Nefungují některé programy (RPC server unavailable)

[keyfor4]

Dobrý večer, předem děkuji za pomoc!
Moc Vašemu webu fandím a vážím si toho, jak pomáháte!

FRST:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-11-2014
Ran by Keyfor (administrator) on KEYFOR-PC on 02-11-2014 23:06:06
Running from C:\Users\Keyfor\Desktop
Loaded Profile: Keyfor (Available profiles: Keyfor)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareTray.exe
(Microsoft Corporation) C:\Users\Keyfor\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Dropbox, Inc.) C:\Users\Keyfor\AppData\Roaming\Dropbox\bin\Dropbox.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\Keyfor\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-02-05] (NVIDIA Corporation)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdAwareTray] => C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareTray.exe [8925504 2014-10-15] ()
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-08-08] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKU\S-1-5-21-833634061-2704343745-1971459761-1000\...\Run: [SkyDrive] => C:\Users\Keyfor\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [277672 2014-09-24] (Microsoft Corporation)
HKU\S-1-5-21-833634061-2704343745-1971459761-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-833634061-2704343745-1971459761-1000\...\Run: [Google Update] => C:\Users\Keyfor\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-07-09] (Google Inc.)
Startup: C:\Users\Keyfor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Keyfor\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
BootExecute: autocheck autochk * aswBoot.exe /M:2c6994e3 /wow /dir:C:\Program

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=UP97&ocid=UP97DHP
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-833634061-2704343745-1971459761-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {8E947210-1EF1-450F-87A3-CD7EE9548A36} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Keyfor\AppData\Roaming\Mozilla\Firefox\Profiles\nuui4pco.default
FF SearchEngineOrder.3: Bing
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @acestream.net/acestreamplugin,version=2.2.4.1-next -> C:\Users\Keyfor\AppData\Roaming\ACEStream\player\npace_plugin.dll (Innovative Digital Technologies)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\Keyfor\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\Keyfor\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Keyfor\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Keyfor\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Keyfor\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Keyfor\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF Extension: Adblock Plus - C:\Users\Keyfor\AppData\Roaming\Mozilla\Firefox\Profiles\nuui4pco.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-10-11]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-10-30]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-04-08]

Chrome:
=======
CHR DefaultSearchKeyword: Default -> 9B4C086E616B958913F710707D6A8A5CB3DB1C14DC4FB6FA5EC8EBB7B62A074F
CHR DefaultSearchURL: Default -> 8F11AEF50AAFF3DD73728491ECFFF3C56A8B3763096E57828E40CDCB3EFBC008
CHR Profile: C:\Users\Keyfor\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Keyfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-23]
CHR Extension: (Google Drive) - C:\Users\Keyfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-23]
CHR Extension: (YouTube) - C:\Users\Keyfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-23]
CHR Extension: (Google Search) - C:\Users\Keyfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-23]
CHR Extension: (Avast Online Security) - C:\Users\Keyfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-23]
CHR Extension: (Magic Player) - C:\Users\Keyfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpckgflgdapkpabemgkielbefdildaio [2014-09-23]
CHR Extension: (Skype Click to Call) - C:\Users\Keyfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-09-23]
CHR Extension: (No Name) - C:\Users\Keyfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhnkgpdlogbknkhlgdjlejeljbhflim [2014-10-31]
CHR Extension: (Google Wallet) - C:\Users\Keyfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-23]
CHR Extension: (Gmail) - C:\Users\Keyfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-23]
CHR HKCU\...\Chrome\Extension: [kpckgflgdapkpabemgkielbefdildaio] - C:\Users\Keyfor\AppData\Roaming\ACEStream\extensions\chrome_new\magicplayer.crx [2014-01-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-05-01]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-01] (AVAST Software)
R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareService.exe [707888 2014-10-15] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16941856 2014-02-05] (NVIDIA Corporation)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2013-11-22] (Razer Inc.)
R2 Spooler; C:\Windows\SysWOW64\spoolsv.exe [316416 2014-10-05] (Microsoft Corporation) [File not signed]
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-05-01] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-05-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-05-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-05-01] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-15] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-05-01] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-04-22] (Disc Soft Ltd)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [165504 2014-05-25] (ITE )
R3 MTsensor; C:\Windows\System32\DRIVERS\ATK64AMD.sys [13680 2007-08-09] ()
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1800832 2010-09-07] (Sonix Technology Co., Ltd.)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [389240 2014-07-10] (BitDefender S.R.L.)
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-02 23:06 - 2014-11-02 23:06 - 00016248 _____ () C:\Users\Keyfor\Desktop\FRST.txt
2014-11-02 23:05 - 2014-11-02 23:06 - 00000000 ____D () C:\FRST
2014-11-02 23:05 - 2014-11-02 23:05 - 00112640 _____ (forum.viry.cz) C:\Users\Keyfor\Desktop\FRSTLauncher.exe
2014-11-02 23:04 - 2014-11-02 23:04 - 02114560 _____ (Farbar) C:\Users\Keyfor\Desktop\FRST64.exe
2014-11-02 22:55 - 2014-11-02 22:55 - 01222144 _____ () C:\Users\Keyfor\Desktop\RSITx64(2).exe
2014-11-02 22:55 - 2014-11-02 22:55 - 00688992 _____ (Swearware) C:\Users\Keyfor\Desktop\dds.exe
2014-11-02 16:50 - 2014-11-02 16:50 - 01923596 _____ () C:\Users\Keyfor\Downloads\Ipad Wallpaper Christian Hd Background Wallpaper 18 High Definition Wallpapers HD
2014-11-01 21:00 - 2014-11-01 21:00 - 00610677 _____ () C:\Users\Keyfor\Downloads\24-subtitles-cz-9.zip
2014-10-31 15:00 - 2014-11-01 17:51 - 00000686 _____ () C:\Users\Keyfor\Downloads\no.txt
2014-10-31 12:03 - 2014-10-31 12:04 - 00000000 ____D () C:\Users\Keyfor\Desktop\příspěvek na dítě
2014-10-30 12:10 - 2014-10-30 12:10 - 00226445 _____ () C:\Users\Keyfor\Downloads\homeland-subtitles-cz-4.zip
2014-10-30 11:56 - 2014-10-30 11:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-28 13:18 - 2014-10-28 13:18 - 00036203 _____ () C:\Users\Keyfor\Downloads\24-S09E07(0000237755).srt
2014-10-28 13:17 - 2014-10-28 13:17 - 00047556 _____ () C:\Users\Keyfor\Downloads\24-S09E04(0000236836).srt
2014-10-28 13:17 - 2014-10-28 13:17 - 00038149 _____ () C:\Users\Keyfor\Downloads\24-S09E06(0000237454).srt
2014-10-28 10:41 - 2014-10-28 10:41 - 00027984 _____ () C:\Users\Keyfor\Downloads\The.Walking.Dead.S05E03.HDTV.x264-ASAP_CZ.srt
2014-10-23 18:58 - 2014-10-23 18:58 - 00037356 _____ () C:\Users\Keyfor\Downloads\24-S09E03(0000236504).srt
2014-10-23 11:51 - 2014-10-23 11:51 - 00038993 _____ () C:\Users\Keyfor\Downloads\24-S09E02(0000236207).srt
2014-10-21 14:04 - 2014-10-21 14:04 - 00032477 _____ () C:\Users\Keyfor\Downloads\24-S09E01(0000236250).srt
2014-10-21 14:03 - 2014-10-21 14:04 - 00032439 _____ () C:\Users\Keyfor\Downloads\24-S09E01(0000236141).srt
2014-10-21 09:55 - 2014-11-02 16:10 - 00013869 _____ () C:\Users\Keyfor\Desktop\brno.xlsx
2014-10-21 09:31 - 2014-10-21 09:31 - 00031176 _____ () C:\Users\Keyfor\Downloads\The.Walking.Dead.S05E02.HDTV.x264-KILLERS_CZ.srt
2014-10-21 09:30 - 2014-10-21 09:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2014-10-21 09:29 - 2014-10-21 09:29 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft
2014-10-21 09:27 - 2014-10-21 09:27 - 01753736 _____ () C:\Users\Keyfor\Downloads\Adaware_Installer(1).exe
2014-10-18 13:29 - 2014-10-18 13:29 - 00013390 _____ () C:\Users\Keyfor\Downloads\bbtcz-s08e02_v1.zip
2014-10-18 13:29 - 2014-10-18 13:29 - 00012966 _____ () C:\Users\Keyfor\Downloads\bbtcz-s08e01_v1.zip
2014-10-18 13:29 - 2014-10-18 13:29 - 00012931 _____ () C:\Users\Keyfor\Downloads\bbtcz-s08e04_v1.zip
2014-10-18 13:29 - 2014-10-18 13:29 - 00011921 _____ () C:\Users\Keyfor\Downloads\bbtcz-s08e03_v1.zip
2014-10-17 19:26 - 2014-10-17 19:26 - 00111400 _____ () C:\Users\Keyfor\Downloads\God-s-Not-Dead(0000240334).srt
2014-10-17 15:01 - 2014-10-17 15:01 - 00041984 _____ () C:\Users\Keyfor\Downloads\Služebník - Michal Apetauer(1).xls
2014-10-17 14:59 - 2014-10-17 14:59 - 00041984 _____ () C:\Users\Keyfor\Downloads\Služebník - Michal Apetauer.xls
2014-10-17 08:35 - 2014-10-17 08:35 - 00026912 _____ () C:\Users\Keyfor\Downloads\The.Walking.Dead.S05E01.HDTV.x264-KILLERS.srt
2014-10-17 08:35 - 2014-10-17 08:35 - 00026193 _____ () C:\Users\Keyfor\Downloads\The.Walking.Dead.S05E01.1080p.WEB-DL.DD5.1.H.264-Cyphanix.srt
2014-10-16 21:29 - 2014-10-16 21:30 - 110601504 _____ (Oracle Corporation) C:\Users\Keyfor\Downloads\VirtualBox-4.3.18-96516-Win.exe
2014-10-16 20:51 - 2014-10-16 20:51 - 01448809 _____ (DOSBox Team) C:\Users\Keyfor\Downloads\DOSBox0.74-win32-installer.exe
2014-10-16 20:51 - 2014-10-16 20:51 - 00472340 _____ () C:\Users\Keyfor\Downloads\dyna-blaster.zip
2014-10-16 20:51 - 2014-10-16 20:51 - 00001918 _____ () C:\Users\Public\Desktop\DOSBox 0.74.lnk
2014-10-16 20:51 - 2014-10-16 20:51 - 00000000 ____D () C:\Users\Keyfor\Desktop\Dyna Blaster
2014-10-16 20:51 - 2014-10-16 20:51 - 00000000 ____D () C:\Users\Keyfor\AppData\Local\DOSBox
2014-10-16 20:51 - 2014-10-16 20:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
2014-10-16 20:51 - 2014-10-16 20:51 - 00000000 ____D () C:\Program Files (x86)\DOSBox-0.74
2014-10-16 10:43 - 2014-10-16 11:36 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\AVI ReComp
2014-10-16 10:43 - 2014-10-16 10:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VobSub
2014-10-16 10:42 - 2014-10-16 10:43 - 00000000 ____D () C:\Program Files (x86)\Xvid
2014-10-16 10:42 - 2014-10-16 10:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid
2014-10-16 10:42 - 2011-05-30 14:42 - 00255488 _____ () C:\Windows\system32\xvidvfw.dll
2014-10-16 10:42 - 2011-05-30 14:42 - 00240640 _____ () C:\Windows\SysWOW64\xvidvfw.dll
2014-10-16 10:42 - 2011-05-23 10:52 - 00153088 _____ () C:\Windows\SysWOW64\xvid.ax
2014-10-16 10:42 - 2011-05-23 08:49 - 00173568 _____ () C:\Windows\system32\xvid.ax
2014-10-16 10:42 - 2011-05-23 08:46 - 00645632 _____ () C:\Windows\SysWOW64\xvidcore.dll
2014-10-16 10:42 - 2011-05-23 08:45 - 00696832 _____ () C:\Windows\system32\xvidcore.dll
2014-10-16 10:41 - 2014-10-16 10:43 - 00000000 ____D () C:\Program Files (x86)\AVI ReComp
2014-10-16 10:41 - 2014-10-16 10:41 - 00002004 _____ () C:\Users\Keyfor\Desktop\AVI ReComp.lnk
2014-10-16 10:41 - 2014-10-16 10:41 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
2014-10-16 10:41 - 2014-10-16 10:41 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVI ReComp
2014-10-16 10:41 - 2014-10-16 10:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
2014-10-16 10:41 - 2014-10-16 10:41 - 00000000 ____D () C:\Program Files (x86)\AviSynth 2.5
2014-10-16 10:38 - 2014-10-16 10:38 - 30026808 _____ (AVI ReComp Team) C:\Users\Keyfor\Downloads\AVI_ReComp_1.5.5_Setup.exe
2014-10-16 10:30 - 2014-10-16 10:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DirectVobSub
2014-10-16 10:30 - 2014-10-16 10:33 - 00000000 ____D () C:\Program Files\DirectVobSub
2014-10-16 10:29 - 2014-10-16 10:37 - 00165888 _____ () C:\Users\Keyfor\Downloads\T-Cleaner.exe
2014-10-12 17:12 - 2014-10-12 17:12 - 504635432 _____ () C:\Windows\MEMORY.DMP
2014-10-12 17:12 - 2014-10-12 17:12 - 00291664 _____ () C:\Windows\Minidump\101214-22854-01.dmp
2014-10-11 17:25 - 2014-10-11 17:25 - 00071228 _____ () C:\Users\Keyfor\Downloads\akce-2014-10-12.pptx
2014-10-10 11:49 - 2014-10-10 21:28 - 00013914 _____ () C:\Users\Keyfor\Downloads\lee.xlsx
2014-10-09 14:05 - 2014-10-09 14:05 - 00059435 _____ () C:\Users\Keyfor\Downloads\The-Expendables(0000160663).srt
2014-10-09 14:05 - 2014-10-09 14:05 - 00059429 _____ () C:\Users\Keyfor\Downloads\The-Expendables(0000160610).srt
2014-10-09 13:57 - 2014-10-09 13:57 - 00049106 _____ () C:\Users\Keyfor\Downloads\The-Knick-S01E01(0000240124).srt
2014-10-08 21:28 - 2014-10-08 21:28 - 00003138 _____ () C:\Windows\System32\Tasks\{82FD7106-04CC-4967-999A-C05A7B714F2E}
2014-10-08 21:25 - 2014-10-08 21:25 - 00000000 ____D () C:\Program Files (x86)\Gabest
2014-10-08 21:24 - 2014-10-08 21:24 - 00734160 _____ () C:\Users\Keyfor\Downloads\VobSub_2.23.exe
2014-10-08 21:23 - 2014-10-08 21:23 - 02209528 _____ () C:\Users\Keyfor\Downloads\VirtualDub-1.10.4-AMD64.zip
2014-10-08 10:36 - 2014-10-08 10:36 - 01908225 _____ () C:\Users\Keyfor\Downloads\VirtualDub-1.10.4.zip
2014-10-08 02:52 - 2014-10-08 02:52 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Identity Safe
2014-10-07 22:31 - 2014-10-16 10:38 - 00000000 ____D () C:\ProgramData\NCOTEMP
2014-10-07 22:29 - 2014-10-16 10:38 - 00000000 ____D () C:\ProgramData\Norton
2014-10-07 22:20 - 2014-10-07 22:23 - 218966928 ____N (Symantec Corporation) C:\Users\Keyfor\Downloads\NAV-TW-21.1.0-EN-ROW.exe
2014-10-07 14:19 - 2014-10-07 14:19 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\Lavasoft
2014-10-07 13:57 - 2014-11-02 22:51 - 00002305 _____ () C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
2014-10-07 13:57 - 2014-10-07 13:57 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\LavasoftStatistics
2014-10-07 13:56 - 2014-10-07 13:56 - 00000000 ____D () C:\Program Files\Lavasoft
2014-10-07 13:49 - 2014-10-07 13:49 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-10-07 13:48 - 2014-10-07 13:48 - 02806920 _____ () C:\Users\Keyfor\Downloads\Adaware_Installer.exe
2014-10-06 10:47 - 2014-10-06 10:47 - 00001865 _____ () C:\Users\Keyfor\Desktop\Theophilos 3.lnk
2014-10-06 10:47 - 2014-10-06 10:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Theophilos 3
2014-10-06 10:46 - 2014-10-06 10:46 - 03882496 _____ () C:\Users\Keyfor\Downloads\csp(1).exe
2014-10-06 10:46 - 2014-10-06 10:46 - 02572288 _____ () C:\Users\Keyfor\Downloads\B21(1).exe
2014-10-06 10:46 - 2014-10-06 10:46 - 02557952 _____ () C:\Users\Keyfor\Downloads\cep(1).exe
2014-10-06 10:45 - 2014-10-06 10:46 - 07783355 _____ ( ) C:\Users\Keyfor\Downloads\theoinst(1).exe
2014-10-05 21:24 - 2014-10-05 21:24 - 00002172 _____ () C:\Users\Keyfor\Desktop\Subtitle Workshop.lnk
2014-10-05 21:24 - 2014-10-05 21:24 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\URUSoft
2014-10-05 21:24 - 2014-10-05 21:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\URUSoft
2014-10-05 21:24 - 2014-10-05 21:24 - 00000000 ____D () C:\Program Files (x86)\URUSoft
2014-10-05 21:22 - 2014-10-06 10:16 - 00000000 ____D () C:\Program Files (x86)\YTD
2014-10-05 21:22 - 2014-10-05 21:22 - 00000961 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD.lnk
2014-10-05 21:22 - 2014-10-05 21:22 - 00000949 _____ () C:\Users\Keyfor\Desktop\YTD.lnk
2014-10-05 21:16 - 2014-10-05 21:16 - 00644640 _____ (Igor Pavlov) C:\Users\Keyfor\Downloads\ytd-1.43.exe
2014-10-05 20:56 - 2014-10-05 20:56 - 01087682 _____ () C:\Users\Keyfor\Downloads\subtitleworkshop251.zip
2014-10-05 16:17 - 2014-10-05 16:17 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-10-05 16:16 - 2014-10-05 16:16 - 05472344 _____ () C:\Users\Keyfor\Downloads\RogueKillerX64.exe
2014-10-05 16:04 - 2014-10-05 16:04 - 01375089 _____ () C:\Users\Keyfor\Downloads\adwcleaner_3.311.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-02 22:59 - 2009-07-14 05:45 - 00022560 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-02 22:59 - 2009-07-14 05:45 - 00022560 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-02 22:57 - 2009-07-14 06:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-02 22:54 - 2014-03-31 21:30 - 02054518 _____ () C:\Windows\WindowsUpdate.log
2014-11-02 22:52 - 2014-05-07 23:06 - 00000000 ___RD () C:\Users\Keyfor\OneDrive
2014-11-02 22:52 - 2014-04-05 14:05 - 00000000 ___RD () C:\Users\Keyfor\Dropbox
2014-11-02 22:51 - 2014-04-21 16:26 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-02 22:51 - 2014-04-05 14:00 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\Dropbox
2014-11-02 22:50 - 2014-07-03 15:46 - 00025442 _____ () C:\Windows\setupact.log
2014-11-02 22:50 - 2014-03-31 22:32 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-11-02 22:50 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-02 22:37 - 2014-07-09 12:26 - 00000966 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-833634061-2704343745-1971459761-1000UA.job
2014-11-02 22:34 - 2014-06-15 15:26 - 00000000 ____D () C:\Users\Keyfor\AppData\Local\CrashDumps
2014-11-02 22:12 - 2014-04-21 16:26 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-02 20:52 - 2014-08-20 12:17 - 00000000 ____D () C:\Users\Keyfor\Documents\Outlook Files
2014-11-02 19:34 - 2014-04-01 20:57 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\vlc
2014-11-02 18:07 - 2014-09-23 19:25 - 00038277 _____ () C:\Users\Keyfor\Desktop\24 S09E11 (WEB-DL).srt
2014-11-02 18:07 - 2014-09-23 19:25 - 00038277 _____ () C:\Users\Keyfor\Desktop\24 S09E11 (LOL+DIMENSION).srt
2014-11-02 18:07 - 2014-09-23 19:25 - 00030892 _____ () C:\Users\Keyfor\Desktop\24 S09E12 (WEB-DL).srt
2014-11-02 18:07 - 2014-09-23 19:25 - 00030892 _____ () C:\Users\Keyfor\Desktop\24 S09E12 (LOL+DIMENSION).srt
2014-11-02 10:37 - 2014-07-09 12:26 - 00000914 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-833634061-2704343745-1971459761-1000Core.job
2014-11-01 21:43 - 2014-04-04 18:42 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\uTorrent
2014-11-01 16:14 - 2014-05-01 11:57 - 00000000 ____D () C:\Users\Keyfor\AppData\Local\ABBYY
2014-10-31 23:01 - 2014-05-17 17:06 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\.ACEStream
2014-10-31 22:07 - 2014-05-03 14:43 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\dvdcss
2014-10-31 11:45 - 2014-03-31 22:44 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-29 19:16 - 2014-04-21 16:26 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-28 18:30 - 2014-04-08 19:05 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-10-28 11:07 - 2014-04-21 16:26 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-28 11:07 - 2014-04-21 16:26 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-28 10:40 - 2014-03-31 22:44 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\Mozilla
2014-10-18 09:32 - 2014-07-09 12:26 - 00003938 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-833634061-2704343745-1971459761-1000UA
2014-10-18 09:32 - 2014-07-09 12:26 - 00003542 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-833634061-2704343745-1971459761-1000Core
2014-10-17 19:49 - 2014-04-17 13:49 - 00000000 ____D () C:\Users\Keyfor\AppData\Local\Microsoft Games
2014-10-17 15:35 - 2014-07-18 12:35 - 00000000 ____D () C:\Users\Keyfor\AppData\Local\Microsoft Help
2014-10-16 20:04 - 2014-05-11 17:33 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\Seznam.cz
2014-10-16 20:03 - 2014-06-01 21:36 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-10-16 20:03 - 2014-05-11 17:33 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-10-16 20:01 - 2014-07-10 08:23 - 00729614 _____ () C:\Windows\PFRO.log
2014-10-16 10:30 - 2014-06-01 21:29 - 00000000 ____D () C:\AdwCleaner
2014-10-16 10:30 - 2014-03-31 21:39 - 00000000 ____D () C:\Users\Keyfor
2014-10-16 10:29 - 2013-12-03 21:08 - 00000000 ____D () C:\Qoobox
2014-10-15 09:14 - 2014-04-23 08:12 - 00000000 ____D () C:\FFOutput
2014-10-12 17:12 - 2014-04-04 08:39 - 00000000 ____D () C:\Windows\Minidump
2014-10-09 13:21 - 2014-04-08 19:12 - 00002010 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-10-09 12:51 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-10-08 20:35 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system
2014-10-08 11:25 - 2014-05-07 23:43 - 00000000 ____D () C:\Users\Keyfor\AppData\Roaming\Audacity
2014-10-08 10:54 - 2013-10-27 14:58 - 00073728 _____ ( ) C:\Windows\system\vdremote.dll
2014-10-08 10:54 - 2013-10-27 14:58 - 00065536 _____ ( ) C:\Windows\system\vdsvrlnk.dll
2014-10-06 10:47 - 2014-05-17 19:07 - 00000000 ____D () C:\Program Files (x86)\theo30
2014-10-05 16:00 - 2014-10-02 11:47 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spoolsv.exe
2014-10-05 16:00 - 2014-10-02 11:47 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spoolss.dll
2014-10-05 15:59 - 2014-10-02 11:46 - 00290304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\subinacle.exe
2014-10-04 21:12 - 2014-10-01 22:34 - 00014769 _____ () C:\Users\Keyfor\Downloads\leed.xlsx

Some content of TEMP:
====================
C:\Users\Keyfor\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpv6cz2e.dll
C:\Users\Keyfor\AppData\Local\Temp\InstallOptions.dll
C:\Users\Keyfor\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-833634061-2704343745-1971459761-1000Core.job => C:\Users\Keyfor\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-833634061-2704343745-1971459761-1000UA.job => C:\Users\Keyfor\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Ad-Aware Antivirus (Disabled - Out of date) {D87B6541-12A1-DAEA-0033-9B8057AAB996}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Ad-Aware Antivirus (Disabled - Out of date) {631A84A5-349B-D564-3A83-A0F22C2DF32B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: Ad-Aware Firewall (Disabled) {E040E464-58CE-DBB2-2B6C-32B5A979FEED}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Keyfor\Desktop" je 7 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream
C:\Users\Keyfor\AppData\Roaming\ACEStream\engine\ace_engine.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IJNetworkScannerSelectorEX
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mncqtveySrv
C:\Windows\system32\mncqtvey.vbe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snp2uvc
C:\Windows\vsnp2uvc.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zune Launcher
"C:\Program Files\Zune\ZuneLauncher.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TMMonitor.lnk
C:\PROGRA~2\ArcSoft\TOTALM~1.5\TMMONI~1.EXE [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Keyfor^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk
C:\Users\Keyfor\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [x]


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================



RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Keyfor at 2014-11-02 23:08:28
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 26 GB (23%) free of 109 GB
Total RAM: 4095 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:08:31, on 2.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Keyfor\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Users\Keyfor\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Keyfor.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [SkyDrive] "C:\Users\Keyfor\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Keyfor\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - Startup: Dropbox.lnk = C:\Users\Keyfor\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - Unknown owner - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Ad-Aware Service 11 (LavasoftAdAwareService11) - Unknown owner - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: RzKLService - Razer Inc. - C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8530 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareTray.exe"
"C:\Users\Keyfor\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background
"C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
WLIDSvcM.exe 2520
"C:\Users\Keyfor\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-829588655-1828806088893597252939655466-1640258666105220372037328352-1613293559
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
taskeng.exe {D6355892-6B92-43FC-A5F3-A4BE47D74D0F}
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Keyfor\Desktop\RSITx64(2).exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-833634061-2704343745-1971459761-1000Core.job - C:\Users\Keyfor\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-833634061-2704343745-1971459761-1000UA.job - C:\Users\Keyfor\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Keyfor\AppData\Roaming\Mozilla\Firefox\Profiles\nuui4pco.default

prefs.js - "browser.startup.homepage" - "about:home"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.77 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.77 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-05-01 581824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-03-21 6270336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-01 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-03-21 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-02-05 1179576]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-02-05 2234144]
""= []
"AdAwareTray"=C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareTray.exe [2014-10-15 8925504]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SkyDrive"=C:\Users\Keyfor\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2014-09-24 277672]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Google Update"=C:\Users\Keyfor\AppData\Local\Google\Update\GoogleUpdate.exe [2014-07-09 116648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream]
C:\Users\Keyfor\AppData\Roaming\ACEStream\engine\ace_engine.exe [2014-10-31 27904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IJNetworkScannerSelectorEX]
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-01-15 452016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mncqtveySrv]
C:\Windows\system32\mncqtvey.vbe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snp2uvc]
C:\Windows\vsnp2uvc.exe [2010-01-21 909824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zune Launcher]
C:\Program Files\Zune\ZuneLauncher.exe [2011-08-05 163552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TMMonitor.lnk]
C:\PROGRA~2\ArcSoft\TOTALM~1.5\TMMONI~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Keyfor^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
C:\Users\Keyfor\AppData\Roaming\Dropbox\bin\Dropbox.exe [2014-09-13 36414624]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-08 3890208]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]

C:\Users\Keyfor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Keyfor\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
.vbs - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-02 23:08:28 ----D---- C:\rsit
2014-11-02 23:05:46 ----D---- C:\FRST
2014-10-30 11:56:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-10-22 21:11:11 ----ASH---- C:\hiberfil.sys
2014-10-21 09:29:19 ----D---- C:\Program Files\Common Files\Lavasoft
2014-10-16 20:51:20 ----D---- C:\Program Files (x86)\DOSBox-0.74
2014-10-16 10:43:24 ----D---- C:\Users\Keyfor\AppData\Roaming\AVI ReComp
2014-10-16 10:42:48 ----A---- C:\Windows\SYSWOW64\xvidvfw.dll
2014-10-16 10:42:48 ----A---- C:\Windows\SYSWOW64\xvidcore.dll
2014-10-16 10:42:48 ----A---- C:\Windows\system32\xvidvfw.dll
2014-10-16 10:42:48 ----A---- C:\Windows\system32\xvidcore.dll
2014-10-16 10:42:47 ----D---- C:\Program Files (x86)\Xvid
2014-10-16 10:41:54 ----D---- C:\Program Files (x86)\AviSynth 2.5
2014-10-16 10:41:34 ----D---- C:\Program Files (x86)\AVI ReComp
2014-10-16 10:30:41 ----D---- C:\Program Files\DirectVobSub
2014-10-09 12:55:46 ----SHD---- C:\$RECYCLE.BIN
2014-10-08 21:25:56 ----D---- C:\Program Files (x86)\Gabest
2014-10-07 22:31:01 ----D---- C:\ProgramData\NCOTEMP
2014-10-07 22:29:40 ----D---- C:\ProgramData\Norton
2014-10-07 22:25:30 ----D---- C:\ProgramData\NortonInstaller
2014-10-07 14:19:03 ----D---- C:\Users\Keyfor\AppData\Roaming\Lavasoft
2014-10-07 13:57:21 ----D---- C:\Users\Keyfor\AppData\Roaming\LavasoftStatistics
2014-10-07 13:56:15 ----D---- C:\Program Files\Lavasoft
2014-10-07 13:49:52 ----D---- C:\ProgramData\Lavasoft
2014-10-05 21:24:17 ----D---- C:\Program Files (x86)\URUSoft
2014-10-05 21:22:36 ----D---- C:\Program Files (x86)\YTD
2014-10-05 16:17:19 ----A---- C:\Windows\system32\drivers\TrueSight.sys

======List of files/folders modified in the last 1 month======

2014-11-02 23:08:31 ----D---- C:\Windows\Temp
2014-11-02 23:08:30 ----D---- C:\Program Files\trend micro
2014-11-02 23:07:13 ----D---- C:\Windows\Prefetch
2014-11-02 23:07:13 ----D---- C:\Windows
2014-11-02 22:57:49 ----D---- C:\Windows\System32
2014-11-02 22:57:49 ----D---- C:\Windows\inf
2014-11-02 22:57:49 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-02 22:51:59 ----D---- C:\Users\Keyfor\AppData\Roaming\Dropbox
2014-11-02 22:50:32 ----D---- C:\ProgramData\NVIDIA
2014-11-02 19:34:31 ----D---- C:\Users\Keyfor\AppData\Roaming\vlc
2014-11-01 21:43:04 ----D---- C:\Users\Keyfor\AppData\Roaming\uTorrent
2014-11-01 16:14:16 ----SHD---- C:\Windows\Installer
2014-11-01 16:14:15 ----D---- C:\Config.Msi
2014-11-01 16:14:12 ----RD---- C:\Program Files (x86)
2014-11-01 16:13:07 ----SHD---- C:\System Volume Information
2014-10-31 23:01:52 ----D---- C:\Users\Keyfor\AppData\Roaming\.ACEStream
2014-10-31 22:07:37 ----D---- C:\Users\Keyfor\AppData\Roaming\dvdcss
2014-10-31 11:45:58 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-30 10:13:01 ----D---- C:\Windows\system32\config
2014-10-28 11:07:12 ----D---- C:\Windows\Tasks
2014-10-28 10:40:01 ----D---- C:\Users\Keyfor\AppData\Roaming\Mozilla
2014-10-21 09:29:19 ----D---- C:\Program Files\Common Files
2014-10-16 20:04:48 ----D---- C:\Users\Keyfor\AppData\Roaming\Seznam.cz
2014-10-16 20:03:45 ----D---- C:\Program Files (x86)\Seznam.cz
2014-10-16 20:03:27 ----D---- C:\Windows\system32\drivers
2014-10-16 20:03:23 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-10-16 10:42:51 ----D---- C:\Windows\SysWOW64
2014-10-16 10:30:41 ----RD---- C:\Program Files
2014-10-16 10:30:14 ----D---- C:\AdwCleaner
2014-10-16 10:29:46 ----D---- C:\Qoobox
2014-10-15 09:14:04 ----D---- C:\FFOutput
2014-10-12 17:12:30 ----D---- C:\Windows\Minidump
2014-10-11 17:20:46 ----D---- C:\Windows\system32\Tasks
2014-10-09 12:51:31 ----A---- C:\Windows\system.ini
2014-10-09 12:51:09 ----D---- C:\Windows\system32\drivers\etc
2014-10-09 12:36:03 ----D---- C:\Windows\SYSWOW64\drivers
2014-10-09 12:36:03 ----D---- C:\Windows\AppPatch
2014-10-09 12:36:00 ----D---- C:\Program Files (x86)\Common Files
2014-10-08 20:35:23 ----D---- C:\Windows\system
2014-10-08 11:25:10 ----D---- C:\Users\Keyfor\AppData\Roaming\Audacity
2014-10-07 22:31:01 ----D---- C:\ProgramData
2014-10-07 21:36:01 ----D---- C:\Windows\system32\catroot2
2014-10-06 10:47:14 ----D---- C:\Program Files (x86)\theo30
2014-10-05 16:00:09 ----A---- C:\Windows\SYSWOW64\spoolsv.exe
2014-10-05 16:00:09 ----A---- C:\Windows\SYSWOW64\spoolss.dll
2014-10-05 15:59:20 ----A---- C:\Windows\SYSWOW64\subinacle.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-05-01 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-05-01 208416]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-05-01 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-05-15 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-05-15 423240]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-04-22 283064]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-05-01 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-05-01 79184]
R3 Afc;PPdus ASPI Shell; C:\Windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2007-08-09 13680]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-27 39200]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2010-09-07 1800832]
S2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-05-15 85328]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2014-03-31 58056]
S3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2014-05-25 165504]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 Trufos;Trufos; C:\Windows\system32\DRIVERS\Trufos.sys [2014-07-10 389240]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys []
S3 WinUsb;WinUsb Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S3 WSDPrintDevice;WSD Print Support via UMB; C:\Windows\system32\DRIVERS\WSDPrint.sys [2009-07-14 23040]
S3 WSDScan;WSD Scan Support via UMB; C:\Windows\system32\DRIVERS\WSDScan.sys [2009-07-14 25088]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-01 50344]
R2 LavasoftAdAwareService11;Ad-Aware Service 11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareService.exe [2014-10-15 707888]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-02-05 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-02-05 16941856]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-03-04 922968]
R2 RzKLService;RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [2013-11-22 105448]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-03-04 411936]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-21 116648]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe []
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2014-03-31 1512640]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-21 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-30 114288]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-04-22 1255736]
S3 WMZuneComm;Zune Windows Mobile Connectivity Service; C:\Program Files\Zune\WMZuneComm.exe [2011-08-05 306400]
S3 ZuneNetworkSvc;Zune Network Sharing Service; C:\Program Files\Zune\ZuneNss.exe [2011-08-05 8277728]
S3 ZuneWlanCfgSvc;Zune Wireless Configuration Service; C:\Program Files\Zune\ZuneWlanCfgSvc.exe [2011-08-05 467680]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------


DDS:
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17239
Run by Keyfor at 23:23:40 on 2014-11-02
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1033.18.4095.2203 [GMT 1:00]
.
AV: Ad-Aware Antivirus *Disabled/Outdated* {D87B6541-12A1-DAEA-0033-9B8057AAB996}
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Ad-Aware Antivirus *Disabled/Outdated* {631A84A5-349B-D564-3A83-A0F22C2DF32B}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: Ad-Aware Firewall *Disabled* {E040E464-58CE-DBB2-2B6C-32B5A979FEED}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareService.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareTray.exe
C:\Users\Keyfor\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Users\Keyfor\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
uRun: [SkyDrive] "C:\Users\Keyfor\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [Google Update] "C:\Users\Keyfor\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
StartupFolder: C:\Users\Keyfor\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Keyfor\AppData\Roaming\Dropbox\bin\Dropbox.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{ED8FC595-9840-491A-8E5A-17F3C9DDD4C8} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{ED8FC595-9840-491A-8E5A-17F3C9DDD4C8}\0556E63696B6 : DHCPNameServer = 10.0.0.138
TCP: Interfaces\{ED8FC595-9840-491A-8E5A-17F3C9DDD4C8}\1434F575966696 : DHCPNameServer = 10.1.255.1 10.1.255.2
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-Run: [ShadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [AdAwareTray] "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareTray.exe"
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Keyfor\AppData\Roaming\Mozilla\Firefox\Profiles\nuui4pco.default\
FF - prefs.js: browser.startup.homepage - about:home
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Keyfor\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll
FF - plugin: C:\Users\Keyfor\AppData\Roaming\ACEStream\player\npace_plugin.dll
FF - plugin: C:\Users\Keyfor\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\Keyfor\AppData\Roaming\Mozilla\plugins\npo1d.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2014-4-8 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2014-4-8 208416]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2014-4-8 1039096]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2014-4-8 423240]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2014-4-22 283064]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-5-1 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2014-4-8 79184]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-5-1 50344]
R2 LavasoftAdAwareService11;Ad-Aware Service 11;C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareService.exe [2014-10-15 707888]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-3-31 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-3-31 16941856]
R2 RzKLService;RzKLService;C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [2014-6-3 105448]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-3-31 411936]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-3-31 39200]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2009-6-10 187392]
S2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2014-4-8 85328]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2014-5-7 58056]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2014-3-31 1512640]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-8-13 111616]
S3 IT9135BDA;IT9135 BDA Devices;C:\Windows\System32\drivers\IT9135BDA.sys [2014-5-25 165504]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-4-22 1255736]
S3 WSDScan;WSD Scan Support via UMB;C:\Windows\System32\drivers\WSDScan.sys [2009-7-14 25088]
.
=============== File Associations ===============
.
FileExt: .vbe: VBEFile=C:\Windows\SysWow64\CScript.exe "%1" %*
FileExt: .vbs: VBSFile=C:\Windows\SysWow64\CScript.exe "%1" %*
FileExt: .js: JSFile=C:\Windows\SysWow64\CScript.exe "%1" %*
FileExt: .jse: JSEFile=C:\Windows\SysWow64\CScript.exe "%1" %*
FileExt: .wsf: WSFFile=C:\Windows\SysWow64\CScript.exe "%1" %*
.
=============== Created Last 30 ================
.
2014-11-02 22:05:46 -------- d-----w- C:\FRST
2014-10-30 10:57:08 220784 ----a-w- C:\Program Files (x86)\Mozilla Firefox\sandboxbroker.dll
2014-10-21 08:29:19 -------- d-----w- C:\Program Files\Common Files\Lavasoft
2014-10-16 19:51:32 -------- d-----w- C:\Users\Keyfor\AppData\Local\DOSBox
2014-10-16 19:51:20 -------- d-----w- C:\Program Files (x86)\DOSBox-0.74
2014-10-16 09:43:24 -------- d-----w- C:\Users\Keyfor\AppData\Roaming\AVI ReComp
2014-10-16 09:42:48 696832 ----a-w- C:\Windows\System32\xvidcore.dll
2014-10-16 09:42:48 645632 ----a-w- C:\Windows\SysWow64\xvidcore.dll
2014-10-16 09:42:48 255488 ----a-w- C:\Windows\System32\xvidvfw.dll
2014-10-16 09:42:48 240640 ----a-w- C:\Windows\SysWow64\xvidvfw.dll
2014-10-16 09:42:48 173568 ----a-w- C:\Windows\System32\xvid.ax
2014-10-16 09:42:48 153088 ----a-w- C:\Windows\SysWow64\xvid.ax
2014-10-16 09:42:47 -------- d-----w- C:\Program Files (x86)\Xvid
2014-10-16 09:41:54 -------- d-----w- C:\Program Files (x86)\AviSynth 2.5
2014-10-16 09:41:34 -------- d-----w- C:\Program Files (x86)\AVI ReComp
2014-10-16 09:30:41 -------- d-----w- C:\Program Files\DirectVobSub
2014-10-09 11:55:46 -------- d-sh--w- C:\$RECYCLE.BIN
2014-10-07 21:47:16 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2014-10-07 21:31:01 -------- d-----w- C:\ProgramData\NCOTEMP
2014-10-07 21:29:40 -------- d-----w- C:\ProgramData\Norton
2014-10-07 21:25:30 -------- d-----w- C:\ProgramData\NortonInstaller
2014-10-07 12:57:21 -------- d-----w- C:\Users\Keyfor\AppData\Roaming\LavasoftStatistics
2014-10-07 12:56:15 -------- d-----w- C:\Program Files\Lavasoft
2014-10-05 20:24:17 -------- d-----w- C:\Program Files (x86)\URUSoft
2014-10-05 20:22:36 -------- d-----w- C:\Program Files (x86)\YTD
2014-10-05 15:17:19 37624 ----a-w- C:\Windows\System32\drivers\TrueSight.sys
.
==================== Find3M ====================
.
2014-10-08 09:54:50 73728 ----a-w- C:\Windows\system\vdremote.dll
2014-10-08 09:54:50 65536 ----a-w- C:\Windows\system\vdsvrlnk.dll
2014-10-05 15:00:09 45056 ----a-w- C:\Windows\SysWow64\spoolss.dll
2014-10-05 15:00:09 316416 ----a-w- C:\Windows\SysWow64\spoolsv.exe
2014-10-05 14:59:20 290304 ----a-w- C:\Windows\SysWow64\subinacle.exe
2014-10-02 10:47:26 45056 ----a-w- C:\Windows\SysWow64\old_spoolss.dll
2014-10-02 10:47:26 316416 ----a-w- C:\Windows\SysWow64\old_spoolsv.exe
2014-08-23 02:07:00 404480 ----a-w- C:\Windows\System32\gdi32.dll
2014-08-23 01:45:55 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2014-08-23 00:59:01 3163648 ----a-w- C:\Windows\System32\win32k.sys
2014-08-05 07:20:00 270496 ------w- C:\Windows\System32\MpSigStub.exe
.
============= FINISH: 23:24:12,52 ===============

[JaRon]

ahoj
- odinstaluj Ad-Aware Antivirus
- vycisti PC s CCleanerom
- prescanuj PC s MBAM - log vloz

[keyfor4]

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 3.11.2014
Scan Time: 15:21:45
Logfile: log.txt
Administrator: Yes

Version: 2.00.3.1025
Malware Database: v2014.11.03.06
Rootkit Database: v2014.11.01.02
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Keyfor

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 321608
Time Elapsed: 14 min, 15 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

[JaRon]

spust regedit zadaj hladat klucove slovo mncqtveySrv a najdeny kluc nechaj zmazat
+ napis, ci su nejake problemy

[keyfor4]

Hotovo, programy už zase fungují, díky moc a posílám něco málo na účet.
Hezký večer!

[JaRon]

pekny den
dakujeme
Lock