OTL logfile created on: 16. 10. 2014 17:50:35 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Tomáš\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17351)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy
3,89 Gb Total Physical Memory | 2,05 Gb Available Physical Memory | 52,64% Memory free
9,89 Gb Paging File | 7,54 Gb Available in Paging File | 76,20% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 222,08 Gb Total Space | 39,42 Gb Free Space | 17,75% Space Free | Partition Type: NTFS
Drive Z: | 55,90 Gb Total Space | 21,86 Gb Free Space | 39,11% Space Free | Partition Type: NTFS
Computer Name: TI7 | User Name: Tomáš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014/10/16 17:48:00 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Tomáš\Desktop\OTL.exe
PRC - [2014/10/11 08:41:22 | 004,085,896 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\avastui.exe
PRC - [2014/10/11 08:40:48 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014/09/26 03:41:39 | 018,945,704 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE
PRC - [2014/09/12 20:14:55 | 013,559,056 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
PRC - [2014/09/12 20:14:55 | 004,799,760 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
PRC - [2014/09/12 20:00:53 | 000,229,648 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
PRC - [2014/08/08 10:34:04 | 022,734,160 | ---- | M] (Google) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe
PRC - [2014/08/03 09:05:27 | 003,869,688 | ---- | M] (Acronis) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
PRC - [2014/07/17 08:05:51 | 000,253,752 | ---- | M] (Maxthon International ltd.) -- C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
PRC - [2014/02/25 03:28:16 | 000,248,736 | ---- | M] () -- C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
PRC - [2014/02/04 17:01:02 | 007,149,264 | ---- | M] (Acronis) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
PRC - [2013/09/13 15:50:54 | 000,070,952 | ---- | M] () -- C:\Program Files (x86)\Moborobo\MoboroboDeviceService.exe
PRC - [2013/02/20 01:03:54 | 002,615,368 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
PRC - [2012/12/10 10:39:14 | 000,475,984 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMutilps32.exe
PRC - [2012/12/10 10:39:10 | 001,192,784 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LManager.exe
PRC - [2012/12/10 10:39:10 | 000,350,544 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe
PRC - [2012/09/23 20:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/08/23 23:02:48 | 000,030,640 | ---- | M] () -- C:\Program Files (x86)\Acer Incorporated\HID Monitor\HIDMonitor.exe
PRC - [2012/07/17 23:57:22 | 000,365,376 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2012/07/17 23:57:20 | 000,277,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2012/07/14 01:27:00 | 000,769,432 | ---- | M] (Nero AG) -- c:\Program Files (x86)\Nero\Update\NASvc.exe
PRC - [2012/06/25 19:57:14 | 000,166,720 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2011/10/10 14:55:04 | 000,085,344 | ---- | M] (Software602 a.s.) -- C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
========== Modules (No Company Name) ==========
MOD - [2014/10/16 17:15:34 | 001,160,704 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\_ssl.pyd
MOD - [2014/10/16 17:15:34 | 000,805,888 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\wx._gdi_.pyd
MOD - [2014/10/16 17:15:34 | 000,713,216 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\_hashlib.pyd
MOD - [2014/10/16 17:15:34 | 000,110,080 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\pywintypes27.dll
MOD - [2014/10/16 17:15:34 | 000,027,136 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\_multiprocessing.pyd
MOD - [2014/10/16 17:15:34 | 000,007,168 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\hashobjs_ext.pyd
MOD - [2014/10/16 17:15:33 | 001,175,040 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\wx._core_.pyd
MOD - [2014/10/16 17:15:33 | 001,062,400 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\wx._controls_.pyd
MOD - [2014/10/16 17:15:33 | 000,811,008 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\wx._windows_.pyd
MOD - [2014/10/16 17:15:33 | 000,735,232 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\wx._misc_.pyd
MOD - [2014/10/16 17:15:33 | 000,686,080 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\unicodedata.pyd
MOD - [2014/10/16 17:15:33 | 000,557,056 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\pysqlite2._sqlite.pyd
MOD - [2014/10/16 17:15:33 | 000,525,640 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\windows._lib_cacheinvalidation.pyd
MOD - [2014/10/16 17:15:33 | 000,364,544 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\pythoncom27.dll
MOD - [2014/10/16 17:15:33 | 000,320,512 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\win32com.shell.shell.pyd
MOD - [2014/10/16 17:15:33 | 000,167,936 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\win32gui.pyd
MOD - [2014/10/16 17:15:33 | 000,128,512 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\_elementtree.pyd
MOD - [2014/10/16 17:15:33 | 000,127,488 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\pyexpat.pyd
MOD - [2014/10/16 17:15:33 | 000,122,368 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\wx._wizard.pyd
MOD - [2014/10/16 17:15:33 | 000,119,808 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\win32file.pyd
MOD - [2014/10/16 17:15:33 | 000,108,544 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\win32security.pyd
