VIRY.CZ

Ahoj, prosim o kontrolu logu, pri instalaci jednoho programu na vytvoreni instal. USB flashky na Win se do PC natahalo par sra... .

Díky.

info.txt logfile of random's system information tool 1.10 2014-12-08 21:09:54

======MBR======

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

======Uninstall list======

"Thief"-->"C:\Hry\Thief\Uninstall\unins000.exe"
-->c:\Users\Gambac\Desktop\Max\update.exe -uninstallall
-->MsiExec /X{B455E95A-B804-439F-B533-336B1635AE97}
Activision(R)-->MsiExec.exe /X{3FAD68D9-1FA1-4871-9ADF-9151D969E943}
Alan Wake-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/108710
Alien Isolation-->"C:\Hry\Alien Isolation\unins000.exe"
Assassin's Creed Brotherhood verze 1.03-->"C:\Hry\Assassin's Creed Brotherhood\unins000.exe"
Assassin's Creed III-->"C:\Hry\Assassin's Creed III\unins000.exe"
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver-->"C:\Program Files (x86)\InstallShield Installation Information\{3108C217-BE83-42E4-AE9E-A56A2A92E549}\setup.exe" -runfromtemp -removeonly
Avast Free Antivirus-->C:\Program Files\AVAST Software\Avast\Setup\Instup.exe /control_panel /instop:uninstall
Ballance-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{42E0783D-3BA4-454B-B58A-BF26E49EB7DE}\Setup.exe"
Battle.net-->"C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" --lang=enGB --uid=battle.net --displayname="Battle.net"
Battlefield 3™-->"C:\Program Files (x86)\Common Files\EAInstaller\Battlefield 3\Cleanup.exe" uninstall_game -autologging
Battlelog Web Plugins-->C:\Program Files (x86)\Battlelog Web Plugins\uninstall.exe
BitComet 1.37 64-bit-->C:\Program Files\BitComet\uninst.exe
Call of Duty(R) 2-->C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{D0A05794-48C2-4424-A15A-9F20FCFDD374} /l2057
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
CoD 2 čeština-->"C:\Users\Gambac\Desktop\Call of Duty 2\unins000.exe"
Crysis 3 v1.0.0.1-->"C:\Hry\Crysis 3\unins000.exe"
Crysis(R)-->MsiExec.exe /I{000E79B7-E725-4F01-870A-C12942B7F8E4}
DAEMON Tools Lite-->C:\Program Files (x86)\DAEMON Tools Lite\uninst.exe
Diablo III-->"C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" --lang=enGB --uid=diablo3_engb --displayname="Diablo III"
Euro Truck Simulator 2-->"C:\Hry\Euro Truck Simulator 2\unins000.exe"
Far Cry 3 Blood Dragon-->"C:\Program Files (x86)\InstallShield Installation Information\{A071F478-73E0-4143-AE55-4DD6BABD74F5}\setup.exe" -runfromtemp -l0x0409 -removeonly
Far Cry 3 v1.01-->"C:\Hry\Far Cry 3\unins000.exe"
Far Cry 4 version 1.0-->"C:\Hry\Far Cry 4\unins000.exe"
FilesFrog Update Checker-->C:\Users\Gambac\AppData\Local\FilesFrog Update Checker\uninstall.exe
GamePark klient 2.0.9.0-->"C:\Program Files\GamePark2\unins000.exe"
GamePark-->"C:\Program Files (x86)\GamePark\unins000.exe"
Gears of War-->"C:\Users\Gambac\AppData\Roaming\Gears of War\Uninstall\unins000.exe"
Gears of War-->C:\Users\Gambac\AppData\Roaming\Gears of War\Uninstall\unins000.exe
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
Grand Theft Auto IV-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/12210
Half-Life 2: Episode One-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/380
Half-Life 2: Episode Two-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/420
Half-Life 2-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/220
Hearthstone-->"C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" --lang=enGB --uid=hs_beta --displayname="Hearthstone"
Hitman Absolution v1.0.446.0-->"C:\Hry\Hitman Absolution\unins000.exe"
IrfanView (remove only)-->C:\Program Files (x86)\IrfanView\iv_uninstall.exe
Java 7 Update 25-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83217025FF}
Left 4 Dead 2-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/550
Mafia Game-->C:\Windows\system32\MafiaSetup.exe
Max Payne 3 Česky od Being.cz-->c:\Users\Gambac\Desktop\Max\update.exe -uninstall
Max Payne 3 Česky od Being.cz-->c:\Users\Gambac\Desktop\Max\update.exe -uninstall
Max Payne 3-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/204100
Max Payne-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/12140
Medal of Honor Allied Assault v 1.0.0.1-->C:\Hry\MOHAA\unins000.exe
Medal of Honor Allied Assault-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{0DEA94ED-915A-4834-A87E-388D012C8E02}\Setup.exe" -l0x9
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}
Microsoft Games for Windows Marketplace-->MsiExec.exe /X{4CB0307C-565E-4441-86BE-0DF2E4FB828C}
Microsoft Office Access MUI (Slovak) 2007-->MsiExec.exe /X{90120000-0015-041B-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Slovak) 2007-->MsiExec.exe /X{90120000-0016-041B-0000-0000000FF1CE}
Microsoft Office Excel Viewer-->MsiExec.exe /I{95120000-003F-0405-0000-0000000FF1CE}
Microsoft Office Groove MUI (Slovak) 2007-->MsiExec.exe /X{90120000-00BA-041B-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Slovak) 2007-->MsiExec.exe /X{90120000-0044-041B-0000-0000000FF1CE}
Microsoft Office Office 64-bit Components 2007-->MsiExec.exe /X{90120000-002A-0000-1000-0000000FF1CE}
Microsoft Office OneNote MUI (Slovak) 2007-->MsiExec.exe /X{90120000-00A1-041B-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Slovak) 2007-->MsiExec.exe /X{90120000-001A-041B-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Slovak) 2007-->MsiExec.exe /X{90120000-0018-041B-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Hungarian) 2007-->MsiExec.exe /X{90120000-001F-040E-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Slovak) 2007-->MsiExec.exe /X{90120000-002C-041B-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Slovak) 2007-->MsiExec.exe /X{90120000-0019-041B-0000-0000000FF1CE}
Microsoft Office Shared 64-bit MUI (Slovak) 2007-->MsiExec.exe /X{90120000-002A-041B-1000-0000000FF1CE}
Microsoft Office Shared MUI (Slovak) 2007-->MsiExec.exe /X{90120000-006E-041B-0000-0000000FF1CE}
Microsoft Office Word MUI (Slovak) 2007-->MsiExec.exe /X{90120000-001B-041B-0000-0000000FF1CE}
Microsoft Office-->MsiExec.exe /X{90150000-0138-0409-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{071c9b48-7c32-4621-a0ac-3f809523288f}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610-->"C:\ProgramData\Package Cache\{a1909659-0a08-4554-8af1-2175904903a1}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610-->MsiExec.exe /X{764384C5-BCA9-307C-9AAC-FD443662686A}
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610-->MsiExec.exe /X{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}
Mozilla Firefox 30.0 (x86 cs)-->"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"
NVIDIA GeForce Experience 2.1.3-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.GFExperience
NVIDIA Ovladač 3D Vision 344.48-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.3DVision
NVIDIA Ovladač HD audia 1.3.32.1-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage HDAudio.Driver
NVIDIA Ovladač řídící jednotky 3D Vision 344.46-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.NVIRUSB
NVIDIA Ovladače grafiky 344.48-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA PhysX-->MsiExec.exe /I{B455E95A-B804-439F-B533-336B1635AE97}
NVIDIA Stereoscopic 3D Driver-->"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvStInst.exe" /uninstall /ask
NVIDIA Systémový software PhysX 9.14.0702-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.PhysX
NVIDIA Virtuální audio Miracast 344.48-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Miracast.VirtualAudio
Oblivion-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{35CB6715-41F8-4F99-8881-6FC75BF054B0}\setup.exe" -l0x9 -removeonly
Orcs Must Die! 2-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/201790
Orcs Must Die!-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/102600
Origin-->C:\Program Files (x86)\Origin\OriginUninstall.exe
Outlast-->C:\Hry\Outlast\Uninstall.exe
Plants vs. Zombies™-->"C:\Program Files (x86)\Common Files\EAInstaller\PlantsvsZombies\Cleanup.exe" uninstall_game -autologging -keepMaintenanceLog
PunkBuster Services-->C:\Program Files (x86)\Origin Games\Battlefield 3\pbsvc.exe -u
RAGE-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/9200
Razer Core-->"C:\Windows\Razer Core\uninstall.exe" "/U:C:\ProgramData\Razer\CoreUninstall\uninstall.xml"
Razer Synapse 2.0-->MsiExec.exe /I{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}
Realtek Ethernet Controller Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -removeonly
Realtek High Definition Audio Driver-->C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe -r -m -nrg2709
Resident Evil 6-->"C:\Users\Gambac\AppData\Roaming\Resident Evil 6\Uninstall\unins000.exe"
Rockstar Games Social Club-->C:\Program Files (x86)\Rockstar Games\Social Club\uninstallRGSCRedistributable.exe
SAW - The Video Game-->"C:\Users\Gambac\AppData\Roaming\SAW - The Video Game\Uninstall\unins000.exe"
SensePlus-->C:\Program Files (x86)\SensePlus\Uninstall.exe /fcp=1
Serious Sam 3: BFE-->"C:\Program Files (x86)\InstallShield Installation Information\{D29920C8-EA21-425A-B19F-0C4491A9CF14}\setup.exe" -runfromtemp -l0x0009 -removeonly
Singularity(TM)-->"C:\Program Files (x86)\InstallShield Installation Information\{3FAD68D9-1FA1-4871-9ADF-9151D969E943}\setup.exe" -runfromtemp -l0x0409 -removeonly
Sniper Elite 3-->"C:\Hry\Sniper Elite 3\unins000.exe"
Steam-->C:\Program Files (x86)\Steam\uninstall.exe
TeamSpeak 3 Client-->"C:\Program Files\TeamSpeak 3 Client\uninstall.exe"
TERA-->"C:\Hry\TERA\unins000.exe"
The Sims 2: Ultimate Collection-->"C:\Program Files (x86)\Common Files\EAInstaller\The Sims 2 Ultimate Collection\Cleanup.exe" uninstall_game -autologging
Total Commander (Remove or Repair)-->c:\totalcmd\tcuninst.exe
Total Commander 64-bit (Remove or Repair)-->c:\totalcmd\tcunin64.exe
TrackMania Nations Forever-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/11020
Ulož.to File Manager verze 1.6-->"C:\Program Files (x86)\Ulozto File Manager\unins000.exe"
Uplay-->C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe
Valiant Hearts: The Great War-->"C:\Hry\Valiant Hearts The Great War\unins000.exe"
VIA Platforma Ovladače zařízení-->C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{20D4A895-748C-4D88-871C-FDB1695B0169}
VLC media player 2.1.3-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
WATCH_DOGS-->"C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe" uplay://uninstall/274
Widevine Media Optimizer Chrome 6.0.0-->C:\ProgramData\IDM\bin\chrome_uninstaller_admin.exe
Windows 7 USB/DVD Download Tool-->MsiExec.exe /X{CCF298AF-9CE1-4B26-B251-486E98A34789}
WinRAR 5.01 (64-bit)-->C:\Program Files\WinRAR\uninstall.exe
Wolfenstein The New Order-->"C:\Hry\Wolfenstein The New Order\unins000.exe"
World of Warcraft-->"C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" --lang=enGB --uid=wow_engb --displayname="World of Warcraft"

======Hosts File======

127.0.0.1 patches.rockstargames.com
127.0.0.1 prod.ros.rockstargames.com

======System event log======

Computer Name: pc
Event Code: 7040
Message: Režim spuštění služby Windows Search byl změněn z Zakázáno na automatické spouštění.
Record Number: 654
Source Name: Service Control Manager
Time Written: 20140304134719.575733-000
Event Type: Informace
User:

Computer Name: pc
Event Code: 7040
Message: Režim spuštění služby Windows Search byl změněn z automatické spouštění na Zakázáno.
Record Number: 653
Source Name: Service Control Manager
Time Written: 20140304134708.416064-000
Event Type: Informace
User:

Computer Name: pc
Event Code: 104
Message: Byl vymazán soubor protokolu Setup.
Record Number: 652
Source Name: Microsoft-Windows-Eventlog
Time Written: 20140304134706.458842-000
Event Type: Informace
User:

Computer Name: pc
Event Code: 104
Message: Byl vymazán soubor protokolu Application.
Record Number: 651
Source Name: Microsoft-Windows-Eventlog
Time Written: 20140304134706.380707-000
Event Type: Informace
User:

Computer Name: pc
Event Code: 104
Message: Byl vymazán soubor protokolu System.
Record Number: 650
Source Name: Microsoft-Windows-Eventlog
Time Written: 20140304134706.318206-000
Event Type: Informace
User:

=====Application event log=====

Computer Name: pc
Event Code: 903
Message: Služba Ochrana softwaru byla ukončena.

Record Number: 459
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20140304134728.000000-000
Event Type: Informace
User:

Computer Name: pc
Event Code: 16384
Message: Restartování služby Ochrana softwaru bylo úspěšně naplánováno na 2014-03-04T17:56:28Z. Důvod: RulesEngine
Record Number: 458
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20140304134728.000000-000
Event Type: Informace
User:

Computer Name: pc
Event Code: 1003
Message: Služba Windows Search byla spuštěna.

Record Number: 457
Source Name: Microsoft-Windows-Search
Time Written: 20140304134719.000000-000
Event Type: Informace
User:

Computer Name: pc
Event Code: 1013
Message: Služba Windows Search byla řádně zastavena.

Record Number: 456
Source Name: Microsoft-Windows-Search
Time Written: 20140304134718.000000-000
Event Type: Informace
User:

Computer Name: pc
Event Code: 103
Message: SearchIndexer (2488) Windows: Databázový stroj zastavil instanci (0).

