Reklamy v prohlížečích

[fleker]

Ahoj, potřeboval bych pomoct. Na všech stránkách mi to v prohlížeči háže reklamy či prázdná okna s titulkem "Ads by TheHDvid-Codec V10" a nejdou vypnout, přesto že používám AdBlock. Malwarebytes nic nenajde, stejně tak antivir. Taky používám comodo firewall a přesto se mi tam tydlety sráče nějak dostaly. Poradíš někdo?

[vyosek]

Zdravim

Z kristalove koule se spatni vesti, navic v Brne je zatazeno, takze bych stejne nic nevidel

Zkuste si precist ten horni oranzovy obdelnik a pak dle nej dat log z FRST

[fleker]

Addition.zip

(10.82 KiB) Staženo 63 x

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:26-08-2014
Ran by fleker (administrator) on FLEKER-PC on 29-08-2014 15:08:00
Running from Q:\Downloads
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IObit) C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cavwp.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(IObit) C:\Program Files\IObit\Driver Booster\AutoUpdate.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Petr Laštovička) C:\Program Files\Hotkeyp\HotkeyP.exe
(BitTorrent Inc.) C:\Users\fleker\AppData\Roaming\uTorrent\uTorrent.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cistray.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Ghisler Software GmbH) C:\Program Files\Total Commander\TOTALCMD.EXE
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(IObit) C:\Program Files\IObit\IObit Malware Fighter\IMF.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cis.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(IObit) C:\Program Files\IObit\Driver Booster\DriverBooster.exe
(VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [6667992 2014-05-18] (Realtek Semiconductor)
HKLM\...\Run: [IObit Malware Fighter] => C:\Program Files\IObit\IObit Malware Fighter\IMF.exe [1601856 2014-06-23] (IObit)
HKU\.DEFAULT\...\Run: [Advanced SystemCare 7] => C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe [2295584 2014-04-21] (IObit)
HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-06-01] (Microsoft Corporation)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [EPSON S22 Series] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGEE.EXE [200704 2009-09-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [HotkeyP] => C:\Program Files\Hotkeyp\HotkeyP.exe [60928 2013-05-30] (Petr Laštovička)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [uTorrent] => C:\Users\fleker\AppData\Roaming\uTorrent\uTorrent.exe [1322832 2014-07-03] (BitTorrent Inc.)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\MountPoints2: {c594933e-c916-11e2-80b4-806e6f6e6963} - D:\EPSETUP.EXE
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\COMODO Firewall.lnk
ShortcutTarget: COMODO Firewall.lnk -> C:\Program Files\Comodo\COMODO Internet Security\cistray.exe (COMODO)
Startup: C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Google Chrome.lnk
ShortcutTarget: Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Startup: C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sticky Notes.lnk
ShortcutTarget: Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Startup: C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Total Commander.lnk
ShortcutTarget: Total Commander.lnk -> C:\Program Files\Total Commander\TOTALCMD.EXE (Ghisler Software GmbH)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKCU - {539ABA3B-CD0F-44DE-B0EE-62BB7540D8EA} URL = http://www.only-search.com/?babsrc=SP_k ... rms}&r=361
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6E6EE4D9-9F6A-4EED-B198-0DDA6D1719DC} URL = https://search.yahoo.com/search?fr=chr- ... earchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Ads Removal -> {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} -> C:\Program Files\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll (Adblock)
BHO: Advanced SystemCare Browser Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO: ChromeFrame BHO -> {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} -> C:\Program Files\Google\Chrome Frame\Application\28.0.1500.72\npchrome_frame.dll (Google Inc.)
Handler: gcf - {9875BFAF-B04D-445E-8A69-BE36838CDE3E} - C:\Program Files\Google\Chrome Frame\Application\28.0.1500.72\npchrome_frame.dll (Google Inc.)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36

FireFox:
========
FF ProfilePath: C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF NewTab: user_pref("browser.newtab.url", "");
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @IObit.com/np_Asc_Plugin -> C:\Program Files\IObit\Surfing Protection\BrowerProtect\np_Asc_plugin.dll (IObit)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\fleker\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF user.js: detected! => C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\user.js
FF SearchPlugin: C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: No Name - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2013-10-06]
FF Extension: No Name - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\profiles\extensions\searchplugins [2014-02-13]
FF Extension: Ads Removal - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\adremoveext@adremoveext.net [2014-08-24]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\ascsurfingprotection@iobit.com [2014-08-25]
FF Extension: No Name - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\staged [2014-07-26]
FF Extension: Settings Manager - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{12DC3319-1C0A-106A-C0A9-19AC078CABBB} [2014-05-03]
FF Extension: DownloadHelper - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-10-21]
FF Extension: c151d79ee61b4a90a8875a46d38fba99 - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{c151d79e-e61b-4a90-a887-5a46d38fba99} [2014-08-26]
FF Extension: Firefox Old Version Update Hotfix - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\firefox-hotfix@mozilla.org.xpi [2014-07-26]
FF Extension: PrivDog - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\PrivDog@AdTrustMedia.com.xpi [2013-11-20]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-03-09]

Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/
CHR StartupUrls: Default -> "hxxp://www.only-search.com/?babsrc=HP_kms&affI ... 4&tsp=5327"
CHR CustomProfile: C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (TooManyTabs for Chrome) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\amigcgbheognjmfkaieeeadojiibgbdp [2014-08-05]
CHR Extension: (Dokumenty Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-29]
CHR Extension: (Disk Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-29]
CHR Extension: (YouTube) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-29]
CHR Extension: (OneTab) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2014-08-05]
CHR Extension: (Vyhledávání Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-29]
CHR Extension: (Tabs Outliner) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggkanocgddhmamlbiijnphhppkpkmkl [2014-08-05]
CHR Extension: (AdBlock Premium) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj [2014-05-29]
CHR Extension: (Ads Removal) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fopdddcinljmpmioaklghcalngfhbaen [2014-08-27]
CHR Extension: (avast! Online Security) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-05-29]
CHR Extension: (Tabs saver) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmabfaomlcjlnplkoflgenkmmpilmead [2014-08-05]
CHR Extension: (TheHDvid-Codec V10) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmokinipfahjbfaicnjnmlobmbfiedmp [2014-08-28]
CHR Extension: (Linkclump) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfpjkncokllnfokkgpkobnkbkmelfefj [2014-05-29]
CHR Extension: (TabHamster) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfjjmjmnplabnplceaekkjcmdddokee [2014-08-05]
CHR Extension: (Peněženka Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-05]
CHR Extension: (Context Menu Search) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocpcmghnefmdhljkoiapafejjohldoga [2014-05-29]
CHR Extension: (Gmail) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-29]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-06]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [881952 2014-01-14] (IObit)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2012-12-19] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5306504 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1663192 2014-03-25] (COMODO)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 IMFservice; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [342336 2014-05-15] (IObit)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit)
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [48256 2012-04-09] (Advanced Micro Devices)
R0 asahci32; C:\Windows\System32\DRIVERS\asahci32.sys [40344 2013-01-10] (Asmedia Technology)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-08-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-08-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-08-06] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-08-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-08-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-08-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [71944 2014-08-06] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-08-06] ()
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20072 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [607168 2014-04-16] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [43728 2014-04-16] (COMODO)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-06-01] (DT Soft Ltd)
R3 FileMonitor; C:\Program Files\IObit\IObit Malware Fighter\Drivers\win7_x86\FileMonitor.sys [21480 2013-03-23] (IObit)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [43368 2013-05-23] (ThreatTrack Security)
S3 glavcam; C:\Windows\System32\DRIVERS\glavcam.sys [64384 2014-05-25] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [92656 2014-04-16] (COMODO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [110296 2014-08-29] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-05-12] (Malwarebytes Corporation)
R3 RegFilter; C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\regfilter.sys [32288 2013-11-19] (IObit.com)
R3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [91016 2012-08-27] (Renesas Electronics Corporation)
R3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [181128 2012-08-27] (Renesas Electronics Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [18624 2014-06-04] (IObit)
R3 UrlFilter; C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\UrlFilter.sys [20944 2013-11-19] (IObit.com)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 MSICDSetup; \??\D:\CDriver.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-29 15:07 - 2014-08-29 15:08 - 00000000 ____D () C:\FRST
2014-08-29 06:09 - 2014-08-29 14:10 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-29 06:08 - 2014-08-29 06:08 - 00001020 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-29 06:08 - 2014-08-29 06:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-29 06:08 - 2014-08-29 06:08 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-08-29 06:08 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-29 05:04 - 2014-08-29 05:04 - 00001027 _____ () C:\Users\fleker\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-28 02:14 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 02:14 - 2014-08-23 02:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-27 20:34 - 2014-08-27 20:34 - 00000000 ____D () C:\Users\berry\AppData\Roaming\Malwarebytes
2014-08-27 07:31 - 2014-08-27 07:31 - 00000000 ____D () C:\Users\fleker\geokuk
2014-08-25 20:32 - 2014-08-25 20:32 - 32686080 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-08-25 20:28 - 2014-08-27 21:13 - 00002039 _____ () C:\Users\Public\Desktop\Advanced SystemCare 7.lnk
2014-08-25 20:28 - 2014-08-25 20:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 7
2014-08-18 13:00 - 2014-08-18 13:00 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Unity
2014-08-18 12:59 - 2014-08-18 12:59 - 00000226 _____ () C:\Users\fleker\BullseyeCoverageError.txt
2014-08-18 12:59 - 2014-08-18 12:59 - 00000000 ____D () C:\Users\fleker\AppData\Local\Unity
2014-08-18 06:36 - 2014-08-18 06:36 - 00000000 _____ () C:\Users\fleker\Documents\Ovoce v přírodě.txt
2014-08-14 03:15 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 03:15 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 03:15 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 03:15 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-14 01:45 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-14 01:45 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-14 01:45 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-14 01:45 - 2014-07-25 15:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-14 01:45 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-14 01:45 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-14 01:45 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-14 01:45 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-14 01:45 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-14 01:45 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-14 01:45 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-14 01:45 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-14 01:45 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-14 01:45 - 2014-07-25 14:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-14 01:45 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-14 01:45 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-14 01:45 - 2014-07-25 13:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-14 01:45 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-14 01:45 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-14 01:45 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-14 01:45 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-14 01:45 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-14 01:45 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-14 01:45 - 2014-07-25 13:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-14 01:45 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-14 01:45 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-14 01:45 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-14 01:45 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-14 01:45 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-14 01:45 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-14 01:45 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-14 01:45 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-14 01:45 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-14 01:45 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-14 01:44 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-14 01:44 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-14 01:44 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-14 01:44 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-14 01:44 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-14 01:44 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-14 01:44 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-14 01:44 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-14 01:44 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-14 01:44 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-14 01:44 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-14 01:44 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-14 01:44 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-14 01:44 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-12 00:38 - 2014-08-14 03:09 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Dropbox
2014-08-11 23:14 - 2014-08-11 23:14 - 00203376 _____ () C:\Windows\Minidump\081114-145252-01.dmp
2014-08-11 23:12 - 2014-08-11 23:12 - 298605287 _____ () C:\Windows\MEMORY.DMP
2014-08-07 01:23 - 2014-08-07 01:23 - 00001852 _____ () C:\Users\fleker\Desktop\KMP Games.lnk
2014-08-07 01:21 - 2014-08-07 01:21 - 32833984 _____ (PandoraTV) C:\Users\fleker\Desktop\KMPlayer_3-9-0-126.exe
2014-08-06 18:04 - 2014-08-06 18:04 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-06 18:04 - 2014-08-06 18:04 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-08-05 21:08 - 2014-08-22 20:23 - 00000981 _____ () C:\Users\Public\Desktop\HDVidCodec.lnk
2014-08-05 03:36 - 2014-08-05 03:36 - 00000997 _____ () C:\Users\fleker\Desktop\Možné výdělky – zástupce.lnk
2014-08-02 08:54 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-02 08:54 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-02 08:54 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-02 08:54 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-02 08:54 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-02 08:54 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-02 08:54 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-02 08:54 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-02 08:54 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-02 02:05 - 2014-08-29 02:45 - 00000000 ____D () C:\ProgramData\DSearchLink
2014-08-02 02:05 - 2014-08-02 02:05 - 00001852 _____ () C:\Users\fleker\Desktop\Search.lnk
2014-08-02 02:04 - 2014-08-02 11:05 - 00000000 ____D () C:\Users\fleker\Documents\How.I.Met.Your.Mother.S09.Season.9.COMPLETE.1080p.WEB-DL.H264-CtrlHD [PublicHD]
2014-07-31 18:44 - 2014-07-31 18:44 - 00001053 _____ () C:\Users\fleker\Desktop\Práce u Jirky na bytě – zástupce.lnk
2014-07-31 18:43 - 2014-07-31 18:43 - 00001022 _____ () C:\Users\fleker\Desktop\inzertní stránky – zástupce.lnk
2014-07-31 18:43 - 2014-07-31 18:43 - 00000980 _____ () C:\Users\fleker\Desktop\lepsi stav – zástupce (2).lnk
2014-07-31 18:43 - 2014-07-31 18:43 - 00000921 _____ () C:\Users\fleker\Desktop\Jak – zástupce.lnk
2014-07-31 18:42 - 2014-07-31 18:42 - 00000983 _____ () C:\Users\fleker\Desktop\botok - NEW – zástupce (2).lnk
2014-07-30 17:41 - 2014-08-29 14:10 - 00000672 _____ () C:\Windows\setupact.log
2014-07-30 17:41 - 2014-08-29 14:09 - 00389310 _____ () C:\Windows\PFRO.log
2014-07-30 17:41 - 2014-07-30 17:41 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-30 14:54 - 2014-07-30 14:54 - 00022210 _____ () C:\Users\fleker\Documents\cc_20140730_145413.reg

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-29 15:08 - 2014-08-29 15:07 - 00000000 ____D () C:\FRST
2014-08-29 15:08 - 2013-05-30 13:52 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\uTorrent
2014-08-29 15:02 - 2013-08-19 20:19 - 00000000 ____D () C:\Program Files\trend micro
2014-08-29 14:59 - 2013-05-30 13:31 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-29 14:27 - 2013-05-31 15:13 - 00007605 _____ () C:\Users\fleker\AppData\Local\Resmon.ResmonCfg
2014-08-29 14:17 - 2009-07-14 06:34 - 00022656 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-29 14:17 - 2009-07-14 06:34 - 00022656 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-29 14:16 - 2013-05-30 12:58 - 01593078 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-29 14:13 - 2013-05-30 12:57 - 01358274 _____ () C:\Windows\WindowsUpdate.log
2014-08-29 14:11 - 2014-07-16 22:14 - 00000000 ____D () C:\ProgramData\ProductData
2014-08-29 14:10 - 2014-08-29 06:09 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-29 14:10 - 2014-07-30 17:41 - 00000672 _____ () C:\Windows\setupact.log
2014-08-29 14:10 - 2013-05-30 13:31 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-29 14:10 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-29 14:09 - 2014-07-30 17:41 - 00389310 _____ () C:\Windows\PFRO.log
2014-08-29 14:09 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Resources
2014-08-29 14:09 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\L2Schemas
2014-08-29 06:47 - 2014-07-22 18:08 - 00000000 ____D () C:\Program Files\globalUpdate
2014-08-29 06:29 - 2014-01-24 15:42 - 00000000 ____D () C:\Users\fleker\Desktop\Na výmaz
2014-08-29 06:08 - 2014-08-29 06:08 - 00001020 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-29 06:08 - 2014-08-29 06:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-29 06:08 - 2014-08-29 06:08 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-08-29 06:08 - 2013-07-06 12:12 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Malwarebytes
2014-08-29 06:08 - 2013-07-06 12:12 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-29 05:04 - 2014-08-29 05:04 - 00001027 _____ () C:\Users\fleker\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-29 02:45 - 2014-08-02 02:05 - 00000000 ____D () C:\ProgramData\DSearchLink
2014-08-28 07:17 - 2009-07-14 06:33 - 03805776 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-27 21:13 - 2014-08-25 20:28 - 00002039 _____ () C:\Users\Public\Desktop\Advanced SystemCare 7.lnk
2014-08-27 20:34 - 2014-08-27 20:34 - 00000000 ____D () C:\Users\berry\AppData\Roaming\Malwarebytes
2014-08-27 07:31 - 2014-08-27 07:31 - 00000000 ____D () C:\Users\fleker\geokuk
2014-08-27 07:31 - 2013-05-30 13:03 - 00000000 ____D () C:\Users\fleker
2014-08-26 04:28 - 2013-06-01 16:39 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\vlc
2014-08-25 20:32 - 2014-08-25 20:32 - 32686080 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-08-25 20:32 - 2014-05-09 11:10 - 54181888 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2014-08-25 20:32 - 2014-05-09 11:10 - 01044480 _____ () C:\Windows\system32\config\DEFAULT.iobit
2014-08-25 20:32 - 2014-05-09 11:10 - 00065536 _____ () C:\Windows\system32\config\SAM.iobit
2014-08-25 20:32 - 2014-05-09 11:10 - 00028672 _____ () C:\Windows\system32\config\SECURITY.iobit
2014-08-25 20:28 - 2014-08-25 20:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 7
2014-08-25 20:28 - 2014-05-18 19:32 - 00001016 _____ () C:\Users\Public\Desktop\Smart Defrag 3.lnk
2014-08-25 20:28 - 2014-05-18 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 3
2014-08-23 03:46 - 2014-08-28 02:14 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 02:42 - 2014-08-28 02:14 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 23:29 - 2013-07-09 13:27 - 00000000 ____D () C:\Users\fleker\AppData\Local\CrashDumps
2014-08-22 20:23 - 2014-08-05 21:08 - 00000981 _____ () C:\Users\Public\Desktop\HDVidCodec.lnk
2014-08-18 13:00 - 2014-08-18 13:00 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Unity
2014-08-18 12:59 - 2014-08-18 12:59 - 00000226 _____ () C:\Users\fleker\BullseyeCoverageError.txt
2014-08-18 12:59 - 2014-08-18 12:59 - 00000000 ____D () C:\Users\fleker\AppData\Local\Unity
2014-08-18 06:36 - 2014-08-18 06:36 - 00000000 _____ () C:\Users\fleker\Documents\Ovoce v přírodě.txt
2014-08-16 23:35 - 2013-12-13 09:05 - 00000000 ____D () C:\Windows\rescache
2014-08-14 07:40 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-08-14 03:24 - 2013-06-01 19:18 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-14 03:23 - 2013-08-15 03:08 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-14 03:17 - 2013-05-31 15:25 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-14 03:14 - 2014-05-07 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-14 03:09 - 2014-08-12 00:38 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Dropbox
2014-08-11 23:14 - 2014-08-11 23:14 - 00203376 _____ () C:\Windows\Minidump\081114-145252-01.dmp
2014-08-11 23:14 - 2013-06-24 19:02 - 00000000 ____D () C:\Windows\Minidump
2014-08-11 23:12 - 2014-08-11 23:12 - 298605287 _____ () C:\Windows\MEMORY.DMP
2014-08-11 01:54 - 2014-05-04 19:08 - 00000000 ____D () C:\Program Files\IObit
2014-08-07 03:43 - 2014-08-14 01:44 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 03:39 - 2014-08-14 01:44 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-07 01:23 - 2014-08-07 01:23 - 00001852 _____ () C:\Users\fleker\Desktop\KMP Games.lnk
2014-08-07 01:23 - 2014-03-04 05:16 - 00000000 ____D () C:\The KMPlayer
2014-08-07 01:22 - 2014-03-04 05:16 - 00000634 _____ () C:\Users\fleker\Desktop\KMPlayer.lnk
2014-08-07 01:21 - 2014-08-07 01:21 - 32833984 _____ (PandoraTV) C:\Users\fleker\Desktop\KMPlayer_3-9-0-126.exe
2014-08-06 18:04 - 2014-08-06 18:04 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-06 18:04 - 2014-08-06 18:04 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-08-06 18:04 - 2014-03-09 04:10 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-08-06 18:04 - 2014-03-09 04:10 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-08-06 18:04 - 2014-03-09 04:10 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-08-06 18:04 - 2014-03-09 04:10 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-08-06 18:04 - 2014-03-09 04:10 - 00071944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-08-06 18:04 - 2014-03-09 04:10 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-08-06 18:04 - 2014-03-09 04:10 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-08-06 18:04 - 2014-03-09 04:10 - 00002007 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-08-06 18:04 - 2013-05-31 15:03 - 00276432 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-08-05 09:20 - 2013-05-30 13:45 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-08-05 03:36 - 2014-08-05 03:36 - 00000997 _____ () C:\Users\fleker\Desktop\Možné výdělky – zástupce.lnk
2014-08-02 11:05 - 2014-08-02 02:04 - 00000000 ____D () C:\Users\fleker\Documents\How.I.Met.Your.Mother.S09.Season.9.COMPLETE.1080p.WEB-DL.H264-CtrlHD [PublicHD]
2014-08-02 02:05 - 2014-08-02 02:05 - 00001852 _____ () C:\Users\fleker\Desktop\Search.lnk
2014-08-01 22:34 - 2013-05-30 13:31 - 00002174 _____ () C:\Users\fleker\Desktop\Google Chrome.lnk
2014-08-01 01:16 - 2014-08-14 01:45 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-31 18:45 - 2013-08-20 23:38 - 00000000 ____D () C:\Users\fleker\Desktop\Zbytky
2014-07-31 18:44 - 2014-07-31 18:44 - 00001053 _____ () C:\Users\fleker\Desktop\Práce u Jirky na bytě – zástupce.lnk
2014-07-31 18:43 - 2014-07-31 18:43 - 00001022 _____ () C:\Users\fleker\Desktop\inzertní stránky – zástupce.lnk
2014-07-31 18:43 - 2014-07-31 18:43 - 00000980 _____ () C:\Users\fleker\Desktop\lepsi stav – zástupce (2).lnk
2014-07-31 18:43 - 2014-07-31 18:43 - 00000921 _____ () C:\Users\fleker\Desktop\Jak – zástupce.lnk
2014-07-31 18:42 - 2014-07-31 18:42 - 00000983 _____ () C:\Users\fleker\Desktop\botok - NEW – zástupce (2).lnk
2014-07-30 19:17 - 2013-09-05 15:19 - 00000986 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-07-30 19:17 - 2013-09-05 15:19 - 00000968 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-07-30 19:17 - 2013-05-30 13:03 - 00001197 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-07-30 17:41 - 2014-07-30 17:41 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-30 17:41 - 2014-07-22 18:09 - 00000000 ____D () C:\Program Files\WebSpades
2014-07-30 17:41 - 2013-10-29 19:04 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-07-30 17:41 - 2013-09-05 15:19 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-07-30 17:41 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\security
2014-07-30 14:54 - 2014-07-30 14:54 - 00022210 _____ () C:\Users\fleker\Documents\cc_20140730_145413.reg

Some content of TEMP:
====================
C:\Users\fleker\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
C:\Users\fleker\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpornrke.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-27 06:37

==================== End Of Log ============================

[vyosek]

Zdravim

Odinstalujte Advanced SystemCare a IObit Malware Fighter a nasledne i vse od IOBit - jsou to cinske smejdy a spise jen skodi nez jsou uzitkem. Hledaji nesmyslne a neexistujici problemy, databazi haveti ukradli jine renomovane spolecnosti

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

[fleker]

Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x86
Ran by fleker on ne 31.08.2014 at 6:50:42,19
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220622182255}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220622182257}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220622332215}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660666186655}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660666186657}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660666336615}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660666186655}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660666186657}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660666336615}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{539ABA3B-CD0F-44DE-B0EE-62BB7540D8EA}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\dsearchlink"
Successfully deleted: [Folder] "C:\Program Files\ytd"



~~~ FireFox

Successfully deleted: [File] C:\Users\fleker\AppData\Roaming\mozilla\firefox\profiles\uuy52ycx.default\user.js
Successfully deleted: [Folder] C:\Users\fleker\AppData\Roaming\mozilla\firefox\profiles\uuy52ycx.default\extensions\staged



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 31.08.2014 at 7:24:01,97
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[vyosek]

Necitujte mou odpoved, pouzivejte tlacitko odpovedet

Pokracujte AdwCleanerem

[fleker]

# AdwCleaner v3.308 - Report created 31/08/2014 at 12:41:46
# Updated 20/08/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : fleker - FLEKER-PC
# Running from : C:\Users\fleker\Desktop\adwcleaner_3.308.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\NCH Software
Folder Deleted : C:\Program Files\globalUpdate
Folder Deleted : C:\Program Files\LSHunter.TV
Folder Deleted : C:\Program Files\NCH Software
Folder Deleted : C:\Program Files\WebSpades
Folder Deleted : C:\Users\fleker\AppData\Local\globalUpdate
Folder Deleted : C:\Users\fleker\AppData\Roaming\NCH Software
Folder Deleted : C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LSHunter.TV
Folder Deleted : C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmabfaomlcjlnplkoflgenkmmpilmead
File Deleted : C:\Users\Public\Desktop\HDVidCodec.lnk
File Deleted : C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\user.js
File Deleted : C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****

Task Deleted : GoforFilesUpdate

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\Public\Desktop\Opera.lnk
Shortcut Disinfected : C:\Users\fleker\Desktop\Search.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Torntv Downloader_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Torntv Downloader_RASMANCS
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\GlobalUpdate

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239


-\\ Mozilla Firefox v30.0 (cs)

[ File : C:\Users\berry\AppData\Roaming\Mozilla\Firefox\Profiles\9qut6kou.default\prefs.js ]


[ File : C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js ]


[ File : C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\prefs.js ]

Line Deleted : user_pref("", "hxxps://search.yahoo.com/search?fr=spigot-nt-ff&ei=utf-8&ilc=12&type=800236&p={searchTerms}");

-\\ Google Chrome v36.0.1985.125

[ File : C:\Users\berry\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Extension] : dhdepfaagokllfmhfbcfmocaeigmoebo
Deleted [Extension] : fbmimoidopbghbcmdmpkjaffffmcbmbg
Deleted [Extension] : hphibigbodkkohoglgfkddblldpfohjl
Deleted [Extension] : kdcnnmifdmlmjffdgeieikcokcogpbej
Deleted [Extension] : kincjchfokkeneeofpeefomkikfkiedl
Deleted [Extension] : kkkeikdkpjenmoiicggnnodbkebafgpc
Deleted [Extension] : pgmfkblbflahhponhjmkcnpjinenhlnc

[ File : C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://www.pcco.biz/?page=websearch&srchtext={searchTerms}
Deleted [Startup_urls] : hxxp://www.only-search.com/?babsrc=HP_kms&affI ... 4&tsp=5327
Deleted [Extension] : gkcefkcdkepgkpbgncjchhbjgoanleod
Deleted [Extension] : kmabfaomlcjlnplkoflgenkmmpilmead

*************************

AdwCleaner[R0].txt - [11208 octets] - [27/05/2014 16:01:32]
AdwCleaner[R1].txt - [7653 octets] - [31/08/2014 11:27:35]
AdwCleaner[S0].txt - [10594 octets] - [27/05/2014 16:58:23]
AdwCleaner[S1].txt - [7423 octets] - [31/08/2014 12:41:46]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [7483 octets] ##########

[vyosek]

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  emptyclsid;
  iedefaults;
  FFdefaults;
  CHRdefaults;
  emptyalltemp;
  resethosts;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[fleker]

Píše mi to zoek.exe není platná aplikace typu win 32 (mám win7)

[vyosek]

Dejte tedy novy log z FRST

[fleker]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-09-2014
Ran by fleker (administrator) on FLEKER-PC on 06-09-2014 13:33:57
Running from C:\Users\fleker\Desktop
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cavwp.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Petr Laštovička) C:\Program Files\Hotkeyp\HotkeyP.exe
(BitTorrent Inc.) C:\Users\fleker\AppData\Roaming\uTorrent\uTorrent.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cistray.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cis.exe
(TorchMedia Inc.) C:\Users\fleker\AppData\Local\Torch\Update\TorchCrashHandler.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(PandoraTV) C:\The KMPlayer\KMPlayer.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Ghisler Software GmbH) C:\Program Files\Total Commander\TOTALCMD.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\fleker\Desktop\FRST (1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [6667992 2014-05-18] (Realtek Semiconductor)
HKU\.DEFAULT\...\Run: [Advanced SystemCare 7] => "C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-06-01] (Microsoft Corporation)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [EPSON S22 Series] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGEE.EXE [200704 2009-09-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [HotkeyP] => C:\Program Files\Hotkeyp\HotkeyP.exe [60928 2013-05-30] (Petr Laštovička)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [uTorrent] => C:\Users\fleker\AppData\Roaming\uTorrent\uTorrent.exe [1322832 2014-07-03] (BitTorrent Inc.)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\MountPoints2: {c594933e-c916-11e2-80b4-806e6f6e6963} - D:\EPSETUP.EXE
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\COMODO Firewall.lnk
ShortcutTarget: COMODO Firewall.lnk -> C:\Program Files\Comodo\COMODO Internet Security\cistray.exe (COMODO)
Startup: C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Google Chrome.lnk
ShortcutTarget: Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Startup: C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sticky Notes.lnk
ShortcutTarget: Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Startup: C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Total Commander.lnk
ShortcutTarget: Total Commander.lnk -> C:\Program Files\Total Commander\TOTALCMD.EXE (Ghisler Software GmbH)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6E6EE4D9-9F6A-4EED-B198-0DDA6D1719DC} URL = https://search.yahoo.com/search?fr=chr- ... earchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: ChromeFrame BHO -> {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} -> C:\Program Files\Google\Chrome Frame\Application\28.0.1500.72\npchrome_frame.dll (Google Inc.)
Handler: gcf - {9875BFAF-B04D-445E-8A69-BE36838CDE3E} - C:\Program Files\Google\Chrome Frame\Application\28.0.1500.72\npchrome_frame.dll (Google Inc.)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36

FireFox:
========
FF ProfilePath: C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF NewTab: user_pref("browser.newtab.url", "");
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: TorchVLC -> C:\Users\fleker\AppData\Local\Torch\Plugins\Video\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\fleker\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: No Name - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2013-10-06]
FF Extension: No Name - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\profiles\extensions\searchplugins [2014-02-13]
FF Extension: Settings Manager - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{12DC3319-1C0A-106A-C0A9-19AC078CABBB} [2014-05-03]
FF Extension: DownloadHelper - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-10-21]
FF Extension: c151d79ee61b4a90a8875a46d38fba99 - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{c151d79e-e61b-4a90-a887-5a46d38fba99} [2014-08-26]
FF Extension: Firefox Old Version Update Hotfix - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\firefox-hotfix@mozilla.org.xpi [2014-07-26]
FF Extension: PrivDog - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\PrivDog@AdTrustMedia.com.xpi [2013-11-20]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-03-09]

Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/
CHR CustomProfile: C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (CacheList) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\amhhdbdhoghppijbjfdkiaconkmfbbpa [2014-08-30]
CHR Extension: (TooManyTabs for Chrome) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\amigcgbheognjmfkaieeeadojiibgbdp [2014-08-05]
CHR Extension: (Dokumenty Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-29]
CHR Extension: (Disk Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-29]
CHR Extension: (YouTube) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-29]
CHR Extension: (OneTab) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2014-08-05]
CHR Extension: (Vyhledávání Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-29]
CHR Extension: (Tabs Outliner) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggkanocgddhmamlbiijnphhppkpkmkl [2014-08-05]
CHR Extension: (AdBlock Premium) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj [2014-05-29]
CHR Extension: (Ads Removal) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fopdddcinljmpmioaklghcalngfhbaen [2014-08-27]
CHR Extension: (avast! Online Security) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-05-29]
CHR Extension: (Geocaching.com Google Drive™ Notes) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabhbbbnkmjaoejmdhollfkjkffhiehc [2014-08-30]
CHR Extension: (Tabs saver) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmabfaomlcjlnplkoflgenkmmpilmead [2014-09-01]
CHR Extension: (Linkclump) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfpjkncokllnfokkgpkobnkbkmelfefj [2014-05-29]
CHR Extension: (TabHamster) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfjjmjmnplabnplceaekkjcmdddokee [2014-08-05]
CHR Extension: (Peněženka Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-05]
CHR Extension: (Context Menu Search) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocpcmghnefmdhljkoiapafejjohldoga [2014-05-29]
CHR Extension: (Gmail) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-29]
CHR Extension: (Geoseznam) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkejgpgaflkeonkliblcplomemekogop [2014-08-30]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-06]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2012-12-19] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5306504 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1663192 2014-03-25] (COMODO)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit)
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 TorchCrashHandler; C:\Users\fleker\AppData\Local\Torch\Update\TorchCrashHandler.exe [1217032 2014-08-25] (TorchMedia Inc.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [48256 2012-04-09] (Advanced Micro Devices)
R0 asahci32; C:\Windows\System32\DRIVERS\asahci32.sys [40344 2013-01-10] (Asmedia Technology)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-08-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-08-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-08-06] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-08-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-08-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-08-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [71944 2014-08-06] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-08-06] ()
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20072 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [607168 2014-04-16] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [43728 2014-04-16] (COMODO)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-06-01] (DT Soft Ltd)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [43368 2013-05-23] (ThreatTrack Security)
S3 glavcam; C:\Windows\System32\DRIVERS\glavcam.sys [64384 2014-05-25] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [92656 2014-04-16] (COMODO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [110296 2014-09-06] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-05-12] (Malwarebytes Corporation)
R3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [91016 2012-08-27] (Renesas Electronics Corporation)
R3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [181128 2012-08-27] (Renesas Electronics Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 MSICDSetup; \??\D:\CDriver.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-06 13:33 - 2014-09-06 13:34 - 00019362 _____ () C:\Users\fleker\Desktop\FRST.txt
2014-09-06 13:07 - 2014-09-06 13:07 - 01096704 _____ (Farbar) C:\Users\fleker\Desktop\FRST (1).exe
2014-09-05 22:04 - 2014-09-05 22:04 - 01287515 _____ () C:\Users\fleker\Desktop\zoek.exe
2014-09-03 16:02 - 2014-09-03 16:03 - 00000000 ____D () C:\Users\fleker\AppData\Local\Mapy na ceste
2014-09-03 16:02 - 2014-09-03 16:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mapy na ceste
2014-09-03 16:02 - 2014-09-03 16:02 - 00000000 ____D () C:\Program Files\Mapy na ceste
2014-09-03 15:53 - 2014-09-03 15:55 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\GeoGet
2014-09-03 15:53 - 2014-09-03 15:53 - 00000000 ____D () C:\Users\fleker\AppData\Local\GeoGet
2014-09-03 15:53 - 2014-09-03 15:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGet
2014-09-03 15:53 - 2014-09-03 15:53 - 00000000 ____D () C:\Program Files\GeoGet
2014-09-01 13:06 - 2014-09-05 13:08 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-09-01 13:06 - 2014-09-01 13:08 - 00001174 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2014-09-01 13:06 - 2014-09-01 13:06 - 00002180 _____ () C:\Users\fleker\Desktop\Facebook.lnk
2014-09-01 13:06 - 2014-09-01 13:06 - 00002176 _____ () C:\Users\fleker\Desktop\Youtube.lnk
2014-09-01 13:05 - 2014-09-01 13:07 - 00000000 ____D () C:\Users\fleker\AppData\Local\Torch
2014-09-01 13:05 - 2014-09-01 13:06 - 00001337 _____ () C:\Users\fleker\Desktop\Torch.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00001204 _____ () C:\Users\fleker\Desktop\Play Free Games.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00001110 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Screen To Video.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
2014-09-01 13:04 - 2014-09-04 18:54 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\FreeScreenToVideo
2014-09-01 13:04 - 2014-09-01 13:04 - 00001044 _____ () C:\Users\fleker\Desktop\Free Screen To Video.lnk
2014-09-01 13:04 - 2014-09-01 13:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Screen To Video
2014-09-01 13:02 - 2014-09-01 13:04 - 00000000 ____D () C:\Program Files\Free Screen To Video
2014-08-31 07:54 - 2014-08-31 07:54 - 01364531 _____ () C:\Users\fleker\Desktop\adwcleaner_3.308.exe
2014-08-31 07:24 - 2014-08-31 07:24 - 00002501 _____ () C:\Users\fleker\Desktop\JRT.txt
2014-08-31 06:49 - 2014-08-31 06:49 - 01016261 _____ (Thisisu) C:\Users\fleker\Desktop\JRT.exe
2014-08-29 15:11 - 2014-08-29 15:11 - 00052754 _____ () C:\Users\fleker\Desktop\Addition.txt
2014-08-29 15:07 - 2014-09-06 13:34 - 00000000 ____D () C:\FRST
2014-08-29 06:09 - 2014-09-06 13:26 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-29 06:08 - 2014-08-29 06:08 - 00001020 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-29 06:08 - 2014-08-29 06:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-29 06:08 - 2014-08-29 06:08 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-08-29 06:08 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-29 05:04 - 2014-08-29 05:04 - 00001027 _____ () C:\Users\fleker\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-28 02:14 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 02:14 - 2014-08-23 02:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-27 20:34 - 2014-08-27 20:34 - 00000000 ____D () C:\Users\berry\AppData\Roaming\Malwarebytes
2014-08-27 07:31 - 2014-08-27 07:31 - 00000000 ____D () C:\Users\fleker\geokuk
2014-08-25 20:32 - 2014-08-25 20:32 - 32686080 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-08-18 13:00 - 2014-08-18 13:00 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Unity
2014-08-18 12:59 - 2014-08-18 12:59 - 00000226 _____ () C:\Users\fleker\BullseyeCoverageError.txt
2014-08-18 12:59 - 2014-08-18 12:59 - 00000000 ____D () C:\Users\fleker\AppData\Local\Unity
2014-08-18 06:36 - 2014-08-18 06:36 - 00000000 _____ () C:\Users\fleker\Documents\Ovoce v přírodě.txt
2014-08-14 03:15 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 03:15 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 03:15 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 03:15 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-14 01:45 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-14 01:45 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-14 01:45 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-14 01:45 - 2014-07-25 15:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-14 01:45 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-14 01:45 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-14 01:45 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-14 01:45 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-14 01:45 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-14 01:45 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-14 01:45 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-14 01:45 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-14 01:45 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-14 01:45 - 2014-07-25 14:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-14 01:45 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-14 01:45 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-14 01:45 - 2014-07-25 13:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-14 01:45 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-14 01:45 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-14 01:45 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-14 01:45 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-14 01:45 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-14 01:45 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-14 01:45 - 2014-07-25 13:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-14 01:45 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-14 01:45 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-14 01:45 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-14 01:45 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-14 01:45 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-14 01:45 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-14 01:45 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-14 01:45 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-14 01:45 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-14 01:45 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-14 01:44 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-14 01:44 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-14 01:44 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-14 01:44 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-14 01:44 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-14 01:44 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-14 01:44 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-14 01:44 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-14 01:44 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-14 01:44 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-14 01:44 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-14 01:44 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-14 01:44 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-14 01:44 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-12 00:38 - 2014-08-14 03:09 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Dropbox
2014-08-11 23:14 - 2014-08-11 23:14 - 00203376 _____ () C:\Windows\Minidump\081114-145252-01.dmp
2014-08-11 23:12 - 2014-08-11 23:12 - 298605287 _____ () C:\Windows\MEMORY.DMP
2014-08-07 01:23 - 2014-08-07 01:23 - 00001852 _____ () C:\Users\fleker\Desktop\KMP Games.lnk
2014-08-07 01:21 - 2014-08-07 01:21 - 32833984 _____ (PandoraTV) C:\Users\fleker\Desktop\KMPlayer_3-9-0-126.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-06 13:35 - 2013-05-30 13:52 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\uTorrent
2014-09-06 13:34 - 2014-09-06 13:33 - 00019362 _____ () C:\Users\fleker\Desktop\FRST.txt
2014-09-06 13:34 - 2014-08-29 15:07 - 00000000 ____D () C:\FRST
2014-09-06 13:26 - 2014-08-29 06:09 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-06 13:07 - 2014-09-06 13:07 - 01096704 _____ (Farbar) C:\Users\fleker\Desktop\FRST (1).exe
2014-09-06 12:59 - 2013-05-30 13:31 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-06 05:40 - 2013-05-30 12:57 - 01680946 _____ () C:\Windows\WindowsUpdate.log
2014-09-05 22:04 - 2014-09-05 22:04 - 01287515 _____ () C:\Users\fleker\Desktop\zoek.exe
2014-09-05 20:59 - 2013-05-30 13:31 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-05 14:45 - 2014-01-24 15:42 - 00000000 ____D () C:\Users\fleker\Desktop\Na výmaz
2014-09-05 13:08 - 2014-09-01 13:06 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-09-04 18:54 - 2014-09-01 13:04 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\FreeScreenToVideo
2014-09-03 16:03 - 2014-09-03 16:02 - 00000000 ____D () C:\Users\fleker\AppData\Local\Mapy na ceste
2014-09-03 16:02 - 2014-09-03 16:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mapy na ceste
2014-09-03 16:02 - 2014-09-03 16:02 - 00000000 ____D () C:\Program Files\Mapy na ceste
2014-09-03 15:55 - 2014-09-03 15:53 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\GeoGet
2014-09-03 15:53 - 2014-09-03 15:53 - 00000000 ____D () C:\Users\fleker\AppData\Local\GeoGet
2014-09-03 15:53 - 2014-09-03 15:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGet
2014-09-03 15:53 - 2014-09-03 15:53 - 00000000 ____D () C:\Program Files\GeoGet
2014-09-02 10:52 - 2009-07-14 06:34 - 00022656 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-02 10:52 - 2009-07-14 06:34 - 00022656 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-01 13:08 - 2014-09-01 13:06 - 00001174 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2014-09-01 13:07 - 2014-09-01 13:05 - 00000000 ____D () C:\Users\fleker\AppData\Local\Torch
2014-09-01 13:06 - 2014-09-01 13:06 - 00002180 _____ () C:\Users\fleker\Desktop\Facebook.lnk
2014-09-01 13:06 - 2014-09-01 13:06 - 00002176 _____ () C:\Users\fleker\Desktop\Youtube.lnk
2014-09-01 13:06 - 2014-09-01 13:05 - 00001337 _____ () C:\Users\fleker\Desktop\Torch.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00001204 _____ () C:\Users\fleker\Desktop\Play Free Games.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00001110 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Screen To Video.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
2014-09-01 13:04 - 2014-09-01 13:04 - 00001044 _____ () C:\Users\fleker\Desktop\Free Screen To Video.lnk
2014-09-01 13:04 - 2014-09-01 13:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Screen To Video
2014-09-01 13:04 - 2014-09-01 13:02 - 00000000 ____D () C:\Program Files\Free Screen To Video
2014-08-31 13:49 - 2013-05-30 12:58 - 01593078 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-31 12:43 - 2014-07-30 17:41 - 00392350 _____ () C:\Windows\PFRO.log
2014-08-31 12:43 - 2014-07-30 17:41 - 00000784 _____ () C:\Windows\setupact.log
2014-08-31 12:43 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-31 12:42 - 2014-05-27 15:36 - 00000000 ____D () C:\AdwCleaner
2014-08-31 12:41 - 2014-08-02 02:05 - 00000601 _____ () C:\Users\fleker\Desktop\Search.lnk
2014-08-31 12:41 - 2013-05-30 19:57 - 00000893 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2014-08-31 12:41 - 2013-05-30 19:57 - 00000881 _____ () C:\Users\Public\Desktop\Opera.lnk
2014-08-31 10:20 - 2014-05-04 19:08 - 00000000 ____D () C:\Program Files\IObit
2014-08-31 10:17 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\tracing
2014-08-31 10:17 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Branding
2014-08-31 07:54 - 2014-08-31 07:54 - 01364531 _____ () C:\Users\fleker\Desktop\adwcleaner_3.308.exe
2014-08-31 07:24 - 2014-08-31 07:24 - 00002501 _____ () C:\Users\fleker\Desktop\JRT.txt
2014-08-31 06:53 - 2014-07-16 22:14 - 00000000 ____D () C:\ProgramData\ProductData
2014-08-31 06:49 - 2014-08-31 06:49 - 01016261 _____ (Thisisu) C:\Users\fleker\Desktop\JRT.exe
2014-08-30 04:03 - 2013-06-01 16:39 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\vlc
2014-08-29 15:11 - 2014-08-29 15:11 - 00052754 _____ () C:\Users\fleker\Desktop\Addition.txt
2014-08-29 15:02 - 2013-08-19 20:19 - 00000000 ____D () C:\Program Files\trend micro
2014-08-29 14:27 - 2013-05-31 15:13 - 00007605 _____ () C:\Users\fleker\AppData\Local\Resmon.ResmonCfg
2014-08-29 14:09 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Resources
2014-08-29 14:09 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\L2Schemas
2014-08-29 06:08 - 2014-08-29 06:08 - 00001020 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-29 06:08 - 2014-08-29 06:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-29 06:08 - 2014-08-29 06:08 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-08-29 06:08 - 2013-07-06 12:12 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Malwarebytes
2014-08-29 06:08 - 2013-07-06 12:12 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-29 05:04 - 2014-08-29 05:04 - 00001027 _____ () C:\Users\fleker\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-28 07:17 - 2009-07-14 06:33 - 03805776 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-27 20:34 - 2014-08-27 20:34 - 00000000 ____D () C:\Users\berry\AppData\Roaming\Malwarebytes
2014-08-27 07:31 - 2014-08-27 07:31 - 00000000 ____D () C:\Users\fleker\geokuk
2014-08-27 07:31 - 2013-05-30 13:03 - 00000000 ____D () C:\Users\fleker
2014-08-25 20:32 - 2014-08-25 20:32 - 32686080 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-08-25 20:32 - 2014-05-09 11:10 - 54181888 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2014-08-25 20:32 - 2014-05-09 11:10 - 01044480 _____ () C:\Windows\system32\config\DEFAULT.iobit
2014-08-25 20:32 - 2014-05-09 11:10 - 00065536 _____ () C:\Windows\system32\config\SAM.iobit
2014-08-25 20:32 - 2014-05-09 11:10 - 00028672 _____ () C:\Windows\system32\config\SECURITY.iobit
2014-08-23 03:46 - 2014-08-28 02:14 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 02:42 - 2014-08-28 02:14 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 23:29 - 2013-07-09 13:27 - 00000000 ____D () C:\Users\fleker\AppData\Local\CrashDumps
2014-08-18 13:00 - 2014-08-18 13:00 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Unity
2014-08-18 12:59 - 2014-08-18 12:59 - 00000226 _____ () C:\Users\fleker\BullseyeCoverageError.txt
2014-08-18 12:59 - 2014-08-18 12:59 - 00000000 ____D () C:\Users\fleker\AppData\Local\Unity
2014-08-18 06:36 - 2014-08-18 06:36 - 00000000 _____ () C:\Users\fleker\Documents\Ovoce v přírodě.txt
2014-08-16 23:35 - 2013-12-13 09:05 - 00000000 ____D () C:\Windows\rescache
2014-08-14 07:40 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-08-14 03:24 - 2013-06-01 19:18 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-14 03:23 - 2013-08-15 03:08 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-14 03:17 - 2013-05-31 15:25 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-14 03:14 - 2014-05-07 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-14 03:09 - 2014-08-12 00:38 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Dropbox
2014-08-11 23:14 - 2014-08-11 23:14 - 00203376 _____ () C:\Windows\Minidump\081114-145252-01.dmp
2014-08-11 23:14 - 2013-06-24 19:02 - 00000000 ____D () C:\Windows\Minidump
2014-08-11 23:12 - 2014-08-11 23:12 - 298605287 _____ () C:\Windows\MEMORY.DMP
2014-08-07 03:43 - 2014-08-14 01:44 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 03:39 - 2014-08-14 01:44 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-07 01:23 - 2014-08-07 01:23 - 00001852 _____ () C:\Users\fleker\Desktop\KMP Games.lnk
2014-08-07 01:23 - 2014-03-04 05:16 - 00000000 ____D () C:\The KMPlayer
2014-08-07 01:22 - 2014-03-04 05:16 - 00000634 _____ () C:\Users\fleker\Desktop\KMPlayer.lnk
2014-08-07 01:21 - 2014-08-07 01:21 - 32833984 _____ (PandoraTV) C:\Users\fleker\Desktop\KMPlayer_3-9-0-126.exe

Some content of TEMP:
====================
C:\Users\fleker\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
C:\Users\fleker\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpornrke.dll
C:\Users\fleker\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-06 02:35

==================== End Of Log ============================

[fleker]

Addition.zip

(8.71 KiB) Staženo 46 x

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-09-2014
Ran by fleker (administrator) on FLEKER-PC on 06-09-2014 13:33:57
Running from C:\Users\fleker\Desktop
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cavwp.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Petr Laštovička) C:\Program Files\Hotkeyp\HotkeyP.exe
(BitTorrent Inc.) C:\Users\fleker\AppData\Roaming\uTorrent\uTorrent.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cistray.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cis.exe
(TorchMedia Inc.) C:\Users\fleker\AppData\Local\Torch\Update\TorchCrashHandler.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(PandoraTV) C:\The KMPlayer\KMPlayer.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Ghisler Software GmbH) C:\Program Files\Total Commander\TOTALCMD.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\fleker\Desktop\FRST (1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [6667992 2014-05-18] (Realtek Semiconductor)
HKU\.DEFAULT\...\Run: [Advanced SystemCare 7] => "C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-06-01] (Microsoft Corporation)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [EPSON S22 Series] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGEE.EXE [200704 2009-09-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [HotkeyP] => C:\Program Files\Hotkeyp\HotkeyP.exe [60928 2013-05-30] (Petr Laštovička)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [uTorrent] => C:\Users\fleker\AppData\Roaming\uTorrent\uTorrent.exe [1322832 2014-07-03] (BitTorrent Inc.)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\MountPoints2: {c594933e-c916-11e2-80b4-806e6f6e6963} - D:\EPSETUP.EXE
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\COMODO Firewall.lnk
ShortcutTarget: COMODO Firewall.lnk -> C:\Program Files\Comodo\COMODO Internet Security\cistray.exe (COMODO)
Startup: C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Google Chrome.lnk
ShortcutTarget: Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Startup: C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sticky Notes.lnk
ShortcutTarget: Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Startup: C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Total Commander.lnk
ShortcutTarget: Total Commander.lnk -> C:\Program Files\Total Commander\TOTALCMD.EXE (Ghisler Software GmbH)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6E6EE4D9-9F6A-4EED-B198-0DDA6D1719DC} URL = https://search.yahoo.com/search?fr=chr- ... earchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: ChromeFrame BHO -> {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} -> C:\Program Files\Google\Chrome Frame\Application\28.0.1500.72\npchrome_frame.dll (Google Inc.)
Handler: gcf - {9875BFAF-B04D-445E-8A69-BE36838CDE3E} - C:\Program Files\Google\Chrome Frame\Application\28.0.1500.72\npchrome_frame.dll (Google Inc.)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36

FireFox:
========
FF ProfilePath: C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF NewTab: user_pref("browser.newtab.url", "");
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: TorchVLC -> C:\Users\fleker\AppData\Local\Torch\Plugins\Video\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\fleker\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: No Name - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2013-10-06]
FF Extension: No Name - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\profiles\extensions\searchplugins [2014-02-13]
FF Extension: Settings Manager - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{12DC3319-1C0A-106A-C0A9-19AC078CABBB} [2014-05-03]
FF Extension: DownloadHelper - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-10-21]
FF Extension: c151d79ee61b4a90a8875a46d38fba99 - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{c151d79e-e61b-4a90-a887-5a46d38fba99} [2014-08-26]
FF Extension: Firefox Old Version Update Hotfix - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\firefox-hotfix@mozilla.org.xpi [2014-07-26]
FF Extension: PrivDog - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\PrivDog@AdTrustMedia.com.xpi [2013-11-20]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-03-09]

Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/
CHR CustomProfile: C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (CacheList) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\amhhdbdhoghppijbjfdkiaconkmfbbpa [2014-08-30]
CHR Extension: (TooManyTabs for Chrome) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\amigcgbheognjmfkaieeeadojiibgbdp [2014-08-05]
CHR Extension: (Dokumenty Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-29]
CHR Extension: (Disk Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-29]
CHR Extension: (YouTube) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-29]
CHR Extension: (OneTab) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2014-08-05]
CHR Extension: (Vyhledávání Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-29]
CHR Extension: (Tabs Outliner) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggkanocgddhmamlbiijnphhppkpkmkl [2014-08-05]
CHR Extension: (AdBlock Premium) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj [2014-05-29]
CHR Extension: (Ads Removal) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fopdddcinljmpmioaklghcalngfhbaen [2014-08-27]
CHR Extension: (avast! Online Security) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-05-29]
CHR Extension: (Geocaching.com Google Drive™ Notes) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabhbbbnkmjaoejmdhollfkjkffhiehc [2014-08-30]
CHR Extension: (Tabs saver) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmabfaomlcjlnplkoflgenkmmpilmead [2014-09-01]
CHR Extension: (Linkclump) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfpjkncokllnfokkgpkobnkbkmelfefj [2014-05-29]
CHR Extension: (TabHamster) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfjjmjmnplabnplceaekkjcmdddokee [2014-08-05]
CHR Extension: (Peněženka Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-05]
CHR Extension: (Context Menu Search) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocpcmghnefmdhljkoiapafejjohldoga [2014-05-29]
CHR Extension: (Gmail) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-29]
CHR Extension: (Geoseznam) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkejgpgaflkeonkliblcplomemekogop [2014-08-30]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-06]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2012-12-19] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5306504 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1663192 2014-03-25] (COMODO)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit)
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 TorchCrashHandler; C:\Users\fleker\AppData\Local\Torch\Update\TorchCrashHandler.exe [1217032 2014-08-25] (TorchMedia Inc.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [48256 2012-04-09] (Advanced Micro Devices)
R0 asahci32; C:\Windows\System32\DRIVERS\asahci32.sys [40344 2013-01-10] (Asmedia Technology)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-08-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-08-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-08-06] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-08-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-08-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-08-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [71944 2014-08-06] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-08-06] ()
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20072 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [607168 2014-04-16] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [43728 2014-04-16] (COMODO)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-06-01] (DT Soft Ltd)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [43368 2013-05-23] (ThreatTrack Security)
S3 glavcam; C:\Windows\System32\DRIVERS\glavcam.sys [64384 2014-05-25] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [92656 2014-04-16] (COMODO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [110296 2014-09-06] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-05-12] (Malwarebytes Corporation)
R3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [91016 2012-08-27] (Renesas Electronics Corporation)
R3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [181128 2012-08-27] (Renesas Electronics Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 MSICDSetup; \??\D:\CDriver.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-06 13:33 - 2014-09-06 13:34 - 00019362 _____ () C:\Users\fleker\Desktop\FRST.txt
2014-09-06 13:07 - 2014-09-06 13:07 - 01096704 _____ (Farbar) C:\Users\fleker\Desktop\FRST (1).exe
2014-09-05 22:04 - 2014-09-05 22:04 - 01287515 _____ () C:\Users\fleker\Desktop\zoek.exe
2014-09-03 16:02 - 2014-09-03 16:03 - 00000000 ____D () C:\Users\fleker\AppData\Local\Mapy na ceste
2014-09-03 16:02 - 2014-09-03 16:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mapy na ceste
2014-09-03 16:02 - 2014-09-03 16:02 - 00000000 ____D () C:\Program Files\Mapy na ceste
2014-09-03 15:53 - 2014-09-03 15:55 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\GeoGet
2014-09-03 15:53 - 2014-09-03 15:53 - 00000000 ____D () C:\Users\fleker\AppData\Local\GeoGet
2014-09-03 15:53 - 2014-09-03 15:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGet
2014-09-03 15:53 - 2014-09-03 15:53 - 00000000 ____D () C:\Program Files\GeoGet
2014-09-01 13:06 - 2014-09-05 13:08 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-09-01 13:06 - 2014-09-01 13:08 - 00001174 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2014-09-01 13:06 - 2014-09-01 13:06 - 00002180 _____ () C:\Users\fleker\Desktop\Facebook.lnk
2014-09-01 13:06 - 2014-09-01 13:06 - 00002176 _____ () C:\Users\fleker\Desktop\Youtube.lnk
2014-09-01 13:05 - 2014-09-01 13:07 - 00000000 ____D () C:\Users\fleker\AppData\Local\Torch
2014-09-01 13:05 - 2014-09-01 13:06 - 00001337 _____ () C:\Users\fleker\Desktop\Torch.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00001204 _____ () C:\Users\fleker\Desktop\Play Free Games.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00001110 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Screen To Video.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
2014-09-01 13:04 - 2014-09-04 18:54 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\FreeScreenToVideo
2014-09-01 13:04 - 2014-09-01 13:04 - 00001044 _____ () C:\Users\fleker\Desktop\Free Screen To Video.lnk
2014-09-01 13:04 - 2014-09-01 13:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Screen To Video
2014-09-01 13:02 - 2014-09-01 13:04 - 00000000 ____D () C:\Program Files\Free Screen To Video
2014-08-31 07:54 - 2014-08-31 07:54 - 01364531 _____ () C:\Users\fleker\Desktop\adwcleaner_3.308.exe
2014-08-31 07:24 - 2014-08-31 07:24 - 00002501 _____ () C:\Users\fleker\Desktop\JRT.txt
2014-08-31 06:49 - 2014-08-31 06:49 - 01016261 _____ (Thisisu) C:\Users\fleker\Desktop\JRT.exe
2014-08-29 15:11 - 2014-08-29 15:11 - 00052754 _____ () C:\Users\fleker\Desktop\Addition.txt
2014-08-29 15:07 - 2014-09-06 13:34 - 00000000 ____D () C:\FRST
2014-08-29 06:09 - 2014-09-06 13:26 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-29 06:08 - 2014-08-29 06:08 - 00001020 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-29 06:08 - 2014-08-29 06:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-29 06:08 - 2014-08-29 06:08 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-08-29 06:08 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-29 05:04 - 2014-08-29 05:04 - 00001027 _____ () C:\Users\fleker\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-28 02:14 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 02:14 - 2014-08-23 02:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-27 20:34 - 2014-08-27 20:34 - 00000000 ____D () C:\Users\berry\AppData\Roaming\Malwarebytes
2014-08-27 07:31 - 2014-08-27 07:31 - 00000000 ____D () C:\Users\fleker\geokuk
2014-08-25 20:32 - 2014-08-25 20:32 - 32686080 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-08-18 13:00 - 2014-08-18 13:00 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Unity
2014-08-18 12:59 - 2014-08-18 12:59 - 00000226 _____ () C:\Users\fleker\BullseyeCoverageError.txt
2014-08-18 12:59 - 2014-08-18 12:59 - 00000000 ____D () C:\Users\fleker\AppData\Local\Unity
2014-08-18 06:36 - 2014-08-18 06:36 - 00000000 _____ () C:\Users\fleker\Documents\Ovoce v přírodě.txt
2014-08-14 03:15 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 03:15 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 03:15 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 03:15 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-14 01:45 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-14 01:45 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-14 01:45 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-14 01:45 - 2014-07-25 15:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-14 01:45 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-14 01:45 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-14 01:45 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-14 01:45 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-14 01:45 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-14 01:45 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-14 01:45 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-14 01:45 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-14 01:45 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-14 01:45 - 2014-07-25 14:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-14 01:45 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-14 01:45 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-14 01:45 - 2014-07-25 13:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-14 01:45 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-14 01:45 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-14 01:45 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-14 01:45 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-14 01:45 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-14 01:45 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-14 01:45 - 2014-07-25 13:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-14 01:45 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-14 01:45 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-14 01:45 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-14 01:45 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-14 01:45 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-14 01:45 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-14 01:45 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-14 01:45 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-14 01:45 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-14 01:45 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-14 01:44 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-14 01:44 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-14 01:44 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-14 01:44 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-14 01:44 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-14 01:44 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-14 01:44 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-14 01:44 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-14 01:44 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-14 01:44 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-14 01:44 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-14 01:44 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-14 01:44 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-14 01:44 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-12 00:38 - 2014-08-14 03:09 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Dropbox
2014-08-11 23:14 - 2014-08-11 23:14 - 00203376 _____ () C:\Windows\Minidump\081114-145252-01.dmp
2014-08-11 23:12 - 2014-08-11 23:12 - 298605287 _____ () C:\Windows\MEMORY.DMP
2014-08-07 01:23 - 2014-08-07 01:23 - 00001852 _____ () C:\Users\fleker\Desktop\KMP Games.lnk
2014-08-07 01:21 - 2014-08-07 01:21 - 32833984 _____ (PandoraTV) C:\Users\fleker\Desktop\KMPlayer_3-9-0-126.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-06 13:35 - 2013-05-30 13:52 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\uTorrent
2014-09-06 13:34 - 2014-09-06 13:33 - 00019362 _____ () C:\Users\fleker\Desktop\FRST.txt
2014-09-06 13:34 - 2014-08-29 15:07 - 00000000 ____D () C:\FRST
2014-09-06 13:26 - 2014-08-29 06:09 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-06 13:07 - 2014-09-06 13:07 - 01096704 _____ (Farbar) C:\Users\fleker\Desktop\FRST (1).exe
2014-09-06 12:59 - 2013-05-30 13:31 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-06 05:40 - 2013-05-30 12:57 - 01680946 _____ () C:\Windows\WindowsUpdate.log
2014-09-05 22:04 - 2014-09-05 22:04 - 01287515 _____ () C:\Users\fleker\Desktop\zoek.exe
2014-09-05 20:59 - 2013-05-30 13:31 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-05 14:45 - 2014-01-24 15:42 - 00000000 ____D () C:\Users\fleker\Desktop\Na výmaz
2014-09-05 13:08 - 2014-09-01 13:06 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-09-04 18:54 - 2014-09-01 13:04 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\FreeScreenToVideo
2014-09-03 16:03 - 2014-09-03 16:02 - 00000000 ____D () C:\Users\fleker\AppData\Local\Mapy na ceste
2014-09-03 16:02 - 2014-09-03 16:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mapy na ceste
2014-09-03 16:02 - 2014-09-03 16:02 - 00000000 ____D () C:\Program Files\Mapy na ceste
2014-09-03 15:55 - 2014-09-03 15:53 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\GeoGet
2014-09-03 15:53 - 2014-09-03 15:53 - 00000000 ____D () C:\Users\fleker\AppData\Local\GeoGet
2014-09-03 15:53 - 2014-09-03 15:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGet
2014-09-03 15:53 - 2014-09-03 15:53 - 00000000 ____D () C:\Program Files\GeoGet
2014-09-02 10:52 - 2009-07-14 06:34 - 00022656 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-02 10:52 - 2009-07-14 06:34 - 00022656 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-01 13:08 - 2014-09-01 13:06 - 00001174 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2014-09-01 13:07 - 2014-09-01 13:05 - 00000000 ____D () C:\Users\fleker\AppData\Local\Torch
2014-09-01 13:06 - 2014-09-01 13:06 - 00002180 _____ () C:\Users\fleker\Desktop\Facebook.lnk
2014-09-01 13:06 - 2014-09-01 13:06 - 00002176 _____ () C:\Users\fleker\Desktop\Youtube.lnk
2014-09-01 13:06 - 2014-09-01 13:05 - 00001337 _____ () C:\Users\fleker\Desktop\Torch.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00001204 _____ () C:\Users\fleker\Desktop\Play Free Games.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00001110 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Screen To Video.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
2014-09-01 13:04 - 2014-09-01 13:04 - 00001044 _____ () C:\Users\fleker\Desktop\Free Screen To Video.lnk
2014-09-01 13:04 - 2014-09-01 13:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Screen To Video
2014-09-01 13:04 - 2014-09-01 13:02 - 00000000 ____D () C:\Program Files\Free Screen To Video
2014-08-31 13:49 - 2013-05-30 12:58 - 01593078 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-31 12:43 - 2014-07-30 17:41 - 00392350 _____ () C:\Windows\PFRO.log
2014-08-31 12:43 - 2014-07-30 17:41 - 00000784 _____ () C:\Windows\setupact.log
2014-08-31 12:43 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-31 12:42 - 2014-05-27 15:36 - 00000000 ____D () C:\AdwCleaner
2014-08-31 12:41 - 2014-08-02 02:05 - 00000601 _____ () C:\Users\fleker\Desktop\Search.lnk
2014-08-31 12:41 - 2013-05-30 19:57 - 00000893 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2014-08-31 12:41 - 2013-05-30 19:57 - 00000881 _____ () C:\Users\Public\Desktop\Opera.lnk
2014-08-31 10:20 - 2014-05-04 19:08 - 00000000 ____D () C:\Program Files\IObit
2014-08-31 10:17 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\tracing
2014-08-31 10:17 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Branding
2014-08-31 07:54 - 2014-08-31 07:54 - 01364531 _____ () C:\Users\fleker\Desktop\adwcleaner_3.308.exe
2014-08-31 07:24 - 2014-08-31 07:24 - 00002501 _____ () C:\Users\fleker\Desktop\JRT.txt
2014-08-31 06:53 - 2014-07-16 22:14 - 00000000 ____D () C:\ProgramData\ProductData
2014-08-31 06:49 - 2014-08-31 06:49 - 01016261 _____ (Thisisu) C:\Users\fleker\Desktop\JRT.exe
2014-08-30 04:03 - 2013-06-01 16:39 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\vlc
2014-08-29 15:11 - 2014-08-29 15:11 - 00052754 _____ () C:\Users\fleker\Desktop\Addition.txt
2014-08-29 15:02 - 2013-08-19 20:19 - 00000000 ____D () C:\Program Files\trend micro
2014-08-29 14:27 - 2013-05-31 15:13 - 00007605 _____ () C:\Users\fleker\AppData\Local\Resmon.ResmonCfg
2014-08-29 14:09 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Resources
2014-08-29 14:09 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\L2Schemas
2014-08-29 06:08 - 2014-08-29 06:08 - 00001020 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-29 06:08 - 2014-08-29 06:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-29 06:08 - 2014-08-29 06:08 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-08-29 06:08 - 2013-07-06 12:12 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Malwarebytes
2014-08-29 06:08 - 2013-07-06 12:12 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-29 05:04 - 2014-08-29 05:04 - 00001027 _____ () C:\Users\fleker\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-28 07:17 - 2009-07-14 06:33 - 03805776 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-27 20:34 - 2014-08-27 20:34 - 00000000 ____D () C:\Users\berry\AppData\Roaming\Malwarebytes
2014-08-27 07:31 - 2014-08-27 07:31 - 00000000 ____D () C:\Users\fleker\geokuk
2014-08-27 07:31 - 2013-05-30 13:03 - 00000000 ____D () C:\Users\fleker
2014-08-25 20:32 - 2014-08-25 20:32 - 32686080 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-08-25 20:32 - 2014-05-09 11:10 - 54181888 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2014-08-25 20:32 - 2014-05-09 11:10 - 01044480 _____ () C:\Windows\system32\config\DEFAULT.iobit
2014-08-25 20:32 - 2014-05-09 11:10 - 00065536 _____ () C:\Windows\system32\config\SAM.iobit
2014-08-25 20:32 - 2014-05-09 11:10 - 00028672 _____ () C:\Windows\system32\config\SECURITY.iobit
2014-08-23 03:46 - 2014-08-28 02:14 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 02:42 - 2014-08-28 02:14 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 23:29 - 2013-07-09 13:27 - 00000000 ____D () C:\Users\fleker\AppData\Local\CrashDumps
2014-08-18 13:00 - 2014-08-18 13:00 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Unity
2014-08-18 12:59 - 2014-08-18 12:59 - 00000226 _____ () C:\Users\fleker\BullseyeCoverageError.txt
2014-08-18 12:59 - 2014-08-18 12:59 - 00000000 ____D () C:\Users\fleker\AppData\Local\Unity
2014-08-18 06:36 - 2014-08-18 06:36 - 00000000 _____ () C:\Users\fleker\Documents\Ovoce v přírodě.txt
2014-08-16 23:35 - 2013-12-13 09:05 - 00000000 ____D () C:\Windows\rescache
2014-08-14 07:40 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-08-14 03:24 - 2013-06-01 19:18 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-14 03:23 - 2013-08-15 03:08 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-14 03:17 - 2013-05-31 15:25 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-14 03:14 - 2014-05-07 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-14 03:09 - 2014-08-12 00:38 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Dropbox
2014-08-11 23:14 - 2014-08-11 23:14 - 00203376 _____ () C:\Windows\Minidump\081114-145252-01.dmp
2014-08-11 23:14 - 2013-06-24 19:02 - 00000000 ____D () C:\Windows\Minidump
2014-08-11 23:12 - 2014-08-11 23:12 - 298605287 _____ () C:\Windows\MEMORY.DMP
2014-08-07 03:43 - 2014-08-14 01:44 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 03:39 - 2014-08-14 01:44 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-07 01:23 - 2014-08-07 01:23 - 00001852 _____ () C:\Users\fleker\Desktop\KMP Games.lnk
2014-08-07 01:23 - 2014-03-04 05:16 - 00000000 ____D () C:\The KMPlayer
2014-08-07 01:22 - 2014-03-04 05:16 - 00000634 _____ () C:\Users\fleker\Desktop\KMPlayer.lnk
2014-08-07 01:21 - 2014-08-07 01:21 - 32833984 _____ (PandoraTV) C:\Users\fleker\Desktop\KMPlayer_3-9-0-126.exe

Some content of TEMP:
====================
C:\Users\fleker\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
C:\Users\fleker\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpornrke.dll
C:\Users\fleker\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-06 02:35

==================== End Of Log ============================

[vyosek]

Odinstalujte Advanced SystemCare a nasledne i vse od IOBit - jsou to cinske smejdy a spise jen skodi nez jsou uzitkem. Hledaji nesmyslne a neexistujici problemy, databazi haveti ukradli jine renomovane spolecnosti

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKU\.DEFAULT\...\Run: [Advanced SystemCare 7] => "C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
  HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-06-01] (Microsoft Corporation)
  HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [uTorrent] => C:\Users\fleker\AppData\Roaming\uTorrent\uTorrent.exe [1322832 2014-07-03] (BitTorrent Inc.)
  HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\MountPoints2: {c594933e-c916-11e2-80b4-806e6f6e6963} - D:\EPSETUP.EXE
  
  StartMenuInternet: IEXPLORE.EXE - iexplore.exe
  SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
  SearchScopes: HKCU - {6E6EE4D9-9F6A-4EED-B198-0DDA6D1719DC} URL = https://search.yahoo.com/search?fr=chr- ... =800236&p={searchTerms}
  
  FF SearchPlugin: C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\searchplugins\yahoo_ff.xml
  FF Extension: Settings Manager - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{12DC3319-1C0A-106A-C0A9-19AC078CABBB} [2014-05-03]
  FF Extension: DownloadHelper - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-10-21]
  FF Extension: c151d79ee61b4a90a8875a46d38fba99 - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{c151d79e-e61b-4a90-a887-5a46d38fba99} [2014-08-26]
  FF Extension: Firefox Old Version Update Hotfix - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\firefox-hotfix@mozilla.org.xpi [2014-07-26]
  FF Extension: PrivDog - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\PrivDog@AdTrustMedia.com.xpi [2013-11-20]
  
  CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
  
  S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit)
  R2 TorchCrashHandler; C:\Users\fleker\AppData\Local\Torch\Update\TorchCrashHandler.exe [1217032 2014-08-25] (TorchMedia Inc.)
  S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
  S3 MSICDSetup; \??\D:\CDriver.sys [X]
  S3 NTIOLib_1_0_C; \??\D:\NTIOLib.sys [X]
  
  C:\Program Files\IObit
  C:\Program Files\Enigma Software Group
  C:\Users\fleker\AppData\Local\Torch
  2014-09-06 13:33 - 2014-09-06 13:34 - 00019362 _____ () C:\Users\fleker\Desktop\FRST.txt
  2014-09-05 22:04 - 2014-09-05 22:04 - 01287515 _____ () C:\Users\fleker\Desktop\zoek.exe
  2014-09-01 13:06 - 2014-09-05 13:08 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
  2014-09-01 13:06 - 2014-09-01 13:08 - 00001174 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
  2014-09-01 13:06 - 2014-09-01 13:06 - 00002180 _____ () C:\Users\fleker\Desktop\Facebook.lnk
  2014-09-01 13:06 - 2014-09-01 13:06 - 00002176 _____ () C:\Users\fleker\Desktop\Youtube.lnk
  2014-09-01 13:05 - 2014-09-01 13:07 - 00000000 ____D () C:\Users\fleker\AppData\Local\Torch
  2014-09-01 13:05 - 2014-09-01 13:06 - 00001337 _____ () C:\Users\fleker\Desktop\Torch.lnk
  2014-09-01 13:05 - 2014-09-01 13:05 - 00001204 _____ () C:\Users\fleker\Desktop\Play Free Games.lnk
  2014-09-01 13:05 - 2014-09-01 13:05 - 00001110 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Screen To Video.lnk
  2014-09-01 13:05 - 2014-09-01 13:05 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
  2014-09-01 13:04 - 2014-09-04 18:54 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\FreeScreenToVideo
  2014-09-01 13:04 - 2014-09-01 13:04 - 00001044 _____ () C:\Users\fleker\Desktop\Free Screen To Video.lnk
  2014-09-01 13:04 - 2014-09-01 13:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Screen To Video
  2014-09-01 13:02 - 2014-09-01 13:04 - 00000000 ____D () C:\Program Files\Free Screen To Video
  2014-08-31 07:54 - 2014-08-31 07:54 - 01364531 _____ () C:\Users\fleker\Desktop\adwcleaner_3.308.exe
  2014-08-31 07:24 - 2014-08-31 07:24 - 00002501 _____ () C:\Users\fleker\Desktop\JRT.txt
  2014-08-31 06:49 - 2014-08-31 06:49 - 01016261 _____ (Thisisu) C:\Users\fleker\Desktop\JRT.exe
  2014-08-29 15:11 - 2014-08-29 15:11 - 00052754 _____ () C:\Users\fleker\Desktop\Addition.txt
  2014-08-25 20:32 - 2014-08-25 20:32 - 32686080 _____ () C:\Windows\system32\config\COMPONENTS.iobit
  
  Hosts:
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[fleker]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 07-09-2014
Ran by fleker at 2014-09-07 20:04:36 Run:1
Running from C:\Users\fleker\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKU\.DEFAULT\...\Run: [Advanced SystemCare 7] => "C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-06-01] (Microsoft Corporation)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [uTorrent] => C:\Users\fleker\AppData\Roaming\uTorrent\uTorrent.exe [1322832 2014-07-03] (BitTorrent Inc.)
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\MountPoints2: {c594933e-c916-11e2-80b4-806e6f6e6963} - D:\EPSETUP.EXE

StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6E6EE4D9-9F6A-4EED-B198-0DDA6D1719DC} URL = https://search.yahoo.com/search?fr=chr- ... =800236&p={searchTerms}

FF SearchPlugin: C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\searchplugins\yahoo_ff.xml
FF Extension: Settings Manager - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{12DC3319-1C0A-106A-C0A9-19AC078CABBB} [2014-05-03]
FF Extension: DownloadHelper - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-10-21]
FF Extension: c151d79ee61b4a90a8875a46d38fba99 - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{c151d79e-e61b-4a90-a887-5a46d38fba99} [2014-08-26]
FF Extension: Firefox Old Version Update Hotfix - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\firefox-hotfix@mozilla.org.xpi [2014-07-26]
FF Extension: PrivDog - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\PrivDog@AdTrustMedia.com.xpi [2013-11-20]

CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit)
R2 TorchCrashHandler; C:\Users\fleker\AppData\Local\Torch\Update\TorchCrashHandler.exe [1217032 2014-08-25] (TorchMedia Inc.)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 MSICDSetup; \??\D:\CDriver.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib.sys [X]

C:\Program Files\IObit
C:\Program Files\Enigma Software Group
C:\Users\fleker\AppData\Local\Torch
2014-09-06 13:33 - 2014-09-06 13:34 - 00019362 _____ () C:\Users\fleker\Desktop\FRST.txt
2014-09-05 22:04 - 2014-09-05 22:04 - 01287515 _____ () C:\Users\fleker\Desktop\zoek.exe
2014-09-01 13:06 - 2014-09-05 13:08 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-09-01 13:06 - 2014-09-01 13:08 - 00001174 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2014-09-01 13:06 - 2014-09-01 13:06 - 00002180 _____ () C:\Users\fleker\Desktop\Facebook.lnk
2014-09-01 13:06 - 2014-09-01 13:06 - 00002176 _____ () C:\Users\fleker\Desktop\Youtube.lnk
2014-09-01 13:05 - 2014-09-01 13:07 - 00000000 ____D () C:\Users\fleker\AppData\Local\Torch
2014-09-01 13:05 - 2014-09-01 13:06 - 00001337 _____ () C:\Users\fleker\Desktop\Torch.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00001204 _____ () C:\Users\fleker\Desktop\Play Free Games.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00001110 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Screen To Video.lnk
2014-09-01 13:05 - 2014-09-01 13:05 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
2014-09-01 13:04 - 2014-09-04 18:54 - 00000000 ____D () C:\Users\fleker\AppData\Roaming\FreeScreenToVideo
2014-09-01 13:04 - 2014-09-01 13:04 - 00001044 _____ () C:\Users\fleker\Desktop\Free Screen To Video.lnk
2014-09-01 13:04 - 2014-09-01 13:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Screen To Video
2014-09-01 13:02 - 2014-09-01 13:04 - 00000000 ____D () C:\Program Files\Free Screen To Video
2014-08-31 07:54 - 2014-08-31 07:54 - 01364531 _____ () C:\Users\fleker\Desktop\adwcleaner_3.308.exe
2014-08-31 07:24 - 2014-08-31 07:24 - 00002501 _____ () C:\Users\fleker\Desktop\JRT.txt
2014-08-31 06:49 - 2014-08-31 06:49 - 01016261 _____ (Thisisu) C:\Users\fleker\Desktop\JRT.exe
2014-08-29 15:11 - 2014-08-29 15:11 - 00052754 _____ () C:\Users\fleker\Desktop\Addition.txt
2014-08-25 20:32 - 2014-08-25 20:32 - 32686080 _____ () C:\Windows\system32\config\COMPONENTS.iobit

Hosts:
Reboot:
End
*****************

HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\Advanced SystemCare 7 => value deleted successfully.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce\\HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-06-01] (Microsoft Corporation) => Value not found.
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent => value deleted successfully.
"HKU\S-1-5-21-2860077999-920603677-2990381230-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c594933e-c916-11e2-80b4-806e6f6e6963}" => Key deleted successfully.
"HKCR\CLSID\{c594933e-c916-11e2-80b4-806e6f6e6963}" => Key not found.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => Key deleted successfully.
"HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6E6EE4D9-9F6A-4EED-B198-0DDA6D1719DC}" => Key deleted successfully.
"HKCR\CLSID\{6E6EE4D9-9F6A-4EED-B198-0DDA6D1719DC}" => Key not found.
C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\searchplugins\yahoo_ff.xml => Moved successfully.
C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{12DC3319-1C0A-106A-C0A9-19AC078CABBB} => Moved successfully.
C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} => Moved successfully.
C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{c151d79e-e61b-4a90-a887-5a46d38fba99} => Moved successfully.
C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\firefox-hotfix@mozilla.org.xpi => Moved successfully.
C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\PrivDog@AdTrustMedia.com.xpi => Moved successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
LiveUpdateSvc => Service deleted successfully.
TorchCrashHandler => Service stopped successfully.
TorchCrashHandler => Service deleted successfully.
esgiguard => Service deleted successfully.
MSICDSetup => Service deleted successfully.
NTIOLib_1_0_C => Service deleted successfully.
C:\Program Files\IObit => Moved successfully.
C:\Program Files\Enigma Software Group => Moved successfully.
C:\Users\fleker\AppData\Local\Torch => Moved successfully.
C:\Users\fleker\Desktop\FRST.txt => Moved successfully.
C:\Users\fleker\Desktop\zoek.exe => Moved successfully.
C:\ProgramData\TorchCrashHandler => Moved successfully.
C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk => Moved successfully.
C:\Users\fleker\Desktop\Facebook.lnk => Moved successfully.
C:\Users\fleker\Desktop\Youtube.lnk => Moved successfully.
"C:\Users\fleker\AppData\Local\Torch" => File/Directory not found.
C:\Users\fleker\Desktop\Torch.lnk => Moved successfully.
C:\Users\fleker\Desktop\Play Free Games.lnk => Moved successfully.
C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Screen To Video.lnk => Moved successfully.
C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch => Moved successfully.
C:\Users\fleker\AppData\Roaming\FreeScreenToVideo => Moved successfully.
C:\Users\fleker\Desktop\Free Screen To Video.lnk => Moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Screen To Video => Moved successfully.
C:\Program Files\Free Screen To Video => Moved successfully.
C:\Users\fleker\Desktop\adwcleaner_3.308.exe => Moved successfully.
C:\Users\fleker\Desktop\JRT.txt => Moved successfully.
C:\Users\fleker\Desktop\JRT.exe => Moved successfully.
"C:\Users\fleker\Desktop\Addition.txt" => File/Directory not found.
C:\Windows\system32\config\COMPONENTS.iobit => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.


The system needed a reboot.

==== End of Fixlog ====

[fleker]

Odinstalujte Advanced SystemCare a nasledne i vse od IOBit - jsou to cinske smejdy a spise jen skodi nez jsou uzitkem. Hledaji nesmyslne a neexistujici problemy, databazi haveti ukradli jine renomovane spolecnosti

já jsem všechny ty šmejdy odinstaloval, už asi před týdnem, to tam někde pořád jsou?