MOD - [2014/10/16 17:15:33 | 000,098,816 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\win32api.pyd
MOD - [2014/10/16 17:15:33 | 000,087,552 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\_ctypes.pyd
MOD - [2014/10/16 17:15:33 | 000,078,336 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\wx._animate.pyd
MOD - [2014/10/16 17:15:33 | 000,070,656 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\wx._html2.pyd
MOD - [2014/10/16 17:15:33 | 000,045,568 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\_socket.pyd
MOD - [2014/10/16 17:15:33 | 000,038,912 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\win32inet.pyd
MOD - [2014/10/16 17:15:33 | 000,035,840 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\win32process.pyd
MOD - [2014/10/16 17:15:33 | 000,025,600 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\win32pdh.pyd
MOD - [2014/10/16 17:15:33 | 000,024,064 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\win32pipe.pyd
MOD - [2014/10/16 17:15:33 | 000,022,528 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\win32ts.pyd
MOD - [2014/10/16 17:15:33 | 000,018,432 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\win32event.pyd
MOD - [2014/10/16 17:15:33 | 000,017,408 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\win32profile.pyd
MOD - [2014/10/16 17:15:33 | 000,011,264 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\win32crypt.pyd
MOD - [2014/10/16 17:15:33 | 000,010,240 | ---- | M] () -- C:\Users\TOM~1\AppData\Local\Temp\_MEI62202\select.pyd
MOD - [2014/10/11 08:40:51 | 019,329,904 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014/10/11 08:40:49 | 000,301,152 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\aswProperty.dll
MOD - [2014/09/26 03:41:24 | 001,032,360 | ---- | M] () -- C:\Program Files\Microsoft Office 15\root\office15\ADDINS\UmOutlookAddin.dll
MOD - [2014/09/26 03:36:22 | 000,316,576 | ---- | M] () -- C:\Program Files\Microsoft Office 15\root\office15\appvisvstream32.dll
MOD - [2014/09/15 18:47:01 | 016,825,520 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll
MOD - [2014/06/03 11:37:36 | 004,055,504 | ---- | M] () -- C:\Program Files (x86)\Maxthon\Core\Webkit\pdf.dll
MOD - [2014/06/03 11:37:28 | 000,247,096 | ---- | M] () -- C:\Program Files (x86)\Maxthon\Addons\Mobile\MxMobile.dll
MOD - [2013/11/21 08:37:14 | 000,109,336 | ---- | M] () -- C:\Program Files (x86)\Maxthon\Core\Webkit\libEGL.dll
MOD - [2013/11/21 08:37:06 | 002,128,152 | ---- | M] () -- C:\Program Files (x86)\Maxthon\Core\Webkit\ffmpegsumo.dll
MOD - [2013/11/21 08:37:06 | 000,887,064 | ---- | M] () -- C:\Program Files (x86)\Maxthon\Core\Webkit\libGLESv2.dll
MOD - [2013/11/18 03:18:38 | 000,258,944 | ---- | M] () -- C:\Program Files (x86)\Maxthon\Bin\Maxzlib.dll
MOD - [2013/02/21 07:58:24 | 000,089,672 | ---- | M] () -- C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll
MOD - [2013/01/05 01:19:58 | 000,035,336 | ---- | M] () -- C:\Program Files (x86)\Acer Incorporated\HID Monitor\ElanTPAPI.dll
MOD - [2012/08/23 23:02:48 | 000,030,640 | ---- | M] () -- C:\Program Files (x86)\Acer Incorporated\HID Monitor\HIDMonitor.exe
========== Services (SafeList) ==========
SRV - [2014/09/24 07:09:08 | 000,114,288 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014/09/15 18:47:02 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/09/12 20:14:55 | 004,799,760 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe -- (TeamViewer9)
SRV - [2014/08/16 05:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014/08/03 09:05:27 | 003,869,688 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2014/05/21 00:33:48 | 000,278,344 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2014/03/14 08:10:16 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2014/02/25 03:28:16 | 000,248,736 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe -- (UsbClientService)
SRV - [2014/02/04 17:01:02 | 007,149,264 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe -- (syncagentsrv)
SRV - [2013/12/24 02:26:48 | 000,318,592 | ---- | M] (Windows (R) Win 7 DDK provider) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe -- (AtherosSvc)
SRV - [2013/09/13 15:50:54 | 000,070,952 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Moborobo\MoboroboDeviceService.exe -- (MoboroboDeviceService)
SRV - [2013/08/22 05:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/22 04:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2013/08/21 18:17:04 | 001,144,688 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2013/04/28 22:56:54 | 000,098,160 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\RfBtnSvc64.exe -- (RfButtonDriverService)
SRV - [2013/02/26 03:46:06 | 002,474,056 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files (x86)\Realtek\Realtek USB Card Reader\RIconMan.exe -- (IconMan_R)
SRV - [2013/02/20 01:03:54 | 002,615,368 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe -- (CCDMonitorService)
SRV - [2012/12/10 10:39:10 | 000,350,544 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2012/09/23 20:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/17 23:57:22 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/17 23:57:20 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/14 01:27:00 | 000,769,432 | ---- | M] (Nero AG) [Auto | Running] -- c:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2012/06/25 19:57:14 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012/06/11 12:33:26 | 000,724,376 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011/10/10 14:55:04 | 000,085,344 | ---- | M] (Software602 a.s.) [Auto | Running] -- C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe -- (602XML Updater)