Nesprávné vypnutí: 0

Sekvence interního načasování: [1] 0.000, [2] 0.000, [3] 0.000, [4] 0.000, [5] 0.031, [6] 0.000, [7] 0.000, [8] 0.000, [9] 0.000, [10] 0.000, [11] 0.000, [12] 0.000, [13] 0.000, [14] 0.000, [15] 0.000.
Record Number: 455
Source Name: ESENT
Time Written: 20140304134718.000000-000
Event Type: Informace
User:

=====Security event log=====

Computer Name: Gambo
Event Code: 5061
Message: Kryptografická operace.

Předmět:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5

Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: RSA
Název klíče: 0bf1472a-3ba7-4702-a3cf-e03a5078270f
Typ klíče: Klíč počítače

Kryptografická operace:
Operace: Otevřít klíč
Návratový kód: 0x0
Record Number: 66454
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140913194657.020830-000
Event Type: Úspěšný audit
User:

Computer Name: Gambo
Event Code: 5058
Message: Operace se souborem klíče.

Předmět:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5

Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: UNKNOWN
Název klíče: 0bf1472a-3ba7-4702-a3cf-e03a5078270f
Typ klíče: Klíč počítače

Informace o operaci se souborem klíče:
Cesta k souboru: C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f236315c811bd92c03352ed0d56fd505_73581af5-9fd3-47be-bb5f-bc0d7b19f25d
Operace: Čtení trvalého klíče ze souboru
Návratový kód: 0x0
Record Number: 66453
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140913194657.020830-000
Event Type: Úspěšný audit
User:

Computer Name: Gambo
Event Code: 5061
Message: Kryptografická operace.

Předmět:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5

Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: RSA
Název klíče: 0bf1472a-3ba7-4702-a3cf-e03a5078270f
Typ klíče: Klíč počítače

Kryptografická operace:
Operace: Otevřít klíč
Návratový kód: 0x0
Record Number: 66452
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140913194157.033459-000
Event Type: Úspěšný audit
User:

Computer Name: Gambo
Event Code: 5058
Message: Operace se souborem klíče.

Předmět:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5

Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: UNKNOWN
Název klíče: 0bf1472a-3ba7-4702-a3cf-e03a5078270f
Typ klíče: Klíč počítače

Informace o operaci se souborem klíče:
Cesta k souboru: C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f236315c811bd92c03352ed0d56fd505_73581af5-9fd3-47be-bb5f-bc0d7b19f25d
Operace: Čtení trvalého klíče ze souboru
Návratový kód: 0x0
Record Number: 66451
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140913194157.033459-000
Event Type: Úspěšný audit
User:

Computer Name: Gambo
Event Code: 5061
Message: Kryptografická operace.

Předmět:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5

Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: RSA
Název klíče: 0bf1472a-3ba7-4702-a3cf-e03a5078270f
Typ klíče: Klíč počítače

Kryptografická operace:
Operace: Otevřít klíč
Návratový kód: 0x0
Record Number: 66450
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140913193657.024322-000
Event Type: Úspěšný audit
User:

======Environment variables======

"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"Path"=C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 60 Stepping 3, GenuineIntel
"PROCESSOR_REVISION"=3c03
"configsetroot"=%SystemRoot%\ConfigSetRoot

-----------------EOF-----------------

Zdravim

Dejte druhy log z RSIT s nazvem log.txt, najdete jej v c:\rsit

Jeste pro doplneni, temer na vsech strankach se takto zobrazuji prazdna reklamni okna, nefunguje na ne ani AdBlock.

http://img.janforman.com/bug731c.jpg

Logfile of random's system information tool 1.10 (written by random/random)
Run by Gambac at 2014-12-08 21:31:18
Microsoft Windows 8.1
System drive C: has 267 GB (28%) free of 954 GB
Total RAM: 8120 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:31:19, on 8. 12. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\AVAST Software\Avast\avastUi.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Gambac.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://localoem.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://localoem.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: 2142d562cda342799c74bac15bb026030068153 - {11111111-1111-1111-1111-110611811153} - C:\Program Files (x86)\SensePlus\SensePlus-bho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: ShopperProBHO - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SpeedUpMyComputer] C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Gambac\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\RunOnce: [CleanupUninstallerTemp] cmd.exe /c del /F /Q "%temp%\updater_uninstall.exe" /f
O4 - HKCU\..\RunOnce: [SeznamInstall-uninstall:b760737f6ebf9b3c28e4fbda7a5f9448] "C:\Users\Gambac\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe" -c "C:\Users\Gambac\AppData\Roaming\Seznam.cz"
O4 - Global Startup: GamePark klient 2.lnk = C:\Program Files\GamePark2\gpcl.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) - www.BitComet.com - C:\Program Files\BitComet\tools\BitCometService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Razer Overlay Subsystem Emergency Service (RzOvlMon) - Razer, Inc. - C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @oem4.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: Windows Start Menu Service (WinStartMenuLauncher) - Unknown owner - C:\Program Files\Smart Menu\WinStartMenuLauncher.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9899 bytes

======Listing Processes======





wininit.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
dashost.exe {e641faee-370f-48dd-9a83b058f00c8e43}
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 73581af5-9fd3-47be-bb5f-bc0d7b19f25d 0
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files\Smart Menu\WinStartMenuLauncher.exe"
"C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\Windows Media Player\wmpnetwk.exe"

C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
taskhostex.exe
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\totalcmd\TOTALCMD.EXE"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
taskeng.exe {0E50F653-A450-4287-8949-0E1B51C65354}
"C:\Program Files (x86)\SensePlus\3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-6.exe" /rawdata=HPVRDCMOTX9XTTEJ2TCNIWMfXNQa8DqQDV91L6JLMXG475yW3mbj6TAjHaiBo2/CrzZRbhhqPffPD7WnEqXf4310TM9yRmP4j0Z8+FU8rLQiKCaHZ8j3P7mt8P+/d3PBQpxBzcKPbKGPnY42VWcq43JuVXf04O7QXcPVY4MX/faVCpzfZ23x/R+YRz34fyWwuVmBHq/fbrs0Ts2lUhuid0neMJ7tby/cZIlZ+sL0Hi9HPm2kIF3mx992n6nU/1PrMqVtv3mg5Vaf2GIq85hOQZBY+9ud0Xc/JvQHc+LZ+IZ6oAuHWTTvqBuVuxShRoBCIrpL2hI+Kuh8Get6yqTcYKjL53TcJ6BMXoVX4v2IhQpmVLnKWiJXJ3FAR7ZaiD8lerbtjJdulQCX1Zg43SUwyUDcoB9GkVuozhXrKO1KH6DTjh+9w9Hugjvpp+64kpoVfWTNG0RVKgPZbl0LqO8fPISA3vYmj2xc5D5S3DfEPYOQM0e+OdcvyVFZENqDhKBRLLgEBwXnKW0Zs/x4U3t2zfc6Ovy2ldLK3xJLe4Y5eIDPBRs+aTsdMmj9bFAtZDSh6li/v8XsiBE/pOj7RBhdgIggNoI6XkPpHugFDcx6aqhEgrFMuctE6tg2JfokSbtC0yxNbTGOfOUApsJp1bXBtibGetFtgDBusc08rCb1A9EiA9PSvOBZ03McwFUmVgArYckYI4S9NWKHHJ54uHYqYTE1ZjVYohPDrFFzP2FiB8UMNSqnJxI3AWf6JGPfIfe/9WxuPInp34TfVi3dJFxaOTPM5FkeiBnJXOz5dlSEAJuYkOC7Qep6TPUr8RXOx0NGVZrNa4Mo/XiMMIJWXG6CpgxyUaX3c4tLtjHyvWl4RMazh49nnZDce5UaArwmEzYY75x2nSOJqSomcacLXj8Ge3UYuqfGyLRD/7Cg+JgeTX4+a2vued/ohtezgYM4tdgd4e+shDijI7iyO2Q0WZDK7objDZFBi6FzDbf9CeghStTw4Y90ySo4fleH4Q0TsouLLAIpzwnlnBbEJGSutp5LQSnBaRMywcXTThlx1Z/TCq7kISoyZp/KkX6gd1VxS5Jp1kanJ3bx5mDGPEu/Ae+W52d7DeDPobj0eixe2fO0m3DAFknxhKN4On2OYO50RspB0rZKm2F7AvazUei815oZo8w9n900yRJtbcp3lOiner2CWYuBK0dWNIvXndT51uGs9gFV5+F1oXlDTBBv2d5DNLfbYd3N3TVRpghRE9//06RQHddbl0KVgYceal9aAYfJ78AtSuKJVJIbYC0wE7DbRIPoX6murxF+y93oq27wZWFMY6a7E8flzcM+4kQIK0/rW2UFWL76cXpWCxAwgHTFkKnFULe/UFiDLpjikA4a4dhuI+DP+rtrmhSlcHfUufdla75Vl3ufxHXLv4i8xx3TqoANUXRQ+V8b+cGVunMnl6cGuS0eXjqDrVNMcK6Nc613UQmnDj72mA3nWlCyc1PFppshcIx8BLLhrEA/b/PqUXavdWH/BDVWbY3JvTQGoeZCU4huNVwcuIhJKTbu5N8rZfNaqkj1YQta5Q5P3XIt1uRCqyx5ogKC57ilOYNMhu2xoOQX46kRLSbsm883IU0eD+xcw9l/a7rTm4C6Hg8zBu8L1xzblZ8QUGS21e0csbwbAOlZZMdLx3vIsr31HVxQWgFxwkX7PL0R0MoWcfPkB1huoHwI4Adg9twQltnbXb3541amWxvdtmXEJZaCQSq37l90q8rVArKJq/1Cj2kzHuk326TPqQaMrDzoYyRRL5PmMR1QpKZISZfFm5Z9htFx7y5TSegvXzKoK/oQ8LUrSB7pqqgaP8N2sXvzbO4fXq8ePSmlZIBJhivjqlMan+u1wjxWvSH7MTmDvzamHCBrhY3lneiKarGZlFYaGc9DT27auZGiMk5Bd+PfaRGl3Fs1PKLX+yAVYS/AaXBekFcGtJpRUgoKLZhC7w8k/51DdRUHZ+1HFFci2TbieV+CmQdCEOVDyaQwyeOkldW6+WW7U6hDG3JmzA/iMFaQLIopxpibQKd0cJeZuT1gwpmVLt86A/NIyXW+XRc/X3Iq608jz2qL0gmfDnXVSaaew6Dmu5QTtIdg8ojq/afsPj4iRWN0ELoTw7ymLwtSM7MAQViAqKgaa4mtIw0kcV9ewKd+bHPPqECvjxLhvSXQrD0FuXHKMmjHMKBc6grhIm2qdbLnDDhQlvYCaVaI34+udSgVHD3LdTD6FsCfJnyqVzp73U3Rwa/82e5qmh0kHzkB7ODJPl7GWBsBktH98xMxUKKhCRNcsEA+LLaJeQAbsyuZHTXJKeWBQBYR/RePwfidT9v8wEbalciOod0E8CpF4C1rL0n+IzlJSJG2ANl+QvVBT80XFQ==
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9223
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="31272.0.1158020373\352127176" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,17,38,46 --gpu-vendor-id=0x10de --gpu-device-id=0x0fc6 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4448 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="DomRel-Enable/enable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Control/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_97/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="31272.1.944528035\1631817026" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/Hivemind_A1_Stable_R7_Postperiod/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Control/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_97/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="31272.3.502521952\222349980" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="31272.6.1101379759\1660896120" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\AVAST Software\Avast\avastUi.exe"
"C:\Windows\System32\Taskmgr.exe" /3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/Hivemind_A1_Stable_R7_Postperiod/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Control/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_97/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="31272.26.968909081\2123265600" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/Hivemind_A1_Stable_R7_Postperiod/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Control/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_97/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="31272.28.1419788699\555634796" /prefetch:673131151
"C:\Windows\system32\mspaint.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe163_ Global\UsGthrCtrlFltPipeMssGthrPipe163 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/Hivemind_A1_Stable_R7_Postperiod/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Control/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_97/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="31272.31.475998603\807977483" /prefetch:673131151

C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Gambac\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-11.job - C:\Program Files (x86)\SensePlus\3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-11.exe /rawdata=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
C:\Windows\tasks\3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-2.job - C:\Program Files (x86)\SensePlus\3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-2.exe /rawdata=Gtx3rr8w4t/N1YDvgFKgMNRE+Q1RjefUoGkFHMsU/EeapuN31lDc1/aJUU/iGAJZEIOlVGzq0igcJqnXN7c5CWhDRqXuZ/651O3RJ5daoT+upMcaXM8MHwsIeOQwMBItkESJ6tbm4Aj/vzFPzUGVAFSTLONH6zXXJlohuZ2lNNG+1hsM9XXSuvl3pL1o5eNSQLHsQjsTU798iomAB5z3yWiBWWVFTKVJnEArRLR86emSmDMPU9OqNBDLPML8fRQ9hc2L6eCYErg5DrSFS7Ra/Q4NCeAOaqW6IrX5hi5IXgeal4IQcGIWLziMTq2ABBJnB7RGD/q9lhmqOCUkc0iy+IkN0LLGIAi8E2hyRuEJJTGiNCHGRna5SkOzZ2ZSzj83IaFFRKznYoNovGvok60A0TBS75LrNl7ac/apPrCC2f40tYOHuCJCcKqF+EDVpWLcNFwBp1tNooL37vdEzLdl2d5F17l2lJlPCFn1fJ5wm9J5w1C2xr122vohj1XHJLzqLHetbJUKihLyqitKMylaU8wmyMufK6f3kSQM8ibpkNsmeCy4mARcY5FTBFuwyWgh7PlbuhuwiyHrff8gRG8LWArj0chqrLgql9pibcug+YT6vAu3g0WEKxuUOvrKo+0h25xfBPkYyljOK5aDVGoLVE3zdxIWJnQ+QBgX5CS87vUanpNtZPKpMEWxh/HnJl0Rm2MnVMK/okxC8Aytg/aLD6Jk5KZwDxiT5irdPIaResGUKv550MkzrohGytFCFkZco8/rf7bsmTKUXZEIRdca/Isr4fj4Nny3emN4qc4/EqpNkvRXfRb2xo3vL9qB+jfEBFEZAlxcMkbwqvSBNBLxdG6L/Os2FPy32AyIMAGe7r9xZwcvg9Ym0d/bRCZI6ZUNa6RHyze1og7e7GE0ZbXu9HUkQJdMi2qj7tBxEhE5SVMC1+o6CjzW9FX7z1oBBJlImOVYzPq9Ts9YmwEE0g/MT/Zjw2aW1k8tYHin0wXhfquDFnzctayCq99r3Xcq0Lzx
C:\Windows\tasks\3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-3.job - C:\Program Files (x86)\SensePlus\3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-3.exe /rawdata=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
C:\Windows\tasks\3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-5.job - C:\Program Files (x86)\SensePlus\3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-5.exe /rawdata=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
C:\Windows\tasks\3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-5_user.job - C:\Program Files (x86)\SensePlus\3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-5.exe /rawdata=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
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /c
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\RVFPQIXG.job - C:\Users\Gambac\AppData\Roaming\RVFPQIXG.exe /infocmdline=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

=========Mozilla firefox=========

ProfilePath - C:\Users\Gambac\AppData\Roaming\Mozilla\Firefox\Profiles\xjysz3bd.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.4.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll


C:\Users\Gambac\AppData\Roaming\Mozilla\Firefox\Profiles\xjysz3bd.default\extensions\
ae44639e-43f2-4cd1-aa80-39d5d2e18fa9@gmail.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611811153}]
SensePlus - C:\Program Files (x86)\SensePlus\SensePlus-bho64.dll [2014-12-08 848864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611811153}]
SensePlus - C:\Program Files (x86)\SensePlus\SensePlus-bho.dll [2014-12-08 756192]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-26 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-12-08 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-12-08 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2012-06-12 6548112]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-10-04 2463552]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-10-04 2800296]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"SpeedUpMyComputer"=C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as []
"Akamai NetSession Interface"=C:\Users\Gambac\AppData\Local\Akamai\netsession_win.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"CleanupUninstallerTemp"=cmd.exe /c del /F /Q C:\Users\Gambac\AppData\Local\Temp\updater_uninstall.exe /f []
"SeznamInstall-uninstall:b760737f6ebf9b3c28e4fbda7a5f9448"=C:\Users\Gambac\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [2014-12-08 534528]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-06-08 5123216]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2014-11-03 585536]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-12-08 5225064]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"wintoflashvddc"= []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
GamePark klient 2.lnk - C:\Program Files\GamePark2\gpcl.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-07-05 439296]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-26 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-12-08 21:06:53 ----D---- C:\Program Files\trend micro
2014-12-08 21:06:52 ----D---- C:\rsit
2014-12-08 21:05:10 ----D---- C:\Users\Gambac\AppData\Roaming\AVAST Software
2014-12-08 21:04:19 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2014-12-08 21:04:19 ----A---- C:\Windows\system32\drivers\aswStm.sys
2014-12-08 21:04:19 ----A---- C:\Windows\system32\drivers\aswSP.sys
2014-12-08 21:04:19 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2014-12-08 21:04:19 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2014-12-08 21:04:19 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2014-12-08 21:04:19 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2014-12-08 21:04:19 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2014-12-08 21:04:18 ----A---- C:\Windows\system32\aswBoot.exe
2014-12-08 21:04:18 ----A---- C:\Windows\avastSS.scr
2014-12-08 21:03:39 ----D---- C:\Program Files\AVAST Software
2014-12-08 20:57:38 ----D---- C:\Program Files (x86)\082d23a9-6ebd-49e1-ac4f-5fdc908d852d
2014-12-08 20:57:34 ----A---- C:\Users\Gambac\AppData\Roaming\RVFPQIXG.exe
2014-12-08 20:57:32 ----D---- C:\Program Files (x86)\SensePlus
2014-12-08 20:53:18 ----A---- C:\Windows\system32\drivers\{8ebaa931-88d7-49c0-80c5-891f3623134f}Gw64.sys
2014-12-08 20:48:42 ----D---- C:\ProgramData\Sun
2014-12-08 20:48:40 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2014-12-08 20:48:40 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-12-08 20:48:40 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2014-12-08 20:48:39 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-12-08 20:48:39 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-12-08 20:48:39 ----A---- C:\Windows\SYSWOW64\java.exe
2014-12-08 20:48:17 ----D---- C:\Program Files (x86)\Java
2014-12-08 20:48:04 ----D---- C:\Program Files (x86)\globalUpdate
2014-12-08 20:47:19 ----AD---- C:\ProgramData\TEMP
2014-12-08 20:47:14 ----D---- C:\Program Files (x86)\YouTube Accelerator
2014-11-19 11:36:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-19 11:36:43 ----A---- C:\Windows\system32\kerberos.dll
2014-11-19 11:36:42 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-19 11:36:42 ----A---- C:\Windows\system32\pku2u.dll
2014-11-13 23:48:41 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-13 23:48:41 ----A---- C:\Windows\system32\msxml3.dll
2014-11-13 23:48:26 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-13 23:48:26 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-13 23:48:26 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-13 23:48:26 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-13 23:48:26 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-13 23:48:26 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-13 23:48:26 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-13 23:48:26 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2014-11-13 23:48:26 ----A---- C:\Windows\system32\audiodg.exe
2014-11-13 23:48:25 ----A---- C:\Windows\system32\EncDump.dll
2014-11-13 23:48:22 ----A---- C:\Windows\system32\mshtml.dll
2014-11-13 23:48:21 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-11-13 23:48:03 ----A---- C:\Windows\system32\ieframe.dll
2014-11-13 23:48:00 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-11-13 23:47:57 ----A---- C:\Windows\system32\jscript9.dll
2014-11-13 23:47:56 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-11-13 23:47:55 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-11-13 23:47:55 ----A---- C:\Windows\system32\wininet.dll
2014-11-13 23:47:54 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-11-13 23:47:54 ----A---- C:\Windows\system32\urlmon.dll
2014-11-13 23:47:54 ----A---- C:\Windows\system32\inetcomm.dll
2014-11-13 23:47:54 ----A---- C:\Windows\system32\iertutil.dll
2014-11-13 23:47:53 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-11-13 23:47:53 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2014-11-13 23:47:53 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-11-13 23:47:53 ----A---- C:\Windows\system32\actxprxy.dll
2014-11-13 23:47:52 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-13 23:47:52 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-13 23:47:52 ----A---- C:\Windows\system32\jscript.dll
2014-11-13 23:47:52 ----A---- C:\Windows\system32\ieui.dll
2014-11-13 23:47:51 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-11-13 23:47:51 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-11-13 23:47:51 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-11-13 23:47:51 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-11-13 23:47:51 ----A---- C:\Windows\system32\vbscript.dll
2014-11-13 23:47:50 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-11-13 23:47:50 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-11-13 23:47:50 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-11-13 23:47:50 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-13 23:47:50 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-13 23:47:49 ----A---- C:\Windows\system32\webcheck.dll
2014-11-13 23:47:49 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-13 23:47:49 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-13 23:47:48 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-11-13 23:47:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-11-13 23:47:47 ----A---- C:\Windows\SYSWOW64\hlink.dll
2014-11-13 23:47:47 ----A---- C:\Windows\system32\msrating.dll
2014-11-13 23:47:47 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-13 23:47:47 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-13 23:47:47 ----A---- C:\Windows\system32\hlink.dll
2014-11-13 23:47:46 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-11-13 23:47:46 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-11-13 23:47:46 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-11-13 23:47:46 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-11-13 23:47:46 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-11-13 23:47:46 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2014-11-13 23:47:46 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-13 23:47:46 ----A---- C:\Windows\system32\inseng.dll
2014-11-13 23:47:46 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-13 23:47:46 ----A---- C:\Windows\system32\iesysprep.dll
2014-11-13 23:47:46 ----A---- C:\Windows\system32\iepeers.dll
2014-11-13 23:47:46 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-13 23:47:45 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-11-13 23:47:45 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-11-13 23:47:45 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-11-13 23:47:45 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-11-13 23:47:45 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-11-13 23:47:45 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-11-13 23:47:45 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-13 23:47:45 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-13 23:47:45 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-11-13 23:47:45 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-13 23:47:44 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-11-13 23:47:44 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-11-13 23:47:44 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-11-13 23:47:44 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-13 23:47:44 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-11-13 23:47:44 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-11-13 23:47:44 ----A---- C:\Windows\system32\pngfilt.dll
2014-11-13 23:47:44 ----A---- C:\Windows\system32\occache.dll
2014-11-13 23:47:44 ----A---- C:\Windows\system32\licmgr10.dll
2014-11-13 23:47:44 ----A---- C:\Windows\system32\imgutil.dll
2014-11-13 23:47:43 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-11-13 23:47:43 ----A---- C:\Windows\SYSWOW64\url.dll
2014-11-13 23:47:43 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-11-13 23:47:43 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-11-13 23:47:43 ----A---- C:\Windows\system32\url.dll
2014-11-13 23:47:43 ----A---- C:\Windows\system32\iernonce.dll
2014-11-13 23:47:43 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-11-13 23:47:42 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-11-13 23:47:42 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-11-13 23:47:42 ----A---- C:\Windows\system32\wextract.exe
2014-11-13 23:47:42 ----A---- C:\Windows\system32\mshta.exe
2014-11-13 23:47:42 ----A---- C:\Windows\system32\msfeedssync.exe
2014-11-13 23:47:42 ----A---- C:\Windows\system32\iexpress.exe
2014-11-13 23:47:42 ----A---- C:\Windows\system32\iesetup.dll
2014-11-13 23:46:54 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-13 23:46:54 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2014-11-13 23:46:54 ----A---- C:\Windows\system32\schannel.dll
2014-11-13 23:46:54 ----A---- C:\Windows\system32\ncryptsslp.dll
2014-11-13 23:46:54 ----A---- C:\Windows\system32\dpapisrv.dll
2014-11-13 23:46:32 ----A---- C:\Windows\system32\win32k.sys
2014-11-13 23:46:30 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-13 23:46:30 ----A---- C:\Windows\system32\packager.dll
2014-11-13 23:46:28 ----A---- C:\Windows\SYSWOW64\certcli.dll
2014-11-13 23:46:28 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-13 23:46:28 ----A---- C:\Windows\system32\rfxvmt.dll
2014-11-13 23:46:28 ----A---- C:\Windows\system32\rdpcorets.dll
2014-11-13 23:46:28 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-13 23:46:28 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-11-13 23:46:28 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-13 23:46:28 ----A---- C:\Windows\system32\drivers\cng.sys
2014-11-13 23:46:28 ----A---- C:\Windows\system32\certcli.dll
2014-11-13 23:46:28 ----A---- C:\Windows\system32\adtschema.dll
2014-11-13 23:46:27 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-13 23:46:27 ----A---- C:\Windows\system32\rdpudd.dll
2014-11-13 23:46:27 ----A---- C:\Windows\system32\msaudite.dll
2014-11-13 23:45:32 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-13 23:45:32 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-13 23:45:31 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-13 23:45:30 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-11-13 23:45:30 ----A---- C:\Windows\system32\msihnd.dll
2014-11-13 23:45:30 ----A---- C:\Windows\system32\msi.dll
2014-11-13 23:45:30 ----A---- C:\Windows\system32\authui.dll
2014-11-13 23:45:29 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-11-13 23:45:29 ----A---- C:\Windows\system32\consent.exe
2014-11-13 23:45:29 ----A---- C:\Windows\system32\appinfo.dll
2014-11-13 23:45:25 ----A---- C:\Windows\system32\wuaueng.dll
2014-11-13 23:45:24 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-11-13 23:45:24 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-11-13 23:45:24 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-11-13 23:45:24 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-11-13 23:45:24 ----A---- C:\Windows\system32\wuwebv.dll
2014-11-13 23:45:24 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-11-13 23:45:24 ----A---- C:\Windows\system32\wups.dll
2014-11-13 23:45:24 ----A---- C:\Windows\system32\wudriver.dll
2014-11-13 23:45:24 ----A---- C:\Windows\system32\wucltux.dll
2014-11-13 23:45:24 ----A---- C:\Windows\system32\wuauclt.exe
2014-11-13 23:45:24 ----A---- C:\Windows\system32\wuapi.dll
2014-11-13 23:45:23 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-11-13 23:45:23 ----A---- C:\Windows\system32\wups2.dll
2014-11-13 23:45:23 ----A---- C:\Windows\system32\wuapp.exe
2014-11-13 23:45:23 ----A---- C:\Windows\system32\wuaext.dll
2014-11-13 23:44:29 ----A---- C:\Windows\system32\user32.dll
2014-11-13 23:44:28 ----A---- C:\Windows\SYSWOW64\user32.dll
2014-11-13 23:44:27 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys
2014-11-13 23:44:27 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2014-11-13 23:44:26 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2014-11-13 23:44:24 ----A---- C:\Windows\SYSWOW64\winshfhc.dll
2014-11-13 23:44:24 ----A---- C:\Windows\system32\winshfhc.dll
2014-11-13 23:43:07 ----A---- C:\Windows\system32\shell32.dll
2014-11-13 23:43:05 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-11-13 23:43:04 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-11-13 23:43:03 ----A---- C:\Windows\system32\twinui.dll
2014-11-13 23:43:03 ----A---- C:\Windows\system32\SettingsHandlers.dll
2014-11-13 23:43:02 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-11-13 23:43:01 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2014-11-13 23:43:01 ----A---- C:\Windows\system32\MFMediaEngine.dll
2014-11-13 23:43:01 ----A---- C:\Windows\system32\localspl.dll
2014-11-13 23:43:00 ----A---- C:\Windows\SYSWOW64\twinui.dll
2014-11-13 23:42:58 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2014-11-13 23:42:58 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2014-11-13 23:42:58 ----A---- C:\Windows\system32\win32spl.dll
2014-11-13 23:42:55 ----A---- C:\Windows\system32\WsmSvc.dll
2014-11-13 23:42:55 ----A---- C:\Windows\system32\drivers\netio.sys
2014-11-13 23:42:54 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-11-13 23:42:53 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2014-11-13 23:42:53 ----A---- C:\Windows\system32\puiobj.dll
2014-11-13 23:42:52 ----AC---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-11-13 23:42:51 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-11-13 23:42:50 ----A---- C:\Windows\SYSWOW64\untfs.dll
2014-11-13 23:42:50 ----A---- C:\Windows\system32\untfs.dll
2014-11-13 23:42:49 ----A---- C:\Windows\SYSWOW64\FXSAPI.dll
2014-11-13 23:42:49 ----A---- C:\Windows\system32\FXSCOMEX.dll
2014-11-13 23:42:49 ----A---- C:\Windows\system32\FXSAPI.dll
2014-11-13 18:50:59 ----A---- C:\Windows\system32\drivers\rzpnk.sys
2014-11-13 18:50:46 ----A---- C:\Windows\system32\drivers\rzpmgrk.sys
2014-11-13 18:49:12 ----A---- C:\Windows\system32\drivers\RzFilter.sys
2014-11-13 18:49:12 ----A---- C:\Windows\system32\drivers\RzDxgk.sys
2014-11-13 18:47:31 ----D---- C:\Windows\Razer Core

======List of files/folders modified in the last 1 month======

2014-12-08 21:31:16 ----D---- C:\Windows\Prefetch
2014-12-08 21:13:01 ----D---- C:\Windows\Temp
2014-12-08 21:07:26 ----D---- C:\Windows\Tasks
2014-12-08 21:07:26 ----D---- C:\Windows\system32\Tasks
2014-12-08 21:06:53 ----RD---- C:\Program Files
2014-12-08 21:05:37 ----D---- C:\Windows\Inf
2014-12-08 21:04:39 ----D---- C:\Windows\system32\DriverStore
2014-12-08 21:04:35 ----D---- C:\Windows\system32\drivers
2014-12-08 21:04:18 ----RD---- C:\Windows\System32
2014-12-08 21:04:18 ----D---- C:\Windows
2014-12-08 21:03:39 ----D---- C:\ProgramData\AVAST Software
2014-12-08 21:00:00 ----D---- C:\Windows\system32\sru
2014-12-08 20:57:45 ----AD---- C:\Program Files (x86)\apps
2014-12-08 20:57:38 ----RD---- C:\Program Files (x86)
2014-12-08 20:57:37 ----SHD---- C:\Windows\Installer
2014-12-08 20:55:25 ----D---- C:\Users\Gambac\AppData\Roaming\vlc
2014-12-08 20:53:52 ----D---- C:\Users\Gambac\AppData\Roaming\Seznam.cz
2014-12-08 20:53:28 ----D---- C:\Program Files (x86)\Seznam.cz
2014-12-08 20:53:18 ----A---- C:\Windows\win.ini
2014-12-08 20:51:09 ----HD---- C:\ProgramData
2014-12-08 20:51:07 ----HD---- C:\Windows\system32\GroupPolicy
2014-12-08 20:51:07 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2014-12-08 20:51:06 ----D---- C:\Program Files\Common Files
2014-12-08 20:50:51 ----D---- C:\Windows\SysWOW64
2014-12-08 20:48:42 ----D---- C:\Program Files (x86)\Common Files
2014-12-08 20:38:52 ----SD---- C:\Users\Gambac\AppData\Roaming\Microsoft
2014-12-08 18:03:11 ----D---- C:\Windows\Microsoft.NET
2014-12-08 17:48:15 ----D---- C:\Users\Gambac\AppData\Roaming\TS3Client
2014-12-08 14:14:58 ----SHD---- C:\System Volume Information
2014-12-07 23:09:36 ----D---- C:\Users\Gambac\AppData\Roaming\BitComet
2014-12-05 15:14:41 ----D---- C:\Windows\system32\config
2014-12-02 21:05:56 ----D---- C:\Program Files (x86)\Battle.net
2014-11-29 23:39:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-29 22:30:36 ----D---- C:\Downloads
2014-11-29 21:59:52 ----D---- C:\Hry
2014-11-29 15:51:19 ----D---- C:\Program Files (x86)\Steam
2014-11-29 08:53:52 ----D---- C:\ProgramData\NVIDIA
2014-11-28 23:59:55 ----D---- C:\Windows\CbsTemp
2014-11-28 23:59:48 ----D---- C:\Windows\WinSxS
2014-11-22 07:39:34 ----D---- C:\Windows\system32\catroot2
2014-11-22 00:32:34 ----D---- C:\Windows\system32\MRT
2014-11-22 00:30:15 ----A---- C:\Windows\system32\MRT.exe
2014-11-20 21:51:37 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-11-15 16:58:56 ----D---- C:\Windows\rescache
2014-11-15 07:26:35 ----RSD---- C:\Windows\assembly
2014-11-14 11:42:33 ----D---- C:\Windows\system32\catroot
2014-11-14 11:41:45 ----D---- C:\Program Files\Windows Defender
2014-11-14 11:41:45 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-14 11:41:44 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-11-14 11:41:44 ----D---- C:\Windows\system32\wbem
2014-11-14 11:41:44 ----D---- C:\Windows\system32\cs-CZ
2014-11-14 11:41:40 ----RD---- C:\Windows\ToastData
2014-11-14 11:41:40 ----D---- C:\Windows\SYSWOW64\migration
2014-11-14 11:41:40 ----D---- C:\Windows\system32\migration
2014-11-14 11:41:40 ----D---- C:\Program Files\Internet Explorer
2014-11-14 11:41:40 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-14 11:41:39 ----RD---- C:\Windows\ImmersiveControlPanel
2014-11-14 11:41:39 ----D---- C:\Windows\apppatch
2014-11-14 07:29:52 ----D---- C:\Program Files (x86)\Razer
2014-11-13 18:51:06 ----D---- C:\ProgramData\Razer
2014-11-13 18:47:35 ----RSD---- C:\Windows\Fonts

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-12-08 267632]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-12-08 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-12-08 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-12-08 436624]
R1 dtsoftbus01;@oem21.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2014-03-14 283064]
R1 RzFilter;RzFilter; \??\C:\Windows\system32\drivers\RzFilter.sys [2014-04-18 74432]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-12-08 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-12-08 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-12-08 116728]
R2 rzpmgrk;rzpmgrk; \??\C:\Windows\system32\drivers\rzpmgrk.sys [2014-10-31 37184]
R2 rzpnk;rzpnk; \??\C:\Windows\system32\drivers\rzpnk.sys [2014-10-23 129600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-06-19 4065296]
R3 ISCT;@oem1.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\Windows\System32\drivers\ISCTD64.sys [2013-02-13 46568]
R3 MEIx64;@oem8.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECIx64.sys [2013-03-12 64624]
R3 NVHDA;@oem83.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-09-17 197408]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2014-10-16 13190288]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-10-04 20288]
R3 nvvad_WaveExtensible;@oem20.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 RTL8168;@oem6.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-12-27 760032]
R3 RzDxgk;RzDxgk; \??\C:\Windows\system32\drivers\RzDxgk.sys [2014-04-18 129472]
R3 rzendpt;@oem94.inf,%rzendpt.SvcDesc%;rzendpt; C:\Windows\System32\drivers\rzendpt.sys [2014-09-05 39592]
R3 rzmpos;@oem97.inf,%rzmpos.SvcDesc%;rzmpos; C:\Windows\System32\drivers\rzmpos.sys [2014-09-05 35496]
R3 rzudd;@oem106.inf,%Razer.SvcDesc%;Razer Mouse Driver; C:\Windows\System32\drivers\rzudd.sys [2014-09-05 160424]
R4 SPDRIVER_1.38.0.1435;SPDRIVER_1.38.0.1435; \??\C:\Program Files (x86)\ShopperPro\JSDriver\1.38.0.1435\jsdrv.sys []
S0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-12-08 65776]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-07-05 8934976]
S3 IntcDAud;@oem2.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
S3 L1C;@oem5.inf,%L1c.Service.DispName%;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\l1c51x64.sys [2012-04-25 96368]
S3 NvStUSB;@oem11.inf,%NvStUSB.SvcDesc%;NVIDIA Stereoscopic 3D USB driver; C:\Windows\System32\drivers\nvstusb.sys [2013-06-23 450848]
S3 VIAHdAudAddService;@oem4.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-05-04 2196592]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-12-08 50344]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-10-04 1149760]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-10-04 1796928]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-10-04 19440960]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-10-16 933064]
R2 Razer Game Scanner Service;Razer Game Scanner; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2014-10-31 183488]
R2 RzOvlMon;Razer Overlay Subsystem Emergency Service; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [2014-04-18 32960]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-10-16 410952]
R2 VIAKaraokeService;@oem4.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-05-04 27760]
R2 WinStartMenuLauncher;Windows Start Menu Service; C:\Program Files\Smart Menu\WinStartMenuLauncher.exe [2014-03-13 249472]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-12-08 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-13 116648]
S2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-30 76888]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service; C:\Program Files\BitComet\tools\BitCometService.exe [2013-11-29 1296728]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-12-08 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-13 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]

-----------------EOF-----------------

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Po spusteni probehne stazeni databaze
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  resethosts;
  emptyclsid;
  IEdefaults;
  FFdefaults;
  CHRdefaults;
  emptyIEcache;
  emptyFFcache;
  emptyCHRcache;
  emptyalltemp;
  emptyflash;
  emptyjava;
  emptyrecycle.bin;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Prikladam log z AdwCleaner a pokracuji Zoekem.

# AdwCleaner v4.104 - Report created 08/12/2014 at 21:36:14
# Updated 05/12/2014 by Xplode
# Database : 2014-12-08.1 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : Gambac - GAMBO
# Running from : C:\Users\Gambac\Desktop\adwcleaner_4.104.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
Service Deleted : {8ebaa931-88d7-49c0-80c5-891f3623134f}Gw64

***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\SmartTweak
Folder Deleted : C:\Program Files (x86)\YouTube Accelerator
Folder Deleted : C:\Program Files (x86)\SensePlus
Folder Deleted : C:\Users\Gambac\AppData\Local\FilesFrog Update Checker
Folder Deleted : C:\Users\Gambac\AppData\Local\globalUpdate
Folder Deleted : C:\Users\Gambac\AppData\Local\webplayer
Folder Deleted : C:\Users\Gambac\AppData\Local\CrashRpt
Folder Deleted : C:\Users\Gambac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
Folder Deleted : C:\Users\Gambac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
Folder Deleted : C:\Users\Public\Documents\Goobzo
Folder Deleted : C:\Users\Public\Documents\ShopperPro
Folder Deleted : C:\Users\Public\Documents\YTAHelper
Folder Deleted : C:\Users\Gambac\AppData\Roaming\Mozilla\Firefox\Profiles\xjysz3bd.default\Extensions\ae44639e-43f2-4cd1-aa80-39d5d2e18fa9@gmail.com
File Deleted : C:\Program Files (x86)\Uninstall.exe
File Deleted : C:\Windows\System32\drivers\{8ebaa931-88d7-49c0-80c5-891f3623134f}Gw64.sys
File Deleted : C:\Users\Gambac\AppData\Roaming\Mozilla\Firefox\Profiles\xjysz3bd.default\user.js

***** [ Scheduled Tasks ] *****

Task Deleted : globalUpdateUpdateTaskMachineCore
Task Deleted : globalUpdateUpdateTaskMachineUA
Task Deleted : 3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-11
Task Deleted : 3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-2
Task Deleted : 3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-3
Task Deleted : 3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-5
Task Deleted : 3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-5_user

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [SpeedUpMyComputer]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ShopperPro.DLL
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKCU\Software\8e3bc91142bd8d798a10a1667ae4d2be
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611811153}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622812253}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655815553}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666816653}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440644814453}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611811153}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611811153}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622812253}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655815553}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666816653}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611811153}
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\Goobzo
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\smarttweak
Key Deleted : HKCU\Software\Somoto
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\SensePlus
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\Goobzo
Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : HKLM\SOFTWARE\SensePlus
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SensePlus
Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : [x64] HKLM\SOFTWARE\ShopperPro

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v30.0 (cs)


-\\ Google Chrome v39.0.2171.71

[C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://eu.wowarmory.com/search.xml?searchQuery={searchTerms}&searchType=all
[C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.searchingissme.info/?unqvl=23&l=1&q={searchTerms}
[C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&st=17&barid={A16EE4EC-9151-11E1-B822-D0DF9AE2CF44}
[C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.delta-search.com/?q={searchTerms}&a ... 4BD6964FCA
[C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.softonic.com/MON00005/tb_v1?q={searchTerms}&SearchSource=49&cc=
[C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://isearch.avg.com/search?cid={3E0095A7-6266-4CD5-BF62-ABAC0F5250EA}&mid=15e0f6208a3947d0943b0196dc0626b7-1f3fbc0a0cde9b7a754ac3400d61ddaf3a5667d4&lang=cs&ds=AVG&pr=fr&d=2012-08-14 14:48:46&v=14.2.0.1&pid=avg&sg=&sap=dsp&q={searchTerms}

-\\ Chromium v

[C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://eu.wowarmory.com/search.xml?searchQuery={searchTerms}&searchType=all
[C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.searchingissme.info/?unqvl=23&l=1&q={searchTerms}
[C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&st=17&barid={A16EE4EC-9151-11E1-B822-D0DF9AE2CF44}
[C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.delta-search.com/?q={searchTerms}&a ... 4BD6964FCA
[C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.softonic.com/MON00005/tb_v1?q={searchTerms}&SearchSource=49&cc=
[C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://isearch.avg.com/search?cid={3E0095A7-6266-4CD5-BF62-ABAC0F5250EA}&mid=15e0f6208a3947d0943b0196dc0626b7-1f3fbc0a0cde9b7a754ac3400d61ddaf3a5667d4&lang=cs&ds=AVG&pr=fr&d=2012-08-14 14:48:46&v=14.2.0.1&pid=avg&sg=&sap=dsp&q={searchTerms}

*************************

AdwCleaner[R0].txt - [12192 octets] - [08/12/2014 21:35:06]
AdwCleaner[S0].txt - [13176 octets] - [08/12/2014 21:36:14]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [13237 octets] ##########

Jen pro info - Zoek ma bezet cca jak dlouho? Zatim je pusteny cca 5minut a je vypsano cca 10 radku logu.

Pokud neni zaseknuty, tak jej nechte - ono je tam hodne haveti a musi se ji prodrat...Vetsinou tak do pul hodky...

Zaseknuty neni, pomalu radky pribyvaji. Necham jej tedy pracovat a pak hned poslu log.

Jinak diky moc za help

Hotovo, prikladam log z Zoeku.


Zoek.exe v5.0.0.0 Updated 06-December-2014
Tool run by Gambac on po 08. 12. 2014 at 21:40:18,56.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Gambac\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

8. 12. 2014 21:41:12 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~2\Seznam.cz deleted successfully
C:\PROGRA~2\COMMON~1\SWF Studio deleted successfully
C:\Users\Gambac\AppData\Local\GHISLER deleted successfully
C:\Users\oem\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{45D4A6FF-22E9-46E1-94CA-47EE9190A8D6} deleted successfully
HKEY_USERS\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{45D4A6FF-22E9-46E1-94CA-47EE9190A8D6} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{69DF6783-5CF2-416A-A53C-7A5DE037F813} deleted successfully
HKEY_USERS\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{69DF6783-5CF2-416A-A53C-7A5DE037F813} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6BB73819-B5FC-4C75-9149-499178BE1FCE} deleted successfully
HKEY_USERS\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6BB73819-B5FC-4C75-9149-499178BE1FCE} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7378E199-90A9-451D-B0A1-6FD490225FF9} deleted successfully
HKEY_USERS\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7378E199-90A9-451D-B0A1-6FD490225FF9} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7EF307C7-7C31-484D-826E-2A2D08A745C} deleted successfully
HKEY_USERS\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7EF307C7-7C31-484D-826E-2A2D08A745C} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A0467627-4BE-4CA4-92B5-84B6D7484B} deleted successfully
HKEY_USERS\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A0467627-4BE-4CA4-92B5-84B6D7484B} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AB6F308F-3F18-4FF0-A0D5-7BEAF0B9971A} deleted successfully
HKEY_USERS\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AB6F308F-3F18-4FF0-A0D5-7BEAF0B9971A} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CE62952D-9435-4450-B19C-A5B6E0C4DDAE} deleted successfully
HKEY_USERS\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CE62952D-9435-4450-B19C-A5B6E0C4DDAE} deleted successfully
HKEY_USERS\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3ee61ba5-f2e6-41ec-b228-3f2339ba7d3c} deleted successfully
HKEY_USERS\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4213e1f1-7d0c-4f2b-bff5-ae1a5c2b1966} deleted successfully
HKEY_USERS\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4637b3d1-7bfa-4545-8700-829a2cef375e} deleted successfully
HKEY_USERS\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{b0508d16-c720-46b8-8f22-bdfff8a5bb83} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3ee61ba5-f2e6-41ec-b228-3f2339ba7d3c} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4213e1f1-7d0c-4f2b-bff5-ae1a5c2b1966} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4637b3d1-7bfa-4545-8700-829a2cef375e} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{b0508d16-c720-46b8-8f22-bdfff8a5bb83} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Gambac\AppData\Roaming\Mozilla\Firefox\Profiles\xjysz3bd.default\prefs.js:

Added to C:\Users\Gambac\AppData\Roaming\Mozilla\Firefox\Profiles\xjysz3bd.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

==== Deleting Files \ Folders ======================

C:\PROGRA~2\082d23a9-6ebd-49e1-ac4f-5fdc908d852d deleted
C:\install.exe deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Gambac\AppData\Local\Installer deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Windows\tasks\RVFPQIXG.job deleted
C:\windows\SysNative\tasks\RVFPQIXG deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
C:\Users\Gambac\AppData\Roaming\RVFPQIXG.exe deleted
"C:\Users\Gambac\AppData\Roaming\OLB" deleted
"C:\Users\Gambac\AppData\Roaming\RVFPQIXG" deleted

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================


==== Chromium Look ======================

AdBlock - Gambac\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://localoem.msn.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{2B26498C-4B32-4AC1-BB6B-72517C504435}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2B26498C-4B32-4AC1-BB6B-72517C504435}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://localoem.msn.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== shortcuts on Users Desktops ======================

C:\Users\Gambac\Desktop\Alien Isolation.lnk - C:\Hry\Alien Isolation\AI.exe
C:\Users\Gambac\Desktop\Battle.net.lnk - C:\Hry\World of Warcraft\World of Warcraft Launcher.exe
C:\Users\Gambac\Desktop\Calculator.lnk - C:\Windows\system32\calc.exe
C:\Users\Gambac\Desktop\Crysis – zástupce.lnk -
C:\Users\Gambac\Desktop\FarCry4 – zástupce.lnk -
C:\Users\Gambac\Desktop\fc3_blooddragon_d3d11 – zástupce.lnk -
C:\Users\Gambac\Desktop\Gears of War.lnk - C:\Hry\Gears of War\Binaries\Startup.exe
C:\Users\Gambac\Desktop\GTA IV.lnk - C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
C:\Users\Gambac\Desktop\LaunchGTAIV – zástupce.lnk -
C:\Users\Gambac\Desktop\LIMBO.lnk - C:\Hry\LIMBO\LIMBO.exe
C:\Users\Gambac\Desktop\MAFIA II .lnk - C:\Hry\Mafia II\launcher.exe
C:\Users\Gambac\Desktop\Mafia.lnk - C:\Hry\Mafia\Game.exe
C:\Users\Gambac\Desktop\Metro 2033.lnk - C:\Hry\Metro 2033\METRO 2033\metro2033.exe
C:\Users\Gambac\Desktop\Možnosti napájení – zástupce.lnk -
C:\Users\Gambac\Desktop\Notepad.lnk - C:\Windows\notepad.exe
C:\Users\Gambac\Desktop\Outlast (32-bit).lnk - C:\Hry\Outlast\Binaries\Win32\OLGame.exe
C:\Users\Gambac\Desktop\Paint.lnk - C:\Windows\system32\mspaint.exe
C:\Users\Gambac\Desktop\Play Dark Souls II.lnk - C:\Hry\Dark Souls 2\Dark Souls II\play-DarkSouls2.exe
C:\Users\Gambac\Desktop\Play Desperados.LNK - C:\Hry\Desperados\Desperados.exe
C:\Users\Gambac\Desktop\Rage – zástupce.lnk -
C:\Users\Gambac\Desktop\Resident Evil 6.lnk - C:\Hry\Resident Evil 6\BH6.exe
C:\Users\Gambac\Desktop\SAW - The Video Game.lnk - C:\Hry\SAW - The Video Game\Binaries\SawGame.exe
C:\Users\Gambac\Desktop\Steam – zástupce.lnk -
C:\Users\Gambac\Desktop\TERA.lnk - C:\Hry\TERA\tera-launcher.exe
C:\Users\Gambac\Desktop\Total Commander.lnk - C:\totalcmd\TOTALCMD.EXE
C:\Users\Gambac\Desktop\Uplay.lnk - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe
C:\Users\Gambac\Desktop\Videa – zástupce.lnk -
C:\Users\Gambac\Desktop\Windows 7 USB DVD Download Tool.lnk - C:\Users\Gambac\AppData\Local\Apps\Windows 7 USB DVD Download Tool\Windows7-USB-DVD-Download-Tool.exe
C:\Users\Gambac\Desktop\World of Warcraft.lnk - C:\Hry\World of Warcraft\Wow.exe
C:\Users\Gambac\Desktop\µTorrent.lnk -
C:\Users\Gambac\Desktop\Hudba\Arash and Rebecca - Temptation – zástupce.lnk -
C:\Users\Gambac\Desktop\Hudba\Nelly Furtado - Say it right – zástupce (2).lnk -
C:\Users\Gambac\Desktop\Hudba\Nelly Furtado - Say it right – zástupce.lnk -
C:\Users\oem\Desktop\GamePark.lnk - C:\Program Files (x86)\GamePark\GamePark.url
C:\Users\oem\Desktop\MAFIA II .lnk - C:\Hry\Mafia II\launcher.exe
C:\Users\oem\Desktop\Mafia.lnk - C:\Hry\Mafia\Game.exe

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Assassin's Creed Brotherhood.lnk - C:\Hry\Assassin's Creed Brotherhood\ACBSP.exe
C:\Users\Public\Desktop\Avast Free Antivirus.lnk - C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Public\Desktop\Ballance.lnk - C:\Hry\Ballance\Bin\Player.exe
C:\Users\Public\Desktop\Battlefield 3.lnk - C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
C:\Users\Public\Desktop\BitComet.lnk - C:\Program Files\BitComet\BitComet.exe
C:\Users\Public\Desktop\Call of Duty(R) 2 Singleplayer.lnk - C:\Hry\Call of Duty 2\cod2sp_s.exe
C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe
C:\Users\Public\Desktop\Crysis 3.lnk - C:\Hry\Crysis 3\Bin32\Crysis3.exe
C:\Users\Public\Desktop\DAEMON Tools Lite.lnk - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Users\Public\Desktop\Diablo III.lnk - C:\Hry\Diablo III\Diablo III Launcher.exe
C:\Users\Public\Desktop\Euro Truck Simulator 2.lnk - C:\Hry\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
C:\Users\Public\Desktop\Far Cry 3 DX11.lnk - C:\Hry\Far Cry 3\bin\farcry3_d3d11.exe -offline -language=Czech
C:\Users\Public\Desktop\GeForce Experience.lnk - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe
C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --remote-debugging-port=9223
C:\Users\Public\Desktop\Hearthstone.lnk - C:\Hry\Hearthstone\Hearthstone Beta Launcher.exe -windowed
C:\Users\Public\Desktop\Hitman Absolution.lnk - C:\Hry\Hitman Absolution\HMA.exe
C:\Users\Public\Desktop\IrfanView.lnk - C:\Program Files (x86)\IrfanView\i_view32.exe
C:\Users\Public\Desktop\Medal of Honor Allied Assault.lnk - C:\Hry\MOHAA\MOHAA.exe
C:\Users\Public\Desktop\Oblivion.lnk - C:\Hry\TES4\OblivionLauncher.exe
C:\Users\Public\Desktop\Origin.lnk - C:\Program Files (x86)\Origin\Origin.exe
C:\Users\Public\Desktop\Plants vs. Zombies.lnk - C:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
C:\Users\Public\Desktop\Serious Sam 3.lnk - C:\Hry\SS3\Steam\steamapps\common\Serious Sam 3\Bin\Sam3_Launcher.exe
C:\Users\Public\Desktop\Singularity(TM).lnk - C:\Hry\Singularity(TM)\Binaries\Singularity.exe
C:\Users\Public\Desktop\Sniper Elite 3.lnk - C:\Hry\Sniper Elite 3\Launcher\Sniper3Launcher.exe
C:\Users\Public\Desktop\Spustit Assassin's Creed III.lnk - C:\Hry\Assassin's Creed III\AC3SP.exe
C:\Users\Public\Desktop\Steam.lnk - C:\Program Files (x86)\Steam\Steam.exe
C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk - C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
C:\Users\Public\Desktop\The Sims 2 Ultimate Collection.lnk - C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
C:\Users\Public\Desktop\Thief.lnk - C:\Hry\Thief\Launcher.exe
C:\Users\Public\Desktop\Ulož.to File Manager.lnk -
C:\Users\Public\Desktop\Valiant Hearts The Great War.lnk - C:\Hry\Valiant Hearts The Great War\Valiant Hearts.exe
C:\Users\Public\Desktop\VLC media player.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
C:\Users\Public\Desktop\Wolfenstein The New Order.lnk - C:\Hry\Wolfenstein The New Order\WolfNewOrder_x64.exe

==== shortcuts in Users Start Menu ======================

C:\Users\Gambac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool\Uninstall Windows 7 USB DVD Download Tool.lnk - C:\Windows\System32\msiexec.exe /x {CCF298AF-9CE1-4B26-B251-486E98A34789}
C:\Users\Gambac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool\Windows 7 USB DVD Download Tool.lnk - C:\Users\Gambac\AppData\Local\Apps\Windows 7 USB DVD Download Tool\Windows7-USB-DVD-Download-Tool.exe

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alien Isolation\Alien Isolation.lnk - C:\Hry\Alien Isolation\AI.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alien Isolation\Uninstall.lnk - C:\Hry\Alien Isolation\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software\Avast Free Antivirus.lnk - C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ballance\Show Help.lnk - C:\Hry\Ballance\help\Help_eng.htm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ballance\Start Ballance.lnk - C:\Hry\Ballance\bin\Player.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ballance\Uninstall Ballance.lnk - C:\Program Files (x86)\InstallShield Installation Information\{42E0783D-3BA4-454B-B58A-BF26E49EB7DE}\Setup.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ballance CZ\ABCgames.cz.lnk - C:\Hry\Ballance\ABCgames.cz.url
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ballance CZ\Koupit hru.lnk - C:\Hry\Ballance\Koupit hru.url
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ballance CZ\Odinstalovat.lnk - C:\Hry\Ballance\Odinstalovat Ballance-CZ.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3\Hrať Crysis 3.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3\Odinštalovať Crysis 3.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III\Battle.net Account Management.lnk - C:\Hry\Diablo III\BattlenetAccount.url
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III\Blizzard Technical Support.lnk - C:\Hry\Diablo III\TechSupport.url
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III\Diablo III - Manual.lnk - C:\Hry\Diablo III\Manual.url
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III\Diablo III.lnk - C:\Hry\Diablo III\Diablo III Launcher.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Far Cry 4\Uninstall Far Cry 4.lnk - C:\Hry\Far Cry 4\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision Photo Viewer.lnk - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision preview pack 1.lnk - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe /show
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics\SAW - The Video Game\Play SAW - The Video Game.lnk - C:\Hry\SAW - The Video Game\Binaries\SawGame.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics\SAW - The Video Game\Uninstall SAW - The Video Game.lnk - C:\Users\Gambac\AppData\Roaming\SAW - The Video Game\Uninstall\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer\Razer Synapse 2.0\Razer Synapse 2.0.lnk - C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe -launch
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thief\Check for updates.lnk - C:\Hry\Thief\GameUpdater.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thief\Launcher settings.lnk - C:\Hry\Thief\Launcher.exe /showwindow
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thief\Thief.lnk - C:\Hry\Thief\Launcher.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thief\Uninstall.lnk - C:\Hry\Thief\Uninstall\unins000.exe

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Gambac\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --remote-debugging-port=9223
C:\Users\Gambac\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Gambac\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Gambac\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Gambac\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -
C:\Users\Gambac\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --remote-debugging-port=9223
C:\Users\Gambac\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Total Commander.lnk - C:\totalcmd\TOTALCMD.EXE
C:\Users\oem\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\oem\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\oem\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer (2).lnk -
C:\Users\oem\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -
C:\Users\oem\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (2).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\oem\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

==== shortcuts After Repair ======================

C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Gambac\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Gambac\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Gambac\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Gambac\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Gambac\AppData\Local\Mozilla\Firefox\Profiles\xjysz3bd.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=17 folders=14 11385473 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Gambac\AppData\Local\Temp will be emptied at reboot
C:\Users\oem\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Gambac\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on po 08. 12. 2014 at 22:03:05,18 ======================

Poprosim nyni o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

Jsem na ceste do prace, dalsi log poslu kolem 19te hod, diky.

OuKej, at to utika

Zasilam log FRST:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-12-2014
Ran by Gambac (administrator) on GAMBO on 09-12-2014 18:45:40
Running from C:\Users\Gambac\Desktop
Loaded Profile: Gambac (Available profiles: oem & Gambac)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
() C:\Program Files\Smart Menu\WinStartMenuLauncher.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Gambac\Desktop\FRSTLauncher (3).exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2463552 2014-10-04] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5123216 2012-06-08] (VIA)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [585536 2014-11-03] (Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5226600 2014-12-08] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1363250933-3302703128-408898543-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1363250933-3302703128-408898543-1004\...\Run: [Akamai NetSession Interface] => "C:\Users\Gambac\AppData\Local\Akamai\netsession_win.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamePark klient 2.lnk
ShortcutTarget: GamePark klient 2.lnk -> C:\Program Files\GamePark2\gpcl.exe (Allstar Group, s.r.o.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Main,Start Page = http://localoem.msn.com
HKU\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://localoem.msn.com
HKU\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.tsbohemia.cz
HKU\S-1-5-21-1363250933-3302703128-408898543-1004\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.tsbohemia.cz
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1363250933-3302703128-408898543-1004 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1363250933-3302703128-408898543-1004 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36

FireFox:
========
FF ProfilePath: C:\Users\Gambac\AppData\Roaming\Mozilla\Firefox\Profiles\xjysz3bd.default
FF NewTab: hxxp://www.google.com/
FF DefaultSearchEngine: Google
FF DefaultSearchUrl: hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Extension: No Name - C:\Users\Gambac\AppData\Roaming\Mozilla\Firefox\Profiles\xjysz3bd.default\extensions\ae44639e-43f2-4cd1-aa80-39d5d2e18fa9@gmail.com [Not Found]
FF Extension: No Name - C:\Users\Gambac\AppData\Roaming\Mozilla\Firefox\Profiles\xjysz3bd.default\extensions\d9676068985d4d81bb390a@7be93ab3c8e144f694a0509d5.com [Not Found]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://home.sweetim.com/?st=17&barid={A16EE4EC-9151-11E1-B822-D0DF9AE2CF44}", "hxxp://www.google.com/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-12-08]
CHR Extension: (Dokumenty Google) - C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-13]
CHR Extension: (Disk Google) - C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-13]
CHR Extension: (YouTube) - C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-13]
CHR Extension: (Adblock Plus) - C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-07-21]
CHR Extension: (Vyhledávání Google) - C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-13]
CHR Extension: (Tabulky Google) - C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-08]
CHR Extension: (AdBlock) - C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-03-13]
CHR Extension: (Peněženka Google) - C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-13]
CHR Extension: (Gmail) - C:\Users\Gambac\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-13]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-08] (AVAST Software)
S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1149760 2014-10-04] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1796928 2014-10-04] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19440960 2014-10-04] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-10-30] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [183488 2014-10-31] ()
R2 RzOvlMon; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [32960 2014-04-18] (Razer, Inc.)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-05-04] (VIA Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 WinStartMenuLauncher; C:\Program Files\Smart Menu\WinStartMenuLauncher.exe [249472 2014-03-13] ()

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-08] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-08] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-08] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-08] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-08] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-08] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-08] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-08] ()
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-03-14] (Disc Soft Ltd)
S3 igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [8934976 2012-07-05] (Intel Corporation) [File not signed]
S3 IntcDAud; C:\Windows\system32\DRIVERS\IntcDAud.sys [342528 2012-06-19] (Intel(R) Corporation) [File not signed]
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-02-13] ()
S3 L1C; C:\Windows\system32\DRIVERS\l1c51x64.sys [96368 2012-04-25] (Atheros Communications, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20288 2014-10-04] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R3 RzDxgk; C:\Windows\system32\drivers\RzDxgk.sys [129472 2014-04-18] (Razer, Inc.)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [39592 2014-09-05] (Razer Inc)
R1 RzFilter; C:\Windows\system32\drivers\RzFilter.sys [74432 2014-04-18] (Razer, Inc.)
R3 rzmpos; C:\Windows\System32\drivers\rzmpos.sys [35496 2014-09-05] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2014-10-31] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2014-10-23] (Razer, Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-09 18:45 - 2014-12-09 18:45 - 00029696 _____ () C:\Users\Gambac\AppData\Local\MSGBOX.EXE
2014-12-09 18:45 - 2014-12-09 18:45 - 00015327 _____ () C:\Users\Gambac\Desktop\LM.bat
2014-12-09 18:45 - 2014-12-09 18:45 - 00015210 _____ () C:\Users\Gambac\Desktop\FRST.txt
2014-12-09 18:45 - 2014-12-09 18:45 - 00000000 ____D () C:\FRST
2014-12-09 18:44 - 2014-12-09 18:44 - 00112640 _____ (forum.viry.cz) C:\Users\Gambac\Downloads\Nepotvrzeno 309877.crdownload
2014-12-09 18:44 - 2014-12-09 18:44 - 00112640 _____ (forum.viry.cz) C:\Users\Gambac\Desktop\FRSTLauncher (3).exe
2014-12-09 18:43 - 2014-12-09 18:43 - 00112640 _____ (forum.viry.cz) C:\Users\Gambac\Downloads\Nepotvrzeno 990972.crdownload
2014-12-09 18:43 - 2014-12-09 18:43 - 00112640 _____ (forum.viry.cz) C:\Users\Gambac\Downloads\Nepotvrzeno 97840.crdownload
2014-12-09 18:42 - 2014-12-09 18:42 - 02119680 _____ (Farbar) C:\Users\Gambac\Desktop\FRST64.exe
2014-12-09 07:17 - 2014-12-09 07:17 - 00051200 _____ () C:\Users\Gambac\Downloads\Směny_Idenus_Q4.xls
2014-12-08 22:05 - 2014-12-08 22:05 - 00024242 _____ () C:\Users\Gambac\Desktop\zoek-results.txt
2014-12-08 22:00 - 2014-12-08 21:40 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-12-08 21:41 - 2014-12-08 22:03 - 00024242 _____ () C:\zoek-results.log
2014-12-08 21:40 - 2014-12-08 21:57 - 00000000 ____D () C:\zoek_backup
2014-12-08 21:39 - 2014-12-08 21:39 - 01295360 _____ () C:\Users\Gambac\Desktop\zoek.exe
2014-12-08 21:35 - 2014-12-08 21:36 - 00000000 ____D () C:\AdwCleaner
2014-12-08 21:35 - 2014-12-08 21:35 - 00000055 _____ () C:\AdwCleanerDebug.txt
2014-12-08 21:34 - 2014-12-08 21:34 - 02153472 _____ () C:\Users\Gambac\Desktop\adwcleaner_4.104.exe
2014-12-08 21:06 - 2014-12-08 21:31 - 00000000 ____D () C:\Program Files\trend micro
2014-12-08 21:06 - 2014-12-08 21:09 - 00000000 ____D () C:\rsit
2014-12-08 21:06 - 2014-12-08 21:06 - 01222144 _____ () C:\Users\Gambac\Desktop\RSITx64.exe
2014-12-08 21:05 - 2014-12-08 21:05 - 00000000 ____D () C:\Users\Gambac\AppData\Roaming\AVAST Software
2014-12-08 21:04 - 2014-12-08 21:05 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-12-08 21:04 - 2014-12-08 21:04 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-12-08 21:04 - 2014-12-08 21:04 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-12-08 21:04 - 2014-12-08 21:04 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-12-08 21:04 - 2014-12-08 21:04 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-12-08 21:04 - 2014-12-08 21:04 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-12-08 21:04 - 2014-12-08 21:04 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-12-08 21:04 - 2014-12-08 21:04 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-12-08 21:04 - 2014-12-08 21:04 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-12-08 21:04 - 2014-12-08 21:04 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-12-08 21:04 - 2014-12-08 21:04 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-12-08 21:04 - 2014-12-08 21:04 - 00001980 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-12-08 21:04 - 2014-12-08 21:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2014-12-08 21:03 - 2014-12-08 21:03 - 00000000 ____D () C:\Program Files\AVAST Software
2014-12-08 21:02 - 2014-12-08 21:02 - 05006864 _____ (AVAST Software) C:\Users\Gambac\Desktop\avast_free_antivirus_setup_online.exe
2014-12-08 20:48 - 2014-12-08 20:48 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2014-12-08 20:48 - 2014-12-08 20:48 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2014-12-08 20:48 - 2014-12-08 20:48 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-12-08 20:48 - 2014-12-08 20:48 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-12-08 20:48 - 2014-12-08 20:48 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-12-08 20:48 - 2014-12-08 20:48 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-12-08 20:48 - 2014-12-08 20:48 - 00000000 ____D () C:\ProgramData\Sun
2014-12-08 20:48 - 2014-12-08 20:48 - 00000000 ____D () C:\Program Files (x86)\Java
2014-12-08 20:47 - 2014-12-08 20:50 - 00000000 ____D () C:\ProgramData\TEMP
2014-12-08 20:42 - 2014-12-08 21:08 - 1087635456 _____ () C:\Users\Gambac\Desktop\windows-7-all-in-one-cz.iso
2014-12-08 20:38 - 2014-12-08 20:38 - 00002570 _____ () C:\Users\Gambac\Desktop\Windows 7 USB DVD Download Tool.lnk
2014-12-04 19:06 - 2014-12-04 19:37 - 00000000 ____D () C:\Users\Gambac\Desktop\Insensibles.aka.Painless.2012.BluRay.720p.x264-MySiLU [PublicHD]
2014-12-03 21:00 - 2014-12-03 21:01 - 01957481 _____ () C:\Users\Gambac\Desktop\DBM-Core-6.0.5.zip
2014-12-01 21:48 - 2014-12-01 22:23 - 3451484576 _____ () C:\Users\Gambac\Desktop\pocatek-inception-720p-cz.mkv
2014-11-30 17:11 - 2014-11-30 17:11 - 00050688 _____ () C:\Users\Gambac\Desktop\Směny_Idenus_Q4.xls
2014-11-29 23:36 - 2014-11-29 23:46 - 2778605568 _____ () C:\Users\Gambac\Desktop\vetrelec-vs-predator-alien-vs-predator-2004-extended-version-720p-brrip-xvid-ac3-dd5-1-cz.avi
2014-11-29 22:14 - 2014-11-29 22:14 - 00001149 _____ () C:\Users\Gambac\Desktop\FarCry4 – zástupce.lnk
2014-11-29 22:12 - 2014-11-29 22:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Far Cry 4
2014-11-29 21:59 - 2014-11-29 21:59 - 00003508 _____ () C:\Windows\System32\Tasks\Java Updater
2014-11-29 15:51 - 2014-11-29 15:51 - 00001374 _____ () C:\Users\Gambac\Desktop\Steam – zástupce.lnk
2014-11-19 11:36 - 2014-11-10 00:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 11:36 - 2014-11-10 00:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 11:36 - 2014-11-10 00:18 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 11:36 - 2014-11-10 00:18 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-13 23:48 - 2014-10-31 06:28 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-13 23:48 - 2014-10-31 04:59 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-13 23:48 - 2014-10-31 04:42 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-13 23:48 - 2014-10-31 03:30 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-13 23:48 - 2014-10-07 07:28 - 00500016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-13 23:48 - 2014-10-07 07:27 - 00482872 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-13 23:48 - 2014-10-07 07:27 - 00394120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-13 23:48 - 2014-10-07 07:27 - 00272248 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-11-13 23:48 - 2014-10-07 07:27 - 00108432 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-13 23:48 - 2014-10-07 04:34 - 00370424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-13 23:48 - 2014-10-07 04:34 - 00344536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-13 23:48 - 2014-10-07 04:33 - 00424544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-13 23:48 - 2014-10-07 02:54 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-11-13 23:48 - 2014-10-07 02:46 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-13 23:48 - 2014-08-23 06:18 - 02149376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-13 23:48 - 2014-08-23 06:03 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-13 23:47 - 2014-10-31 06:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-11-13 23:47 - 2014-10-31 06:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-11-13 23:47 - 2014-10-31 06:10 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-11-13 23:47 - 2014-10-31 06:09 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-11-13 23:47 - 2014-10-31 06:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-11-13 23:47 - 2014-10-31 06:06 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-13 23:47 - 2014-10-31 06:06 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-11-13 23:47 - 2014-10-31 06:06 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-13 23:47 - 2014-10-31 06:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-13 23:47 - 2014-10-31 06:05 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-13 23:47 - 2014-10-31 06:05 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-11-13 23:47 - 2014-10-31 06:04 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-13 23:47 - 2014-10-31 05:57 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-13 23:47 - 2014-10-31 05:56 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-13 23:47 - 2014-10-31 05:54 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-11-13 23:47 - 2014-10-31 05:53 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-13 23:47 - 2014-10-31 05:52 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2014-11-13 23:47 - 2014-10-31 05:51 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-11-13 23:47 - 2014-10-31 05:51 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-13 23:47 - 2014-10-31 05:51 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-13 23:47 - 2014-10-31 05:50 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-13 23:47 - 2014-10-31 05:50 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-13 23:47 - 2014-10-31 05:40 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-11-13 23:47 - 2014-10-31 05:38 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-13 23:47 - 2014-10-31 05:30 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-13 23:47 - 2014-10-31 05:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-11-13 23:47 - 2014-10-31 05:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-11-13 23:47 - 2014-10-31 05:28 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-11-13 23:47 - 2014-10-31 05:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-13 23:47 - 2014-10-31 05:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-13 23:47 - 2014-10-31 05:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-11-13 23:47 - 2014-10-31 05:23 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-11-13 23:47 - 2014-10-31 05:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-13 23:47 - 2014-10-31 05:19 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-11-13 23:47 - 2014-10-31 05:15 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-11-13 23:47 - 2014-10-31 05:08 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-11-13 23:47 - 2014-10-31 05:06 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-13 23:47 - 2014-10-31 05:05 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-13 23:47 - 2014-10-31 05:05 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-13 23:47 - 2014-10-31 05:03 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-13 23:47 - 2014-10-31 04:45 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-13 23:47 - 2014-10-31 04:44 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-11-13 23:47 - 2014-10-31 04:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-11-13 23:47 - 2014-10-31 04:32 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-13 23:47 - 2014-10-31 04:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-11-13 23:47 - 2014-10-31 04:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-11-13 23:47 - 2014-10-31 04:27 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-11-13 23:47 - 2014-10-31 04:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-11-13 23:47 - 2014-10-31 04:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-11-13 23:47 - 2014-10-31 04:24 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-13 23:47 - 2014-10-31 04:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-11-13 23:47 - 2014-10-31 04:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-13 23:47 - 2014-10-31 04:23 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-11-13 23:47 - 2014-10-31 04:23 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-13 23:47 - 2014-10-31 04:22 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-13 23:47 - 2014-10-31 04:20 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-13 23:47 - 2014-10-31 04:18 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-13 23:47 - 2014-10-31 04:16 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-13 23:47 - 2014-10-31 04:15 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-13 23:47 - 2014-10-31 04:14 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-11-13 23:47 - 2014-10-31 04:13 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-13 23:47 - 2014-10-31 04:13 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2014-11-13 23:47 - 2014-10-31 04:12 - 00661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-11-13 23:47 - 2014-10-31 04:12 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-13 23:47 - 2014-10-31 04:11 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-13 23:47 - 2014-10-31 04:03 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-11-13 23:47 - 2014-10-31 04:02 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-13 23:47 - 2014-10-31 03:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-13 23:47 - 2014-10-31 03:56 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-11-13 23:47 - 2014-10-31 03:56 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-11-13 23:47 - 2014-10-31 03:56 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-11-13 23:47 - 2014-10-31 03:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-13 23:47 - 2014-10-31 03:53 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-11-13 23:47 - 2014-10-31 03:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-13 23:47 - 2014-10-31 03:51 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-11-13 23:47 - 2014-10-31 03:50 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-13 23:47 - 2014-10-31 03:48 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-11-13 23:47 - 2014-10-31 03:46 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-13 23:47 - 2014-10-31 03:46 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-11-13 23:47 - 2014-10-31 03:42 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-11-13 23:47 - 2014-10-31 03:40 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-13 23:47 - 2014-10-31 03:40 - 00325632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-13 23:47 - 2014-10-31 03:39 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-13 23:47 - 2014-10-31 03:26 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-11-13 23:47 - 2014-10-31 03:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-11-13 23:47 - 2014-10-31 03:17 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-13 23:47 - 2014-10-31 03:13 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-13 23:47 - 2014-10-31 03:11 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-13 23:46 - 2014-10-23 06:48 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-13 23:46 - 2014-10-23 06:05 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-13 23:46 - 2014-10-10 02:58 - 00177472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-13 23:46 - 2014-10-10 02:58 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-11-13 23:46 - 2014-10-10 02:44 - 00563976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-11-13 23:46 - 2014-10-08 08:37 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-13 23:46 - 2014-10-08 08:37 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-13 23:46 - 2014-10-08 08:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-11-13 23:46 - 2014-10-08 08:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2014-11-13 23:46 - 2014-10-08 07:56 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-11-13 23:46 - 2014-10-08 07:51 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-13 23:46 - 2014-10-08 07:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-13 23:46 - 2014-10-08 07:18 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2014-11-13 23:46 - 2014-10-08 07:17 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-13 23:46 - 2014-10-08 06:23 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-11-13 23:46 - 2014-10-07 04:30 - 04182016 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-13 23:46 - 2014-09-27 08:13 - 00104336 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2014-11-13 23:46 - 2014-09-27 06:24 - 00088800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2014-11-13 23:46 - 2014-09-27 04:38 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-13 23:46 - 2014-09-27 04:30 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-11-13 23:46 - 2014-09-27 04:17 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-13 23:45 - 2014-10-18 10:55 - 00055776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-11-13 23:45 - 2014-10-18 09:09 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-11-13 23:45 - 2014-10-18 09:09 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-11-13 23:45 - 2014-10-18 08:25 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-11-13 23:45 - 2014-10-18 07:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2014-11-13 23:45 - 2014-10-18 07:38 - 03557376 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-11-13 23:45 - 2014-10-18 07:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-11-13 23:45 - 2014-10-18 07:26 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-11-13 23:45 - 2014-10-18 07:23 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-11-13 23:45 - 2014-10-18 07:23 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-11-13 23:45 - 2014-10-18 07:21 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-11-13 23:45 - 2014-10-18 07:20 - 01714176 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-11-13 23:45 - 2014-10-18 07:14 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-11-13 23:45 - 2014-10-18 07:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-11-13 23:45 - 2014-10-18 07:12 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-11-13 23:45 - 2014-10-18 07:11 - 00723968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-11-13 23:45 - 2014-10-17 08:01 - 00789184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-13 23:45 - 2014-10-17 07:58 - 00602768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-13 23:45 - 2014-10-13 03:33 - 00116032 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-11-13 23:45 - 2014-10-11 01:58 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-13 23:45 - 2014-10-11 01:53 - 03607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-13 23:45 - 2014-10-08 08:30 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-11-13 23:45 - 2014-10-08 08:09 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-11-13 23:45 - 2014-10-08 07:27 - 00325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-11-13 23:45 - 2014-10-08 06:32 - 02773504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-11-13 23:45 - 2014-10-08 06:19 - 02459136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-11-13 23:44 - 2014-09-22 05:38 - 01519488 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-11-13 23:44 - 2014-09-22 04:06 - 00258368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-11-13 23:44 - 2014-09-22 04:06 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2014-11-13 23:44 - 2014-09-22 03:49 - 00035320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-11-13 23:44 - 2014-09-19 01:16 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-11-13 23:44 - 2014-09-02 23:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2014-11-13 23:44 - 2014-09-02 23:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2014-11-13 23:43 - 2014-09-08 04:07 - 02497344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-11-13 23:43 - 2014-09-04 23:21 - 01053184 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-11-13 23:43 - 2014-09-04 04:05 - 00836176 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2014-11-13 23:43 - 2014-08-31 01:15 - 21197152 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-11-13 23:43 - 2014-08-30 23:59 - 18723112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-11-13 23:43 - 2014-08-30 22:04 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-11-13 23:43 - 2014-08-28 03:55 - 07484224 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-11-13 23:43 - 2014-08-23 06:14 - 13424128 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-11-13 23:43 - 2014-08-23 06:04 - 11820544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-11-13 23:43 - 2014-08-23 05:50 - 02714112 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2014-11-13 23:42 - 2014-09-10 07:25 - 00474432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-11-13 23:42 - 2014-09-08 04:07 - 00428864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-11-13 23:42 - 2014-09-07 23:08 - 00389176 _____ () C:\Windows\system32\ApnDatabase.xml
2014-11-13 23:42 - 2014-09-04 23:30 - 00822272 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-11-13 23:42 - 2014-09-04 03:22 - 00670384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2014-11-13 23:42 - 2014-09-04 02:01 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2014-11-13 23:42 - 2014-09-04 01:32 - 00334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2014-11-13 23:42 - 2014-08-31 01:17 - 00148800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-11-13 23:42 - 2014-08-30 23:05 - 00615424 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2014-11-13 23:42 - 2014-08-30 22:58 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2014-11-13 23:42 - 2014-08-30 21:53 - 00239104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2014-11-13 23:42 - 2014-08-30 21:17 - 00799744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-11-13 23:42 - 2014-08-28 01:21 - 02480128 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-11-13 23:42 - 2014-08-28 01:06 - 02030592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-11-13 23:42 - 2014-08-02 01:51 - 00545792 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-11-13 23:42 - 2014-08-02 01:35 - 00485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2014-11-13 18:54 - 2014-11-13 18:54 - 00000000 ____D () C:\Users\Gambac\AppData\Local\Razer
2014-11-13 18:50 - 2014-10-31 23:27 - 00037184 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpmgrk.sys
2014-11-13 18:50 - 2014-10-23 21:05 - 00129600 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpnk.sys
2014-11-13 18:49 - 2014-11-13 18:50 - 00069950 _____ () C:\Windows\DPINST.LOG
2014-11-13 18:49 - 2014-11-13 18:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_RzFilter_01009.Wdf
2014-11-13 18:49 - 2014-04-18 17:02 - 00129472 _____ (Razer, Inc.) C:\Windows\system32\Drivers\RzDxgk.sys
2014-11-13 18:49 - 2014-04-18 17:02 - 00074432 _____ (Razer, Inc.) C:\Windows\system32\Drivers\RzFilter.sys
2014-11-13 18:47 - 2014-11-13 18:47 - 00000000 ____D () C:\Windows\Razer Core
2014-11-13 18:47 - 2014-11-13 18:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-09 18:43 - 2014-03-27 22:22 - 01116258 _____ () C:\Windows\WindowsUpdate.log
2014-12-09 18:40 - 2014-03-13 19:46 - 00000968 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-09 18:40 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2014-12-09 07:29 - 2014-03-14 18:47 - 00000000 ____D () C:\Users\Gambac\AppData\Local\Battle.net
2014-12-09 07:20 - 2014-03-13 19:46 - 00000972 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-08 22:20 - 2014-03-13 19:46 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1363250933-3302703128-408898543-1004
2014-12-08 22:02 - 2014-02-03 22:08 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-12-08 22:02 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-08 22:01 - 2014-04-11 20:33 - 00122426 _____ () C:\Windows\PFRO.log
2014-12-08 22:01 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-12-08 21:59 - 2014-03-13 19:46 - 00002214 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-12-08 21:57 - 2013-08-22 16:36 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-12-08 21:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-12-08 21:29 - 2014-03-17 16:50 - 01204736 ___SH () C:\Users\Gambac\Desktop\Thumbs.db
2014-12-08 21:03 - 2014-03-13 20:53 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-12-08 20:55 - 2014-03-20 19:09 - 00000000 ____D () C:\Users\Gambac\AppData\Roaming\vlc
2014-12-08 20:53 - 2014-04-25 08:44 - 00000000 ____D () C:\Users\Gambac\AppData\Roaming\Seznam.cz
2014-12-08 20:53 - 2013-08-22 14:25 - 00000269 _____ () C:\Windows\win.ini
2014-12-08 20:40 - 2014-03-13 19:54 - 00000000 ____D () C:\Users\Gambac\Desktop\Download
2014-12-08 20:38 - 2014-04-25 08:27 - 00000000 ____D () C:\Users\Gambac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2014-12-08 20:38 - 2014-04-25 08:27 - 00000000 ____D () C:\Users\Gambac\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2014-12-08 17:48 - 2014-03-13 21:53 - 00000000 ____D () C:\Users\Gambac\AppData\Roaming\TS3Client
2014-12-07 23:09 - 2014-05-10 16:58 - 00000000 ____D () C:\Users\Gambac\AppData\Roaming\BitComet
2014-12-02 21:05 - 2014-03-14 18:46 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-11-29 23:39 - 2013-11-01 16:01 - 01771710 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-29 23:39 - 2013-08-22 23:08 - 00746994 _____ () C:\Windows\system32\perfh005.dat
2014-11-29 23:39 - 2013-08-22 23:08 - 00155994 _____ () C:\Windows\system32\perfc005.dat
2014-11-29 23:36 - 2014-04-24 06:50 - 00012239 _____ () C:\Windows\setupact.log
2014-11-29 22:15 - 2014-03-14 21:31 - 00000000 ____D () C:\Users\Gambac\Documents\My Games
2014-11-29 21:59 - 2014-03-13 19:56 - 00000000 ____D () C:\Hry
2014-11-29 15:51 - 2014-03-13 20:40 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-11-29 15:47 - 2014-05-25 13:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
2014-11-28 23:59 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-11-22 00:32 - 2014-03-19 17:48 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-22 00:30 - 2014-03-19 17:48 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-20 21:51 - 2013-08-22 16:38 - 00714208 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-20 21:51 - 2013-08-22 16:38 - 00106976 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-15 16:58 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache
2014-11-14 17:06 - 2013-08-22 15:44 - 00485352 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-14 11:41 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ToastData
2014-11-14 11:41 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-11-14 11:41 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-14 11:41 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-14 11:41 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-11-14 11:41 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-11-14 07:29 - 2014-05-30 09:10 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-11-14 07:15 - 2014-03-13 19:46 - 00003944 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-14 07:15 - 2014-03-13 19:46 - 00003708 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-13 18:51 - 2014-05-30 09:11 - 00000000 ____D () C:\ProgramData\Razer

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-30 08:31

==================== End Of Log ============================

+ log ze souboru Addition (nejak se mne nedari ho dat jako prilohu sem na forum, snad nevadi).

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-12-2014
Ran by Gambac at 2014-12-09 18:46:33
Running from C:\Users\Gambac\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

"Thief" (HKLM-x32\...\{7CEA3557-5E36-49EE-9CBF-504EEA99E0DE}_is1) (Version: 1.0.4107.3 (Update 1) - )
Activision(R) (x32 Version: 1.00.0000 - Activision) Hidden
Aktualizace NVIDIA 16.13.56 (Version: 16.13.56 - NVIDIA Corporation) Hidden
Alan Wake (HKLM-x32\...\Steam App 108710) (Version: - Remedy Entertainment)
Alien Isolation (HKLM-x32\...\Alien Isolation_is1) (Version: - )
Assassin's Creed Brotherhood verze 1.03 (HKLM-x32\...\{D7DA3C85-8B10-49E6-8D4E-94198829504E}_is1) (Version: 1.03 - tomi2k9)
Assassin's Creed III (HKLM-x32\...\Assassin's Creed III_is1) (Version: - )
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.11.15 - Atheros Communications Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
Ballance (HKLM-x32\...\{42E0783D-3BA4-454B-B58A-BF26E49EB7DE}) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
BitComet 1.37 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.37 - CometNetwork)
Call of Duty(R) 2 (HKLM-x32\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.3 - Activision)
Call of Duty(R) 2 (x32 Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 2 Patch 1.3 (x32 Version: 1.3 - ) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform)
CoD 2 čeština (HKLM-x32\...\CoD 2 čeština_is1) (Version: - #'Pan[S]al!er!)
Crysis 3 v1.0.0.1 (HKLM-x32\...\Crysis 3_is1) (Version: - )
Crysis(R) (HKLM-x32\...\{000E79B7-E725-4F01-870A-C12942B7F8E4}) (Version: 1.00.0000 - Electronic Arts)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.1.1 - SCS Software)
Far Cry 3 Blood Dragon (HKLM-x32\...\{A071F478-73E0-4143-AE55-4DD6BABD74F5}) (Version: 1.00 - Ubisoft)
Far Cry 3 v1.01 (HKLM-x32\...\Far Cry 3_is1) (Version: 1.01 - Ubisoft)
Far Cry 4 version 1.0 (HKLM-x32\...\{29166D9E-2B8B-495B-B864-701C0BF33170}_is1) (Version: 1.0 - )
GamePark (HKLM-x32\...\GameParkClient_is1) (Version: - GamePark)
GamePark klient 2.0.9.0 (HKLM\...\{52E5D8A7-B129-4A29-AD4B-EBB749DCC3A3}_is1) (Version: 2.0.9.0 - GamePark)
Gears of War (HKLM-x32\...\Gears of War_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
Gears of War (HKLM-x32\...\InstallShield_{1170D24F-42B7-40CF-AA1B-6395CE562354}) (Version: 1.00.0000 - Microsoft Game Studios)
Gears of War (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.71 - Google Inc.)
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version: - Rockstar North)
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version: - Valve)
Half-Life 2: Episode One (HKLM-x32\...\Steam App 380) (Version: - Valve)
Half-Life 2: Episode Two (HKLM-x32\...\Steam App 420) (Version: - Valve)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hitman Absolution v1.0.446.0 (HKLM-x32\...\Hitman Absolution_is1) (Version: - )
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.36 - Irfan Skiljan)
Java 7 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
LIMBO (HKU\S-1-5-21-1363250933-3302703128-408898543-1004\...\Limbo) (Version: - )
Mafia Game (HKLM-x32\...\Mafia Game) (Version: - )
Max Payne (HKLM-x32\...\Steam App 12140) (Version: - Remedy Entertainment)
Max Payne 3 (HKLM-x32\...\Steam App 204100) (Version: - Rockstar Studios)
Max Payne 3 Česky od Being.cz (HKLM\...\MaxPayne3cz) (Version: ERROR - Being Czech Republic)
Max Payne 3 Česky od Being.cz (HKLM-x32\...\MaxPayne3cz) (Version: ERROR - Being Czech Republic)
Medal of Honor Allied Assault (HKLM-x32\...\{0DEA94ED-915A-4834-A87E-388D012C8E02}) (Version: - )
Medal of Honor Allied Assault v 1.0.0.1 (HKLM-x32\...\Medal of Honor Allied Assault v 1.0.0.1_is1) (Version: - .)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0405-0000-0000000FF1CE}) (Version: 12.0.6334.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Mozilla Firefox 30.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 cs)) (Version: 30.0 - Mozilla)
NVIDIA GeForce Experience 2.1.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.3 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 344.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 344.48 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 344.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 344.46 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 344.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.48 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA Virtuální audio Miracast 344.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 344.48 - NVIDIA Corporation)
Oblivion (HKLM-x32\...\{35CB6715-41F8-4F99-8881-6FC75BF054B0}) (Version: 1.00.0000 - Bethesda Softworks)
Orcs Must Die! (HKLM-x32\...\Steam App 102600) (Version: - Robot Entertainment)
Orcs Must Die! 2 (HKLM-x32\...\Steam App 201790) (Version: - Robot Entertainment)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Outlast (HKLM-x32\...\Outlast) (Version: UPDATE 6 - Red Barrels Games)
Ovládací panel NVIDIA 344.48 (Version: 344.48 - NVIDIA Corporation) Hidden
Plants vs. Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
RAGE (HKLM-x32\...\Steam App 9200) (Version: - id Software)
Razer Core (HKLM-x32\...\Razer Core) (Version: 1.0.1.66 - Razer Inc)
Razer Synapse 2.0 (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.18.23036 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
Resident Evil 6 (HKLM-x32\...\Resident Evil 6_R.G. Mechanics_is1) (Version: - R.G. Mechanics, Galfimbul)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
SAW - The Video Game (HKLM-x32\...\SAW - The Video Game_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
Serious Sam 3: BFE (HKLM-x32\...\{D29920C8-EA21-425A-B19F-0C4491A9CF14}) (Version: 1.0 - Croteam)
SHIELD Streaming (Version: 3.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.56 - NVIDIA Corporation) Hidden
Singularity(TM) (HKLM-x32\...\InstallShield_{3FAD68D9-1FA1-4871-9ADF-9151D969E943}) (Version: 1.00.0000 - Activision)
Smart Menu (HKU\.DEFAULT\...\Smart Menu) (Version: 4.8 - Smart Menu)
Smart Menu (HKU\S-1-5-21-1363250933-3302703128-408898543-1004\...\Smart Menu) (Version: 4.3 - Smart Menu)
Sniper Elite 3 (HKLM-x32\...\U25pcGVyRWxpdGUz_is1) (Version: 1 - )
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 7 - Gameforge Productions GmbH)
The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.0 - Electronic Arts)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: - )
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
TrackMania Nations Forever (HKLM-x32\...\Steam App 11020) (Version: - Nadeo)
Ulož.to File Manager verze 1.6 (HKLM-x32\...\{8190420D-F4BA-4744-8940-A466F81AF89C}_is1) (Version: 1.6 - Nodus Technologies s.r.o.)
Uplay (HKLM-x32\...\Uplay) (Version: 4.3 - Ubisoft)
Valiant Hearts: The Great War (HKLM-x32\...\VmFsaWFudEhlYXJ0c1RoZUdyZWF0V2Fy_is1) (Version: 1 - )
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WATCH_DOGS (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft)
Widevine Media Optimizer Chrome 6.0.0 (HKLM-x32\...\optimizer_chrome) (Version: 6.0.0.12757 - Widevine Technologies)
Widevine Media Optimizer Chrome 6.0.0 (HKU\S-1-5-21-1363250933-3302703128-408898543-1004\...\optimizer_chrome) (Version: 6.0.0.12757 - Widevine Technologies)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Wolfenstein The New Order (HKLM-x32\...\Wolfenstein The New Order_is1) (Version: - Bethsheda)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points =========================

21-11-2014 17:38:00 Windows Update
28-11-2014 22:58:33 Windows Update
08-12-2014 13:14:47 Naplánovaný kontrolní bod

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2014-12-08 21:41 - 00000753 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {061EB1E3-AD3C-414D-9905-F0EA3C0F4D68} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-12-08] (AVAST Software)
Task: {3DE6B0C7-DE24-483E-BCA9-35A13CA96DC8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-02-20] (Piriform Ltd)
Task: {553397E8-5177-44E2-980D-E926C501A0EC} - System32\Tasks\Java Updater => C:\Users\Gambac\AppData\Roaming\nircmd.exe
Task: {58BEF868-88B2-45FD-8C50-D12B5F22D594} - \Optimize Start Menu Cache Files-S-1-5-21-1363250933-3302703128-408898543-1001 No Task File <==== ATTENTION
Task: {9177E8EE-4B7B-40F8-8592-B532059AE197} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-13] (Google Inc.)
Task: {99E18800-E78D-4751-818F-2E99F1C6FBDF} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-11-22] (Microsoft Corporation)
Task: {B59523F9-A508-4CF0-9F25-53DA02D43A9C} - \WPD\SqmUpload_S-1-5-21-1363250933-3302703128-408898543-1001 No Task File <==== ATTENTION
Task: {B7D2149B-4962-4447-98F0-AAA1746222D2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-13] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-05-25 13:42 - 2014-10-30 11:12 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-03-13 09:30 - 2014-03-13 09:30 - 00249472 _____ () C:\Program Files\Smart Menu\WinStartMenuLauncher.exe
2014-10-31 23:27 - 2014-10-31 23:27 - 00183488 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2014-02-03 22:08 - 2014-10-16 15:11 - 00116880 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-12-08 21:04 - 2014-12-08 21:04 - 02905088 _____ () C:\Program Files\AVAST Software\Avast\defs\14120801\algo.dll
2014-12-09 18:45 - 2014-12-09 18:45 - 02905088 _____ () C:\Program Files\AVAST Software\Avast\defs\14120901\algo.dll
2014-12-08 21:04 - 2014-12-08 21:04 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-11-27 13:21 - 2014-11-25 07:39 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\libglesv2.dll
2014-11-27 13:21 - 2014-11-25 07:39 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\libegl.dll
2014-11-27 13:21 - 2014-11-25 07:39 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\pdf.dll
2014-11-27 13:21 - 2014-11-25 07:39 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:56E2E879

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "GamePark klient 2.lnk"
HKLM\...\StartupApproved\Run32: => "8e3bc91142bd8d798a10a1667ae4d2be"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKU\S-1-5-21-1363250933-3302703128-408898543-1004\...\StartupApproved\Run: => "8e3bc91142bd8d798a10a1667ae4d2be"
HKU\S-1-5-21-1363250933-3302703128-408898543-1004\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-1363250933-3302703128-408898543-1004\...\StartupApproved\Run: => "SpeedUpMyComputer"
HKU\S-1-5-21-1363250933-3302703128-408898543-1004\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-1363250933-3302703128-408898543-1004\...\StartupApproved\Run: => "Akamai NetSession Interface"

========================= Accounts: ==========================

Administrator (S-1-5-21-1363250933-3302703128-408898543-500 - Administrator - Disabled)
ASPNET (S-1-5-21-1363250933-3302703128-408898543-1011 - Limited - Enabled)
Gambac (S-1-5-21-1363250933-3302703128-408898543-1004 - Administrator - Enabled) => C:\Users\Gambac
Guest (S-1-5-21-1363250933-3302703128-408898543-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1363250933-3302703128-408898543-1010 - Limited - Enabled)
oem (S-1-5-21-1363250933-3302703128-408898543-1001 - Administrator - Enabled) => C:\Users\oem

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/09/2014 06:40:38 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (12/09/2014 06:40:38 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a value of the ProxyServer registry value

Error: (12/09/2014 06:40:38 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a buffer size for the ProxyServer registry value, code: 1008

Error: (12/09/2014 06:40:38 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (12/09/2014 07:12:22 AM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (12/09/2014 07:12:22 AM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a value of the ProxyServer registry value

Error: (12/09/2014 07:12:22 AM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a buffer size for the ProxyServer registry value, code: 1008

Error: (12/09/2014 07:12:22 AM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (12/08/2014 09:08:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program RSITx64.exe verze 0.0.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 8a90

Čas spuštění: 01d013227fdaaa40

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Users\Gambac\Desktop\RSITx64.exe

ID hlášení: f8a81786-7f15-11e4-8274-d43d7ef5b151

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (12/08/2014 08:57:37 PM) (Source: MsiInstaller) (EventID: 11309) (User: Gambo)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt. System error 3. Verify that the file exists and that you can access it.


System errors:
=============
Error: (12/08/2014 09:57:04 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/08/2014 09:57:03 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/08/2014 09:57:03 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/08/2014 09:57:03 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/08/2014 09:57:02 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/08/2014 09:36:40 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Superfetch byla ukončena s následující chybou:
%%1062

Error: (12/08/2014 09:36:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Razer Game Scanner byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.

Error: (12/08/2014 09:36:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (12/08/2014 09:36:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba zařazování tisku byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.

Error: (12/08/2014 09:36:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2014-11-29 12:30:07.676
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-11-22 07:37:29.911
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-11-15 07:27:15.533
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-11-05 08:54:25.667
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-10-16 11:50:45.511
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-29 19:39:12.289
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-29 19:39:12.186
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-29 19:38:58.085
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-29 19:38:57.943
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-29 19:38:57.734
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-4130 CPU @ 3.40GHz
Percentage of memory in use: 17%
Total physical RAM: 8120.07 MB
Available physical RAM: 6665.01 MB
Total Pagefile: 9400.07 MB
Available Pagefile: 7413.36 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.17 GB) (Free:293.57 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: C7EBC32A)
Partition 1: (Active) - (Size=352 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS)

==================== End Of Log ============================