neco mi zhazuje prohlizec

[valentyne187]

Ahoj,
cim dal casteji mi vyskakuje jedno az tri okna s chybou (nelze nalezt C:/program) a kdyz mam zrovna spustenou operu, tak spadne... nejaka ochrana aplikace (windows 8) pise, ze je to malware prenastavujici prohlizec, ale nedari se ji to smazat..

proto jsem pouzil CCleaner a nasledne udelal log v RSIT

prosim moc o kontrolu a doporuceni postupu... pokud by byla nutna reinstalace windows, mel bych dotaz, jak to muzu provest bez instalacniho CD. Notebook jsem kupoval z CZC uz s windows8..
jinak vim, ze bych mel mit vic volneho mista na disku musim vice vypalovat
celkove bych chtel aby byl notebook zase rychlejsi..
je to HP probook 4340s, mam ho od rijna 2013

dekuji mockrat, tady je log:

Logfile of random's system information tool 1.10 (written by random/random)
Run by ***** at 2015-01-07 20:58:17
Microsoft Windows 8
System drive C: has 17 GB (4%) free of 459 GB
Total RAM: 3977 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:58:23, on 7. 1. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17183)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Users\*****\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Users\*****\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe
C:\Users\*****\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Users\*****\AppData\Local\VNT\vntldr.exe
C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe
C:\Program Files\trend micro\*****.exe
C:\Program Files (x86)\Mobogenie\mgusb.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dosearches.com/?utm_source=b ... 1383313521
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dosearches.com/?utm_source=b ... 1383313521
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkID= ... chTerms%7D
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UsProvider Class - {539F76FD-084E-4858-86D5-62F02F54AE86} - C:\Program Files (x86)\Minibar\Minibar.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Users\*****\AppData\Local\Linkey\IEExtension\iedll.dll
O2 - BHO: AppGraffiti - {6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} - C:\Program Files (x86)\APPGRA~1\APPGRA~1.DLL
O2 - BHO: MinibarBHO - {AA74D58F-ACD0-450D-A85E-6C04B171C044} - C:\Program Files (x86)\Minibar\Minibar.dll
O2 - BHO: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [RemoteControl10] "c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - HKLM\..\Run: [VNT] "C:\Program Files (x86)\VNT\vntldr.exe"
O4 - HKLM\..\Run: [BtTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [Smart File Advisor] "C:\Program Files (x86)\Smart File Advisor\sfa.exe" /checkassoc
O4 - HKLM\..\Run: [SFAUpdater] "C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe"
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [AGupdate] C:\Program Files (x86)\AppGraffiti\AGupdate.exe
O4 - HKCU\..\Run: [icq] C:\Users\*****\AppData\Roaming\ICQM\icq.exe -CU
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\*****\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\*****\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [SpeedUpMyComputer] C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as
O4 - HKCU\..\Run: [AppsHat] C:\Users\*****\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe
O4 - HKCU\..\Run: [FLV Player] C:\Users\*****\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_15_0_0_246_Plugin.exe -update plugin
O4 - Global Startup: GamePark klient 2.lnk = C:\Program Files\GamePark2\gpcl.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: Stáhnout FDM - file://C:\Program Files (x86)\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video FDM - file://C:\Program Files (x86)\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané FDM - file://C:\Program Files (x86)\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše FDM - file://C:\Program Files (x86)\Free Download Manager\dlall.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\MICROS~3\WEB2~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: Visit AppsHat.com - {AAA38851-3CFF-475F-B5E0-720D3645E4A5} - C:\Program Files (x86)\Minibar\Minibar.dll
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\*****\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\*****\AppData\Roaming\ICQM\icq.exe (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWow64\skype4com.dll
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem7.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: RelevantKnowledge - TMRG, Inc. - C:\Program Files (x86)\RelevantKnowledge\rlservice.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Systemk Service (SystemkService) - Aztec Media Inc - C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16575 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
"dwm.exe"
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\vcsFPService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
dashost.exe {20a24aff-9771-4196-b2b65335997e518b}
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PnkBstrB.exe
"C:\Program Files (x86)\RelevantKnowledge\rlservice.exe" /service
"C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe"
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe"
"C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe" -monitor 508
"C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesService64.exe"
"C:\Program Files\Windows Defender\MsMpEng.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesApp64.exe" /TUStart /pid:2588
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c4690116-2c50-4315-882b-9cf2b4b0b4ae -SystemEventPortName:HostProcess-1e74848f-574c-4d6d-86af-af075a58a75b -IoCancelEventPortName:HostProcess-ff2ff884-67f6-450a-85ea-7b8ed6750ac4 -NonStateChangingEventPortName:HostProcess-c74871fc-ab33-4e17-bd65-6dedd22cad10 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:62f2cb66-848c-4d8f-9900-7fbe73fe2254 -DeviceGroupId:
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-9c271dbd-f518-4a74-91a6-d82b816b954c -SystemEventPortName:HostProcess-cb62a671-19c1-4f24-8cad-b1c7e2a402f1 -IoCancelEventPortName:HostProcess-cca22081-cea6-42f5-9fe3-9ee050d1b703 -NonStateChangingEventPortName:HostProcess-22d6375f-2208-455f-b4c0-5a0d271aaebb -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b53090f4-daa6-4a90-a481-317fc77cfbd1 -DeviceGroupId:WudfDefaultDevicePool
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Settings Manager\systemk\systemku.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
szndesktop.exe default start
"C:\Users\*****\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Users\*****\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe"
"C:\Users\*****\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe"
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Mobogenie\DaemonProcess.exe"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"C:\Users\*****\AppData\Local\VNT\vntldr.exe" /EXEC
"C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe" -boot
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
taskeng.exe {776D1D5D-FC13-4269-AB29-25C0AE9C716A}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-866173097-1738320259-1985661619-100280_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-866173097-1738320259-1985661619-100280 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 556 560 568 65536 564

"C:\Users\*****\Downloads\14_ochrana\RSITx64.exe"



======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\HPCeeScheduleFor*****.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleFor***** (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}]
Linkey - C:\Users\*****\AppData\Local\Linkey\IEExtension\iedll64.dll [2014-06-01 202768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-09-21 553896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-09-21 211880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}]
Linkey - C:\Users\*****\AppData\Local\Linkey\IEExtension\iedll.dll [2014-06-01 175632]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}]
AppGraffiti - C:\Program Files (x86)\APPGRA~1\APPGRA~1.DLL [2013-10-11 1035944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044}]
MinibarBHO - C:\Program Files (x86)\Minibar\Minibar.dll [2013-09-19 331264]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
Free Download Manager - C:\Program Files (x86)\Free Download Manager\iefdm2.dll [2014-09-23 365056]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-23 170304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-08-23 398656]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-23 441152]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-11-12 1664000]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"=c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe [2014-12-16 21720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AGupdate"=C:\Program Files (x86)\AppGraffiti\AGupdate.exe [2013-03-19 894048]
"icq"=C:\Users\*****\AppData\Roaming\ICQM\icq.exe [2013-11-21 29919576]
"cz.seznam.software.autoupdate"=C:\Users*****\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\*****\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
"SpeedUpMyComputer"=C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe [2013-07-22 2054776]
"AppsHat"=C:\Users\*****\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [2012-10-26 202752]
"FLV Player"=C:\Users\*****\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe [2012-10-26 202752]
"AlcoholAutomount"=C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-12-12 7394584]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_15_0_0_246_Plugin.exe [2014-12-09 855216]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-05-04 56568]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-08-06 642216]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-06-08 111120]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2012-07-24 491120]
"RemoteControl10"=c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"YouCam Mirage"=c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2012-08-31 136488]
"YouCam Tray"=c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [2012-08-31 167024]
"mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [2013-10-15 735936]
"ApnTBMon"=C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2014-12-13 1970584]
"VNT"=C:\Program Files (x86)\VNT\vntldr.exe [2014-08-22 196504]
"BtTray"=C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2012-09-19 371976]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"Smart File Advisor"=C:\Program Files (x86)\Smart File Advisor\sfa.exe [2013-10-30 283712]
"SFAUpdater"=C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe [2013-10-28 655936]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2013-06-05 683656]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2013-10-16 337184]
""= []
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2014-12-13 3838800]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
GamePark klient 2.lnk - C:\Program Files\GamePark2\gpcl.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-23 441856]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe]
"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"msacm.ac3filter"=ac3filter64.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2015-01-07 20:58:17 ----D---- C:\rsit
2015-01-07 20:58:17 ----D---- C:\Program Files\trend micro
2015-01-07 20:46:29 ----D---- C:\Program Files\CCleaner
2015-01-02 15:37:53 ----D---- C:\Downloads
2015-01-02 15:36:41 ----D---- C:\ProgramData\Free Download Manager
2015-01-02 15:36:34 ----D---- C:\Users\*****AppData\Roaming\Free Download Manager
2015-01-02 15:35:25 ----D---- C:\Program Files (x86)\Free Download Manager
2014-12-23 11:28:59 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2014-12-17 14:36:45 ----A---- C:\Windows\system32\NotificationUI.exe
2014-12-17 14:36:45 ----A---- C:\Windows\system32\AutoUpdate.exe
2014-12-15 19:49:43 ----D---- C:\Program Files (x86)\bitComposer Games
2014-12-15 16:25:52 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-13 17:01:04 ----AH---- C:\Windows\system32\drivers\Hamdrv.sys
2014-12-12 21:23:04 ----A---- C:\Windows\SYSWOW64\vsstrace.dll
2014-12-12 21:23:04 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2014-12-12 21:23:04 ----A---- C:\Windows\system32\vsstrace.dll
2014-12-12 21:23:04 ----A---- C:\Windows\system32\vssapi.dll
2014-12-12 21:23:03 ----A---- C:\Windows\system32\VSSVC.exe
2014-12-11 16:54:53 ----A---- C:\Windows\system32\shell32.dll
2014-12-11 16:54:51 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-12-11 16:54:48 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2014-12-11 16:54:47 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2014-12-11 16:54:47 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2014-12-11 16:54:47 ----A---- C:\Windows\system32\dnsapi.dll
2014-12-11 16:54:40 ----A---- C:\Windows\system32\dnsrslvr.dll
2014-12-11 16:54:06 ----A---- C:\Windows\system32\mshtml.dll
2014-12-11 16:54:01 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-12-11 16:53:58 ----A---- C:\Windows\system32\ieframe.dll
2014-12-11 16:53:55 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-12-11 16:53:53 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-12-11 16:53:53 ----A---- C:\Windows\system32\iertutil.dll
2014-12-11 16:53:52 ----A---- C:\Windows\system32\wininet.dll
2014-12-11 16:53:51 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-12-11 16:53:51 ----A---- C:\Windows\system32\urlmon.dll
2014-12-11 16:53:50 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-12-11 16:53:50 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-11 16:53:49 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-12-11 16:53:49 ----A---- C:\Windows\system32\uxtheme.dll
2014-12-11 16:53:49 ----A---- C:\Windows\system32\jscript.dll
2014-12-11 16:53:48 ----A---- C:\Windows\system32\iesysprep.dll
2014-12-11 16:53:47 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-12-11 16:53:47 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-12-11 16:53:47 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-12-11 16:53:47 ----A---- C:\Windows\system32\jscript9.dll
2014-12-11 16:53:46 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-11 16:53:44 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-12-11 16:53:42 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-11 16:53:41 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-12-11 16:53:41 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-12-11 16:53:41 ----A---- C:\Windows\system32\msrating.dll
2014-12-11 16:53:41 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-11 16:53:38 ----A---- C:\Windows\SYSWOW64\UXInit.dll
2014-12-11 16:53:38 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-12-11 16:53:38 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-12-11 16:53:38 ----A---- C:\Windows\system32\UXInit.dll
2014-12-11 16:53:38 ----A---- C:\Windows\system32\iernonce.dll
2014-12-11 16:53:38 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-11 16:53:34 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-12-11 16:53:33 ----A---- C:\Windows\system32\dxtmsft.dll
2014-12-11 16:53:32 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-12-11 16:53:32 ----A---- C:\Windows\system32\jsproxy.dll
2014-12-11 16:53:31 ----A---- C:\Windows\system32\iesetup.dll
2014-12-11 16:53:30 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-12-11 16:53:29 ----A---- C:\Windows\SYSWOW64\uxtheme.dll
2014-12-11 16:51:30 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-12-11 16:51:30 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-12-11 16:49:26 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-12-11 16:49:26 ----A---- C:\Windows\system32\crypt32.dll
2014-11-19 18:52:43 ----A---- C:\Windows\system32\kerberos.dll
2014-11-19 18:52:27 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-19 18:52:21 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-19 18:52:20 ----A---- C:\Windows\system32\pku2u.dll
2014-11-13 20:27:29 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2014-11-13 20:27:29 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2014-11-13 20:27:27 ----A---- C:\Windows\system32\win32k.sys
2014-11-13 20:27:15 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-13 20:27:15 ----A---- C:\Windows\system32\msi.dll
2014-11-13 20:27:12 ----A---- C:\Windows\SYSWOW64\twinui.dll
2014-11-13 20:27:11 ----A---- C:\Windows\system32\twinui.dll
2014-11-13 20:27:11 ----A---- C:\Windows\system32\authui.dll
2014-11-13 20:27:10 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-11-13 20:27:10 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-11-13 20:27:10 ----A---- C:\Windows\system32\msihnd.dll
2014-11-13 20:27:07 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-13 20:27:07 ----A---- C:\Windows\system32\msxml3.dll
2014-11-13 20:27:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-13 20:27:02 ----A---- C:\Windows\system32\schannel.dll
2014-11-13 20:27:01 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2014-11-13 20:27:01 ----A---- C:\Windows\system32\ncryptsslp.dll
2014-11-13 20:26:33 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-13 20:26:33 ----A---- C:\Windows\system32\packager.dll
2014-11-13 18:55:21 ----A---- C:\Windows\SYSWOW64\FXSAPI.dll
2014-11-13 18:55:20 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2014-11-13 18:55:20 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-11-13 18:55:19 ----A---- C:\Windows\SYSWOW64\FXSCOMEX.dll
2014-11-13 18:55:19 ----A---- C:\Windows\system32\FXSCOMEX.dll
2014-11-13 18:55:17 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2014-11-13 18:55:17 ----A---- C:\Windows\system32\rpchttp.dll
2014-11-13 18:55:17 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2014-11-13 18:55:16 ----A---- C:\Windows\system32\FXST30.dll
2014-11-13 18:55:14 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-11-13 18:55:13 ----A---- C:\Windows\system32\FXSTIFF.dll
2014-11-13 18:55:13 ----A---- C:\Windows\system32\FXSAPI.dll
2014-11-13 18:55:11 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-11-13 18:55:11 ----A---- C:\Windows\system32\WsmSvc.dll
2014-11-13 18:54:57 ----A---- C:\Windows\system32\EncDump.dll
2014-11-13 18:54:57 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2014-11-13 18:54:56 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-13 18:54:56 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-13 18:54:43 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-13 18:54:43 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-13 18:52:26 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-13 18:52:26 ----A---- C:\Windows\system32\msaudite.dll
2014-11-13 18:52:26 ----A---- C:\Windows\system32\adtschema.dll
2014-11-13 18:52:25 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-13 18:52:18 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2014-11-13 18:52:17 ----A---- C:\Windows\system32\SHCore.dll
2014-11-13 18:52:14 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-13 18:52:13 ----A---- C:\Windows\system32\rdpcorets.dll
2014-11-13 18:52:07 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-08 20:12:57 ----D---- C:\Windows\system32\AutoUpdateLicense
2014-10-28 21:14:26 ----A---- C:\Windows\system32\WSShared.dll
2014-10-28 21:14:25 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2014-10-28 21:14:25 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-28 21:14:25 ----A---- C:\Windows\system32\WinSetupUI.dll
2014-10-28 21:14:25 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-28 21:14:25 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2014-10-28 18:20:21 ----A---- C:\Windows\system32\FNTCACHE.DAT
2014-10-17 15:49:41 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-17 15:49:41 ----A---- C:\Windows\system32\rastls.dll
2014-10-17 15:49:36 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-10-17 15:49:36 ----A---- C:\Windows\system32\mstscax.dll
2014-10-17 15:49:35 ----A---- C:\Windows\system32\termsrv.dll
2014-10-17 15:49:34 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-17 15:49:34 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-10-17 15:49:34 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2014-10-17 15:49:34 ----A---- C:\Windows\system32\winsta.dll
2014-10-17 15:49:34 ----A---- C:\Windows\system32\mstsc.exe
2014-10-15 20:40:40 ----A---- C:\Windows\system32\ntdll.dll
2014-10-15 20:40:37 ----A---- C:\Windows\system32\localspl.dll
2014-10-15 20:40:35 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-10-15 20:40:34 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-10-15 20:40:33 ----A---- C:\Windows\system32\storagewmi.dll
2014-10-15 20:40:31 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-10-15 20:40:30 ----A---- C:\Windows\system32\wcmsvc.dll
2014-10-15 20:40:30 ----A---- C:\Windows\system32\d3d10warp.dll
2014-10-15 20:40:27 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2014-10-15 20:40:27 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-10-15 20:40:27 ----A---- C:\Windows\system32\winload.exe
2014-10-15 20:40:26 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2014-10-15 20:40:26 ----A---- C:\Windows\system32\dwmapi.dll
2014-10-15 20:40:24 ----A---- C:\Windows\system32\wcmcsp.dll
2014-10-15 20:40:24 ----A---- C:\Windows\system32\profsvc.dll
2014-10-15 20:40:24 ----A---- C:\Windows\system32\drivers\volsnap.sys
2014-10-15 20:40:23 ----A---- C:\Windows\system32\win32spl.dll
2014-10-15 20:40:22 ----A---- C:\Windows\system32\defragsvc.dll
2014-10-15 20:40:14 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-10-15 20:40:14 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-10-15 20:40:14 ----A---- C:\Windows\SYSWOW64\KBDRUM.DLL
2014-10-15 20:40:14 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-10-15 20:40:14 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2014-10-15 20:40:14 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-10-15 20:40:14 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-10-15 20:40:14 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-10-15 20:40:14 ----A---- C:\Windows\system32\KBDRUM.DLL
2014-10-15 20:40:14 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-10-15 20:40:14 ----A---- C:\Windows\system32\KBDRU.DLL
2014-10-15 20:40:14 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-10-15 20:40:14 ----A---- C:\Windows\system32\Defrag.exe
2014-10-15 20:33:53 ----A---- C:\Windows\system32\user32.dll
2014-10-15 20:33:53 ----A---- C:\Windows\system32\srvsvc.dll
2014-10-15 20:33:53 ----A---- C:\Windows\system32\drivers\srvnet.sys
2014-10-15 20:33:53 ----A---- C:\Windows\system32\drivers\srv2.sys
2014-10-15 20:33:53 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2014-10-15 20:33:53 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2014-10-15 20:33:52 ----A---- C:\Windows\SYSWOW64\user32.dll
2014-10-15 20:33:52 ----A---- C:\Windows\system32\msdtctm.dll
2014-10-15 20:33:52 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2014-10-15 20:33:48 ----A---- C:\Windows\system32\sscore.dll
2014-10-15 20:33:47 ----A---- C:\Windows\SYSWOW64\sscore.dll
2014-10-15 20:33:30 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2014-10-15 20:33:28 ----A---- C:\Windows\system32\actxprxy.dll
2014-10-10 18:17:00 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-10-10 18:15:46 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2014-10-10 17:52:51 ----D---- C:\Program Files\GamePark2
2014-10-10 17:45:21 ----SHD---- C:\Windows\ftpcache
2014-10-10 17:44:45 ----A---- C:\Windows\game.ini
2014-10-10 17:27:22 ----D---- C:\Program Files (x86)\Activision

======List of files/folders modified in the last 3 months======

2015-01-07 20:58:18 ----D---- C:\ProgramData\systemk
2015-01-07 20:58:17 ----RD---- C:\Program Files
2015-01-07 20:58:10 ----D---- C:\Windows\Prefetch
2015-01-07 20:57:17 ----D---- C:\Users\*****\AppData\Roaming\DAEMON Tools Lite
2015-01-07 20:57:16 ----D---- C:\Users\*****\AppData\Roaming\uTorrent
2015-01-07 20:57:16 ----D---- C:\ProgramData\BlueStacksSetup
2015-01-07 20:56:56 ----D---- C:\Windows\Panther
2015-01-07 20:56:56 ----D---- C:\Windows\Inf
2015-01-07 20:56:55 ----D---- C:\Windows\SoftwareDistribution
2015-01-07 20:56:55 ----D---- C:\Windows\Minidump
2015-01-07 20:56:55 ----D---- C:\Windows\Logs
2015-01-07 20:56:55 ----D---- C:\Windows\debug
2015-01-07 20:56:55 ----D---- C:\Windows
2015-01-07 20:56:43 ----D---- C:\Windows\Temp
2015-01-07 20:47:28 ----D---- C:\ProgramData\PDFC
2015-01-07 20:46:39 ----D---- C:\Windows\system32\Tasks
2015-01-07 20:13:10 ----A---- C:\Windows\SYSWOW64\bscs.ini
2015-01-07 20:10:15 ----D---- C:\Windows\system32\sru
2015-01-07 20:10:10 ----A---- C:\Windows\SYSWOW64\LOCALSERVICE.INI
2015-01-07 20:10:01 ----A---- C:\Windows\SYSWOW64\LOCALDEVICE.INI
2015-01-07 19:14:29 ----D---- C:\Program Files (x86)\RelevantKnowledge
2015-01-07 18:21:28 ----D---- C:\Windows\Microsoft.NET
2015-01-07 17:38:52 ----D---- C:\Program Files (x86)\Opera
2015-01-06 18:20:39 ----D---- C:\Windows\Tasks
2015-01-06 18:16:50 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2015-01-05 21:22:45 ----HD---- C:\$Windows.~BT
2015-01-05 21:14:15 ----D---- C:\Windows\system32\catroot
2015-01-05 20:19:40 ----SHD---- C:\System Volume Information
2015-01-03 19:02:50 ----D---- C:\Users\*****\AppData\Roaming\Seznam.cz
2015-01-03 19:01:29 ----RD---- C:\Windows\System32
2015-01-03 19:01:29 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-03 18:57:46 ----A---- C:\Windows\SYSWOW64\log.txt
2015-01-02 15:36:41 ----HD---- C:\ProgramData
2015-01-02 15:35:25 ----RD---- C:\Program Files (x86)
2015-01-01 13:46:27 ----D---- C:\Windows\system32\NDF
2014-12-31 12:14:31 ----N---- C:\Windows\system32\MpSigStub.exe
2014-12-29 16:55:21 ----D---- C:\Users\*****\AppData\Roaming\vlc
2014-12-26 21:00:25 ----SHD---- C:\Windows\Installer
2014-12-26 21:00:14 ----D---- C:\Windows\Hewlett-Packard
2014-12-26 20:59:46 ----D---- C:\swsetup
2014-12-23 11:29:13 ----D---- C:\Windows\system32\Drivers
2014-12-21 13:17:08 ----D---- C:\Windows\system32\config
2014-12-20 19:24:17 ----D---- C:\Windows\system32\catroot2
2014-12-20 19:16:42 ----HD---- C:\Program Files\WindowsApps
2014-12-20 19:16:42 ----D---- C:\Windows\AUInstallAgent
2014-12-19 11:54:31 ----D---- C:\Windows\WinSxS
2014-12-18 19:43:26 ----D---- C:\Windows\CbsTemp
2014-12-15 20:43:18 ----D---- C:\Program Files (x86)\PokerStars
2014-12-15 20:41:55 ----D---- C:\Windows\rescache
2014-12-15 18:02:37 ----D---- C:\Program Files (x86)\VNT
2014-12-15 16:25:52 ----D---- C:\Windows\SysWOW64
2014-12-15 16:21:07 ----RD---- C:\Windows\ToastData
2014-12-15 16:21:01 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-15 16:20:55 ----D---- C:\Program Files\Internet Explorer
2014-12-15 16:20:52 ----D---- C:\Windows\SYSWOW64\en-US
2014-12-15 16:20:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-12-15 16:20:52 ----D---- C:\Windows\system32\en-US
2014-12-15 16:20:52 ----D---- C:\Windows\system32\cs-CZ
2014-12-15 16:20:31 ----D---- C:\Windows\system32\MRT
2014-12-15 16:14:58 ----A---- C:\Windows\system32\MRT.exe
2014-11-16 15:51:22 ----D---- C:\Program Files (x86)\AppGraffiti
2014-11-15 19:12:48 ----RSD---- C:\Windows\assembly
2014-11-14 19:06:40 ----D---- C:\Program Files\Windows Defender
2014-11-14 19:06:38 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-14 19:05:31 ----D---- C:\Windows\system32\DriverStore
2014-11-08 20:12:57 ----D---- C:\Windows\WinStore
2014-10-31 18:07:57 ----A---- C:\Windows\SYSWOW64\rlls.dll
2014-10-31 18:07:57 ----A---- C:\Windows\system32\rlls64.dll
2014-10-19 17:46:12 ----D---- C:\Windows\SYSWOW64\wbem
2014-10-19 17:46:11 ----D---- C:\Windows\system32\Boot
2014-10-19 17:46:10 ----D---- C:\Windows\system32\wbem
2014-10-19 17:46:07 ----RSD---- C:\Windows\Fonts
2014-10-19 17:45:48 ----D---- C:\Windows\system32\drivers\en-US
2014-10-19 17:45:48 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-10-10 18:15:46 ----D---- C:\Windows\system32\LogFiles
2014-10-10 17:46:39 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem19.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\Windows\System32\drivers\amdkmpfd.sys [2012-07-09 35496]
R0 hpdskflt;@oem7.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2012-08-22 31040]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-05-04 641672]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-01-26 386680]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 F06DEFF2-5B9C-490D-910F-35D3A91196222;F06DEFF2-5B9C-490D-910F-35D3A91196222; \??\C:\Program Files (x86)\Settings Manager\systemk\x64\systemkmgrc2.cfg [2014-07-09 41872]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2013-12-21 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2013-12-21 43680]
R3 Accelerometer;@oem7.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2012-08-22 43328]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-08-01 10280960]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-08-01 368640]
R3 BtAudioBusSrv;@oem15.inf,%SvcDesc%;Ralink Bluetooth Audio Bus Service; C:\Windows\System32\Drivers\BtAudioBus.sys [2012-06-15 23136]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\Windows\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [2012-10-02 48608]
R3 clwvd;@oem26.inf,%clwvd.DeviceDesc%;CyberLink Webcam Sharing Manager; C:\Windows\system32\DRIVERS\clwvd.sys [2012-08-28 40944]
R3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\Windows\system32\DRIVERS\Hamdrv.sys [2014-12-13 45112]
R3 HpqKbFiltr;@oem5.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\Windows\System32\drivers\HpqKbFiltr.sys [2012-08-27 26504]
R3 IntcDAud;@oem21.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2012-08-23 9000256]
R3 JMCR;JMCR; C:\Windows\System32\drivers\jmcr.sys [2013-12-10 176880]
R3 MEIx64;@oem36.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECIx64.sys [2014-02-04 62784]
R3 netr28x;@oem39.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-12-04 2505904]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 rtbth;@oem37.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\Windows\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@oem6.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-06-13 683664]
R3 SensorsServiceDriver;@sensorsservicedriver.inf,%WudfSensorsServiceDriverDisplayName%;UMDF Reflector service for SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 198656]
R3 SNP2UVC;@oem22.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2012-10-04 1864328]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2012-11-12 543744]
R3 SynTP;@oem34.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-10-30 549104]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 DAMDrv;DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [2012-11-09 64832]
S3 dg_ssudbus;@oem41.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 e1iexpress;@net1ic64.inf,%E1IExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\Windows\system32\DRIVERS\e1i63x64.sys [2012-06-02 333824]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-23 9000256]
S3 SmbDrv;SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [2012-08-15 41272]
S3 SmbDrvI;SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [2012-08-15 43832]
S3 ssudmdm;@oem43.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesDriver64.sys []
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-01 43008]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-05 210560]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-08-01 239616]
R2 APNMCP;Ask Update Service; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [2014-10-23 166296]
R2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2012-09-26 1612552]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2012-10-26 488824]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-12-13 2530640]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2013-10-16 681760]
R2 hpsrv;@oem7.inf,%hpservice_desc%;HP Service; C:\Windows\system32\Hpservice.exe [2012-08-22 33600]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-05-04 15496]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2014-02-04 131032]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-02-04 165336]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-12-02 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-02-04 279000]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-06-05 1143432]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-10 75064]
R2 PnkBstrB;PnkBstrB; C:\Windows\syswow64\PnkBstrB.exe [2014-11-21 214520]
R2 RelevantKnowledge;RelevantKnowledge; C:\Program Files (x86)\RelevantKnowledge\rlservice.exe [2014-10-31 213784]
R2 ScsiAccess;ScsiAccess; C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe [2014-03-18 181312]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2012-11-12 327680]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 SystemkService;Systemk Service; C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe [2014-07-09 3572240]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesService64.exe [2013-10-12 2099000]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2014-02-04 366040]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2013-09-12 3221392]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2012-09-19 146184]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-04 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09 267440]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-12 51648]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-08-23 276288]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2012-11-19 477056]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-04 116648]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 289256]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\Windows\System32\drivers\BthAvrcpTg.sys [2013-06-01 37632]
S4 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\Windows\System32\drivers\bthhfenum.sys [2012-07-26 51200]
S4 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\Windows\System32\drivers\BthHFHid.sys [2012-11-27 29952]

-----------------EOF-----------------

[vyosek]

Zdravim

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Po spusteni probehne stazeni databaze
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  resethosts;
  emptyclsid;
  IEdefaults;
  FFdefaults;
  CHRdefaults;
  emptyIEcache;
  emptyFFcache;
  emptyCHRcache;
  emptyalltemp;
  emptyflash;
  emptyjava;
  emptyrecycle.bin;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[valentyne187]

# AdwCleaner v4.107 - Report created 08/01/2015 at 17:51:39
# Updated 07/01/2015 by Xplode
# Database : 2015-01-03.1 [Live]
# Operating System : Windows 8 (64 bits)
# Username : ***** - NH4E7QW
# Running from : C:\Users\*****\Downloads\14_ochrana\adwcleaner_4.107.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : APNMCP
[#] Service Deleted : F06DEFF2-5B9C-490D-910F-35D3A91196222
Service Deleted : RelevantKnowledge
[#] Service Deleted : SystemkService

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\AskPartnerNetwork
[!] Folder Deleted : C:\ProgramData\systemk
Folder Deleted : C:\ProgramData\ytd video downloader
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppGraffiti
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader
Folder Deleted : C:\Program Files (x86)\AppGraffiti
Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\GreenTree Applications
Folder Deleted : C:\Program Files (x86)\Minibar
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Program Files (x86)\RelevantKnowledge
[!] Folder Deleted : C:\Program Files (x86)\Settings Manager
Folder Deleted : C:\Program Files (x86)\SmartTweak
Folder Deleted : C:\Program Files (x86)\VNT
Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
Folder Deleted : C:\Users\*****\AppData\Local\AppsHat Mobile Apps
Folder Deleted : C:\Users\*****\AppData\Local\AskPartnerNetwork
Folder Deleted : C:\Users\*****\AppData\Local\FilesFrog Update Checker
Folder Deleted : C:\Users\*****\AppData\Local\Linkey
Folder Deleted : C:\Users\*****\AppData\Local\Minibar
Folder Deleted : C:\Users\*****\AppData\Local\Mobogenie
Folder Deleted : C:\Users\*****\AppData\Local\VNT
[!] Folder Deleted : C:\Users\*****\AppData\Local\webplayer
Folder Deleted : C:\Users\*****\AppData\LocalLow\AppGraffiti
Folder Deleted : C:\Users\*****\AppData\LocalLow\Minibar
Folder Deleted : C:\Users\*****\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
Folder Deleted : C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Folder Deleted : C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
Folder Deleted : C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat
Folder Deleted : C:\Users\*****\Documents\Mobogenie
Folder Deleted : C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Folder Deleted : C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkndcbhcgphcfkkddanakjiepeknbgle
Folder Deleted : C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpcknfcdcgpffjddjeceioobdelceffo
Folder Deleted : C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncffjdbbodifgldkcbhmiiljfcnbgjab
Folder Deleted : C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaailpifkkekipiachodfkfmgmiapmp
File Deleted : C:\Windows\SysWOW64\rlls.dll
File Deleted : C:\Users\*****\daemonprocess.txt
File Deleted : C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx
File Deleted : C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ifohbjbgfchkkfhphahclmkpgejiplfo_0.localstorage

***** [ Scheduled Tasks ] *****

Task Deleted : SomotoUpdateCheckerAutoStart

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Shortcut Disinfected : C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player\Uninstall.lnk
Shortcut Disinfected : C:\Users\*****\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Shortcut Disinfected : C:\Users\*****\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\*****\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome (2).lnk
Shortcut Disinfected : C:\Users\*****\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\cekcjpgehmohobmdiikfnopibipmgnml
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mkndcbhcgphcfkkddanakjiepeknbgle
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ncffjdbbodifgldkcbhmiiljfcnbgjab
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaailpifkkekipiachodfkfmgmiapmp
Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\aaaailpifkkekipiachodfkfmgmiapmp
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [AppsHat]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [FLV Player]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [SpeedUpMyComputer]
Key Deleted : HKLM\SOFTWARE\Classes\AppGraffiti.AppGraffitiJS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\Linkey.Linkey
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [VNT]
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\iedll.dll
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [agupdate]
Key Deleted : HKCU\Software\ecc7c8c51c0850c1ec247c7fd3602f20
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6A7CD9EC-D8BD-4340-BCD0-77C09A282921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{539F76FD-084E-4858-86D5-62F02F54AE86}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{60EACC1A-33FA-443D-9846-17B28E2C9BDB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06E50566-0AB7-431C-841D-62794727DAF9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4613B1C1-FBC0-43C3-A4B9-B1D6CD360BB3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A0207057-3461-4F7F-B689-D016B7A03964}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A75ACCCD-3CC9-4865-8BE3-F523FDA2164F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{726E90BE-DC22-4965-B215-E0784DC26F47}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB02BC6B-B0F0-4074-99E6-884B70FCB6AE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F13D3582-1359-4F8F-9A48-EF3AE9F5701C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{54739D49-AC03-4C57-9264-C5195596B3A1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{539F76FD-084E-4858-86D5-62F02F54AE86}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{06E50566-0AB7-431C-841D-62794727DAF9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4613B1C1-FBC0-43C3-A4B9-B1D6CD360BB3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A0207057-3461-4F7F-B689-D016B7A03964}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A75ACCCD-3CC9-4865-8BE3-F523FDA2164F}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503}
Key Deleted : HKCU\Software\AppGraffiti
Key Deleted : HKCU\Software\AskPartnerNetwork
Key Deleted : HKCU\Software\CToolbar
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Linkey
Key Deleted : HKCU\Software\smarttweak
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Somoto
Key Deleted : HKCU\Software\SystemK
Key Deleted : HKCU\Software\usyndication.com
Key Deleted : HKCU\Software\Webplayer
Key Deleted : HKCU\Software\USyndication
Key Deleted : HKCU\Software\Video Player
Key Deleted : HKLM\SOFTWARE\AppGraffiti
Key Deleted : HKLM\SOFTWARE\AskPartnerNetwork
Key Deleted : HKLM\SOFTWARE\CToolbar
Key Deleted : HKLM\SOFTWARE\dosearchessoftware
Key Deleted : HKLM\SOFTWARE\InstallIQ
Key Deleted : HKLM\SOFTWARE\Linkey
Key Deleted : HKLM\SOFTWARE\Minibar
Key Deleted : HKLM\SOFTWARE\SystemK
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AppsHat Mobile Apps
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\FLV Player
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D08D9F98-1C78-4704-87E6-368B0023D831}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SpeedUpMyComputer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}
Key Deleted : [x64] HKLM\SOFTWARE\Linkey
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.17183

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [First Home Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]

-\\ Google Chrome v39.0.2171.95

[C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.dosearches.com/web/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=ds&from=smt&uid=HGSTXHTS545050A7E380_TM8514ZN3RBJLP3RBJLPX&ts=1383313531&type=default&q={searchTerms}
[C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.default-search.net/search?sid=503&a ... earchTerms}
[C:\Users\*****\AppData\Local\Chromium\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.default-search.net/search?sid=503&a ... earchTerms}

-\\ Chromium v

[C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.dosearches.com/web/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=ds&from=smt&uid=HGSTXHTS545050A7E380_TM8514ZN3RBJLP3RBJLPX&ts=1383313531&type=default&q={searchTerms}
[C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.default-search.net/search?sid=503&a ... earchTerms}
[C:\Users\*****\AppData\Local\Chromium\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.default-search.net/search?sid=503&a ... earchTerms}

-\\ Opera v26.0.1656.60

[C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.dosearches.com/web/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=ds&from=smt&uid=HGSTXHTS545050A7E380_TM8514ZN3RBJLP3RBJLPX&ts=1383313531&type=default&q={searchTerms}
[C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.default-search.net/search?sid=503&a ... earchTerms}
[C:\Users\*****\AppData\Local\Chromium\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.default-search.net/search?sid=503&a ... earchTerms}

*************************

AdwCleaner[R0].txt - [20052 octets] - [08/01/2015 17:49:51]
AdwCleaner[S0].txt - [19502 octets] - [08/01/2015 17:51:39]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [19563 octets] ##########

[vyosek]

Mate uzivatelske jmeno ***** nebo jste jej zamazal?? Jelikoz pokud budu tvorit nejaky skript, ve kterem se objevuje, tak jej tam musim dat, jinak mi to utilita nesezere a nesmaze\neopravi pozadovane

Jeste poprosim o Zoek

[valentyne187]

jmeno zaslu do PM

ZOEK jede, ale trva mu to uz 4h

edit: aha, tak neposlu jmeno je Vojtěch, kdyžtak tohle pak smažte, díky

[vyosek]

Ano, po dokonceni leceni klidne smaznem cely thread

Pokud se zoek nehybe, tak jej stopnete a vypnete

Dejte log z FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100 a nic v nem nemente

[valentyne187]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-01-2015
Ran by Vojtěch (administrator) on NH4E7QW on 09-01-2015 12:53:08
Running from C:\Users\Vojtěch\Desktop
Loaded Profile: Vojtěch (Available profiles: Vojtěch)
Platform: Windows 8 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
() C:\Program Files (x86)\Photodex\ProShowProducer\scsiaccess.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(AVG) C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesService64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(AVG) C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
() C:\Users\Vojtěch\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Vojtěch\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Filefacts.net) C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Mozilla Corporation) C:\Users\Vojtěch\Desktop\Tor Browser\Browser\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Users\Vojtěch\Desktop\Tor Browser\Tor\tor.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-11-12] (IDT, Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285832 2013-05-04] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [YouCam Mirage] => c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2012-08-31] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [167024 2012-08-31] (CyberLink Corp.)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [371976 2012-09-19] (IVT Corporation)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [Smart File Advisor] => C:\Program Files (x86)\Smart File Advisor\sfa.exe [283712 2013-10-30] (Filefacts.net)
HKLM-x32\...\Run: [SFAUpdater] => C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe [655936 2013-10-28] (Filefacts.net)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-06-05] (PDF Complete Inc)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [337184 2013-10-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3838800 2014-12-13] (LogMeIn Inc.)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-12-16] (Hewlett-Packard)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [icq] => C:\Users\Vojtch\AppData\Roaming\ICQM\icq.exe -CU
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\Vojtch\AppData\Roaming\Seznam.cz\szninstall.exe" -c
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\Vojtch\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\MountPoints2: {168c7ff7-35b3-11e3-be7b-1c3e84a65dbc} - "G:\autorun\autorun.exe"
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\MountPoints2: {f1e7c8fd-878c-11e3-be89-806e6f6e6963} - "H:\autoplay.exe"
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\MountPoints2: {f1e7c8fe-878c-11e3-be89-806e6f6e6963} - "I:\Launcher.exe"
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamePark klient 2.lnk
ShortcutTarget: GamePark klient 2.lnk -> C:\Program Files\GamePark2\gpcl.exe (Allstar Group, s.r.o.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
HKLM\...\AppCertDlls: [x64] -> c:\program files (x86)\settings manager\systemk\x64\sysapcrt.dll
HKLM\...\AppCertDlls: [x86] -> c:\program files (x86)\settings manager\systemk\sysapcrt.dll

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = http://www.bing.com/search?q={searchTer ... DF&pc=MSE1
SearchScopes: HKLM-x32 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = http://www.bing.com/search?q={searchTer ... DF&pc=MSE1
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-866173097-1738320259-1985661619-1002 -> {304CBE1D-7DA3-4326-A0F4-35AEA09FD6C3} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-866173097-1738320259-1985661619-1002 -> {4628C5A5-61E0-43DE-801C-228B1A001FE9} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKU\S-1-5-21-866173097-1738320259-1985661619-1002 -> {79FB32BB-6B7C-44FD-BB7E-95699A201A5B} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKU\S-1-5-21-866173097-1738320259-1985661619-1002 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = http://www.bing.com/search?q={searchTer ... DF&pc=MSE1
SearchScopes: HKU\S-1-5-21-866173097-1738320259-1985661619-1002 -> {AABDA135-3647-4C23-B7F0-1C2D062F5F17} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKU\S-1-5-21-866173097-1738320259-1985661619-1002 -> {B904FD3D-38C9-4F5C-A343-2A0DD93E7460} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKU\S-1-5-21-866173097-1738320259-1985661619-1002 -> {BDC91D23-6C40-4AAC-993B-8A3F90C63307} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-866173097-1738320259-1985661619-1002 -> {CB0A2F20-E562-4118-A4FC-B127B2DCDD9E} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKU\S-1-5-21-866173097-1738320259-1985661619-1002 -> {CC2CE5D6-72A0-478A-89CC-AF14FE1934EC} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKU\S-1-5-21-866173097-1738320259-1985661619-1002 -> {CCFBECAC-B626-4343-B933-EFE50117B2E9} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWow64\skype4com.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 4.4.4.4

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll (DigitalPersona, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Vojtěch\AppData\Roaming\mozilla\plugins\npPxPlay.dll ( )
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: DigitalPersona Extension - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-12-10]
FF HKLM-x32\...\Firefox\Extensions: [{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}] - C:\Program Files (x86)\RelevantKnowledge\firefox

Chrome:
=======
CHR HomePage: Default -> hxxp://www.default-search.net?sid=503&aid=100& ... 09&src=hmp
CHR StartupUrls: Default -> "hxxp://www.default-search.net?sid=503&aid=100& ... 09&src=hmp"
CHR DefaultSearchURL: Default -> http://www.default-search.net/search?si ... earchTerms}
CHR Profile: C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Peněženka Google) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-04]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1612552 2012-09-26] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [146184 2012-09-19] (IVT Corporation)
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [488824 2012-10-26] (DigitalPersona, Inc.)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477056 2012-11-19] (Hewlett-Packard Company)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-10-16] (Hewlett-Packard Company)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2014-02-04] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2014-02-04] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2014-12-02] (LogMeIn, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1143432 2013-06-05] (PDF Complete Inc)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2014-10-10] ()
R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [214520 2014-11-21] ()
R2 ScsiAccess; C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe [181312 2014-03-18] () [File not signed]
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2012-11-12] (IDT, Inc.) [File not signed]
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesService64.exe [2099000 2013-10-12] (AVG)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16032 2014-09-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [35496 2012-07-09] (Advanced Micro Devices, Inc.)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-12-21] ()
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthAvrcpTg; No ImagePath
U4 BthHFEnum; No ImagePath
U4 bthhfhid; No ImagePath
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48608 2012-10-02] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [64832 2012-11-09] (Hewlett-Packard Company)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45112 2014-12-13] (LogMeIn Inc.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-12-21] ()
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
R3 SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-15] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-15] (Synaptics Incorporated)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [1864328 2012-10-04] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-01-26] (Duplex Secure Ltd.)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-06-27] (Hewlett-Packard Development Company, L.P.)
U3 asqhhl4e; C:\Windows\System32\Drivers\asqhhl4e.sys [0 ] (Intel Corporation)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
S3 TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesDriver64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-09 12:53 - 2015-01-09 12:53 - 00021925 _____ () C:\Users\Vojtěch\Desktop\FRST.txt
2015-01-09 12:53 - 2015-01-09 12:53 - 00000000 ____D () C:\FRST
2015-01-09 12:52 - 2015-01-09 12:52 - 00001806 _____ () C:\Users\Vojtěch\Desktop\FRSTLauncher.exe
2015-01-09 12:48 - 2015-01-09 12:48 - 02124288 _____ (Farbar) C:\Users\Vojtěch\Desktop\FRST64.exe
2015-01-09 12:43 - 2015-01-09 12:51 - 00001078 _____ () C:\Windows\system32dbgraw.bmp
2015-01-09 08:33 - 2015-01-08 19:44 - 00000363 _____ () C:\zoek-results2015-01-08-184457.log
2015-01-08 19:44 - 2015-01-09 08:33 - 00000384 _____ () C:\runcheck.txt
2015-01-08 19:44 - 2015-01-08 18:03 - 00000406 _____ () C:\zoek-results2015-01-08-170354.log
2015-01-08 18:03 - 2015-01-09 08:33 - 00000406 _____ () C:\zoek-results.log
2015-01-08 17:59 - 2015-01-08 17:59 - 00000000 ____D () C:\zoek_backup
2015-01-08 17:53 - 2015-01-09 12:43 - 00002486 _____ () C:\Windows\PFRO.log
2015-01-08 17:49 - 2015-01-08 17:52 - 00000000 ____D () C:\AdwCleaner
2015-01-08 17:48 - 2015-01-08 17:48 - 01295360 _____ () C:\Users\Vojtěch\Desktop\zoek.exe
2015-01-08 15:11 - 2015-01-09 12:47 - 00155410 _____ () C:\Windows\WindowsUpdate.log
2015-01-07 20:58 - 2015-01-07 20:58 - 00000000 ____D () C:\rsit
2015-01-07 20:58 - 2015-01-07 20:58 - 00000000 ____D () C:\Program Files\trend micro
2015-01-07 20:46 - 2015-01-07 20:46 - 00002776 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-01-07 20:46 - 2015-01-07 20:46 - 00000828 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-01-07 20:46 - 2015-01-07 20:46 - 00000000 ____D () C:\Program Files\CCleaner
2015-01-07 20:45 - 2015-01-08 18:01 - 00000000 ____D () C:\Users\Vojtěch\Downloads\14_ochrana
2015-01-07 20:45 - 2015-01-07 20:45 - 01222144 _____ () C:\Users\Vojtěch\Downloads\RSITx64 (1).exe
2015-01-04 22:20 - 2015-01-04 22:20 - 00049510 _____ () C:\Users\Vojtěch\Downloads\bet.raise.fold.(2012).cze.1cd.(5488056).zip
2015-01-04 22:13 - 2015-01-04 22:13 - 00639719 _____ () C:\Users\Vojtěch\Downloads\BetRaiseFold_SRTs.zip
2015-01-03 10:25 - 2015-01-03 11:19 - 955468810 _____ () C:\Users\Vojtěch\Downloads\eden-log-jeskyne-smrti-horor-thriller-mysteriozni-sci-fi-2007-cz.avi
2015-01-03 10:20 - 2015-01-03 11:01 - 726374095 _____ () C:\Users\Vojtěch\Downloads\964-Pinocchio-1991.zip
2015-01-02 15:36 - 2015-01-07 20:57 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\Free Download Manager
2015-01-02 15:36 - 2015-01-02 15:36 - 00000000 ____D () C:\ProgramData\Free Download Manager
2015-01-02 15:35 - 2015-01-02 15:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Download Manager
2015-01-02 15:35 - 2015-01-02 15:35 - 00000000 ____D () C:\Program Files (x86)\Free Download Manager
2015-01-02 15:32 - 2015-01-02 15:32 - 14440451 _____ () C:\Users\Vojtěch\Downloads\fdminst.exe
2015-01-01 21:23 - 2015-01-01 22:15 - 882462664 _____ () C:\Users\Vojtěch\Downloads\Collateral-(En).mp4
2015-01-01 21:23 - 2015-01-01 21:23 - 00080959 _____ () C:\Users\Vojtěch\Downloads\Collateral-(En).srt
2014-12-30 10:40 - 2014-12-30 11:41 - 00000000 ____D () C:\Users\Vojtěch\Downloads\Enter The Void Soundtrack [Various Artists]
2014-12-30 10:36 - 2014-12-30 10:36 - 00019882 _____ () C:\Users\Vojtěch\Downloads\[kickass.so]enter.the.void.soundtrack.various.artists.torrent
2014-12-28 19:47 - 2014-12-28 15:42 - 00135263 _____ () C:\Users\Vojtěch\Downloads\Rounders.1998.720p.BluRay.x264.YIFY.srt
2014-12-28 19:47 - 2014-12-28 15:42 - 00006354 _____ () C:\Users\Vojtěch\Downloads\rounders.(3088468).nfo
2014-12-28 19:40 - 2014-12-28 19:40 - 00018623 _____ () C:\Users\Vojtěch\Downloads\[kickass.so]power.hold.em.strategy.by.daniel.negreanu.copy.pdf.torrent
2014-12-28 15:43 - 2014-12-28 15:43 - 00057535 _____ () C:\Users\Vojtěch\Downloads\rounders.(1998).cze.1cd.(3088468).zip
2014-12-28 15:42 - 2014-12-28 16:36 - 839157848 _____ () C:\Users\Vojtěch\Downloads\Rounders.1998.720p.BluRay.x264.YIFY.mp4
2014-12-28 15:39 - 2014-12-28 15:39 - 00014516 _____ () C:\Users\Vojtěch\Downloads\[kickass.so]rounders.1998.dvdrip.eng.shadow.torrent
2014-12-23 11:29 - 2014-12-23 11:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-12-23 11:28 - 2014-12-23 11:29 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-12-22 17:31 - 2014-12-22 17:31 - 00003822 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1381869317
2014-12-21 19:44 - 2014-12-21 20:59 - 1023283200 _____ () C:\Users\Vojtěch\Downloads\smazat.avi
2014-12-18 18:18 - 2014-12-18 18:19 - 00000000 ____D () C:\Users\Vojtěch\AppData\Local\NetBet Poker
2014-12-18 18:18 - 2014-12-18 18:18 - 00001818 _____ () C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\NetBet Poker.lnk
2014-12-18 18:18 - 2014-12-18 18:18 - 00001816 _____ () C:\Users\Vojtěch\Desktop\NetBet Poker.lnk
2014-12-18 14:21 - 2014-12-18 15:48 - 1456017404 _____ () C:\Users\Vojtěch\Downloads\Motýlek---Papillon-(1973).avi
2014-12-18 11:10 - 2014-12-18 12:34 - 1466826240 _____ () C:\Users\Vojtěch\Downloads\Nic-než-pravdu.avi
2014-12-17 16:51 - 2014-12-29 02:25 - 00000000 ____D () C:\Users\Vojtěch\Downloads\Le.Fabuleux.Destin.d'Amélie.Poulain[2001].DvD-Rip-neno001
2014-12-17 14:36 - 2014-12-09 08:12 - 00590816 _____ (Microsoft Corporation) C:\Windows\system32\AutoUpdate.exe
2014-12-17 14:36 - 2014-12-09 08:12 - 00467408 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2014-12-17 14:06 - 2014-12-17 14:18 - 185298658 _____ () C:\Users\Vojtěch\Downloads\Rammstein---The-Best-Of-(2008).zip
2014-12-17 11:57 - 2014-12-17 12:51 - 969529980 _____ () C:\Users\Vojtěch\Downloads\No-Mercy-for-the-Rude.DVDrip.XviD(CZtit).avi
2014-12-16 21:46 - 2014-12-16 22:28 - 734116033 _____ () C:\Users\Vojtěch\Downloads\Amélie-z-Montmartu---cz-titulky---Le.Fabuleux.Destin.dAmélie.Poulain[2001].DvD-Rip-neno001.rar
2014-12-16 21:46 - 2014-12-16 21:46 - 00081656 _____ () C:\Users\Vojtěch\Downloads\Le-Fabuleux-destin-d-Am-lie-Poulain(0000121525).srt
2014-12-15 20:06 - 2014-12-17 22:53 - 00006564 _____ () C:\Users\Public\Documents\s.t.a.l.k.e.r.ltx
2014-12-15 20:01 - 2014-12-15 20:10 - 00000000 ____D () C:\Users\Public\Documents\s.t.a.l.k.e.r. - call of pripyat
2014-12-15 19:57 - 2014-12-15 19:57 - 00001400 _____ () C:\Users\Vojtěch\Desktop\S.T.A.L.K.E.R. - Call of Pripyat.lnk
2014-12-15 19:56 - 2014-12-15 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\bitComposer Games
2014-12-15 19:49 - 2014-12-15 19:49 - 00000000 ____D () C:\Program Files (x86)\bitComposer Games
2014-12-15 16:25 - 2014-11-26 22:11 - 00714184 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-15 16:25 - 2014-11-26 22:11 - 00106440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-15 16:13 - 2014-12-15 16:13 - 00000376 _____ () C:\Users\Vojtěch\Downloads\something.txt
2014-12-13 20:21 - 2014-12-13 20:21 - 00059215 _____ () C:\Users\Vojtěch\Downloads\[kickass.so]camp.cuddly.pines.powertool.massacre.720p.torrent
2014-12-13 17:01 - 2014-12-13 17:01 - 00045112 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-12-12 21:23 - 2014-10-09 05:00 - 01519104 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2014-12-12 21:23 - 2014-10-09 05:00 - 01484288 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-12-12 21:23 - 2014-10-09 05:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2014-12-12 21:23 - 2014-10-09 04:59 - 01195520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2014-12-12 21:23 - 2014-10-09 04:59 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2014-12-11 16:54 - 2014-11-21 09:36 - 19283456 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-11 16:54 - 2014-11-21 08:17 - 14364672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-11 16:54 - 2014-10-11 08:44 - 19764736 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-12-11 16:54 - 2014-10-11 06:57 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-12-11 16:54 - 2014-10-09 04:59 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-12-11 16:54 - 2014-10-09 04:59 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-12-11 16:54 - 2014-10-09 04:58 - 00458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-12-11 16:54 - 2014-09-22 06:38 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2014-12-11 16:54 - 2014-09-22 04:56 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2014-12-11 16:53 - 2014-11-21 09:38 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-11 16:53 - 2014-11-21 09:38 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-11 16:53 - 2014-11-21 09:37 - 01409536 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-11 16:53 - 2014-11-21 09:37 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-12-11 16:53 - 2014-11-21 09:37 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 15400960 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-11 16:53 - 2014-11-21 09:36 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-11 16:53 - 2014-11-21 09:35 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-11 16:53 - 2014-11-21 08:17 - 01762816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-11 16:53 - 2014-11-21 08:17 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-11 16:53 - 2014-11-21 08:17 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-11 16:53 - 2014-11-21 08:17 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-11 16:53 - 2014-11-21 08:17 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-12-11 16:53 - 2014-11-21 08:16 - 13758976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-11 16:53 - 2014-11-21 08:16 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-11 16:53 - 2014-11-21 08:16 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-11 16:53 - 2014-11-21 08:16 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-11 16:53 - 2014-11-21 08:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-12-11 16:53 - 2014-11-21 08:16 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-11 16:53 - 2014-11-21 08:16 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-11 16:53 - 2014-11-21 08:16 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-11 16:53 - 2014-11-21 08:16 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-11 16:53 - 2014-11-21 08:16 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-12-11 16:53 - 2014-11-21 08:16 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-11 16:53 - 2014-11-21 08:16 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-11 16:53 - 2014-11-21 08:16 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-11 16:53 - 2014-11-21 08:00 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-11 16:53 - 2014-11-21 07:54 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-11 16:53 - 2014-11-21 05:30 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-12-11 16:51 - 2014-11-06 07:50 - 01627648 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-11 16:51 - 2014-11-06 06:03 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-11 16:49 - 2014-10-30 08:20 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-12-11 16:49 - 2014-10-30 06:22 - 01569792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-12-10 18:43 - 2014-12-10 21:12 - 1420679168 _____ () C:\Users\Vojtěch\Downloads\The-house-of-the-devil-horor-vlozene-titulky,(nostra).avi

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-09 12:53 - 2013-10-04 21:04 - 00000974 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-09 12:49 - 2013-12-23 22:04 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\Seznam.cz
2015-01-09 12:49 - 2012-11-22 05:19 - 00756994 _____ () C:\Windows\system32\perfh005.dat
2015-01-09 12:49 - 2012-11-22 05:19 - 00163422 _____ () C:\Windows\system32\perfc005.dat
2015-01-09 12:49 - 2012-07-26 08:28 - 01854972 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-09 12:47 - 2012-09-26 09:53 - 00000950 _____ () C:\Windows\SysWOW64\bscs.ini
2015-01-09 12:45 - 2013-12-10 14:57 - 00003620 _____ () C:\Windows\SysWOW64\LOCALSERVICE.INI
2015-01-09 12:45 - 2013-11-09 18:53 - 00000000 ____D () C:\Users\Vojtěch\AppData\Local\LogMeIn Hamachi
2015-01-09 12:44 - 2013-10-04 21:04 - 00000970 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-09 12:44 - 2012-11-22 04:49 - 00000000 ____D () C:\ProgramData\PDFC
2015-01-09 12:43 - 2013-12-10 14:57 - 00000043 _____ () C:\Windows\SysWOW64\LOCALDEVICE.INI
2015-01-09 12:43 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-09 12:00 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2015-01-09 11:55 - 2013-10-16 18:35 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-09 11:51 - 2013-10-05 22:29 - 01757184 ___SH () C:\Users\Vojtěch\Downloads\Thumbs.db
2015-01-09 07:09 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-08 21:20 - 2013-12-11 15:00 - 00000000 ____D () C:\Users\Vojtěch\AppData\Local\PokerStars
2015-01-08 20:47 - 2013-10-03 22:41 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-866173097-1738320259-1985661619-1002
2015-01-08 17:54 - 2014-05-07 18:57 - 00000356 _____ () C:\Windows\Tasks\HPCeeScheduleForVojtěch.job
2015-01-08 17:53 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-01-08 17:52 - 2014-01-24 21:52 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player
2015-01-08 17:52 - 2013-12-23 22:06 - 00000000 ____D () C:\Users\Vojtěch\AppData\Local\WebPlayer
2015-01-08 17:52 - 2013-10-04 21:05 - 00001298 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-08 17:52 - 2013-10-04 21:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-01-08 17:52 - 2013-10-03 22:32 - 00000987 _____ () C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-01-08 17:52 - 2013-10-03 22:32 - 00000000 ____D () C:\Users\Vojtěch
2015-01-08 17:31 - 2013-10-15 21:35 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-01-08 15:52 - 2013-11-07 20:17 - 00000000 ____D () C:\Users\Vojtěch\Downloads\01_filmy
2015-01-07 23:49 - 2013-11-04 09:26 - 00384512 ___SH () C:\Users\Vojtěch\Desktop\Thumbs.db
2015-01-07 20:57 - 2014-02-04 10:11 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2015-01-07 20:57 - 2014-01-27 21:25 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\DAEMON Tools Lite
2015-01-07 20:57 - 2013-10-19 21:12 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\uTorrent
2015-01-07 20:56 - 2014-02-10 18:28 - 00000000 ____D () C:\Windows\Minidump
2015-01-07 20:56 - 2012-08-01 23:22 - 00000000 ____D () C:\Windows\Panther
2015-01-07 15:01 - 2014-11-24 09:52 - 00000000 ____D () C:\Users\Vojtěch\Downloads\13_POKER
2015-01-06 18:20 - 2014-05-07 18:57 - 00003174 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForVojtěch
2015-01-06 18:18 - 2013-10-03 22:57 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2015-01-06 18:16 - 2013-10-03 22:57 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2015-01-05 21:22 - 2014-09-24 21:41 - 00000000 ___HD () C:\$Windows.~BT
2015-01-01 16:49 - 2013-11-07 20:22 - 00000000 ____D () C:\Users\Vojtěch\Downloads\06_instalacky_a_aplikace
2014-12-31 12:14 - 2013-10-05 00:16 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-12-29 16:55 - 2014-01-05 23:02 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\vlc
2014-12-26 21:00 - 2013-05-21 08:52 - 00000000 ____D () C:\Windows\Hewlett-Packard
2014-12-26 20:59 - 2012-08-02 22:20 - 00000000 ____D () C:\swsetup
2014-12-23 11:29 - 2013-11-09 18:53 - 00000938 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-12-22 19:44 - 2013-11-07 20:20 - 00000000 ____D () C:\Users\Vojtěch\Downloads\02_hudba
2014-12-22 17:31 - 2013-10-15 21:35 - 00001147 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2014-12-21 10:37 - 2013-11-07 20:21 - 00000000 ____D () C:\Users\Vojtěch\Downloads\05_obrazky
2014-12-20 19:16 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-12-18 19:43 - 2012-07-26 08:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-12-15 22:09 - 2013-11-07 20:20 - 00000000 ____D () C:\Users\Vojtěch\Downloads\03_serialy
2014-12-15 20:43 - 2013-12-11 15:00 - 00000000 ____D () C:\Program Files (x86)\PokerStars
2014-12-15 20:41 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\rescache
2014-12-15 16:21 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ToastData
2014-12-15 16:20 - 2013-10-05 00:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-15 16:14 - 2013-10-05 00:01 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

Some content of TEMP:
====================
C:\Users\Vojtěch\AppData\Local\Temp\7za.exe
C:\Users\Vojtěch\AppData\Local\Temp\hijackthis.exe
C:\Users\Vojtěch\AppData\Local\Temp\NirCmd.exe
C:\Users\Vojtěch\AppData\Local\Temp\PEVZ.EXE
C:\Users\Vojtěch\AppData\Local\Temp\Quarantine.exe
C:\Users\Vojtěch\AppData\Local\Temp\remove.exe
C:\Users\Vojtěch\AppData\Local\Temp\sed.exe
C:\Users\Vojtěch\AppData\Local\Temp\shortcut.exe
C:\Users\Vojtěch\AppData\Local\Temp\sqlite3.dll
C:\Users\Vojtěch\AppData\Local\Temp\swreg.exe
C:\Users\Vojtěch\AppData\Local\Temp\swxcacls.exe
C:\Users\Vojtěch\AppData\Local\Temp\wget.exe
C:\Users\Vojtěch\AppData\Local\Temp\zoek-delete.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-05 20:03

==================== End Of Log ============================

[vyosek]

Odinstalujte AVG PC TuneUp 2014 a McAfee Security Scan Plus

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  CloseProcesses:
  CreateRestorePoint:
  
  HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
  HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
  HKLM-x32\...\Run: [RemoteControl10] => c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
  HKLM-x32\...\Run: [YouCam Mirage] => c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2012-08-31] (CyberLink)
  HKLM-x32\...\Run: [YouCam Tray] => c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [167024 2012-08-31] (CyberLink Corp.)
  HKLM-x32\...\Run: [] => [X]
  HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3838800 2014-12-13] (LogMeIn Inc.)
  HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-12-16] (Hewlett-Packard)
  Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
  HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [icq] => C:\Users\Vojtch\AppData\Roaming\ICQM\icq.exe -CU
  HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\Vojtch\AppData\Roaming\Seznam.cz\szninstall.exe" -c
  HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\Vojtch\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
  HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
  HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
  HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\MountPoints2: {168c7ff7-35b3-11e3-be7b-1c3e84a65dbc} - "G:\autorun\autorun.exe"
  HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\MountPoints2: {f1e7c8fd-878c-11e3-be89-806e6f6e6963} - "H:\autoplay.exe"
  HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\MountPoints2: {f1e7c8fe-878c-11e3-be89-806e6f6e6963} - "I:\Launcher.exe" 
  Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamePark klient 2.lnk
  Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
  
  HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
  HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
  StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
  SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
  SearchScopes: HKLM-x32 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
  SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  
  CHR HomePage: Default -> hxxp://www.default-search.net?sid=503&a ... 09&src=hmp
  CHR StartupUrls: Default -> "hxxp://www.default-search.net?sid=503&aid=100&itype=a&ver=13337&tm=409&src=hmp"
  CHR DefaultSearchURL: Default -> http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
  
  R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesService64.exe [2099000 2013-10-12] (AVG)
  S3 TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesDriver64.sys [X]
  U3 asqhhl4e; C:\Windows\System32\Drivers\asqhhl4e.sys [0 ] (Intel Corporation)
  
  C:\Program Files (x86)\AVG PC TuneUp 2014
  2015-01-09 12:53 - 2015-01-09 12:53 - 00021925 _____ () C:\Users\Vojtěch\Desktop\FRST.txt
  2015-01-09 12:52 - 2015-01-09 12:52 - 00001806 _____ () C:\Users\Vojtěch\Desktop\FRSTLauncher.exe
  2015-01-09 08:33 - 2015-01-08 19:44 - 00000363 _____ () C:\zoek-results2015-01-08-184457.log
  2015-01-08 19:44 - 2015-01-09 08:33 - 00000384 _____ () C:\runcheck.txt
  2015-01-08 19:44 - 2015-01-08 18:03 - 00000406 _____ () C:\zoek-results2015-01-08-170354.log
  2015-01-08 18:03 - 2015-01-09 08:33 - 00000406 _____ () C:\zoek-results.log
  2015-01-08 17:59 - 2015-01-08 17:59 - 00000000 ____D () C:\zoek_backup
  2015-01-08 17:53 - 2015-01-09 12:43 - 00002486 _____ () C:\Windows\PFRO.log
  2015-01-08 17:49 - 2015-01-08 17:52 - 00000000 ____D () C:\AdwCleaner
  2015-01-08 17:48 - 2015-01-08 17:48 - 01295360 _____ () C:\Users\Vojtěch\Desktop\zoek.exe
  2015-01-07 20:58 - 2015-01-07 20:58 - 00000000 ____D () C:\rsit
  2015-01-07 20:58 - 2015-01-07 20:58 - 00000000 ____D () C:\Program Files\trend micro
  2015-01-07 20:45 - 2015-01-07 20:45 - 01222144 _____ () C:\Users\Vojtěch\Downloads\RSITx64 (1).exe
  
  C:\Windows\tasks\Adobe Flash Player Updater.job
  C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
  
  Hosts:
  EmptyTemp:
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[valentyne187]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-01-2015
Ran by Vojtěch at 2015-01-11 09:29:23 Run:1
Running from C:\Users\Vojtěch\Desktop
Loaded Profile: Vojtěch (Available profiles: Vojtěch)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [YouCam Mirage] => c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2012-08-31] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [167024 2012-08-31] (CyberLink Corp.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3838800 2014-12-13] (LogMeIn Inc.)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-12-16] (Hewlett-Packard)
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [icq] => C:\Users\Vojtch\AppData\Roaming\ICQM\icq.exe -CU
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\Vojtch\AppData\Roaming\Seznam.cz\szninstall.exe" -c
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\Vojtch\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\MountPoints2: {168c7ff7-35b3-11e3-be7b-1c3e84a65dbc} - "G:\autorun\autorun.exe"
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\MountPoints2: {f1e7c8fd-878c-11e3-be89-806e6f6e6963} - "H:\autoplay.exe"
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\MountPoints2: {f1e7c8fe-878c-11e3-be89-806e6f6e6963} - "I:\Launcher.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamePark klient 2.lnk
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = http://www.bing.com/search?q={searchTer ... DF&pc=MSE1
SearchScopes: HKLM-x32 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = http://www.bing.com/search?q={searchTer ... DF&pc=MSE1
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

CHR HomePage: Default -> hxxp://www.default-search.net?sid=503&a ... 09&src=hmp
CHR StartupUrls: Default -> "hxxp://www.default-search.net?sid=503&aid=100& ... 09&src=hmp"
CHR DefaultSearchURL: Default -> http://www.default-search.net/search?si ... &src=ds&p={searchTerms}

R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesService64.exe [2099000 2013-10-12] (AVG)
S3 TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG PC TuneUp 2014\TuneUpUtilitiesDriver64.sys [X]
U3 asqhhl4e; C:\Windows\System32\Drivers\asqhhl4e.sys [0 ] (Intel Corporation)

C:\Program Files (x86)\AVG PC TuneUp 2014
2015-01-09 12:53 - 2015-01-09 12:53 - 00021925 _____ () C:\Users\Vojtěch\Desktop\FRST.txt
2015-01-09 12:52 - 2015-01-09 12:52 - 00001806 _____ () C:\Users\Vojtěch\Desktop\FRSTLauncher.exe
2015-01-09 08:33 - 2015-01-08 19:44 - 00000363 _____ () C:\zoek-results2015-01-08-184457.log
2015-01-08 19:44 - 2015-01-09 08:33 - 00000384 _____ () C:\runcheck.txt
2015-01-08 19:44 - 2015-01-08 18:03 - 00000406 _____ () C:\zoek-results2015-01-08-170354.log
2015-01-08 18:03 - 2015-01-09 08:33 - 00000406 _____ () C:\zoek-results.log
2015-01-08 17:59 - 2015-01-08 17:59 - 00000000 ____D () C:\zoek_backup
2015-01-08 17:53 - 2015-01-09 12:43 - 00002486 _____ () C:\Windows\PFRO.log
2015-01-08 17:49 - 2015-01-08 17:52 - 00000000 ____D () C:\AdwCleaner
2015-01-08 17:48 - 2015-01-08 17:48 - 01295360 _____ () C:\Users\Vojtěch\Desktop\zoek.exe
2015-01-07 20:58 - 2015-01-07 20:58 - 00000000 ____D () C:\rsit
2015-01-07 20:58 - 2015-01-07 20:58 - 00000000 ____D () C:\Program Files\trend micro
2015-01-07 20:45 - 2015-01-07 20:45 - 01222144 _____ () C:\Users\Vojtěch\Downloads\RSITx64 (1).exe

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLMLServer_For_P2G8 => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLVirtualDrive => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RemoteControl10 => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\YouCam Mirage => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\YouCam Tray => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\LogMeIn Hamachi Ui => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\NCPluginUpdater => value deleted successfully.
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP" => Key deleted successfully.
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Windows\CurrentVersion\Run\\icq => value deleted successfully.
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => value deleted successfully.
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => value deleted successfully.
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Windows\CurrentVersion\Run\\AlcoholAutomount => value deleted successfully.
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value deleted successfully.
"HKU\S-1-5-21-866173097-1738320259-1985661619-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{168c7ff7-35b3-11e3-be7b-1c3e84a65dbc}" => Key deleted successfully.
HKCR\CLSID\{168c7ff7-35b3-11e3-be7b-1c3e84a65dbc} => Key not found.
"HKU\S-1-5-21-866173097-1738320259-1985661619-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f1e7c8fd-878c-11e3-be89-806e6f6e6963}" => Key deleted successfully.
HKCR\CLSID\{f1e7c8fd-878c-11e3-be89-806e6f6e6963} => Key not found.
"HKU\S-1-5-21-866173097-1738320259-1985661619-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f1e7c8fe-878c-11e3-be89-806e6f6e6963}" => Key deleted successfully.
HKCR\CLSID\{f1e7c8fe-878c-11e3-be89-806e6f6e6963} => Key not found.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamePark klient 2.lnk => Moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2}" => Key deleted successfully.
HKCR\CLSID\{80c554b9-c7f8-4a21-9471-06d606da78a2} => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{80c554b9-c7f8-4a21-9471-06d606da78a2} => Key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
Chrome HomePage deleted successfully.
Chrome StartupUrls deleted successfully.
Chrome DefaultSearchURL not detected.
TuneUp.UtilitiesSvc => Service deleted successfully.
TuneUpUtilitiesDrv => Service deleted successfully.
asqhhl4e => Service deleted successfully.
C:\Program Files (x86)\AVG PC TuneUp 2014 => Moved successfully.
C:\Users\Vojtěch\Desktop\FRST.txt => Moved successfully.
C:\Users\Vojtěch\Desktop\FRSTLauncher.exe => Moved successfully.
C:\zoek-results2015-01-08-184457.log => Moved successfully.
C:\runcheck.txt => Moved successfully.
C:\zoek-results2015-01-08-170354.log => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Windows\PFRO.log => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Vojtěch\Desktop\zoek.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Users\Vojtěch\Downloads\RSITx64 (1).exe => Moved successfully.
C:\Windows\tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 84.2 MB temporary data.


The system needed a reboot.

==== End of Fixlog 09:30:43 ====

[vyosek]

Jak se chova PC???

[valentyne187]

prohlizec ted nepada, takze to vypada ok dekuji moc

mel bych jeste otazku: windows 8 maji v sobe zabudovane nejake ochranne prvky nebo si mam koupit antivir? jaky doporucujete? Nod32?

[vyosek]

Tak jeste uklidime

DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remote disinfection tools
• Kliknete na Run

Stahnete Ccleaner https://www.piriform.com/ccleaner/download/standard
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Z bezplatnych antiviru doporucuji Avast, z placenych pak komplexni balicky ESET Smart Security nebo Avast Internet Security

A pokud nejsou problemy ci dotazy, je to z me strany vse

[valentyne187]

tisicere diky

[vyosek]

Nemate zac, rad jsem pomohl Zase nekdy


A na zaklade Pravidla o zamykani temat