SRV - [2010/02/19 14:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
========== Driver Services (SafeList) ==========
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://acer13.msn.com
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.seznam.cz/
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..\SearchScopes,DefaultScope = {2684CF04-4982-407E-9753-3A710C47FE5F}
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" =
http://www.google.com/search?q={searchTerms}
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..\SearchScopes\{2684CF04-4982-407E-9753-3A710C47FE5F}: "URL" =
http://www.google.com/search?q={searchT ... utEncoding?}
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..\SearchScopes\{3CCF7DC4-AC9A-4E81-A8CD-5FFA2306EEBD}: "URL" =
http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..\SearchScopes\{8CCFDCAA-2BE6-48BA-ADF8-B7EE605272D4}: "URL" =
http://www.novinky.cz/hledej?w={searchT ... arch_13415
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..\SearchScopes\{A76122ED-E2B7-4F12-A282-8031F5885DA5}: "URL" =
http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..\SearchScopes\{D91A0EB0-0025-47B7-BE5E-164AA6D79D31}: "URL" =
http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..\SearchScopes\{D9F654CD-CBA0-4C1B-BA2B-8CB68AC1A91D}: "URL" =
http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..\SearchScopes\{E5D6D29D-FB7A-4D9F-8743-9678C181B2CD}: "URL" =
http://encyklopedie.seznam.cz/search?q= ... arch_13415
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..\SearchScopes\{EE091A42-749C-4E60-A956-50945B4881FF}: "URL" =
http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..\SearchScopes\{F0CC305D-CBEB-4761-8AE5-165D0C9412D1}: "URL" =
http://www.mapy.cz/?query={searchTerms} ... arch_13415
IE - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.defaulturl: "
http://www.google.com/search?btnG=Google+Search&q="
FF - prefs.js..browser.search.order.1: "Google"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.suggest.enabled: true
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "
http://www.google.com"
FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.24
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:32.0.3
FF - prefs.js..keyword.URL: "
http://www.google.com/search?btnG=Google+Search&q="
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@software602.cz/602XML Filler: C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\
wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014/10/11 08:41:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 32.0.3\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 32.0.3\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\
eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
[2014/10/02 13:02:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomáš\AppData\Roaming\mozilla\Extensions
[2014/10/02 13:08:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomáš\AppData\Roaming\mozilla\Firefox\Profiles\nz4f2xmm.default\extensions
[2014/10/02 13:08:54 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Tomáš\AppData\Roaming\mozilla\Firefox\Profiles\nz4f2xmm.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2014/10/02 13:02:32 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2014/10/02 13:02:32 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- C:\USERS\TOMáš\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\NZ4F2XMM.DEFAULT\EXTENSIONS\{B9DB16A4-6EDC-47EC-A1F4-B86292ED211D}
========== Chrome ==========
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0\
CHR - Extension: No name found = C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: No name found = C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: No name found = C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig\1.3.13_0\
CHR - Extension: No name found = C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd\1.2.13_0\
CHR - Extension: No name found = C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: No name found = C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0\
CHR - Extension: No name found = C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2021.112_0\
CHR - Extension: No name found = C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.7.1_0\
CHR - Extension: No name found = C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2014/10/15 21:42:26 | 000,000,753 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll (Microsoft Corporation)
O2 - BHO: (ExplorerBHO Class) - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (ClassicIEBHO Class) - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft)
O3 - HKLM\..\Toolbar: (Classic Explorer Bar) - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
O4 - HKLM..\Run: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe (Acronis International GmbH)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [LManager] File not found
O4 - HKLM..\Run: [RadioController] C:\Program Files (x86)\RadioController\RfBtnHelper.exe (Dritek System Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O4 - HKU\S-1-5-21-227376100-4166533119-2887738022-1001..\Run: [GoogleDriveSync] C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google)
O4 - HKU\S-1-5-21-227376100-4166533119-2887738022-1001..\Run: [Zoner Photo Studio Autoupdate] C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE (ZONER software)
O4 - Startup: C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BtTray – zástupce.lnk = C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtTray.exe (Qualcomm Atheros)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 [2014/02/01 22:02:38 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 [2014/02/01 22:02:38 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: BtvStack = "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" (Qualcomm®Atheros®)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1 [2014/02/01 22:02:38 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1 [2014/02/01 22:02:38 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1 [2014/02/01 22:02:38 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1 [2014/02/01 22:02:38 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 [2014/02/01 22:02:38 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 [2014/02/01 22:02:38 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 [2014/02/01 22:02:38 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1 [2014/02/01 22:02:38 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1 [2014/02/01 22:02:38 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office15\ONBttnIE.dll/105 File not found
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe (IvoSoft)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..Trusted Domains: editel.cz ([webedi] https in Důvěryhodné weby)
O15 - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..Trusted Domains: localhost ([]http in Internet)
O15 - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..Trusted Domains: sharepoint.com ([postamup] https in Důvěryhodné weby)
O15 - HKU\S-1-5-21-227376100-4166533119-2887738022-1001\..Trusted Domains: sharepoint.com ([postamup-my] https in Důvěryhodné weby)
O16 - DPF: {79EE81BD-6194-4240-A04F-131A81513DCB}
http://192.168.1.31/Media.CAB (Media Control)
O16 - DPF: {7B43048F-DA7A-458F-AF35-D825BDBB6816}
http://10.0.0.100:2003/codebase/NetVideoOCX.cab (NetVideoOCX Control)
O16 - DPF: {DB87A30F-4960-4247-9672-6A0D550EECE8}
http://192.168.1.31/SVRFind.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0ED910E7-BA47-4A4D-AA9C-BE6119947D00}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2C9EC2F5-3F5C-47C7-8D23-7F0DD53B4C66}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2014/10/12 15:38:45 | 000,000,195 | ---- | M] () - C:\Autoconfig.ini -- [ NTFS ]
O32 - AutoRun File - [2014/10/16 16:16:21 | 000,000,072 | ---- | M] () - Z:\Autoconfig.ini -- [ NTFS ]
O32 - AutoRun File - [2007/06/30 12:23:43 | 000,000,000 | ---- | M] () - Z:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{88be00fb-2609-11e4-bece-9c2a7031590c}\Shell - "" = AutoRun
O33 - MountPoints2\{88be00fb-2609-11e4-bece-9c2a7031590c}\Shell\AutoRun\command - "" = "D:\DriverPackSolution.exe"
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\WINDOWS\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\WINDOWS\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014/10/16 17:48:00 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Tomáš\Desktop\OTL.exe
[2014/10/16 04:08:09 | 000,626,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmCoreR.dll
[2014/10/16 04:07:57 | 000,672,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll
[2014/10/16 04:07:56 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuwebv.dll
[2014/10/16 04:07:56 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wudriver.dll
[2014/10/16 04:07:55 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapp.exe
[2014/10/16 04:07:11 | 002,017,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014/10/16 04:07:11 | 000,678,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2014/10/16 04:07:11 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014/10/16 04:07:11 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MshtmlDac.dll
[2014/10/16 04:07:02 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\packager.dll
[2014/10/16 04:06:50 | 000,514,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rastls.dll
[2014/10/15 21:59:03 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014/10/15 21:56:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2014/10/15 21:56:20 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Local\Temp
[2014/10/15 21:41:29 | 000,000,000 | ---D | C] -- C:\zoek_backup
[2014/10/15 21:36:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERUNT
[2014/10/15 21:32:54 | 001,705,698 | ---- | C] (Thisisu) -- C:\Users\Tomáš\Desktop\JRT.exe
[2014/10/15 09:49:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/10/15 07:32:14 | 000,000,000 | ---D | C] -- C:\rsit
[2014/10/14 15:11:28 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/10/14 15:08:27 | 000,000,000 | ---D | C] -- C:\FRST
[2014/10/12 19:57:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2014/10/12 19:41:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Atheros
[2014/10/12 19:41:54 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Roaming\Atheros
[2014/10/12 19:35:32 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2014/10/11 08:53:28 | 000,000,000 | -HSD | C] -- C:\Users\Tomáš\IntelGraphicsProfiles
[2014/10/11 08:49:25 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Roaming\AVAST Software
[2014/10/11 08:41:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
[2014/10/11 08:40:55 | 000,043,152 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2014/10/11 08:40:46 | 005,902,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Search.dll
[2014/10/11 08:40:46 | 005,777,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2014/10/11 08:40:44 | 000,756,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSShared.dll
[2014/10/11 08:40:43 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SkyDriveShell.dll
[2014/10/11 08:40:43 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2014/10/11 08:39:48 | 002,321,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2014/10/11 08:37:37 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2014/10/03 09:08:21 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\Desktop\Nová složka
[2014/10/02 14:24:49 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Local\MajorSilence
[2014/10/02 14:20:09 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Local\fontconfig
[2014/10/02 14:18:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Media Freeware
[2014/10/02 14:18:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free MP4 Splitter
[2014/10/02 14:18:24 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Roaming\Media Freeware
[2014/10/02 13:56:10 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Roaming\MAGIX
[2014/10/02 13:56:10 | 000,000,000 | ---D | C] -- C:\ProgramData\MAGIX
[2014/10/02 13:54:51 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
[2014/10/02 13:54:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FreeTime
[2014/10/02 13:36:15 | 000,000,000 | ---D | C] -- C:\Atresdownloader
[2014/10/02 13:11:47 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\dwhelper
[2014/10/02 13:03:04 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Local\Macromedia
[2014/10/02 13:02:35 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Roaming\Mozilla
[2014/10/02 13:02:35 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Local\Mozilla
[2014/10/02 13:02:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2014/10/02 13:02:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2014/10/02 12:51:02 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Local\Applian
[2014/10/02 12:50:26 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Roaming\Replay Media Catcher 5
[2014/10/02 12:50:26 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Local\Replay Media Catcher 5
[2014/10/02 12:50:26 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\Documents\Applian
[2014/10/02 12:50:25 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Local\Jaksta_Technologies_Pty_L
[2014/10/02 12:50:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Applian Technologies
[2014/10/01 09:35:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014/10/01 09:35:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2014/10/01 09:35:14 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2014/10/01 08:47:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2014/05/04 11:20:08 | 000,067,584 | ---- | C] (Nenad Hrg SoftwareOK.de) -- C:\Program Files (x86)\NewFileTime_uc.exe
[2014/01/05 21:37:22 | 000,040,960 | ---- | C] (NirSoft) -- C:\Program Files (x86)\OperaPassView.exe
[2013/12/20 00:44:27 | 001,995,496 | ---- | C] (RealVNC Ltd) -- C:\Program Files (x86)\vncviewer.exe
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Users\Tomáš\Documents\*.tmp files -> C:\Users\Tomáš\Documents\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2014/10/16 17:52:40 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014/10/16 17:48:00 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Tomáš\Desktop\OTL.exe
[2014/10/16 17:43:00 | 000,000,968 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf8b0b608642f3.job
[2014/10/16 17:43:00 | 000,000,964 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cf27e68d4b5c85.job
[2014/10/16 17:16:46 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/10/16 17:14:46 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014/10/16 17:14:45 | 3344,769,024 | -HS- | M] () -- C:\hiberfil.sys
[2014/10/15 21:41:29 | 000,024,064 | ---- | M] () -- C:\WINDOWS\zoek-delete.exe
[2014/10/15 21:41:17 | 001,290,752 | ---- | M] () -- C:\Users\Tomáš\Desktop\zoek.exe
[2014/10/15 21:32:57 | 001,705,698 | ---- | M] (Thisisu) -- C:\Users\Tomáš\Desktop\JRT.exe
[2014/10/15 19:58:28 | 000,002,288 | -H-- | M] () -- C:\Users\Tomáš\Documents\Default.rdp
[2014/10/14 15:06:52 | 001,222,144 | ---- | M] () -- C:\Users\Tomáš\Desktop\RSITx64.exe
[2014/10/14 11:57:34 | 000,002,944 | ---- | M] () -- C:\WINDOWS\BRPARAM.INI
[2014/10/12 15:38:45 | 000,000,195 | ---- | M] () -- C:\Autoconfig.ini
[2014/10/11 08:41:34 | 000,001,986 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/10/11 08:40:55 | 000,043,152 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2014/10/10 14:05:31 | 000,034,963 | ---- | M] () -- C:\Users\Tomáš\Desktop\chybka-pri-startu.jpg
[2014/10/02 14:20:54 | 017,270,131 | ---- | M] () -- C:\Users\Tomáš\Desktop\iprimaVIPzprAvy1102014PrimaPLAYtypert_640x360_-split-[000001]-[000230]-201410021420538710.mp4
[2014/10/02 14:18:51 | 000,001,198 | ---- | M] () -- C:\Users\Public\Desktop\Free MP4 Splitter.lnk
[2014/10/02 13:54:51 | 000,001,178 | ---- | M] () -- C:\Users\Tomáš\Desktop\Format Factory.lnk
[2014/10/02 13:12:26 | 002,343,587 | ---- | M] () -- C:\Users\Tomáš\Desktop\mp4_Prima-1409111515-51552_1000-1.mp4
[2014/10/02 13:11:52 | 002,466,936 | ---- | M] () -- C:\Users\Tomáš\Desktop\mp4_Prima-1409111515-51552_1000.mp4
[2014/10/02 13:02:33 | 000,001,123 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014/10/01 14:49:23 | 000,502,726 | ---- | M] () -- C:\Users\Tomáš\Desktop\doc1.pdf
[2014/09/30 00:45:58 | 000,706,016 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2014/09/30 00:45:58 | 000,105,440 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2014/09/27 22:26:02 | 000,039,625 | ---- | M] () -- C:\Users\Tomáš\Desktop\vyvody z pece.jpg
[2014/09/26 00:46:19 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014/09/26 00:32:04 | 002,017,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014/09/23 20:10:09 | 000,205,857 | ---- | M] () -- C:\Users\Tomáš\Desktop\logo-SELI.jpg
[2014/09/23 20:10:09 | 000,001,480 | ---- | M] () -- C:\Users\Tomáš\AppData\Local\Adobe Uložit pro web 13.0 Prefs
[2014/09/23 20:09:53 | 000,167,161 | ---- | M] () -- C:\Users\Tomáš\Desktop\logo-SELI-křivky.pdf
[2014/09/19 02:59:40 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MshtmlDac.dll
[2014/09/19 01:52:24 | 000,678,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2014/09/17 22:29:39 | 000,001,070 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 9.lnk
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Users\Tomáš\Documents\*.tmp files -> C:\Users\Tomáš\Documents\*.tmp -> ]
========== Files Created - No Company Name ==========
[2014/10/16 17:52:40 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014/10/15 21:56:20 | 000,024,064 | ---- | C] () -- C:\WINDOWS\zoek-delete.exe
[2014/10/15 21:41:10 | 001,290,752 | ---- | C] () -- C:\Users\Tomáš\Desktop\zoek.exe
[2014/10/15 07:38:09 | 001,222,144 | ---- | C] () -- C:\Users\Tomáš\Desktop\RSITx64.exe
[2014/10/14 20:00:56 | 000,002,876 | ---- | C] () -- C:\Users\Tomáš\Desktop\Evidence vyrobených kartonů SELI 2014 - vyroba – zástupce.lnk
[2014/10/11 08:41:34 | 000,001,986 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/10/10 14:05:31 | 000,034,963 | ---- | C] () -- C:\Users\Tomáš\Desktop\chybka-pri-startu.jpg
[2014/10/02 14:20:53 | 017,270,131 | ---- | C] () -- C:\Users\Tomáš\Desktop\iprimaVIPzprAvy1102014PrimaPLAYtypert_640x360_-split-[000001]-[000230]-201410021420538710.mp4
[2014/10/02 14:18:51 | 000,001,198 | ---- | C] () -- C:\Users\Public\Desktop\Free MP4 Splitter.lnk
[2014/10/02 13:55:59 | 000,120,200 | ---- | C] () -- C:\WINDOWS\SysWow64\DLLDEV32i.dll
[2014/10/02 13:54:51 | 000,001,178 | ---- | C] () -- C:\Users\Tomáš\Desktop\Format Factory.lnk
[2014/10/02 13:12:23 | 002,343,587 | ---- | C] () -- C:\Users\Tomáš\Desktop\mp4_Prima-1409111515-51552_1000-1.mp4
[2014/10/02 13:11:52 | 002,466,936 | ---- | C] () -- C:\Users\Tomáš\Desktop\mp4_Prima-1409111515-51552_1000.mp4
[2014/10/02 13:02:33 | 000,001,135 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2014/10/02 13:02:33 | 000,001,123 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014/10/01 14:49:23 | 000,502,726 | ---- | C] () -- C:\Users\Tomáš\Desktop\doc1.pdf
[2014/09/27 22:26:01 | 000,039,625 | ---- | C] () -- C:\Users\Tomáš\Desktop\vyvody z pece.jpg
[2014/09/23 20:10:09 | 000,205,857 | ---- | C] () -- C:\Users\Tomáš\Desktop\logo-SELI.jpg
[2014/09/23 20:09:48 | 000,167,161 | ---- | C] () -- C:\Users\Tomáš\Desktop\logo-SELI-křivky.pdf
[2014/08/19 09:49:25 | 000,002,944 | ---- | C] () -- C:\WINDOWS\BRPARAM.INI
[2014/08/19 09:47:49 | 000,045,056 | ---- | C] () -- C:\WINDOWS\SysWow64\BRTCPCON.DLL
[2014/08/19 09:47:49 | 000,000,114 | ---- | C] () -- C:\WINDOWS\SysWow64\BRLMW03A.INI
[2014/06/09 12:32:03 | 000,155,696 | ---- | C] () -- C:\WINDOWS\wiainst64.exe
[2014/05/21 00:33:38 | 000,348,088 | ---- | C] () -- C:\WINDOWS\SysWow64\igdmd32.dll
[2014/05/21 00:33:32 | 000,183,808 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll
[2014/05/21 00:33:32 | 000,142,848 | ---- | C] () -- C:\WINDOWS\SysWow64\igdail32.dll
[2014/05/15 15:59:44 | 000,003,449 | ---- | C] () -- C:\Users\Tomáš\AppData\Local\recently-used.xbel
[2014/04/24 17:41:04 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2014/04/01 23:01:12 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2014/03/22 22:55:28 | 000,000,600 | ---- | C] () -- C:\Users\Tomáš\AppData\Local\PUTTY.RND
[2014/03/09 12:21:54 | 000,036,995 | ---- | C] () -- C:\Users\Tomáš\AppData\Roaming\Hodnoty oddělené čárkami.ADR
[2014/02/28 13:01:37 | 000,012,072 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\MoborobAssDriver64.sys
[2014/02/26 13:19:49 | 000,520,393 | ---- | C] () -- C:\Program Files (x86)\gold.jpeg
[2014/01/05 22:22:50 | 000,000,385 | ---- | C] () -- C:\Program Files (x86)\OperaPassView.cfg
[2013/11/24 22:03:07 | 000,007,615 | ---- | C] () -- C:\Users\Tomáš\AppData\Local\Resmon.ResmonCfg
[2013/11/02 21:54:51 | 000,000,037 | -HS- | C] () -- C:\Users\Tomáš\AppData\Local\70149b02515b3bb20dd492.47983420
[2013/10/31 12:03:28 | 000,001,480 | ---- | C] () -- C:\Users\Tomáš\AppData\Local\Adobe Uložit pro web 13.0 Prefs
[2013/10/30 13:07:00 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe
[2013/10/30 13:06:54 | 000,974,848 | ---- | C] () -- C:\WINDOWS\SysWow64\cis-2.4.dll
[2013/10/30 13:06:54 | 000,081,920 | ---- | C] () -- C:\WINDOWS\SysWow64\issacapi_bs-2.3.dll
[2013/10/30 13:06:54 | 000,065,536 | ---- | C] () -- C:\WINDOWS\SysWow64\issacapi_pe-2.3.dll
[2013/10/30 13:06:54 | 000,057,344 | ---- | C] () -- C:\WINDOWS\SysWow64\issacapi_se-2.3.dll
[2013/10/29 23:03:35 | 030,942,823 | ---- | C] () -- C:\Program Files (x86)\Mir4nda-IM-0.9.20-Pack-v2.9.5.zip
[2013/10/29 10:28:01 | 001,571,160 | ---- | C] () -- C:\WINDOWS\TotalUninstaller.exe
[2013/09/15 22:05:42 | 002,297,856 | ---- | C] () -- C:\Program Files (x86)\main.db
[2013/08/22 17:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/22 17:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 16:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 09:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/22 05:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/22 01:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/22 01:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2013/04/28 23:02:44 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
========== ZeroAccess Check ==========
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/08/16 06:08:41 | 021,195,616 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/08/16 05:16:40 | 018,722,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 11:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/22 04:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 11:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2014/02/02 19:51:26 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\(6C-E9-07-1F-25-3A)
[2014/08/03 09:05:27 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\05213F80-213B-41AD-88CF-D4FDA99BD62B
[2013/11/20 11:05:56 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\602Installer
[2013/11/20 11:06:01 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\602XML
[2014/08/03 09:08:14 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Acronis
[2014/10/11 08:35:32 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\AIMP3
[2014/10/11 08:49:25 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\AVAST Software
[2013/12/19 09:10:07 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Bitcoin
[2013/10/29 23:31:46 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\BitTorrent Sync
[2014/10/16 17:16:38 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\ClassicShell
[2014/06/27 10:48:22 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\copyq
[2013/09/29 20:50:28 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\ESET
[2014/03/18 01:18:07 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\EssentialPIM
[2014/10/11 08:28:36 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\EssentialPIM Pro
[2014/02/06 15:00:52 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Foxit Software
[2013/11/14 17:08:25 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\GHISLER
[2014/05/15 19:12:14 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\gretl
[2014/02/16 21:14:12 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Kastner software
[2014/05/14 00:33:19 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Kledit
[2013/12/21 21:20:40 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Litecoin
[2013/09/10 21:11:21 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\lm
[2014/10/02 13:56:10 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\MAGIX
[2014/05/01 13:32:11 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Maxthon3
[2014/10/02 14:18:24 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Media Freeware
[2013/10/29 09:01:56 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Nico Mak Computing
[2014/01/05 13:57:40 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Nokia
[2013/10/30 21:30:14 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Opera
[2013/10/30 21:28:15 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Opera Software
[2014/02/02 19:02:29 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\PC Suite
[2014/02/12 10:27:10 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\PDF Architect
[2014/10/02 12:50:28 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Replay Media Catcher 5
[2014/01/05 13:53:30 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Samsung
[2014/10/11 08:30:37 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Seznam.cz
[2013/09/22 12:13:07 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\SketchUp
[2014/05/03 12:05:26 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Softland
[2013/11/20 11:06:02 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Software602
[2013/10/29 12:43:46 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2014/05/03 12:08:33 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\StatSoft
[2013/11/13 21:54:00 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\TeamViewer
[2014/10/12 19:31:13 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\uTorrent
[2014/01/17 18:43:36 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\YCanPDF
[2014/04/12 19:55:01 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Zoner
========== Purity Check ==========
========== Custom Scans ==========
< >
[2013/08/22 16:45:54 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2013/10/29 23:29:32 | 000,000,914 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2014/02/12 13:35:38 | 000,000,964 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf27e68d4b5c85.job
[2014/06/18 17:38:39 | 000,000,968 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf8b0b608642f3.job
< >
< MD5 for: AGP440.SYS >
[2014/04/26 15:45:43 | 000,000,012 | ---- | M] () MD5=06C6E29A8643D00197E214F3AA26A4B9 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.16384_none_aad14d4692a7dfee\AGP440.sys
[2013/08/22 14:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\drivers\AGP440.sys
[2013/08/22 14:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_36be84f8fc597ea3\AGP440.sys
[2013/08/22 14:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17238_none_ab0b455c927bd60f\AGP440.sys
[2014/09/11 08:07:51 | 000,000,012 | ---- | M] () MD5=AC26F500DB64617F336315BB5A0FDBE1 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\AGP440.sys
< MD5 for: ATAPI.SYS >
[2013/08/22 14:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\drivers\atapi.sys
[2013/08/22 14:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_64aa4354da84c2df\atapi.sys
[2013/08/22 14:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_cdf68824f580d510\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2014/04/26 15:47:00 | 000,028,249 | ---- | M] () MD5=0CBDE27FB26761852F7B22AFB8C51ACB -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_d2b24d5495b82963\autochk.exe
[2014/02/22 13:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\SysWOW64\autochk.exe
[2014/02/22 13:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_76c6a414dd35029f\autochk.exe
[2014/02/22 14:17:06 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\WINDOWS\SysNative\autochk.exe
[2014/02/22 14:17:06 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_d2e53f98959273d5\autochk.exe
[2014/04/28 05:58:58 | 000,023,596 | ---- | M] () MD5=83A4C9BE342BC296EC09492FF7594F13 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_7693b1d0dd5ab82d\autochk.exe
< MD5 for: CDROM.SYS >
[2013/08/22 10:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\drivers\cdrom.sys
[2013/08/22 10:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_42e9c29f0affc440\cdrom.sys
[2013/08/22 10:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\Windows\WinSxS\amd64_cdrom.inf_31bf3856ad364e35_6.3.9600.16384_none_5067bbed77be70be\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2013/08/22 12:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\WINDOWS\SysNative\cryptsvc.dll
[2013/08/22 12:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\Windows\WinSxS\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.3.9600.16384_none_66bdf96f6ec6545d\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2014/08/23 09:13:24 | 002,084,520 | ---- | M] (Microsoft Corporation) MD5=195822ACCDAA2B4815DD01BAFC335595 -- C:\Windows\SysWOW64\explorer.exe
[2014/08/23 09:13:24 | 002,084,520 | ---- | M] (Microsoft Corporation) MD5=195822ACCDAA2B4815DD01BAFC335595 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17284_none_4cc798c1821453a8\explorer.exe
[2014/09/11 10:03:09 | 000,270,774 | ---- | M] () MD5=2195687491E604BA42961470EDA7660E -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17238_none_42acff334d876b54\explorer.exe
[2014/09/11 10:37:08 | 000,220,250 | ---- | M] () MD5=286928E00AD34E9F88EB5BFA52660A70 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17238_none_4d01a98581e82d4f\explorer.exe
[2014/04/26 16:19:38 | 000,015,546 | ---- | M] () MD5=347EFF7EC89C3EB4F72F2408E1C4E16D -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_4cfaa3b381ee81a0\explorer.exe
[2014/04/26 16:19:35 | 000,238,918 | ---- | M] () MD5=5177BB4FECDDB9CDBCF10EF65916968D -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_4ceff22781f6788c\explorer.exe
[2014/09/11 09:29:28 | 000,271,249 | ---- | M] () MD5=667BC926C7CB889BF276A5FEA316CAEE -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_42adfbb14d868a5d\explorer.exe
[2014/04/26 15:51:47 | 000,169,957 | ---- | M] () MD5=6D919C26DCB567396CD2E119B8E4310E -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_42a5f9614d8dbfa5\explorer.exe
[2014/08/23 09:48:28 | 002,374,784 | ---- | M] (Microsoft Corporation) MD5=ACDBE1ED38167C8B01B8F63161BB2CEA -- C:\Windows\explorer.exe
[2014/08/23 09:48:28 | 002,374,784 | ---- | M] (Microsoft Corporation) MD5=ACDBE1ED38167C8B01B8F63161BB2CEA -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17284_none_4272ee6f4db391ad\explorer.exe
[2014/09/11 10:37:03 | 000,208,662 | ---- | M] () MD5=C131BC6F12417306A9C8469CA49110B1 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_4d02a60381e74c58\explorer.exe
[2014/04/26 15:51:45 | 000,283,735 | ---- | M] () MD5=FA98C5D746E7C9E0912E88AC44FF9926 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_429b47d54d95b691\explorer.exe
< MD5 for: HAL.DLL >
[2014/06/02 04:10:31 | 000,423,768 | ---- | M] (Microsoft Corporation) MD5=08DCA300264238F9AE941302321F3D54 -- C:\WINDOWS\SysNative\hal.dll
[2014/06/02 04:10:31 | 000,423,768 | ---- | M] (Microsoft Corporation) MD5=08DCA300264238F9AE941302321F3D54 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17196_none_9bde68c32da7abbb\hal.dll
[2014/08/17 14:07:53 | 000,024,467 | ---- | M] () MD5=2635F50EAF3E1B4A8D32B21E1203E130 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17031_none_9c1a44f32d7b883b\hal.dll
[2014/04/08 08:49:28 | 000,014,096 | ---- | M] () MD5=64D2873F32BB723BFFF3F8895032AA35 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16408_none_9c41d51d2d5cc0c4\hal.dll
[2014/04/26 15:52:31 | 000,066,843 | ---- | M] () MD5=D714202F057A317C8E31776EBEA0AEA2 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16500_none_9c39d4b32d63f333\hal.dll
< MD5 for: IASTORV.SYS >
[2013/08/22 14:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\drivers\iaStorV.sys
[2013/08/22 14:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_5069105fb236ae4b\iaStorV.sys
[2013/08/22 14:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\Windows\WinSxS\amd64_iastorv.inf_31bf3856ad364e35_6.3.9600.16384_none_9fcfb2835bbf0103\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2014/04/26 15:45:43 | 000,000,012 | ---- | M] () MD5=06C6E29A8643D00197E214F3AA26A4B9 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.16384_none_aad14d4692a7dfee\isapnp.sys
[2013/08/22 14:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\drivers\isapnp.sys
[2013/08/22 14:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_36be84f8fc597ea3\isapnp.sys
[2013/08/22 14:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17238_none_ab0b455c927bd60f\isapnp.sys
[2014/09/11 08:07:51 | 000,000,012 | ---- | M] () MD5=AC26F500DB64617F336315BB5A0FDBE1 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\isapnp.sys
< MD5 for: LSASS.EXE >
[2013/08/22 15:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\WINDOWS\SysNative\lsass.exe
[2013/08/22 15:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\Windows\WinSxS\amd64_microsoft-windows-lsa-minwin_31bf3856ad364e35_6.3.9600.16408_none_2e8484166600f08e\lsass.exe
Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu 
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne