 13:00 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-06-14 13:00 - 2014-02-06 12:00 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-06-14 13:00 - 2014-02-06 11:52 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-06-14 12:59 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-06-14 12:59 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-06-14 12:59 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-06-14 12:59 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-06-14 12:59 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-06-14 12:59 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-06-14 12:59 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-06-14 12:59 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-06-14 12:59 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-06-14 12:59 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-06-14 12:59 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-06-14 12:59 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-06-14 12:59 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-06-14 12:59 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-06-14 12:59 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-06-14 12:59 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-06-14 12:59 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-06-14 12:59 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-06-14 12:59 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-06-14 12:59 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-06-14 12:59 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-06-14 12:59 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-06-14 12:59 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-06-14 12:59 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-06-14 12:59 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-06-14 12:59 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-06-14 12:59 - 2014-02-06 13:30 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-14 12:59 - 2014-02-06 13:07 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-06-14 12:59 - 2014-02-06 13:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-14 12:59 - 2014-02-06 12:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-06-14 12:59 - 2014-02-06 12:49 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-06-14 12:59 - 2014-02-06 12:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-06-14 12:59 - 2014-02-06 12:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-06-14 12:59 - 2014-02-06 11:52 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-06-14 12:59 - 2014-02-06 11:47 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-06-14 12:59 - 2014-02-06 11:25 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-06-14 12:58 - 2014-05-10 05:46 - 02151424 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-06-14 12:58 - 2014-05-10 05:22 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-06-14 12:58 - 2014-05-03 09:14 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-06-14 12:58 - 2014-05-03 06:21 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-14 12:58 - 2014-05-03 06:07 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-14 12:58 - 2014-05-03 05:41 - 00921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-06-14 12:58 - 2014-05-03 05:38 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-06-14 12:57 - 2014-05-09 01:06 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2014-06-14 12:57 - 2014-04-03 09:59 - 02518872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-06-14 12:57 - 2014-04-03 09:59 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-06-14 12:56 - 2014-04-30 13:16 - 01336648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-06-14 12:56 - 2014-04-30 05:51 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2014-06-14 12:55 - 2014-05-19 08:31 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvcfg.exe
2014-06-14 12:55 - 2014-05-19 08:21 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2014-06-14 12:55 - 2014-05-19 07:23 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvinst.exe
2014-06-14 12:55 - 2014-05-05 06:02 - 03360256 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-06-14 12:54 - 2014-05-01 15:31 - 03048904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2014-06-14 12:54 - 2014-05-01 15:31 - 00055328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2014-06-14 12:54 - 2014-05-01 09:14 - 03118080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2014-06-14 12:54 - 2014-05-01 09:05 - 02861056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2014-06-14 12:54 - 2014-05-01 08:51 - 02344448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2014-06-14 12:54 - 2014-05-01 07:24 - 02834944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2014-06-14 12:54 - 2014-04-30 06:43 - 01975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2014-06-14 12:54 - 2014-04-30 06:26 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2014-06-14 12:54 - 2014-04-30 05:47 - 01509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2014-06-14 12:40 - 2014-06-14 12:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-07 10:51 - 2014-05-07 14:59 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-06-07 10:50 - 2014-06-07 10:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-07 10:50 - 2014-05-07 15:02 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-06-07 10:50 - 2014-05-07 14:59 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-06-07 10:50 - 2014-05-07 14:58 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-06-06 12:47 - 2014-06-06 12:47 - 04558848 _____ (Google Inc.) C:\WINDOWS\SysWOW64\GPhotos.scr
2014-06-04 13:58 - 2014-06-04 13:58 - 00001888 _____ () C:\Users\Kostík a Irenočka\Desktop\ICQ 8.2.7046.lnk
2014-06-04 13:58 - 2014-06-04 13:58 - 00001746 _____ () C:\Users\Kostík a Irenočka\AppData\Roaming\Microsoft\Windows\Start Menu\ICQ.lnk
2014-06-04 13:58 - 2014-06-04 13:58 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\ICQM
2014-06-02 09:57 - 2014-06-02 10:06 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)

==================== One Month Modified Files and Folders =======

2014-07-02 18:30 - 2014-07-02 18:29 - 00026512 _____ () C:\Users\Kostík a Irenočka\Desktop\FRST.txt
2014-07-02 18:29 - 2014-07-02 18:29 - 00000000 ____D () C:\Users\Kostík a Irenočka\Desktop\FRST-OlderVersion
2014-07-02 18:29 - 2014-07-02 18:29 - 00000000 ____D () C:\FRST
2014-07-02 18:29 - 2014-07-02 18:28 - 02083840 _____ (Farbar) C:\Users\Kostík a Irenočka\Desktop\FRST64.exe
2014-07-02 18:29 - 2014-02-22 12:48 - 00002215 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-02 18:29 - 2014-02-22 12:48 - 00002215 _____ () C:\ProgramData\Desktop\Google Chrome.lnk
2014-07-02 18:28 - 2014-02-22 12:47 - 00000996 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-02 18:28 - 2014-01-08 19:59 - 00004034 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{50FE7E49-E7FD-42A5-A351-FD970AB85E5C}
2014-07-02 18:27 - 2014-01-08 15:02 - 00000000 __RDO () C:\Users\Kostík a Irenočka\SkyDrive
2014-07-02 18:26 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-02 18:25 - 2014-07-02 17:20 - 00000658 _____ () C:\WINDOWS\PFRO.log
2014-07-02 18:25 - 2014-01-08 14:39 - 00000000 ____D () C:\Users\Kostík a Irenočka
2014-07-02 18:24 - 2014-07-02 17:30 - 00000000 ____D () C:\AdwCleaner
2014-07-02 18:13 - 2014-02-22 12:47 - 00001000 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-02 18:09 - 2014-01-08 08:18 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1848220903-3089343494-3484960918-1001
2014-07-02 18:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-07-02 17:46 - 2014-07-02 16:18 - 00053373 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-02 17:38 - 2014-06-14 13:26 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-07-02 17:35 - 2014-07-02 17:04 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-07-02 17:35 - 2014-06-21 17:00 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2014-07-02 17:29 - 2014-07-02 17:29 - 01346519 _____ () C:\Users\Kostík a Irenočka\Desktop\adwcleaner 3.214.exe
2014-07-02 17:26 - 2014-07-02 17:23 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Spy Emergency
2014-07-02 17:23 - 2014-07-02 17:23 - 00000965 _____ () C:\Users\Public\Desktop\Spy Emergency.lnk
2014-07-02 17:23 - 2014-07-02 17:23 - 00000965 _____ () C:\ProgramData\Desktop\Spy Emergency.lnk
2014-07-02 17:23 - 2014-07-02 17:23 - 00000000 ____D () C:\ProgramData\NETGATE
2014-07-02 17:23 - 2014-07-02 17:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Emergency
2014-07-02 17:19 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-07-02 17:05 - 2014-07-02 17:04 - 00000000 ____D () C:\Program Files\HitmanPro
2014-07-02 17:04 - 2014-07-02 17:04 - 00001869 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2014-07-02 17:04 - 2014-07-02 17:04 - 00001869 _____ () C:\ProgramData\Desktop\HitmanPro.lnk
2014-07-02 17:04 - 2014-07-02 17:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2014-07-02 17:02 - 2014-07-02 17:02 - 00000000 ____D () C:\WINDOWS\SysWOW64\Adobe
2014-07-02 16:31 - 2014-01-08 19:53 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Skype
2014-07-02 16:21 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-07-01 17:52 - 2014-03-12 14:08 - 00000000 ____D () C:\Komplet záloha VTI - ak náhodou sa niečo vo VU+ Solo2 poškodí
2014-07-01 17:02 - 2014-01-08 15:46 - 00000000 ____D () C:\Program Files\WinRAR
2014-07-01 17:01 - 2014-06-01 11:17 - 00001988 _____ () C:\Users\Public\Desktop\avast! Internet Security.lnk
2014-07-01 17:01 - 2014-06-01 11:17 - 00001988 _____ () C:\ProgramData\Desktop\avast! Internet Security.lnk
2014-07-01 17:00 - 2014-07-01 17:00 - 00448400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdisFlt.sys
2014-07-01 17:00 - 2014-07-01 17:00 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-07-01 17:00 - 2014-06-01 11:20 - 00092008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
2014-07-01 17:00 - 2014-06-01 11:20 - 00029208 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-07-01 17:00 - 2014-06-01 11:17 - 01041168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2014-07-01 17:00 - 2014-06-01 11:17 - 00426848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-07-01 17:00 - 2014-06-01 11:17 - 00224896 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-07-01 17:00 - 2014-06-01 11:17 - 00093568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2014-07-01 17:00 - 2014-06-01 11:17 - 00079184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-07-01 17:00 - 2014-06-01 11:17 - 00065776 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-07-01 17:00 - 2014-06-01 11:17 - 00028184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2014-07-01 17:00 - 2014-06-01 11:17 - 00003924 _____ () C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-07-01 17:00 - 2014-06-01 11:16 - 00307344 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-07-01 16:57 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-06-29 10:54 - 2014-06-29 10:54 - 00001965 _____ () C:\Users\Kostík a Irenočka\Desktop\dreamboxEDIT.lnk
2014-06-29 10:54 - 2014-06-29 10:54 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dreamboxEDIT
2014-06-29 10:54 - 2014-06-29 10:54 - 00000000 ____D () C:\Program Files (x86)\dreamboxEDIT
2014-06-29 09:25 - 2014-01-09 19:40 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\The Bat!
2014-06-28 12:47 - 2014-01-08 21:00 - 00099384 _____ () C:\Users\Kostík a Irenočka\AppData\Roaming\inst.exe
2014-06-28 12:47 - 2014-01-08 21:00 - 00082816 _____ (VSO Software) C:\Users\Kostík a Irenočka\AppData\Roaming\pcouffin.sys
2014-06-28 12:47 - 2014-01-08 21:00 - 00007859 _____ () C:\Users\Kostík a Irenočka\AppData\Roaming\pcouffin.cat
2014-06-28 12:47 - 2014-01-08 21:00 - 00000055 _____ () C:\Users\Kostík a Irenočka\AppData\Roaming\pcouffin.log
2014-06-28 12:47 - 2014-01-08 21:00 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Vso
2014-06-28 12:46 - 2014-06-28 12:46 - 00001252 _____ () C:\Users\Kostík a Irenočka\Desktop\ConvertXToDVD 5.lnk
2014-06-28 12:46 - 2014-01-08 20:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2014-06-28 12:46 - 2014-01-08 20:57 - 00000000 ____D () C:\Program Files (x86)\VSO
2014-06-28 12:45 - 2014-01-08 16:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2014-06-28 12:45 - 2014-01-08 16:09 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-06-27 18:02 - 2014-06-27 18:02 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\25072
2014-06-27 18:02 - 2014-05-24 10:02 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Local\CrashDumps
2014-06-27 18:02 - 2014-03-08 12:33 - 00000000 ____D () C:\Program Files (x86)\DVDFab 9
2014-06-27 17:57 - 2014-06-27 17:57 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-27 17:57 - 2014-06-27 17:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-27 17:49 - 2014-05-18 10:39 - 00000000 ____D () C:\Program Files\WinArchiver
2014-06-27 17:49 - 2014-03-01 15:33 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\BitTorrent
2014-06-27 17:48 - 2014-06-27 17:48 - 00000933 _____ () C:\Users\Kostík a Irenočka\Desktop\BitTorrent.lnk
2014-06-27 17:48 - 2014-06-27 17:48 - 00000913 _____ () C:\Users\Kostík a Irenočka\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2014-06-27 17:44 - 2014-03-21 13:43 - 00001011 _____ () C:\Users\Public\Desktop\DVDFab 9.lnk
2014-06-27 17:44 - 2014-03-21 13:43 - 00001011 _____ () C:\ProgramData\Desktop\DVDFab 9.lnk
2014-06-27 17:44 - 2014-03-21 13:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab 9
2014-06-27 17:42 - 2014-06-27 17:42 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\20977
2014-06-26 17:19 - 2014-06-26 17:19 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-26 17:19 - 2014-06-26 17:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-26 17:19 - 2014-01-17 17:29 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Notepad++
2014-06-26 17:19 - 2014-01-17 17:29 - 00000000 ____D () C:\Program Files (x86)\Notepad++
2014-06-26 17:16 - 2014-06-26 17:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinArchiver
2014-06-26 17:15 - 2014-06-14 13:26 - 00003802 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-06-26 17:02 - 2014-06-26 17:02 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\26046
2014-06-24 16:15 - 2014-01-08 21:15 - 00000000 ____D () C:\dvbdream
2014-06-22 13:00 - 2014-06-22 13:00 - 00012581 _____ () C:\ProgramData\mxnhytee.feu
2014-06-22 12:51 - 2014-06-22 10:50 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Local\SmartDVB
2014-06-22 10:51 - 2014-06-22 10:51 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Local\CrashRpt
2014-06-21 16:54 - 2013-11-14 14:42 - 01745984 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-21 16:54 - 2013-11-14 14:25 - 00738682 _____ () C:\WINDOWS\system32\perfh005.dat
2014-06-21 16:54 - 2013-11-14 14:25 - 00151404 _____ () C:\WINDOWS\system32\perfc005.dat
2014-06-21 16:47 - 2014-01-08 18:16 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\AIMP3
2014-06-21 16:46 - 2014-06-21 16:46 - 00000921 _____ () C:\Users\Public\Desktop\AIMP3.lnk
2014-06-21 16:46 - 2014-06-21 16:46 - 00000921 _____ () C:\ProgramData\Desktop\AIMP3.lnk
2014-06-21 16:46 - 2014-06-21 16:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
2014-06-21 16:46 - 2014-01-08 18:16 - 00000000 ____D () C:\Program Files (x86)\AIMP3
2014-06-21 15:52 - 2014-06-14 13:04 - 00001118 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-06-21 15:52 - 2014-06-14 13:04 - 00001106 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-06-21 15:52 - 2014-06-14 13:04 - 00001106 _____ () C:\ProgramData\Desktop\TeamViewer 9.lnk
2014-06-21 15:39 - 2014-06-21 15:39 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\8058
2014-06-19 13:21 - 2014-06-26 17:16 - 00142096 _____ (Power Software Ltd) C:\WINDOWS\system32\Drivers\waemu.sys
2014-06-15 16:08 - 2014-02-22 12:47 - 00003972 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-15 16:08 - 2014-02-22 12:47 - 00003736 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-14 21:59 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-06-14 16:03 - 2014-01-08 16:09 - 00260696 _____ () C:\WINDOWS\system32\unrar64.dll
2014-06-14 16:03 - 2014-01-08 16:09 - 00218200 _____ () C:\WINDOWS\SysWOW64\unrar.dll
2014-06-14 14:56 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-06-14 13:48 - 2013-08-22 16:44 - 00493160 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-06-14 13:46 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-06-14 13:46 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-06-14 13:46 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-06-14 13:46 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-06-14 13:45 - 2014-01-08 16:18 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-14 13:44 - 2014-01-08 09:22 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-06-14 13:41 - 2014-01-08 09:22 - 95414520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-06-14 13:41 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-06-14 13:39 - 2014-06-14 13:39 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-06-14 13:23 - 2014-01-09 19:39 - 00000000 ____D () C:\Program Files (x86)\The Bat!
2014-06-14 13:22 - 2014-06-14 13:22 - 00002703 _____ () C:\Users\Kostík a Irenočka\Desktop\The Bat! E-Mail Client.lnk
2014-06-14 13:21 - 2014-06-14 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Bat! E-Mail
2014-06-14 13:15 - 2014-06-01 13:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-14 13:10 - 2014-06-14 13:10 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\2692
2014-06-14 13:04 - 2014-06-14 13:04 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-14 13:02 - 2014-06-14 13:02 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\TeamViewer
2014-06-14 12:40 - 2014-06-14 12:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-08 21:15 - 2014-01-08 20:09 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\vlc
2014-06-07 10:51 - 2014-01-08 16:16 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-07 10:50 - 2014-06-07 10:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-07 10:50 - 2014-01-08 16:15 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-06 12:47 - 2014-06-06 12:47 - 04558848 _____ (Google Inc.) C:\WINDOWS\SysWOW64\GPhotos.scr
2014-06-04 17:59 - 2014-03-01 16:04 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-06-04 13:58 - 2014-06-04 13:58 - 00001888 _____ () C:\Users\Kostík a Irenočka\Desktop\ICQ 8.2.7046.lnk
2014-06-04 13:58 - 2014-06-04 13:58 - 00001746 _____ () C:\Users\Kostík a Irenočka\AppData\Roaming\Microsoft\Windows\Start Menu\ICQ.lnk
2014-06-04 13:58 - 2014-06-04 13:58 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\ICQM
2014-06-04 13:58 - 2014-05-18 10:56 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
2014-06-02 10:06 - 2014-06-02 09:57 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-02 09:57 - 2014-05-24 10:40 - 00091352 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-06-02 09:07 - 2014-06-01 13:26 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-02 09:07 - 2014-06-01 13:26 - 00001151 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-02 09:07 - 2014-06-01 13:26 - 00001151 _____ () C:\ProgramData\Desktop\Mozilla Firefox.lnk
2014-06-02 09:07 - 2014-01-09 17:25 - 00001384 _____ () C:\Users\Kostík a Irenočka\Desktop\Internet Explorer 11.lnk

Some content of TEMP:
====================
C:\Users\Kostík a Irenočka\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-01 17:22

==================== End Of Log ============================

Re: Sken AdwCleanerom

Napsal: 02 črc 2014 17:34
od kostik123456
Tady je ještě druhej log -

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-07-2014
Ran by Kostík a Irenočka at 2014-07-02 18:30:44
Running from C:\Users\Kostík a Irenočka\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Spy Emergency (Disabled - Up to date) {A77BE48A-B776-F747-8A39-C3ECDC95366D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
AC3Filter 2.6.0b (HKLM-x32\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.139 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.55.1350, 16.06.2014 - AIMP DevTeam)
AMD Catalyst Control Center (x32 Version: 2014.0423.449.6734 - Advanced Micro Devices, Inc.) Hidden
Ashampoo Burning Studio 14 v.14.0.1 (HKLM-x32\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo Movie Studio Pro (HKLM-x32\...\{91B33C97-EC92-2CD7-E21F-4FEF6AA572AA}_is1) (Version: 1.0.17 - Ashampoo GmbH & Co. KG)
Ashampoo Slideshow Studio HD 3 (HKLM-x32\...\{91B33C97-0CE8-6ABD-1CF4-0DAF2CCF492A}_is1) (Version: 3.0.5 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 11 v.11.0.1 (HKLM-x32\...\{4209F371-8D72-8119-66FA-897D2D41E27F}_is1) (Version: 11.0.1 - Ashampoo GmbH & Co. KG)
avast! Internet Security (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
AVS Video Converter 8.5 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: 8.5.1.551 - Online Media Technologies Ltd.)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
BitTorrent (HKCU\...\BitTorrent) (Version: 7.9.2.32087 - BitTorrent Inc.)
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.67.1076 - AB Team, d.o.o.)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (HKLM-x32\...\{8B1A559A-FB9D-42F5-A8A7-2F132CF28414}) (Version: 1.00.0000 - )
Catalyst Control Center InstallProxy (x32 Version: 2014.0423.449.6734 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0423.449.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0423.0448.6734 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0423.449.6734 - Advanced Micro Devices, Inc.) Hidden
Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5202.52 - CyberLink Corp.)
CyberLink PowerDVD 10 (x32 Version: 10.0.5202.52 - CyberLink Corp.) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{2A16B95F-7377-410A-B961-EFD9394E1AF3}) (Version: - Microsoft)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4200_Software_Min (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden
DogSettings version 1.6.0.0 (HKLM-x32\...\{7A03618C-AD50-4BDC-BA2E-A172A4410C73}_is1) (Version: 1.6.0.0 - DogStrike)
dreamboxEDIT -- The one and only settings editor for your Dreambox (HKLM-x32\...\dreamboxEDIT) (Version: - )
DVB Dream version 2.6 (HKLM-x32\...\DVB Dream_is1) (Version: - )
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
DVDFab 8.2.3.0 (21/12/2013) Qt (HKLM-x32\...\DVDFab 8 Qt_is1) (Version: - Fengtao Software Inc.)
DVDFab 9.1.5.6 (27/06/2014) (HKLM-x32\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
DVDFab Passkey 8.1.0.4 (04/09/2013) (HKLM-x32\...\DVDFab Passkey 8_is1) (Version: - Fengtao Software Inc.)
EaseUS Partition Master 10.0 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
F4200 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
Free Video Call Recorder for Skype version 1.2.12.327 (HKLM-x32\...\Free Video Call Recorder for Skype_is1) (Version: 1.2.12.327 - DVDVideoSoft Ltd.)
Freemake Video Converter verzia 4.1.4 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.4 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
HD Pack 2.4 (HKLM\...\HD Pack) (Version: - )
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.220 - SurfRight B.V.)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet F4200 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{8C925017-72A8-4C4A-AF21-84901E26638F}) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
ICQ 8.2 (verze 7046) (HKCU\...\ICQ) (Version: 8.2.7046.0 - ICQ)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
ImTOO Blu-ray Creator 2 (HKCU\...\ImTOO Blu-ray Creator 2) (Version: 2.0.4.20131129 - ImTOO)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
K-Lite Codec Pack 10.6.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.6.0 - )
KMP Service (HKLM-x32\...\4F6D5E84-5826-4394-9F40-3A9A19165651_is1) (Version: - KMP)
LG Burning Tool (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.2.6009 - CyberLink Corp.)
LG Burning Tool (x32 Version: 6.2.6009 - CyberLink Corp.) Hidden
LG CyberLink BD Advisor (HKLM-x32\...\{2D2D8FE2-605C-4D3C-B706-36E981E7EEF0}) (Version: 2.0.4606 - CyberLink Corp.)
LG CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3624 - CyberLink Corp.)
LG CyberLink LabelPrint (x32 Version: 2.5.3624 - CyberLink Corp.) Hidden
LG CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2820 - CyberLink Corp.)
LG CyberLink Media Suite (x32 Version: 8.0.2820 - CyberLink Corp.) Hidden
LG CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1622_37397b - CyberLink Corp.)
LG CyberLink MediaEspresso (x32 Version: 6.5.1622_37397b - CyberLink Corp.) Hidden
LG CyberLink MediaShow (HKLM-x32\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 4.1.3402 - CyberLink Corp.)
LG CyberLink MediaShow (x32 Version: 4.1.3402 - CyberLink Corp.) Hidden
LG CyberLink PowerProducer (HKLM-x32\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.0.2.2820a - CyberLink Corp.)
LG CyberLink PowerProducer (x32 Version: 5.0.2.2820a - CyberLink Corp.) Hidden
LG CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3718 - CyberLink Corp.)
LG CyberLink YouCam (x32 Version: 2.0.3718 - CyberLink Corp.) Hidden
LG Tool Kit (HKLM-x32\...\{6179550A-3E7C-499E-BCC9-9E8113E0A285}) (Version: 10.01.0712.01 - )
LightScribe System Software (HKLM-x32\...\{E0E55FC1-C53D-4F8D-B14B-B59C312747C8}) (Version: 1.18.22.2 - LightScribe)
LimeWire 4.18.8 (HKLM-x32\...\LimeWire) (Version: 4.18.8 - Lime Wire, LLC)
Malwarebytes Anti-Malware verze 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft Office Access MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden
Mozilla Firefox 30.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 cs)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
Natura Sound Therapy (HKLM-x32\...\Natura Sound Therapy) (Version: 3.00 - Blissive Software)
Nero 6 Ultra Edition (HKLM-x32\...\Nero - Burning Rom!UninstallKey) (Version: - )
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.48.0 - Nokia)
Nokia Suite (x32 Version: 3.8.48.0 - Nokia) Hidden
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.7 - Notepad++ Team)
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PCIe to Peripheral Adaptor (HKLM\...\MosChip Semiconductor Technology Ltd) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Relaxační hudba - Relax Sound Software 1.0 (HKLM-x32\...\Relaxační hudba - Relax Sound Software_is1) (Version: - PS Media s.r.o.)
Revo Uninstaller Pro 3.0.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.8 - VS Revo Group, Ltd.)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.2.15747.10003 - Microsoft Corporation)
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Spy Emergency (HKLM\...\Spy Emergency_is1) (Version: - NETGATE Technologies s.r.o.)
StartIsBack+ (HKCU\...\StartIsBack) (Version: 1.5.1 - startisback.com)
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.0 - IObit)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TBS 6928 DVBS/S2 &CI BDA driver 1.0.1.6 for windows (HKLM\...\TBS 6928 DVBS/S2 &CI BDA driver for windows_is1) (Version: - TBS Technologies)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29480 - TeamViewer)
The Bat! Professional v6.4.6 (HKLM-x32\...\{F2A4C568-45FB-49DE-BEF3-304E870E3A2F}) (Version: 6.4.6 - Ritlabs)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Ultra Video Joiner 6.3.0506 (HKLM-x32\...\Ultra Video Joiner_is1) (Version: - Aone Software)
UltraISO Premium V9.61 (HKLM-x32\...\UltraISO_is1) (Version: - )
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{FEF4C57D-0975-4D3C-ACC7-DCD038C3788F}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{84B191B5-5319-463A-A305-8C4D53B1D20A}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{DB0B0CDF-77EC-47B0-94E2-4738573A1E58}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{1AA82E2E-7DB7-4C70-910C-BBB657A6B3A5}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{79C725A1-3964-421C-A528-78C1C083C7C7}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{EBD18DE5-BC84-4B57-9A30-097044871F9A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{07DC9C6C-E916-4F42-8677-716930ED0393}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{6E760BBA-B83F-4C2D-918F-5F91EF6C9861}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{90140000-0044-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition (HKLM\...\{90140000-001F-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{95FC4D5E-0C1A-435A-9759-E8656BCB358B}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{64D96F30-CF4C-4CCE-AAF2-F8909348BF35}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{8A6BDA63-4D23-4485-A466-8979E10BCF49}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{8A6BDA63-4D23-4485-A466-8979E10BCF49}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{90140000-001A-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{EF3CB32B-993B-4741-875E-9A41E9E7E520}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{DDDC32A5-9528-4771-B91A-97A8E1D7957B}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{90140000-0018-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{475E6B60-AD7E-4CCB-870D-D67FC71DBCED}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A20A650C-F820-4CE4-AEA5-EC140192FAFB}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F6F342A1-530B-4D48-A468-1E3F70928984}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{C950A55F-82E3-4CC8-8FA2-E8A2A0F651F3}) (Version: - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{89FDC8D9-FB84-4EFE-950D-AF4EECC3B64C}) (Version: - Microsoft)
VideoReDo TVSuite Version 4.20.7.629 (HKLM-x32\...\VideoReDo4_is1) (Version: - DRD Systems, Inc.)
VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.2.0.3 - VSO Software)
VSO Downloader 4.0.0.19 (HKLM-x32\...\{A0D0BA9E-F1A6-44FF-AA14-03ED96B3D56D}_is1) (Version: 4.0.0.19 - VSO Software)
VSO EVE Network Driver version 1.0.0.26 (HKLM-x32\...\{AC0AFDC9-4FB1-44FE-B3E1-82300BF3D756}_is1) (Version: 1.0.0.26 - VSO Software)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WinArchiver (HKLM-x32\...\WinArchiver) (Version: 3.6 - Power Software Ltd)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
WinX DVD Ripper Platinum 7.5.5 (HKLM-x32\...\WinX DVD Ripper Platinum_is1) (Version: - Digiarty Software, Inc.)
Xilisoft Blu-ray Ripper (HKCU\...\Xilisoft Blu-ray Ripper) (Version: 7.1.0.20131118 - Xilisoft)
Xilisoft DVD Ripper Ultimate (HKCU\...\Xilisoft DVD Ripper Ultimate) (Version: 7.8.1.20140505 - Xilisoft)
Xilisoft Video Converter Ultimate (HKCU\...\Xilisoft Video Converter Ultimate) (Version: 7.8.1.20140505 - Xilisoft)

==================== Restore Points =========================

07-06-2014 08:50:03 Installed Java 7 Update 60
14-06-2014 11:20:21 Removed The Bat! Professional v6.4.2
14-06-2014 11:21:34 Installed The Bat! Professional v6.4.6
21-06-2014 14:07:45 Revo Uninstaller Pro's restore point - HitmanPro 3.7
21-06-2014 14:25:52 Revo Uninstaller Pro's restore point - HitmanPro 3.7
21-06-2014 14:28:52 Revo Uninstaller Pro's restore point - HitmanPro 3.7
21-06-2014 14:37:13 Revo Uninstaller Pro's restore point - HitmanPro 3.7
22-06-2014 08:50:02 Installed SmartDVB
22-06-2014 10:47:36 Revo Uninstaller Pro's restore point - SmartDVB
22-06-2014 10:48:46 Revo Uninstaller Pro's restore point - SmartDVB
22-06-2014 10:49:07 Removed SmartDVB
22-06-2014 11:45:51 Revo Uninstaller Pro's restore point - ProgDVB x64
26-06-2014 15:24:32 Revo Uninstaller Pro's restore point - HitmanPro 3.7
01-07-2014 14:59:22 avast! antivirus system restore point
02-07-2014 15:03:14 Revo Uninstaller Pro's restore point - HitmanPro 3.7
02-07-2014 15:15:50 Revo Uninstaller Pro's restore point - WinPatrol
02-07-2014 15:35:06 Bod obnovy HitmanPro

==================== Hosts content: ==========================

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {09F50341-7B96-4F77-92B7-6FE2D92CA5BF} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {306E9577-08F1-4F1F-8384-8BC1EA3ABA14} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-22] (Google Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3EC81633-FD8A-40D3-B394-847BD1A8ED42} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {447CA3EF-D292-41EE-A0D8-C2342052F6D7} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-06-14] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4B87112D-7AAB-4DD3-8D14-BDB043CBEEE9} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {673EBD0A-1AA8-443F-BEA7-6050BA19FCD2} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7AFC7835-C026-4B78-A88F-85E56B120B2D} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-01] (AVAST Software)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8B052FAB-8BA2-4F15-B9D0-26E0CB7BA754} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {ACAC0BA3-C216-4D6C-9116-171AB1AC6E67} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-26] (Adobe Systems Incorporated)
Task: {B13A9300-4641-4E7B-AEB0-7F62A8600114} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-22] (Google Inc.)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D6459585-8272-40C9-816E-B43EF757D6BD} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-06-19 13:21 - 2014-06-19 13:21 - 00257336 _____ () C:\Program Files\WinArchiver\WAService.exe
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2014-05-24 09:49 - 2014-05-24 09:50 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\ErrorReporting.dll
2014-01-08 17:26 - 2009-07-02 16:02 - 00244904 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2014-07-02 17:23 - 2007-11-02 16:20 - 00243712 _____ () C:\Program Files\NETGATE\Spy Emergency\SSLEAY32.dll
2014-07-02 17:23 - 2007-11-02 16:20 - 01403904 _____ () C:\Program Files\NETGATE\Spy Emergency\LIBEAY32.dll
2014-07-02 17:23 - 2007-09-04 15:25 - 00198144 _____ () C:\Program Files\NETGATE\Spy Emergency\unrar.dll
2014-04-11 13:49 - 2014-02-13 15:37 - 00254024 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe
2014-07-01 17:00 - 2014-07-01 17:00 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-07-02 16:51 - 2014-07-02 16:51 - 02789888 _____ () C:\Program Files\AVAST Software\Avast\defs\14070200\algo.dll
2009-12-15 14:46 - 2009-12-15 14:46 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-12-15 14:49 - 2009-12-15 14:49 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2014-04-11 13:49 - 2014-02-13 15:27 - 00222792 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\traynet.dll
2014-04-11 13:49 - 2014-02-13 15:27 - 00275528 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\libcurl.dll
2014-04-11 13:49 - 2014-02-13 15:27 - 00113166 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\zlib1.dll
2014-04-11 13:49 - 2014-02-13 15:27 - 00249928 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\uexper.dll
2014-07-01 17:00 - 2014-07-01 17:00 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Temp:0888F409
AlternateDataStreams: C:\ProgramData\Temp:3440EB47
AlternateDataStreams: C:\ProgramData\Temp:66633281
AlternateDataStreams: C:\Users\Kostík a Irenočka\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========

HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "LGODDFU"
HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter"
HKCU\...\StartupApproved\Run: => "Google+ Auto Backup"
HKCU\...\StartupApproved\Run: => "NokiaSuite.exe"
HKCU\...\StartupApproved\Run: => "Advanced SystemCare 7"
HKCU\...\StartupApproved\Run: => "SpyEmergency"
HKCU\...\StartupApproved\Run: => "icq"
HKCU\...\StartupApproved\Run: => "DVSSkypeRecorder"
HKCU\...\StartupApproved\Run: => "DVDFab Passkey"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny RegSetValueExW(0x00000300,SYSTEM\CurrentControlSet\Services\VSS\Diag\VssvcPublisher,0,REG_BINARY,000000EAA1F6EF50.72) došlo k neočekávané chybě. hr= 0x80070005, Přístup byl odepřen.
.

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny RegSetValueExW(0x0000062c,(null),0,REG_BINARY,000000073934DDB0.72) došlo k neočekávané chybě. hr= 0x80070005, Přístup byl odepřen.
.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0}
Název modulu pro zápis: WMI Writer
ID instance modulu pro zápis: {6ea63022-4d5f-46fa-8b64-d2471fa80aad}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny RegSetValueExW(0x000001ac,(null),0,REG_BINARY,000000EAA31DEB40.72) došlo k neočekávané chybě. hr= 0x80070005, Přístup byl odepřen.
.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {afbab4a2-367d-4d15-a586-71dbb18f8485}
Název modulu pro zápis: Registry Writer
ID instance modulu pro zápis: {d68ce7c7-f48b-4295-9571-868336e7a819}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny RegSetValueExW(0x000003fc,(null),0,REG_BINARY,000000D24FA9E190.72) došlo k neočekávané chybě. hr= 0x80070005, Přístup byl odepřen.
.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {b5bcad62-a5b3-4c11-8f06-1c8e31f6adfb}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny RegSetValueExW(0x00000228,(null),0,REG_BINARY,000000EAA222EEF0.72) došlo k neočekávané chybě. hr= 0x80070005, Přístup byl odepřen.
.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {553d2db1-07de-4eeb-84ac-02f757300c3a}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny RegSetValueExW(0x00000868,(null),0,REG_BINARY,0000008D0CA4E150.72) došlo k neočekávané chybě. hr= 0x80070005, Přístup byl odepřen.
.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {cd3f2362-8bef-46c7-9181-d62844cdc0b2}
Název modulu pro zápis: MSSearch Service Writer
ID instance modulu pro zápis: {a5225cd5-1947-47c4-895f-4ba3f4c064c7}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny RegSetValueExW(0x0000062c,(null),0,REG_BINARY,000000073934DDB0.72) došlo k neočekávané chybě. hr= 0x80070005, Přístup byl odepřen.
.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0}
Název modulu pro zápis: WMI Writer
ID instance modulu pro zápis: {6ea63022-4d5f-46fa-8b64-d2471fa80aad}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny RegSetValueExW(0x00000208,(null),0,REG_BINARY,000000EAA32DF1E0.72) došlo k neočekávané chybě. hr= 0x80070005, Přístup byl odepřen.
.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {542da469-d3e1-473c-9f4f-7847f01fc64f}
Název modulu pro zápis: COM+ REGDB Writer
ID instance modulu pro zápis: {6e339e6c-810f-4d03-9062-61649ed35de3}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny RegSetValueExW(0x000003fc,(null),0,REG_BINARY,000000D24FA9E190.72) došlo k neočekávané chybě. hr= 0x80070005, Přístup byl odepřen.
.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {b5bcad62-a5b3-4c11-8f06-1c8e31f6adfb}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny RegSetValueExW(0x000001ac,(null),0,REG_BINARY,000000EAA31DEB40.72) došlo k neočekávané chybě. hr= 0x80070005, Přístup byl odepřen.
.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {afbab4a2-367d-4d15-a586-71dbb18f8485}
Název modulu pro zápis: Registry Writer
ID instance modulu pro zápis: {d68ce7c7-f48b-4295-9571-868336e7a819}


System errors:
=============
Error: (07/02/2014 06:26:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba HitmanPro Scheduler neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (07/02/2014 06:04:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Spy Emergency Engine Service neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (07/02/2014 06:04:24 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Spy Emergency Engine Service bylo dosaženo časového limitu (30000 ms).

Error: (07/02/2014 06:03:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba HitmanPro Scheduler neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (07/02/2014 06:02:59 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (18:00:34, ‎2. ‎7. ‎2014) bylo neočekávané.

Error: (07/02/2014 05:20:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba HitmanPro Scheduler neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (07/02/2014 05:19:35 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (07/01/2014 05:03:05 PM) (Source: HTTP) (EventID: 15005) (User: )
Description: \Device\Http\ReqQueue[::]:8732

Error: (07/01/2014 05:03:05 PM) (Source: HTTP) (EventID: 15005) (User: )
Description: \Device\Http\ReqQueue[::]:26143

Error: (07/01/2014 05:03:04 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba zařazování tisku byla ukončena s následující chybou:
%%2147944140


Microsoft Office Sessions:
=========================
Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: RegSetValueExW(0x00000300,SYSTEM\CurrentControlSet\Services\VSS\Diag\VssvcPublisher,0,REG_BINARY,000000EAA1F6EF50.72)0x80070005, Přístup byl odepřen.

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: RegSetValueExW(0x0000062c,(null),0,REG_BINARY,000000073934DDB0.72)0x80070005, Přístup byl odepřen.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0}
Název modulu pro zápis: WMI Writer
ID instance modulu pro zápis: {6ea63022-4d5f-46fa-8b64-d2471fa80aad}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: RegSetValueExW(0x000001ac,(null),0,REG_BINARY,000000EAA31DEB40.72)0x80070005, Přístup byl odepřen.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {afbab4a2-367d-4d15-a586-71dbb18f8485}
Název modulu pro zápis: Registry Writer
ID instance modulu pro zápis: {d68ce7c7-f48b-4295-9571-868336e7a819}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: RegSetValueExW(0x000003fc,(null),0,REG_BINARY,000000D24FA9E190.72)0x80070005, Přístup byl odepřen.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {b5bcad62-a5b3-4c11-8f06-1c8e31f6adfb}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: RegSetValueExW(0x00000228,(null),0,REG_BINARY,000000EAA222EEF0.72)0x80070005, Přístup byl odepřen.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {553d2db1-07de-4eeb-84ac-02f757300c3a}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: RegSetValueExW(0x00000868,(null),0,REG_BINARY,0000008D0CA4E150.72)0x80070005, Přístup byl odepřen.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {cd3f2362-8bef-46c7-9181-d62844cdc0b2}
Název modulu pro zápis: MSSearch Service Writer
ID instance modulu pro zápis: {a5225cd5-1947-47c4-895f-4ba3f4c064c7}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: RegSetValueExW(0x0000062c,(null),0,REG_BINARY,000000073934DDB0.72)0x80070005, Přístup byl odepřen.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0}
Název modulu pro zápis: WMI Writer
ID instance modulu pro zápis: {6ea63022-4d5f-46fa-8b64-d2471fa80aad}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: RegSetValueExW(0x00000208,(null),0,REG_BINARY,000000EAA32DF1E0.72)0x80070005, Přístup byl odepřen.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {542da469-d3e1-473c-9f4f-7847f01fc64f}
Název modulu pro zápis: COM+ REGDB Writer
ID instance modulu pro zápis: {6e339e6c-810f-4d03-9062-61649ed35de3}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: RegSetValueExW(0x000003fc,(null),0,REG_BINARY,000000D24FA9E190.72)0x80070005, Přístup byl odepřen.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {b5bcad62-a5b3-4c11-8f06-1c8e31f6adfb}

Error: (07/02/2014 05:35:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: RegSetValueExW(0x000001ac,(null),0,REG_BINARY,000000EAA31DEB40.72)0x80070005, Přístup byl odepřen.


Operace:
Událost BackupShutdown

Kontext:
Kontext spuštění: Writer
ID třídy modulu pro zápis: {afbab4a2-367d-4d15-a586-71dbb18f8485}
Název modulu pro zápis: Registry Writer
ID instance modulu pro zápis: {d68ce7c7-f48b-4295-9571-868336e7a819}


CodeIntegrity Errors:
===================================
Date: 2014-04-26 11:30:20.508
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-04-26 11:30:20.460
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-04-26 11:30:20.308
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-04-26 11:30:20.259
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-04-26 11:30:20.210
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-04-26 11:30:20.163
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-04-26 11:30:20.015
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-04-26 11:30:19.969
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-04-26 11:29:44.618
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-04-26 11:29:44.572
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Percentage of memory in use: 15%
Total physical RAM: 8161.4 MB
Available physical RAM: 6897.46 MB
Total Pagefile: 9441.4 MB
Available Pagefile: 8083.58 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.17 GB) (Free:882.69 GB) NTFS
Drive g: (WD EXTERNÝ) (Fixed) (Total:465.7 GB) (Free:272.43 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 0005645A)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 466 GB) (Disk ID: 027BA94F)
Partition 1: (Not Active) - (Size=466 GB) - (Type=0B)

==================== End Of Log ============================

Re: Sken AdwCleanerom

Napsal: 02 črc 2014 18:25
od vyosek
:arrow: Odinstalujte Spy Emergency a HitmanPro

:arrow: Odinstalujte Advanced SystemCare a IObit Malware Fighter a nasledne i vse od IOBit - jsou to cinske smejdy a spise jen skodi nez jsou uzitkem. Hledaji nesmyslne a neexistujici problemy, databazi haveti ukradli jine renomovane spolecnosti

:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-12-15] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] => C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-04-02] (cyberlink)
KLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKU\S-1-5-21-1848220903-3089343494-3484960918-1001\...\Run: [DVSSkypeRecorder] => "C:\Program Files (x86)\DVDVideoSoft\Free Video Call Recorder for Skype\skyui.exe" /minimized
HKU\S-1-5-21-1848220903-3089343494-3484960918-1001\...\Run: [icq] => C:\Users\Kostík a Irenočka\AppData\Roaming\ICQM\icq.exe [34827272 2014-06-04] (ICQ)

SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {AB127681-9983-4332-8528-A7360886054F} URL = http://search.yahoo.com/search?fr=chr-g ... =198484&p={searchTerms}
BHO-x32: No Name - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File

CHR NewTab: "chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR DefaultSearchURL: http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADRA_csCZ486
CHR DefaultNewTabURL: 
CHR HKCU\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Kostík a Irenočka\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKLM-x32\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Kostík a Irenočka\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
S4 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)
R2 SpyEmrgSrv; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe [3284008 2013-03-11] (NETGATE Technologies s.r.o.)
S2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [X]
R1 SpyEmrg; C:\Windows\System32\Drivers\spyemrg.sys [17240 2011-04-21] (NETGATE Technologies s.r.o.)
S3 SpyEmrgAccess; C:\Windows\System32\Drivers\spyemrg_access.sys [24408 2011-04-21] (NETGATE Technologies s.r.o.)
R3 SpyEmrgGuard; C:\Windows\System32\Drivers\spyemrg_guard.sys [18776 2011-04-21] (NETGATE Technologies s.r.o.)

DisableService: RichVideo

C:\Windows\System32\Drivers\spyemrg.sys
C:\Windows\System32\Drivers\spyemrg_access.sys
C:\Windows\System32\Drivers\spyemrg_guard.sys 
C:\Program Files (x86)\Skype\Toolbars
C:\Program Files (x86)\IObit
C:\Program Files (x86)\PANDORA.TV
C:\Program Files\NETGATE\Spy Emergency
C:\Program Files\HitmanPro
2014-07-02 18:29 - 2014-07-02 18:30 - 00026512 _____ () C:\Users\Kostík a Irenočka\Desktop\FRST.txt
2014-07-02 18:29 - 2014-07-02 18:29 - 00000000 ____D () C:\Users\Kostík a Irenočka\Desktop\FRST-OlderVersion
2014-07-02 17:30 - 2014-07-02 18:24 - 00000000 ____D () C:\AdwCleaner
2014-07-02 17:29 - 2014-07-02 17:29 - 01346519 _____ () C:\Users\Kostík a Irenočka\Desktop\adwcleaner 3.214.exe
2014-07-02 17:23 - 2014-07-02 17:26 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Spy Emergency
2014-07-02 17:23 - 2014-07-02 17:23 - 00000965 _____ () C:\Users\Public\Desktop\Spy Emergency.lnk
2014-07-02 17:23 - 2014-07-02 17:23 - 00000965 _____ () C:\ProgramData\Desktop\Spy Emergency.lnk
2014-07-02 17:23 - 2014-07-02 17:23 - 00000000 ____D () C:\ProgramData\NETGATE
2014-07-02 17:23 - 2014-07-02 17:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Emergency
2014-07-02 17:23 - 2011-04-21 11:31 - 00024408 _____ (NETGATE Technologies s.r.o.) C:\WINDOWS\system32\Drivers\spyemrg_access.sys
2014-07-02 17:23 - 2011-04-21 11:31 - 00018776 _____ (NETGATE Technologies s.r.o.) C:\WINDOWS\system32\Drivers\spyemrg_guard.sys
2014-07-02 17:23 - 2011-04-21 11:31 - 00017240 _____ (NETGATE Technologies s.r.o.) C:\WINDOWS\system32\Drivers\spyemrg.sys
2014-07-02 17:20 - 2014-07-02 18:25 - 00000658 _____ () C:\WINDOWS\PFRO.log
2014-07-02 17:04 - 2014-07-02 17:35 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-07-02 17:04 - 2014-07-02 17:05 - 00000000 ____D () C:\Program Files\HitmanPro
2014-07-02 17:04 - 2014-07-02 17:04 - 00001869 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2014-07-02 17:04 - 2014-07-02 17:04 - 00001869 _____ () C:\ProgramData\Desktop\HitmanPro.lnk
2014-07-02 17:04 - 2014-07-02 17:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2014-06-27 18:02 - 2014-06-27 18:02 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\25072
2014-06-27 17:42 - 2014-06-27 17:42 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\20977
2014-06-26 17:02 - 2014-06-26 17:02 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\26046
2014-06-21 17:00 - 2014-07-02 17:35 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2014-06-21 15:39 - 2014-06-21 15:39 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\8058

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

AlternateDataStreams: C:\ProgramData\Temp:0888F409
AlternateDataStreams: C:\ProgramData\Temp:3440EB47
AlternateDataStreams: C:\ProgramData\Temp:66633281

Hosts:
Reboot:
End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt

Re: Sken AdwCleanerom

Napsal: 03 črc 2014 15:18
od kostik123456
Dobrý den vyosek,dřív to nešlo neboť včera jsem už neměl čas čekat tak až dnes.
Taky je ten požadovanej Fixlog-

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-07-2014
Ran by Kostík a Irenočka at 2014-07-03 16:12:13 Run:1
Running from C:\Users\Kostík a Irenočka\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-12-15] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] => C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-04-02] (cyberlink)
KLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKU\S-1-5-21-1848220903-3089343494-3484960918-1001\...\Run: [DVSSkypeRecorder] => "C:\Program Files (x86)\DVDVideoSoft\Free Video Call Recorder for Skype\skyui.exe" /minimized
HKU\S-1-5-21-1848220903-3089343494-3484960918-1001\...\Run: [icq] => C:\Users\Kostík a Irenočka\AppData\Roaming\ICQM\icq.exe [34827272 2014-06-04] (ICQ)

SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {AB127681-9983-4332-8528-A7360886054F} URL = http://search.yahoo.com/search?fr=chr-g ... =198484&p={searchTerms}
BHO-x32: No Name - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File

CHR NewTab: "chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR DefaultSearchURL: http://www.google.com/search?q={searchT ... RA_csCZ486
CHR DefaultNewTabURL:
CHR HKCU\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Kostík a Irenočka\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKLM-x32\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Kostík a Irenočka\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2014-02-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
S4 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)
R2 SpyEmrgSrv; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe [3284008 2013-03-11] (NETGATE Technologies s.r.o.)
S2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [X]
R1 SpyEmrg; C:\Windows\System32\Drivers\spyemrg.sys [17240 2011-04-21] (NETGATE Technologies s.r.o.)
S3 SpyEmrgAccess; C:\Windows\System32\Drivers\spyemrg_access.sys [24408 2011-04-21] (NETGATE Technologies s.r.o.)
R3 SpyEmrgGuard; C:\Windows\System32\Drivers\spyemrg_guard.sys [18776 2011-04-21] (NETGATE Technologies s.r.o.)

DisableService: RichVideo

C:\Windows\System32\Drivers\spyemrg.sys
C:\Windows\System32\Drivers\spyemrg_access.sys
C:\Windows\System32\Drivers\spyemrg_guard.sys
C:\Program Files (x86)\Skype\Toolbars
C:\Program Files (x86)\IObit
C:\Program Files (x86)\PANDORA.TV
C:\Program Files\NETGATE\Spy Emergency
C:\Program Files\HitmanPro
2014-07-02 18:29 - 2014-07-02 18:30 - 00026512 _____ () C:\Users\Kostík a Irenočka\Desktop\FRST.txt
2014-07-02 18:29 - 2014-07-02 18:29 - 00000000 ____D () C:\Users\Kostík a Irenočka\Desktop\FRST-OlderVersion
2014-07-02 17:30 - 2014-07-02 18:24 - 00000000 ____D () C:\AdwCleaner
2014-07-02 17:29 - 2014-07-02 17:29 - 01346519 _____ () C:\Users\Kostík a Irenočka\Desktop\adwcleaner 3.214.exe
2014-07-02 17:23 - 2014-07-02 17:26 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\Spy Emergency
2014-07-02 17:23 - 2014-07-02 17:23 - 00000965 _____ () C:\Users\Public\Desktop\Spy Emergency.lnk
2014-07-02 17:23 - 2014-07-02 17:23 - 00000965 _____ () C:\ProgramData\Desktop\Spy Emergency.lnk
2014-07-02 17:23 - 2014-07-02 17:23 - 00000000 ____D () C:\ProgramData\NETGATE
2014-07-02 17:23 - 2014-07-02 17:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Emergency
2014-07-02 17:23 - 2011-04-21 11:31 - 00024408 _____ (NETGATE Technologies s.r.o.) C:\WINDOWS\system32\Drivers\spyemrg_access.sys
2014-07-02 17:23 - 2011-04-21 11:31 - 00018776 _____ (NETGATE Technologies s.r.o.) C:\WINDOWS\system32\Drivers\spyemrg_guard.sys
2014-07-02 17:23 - 2011-04-21 11:31 - 00017240 _____ (NETGATE Technologies s.r.o.) C:\WINDOWS\system32\Drivers\spyemrg.sys
2014-07-02 17:20 - 2014-07-02 18:25 - 00000658 _____ () C:\WINDOWS\PFRO.log
2014-07-02 17:04 - 2014-07-02 17:35 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-07-02 17:04 - 2014-07-02 17:05 - 00000000 ____D () C:\Program Files\HitmanPro
2014-07-02 17:04 - 2014-07-02 17:04 - 00001869 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2014-07-02 17:04 - 2014-07-02 17:04 - 00001869 _____ () C:\ProgramData\Desktop\HitmanPro.lnk
2014-07-02 17:04 - 2014-07-02 17:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2014-06-27 18:02 - 2014-06-27 18:02 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\25072
2014-06-27 17:42 - 2014-06-27 17:42 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\20977
2014-06-26 17:02 - 2014-06-26 17:02 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\26046
2014-06-21 17:00 - 2014-07-02 17:35 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2014-06-21 15:39 - 2014-06-21 15:39 - 00000000 ____D () C:\Users\Kostík a Irenočka\AppData\Roaming\8058

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

AlternateDataStreams: C:\ProgramData\Temp:0888F409
AlternateDataStreams: C:\ProgramData\Temp:3440EB47
AlternateDataStreams: C:\ProgramData\Temp:66633281

Hosts:
Reboot:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\HP Software Update => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLMLServer => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdateP2GoShortCut => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UCam_Menu => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RemoteControl10 => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\BDRegion => value deleted successfully.
HKU\S-1-5-21-1848220903-3089343494-3484960918-1001\Software\Microsoft\Windows\CurrentVersion\Run\\DVSSkypeRecorder => value deleted successfully.
HKU\S-1-5-21-1848220903-3089343494-3484960918-1001\Software\Microsoft\Windows\CurrentVersion\Run\\icq => value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AB127681-9983-4332-8528-A7360886054F}' => Key deleted successfully.
'HKCR\CLSID\{AB127681-9983-4332-8528-A7360886054F}'=> Key not found.
'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}'=> Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value deleted successfully.
'HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}'=> Key not found.
CHR DefaultSearchURL: http://www.google.com/search?q={searchT ... RA_csCZ486 ==> The Chrome "Settings" can be used to fix the entry.
'HKCU\SOFTWARE\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp' => Key deleted successfully.
C:\Users\Kostík a Irenočka\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx => Moved successfully.
'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp' => Key deleted successfully.
"C:\Users\Kostík a Irenočka\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx" => File/Directory not found.
'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl' => Key deleted successfully.
C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx => Moved successfully.
'HKCU\SOFTWARE\Policies\Google' => Key deleted successfully.
c2cautoupdatesvc => Unable to stop service
c2cautoupdatesvc => Service deleted successfully.
c2cpnrsvc => Unable to stop service
c2cpnrsvc => Service deleted successfully.
LiveUpdateSvc => Service deleted successfully.
PanService => Service deleted successfully.
SpyEmrgSrv => Service not found.
HitmanProScheduler => Service deleted successfully.
SpyEmrg => Service not found.
SpyEmrgAccess => Service not found.
SpyEmrgGuard => Service not found.
RichVideo service was disabled
"C:\Windows\System32\Drivers\spyemrg.sys" => File/Directory not found.
"C:\Windows\System32\Drivers\spyemrg_access.sys" => File/Directory not found.
"C:\Windows\System32\Drivers\spyemrg_guard.sys" => File/Directory not found.
C:\Program Files (x86)\Skype\Toolbars => Moved successfully.
C:\Program Files (x86)\IObit => Moved successfully.
C:\Program Files (x86)\PANDORA.TV => Moved successfully.
"C:\Program Files\NETGATE\Spy Emergency" => File/Directory not found.
"C:\Program Files\HitmanPro" => File/Directory not found.
"C:\Users\Kostík a Irenočka\Desktop\FRST.txt" => File/Directory not found.
"C:\Users\Kostík a Irenočka\Desktop\FRST-OlderVersion" => File/Directory not found.
"C:\AdwCleaner" => File/Directory not found.
C:\Users\Kostík a Irenočka\Desktop\adwcleaner 3.214.exe => Moved successfully.
"C:\Users\Kostík a Irenočka\AppData\Roaming\Spy Emergency" => File/Directory not found.
"C:\Users\Public\Desktop\Spy Emergency.lnk" => File/Directory not found.
"C:\ProgramData\Desktop\Spy Emergency.lnk" => File/Directory not found.
"C:\ProgramData\NETGATE" => File/Directory not found.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Emergency" => File/Directory not found.
"C:\WINDOWS\system32\Drivers\spyemrg_access.sys" => File/Directory not found.
"C:\WINDOWS\system32\Drivers\spyemrg_guard.sys" => File/Directory not found.
"C:\WINDOWS\system32\Drivers\spyemrg.sys" => File/Directory not found.
"C:\WINDOWS\PFRO.log" => File/Directory not found.
"C:\ProgramData\HitmanPro" => File/Directory not found.
"C:\Program Files\HitmanPro" => File/Directory not found.
"C:\Users\Public\Desktop\HitmanPro.lnk" => File/Directory not found.
"C:\ProgramData\Desktop\HitmanPro.lnk" => File/Directory not found.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro" => File/Directory not found.
C:\Users\Kostík a Irenočka\AppData\Roaming\25072 => Moved successfully.
C:\Users\Kostík a Irenočka\AppData\Roaming\20977 => Moved successfully.
C:\Users\Kostík a Irenočka\AppData\Roaming\26046 => Moved successfully.
C:\WINDOWS\system32\bootdelete.exe => Moved successfully.
C:\Users\Kostík a Irenočka\AppData\Roaming\8058 => Moved successfully.
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\ProgramData\Temp => ":0888F409" ADS removed successfully.
C:\ProgramData\Temp => ":3440EB47" ADS removed successfully.
C:\ProgramData\Temp => ":66633281" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.


The system needed a reboot.

==== End of Fixlog ====

PS - Ješte vám pošlu log FRST z ProBooku HP neboť myslím,že i tam mám nejakou havěť.Děkuji.

Re: Sken AdwCleanerom

Napsal: 03 črc 2014 18:47
od kostik123456
Proskenoval jsem z FRST aj ProBook HP 4740s,prosím o kontrolu logu vyosek,díkes.

log č.1

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-07-2014
Ran by Kostík a Irenka (administrator) on HP-KOSTIK on 03-07-2014 19:43:22
Running from C:\Users\Rastislav\Desktop
Platform: Windows 8 Pro with Media Center (X64) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Microsoft Corporation) C:\Windows\slsvc.exe
() C:\Windows\PersonalizeEnabler.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files (x86)\HP HD Webcam Driver\Monitor.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
() C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-08-06] (IDT, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP HD Webcam Driver_Monitor] => C:\Program Files (x86)\HP HD Webcam Driver\monitor.exe [303480 2012-07-26] ()
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => c:\Program Files (x86)\Cyberlink\Shared files\brs.exe [78352 2012-08-04] (cyberlink)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [EaseUS EPM Tray Agent] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe [254024 2014-02-13] ()
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [371976 2012-09-19] (IVT Corporation)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [337184 2013-10-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-06-05] (PDF Complete Inc)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432 2014-07-03] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-06-24] (Hewlett-Packard)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\Run: [] => [X]
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\MountPoints2: {839a33ec-f5f5-11e3-beb1-6894230bf9ee} - "G:\Autorun.exe"
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\MountPoints2: {b71b7297-f6d6-11e3-beb1-6894230bf9ee} - "H:\Autorun.exe"
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\MountPoints2: {bff59f74-f584-11e3-beb0-6894230bf9ee} - "G:\Autorun.exe"
Lsa: [Notification Packages] DPPassFilter scecli
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com/search?q={searchT ... d=ie7&rlz=
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{8683400B-82B4-4912-BC43-BF75C42E14BA}: [NameServer]93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{FA20D60A-96D6-41FD-99F0-7E80046E7768}: [NameServer]93.153.117.1 93.153.117.33

FireFox:
========
FF ProfilePath: C:\Users\Rastislav\AppData\Roaming\Mozilla\Firefox\Profiles\dqx6c1yy.default
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: https://www.e-quip.cz/
FF Keyword.URL: https://www.google.com/search
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_139.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\Program Files\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_139.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1212152.dll (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll (DigitalPersona, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-06-01]

Chrome:
=======
CHR HomePage: hxxp://www.centrum.cz/
CHR StartupUrls: "hxxp://www.google.cz/"
CHR NewTab: "chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR DefaultSearchKeyword: google.com_
CHR DefaultSearchURL: http://www.google.com/search?q={searchT ... RA_csCZ486
CHR DefaultNewTabURL:
CHR Extension: (Google Translate) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2014-06-03]
CHR Extension: (Dokumenty Google) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-03]
CHR Extension: (Disk Google) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-03]
CHR Extension: (Meteopress - předpověď počasí) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcpnncnkejclcjokemijhkikfeojpgno [2014-06-03]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-06-03]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-06-03]
CHR Extension: (YouTube) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-03]
CHR Extension: (Pool) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\cedbddnnmhgnedpamoenmdkhnpnfbpjb [2014-06-03]
CHR Extension: (Digital clock) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehoiekgopjlnkinohiclellfpkfgfek [2014-06-03]
CHR Extension: (Hľadať v Google) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-03]
CHR Extension: (FlipClock) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\copjokjinhlflggeifkidlmodfepbpgl [2014-06-03]
CHR Extension: (8 Ball Pool Multiplayer) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddfplgpeamcbpecnihfpikllkfojgkai [2014-06-03]
CHR Extension: (Kalendár Google) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2014-06-03]
CHR Extension: (Hodiny pre Google Chrome ™) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\emakkfldeggiinnfcdjkakdfcppbfhdg [2014-06-03]
CHR Extension: (Skype Links) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbmllnadbdnppblcebkkmapkinkdchd [2014-06-03]
CHR Extension: (Goolge mapy s prehľadávaním okolia) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbfnldkfkplmmmbfnjkdbbhjbopnocda [2014-06-03]
CHR Extension: (Facebook for Chrome) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdalhedleemkkdjddjgfjmcnbpejpapp [2014-06-03]
CHR Extension: (Hodiny) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2014-06-03]
CHR Extension: (AdBlock) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-06-03]
CHR Extension: (IP adresa) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjndloejlcbpkholmagjbddfkjmmploh [2014-06-03]
CHR Extension: (Uložiť na Disk Google) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2014-06-03]
CHR Extension: (avast! Online Security) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-06-03]
CHR Extension: (Allow Right-Click) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\hompjdfbfmmmgflfjdlnkohcplmboaeo [2014-06-03]
CHR Extension: (AutoPagerize) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\igiofjhpmpihnifddepnpngfjhkfenbp [2014-06-03]
CHR Extension: (Downloads) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfchnphgogjhineanplmfkofljiagjfb [2014-06-03]
CHR Extension: (Tlačidlo Google +1) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgoepmocgafhnchmokaimcmlojpnlkhp [2014-06-03]
CHR Extension: (*Ultimate Football Results*) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnpobggldcjebejmndignliobeifocj [2014-06-03]
CHR Extension: (World Clock) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\klalbmkcicglbbedmdlkidhkiaelhdog [2014-06-03]
CHR Extension: (Earth TV) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpnmncjdpbehanjnmpmodhbheohhcpdn [2014-06-03]
CHR Extension: (Satellite Finder) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\laadpcgmfdkmmkhnhoaalgbjoahkjlpn [2014-06-03]
CHR Extension: (Watch Live Football Streaming Online For Free) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\legocaboiicfjgofnmlgnogcngeokmga [2014-06-03]
CHR Extension: (Vyhledávání na Uložto.cz) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmkajlpofgoacniacbaappohkglliini [2014-06-03]
CHR Extension: (Twoo Notifications) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\mggafhpkgkfebnjfbiefbbbicikgchlf [2014-06-03]
CHR Extension: (Hodiny) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjocghlclkpgheifflemilcnblodjohg [2014-06-03]
CHR Extension: (Peňaženka Google) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-03]
CHR Extension: (9-Ball Pool) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\oafdgpdaojfjhcolidaakebmnbibdbpb [2014-06-03]
CHR Extension: (Live Sports) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\oamjbefinnglappklpabmhpbcdiephoo [2014-06-03]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2014-06-03]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-06-03]
CHR Extension: (Desktop) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pafkcccccfmnjkhhndjfffifnflhkpdo [2014-06-03]
CHR Extension: (Gmail) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-03]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-03]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-11] (SUPERAntiSpyware.com)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-03] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [106488 2014-07-03] (AVAST Software)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1612552 2012-09-26] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [146184 2012-09-19] (IVT Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
S2 CLKMSVC10_38F51D56; c:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [243728 2012-08-04] (CyberLink)
S4 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [488824 2012-08-25] (DigitalPersona, Inc.)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477088 2012-08-01] (Hewlett-Packard Company)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-05-27] (Freemake) [File not signed]
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-10-16] (Hewlett-Packard Company)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2014-04-22] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2014-04-22] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 MbnExt; C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\MbnExt.dll [417128 2013-12-02] (Gemfor s.r.o.)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1143432 2013-06-05] (PDF Complete Inc)
R2 slsvc; C:\Windows\slsvc.exe [10240 2012-09-25] (Microsoft Corporation) [File not signed]
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [321536 2012-08-06] (IDT, Inc.) [File not signed]
U2 WinArchiver Service; C:\Program Files\WinArchiver\WAService.exe [257336 2014-06-19] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
S2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [X]

==================== Drivers (Whitelisted) ====================

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [35496 2012-07-09] (Advanced Micro Devices, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-03] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-07-03] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-03] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [448400 2014-07-03] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-03] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-03] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-07-03] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [426848 2014-07-03] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-03] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-03] ()
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthAvrcpTg;
U4 BthHFEnum;
U4 bthhfhid;
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48608 2012-10-02] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [64832 2012-07-25] (Hewlett-Packard Company)
R3 dvdfab; C:\Windows\System32\drivers\dvdfab.sys [79232 2011-08-15] (Fengtao Software Inc.)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [14920 2013-03-07] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] ()
R1 Eve; C:\Windows\system32\DRIVERS\eve.sys [41304 2014-01-23] ()
S3 huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [246272 2013-06-29] (Huawei Technologies Co., Ltd.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwNe64.sys [11400192 2012-06-02] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2010-07-16] (CACE Technologies, Inc.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-15] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-15] (Synaptics Incorporated)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1062008 2012-08-03] (Sunplus)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S1 ArcCtrl; system32\drivers\ArcCtrl.sys [X]
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
U3 DfSdkS;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-03 19:43 - 2014-07-03 19:43 - 00031655 _____ () C:\Users\Rastislav\Desktop\FRST.txt
2014-07-03 19:43 - 2014-07-03 19:43 - 00000000 ____D () C:\FRST
2014-07-03 19:41 - 2014-07-03 19:41 - 02083840 _____ (Farbar) C:\Users\Rastislav\Desktop\FRST64.exe
2014-07-03 19:28 - 2014-07-03 19:28 - 00001576 _____ () C:\Windows\PFRO.log
2014-07-03 19:26 - 2014-07-03 19:26 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-03 19:25 - 2014-07-03 19:25 - 00448400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-07-03 19:23 - 2014-07-03 19:31 - 00029107 _____ () C:\Windows\WindowsUpdate.log
2014-06-29 18:08 - 2014-06-29 18:08 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dreamboxEDIT
2014-06-29 18:08 - 2014-06-29 18:08 - 00000000 ____D () C:\Program Files (x86)\dreamboxEDIT
2014-06-29 09:40 - 2014-06-29 18:09 - 00000000 ____D () C:\Users\Rastislav\Desktop\Discovery Channel 50x30 Skylink
2014-06-29 09:39 - 2014-06-29 18:09 - 00000000 ____D () C:\Users\Rastislav\Desktop\Discovery Channel 100x60 Skylink
2014-06-28 20:02 - 2014-06-28 20:02 - 00001244 _____ () C:\Users\Rastislav\Desktop\ConvertXToDVD 5.lnk
2014-06-27 23:08 - 2014-06-27 23:08 - 00000819 _____ () C:\Users\Rastislav\Desktop\µTorrent.lnk
2014-06-27 23:08 - 2014-06-27 23:08 - 00000799 _____ () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-06-27 23:06 - 2014-06-27 23:07 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-27 23:06 - 2014-06-27 23:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-27 23:01 - 2014-06-27 23:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinArchiver
2014-06-27 23:01 - 2014-06-19 13:21 - 00142096 _____ (Power Software Ltd) C:\Windows\system32\Drivers\waemu.sys
2014-06-27 22:53 - 2014-06-27 22:53 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-27 22:53 - 2014-06-27 22:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-27 22:46 - 2014-07-03 19:28 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-27 22:46 - 2014-06-27 22:46 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-19 17:56 - 2014-06-19 17:56 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\MPC-HC
2014-06-18 12:10 - 2014-07-03 17:38 - 00000392 _____ () C:\Windows\Tasks\HPCeeScheduleForKostík a Irenka.job
2014-06-18 12:10 - 2014-06-29 17:38 - 00003226 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForKostík a Irenka
2014-06-16 20:33 - 2014-06-16 20:33 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2014-06-15 19:57 - 2014-06-28 20:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2014-06-15 19:57 - 2014-06-28 20:01 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-06-15 19:57 - 2014-06-14 16:03 - 00260696 _____ () C:\Windows\system32\unrar64.dll
2014-06-14 01:41 - 2014-06-14 01:41 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-14 01:41 - 2014-06-14 01:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-14 01:41 - 2014-06-14 01:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-14 01:41 - 2014-06-14 01:41 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-14 01:41 - 2014-06-14 01:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-14 01:41 - 2014-06-14 01:41 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-12 17:53 - 2014-05-24 04:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-12 17:53 - 2014-05-24 04:47 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-12 17:53 - 2014-05-24 04:47 - 01366016 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-12 17:53 - 2014-05-24 04:47 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-06-12 17:53 - 2014-05-24 04:47 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 19290112 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 15368704 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 02650112 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-12 17:53 - 2014-05-24 04:45 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-12 17:53 - 2014-05-24 04:45 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-12 17:53 - 2014-05-24 04:45 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 14365696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 13731328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 02862080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-12 17:53 - 2014-05-24 03:25 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-12 17:53 - 2014-05-24 03:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-12 17:53 - 2014-05-24 03:03 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-12 17:53 - 2014-05-24 00:37 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-06-12 17:53 - 2014-05-03 08:34 - 06974808 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-06-12 17:53 - 2014-05-03 08:33 - 01824808 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-06-12 17:53 - 2014-05-03 07:47 - 03246592 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-12 17:53 - 2014-05-03 06:51 - 01408976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-06-12 17:53 - 2014-05-03 05:34 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-06-12 17:53 - 2014-05-02 00:37 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-06-12 17:53 - 2014-04-30 00:32 - 01301504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-06-12 17:53 - 2014-04-30 00:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-06-12 17:53 - 2014-04-30 00:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-06-12 17:53 - 2014-04-30 00:22 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-06-12 17:53 - 2014-04-24 01:51 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-06-12 17:53 - 2014-04-24 01:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-12 17:53 - 2014-04-24 01:38 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-06-12 17:53 - 2014-04-24 01:38 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-12 17:53 - 2014-02-08 06:34 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-06-12 17:52 - 2014-04-03 13:22 - 02233176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-12 17:52 - 2014-03-07 02:47 - 01419264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-12 17:52 - 2014-03-07 02:08 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-11 16:20 - 2014-06-11 16:20 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-09 15:52 - 2014-06-23 10:21 - 00000000 ____D () C:\Users\Rastislav\Desktop\Super vtipy
2014-06-03 22:58 - 2014-06-03 22:58 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2014-06-03 17:36 - 2014-06-11 16:12 - 00002283 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-03 17:36 - 2014-06-03 17:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-06-03 17:24 - 2014-07-03 19:42 - 00000974 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-03 17:20 - 2014-07-03 19:29 - 00000970 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-03 17:20 - 2014-06-18 16:37 - 00003946 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-03 17:20 - 2014-06-18 16:37 - 00003710 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

==================== One Month Modified Files and Folders =======

2014-07-03 19:43 - 2014-07-03 19:43 - 00031655 _____ () C:\Users\Rastislav\Desktop\FRST.txt
2014-07-03 19:43 - 2014-07-03 19:43 - 00000000 ____D () C:\FRST
2014-07-03 19:42 - 2014-06-03 17:24 - 00000974 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-03 19:42 - 2014-04-21 17:16 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3794843200-1546759335-3774015432-1002
2014-07-03 19:41 - 2014-07-03 19:41 - 02083840 _____ (Farbar) C:\Users\Rastislav\Desktop\FRST64.exe
2014-07-03 19:32 - 2012-09-26 09:53 - 00000950 _____ () C:\Windows\SysWOW64\bscs.ini
2014-07-03 19:31 - 2014-07-03 19:23 - 00029107 _____ () C:\Windows\WindowsUpdate.log
2014-07-03 19:29 - 2014-06-03 17:20 - 00000970 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-03 19:29 - 2014-04-22 20:46 - 00003620 _____ () C:\Windows\SysWOW64\LOCALSERVICE.INI
2014-07-03 19:29 - 2012-09-09 07:14 - 00000000 ____D () C:\ProgramData\PDFC
2014-07-03 19:28 - 2014-07-03 19:28 - 00001576 _____ () C:\Windows\PFRO.log
2014-07-03 19:28 - 2014-06-27 22:46 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-03 19:28 - 2014-04-22 20:46 - 00000043 _____ () C:\Windows\SysWOW64\LOCALDEVICE.INI
2014-07-03 19:28 - 2012-07-26 09:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-03 19:28 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-07-03 19:27 - 2014-06-01 23:39 - 00001978 _____ () C:\Users\Public\Desktop\avast! Internet Security.lnk
2014-07-03 19:26 - 2014-07-03 19:26 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-03 19:26 - 2014-06-01 23:12 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00426848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-03 19:26 - 2014-06-01 23:12 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-03 19:25 - 2014-07-03 19:25 - 00448400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-07-03 19:25 - 2014-06-01 23:12 - 00028184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2014-07-03 17:38 - 2014-06-18 12:10 - 00000392 _____ () C:\Windows\Tasks\HPCeeScheduleForKostík a Irenka.job
2014-07-03 17:00 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\sru
2014-06-29 18:09 - 2014-06-29 09:40 - 00000000 ____D () C:\Users\Rastislav\Desktop\Discovery Channel 50x30 Skylink
2014-06-29 18:09 - 2014-06-29 09:39 - 00000000 ____D () C:\Users\Rastislav\Desktop\Discovery Channel 100x60 Skylink
2014-06-29 18:08 - 2014-06-29 18:08 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dreamboxEDIT
2014-06-29 18:08 - 2014-06-29 18:08 - 00000000 ____D () C:\Program Files (x86)\dreamboxEDIT
2014-06-29 18:08 - 2014-04-21 20:53 - 00001965 _____ () C:\Users\Rastislav\Desktop\dreamboxEDIT.lnk
2014-06-29 17:38 - 2014-06-18 12:10 - 00003226 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForKostík a Irenka
2014-06-29 17:38 - 2014-04-21 17:05 - 00000000 ____D () C:\Users\Rastislav
2014-06-29 17:37 - 2014-04-22 20:18 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-06-29 17:36 - 2014-04-22 20:18 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-06-28 20:02 - 2014-06-28 20:02 - 00001244 _____ () C:\Users\Rastislav\Desktop\ConvertXToDVD 5.lnk
2014-06-28 20:02 - 2014-05-20 17:33 - 00000000 ____D () C:\Users\Rastislav\AppData\Local\CrashDumps
2014-06-28 20:02 - 2014-04-22 18:59 - 00099384 _____ () C:\Users\Rastislav\AppData\Roaming\inst.exe
2014-06-28 20:02 - 2014-04-22 18:59 - 00082816 _____ (VSO Software) C:\Users\Rastislav\AppData\Roaming\pcouffin.sys
2014-06-28 20:02 - 2014-04-22 18:59 - 00007859 _____ () C:\Users\Rastislav\AppData\Roaming\pcouffin.cat
2014-06-28 20:02 - 2014-04-22 18:59 - 00000055 _____ () C:\Users\Rastislav\AppData\Roaming\pcouffin.log
2014-06-28 20:02 - 2014-04-22 18:59 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Vso
2014-06-28 20:02 - 2014-04-22 18:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2014-06-28 20:02 - 2014-04-22 18:21 - 00000000 ____D () C:\Program Files (x86)\VSO
2014-06-28 20:01 - 2014-06-15 19:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2014-06-28 20:01 - 2014-06-15 19:57 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-06-28 00:28 - 2014-04-22 18:56 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\uTorrent
2014-06-27 23:08 - 2014-06-27 23:08 - 00000819 _____ () C:\Users\Rastislav\Desktop\µTorrent.lnk
2014-06-27 23:08 - 2014-06-27 23:08 - 00000799 _____ () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-06-27 23:07 - 2014-06-27 23:06 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-27 23:07 - 2014-06-27 23:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-27 23:06 - 2014-04-21 17:40 - 00000000 ____D () C:\Program Files\WinRAR
2014-06-27 23:04 - 2014-05-17 18:29 - 00000000 ____D () C:\Program Files\WinArchiver
2014-06-27 23:01 - 2014-06-27 23:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinArchiver
2014-06-27 22:53 - 2014-06-27 22:53 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-27 22:53 - 2014-06-27 22:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-27 22:53 - 2014-04-24 19:53 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Notepad++
2014-06-27 22:53 - 2014-04-24 19:53 - 00000000 ____D () C:\Program Files (x86)\Notepad++
2014-06-27 22:53 - 2014-04-22 16:38 - 00001114 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-06-27 22:53 - 2014-04-22 16:38 - 00001102 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-06-27 22:48 - 2012-07-26 09:28 - 00941114 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-27 22:46 - 2014-06-27 22:46 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-25 14:59 - 2014-04-22 18:15 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\vlc
2014-06-23 16:59 - 2014-04-21 19:33 - 00000000 ____D () C:\Program Files\Picon Manager 1.7.1.4
2014-06-23 10:21 - 2014-06-09 15:52 - 00000000 ____D () C:\Users\Rastislav\Desktop\Super vtipy
2014-06-19 19:36 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-06-19 17:56 - 2014-06-19 17:56 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\MPC-HC
2014-06-19 13:21 - 2014-06-27 23:01 - 00142096 _____ (Power Software Ltd) C:\Windows\system32\Drivers\waemu.sys
2014-06-18 16:37 - 2014-06-03 17:20 - 00003946 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-18 16:37 - 2014-06-03 17:20 - 00003710 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-18 08:33 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-17 10:08 - 2014-04-21 19:10 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-16 20:33 - 2014-06-16 20:33 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2014-06-14 16:03 - 2014-06-15 19:57 - 00260696 _____ () C:\Windows\system32\unrar64.dll
2014-06-14 16:03 - 2014-04-22 16:43 - 00218200 _____ () C:\Windows\SysWOW64\unrar.dll
2014-06-14 01:41 - 2014-06-14 01:41 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-14 01:41 - 2014-06-14 01:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-14 01:41 - 2014-06-14 01:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-14 01:41 - 2014-06-14 01:41 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-14 01:41 - 2014-06-14 01:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-14 01:41 - 2014-06-14 01:41 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-12 18:09 - 2014-04-22 19:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-12 18:08 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\WinStore
2014-06-12 18:01 - 2014-04-21 18:38 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-12 18:01 - 2012-07-26 09:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-06-12 18:00 - 2014-04-21 19:48 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-12 17:55 - 2014-04-21 19:48 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-11 16:20 - 2014-06-11 16:20 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-11 16:12 - 2014-06-03 17:36 - 00002283 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-07 19:38 - 2014-04-22 19:02 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Skype
2014-06-03 22:58 - 2014-06-03 22:58 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2014-06-03 17:36 - 2014-06-03 17:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-06-03 17:36 - 2014-04-21 19:13 - 00000000 ____D () C:\Users\Rastislav\AppData\Local\Google
2014-06-03 17:36 - 2014-04-21 19:13 - 00000000 ____D () C:\Program Files (x86)\Google

Some content of TEMP:
====================
C:\Users\Rastislav\AppData\Local\Temp\HitmanPro.exe
C:\Users\Rastislav\AppData\Local\Temp\Tsu7D672DFB.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-28 19:07

==================== End Of Log ============================

Re: Sken AdwCleanerom

Napsal: 03 črc 2014 18:48
od kostik123456
log č.2

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-07-2014
Ran by Kostík a Irenka at 2014-07-03 19:44:15
Running from C:\Users\Rastislav\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32080 - BitTorrent Inc.)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.139 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.2.152 - Adobe Systems, Inc.)
AMD Accelerated Video Transcoding (Version: 12.5.100.20806 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{45324571-83B7-307A-6114-DAE65A50DC8E}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
Ashampoo Burning Studio 14 v.14.0.5 (HKLM-x32\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.5 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Commander 11 (HKLM-x32\...\{C92AB6F1-0F9C-8526-5DF1-0A2FD0FB33D9}_is1) (Version: 11.1.6 - Ashampoo GmbH & Co. KG)
Ashampoo Slideshow Studio HD 3 (HKLM-x32\...\{91B33C97-0CE8-6ABD-1CF4-0DAF2CCF492A}_is1) (Version: 3.0.5 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 11 v.11.0.1 (HKLM-x32\...\{4209F371-8D72-8119-66FA-897D2D41E27F}_is1) (Version: 11.0.1 - Ashampoo GmbH & Co. KG)
avast! Internet Security (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
Balabolka (HKLM-x32\...\Balabolka) (Version: 2.10.0.569 - Ilya Morozov)
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.67.1076 - AB Team, d.o.o.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 2012.0806.1156.19437 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0806.1156.19437 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2012.0806.1156.19437 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2012.0806.1156.19437 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Profiles Mobile (x32 Version: 2012.0806.1156.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2012.0806.1156.19437 - Advanced Micro Devices, Inc.) Hidden
Corel WinDVD Pro 11 (HKLM-x32\...\_{EF13E6B7-86D2-4E2C-82FB-375654407D4F}) (Version: 11.6.1.4 - Corel Inc.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)
CyberLink Media Suite 10 (x32 Version: 10.0.1.1916 - CyberLink Corp.) Hidden
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.1.3109 - CyberLink Corp.)
CyberLink PhotoDirector (x32 Version: 2.0.1.3109 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1924 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.1.1924 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.1.2006 - CyberLink Corp.)
CyberLink PowerDirector 10 (x32 Version: 10.0.1.2006 - CyberLink Corp.) Hidden
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.6.4330 - CyberLink Corp.)
CyberLink PowerDVD (x32 Version: 10.0.6.4330 - CyberLink Corp.) Hidden
DC++ 0.843 (HKLM-x32\...\DC++) (Version: 0.843 - Jacek Sieka)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{2A16B95F-7377-410A-B961-EFD9394E1AF3}) (Version: - Microsoft)
Device Access Manager for HP ProtectTools (HKLM\...\{55B52830-024A-443E-AF61-61E1E71AFA1B}) (Version: 7.1.0.3 - Hewlett-Packard Company)
dreamboxEDIT -- The one and only settings editor for your Dreambox (HKLM-x32\...\dreamboxEDIT) (Version: - )
DVB Dream version 2.6 (HKLM-x32\...\DVB Dream_is1) (Version: - )
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
DVDFab 8.2.3.0 (21/12/2013) Qt (HKLM-x32\...\DVDFab 8 Qt_is1) (Version: - Fengtao Software Inc.)
DVDFab Passkey 8.1.0.4 (04/09/2013) (HKLM-x32\...\DVDFab Passkey 8_is1) (Version: - Fengtao Software Inc.)
EaseUS Partition Master 10.0 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
Energy Star (HKLM\...\{0FA995CC-C849-4755-B14B-5404CC75DC24}) (Version: 1.0.8 - Hewlett-Packard)
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
Evernote v. 4.5.7 (HKLM-x32\...\{0BE73D3C-B5AF-11E1-933A-984BE15F174E}) (Version: 4.5.7.7146 - Evernote Corp.)
Face Recognition for HP ProtectTools (HKLM\...\Face Recognition for HP ProtectTools) (Version: 7.2.0.4542 - Hewlett-Packard Company)
Face Recognition for HP ProtectTools (Version: 7.2.0.4542 - Hewlett-Packard Company) Hidden
Freemake Music Box (HKLM-x32\...\Freemake Music Box_is1) (Version: 1.0.1 - Ellora Assets Corporation)
Freemake Video Converter verzia 4.1.4 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.4 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{29989969-FED8-4EFB-8FB2-39429D37E471}) (Version: 5.1.5.1 - Hewlett-Packard Company)
HP Customer Experience Enhancements (x32 Version: 6.0.1.8 - Hewlett-Packard) Hidden
HP Documentation (HKLM-x32\...\{FCD58C04-324A-40D1-BA9E-1A754DF1736D}) (Version: 1.2.0.0 - Hewlett-Packard)
HP ESU for Microsoft Windows 8 (HKLM-x32\...\{2F8A00FC-1F12-44B2-AA37-F9A358EDC161}) (Version: 1.2.2 - Hewlett-Packard Company)
HP HD Webcam Driver (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.4.8.12 - SunplusIT)
HP Hotkey Support (HKLM-x32\...\{7F7E2060-7212-4A53-9875-55173E4BA3F0}) (Version: 5.0.21.1 - Hewlett-Packard Company)
HP ProtectTools Security Manager (HKLM\...\HPProtectTools) (Version: 8.0.0.1314 - Hewlett-Packard Company)
HP ProtectTools Security Manager (Version: 8.0.0.1314 - Hewlett-Packard Company) Hidden
HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)
HP SoftPaq Download Manager (HKLM-x32\...\{B50981AD-95E8-4E4D-912A-7C4B738387CA}) (Version: 3.4.6.0 - Hewlett-Packard Company)
HP Software Framework (HKLM-x32\...\{D82ABA2F-492B-440F-A9BC-12331B17EEA9}) (Version: 4.6.10.1 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{D1E7D876-6B86-4B35-A93D-15B0D6C43EAF}) (Version: 8.5.4.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP System Default Settings (HKLM-x32\...\{357FE1E9-5890-4697-95DD-B15E01B4AA2A}) (Version: 1.3.2 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
Huawei Drivers (HKLM-x32\...\{C82D8932-EB28-4da6-9582-33D515D46F04}) (Version: 5.01.03.00 - )
ICA (x32 Version: 11.6.1.4 - Corel Inc.) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6418.0 - IDT)
ImTOO Blu-ray Creator 2 (HKCU\...\ImTOO Blu-ray Creator 2) (Version: 2.0.4.20131129 - ImTOO)
Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3097 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.30.1349 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.757.1 - Intel Corporation) Hidden
IPM (x32 Version: 11.5 - Corel Inc.) Hidden
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.76.1 - JMicron Technology Corp.)
K-Lite Codec Pack 10.6.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.6.0 - )
Malwarebytes Anti-Malware verze 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe (x64) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office Access MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden
Mozilla Firefox 30.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 cs)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
Natura Sound Therapy (HKLM-x32\...\Natura Sound Therapy) (Version: 3.00 - Blissive Software)
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.48.0 - Nokia)
Nokia Suite (x32 Version: 3.8.48.0 - Nokia) Hidden
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.7 - Notepad++ Team)
OpenOffice 4.1.0 (HKLM-x32\...\{43245B34-BAEA-4716-B877-38E7E7026698}) (Version: 4.10.9764 - Apache Software Foundation)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.1.49 - PDF Complete, Inc)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Ralink Bluetooth Stack64 (HKLM\...\{95DF815D-BE2D-9118-F549-39794C5869CF}) (Version: 9.0.725.0 - Ralink Corporation)
Ralink RT3290 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.2.0 - Ralink)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.2.612.2012 - Realtek)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Relaxační hudba - Relax Sound Software 1.0 (HKLM-x32\...\Relaxační hudba - Relax Sound Software_is1) (Version: - PS Media s.r.o.)
Revo Uninstaller Pro 3.0.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.8 - VS Revo Group, Ltd.)
Screenshot Captor 4.8.5 (HKLM-x32\...\ScreenshotCaptor_is1) (Version: - )
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
Setup (x32 Version: 11.6.1.4 - Corel Inc.) Hidden
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.2.15747.10003 - Microsoft Corporation)
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
StartIsBack (HKCU\...\StartIsBack) (Version: 2.1.2 - startisback.com)
Subtitle Edit 3.3.1 (HKLM-x32\...\SubtitleEdit_is1) (Version: 3.3.1.1593 - Nikse)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
SUPERAntiSpyware 5.6.1032 (HKLM-x32\...\SUPERAntiSpyware 5.6.1032) (Version: 5.6.1032 - skoda.josef@gmail.com)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.8 - Synaptics Incorporated)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29480 - TeamViewer)
Theft Recovery for HP ProtectTools (HKLM-x32\...\InstallShield_{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 7.0.0.10 - Hewlett-Packard Company)
Theft Recovery for HP ProtectTools (x32 Version: 7.0.0.10 - Hewlett-Packard Company) Hidden
T-Mobile Internet Manager (HKLM-x32\...\T-Mobile Communication Centre) (Version: 2013-10-31@2013-12-02 - Gemfor s.r.o.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
TuneUp Utilities 2014 (en-GB) (x32 Version: 14.0.1000.275 - TuneUp Software) Hidden
Ultra Video Joiner 6.3.0506 (HKLM-x32\...\Ultra Video Joiner_is1) (Version: - Aone Software)
UltraISO Premium V9.61 (HKLM-x32\...\UltraISO_is1) (Version: - )
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{FEF4C57D-0975-4D3C-ACC7-DCD038C3788F}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{84B191B5-5319-463A-A305-8C4D53B1D20A}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{DB0B0CDF-77EC-47B0-94E2-4738573A1E58}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{1AA82E2E-7DB7-4C70-910C-BBB657A6B3A5}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{79C725A1-3964-421C-A528-78C1C083C7C7}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{EBD18DE5-BC84-4B57-9A30-097044871F9A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{07DC9C6C-E916-4F42-8677-716930ED0393}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{6E760BBA-B83F-4C2D-918F-5F91EF6C9861}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{90140000-0044-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 64-Bit Edition (HKLM\...\{90140000-001F-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{95FC4D5E-0C1A-435A-9759-E8656BCB358B}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{64D96F30-CF4C-4CCE-AAF2-F8909348BF35}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{8A6BDA63-4D23-4485-A466-8979E10BCF49}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{8A6BDA63-4D23-4485-A466-8979E10BCF49}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{90140000-001A-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{EF3CB32B-993B-4741-875E-9A41E9E7E520}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{DDDC32A5-9528-4771-B91A-97A8E1D7957B}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{90140000-0018-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{475E6B60-AD7E-4CCB-870D-D67FC71DBCED}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A20A650C-F820-4CE4-AEA5-EC140192FAFB}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F6F342A1-530B-4D48-A468-1E3F70928984}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{C950A55F-82E3-4CC8-8FA2-E8A2A0F651F3}) (Version: - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{89FDC8D9-FB84-4EFE-950D-AF4EECC3B64C}) (Version: - Microsoft)
Validity Fingerprint Sensor Driver (HKLM\...\{AA51ED2E-DCE7-415F-9C32-CB9B561D216D}) (Version: 4.4.228.0 - Validity Sensors, Inc.)
VideoReDo TVSuite Version 4.20.7.629 (HKLM-x32\...\VideoReDo4_is1) (Version: - DRD Systems, Inc.)
VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.2.0.3 - VSO Software)
VSO Downloader 4.0.0.19 (HKLM-x32\...\{A0D0BA9E-F1A6-44FF-AA14-03ED96B3D56D}_is1) (Version: 4.0.0.19 - VSO Software)
VSO EVE Network Driver version 1.0.0.26 (HKLM-x32\...\{AC0AFDC9-4FB1-44FE-B3E1-82300BF3D756}_is1) (Version: 1.0.0.26 - VSO Software)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinArchiver (HKLM-x32\...\WinArchiver) (Version: 3.6 - Power Software Ltd)
Window On Top version 3.8 (HKCU\...\{7F2C28D2-EE31-49A5-94F2-67285DAE372B}_is1) (Version: 3.8 - Skybn Software)
Windows Driver Package - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinDVD (x32 Version: 11.6.1.4 - Corel Inc.) Hidden
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
WinX DVD Ripper Platinum 7.5.5 (HKLM-x32\...\WinX DVD Ripper Platinum_is1) (Version: - Digiarty Software, Inc.)
Xilisoft Blu-ray Ripper (HKCU\...\Xilisoft Blu-ray Ripper) (Version: 7.1.0.20131118 - Xilisoft)
Xilisoft DVD Ripper Ultimate (HKCU\...\Xilisoft DVD Ripper Ultimate) (Version: 7.8.1.20140505 - Xilisoft)
Xilisoft Video Converter Ultimate (HKCU\...\Xilisoft Video Converter Ultimate) (Version: 7.8.1.20140505 - Xilisoft)
ZTE Drivers (HKLM-x32\...\{ACC9984D-E78B-4fcd-BE44-4E3F186DDA33}) (Version: 1.2088.0.7 - )

==================== Restore Points =========================

12-06-2014 15:54:09 Windows Update
15-06-2014 17:50:32 Revo Uninstaller Pro's restore point - K-Lite Codec Pack 10.5.6 Full
27-06-2014 20:55:05 Revo Uninstaller Pro's restore point - HitmanPro 3.7
03-07-2014 17:24:33 avast! antivirus system restore point
03-07-2014 17:31:24 Revo Uninstaller Pro's restore point - HitmanPro 3.7

==================== Hosts content: ==========================

2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {03FDA4E7-B4C6-405A-A75F-FDA07EE4522C} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2014-04-19] (Microsoft Corporation)
Task: {058DC9FC-FEE3-40C9-B532-89F5C84639DE} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-03] (AVAST Software)
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {3FE64C15-608E-478D-BE48-6EAAD1DAC209} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {4E51CCBD-9B22-4153-90EA-603E63E06D11} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-27] (Adobe Systems Incorporated)
Task: {62A9ED7E-6326-41AE-B6FA-07CEB6DBDA15} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-30] (Synaptics Incorporated)
Task: {7A536989-F241-403E-A203-B4A9D34578B2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {84DDE021-F352-40E4-A4BF-16879CBE3532} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\WatTask => C:\Windows Activation Technologies\wat.exe [2006-04-21] ()
Task: {8E722CF1-383E-4C80-80DB-1174A8A6AAD5} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-06-12] (Microsoft Corporation)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {BEC67FBA-47CE-4916-BE82-6CADCF3A72FF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-03] (Google Inc.)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {C8BE92DB-2A01-4A8C-99B9-4598A6B3676D} - System32\Tasks\HPCeeScheduleForKostík a Irenka => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {D961CE97-9B1C-49A6-88F9-CB1E2272B569} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {DD62AD32-2668-4105-8B12-B68B87B40174} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-03] (Google Inc.)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForKostík a Irenka.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Loaded Modules (whitelisted) =============

2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\office.odf
2012-09-19 18:37 - 2012-09-19 18:37 - 00029960 _____ () C:\Windows\system32\BsTrace.dll
2012-09-19 18:37 - 2012-09-19 18:37 - 00363784 _____ () C:\Windows\system32\BsExtendFunc.dll
2012-09-19 18:37 - 2012-09-19 18:37 - 00017160 _____ () C:\Windows\system32\BsHelpCSps.dll
2012-09-19 18:37 - 2012-09-19 18:37 - 00062216 _____ () C:\Windows\system32\BlueSoleilCSps.dll
2014-05-12 11:49 - 2014-05-12 11:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2014-04-21 18:15 - 2012-09-28 03:26 - 00087040 _____ () C:\Windows\PersonalizeEnabler.exe
2014-04-21 18:15 - 2012-09-27 01:31 - 00084992 _____ () C:\Windows\SLCHook.dll
2014-04-21 18:15 - 2009-03-07 07:02 - 00102912 _____ () C:\Windows\EasyHook64.dll
2014-03-30 09:25 - 2014-03-30 09:26 - 00176048 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2012-08-23 13:07 - 2012-08-23 13:07 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-07-26 11:22 - 2012-07-26 11:22 - 00303480 _____ () C:\Program Files (x86)\HP HD Webcam Driver\Monitor.exe
2014-04-22 17:13 - 2014-02-13 15:37 - 00254024 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe
2012-08-06 20:54 - 2012-08-06 20:54 - 00369664 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-07-03 19:26 - 2014-07-03 19:26 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-07-03 19:26 - 2014-07-03 19:26 - 02789888 _____ () C:\Program Files\AVAST Software\Avast\defs\14070300\algo.dll
2012-09-19 18:37 - 2012-09-19 18:37 - 00029960 _____ () C:\Windows\SYSTEM32\BsTrace.dll
2012-09-24 14:27 - 2012-09-24 14:27 - 00335176 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\USB\tl_filter.dll
2012-05-02 17:28 - 2012-05-02 17:28 - 00012800 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\AMP\IVTAMPRL.dll
2012-09-19 18:37 - 2012-09-19 18:37 - 00017160 _____ () C:\Windows\SYSTEM32\BsHelpCSps.dll
2012-09-19 18:37 - 2012-09-19 18:37 - 00062216 _____ () C:\Windows\SYSTEM32\BlueSoleilCSps.dll
2012-09-18 23:58 - 2012-06-08 05:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 20:34 - 2012-06-08 20:34 - 00016400 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-04-22 17:13 - 2014-02-13 15:27 - 00222792 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\traynet.dll
2014-04-22 17:13 - 2014-02-13 15:27 - 00275528 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\libcurl.dll
2014-04-22 17:13 - 2014-02-13 15:27 - 00113166 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\zlib1.dll
2014-04-22 17:13 - 2014-02-13 15:27 - 00249928 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\uexper.dll
2012-09-19 18:37 - 2012-09-19 18:37 - 00079624 _____ () C:\Windows\SYSTEM32\BsProfilefunc.dll
2012-09-19 18:37 - 2012-09-19 18:37 - 00363784 _____ () C:\Windows\SYSTEM32\BsExtendFunc.dll
2014-07-03 19:26 - 2014-07-03 19:26 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2012-09-18 23:38 - 2014-04-22 20:28 - 01200088 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Temp:0888F409
AlternateDataStreams: C:\ProgramData\Temp:3440EB47
AlternateDataStreams: C:\ProgramData\Temp:66633281

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========

HKLM\...\StartupApproved\Run: => "BCSSync"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"

==================== Faulty Device Manager Devices =============

Name: Intel(R) Zvuk pre obrazovky
Description: Intel(R) Zvuk pre obrazovky
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel(R) Corporation
Service: IntcDAud
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/03/2014 07:31:23 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Prístup je odmietnutý.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {4fdc65b4-0dbf-473d-83c9-c28ace610b4a}

Error: (07/03/2014 07:29:39 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007007B
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a00018a3-f20f-4632-bf7c-8daa5351c914;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/03/2014 07:29:34 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007007B
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a00018a3-f20f-4632-bf7c-8daa5351c914;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (07/03/2014 07:29:06 PM) (Source: Freemake Improver) (EventID: 0) (User: )
Description: Service cannot be started. System.ServiceModel.AddressAccessDeniedException: HTTP could not register URL http://+:8732/FreemakeUtilsService/ProcessObserver/. Your process does not have access rights to this namespace (see http://go.microsoft.com/fwlink/?LinkId=70353 for details). ---> System.Net.HttpListenerException: Prístup je odmietnutý
at System.Net.HttpListener.AddAllPrefixes()
at System.Net.HttpListener.Start()
at System.ServiceModel.Channels.SharedHttpTransportManager.OnOpen()
--- End of inner exception stack trace ---
at System.ServiceModel.Channels.SharedHttpTransportManager.OnOpen()
at System.ServiceModel.Channels.TransportManager.Open(TransportChannelListener channelListener)
at System.ServiceModel.Channels.TransportManagerContainer.Open(SelectTransportManagersCallback selectTransportManagerCallback)
at System.ServiceModel.Channels.TransportChannelListener.OnOpen(TimeSpan timeout)
at System.ServiceModel.Channels.HttpChannelListener`1.OnOpen(TimeSpan timeout)
at System.ServiceModel.C...

Error: (07/03/2014 07:23:30 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007007B
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a00018a3-f20f-4632-bf7c-8daa5351c914;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/03/2014 07:23:27 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007007B
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a00018a3-f20f-4632-bf7c-8daa5351c914;NotificationInterval=1440;Trigger=UserLogon;SessionId=3

Error: (07/03/2014 07:23:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: BlueSoleilCS.exe, verzia: 9.0.723.0, časová značka: 0x5062b290
Názov chybujúceho modulu: tl_filter.dll, verzia: 0.0.0.0, časová značka: 0x505fc6a9
Kód výnimky: 0xc0000094
Odstup chyby: 0x0000d53d
Identifikácia chybujúceho procesu: 0xbfc
Čas spustenia chybujúcej aplikácie: 0xBlueSoleilCS.exe0
Cesta chybujúcej aplikácie: BlueSoleilCS.exe1
Cesta chybujúceho modulu: BlueSoleilCS.exe2
Identifikácia hlásenia: BlueSoleilCS.exe3
Celé meno chybujúceho balíka: BlueSoleilCS.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: BlueSoleilCS.exe5

Error: (07/03/2014 04:20:39 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007007B
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a00018a3-f20f-4632-bf7c-8daa5351c914;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/03/2014 04:20:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007007B
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a00018a3-f20f-4632-bf7c-8daa5351c914;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (07/03/2014 04:20:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: BlueSoleilCS.exe, verzia: 9.0.723.0, časová značka: 0x5062b290
Názov chybujúceho modulu: tl_filter.dll, verzia: 0.0.0.0, časová značka: 0x505fc6a9
Kód výnimky: 0xc0000094
Odstup chyby: 0x0000d53d
Identifikácia chybujúceho procesu: 0x804
Čas spustenia chybujúcej aplikácie: 0xBlueSoleilCS.exe0
Cesta chybujúcej aplikácie: BlueSoleilCS.exe1
Cesta chybujúceho modulu: BlueSoleilCS.exe2
Identifikácia hlásenia: BlueSoleilCS.exe3
Celé meno chybujúceho balíka: BlueSoleilCS.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: BlueSoleilCS.exe5


System errors:
=============
Error: (07/03/2014 07:29:10 PM) (Source: NetBT) (EventID: 4307) (User: )
Description: Initialization failed because the transport refused to open initial addresses.

Error: (07/03/2014 07:29:10 PM) (Source: NetBT) (EventID: 4307) (User: )
Description: Initialization failed because the transport refused to open initial addresses.

Error: (07/03/2014 07:29:04 PM) (Source: HTTP) (EventID: 15005) (User: )
Description: \Device\Http\ReqQueue[::]:8732

Error: (07/03/2014 07:29:00 PM) (Source: HTTP) (EventID: 15005) (User: )
Description: \Device\Http\ReqQueue[::]:26143

Error: (07/03/2014 07:28:25 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: NT AUTHORITY)
Description: 0xc000014d0

Error: (07/03/2014 07:26:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby avast! EmHWID zlyhalo kvôli nasledujúcej chybe:
%%127

Error: (07/03/2014 07:23:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BlueSoleilCS sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 2-krát.

Error: (07/03/2014 04:20:24 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BlueSoleilCS sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (07/01/2014 07:18:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby avast! HardwareID zlyhalo kvôli nasledujúcej chybe:
%%127

Error: (06/30/2014 07:11:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby avast! HardwareID zlyhalo kvôli nasledujúcej chybe:
%%127


Microsoft Office Sessions:
=========================
Error: (07/03/2014 07:31:23 PM) (Source: VSS) (EventID: 8194) (User: )
Description: 0x80070005, Prístup je odmietnutý.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {4fdc65b4-0dbf-473d-83c9-c28ace610b4a}

Error: (07/03/2014 07:29:39 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0x8007007BRuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a00018a3-f20f-4632-bf7c-8daa5351c914;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/03/2014 07:29:34 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0x8007007BRuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a00018a3-f20f-4632-bf7c-8daa5351c914;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (07/03/2014 07:29:06 PM) (Source: Freemake Improver) (EventID: 0) (User: )
Description: Service cannot be started. System.ServiceModel.AddressAccessDeniedException: HTTP could not register URL http://+:8732/FreemakeUtilsService/ProcessObserver/. Your process does not have access rights to this namespace (see http://go.microsoft.com/fwlink/?LinkId=70353 for details). ---> System.Net.HttpListenerException: Prístup je odmietnutý
at System.Net.HttpListener.AddAllPrefixes()
at System.Net.HttpListener.Start()
at System.ServiceModel.Channels.SharedHttpTransportManager.OnOpen()
--- End of inner exception stack trace ---
at System.ServiceModel.Channels.SharedHttpTransportManager.OnOpen()
at System.ServiceModel.Channels.TransportManager.Open(TransportChannelListener channelListener)
at System.ServiceModel.Channels.TransportManagerContainer.Open(SelectTransportManagersCallback selectTransportManagerCallback)
at System.ServiceModel.Channels.TransportChannelListener.OnOpen(TimeSpan timeout)
at System.ServiceModel.Channels.HttpChannelListener`1.OnOpen(TimeSpan timeout)
at System.ServiceModel.C...

Error: (07/03/2014 07:23:30 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0x8007007BRuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a00018a3-f20f-4632-bf7c-8daa5351c914;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/03/2014 07:23:27 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0x8007007BRuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a00018a3-f20f-4632-bf7c-8daa5351c914;NotificationInterval=1440;Trigger=UserLogon;SessionId=3

Error: (07/03/2014 07:23:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: BlueSoleilCS.exe9.0.723.05062b290tl_filter.dll0.0.0.0505fc6a9c00000940000d53dbfc01cf96c9f9f8cd1fC:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exeC:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\USB\tl_filter.dllaf09495c-02d6-11e4-beb5-6894230bf9ee

Error: (07/03/2014 04:20:39 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0x8007007BRuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a00018a3-f20f-4632-bf7c-8daa5351c914;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/03/2014 04:20:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0x8007007BRuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a00018a3-f20f-4632-bf7c-8daa5351c914;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (07/03/2014 04:20:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: BlueSoleilCS.exe9.0.723.05062b290tl_filter.dll0.0.0.0505fc6a9c00000940000d53d80401cf92fdbb913132C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exeC:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\USB\tl_filter.dll2395911e-02bd-11e4-beb5-6894230bf9ee


CodeIntegrity Errors:
===================================
Date: 2014-07-03 19:28:44.107
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

Date: 2014-06-28 20:20:53.482
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

Date: 2014-06-28 18:03:04.669
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

Date: 2014-06-27 23:04:39.278
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

Date: 2014-06-20 20:31:04.465
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

Date: 2014-06-17 10:01:20.420
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.

Date: 2014-06-16 21:09:50.908
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-06-16 21:09:40.118
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-06-16 21:09:39.147
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-06-16 21:09:15.202
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Percentage of memory in use: 25%
Total physical RAM: 6024.21 MB
Available physical RAM: 4506.5 MB
Total Pagefile: 6984.21 MB
Available Pagefile: 5237.88 MB
Total Virtual: 8192 MB
Available Virtual: 8191.77 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:682.47 GB) (Free:625.41 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.99 GB) FAT32
Drive f: (HP_RECOVERY) (Fixed) (Total:12.96 GB) (Free:2.05 GB) NTFS
Drive h: (A-DATA C008) (Removable) (Total:30.21 GB) (Free:30.19 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 699 GB) (Disk ID: A50E1C7D)

Partition: GPT Partition Type.

========================================================
Disk: 1 (Size: 30 GB) (Disk ID: 04DD5721)
Partition 1: (Not Active) - (Size=30 GB) - (Type=0C)

==================== End Of Log ============================

Re: Sken AdwCleanerom

Napsal: 04 črc 2014 06:25
od vyosek
:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => c:\Program Files (x86)\Cyberlink\Shared files\brs.exe [78352 2012-08-04] (cyberlink)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-06-05] (PDF Complete Inc)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-06-24] (Hewlett-Packard)
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\Run: [] => [X]
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\MountPoints2: {839a33ec-f5f5-11e3-beb1-6894230bf9ee} - "G:\Autorun.exe"
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\MountPoints2: {b71b7297-f6d6-11e3-beb1-6894230bf9ee} - "H:\Autorun.exe"
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\MountPoints2: {bff59f74-f584-11e3-beb0-6894230bf9ee} - "G:\Autorun.exe" 

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CMNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CMNTDFJS
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CMNTDFJS

CHR NewTab: "chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR DefaultSearchKeyword: google.com_
CHR DefaultSearchURL: http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADRA_csCZ486
CHR DefaultNewTabURL: 
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForKostík a Irenka.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

AlternateDataStreams: C:\ProgramData\Temp:0888F409
AlternateDataStreams: C:\ProgramData\Temp:3440EB47
AlternateDataStreams: C:\ProgramData\Temp:66633281

Hosts:
Reboot:
End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt

Re: Sken AdwCleanerom

Napsal: 04 črc 2014 16:08
od kostik123456
Dobrý den,tady je ten fixlog z ProBooku HP 4740s

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-07-2014
Ran by Kostík a Irenka at 2014-07-04 16:59:42 Run:1
Running from C:\Users\Rastislav\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => c:\Program Files (x86)\Cyberlink\Shared files\brs.exe [78352 2012-08-04] (cyberlink)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-06-05] (PDF Complete Inc)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-06-24] (Hewlett-Packard)
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\Run: [] => [X]
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\MountPoints2: {839a33ec-f5f5-11e3-beb1-6894230bf9ee} - "G:\Autorun.exe"
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\MountPoints2: {b71b7297-f6d6-11e3-beb1-6894230bf9ee} - "H:\Autorun.exe"
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\MountPoints2: {bff59f74-f584-11e3-beb0-6894230bf9ee} - "G:\Autorun.exe"

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS

CHR NewTab: "chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR DefaultSearchKeyword: google.com_
CHR DefaultSearchURL: http://www.google.com/search?q={searchT ... RA_csCZ486
CHR DefaultNewTabURL:
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForKostík a Irenka.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

AlternateDataStreams: C:\ProgramData\Temp:0888F409
AlternateDataStreams: C:\ProgramData\Temp:3440EB47
AlternateDataStreams: C:\ProgramData\Temp:66633281

Hosts:
Reboot:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLMLServer_For_P2G8 => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLVirtualDrive => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RemoteControl10 => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\BDRegion => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\PDF Complete => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\NCPluginUpdater => value deleted successfully.
'HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP' => Key deleted successfully.
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
'HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{839a33ec-f5f5-11e3-beb1-6894230bf9ee}' => Key deleted successfully.
'HKCR\CLSID\{839a33ec-f5f5-11e3-beb1-6894230bf9ee}'=> Key not found.
'HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b71b7297-f6d6-11e3-beb1-6894230bf9ee}' => Key deleted successfully.
'HKCR\CLSID\{b71b7297-f6d6-11e3-beb1-6894230bf9ee}'=> Key not found.
'HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bff59f74-f584-11e3-beb0-6894230bf9ee}' => Key deleted successfully.
'HKCR\CLSID\{bff59f74-f584-11e3-beb0-6894230bf9ee}'=> Key not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
'HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}' => Key deleted successfully.
'HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}'=> Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}' => Key deleted successfully.
'HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}'=> Key not found.
CHR DefaultSearchKeyword: google.com_ ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchURL: http://www.google.com/search?q={searchT ... RA_csCZ486 ==> The Chrome "Settings" can be used to fix the entry.
'HKCU\SOFTWARE\Policies\Google' => Key deleted successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\HPCeeScheduleForKostík a Irenka.job => Moved successfully.
C:\ProgramData\Temp => ":0888F409" ADS removed successfully.
C:\ProgramData\Temp => ":3440EB47" ADS removed successfully.
C:\ProgramData\Temp => ":66633281" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.


The system needed a reboot.

==== End of Fixlog ====

Re: Sken AdwCleanerom

Napsal: 04 črc 2014 17:25
od vyosek
Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|

Re: Sken AdwCleanerom

Napsal: 04 črc 2014 19:38
od kostik123456
Děkuji za pomoc,ale v systémové složce mi oxidujou věci které jsem tam předtím neměl -
RECYCLE.BIN,ProgramData,SystemVolumeInformation,bootmgr,BOOTNXT,hyberfil.sys,pagefile.sys,swapfile.sys.Nedají se vůbec smazat.Co z tím prosimVás??? :shock: :(
Posílám v přílohe foto.

Re: Sken AdwCleanerom

Napsal: 04 črc 2014 19:41
od vyosek
:arrow: Jsou to legitimni soucasti systemu a byla tam i predtim, pouze jsou skryte a ted se odkryly. Takze jak je skryt: Tento ProBook - OS (c:\) - nahore zalozka Zobrazit - odkliknout Skryte polozky

Re: Sken AdwCleanerom

Napsal: 04 črc 2014 19:44
od kostik123456
OK,děkuji,to jsem si neuvědomil.Děkuji.Zítra Vám pošlu ješte log ze stolního PC co mám v pokojíku o kontrolu zda je OK.Zatím díkes vyosku.
Nashle.

vyosek - Prosím o novou kontrolu logu FRST

Napsal: 05 črc 2014 11:26
od kostik123456
Dobrý den vyosku,poprosil bych vás ješte jednou o kontrolu 2 logů FRST.Stala se mi jedna nepříjemná věc ve Windows 8 Store kde mi nešli otevřít stáhnuté aplikace v obchodě ve 3D ploše.Musel jsem vrátit systém spět a tudíž je asi všechno svinstvo v ProBooku HP 4740s opět.

1 log

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-07-2014
Ran by Kostík a Irenka (administrator) on HP-KOSTIK on 05-07-2014 13:44:37
Running from C:\Users\Rastislav\Desktop
Platform: Windows 8 Pro with Media Center (X64) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Microsoft Corporation) C:\Windows\slsvc.exe
() C:\Windows\PersonalizeEnabler.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files (x86)\HP HD Webcam Driver\Monitor.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
() C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-08-06] (IDT, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP HD Webcam Driver_Monitor] => C:\Program Files (x86)\HP HD Webcam Driver\monitor.exe [303480 2012-07-26] ()
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => c:\Program Files (x86)\Cyberlink\Shared files\brs.exe [78352 2012-08-04] (cyberlink)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [EaseUS EPM Tray Agent] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe [254024 2014-02-13] ()
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [371976 2012-09-19] (IVT Corporation)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [337184 2013-10-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-06-05] (PDF Complete Inc)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432 2014-07-03] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKLM\...\RunOnce: [NCPluginUpdater] - "c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe" Update [21720 2014-06-24] (Hewlett-Packard)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\Run: [] => [X]
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\MountPoints2: {839a33ec-f5f5-11e3-beb1-6894230bf9ee} - "G:\Autorun.exe"
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\MountPoints2: {b71b7297-f6d6-11e3-beb1-6894230bf9ee} - "H:\Autorun.exe"
HKU\S-1-5-21-3794843200-1546759335-3774015432-1002\...\MountPoints2: {bff59f74-f584-11e3-beb0-6894230bf9ee} - "G:\Autorun.exe"
Lsa: [Notification Packages] DPPassFilter scecli
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com/search?q={searchT ... d=ie7&rlz=
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{8683400B-82B4-4912-BC43-BF75C42E14BA}: [NameServer]93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{FA20D60A-96D6-41FD-99F0-7E80046E7768}: [NameServer]93.153.117.1 93.153.117.33

FireFox:
========
FF ProfilePath: C:\Users\Rastislav\AppData\Roaming\Mozilla\Firefox\Profiles\dqx6c1yy.default
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: https://www.e-quip.cz/
FF Keyword.URL: https://www.google.com/search
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_139.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\Program Files\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_139.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1212152.dll (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll (DigitalPersona, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-06-01]

Chrome:
=======
CHR HomePage: hxxp://www.centrum.cz/
CHR StartupUrls: "hxxp://www.google.cz/"
CHR NewTab: "chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR DefaultSearchKeyword: google.com_
CHR DefaultSearchURL: http://www.google.com/search?q={searchT ... RA_csCZ486
CHR DefaultNewTabURL:
CHR Extension: (Google Translate) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2014-06-03]
CHR Extension: (Dokumenty Google) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-03]
CHR Extension: (Disk Google) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-03]
CHR Extension: (Meteopress - předpověď počasí) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcpnncnkejclcjokemijhkikfeojpgno [2014-06-03]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-06-03]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-06-03]
CHR Extension: (YouTube) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-03]
CHR Extension: (Pool) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\cedbddnnmhgnedpamoenmdkhnpnfbpjb [2014-06-03]
CHR Extension: (Digital clock) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehoiekgopjlnkinohiclellfpkfgfek [2014-06-03]
CHR Extension: (Hľadať v Google) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-03]
CHR Extension: (FlipClock) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\copjokjinhlflggeifkidlmodfepbpgl [2014-06-03]
CHR Extension: (8 Ball Pool Multiplayer) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddfplgpeamcbpecnihfpikllkfojgkai [2014-06-03]
CHR Extension: (Kalendár Google) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2014-06-03]
CHR Extension: (Hodiny pre Google Chrome ™) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\emakkfldeggiinnfcdjkakdfcppbfhdg [2014-06-03]
CHR Extension: (Skype Links) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbmllnadbdnppblcebkkmapkinkdchd [2014-06-03]
CHR Extension: (Goolge mapy s prehľadávaním okolia) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbfnldkfkplmmmbfnjkdbbhjbopnocda [2014-06-03]
CHR Extension: (Facebook for Chrome) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdalhedleemkkdjddjgfjmcnbpejpapp [2014-06-03]
CHR Extension: (Hodiny) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2014-06-03]
CHR Extension: (AdBlock) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-06-03]
CHR Extension: (IP adresa) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjndloejlcbpkholmagjbddfkjmmploh [2014-06-03]
CHR Extension: (Uložiť na Disk Google) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2014-06-03]
CHR Extension: (avast! Online Security) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-06-03]
CHR Extension: (Allow Right-Click) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\hompjdfbfmmmgflfjdlnkohcplmboaeo [2014-06-03]
CHR Extension: (AutoPagerize) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\igiofjhpmpihnifddepnpngfjhkfenbp [2014-06-03]
CHR Extension: (Downloads) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfchnphgogjhineanplmfkofljiagjfb [2014-06-03]
CHR Extension: (Tlačidlo Google +1) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgoepmocgafhnchmokaimcmlojpnlkhp [2014-06-03]
CHR Extension: (*Ultimate Football Results*) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnpobggldcjebejmndignliobeifocj [2014-06-03]
CHR Extension: (World Clock) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\klalbmkcicglbbedmdlkidhkiaelhdog [2014-06-03]
CHR Extension: (Earth TV) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpnmncjdpbehanjnmpmodhbheohhcpdn [2014-06-03]
CHR Extension: (Satellite Finder) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\laadpcgmfdkmmkhnhoaalgbjoahkjlpn [2014-06-03]
CHR Extension: (Watch Live Football Streaming Online For Free) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\legocaboiicfjgofnmlgnogcngeokmga [2014-06-03]
CHR Extension: (Vyhledávání na Uložto.cz) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmkajlpofgoacniacbaappohkglliini [2014-06-03]
CHR Extension: (Twoo Notifications) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\mggafhpkgkfebnjfbiefbbbicikgchlf [2014-06-03]
CHR Extension: (Hodiny) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjocghlclkpgheifflemilcnblodjohg [2014-06-03]
CHR Extension: (Peňaženka Google) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-03]
CHR Extension: (9-Ball Pool) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\oafdgpdaojfjhcolidaakebmnbibdbpb [2014-06-03]
CHR Extension: (Live Sports) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\oamjbefinnglappklpabmhpbcdiephoo [2014-06-03]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2014-06-03]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-06-03]
CHR Extension: (Desktop) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pafkcccccfmnjkhhndjfffifnflhkpdo [2014-06-03]
CHR Extension: (Gmail) - C:\Users\Rastislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-03]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-03]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-11] (SUPERAntiSpyware.com)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-03] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [106488 2014-07-03] (AVAST Software)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1612552 2012-09-26] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [146184 2012-09-19] (IVT Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
S2 CLKMSVC10_38F51D56; c:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [243728 2012-08-04] (CyberLink)
S4 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [488824 2012-08-25] (DigitalPersona, Inc.)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477088 2012-08-01] (Hewlett-Packard Company)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-05-27] (Freemake) [File not signed]
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-10-16] (Hewlett-Packard Company)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2014-04-22] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2014-04-22] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 MbnExt; C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\MbnExt.dll [417128 2013-12-02] (Gemfor s.r.o.)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1143432 2013-06-05] (PDF Complete Inc)
R2 slsvc; C:\Windows\slsvc.exe [10240 2012-09-25] (Microsoft Corporation) [File not signed]
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [321536 2012-08-06] (IDT, Inc.) [File not signed]
U2 WinArchiver Service; C:\Program Files\WinArchiver\WAService.exe [257336 2014-06-19] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
S2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [X]

==================== Drivers (Whitelisted) ====================

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [35496 2012-07-09] (Advanced Micro Devices, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-03] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-07-03] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-03] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [448400 2014-07-03] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-03] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-03] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-07-03] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-07-04] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-03] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-03] ()
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthAvrcpTg;
U4 BthHFEnum;
U4 bthhfhid;
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48608 2012-10-02] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [64832 2012-07-25] (Hewlett-Packard Company)
R3 dvdfab; C:\Windows\System32\drivers\dvdfab.sys [79232 2011-08-15] (Fengtao Software Inc.)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [14920 2013-03-07] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] ()
R1 Eve; C:\Windows\system32\DRIVERS\eve.sys [41304 2014-01-23] ()
S3 huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [246272 2013-06-29] (Huawei Technologies Co., Ltd.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwNe64.sys [11400192 2012-06-02] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2010-07-16] (CACE Technologies, Inc.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-15] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-15] (Synaptics Incorporated)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1062008 2012-08-03] (Sunplus)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S1 ArcCtrl; system32\drivers\ArcCtrl.sys [X]
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
U3 DfSdkS;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-05 13:44 - 2014-07-05 13:45 - 00031476 _____ () C:\Users\Rastislav\Desktop\FRST.txt
2014-07-05 13:44 - 2014-07-05 13:44 - 02084352 _____ (Farbar) C:\Users\Rastislav\Desktop\FRST64.exe
2014-07-05 13:44 - 2014-07-05 13:44 - 00000000 ____D () C:\FRST
2014-07-05 13:15 - 2014-07-05 13:15 - 00000378 _____ () C:\Windows\PFRO.log
2014-07-05 13:03 - 2014-07-05 13:38 - 00042160 _____ () C:\Windows\WindowsUpdate.log
2014-07-04 23:12 - 2014-07-04 23:12 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-07-04 22:45 - 2014-07-04 22:45 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-07-03 20:02 - 2014-07-02 17:29 - 01331354 _____ () C:\Users\Rastislav\Desktop\adwcleaner 3.214.rar
2014-07-03 19:26 - 2014-07-03 19:26 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-03 19:25 - 2014-07-03 19:25 - 00448400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-06-29 18:08 - 2014-06-29 18:08 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dreamboxEDIT
2014-06-29 18:08 - 2014-06-29 18:08 - 00000000 ____D () C:\Program Files (x86)\dreamboxEDIT
2014-06-28 20:02 - 2014-06-28 20:02 - 00001244 _____ () C:\Users\Rastislav\Desktop\ConvertXToDVD 5.lnk
2014-06-27 23:08 - 2014-06-27 23:08 - 00000819 _____ () C:\Users\Rastislav\Desktop\µTorrent.lnk
2014-06-27 23:08 - 2014-06-27 23:08 - 00000799 _____ () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-06-27 23:06 - 2014-06-27 23:07 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-27 23:06 - 2014-06-27 23:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-27 23:01 - 2014-06-27 23:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinArchiver
2014-06-27 23:01 - 2014-06-19 13:21 - 00142096 _____ (Power Software Ltd) C:\Windows\system32\Drivers\waemu.sys
2014-06-27 22:53 - 2014-06-27 22:53 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-27 22:53 - 2014-06-27 22:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-27 22:46 - 2014-07-05 13:28 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-27 22:46 - 2014-06-27 22:46 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-19 17:56 - 2014-06-19 17:56 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\MPC-HC
2014-06-18 12:10 - 2014-07-05 11:38 - 00000392 _____ () C:\Windows\Tasks\HPCeeScheduleForKostík a Irenka.job
2014-06-18 12:10 - 2014-06-29 17:38 - 00003226 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForKostík a Irenka
2014-06-16 20:33 - 2014-06-16 20:33 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2014-06-15 19:57 - 2014-06-28 20:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2014-06-15 19:57 - 2014-06-28 20:01 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-06-15 19:57 - 2014-06-14 16:03 - 00260696 _____ () C:\Windows\system32\unrar64.dll
2014-06-14 01:41 - 2014-06-14 01:41 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-14 01:41 - 2014-06-14 01:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-14 01:41 - 2014-06-14 01:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-14 01:41 - 2014-06-14 01:41 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-14 01:41 - 2014-06-14 01:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-14 01:41 - 2014-06-14 01:41 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-12 17:53 - 2014-05-24 04:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-12 17:53 - 2014-05-24 04:47 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-12 17:53 - 2014-05-24 04:47 - 01366016 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-12 17:53 - 2014-05-24 04:47 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-06-12 17:53 - 2014-05-24 04:47 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 19290112 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 15368704 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 02650112 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-12 17:53 - 2014-05-24 04:46 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-12 17:53 - 2014-05-24 04:45 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-12 17:53 - 2014-05-24 04:45 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-12 17:53 - 2014-05-24 04:45 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 14365696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-12 17:53 - 2014-05-24 03:26 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 13731328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 02862080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-12 17:53 - 2014-05-24 03:25 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-12 17:53 - 2014-05-24 03:25 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-12 17:53 - 2014-05-24 03:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-12 17:53 - 2014-05-24 03:03 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-12 17:53 - 2014-05-24 00:37 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-06-12 17:53 - 2014-05-03 08:34 - 06974808 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-06-12 17:53 - 2014-05-03 08:33 - 01824808 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-06-12 17:53 - 2014-05-03 07:47 - 03246592 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-12 17:53 - 2014-05-03 06:51 - 01408976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-06-12 17:53 - 2014-05-03 05:34 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-06-12 17:53 - 2014-05-02 00:37 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-06-12 17:53 - 2014-04-30 00:32 - 01301504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-06-12 17:53 - 2014-04-30 00:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-06-12 17:53 - 2014-04-30 00:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-06-12 17:53 - 2014-04-30 00:22 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-06-12 17:53 - 2014-04-24 01:51 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-06-12 17:53 - 2014-04-24 01:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-12 17:53 - 2014-04-24 01:38 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-06-12 17:53 - 2014-04-24 01:38 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-12 17:53 - 2014-02-08 06:34 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-06-12 17:52 - 2014-04-03 13:22 - 02233176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-12 17:52 - 2014-03-07 02:47 - 01419264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-12 17:52 - 2014-03-07 02:08 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-11 16:20 - 2014-06-11 16:20 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-09 15:52 - 2014-06-23 10:21 - 00000000 ____D () C:\Users\Rastislav\Desktop\Super vtipy

==================== One Month Modified Files and Folders =======

2014-07-05 13:45 - 2014-07-05 13:44 - 00031476 _____ () C:\Users\Rastislav\Desktop\FRST.txt
2014-07-05 13:44 - 2014-07-05 13:44 - 02084352 _____ (Farbar) C:\Users\Rastislav\Desktop\FRST64.exe
2014-07-05 13:44 - 2014-07-05 13:44 - 00000000 ____D () C:\FRST
2014-07-05 13:42 - 2014-06-03 17:24 - 00000974 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-05 13:41 - 2014-04-21 17:05 - 00000000 ____D () C:\Users\Rastislav
2014-07-05 13:38 - 2014-07-05 13:03 - 00042160 _____ () C:\Windows\WindowsUpdate.log
2014-07-05 13:28 - 2014-06-27 22:46 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-05 13:27 - 2014-04-21 17:16 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3794843200-1546759335-3774015432-1002
2014-07-05 13:22 - 2014-04-22 20:18 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-07-05 13:21 - 2014-04-22 20:18 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-07-05 13:21 - 2012-09-26 09:53 - 00000950 _____ () C:\Windows\SysWOW64\bscs.ini
2014-07-05 13:18 - 2014-06-01 23:12 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-05 13:18 - 2014-04-22 20:46 - 00003619 _____ () C:\Windows\SysWOW64\LOCALSERVICE.INI
2014-07-05 13:18 - 2014-04-22 20:46 - 00000043 _____ () C:\Windows\SysWOW64\LOCALDEVICE.INI
2014-07-05 13:17 - 2014-06-03 17:20 - 00000970 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-05 13:17 - 2012-09-09 07:14 - 00000000 ____D () C:\ProgramData\PDFC
2014-07-05 13:16 - 2012-07-26 09:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-05 13:15 - 2014-07-05 13:15 - 00000378 _____ () C:\Windows\PFRO.log
2014-07-05 13:15 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-07-05 13:02 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\sru
2014-07-05 11:38 - 2014-06-18 12:10 - 00000392 _____ () C:\Windows\Tasks\HPCeeScheduleForKostík a Irenka.job
2014-07-04 23:12 - 2014-07-04 23:12 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-07-04 22:53 - 2014-04-22 16:38 - 00001114 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-07-04 22:53 - 2014-04-22 16:38 - 00001102 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-07-04 22:45 - 2014-07-04 22:45 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-07-04 22:43 - 2014-06-01 23:39 - 00001938 _____ () C:\Users\Public\Desktop\avast! Internet Security.lnk
2014-07-04 22:43 - 2014-06-01 23:12 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-04 22:39 - 2014-04-22 18:56 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\uTorrent
2014-07-04 22:39 - 2014-04-21 18:31 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\GHISLER
2014-07-04 22:39 - 2014-04-21 18:14 - 00000000 _RSHD () C:\Windows Activation Technologies
2014-07-04 22:39 - 2012-08-02 23:20 - 00000000 ___HD () C:\SYSTEM.SAV
2014-07-04 22:39 - 2012-08-01 23:27 - 00000000 ____D () C:\Users\Administrator
2014-07-04 22:38 - 2014-04-21 17:11 - 00000000 ____D () C:\Users\Rastislav\AppData\Local\bluesoleil
2014-07-04 22:37 - 2014-04-22 02:32 - 00000000 ___HD () C:\$SysReset
2014-07-04 22:37 - 2014-04-21 18:37 - 00000000 __RHD () C:\MSOCache
2014-07-04 22:37 - 2012-09-09 07:13 - 00000000 ___HD () C:\hp
2014-07-04 22:36 - 2014-06-03 22:58 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2014-07-04 22:36 - 2014-05-18 19:38 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\SUPERAntiSpyware.com
2014-07-04 22:36 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\registration
2014-07-04 22:35 - 2014-04-22 18:21 - 00000000 ____D () C:\ProgramData\VSO
2014-07-04 22:18 - 2014-05-20 17:33 - 00000000 ____D () C:\Users\Rastislav\AppData\Local\CrashDumps
2014-07-03 19:28 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\BBI(514)
2014-07-03 19:26 - 2014-07-03 19:26 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-03 19:26 - 2014-06-01 23:12 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-03 19:26 - 2014-06-01 23:12 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-03 19:26 - 2014-06-01 23:12 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-03 19:25 - 2014-07-03 19:25 - 00448400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-07-03 19:25 - 2014-06-01 23:12 - 00028184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2014-07-02 17:29 - 2014-07-03 20:02 - 01331354 _____ () C:\Users\Rastislav\Desktop\adwcleaner 3.214.rar
2014-06-29 18:08 - 2014-06-29 18:08 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dreamboxEDIT
2014-06-29 18:08 - 2014-06-29 18:08 - 00000000 ____D () C:\Program Files (x86)\dreamboxEDIT
2014-06-29 18:08 - 2014-04-21 20:53 - 00001965 _____ () C:\Users\Rastislav\Desktop\dreamboxEDIT.lnk
2014-06-29 17:38 - 2014-06-18 12:10 - 00003226 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForKostík a Irenka
2014-06-28 20:02 - 2014-06-28 20:02 - 00001244 _____ () C:\Users\Rastislav\Desktop\ConvertXToDVD 5.lnk
2014-06-28 20:02 - 2014-04-22 18:59 - 00099384 _____ () C:\Users\Rastislav\AppData\Roaming\inst.exe
2014-06-28 20:02 - 2014-04-22 18:59 - 00082816 _____ (VSO Software) C:\Users\Rastislav\AppData\Roaming\pcouffin.sys
2014-06-28 20:02 - 2014-04-22 18:59 - 00007859 _____ () C:\Users\Rastislav\AppData\Roaming\pcouffin.cat
2014-06-28 20:02 - 2014-04-22 18:59 - 00000055 _____ () C:\Users\Rastislav\AppData\Roaming\pcouffin.log
2014-06-28 20:02 - 2014-04-22 18:59 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Vso
2014-06-28 20:02 - 2014-04-22 18:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2014-06-28 20:02 - 2014-04-22 18:21 - 00000000 ____D () C:\Program Files (x86)\VSO
2014-06-28 20:01 - 2014-06-15 19:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2014-06-28 20:01 - 2014-06-15 19:57 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-06-27 23:08 - 2014-06-27 23:08 - 00000819 _____ () C:\Users\Rastislav\Desktop\µTorrent.lnk
2014-06-27 23:08 - 2014-06-27 23:08 - 00000799 _____ () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-06-27 23:07 - 2014-06-27 23:06 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-27 23:07 - 2014-06-27 23:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-27 23:06 - 2014-04-21 17:40 - 00000000 ____D () C:\Program Files\WinRAR
2014-06-27 23:04 - 2014-05-17 18:29 - 00000000 ____D () C:\Program Files\WinArchiver
2014-06-27 23:01 - 2014-06-27 23:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinArchiver
2014-06-27 22:53 - 2014-06-27 22:53 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-27 22:53 - 2014-06-27 22:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-27 22:53 - 2014-04-24 19:53 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Notepad++
2014-06-27 22:53 - 2014-04-24 19:53 - 00000000 ____D () C:\Program Files (x86)\Notepad++
2014-06-27 22:48 - 2012-07-26 09:28 - 00941114 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-27 22:46 - 2014-06-27 22:46 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-25 14:59 - 2014-04-22 18:15 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\vlc
2014-06-23 16:59 - 2014-04-21 19:33 - 00000000 ____D () C:\Program Files\Picon Manager 1.7.1.4
2014-06-23 10:21 - 2014-06-09 15:52 - 00000000 ____D () C:\Users\Rastislav\Desktop\Super vtipy
2014-06-19 19:36 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-06-19 17:56 - 2014-06-19 17:56 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\MPC-HC
2014-06-19 13:21 - 2014-06-27 23:01 - 00142096 _____ (Power Software Ltd) C:\Windows\system32\Drivers\waemu.sys
2014-06-18 16:37 - 2014-06-03 17:20 - 00003946 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-18 16:37 - 2014-06-03 17:20 - 00003710 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-18 08:33 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-17 10:08 - 2014-04-21 19:10 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-16 20:33 - 2014-06-16 20:33 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2014-06-14 16:03 - 2014-06-15 19:57 - 00260696 _____ () C:\Windows\system32\unrar64.dll
2014-06-14 16:03 - 2014-04-22 16:43 - 00218200 _____ () C:\Windows\SysWOW64\unrar.dll
2014-06-14 01:41 - 2014-06-14 01:41 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-14 01:41 - 2014-06-14 01:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-14 01:41 - 2014-06-14 01:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-14 01:41 - 2014-06-14 01:41 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-14 01:41 - 2014-06-14 01:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-14 01:41 - 2014-06-14 01:41 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-12 18:09 - 2014-04-22 19:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-12 18:08 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\WinStore
2014-06-12 18:01 - 2014-04-21 18:38 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-12 18:01 - 2012-07-26 09:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-06-12 18:00 - 2014-04-21 19:48 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-12 17:55 - 2014-04-21 19:48 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-11 16:20 - 2014-06-11 16:20 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-11 16:12 - 2014-06-03 17:36 - 00002283 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-07 19:38 - 2014-04-22 19:02 - 00000000 ____D () C:\Users\Rastislav\AppData\Roaming\Skype

Some content of TEMP:
====================
C:\Users\Rastislav\AppData\Local\Temp\Quarantine.exe
C:\Users\Rastislav\AppData\Local\Temp\Tsu7D672DFB.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-05 13:27

==================== End Of Log ============================
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz