VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Webssearch

https://forum.viry.cz:443/viewtopic.php?t=142759

Stránka 1 z 1

Webssearch

Napsal: 01 úno 2015 00:50
od rudy630
Zdravím. Dnes se mi začala jako domácí stránka v prohl.Explorer, Mozilla a Chrome zobrazovat str. Webssearch.com. V Mozille se mi ji podařilo zakázat-úspěšně. V dalších dvou jsem ji ani nenalezl.Zkoušel jsem webssearch najít v programech-nikde nebyla.Použil jsem adwcleaner v109, ale nevím jestli úspěšně.Každopádně po restartu tato stránka se už nezobrazuje, ale protože jsem se dočetl, že se jedná o nějaký vir, tak prosím o kontrolu logu jestli je tomu skutečně tak.Děkuji za pomoc předem.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Ruda at 2015-02-01 00:26:58
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 68 GB (35%) free of 191 GB
Total RAM: 3980 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:27:14, on 1.2.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Ruda.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?logged=1#obsah
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: LastPass Vault - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O2 - BHO: DownloadHelper Class - {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} - C:\Program Files (x86)\Common Files\Download Helper\DownloadHelper.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [ACMON] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [iSkysoft Helper Compact.exe] C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - Startup: Odeslat do OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
O4 - Startup: SystemExplorerDisabled
O4 - Global Startup: Install LastPass FF RunOnce.lnk = C:\Program Files (x86)\Common Files\lpuninstall.exe
O4 - Global Startup: Install LastPass IE RunOnce.lnk = C:\Program Files (x86)\Common Files\lpuninstall.exe
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar.dll
O9 - Extra 'Tools' menuitem: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} - http://www.asus.com/support/asusTek_sys_ctrl3.cab
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} -
O17 - HKLM\System\CCS\Services\Tcpip\..\{A749964F-2A94-43D1-9724-95EC764BBAA2}: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll c:\windows\syswow64\nvinit.dll c:\windows\syswow64\nvinit.dll, c:\windows\syswow64\nvinit.dll, C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\Windows\system32\CISVC.EXE (file missing)
O23 - Service: COMODO LPS Launcher (CLPSLauncher) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: COMODO Programs Manager Service (CPMService) - Unknown owner - C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GeekBuddyRSP Server (GeekBuddyRSP) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Internet Explorer ETW Collector Service (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\Windows\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Zachytávání pro službu SNMP (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SpyHunter 4 Service - Unknown owner - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe (file missing)
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\Windows\SysWOW64\ssins.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: VideoAcceleratorService - SPEEDbit - C:\PROGRA~2\SPEEDB~1\VideoAcceleratorService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 14274 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe"
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {60C24D9D-7B8F-44DC-937E-34AE4EEC1324}
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\system32\CISVC.EXE
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
"C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe"
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -service
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
C:\Windows\system32\mqsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\System32\tcpsvcs.exe
C:\Windows\System32\snmp.exe
C:\Windows\SysWOW64\ssins.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\Windows\System32\vds.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 287fe442-4e05-4d43-868e-fa50f304ed96 1
C:\Windows\system32\viakaraokesrv.exe
\??\C:\Windows\system32\conhost.exe "-16057152115735920702000973572-588207561-253876582-2232177372036305147507815403
C:\PROGRA~2\SPEEDB~1\VideoAcceleratorService.exe -start -scm
C:\Windows\system32\svchost.exe -k iissvcs
"taskhost.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
taskeng.exe {E94966A6-2A63-4F94-8DF1-E1E7B1C86853}
\??\C:\Windows\system32\conhost.exe "-1737987659641023266-635584413589979258988450036-176585862-125280025258894114
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
taskeng.exe {1C47A5D6-B630-41FF-944A-28CC726EFC93}
ATKOSD.exe
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\COMODO\COMODO Internet Security\cistray.exe"
KBFiltr.exe
"C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe"
"C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe"
WDC.exe
"C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
WLIDSvcM.exe 3720
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDGesture.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
"C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --alertsUI
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Windows\explorer.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe10_ Global\UsGthrCtrlFltPipeMssGthrPipe10 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 832 836 844 65536 840
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Ruda\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe#
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002Core.job - C:\Users\Ruda\AppData\Local\Facebook\Update\FacebookUpdate.exe# /c /nocrashserver#
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002UA.job - C:\Users\Ruda\AppData\Local\Facebook\Update\FacebookUpdate.exe# /ua /installsource scheduler#

=========Mozilla firefox=========

ProfilePath - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\g3adrwsv.default-1413532086244

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?logged=1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.296 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@exent.com/npExentCtl,version=7.0.0.0]
"Description"=Exent® AOD Gecko Plugin
"Path"=C:\Program Files (x86)\Free Ride Games\npExentCtl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@lastpass.com/NPLastPass]
"Description"=
"Path"=C:\Program Files (x86)\LastPass\nplastpass64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@oberon-media.com/ONCAdapter]
"Description"=Oberon com adapter plugin
"Path"=C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.14\npapicomadapter.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Skype Technologies S.A..com/Skype Web Plugin]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\www.exent.com/GameTreatWidget]
"Description"=
"Path"=C:\Program Files (x86)\Free Ride Games\NPGameTreatPlugin.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.296 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.31.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@lastpass.com/NPLastPass]
"Description"=
"Path"=C:\Program Files (x86)\LastPass\nplastpass64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Skype Technologies S.A..com/Skype Web Plugin]
"Description"=Skype Web Plugin
"Path"=C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

C:\Program Files (x86)\Mozilla Firefox\plugins\
nppdf32.dll
npPDFXCviewNPPlugin.dll

C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\g3adrwsv.default-1413532086244\extensions\
support@lastpass.com

C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\g3adrwsv.default-1413532086244\searchplugins\
hledejcenycz.xml
vyhledvn-vide-ve-slub-youtube.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-11-04 218784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-24 551848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95D9ECF5-2A4D-4550-BE49-70D42F71296E}]
LastPass Vault - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-01-24 926720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2014-11-12 886480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2014-11-12 2334928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-24 212904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF2573AE-E1ED-40e1-83BA-F544CB2EE135}]
DownloadHelper Class - C:\Program Files\Common Files\Download Helper\DownloadHelperx64.dll [2011-01-07 905216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-08-12 715016]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-05-31 52352]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95D9ECF5-2A4D-4550-BE49-70D42F71296E}]
LastPass Vault - C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-01-24 608768]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2014-11-12 710864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF2573AE-E1ED-40e1-83BA-F544CB2EE135}]
DownloadHelper Class - C:\Program Files (x86)\Common Files\Download Helper\DownloadHelper.dll [2011-01-07 626688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - LastPass Toolbar - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-01-24 926720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - LastPass Toolbar - C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-01-24 608768]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-02-19 2661672]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-05-26 361984]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\btvstack.exe [2012-05-31 1023616]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\athbttray.exe [2012-05-31 801920]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-12-13 2824504]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-12-13 2531472]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-01-29 171992]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-01-29 399832]
"Persistence"=C:\Windows\system32\igfxpers.exe [2014-01-29 442328]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-12-09 1297112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage]
C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.144.298\AsusWSPanel.exe [2012-11-05 740736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Family Tree Builder Update]
C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [2013-11-12 2532864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google+ Auto Backup]
C:\Users\Ruda\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [2014-08-12 3746120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tvncontrol]
C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2014-12-25 2327248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Skype.lnk]
C:\PROGRA~2\Skype\Phone\Skype.exe [2014-12-11 30872168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Ruda^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Odeslat do OneNote.lnk]
C:\PROGRA~1\MICROS~4\root\office15\ONENOTEM.EXE [2014-09-23 195240]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2000-01-01 292088]
"ACMON"=C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2012-02-21 102568]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2012-02-03 2321072]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25 322208]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2012-06-19 174752]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"iSkysoft Helper Compact.exe"=C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2015-01-07 2066432]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-01-20 3977576]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Install LastPass FF RunOnce.lnk - C:\Program Files (x86)\Common Files\lpuninstall.exe
Install LastPass IE RunOnce.lnk - C:\Program Files (x86)\Common Files\lpuninstall.exe

C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Odeslat do OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
SystemExplorerDisabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\Windows\System32\nvinitx.dll, C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-01-29 442880]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"undockwithoutlogon"=1
"ShutdownWithoutLogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoViewContextMenu"=0
"NoFileAssociate"=0
"NoRun"=0
"NoClose"=0
"StartMenuLogoff"=0
"NoResolveTrack"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"msacm.l3codecp"=l3codecp.acm
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open -

======List of files/folders created in the last 1 month======

2015-01-31 18:39:51 ----A---- C:\Windows\system32\drivers\EsgScanner.sys
2015-01-29 23:41:22 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-01-28 00:36:10 ----D---- C:\Program Files\Q-Dir
2015-01-27 12:30:53 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-01-27 11:29:43 ----D---- C:\Program Files (x86)\ProgDVB
2015-01-27 11:23:17 ----D---- C:\Windows\SYSWOW64\NV
2015-01-27 11:23:17 ----D---- C:\Windows\system32\NV
2015-01-27 11:17:57 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-01-27 11:17:57 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-01-27 11:17:57 ----A---- C:\Windows\system32\nvumdshimx.dll
2015-01-27 11:17:57 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2015-01-27 11:17:56 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-01-27 11:17:56 ----A---- C:\Windows\system32\nvopencl.dll
2015-01-27 11:17:56 ----A---- C:\Windows\system32\nvoglv64.dll
2015-01-27 11:17:55 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-01-27 11:17:55 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-01-27 11:17:55 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-01-27 11:17:55 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-01-27 11:17:54 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-01-27 11:17:54 ----A---- C:\Windows\system32\nvinitx.dll
2015-01-27 11:17:54 ----A---- C:\Windows\system32\NvIFR64.dll
2015-01-27 11:17:54 ----A---- C:\Windows\system32\NvFBC64.dll
2015-01-27 11:17:53 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-01-27 11:17:51 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-01-27 11:17:51 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-01-27 11:17:51 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-01-27 11:17:51 ----A---- C:\Windows\system32\nvdispgenco6434725.dll
2015-01-27 11:17:51 ----A---- C:\Windows\system32\nvdispco6434725.dll
2015-01-27 11:17:51 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-01-27 11:17:51 ----A---- C:\Windows\system32\nvcuvid.dll
2015-01-27 11:17:51 ----A---- C:\Windows\system32\nvcuda.dll
2015-01-27 11:17:46 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-01-27 11:17:46 ----A---- C:\Windows\system32\nvcompiler.dll
2015-01-27 11:17:45 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-01-27 11:17:45 ----A---- C:\Windows\system32\nvapi64.dll
2015-01-24 12:45:03 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2015-01-24 12:44:07 ----D---- C:\ProgramData\Oracle
2015-01-24 12:43:52 ----D---- C:\Program Files\Java
2015-01-24 12:31:28 ----D---- C:\Program Files (x86)\GPU-Z
2015-01-21 01:48:44 ----D---- C:\Program Files (x86)\7-Zip
2015-01-21 00:52:44 ----D---- C:\Users\Ruda\AppData\Roaming\Opera Software
2015-01-21 00:52:41 ----D---- C:\Users\Ruda\AppData\Roaming\Yandex
2015-01-20 13:55:37 ----D---- C:\Program Files (x86)\Cechoslovak
2015-01-18 20:54:58 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2015-01-18 00:44:05 ----A---- C:\Windows\system32\cpmnat.exe
2015-01-18 00:41:45 ----A---- C:\Windows\system32\drivers\cumon.sys
2015-01-18 00:41:35 ----A---- C:\Windows\system32\drivers\evdd.sys
2015-01-17 21:22:17 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2015-01-13 21:24:05 ----A---- C:\Windows\system32\profsvc.dll
2015-01-13 21:24:03 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-01-13 21:24:03 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-01-13 21:24:03 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-13 21:24:00 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-01-13 21:23:58 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-13 21:23:56 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-01-13 21:23:56 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-01-13 21:23:56 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-01-13 21:23:55 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-01-13 21:23:55 ----A---- C:\Windows\system32\srcore.dll
2015-01-13 21:23:55 ----A---- C:\Windows\system32\srclient.dll
2015-01-13 21:23:55 ----A---- C:\Windows\system32\rstrui.exe
2015-01-11 01:33:58 ----D---- C:\_OTM
2015-01-11 01:01:32 ----D---- C:\rsit
2015-01-09 23:20:39 ----D---- C:\FRST
2015-01-09 18:43:39 ----D---- C:\Users\Ruda\AppData\Roaming\VitySoft
2015-01-09 11:09:13 ----D---- C:\Program Files\CPUID
2015-01-07 20:00:39 ----D---- C:\Users\Ruda\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
2015-01-07 19:59:16 ----D---- C:\ProgramData\iSkysoft Video Converter Ultimate
2015-01-07 19:59:10 ----D---- C:\ProgramData\iSkysoft
2015-01-06 15:05:49 ----A---- C:\Windows\system32\drivers\anvsnddrv.sys
2015-01-06 01:12:56 ----D---- C:\Program Files (x86)\Anvsoft
2015-01-03 20:35:24 ----D---- C:\Program Files (x86)\TeamViewer
2015-01-02 01:10:57 ----A---- C:\Windows\CUAppUsage.Dat

======List of files/folders modified in the last 1 month======

2015-02-01 00:27:00 ----D---- C:\Program Files\trend micro
2015-02-01 00:18:45 ----D---- C:\Windows\temp
2015-02-01 00:15:41 ----D---- C:\Windows\inf
2015-02-01 00:15:36 ----D---- C:\Windows\debug
2015-02-01 00:15:36 ----D---- C:\Windows
2015-02-01 00:12:15 ----DC---- C:\AdwCleaner
2015-02-01 00:07:59 ----D---- C:\Windows\System32
2015-02-01 00:07:59 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-02-01 00:00:28 ----RD---- C:\Program Files
2015-01-31 23:07:18 ----D---- C:\Program Files (x86)
2015-01-31 18:40:44 ----D---- C:\Windows\system32\Tasks
2015-01-31 18:39:52 ----D---- C:\Windows\system32\drivers
2015-01-31 18:27:22 ----D---- C:\Windows\Prefetch
2015-01-31 18:26:37 ----D---- C:\Windows\system32\config
2015-01-31 18:26:01 ----D---- C:\ProgramData
2015-01-31 17:59:15 ----D---- C:\Users\Ruda\AppData\Roaming\Skype
2015-01-31 12:27:24 ----SHD---- C:\System Volume Information
2015-01-31 12:10:14 ----D---- C:\Users\Ruda\AppData\Roaming\vlc
2015-01-31 11:51:43 ----D---- C:\Windows\SysWOW64
2015-01-31 03:38:13 ----D---- C:\Users\Ruda\AppData\Roaming\TeamViewer
2015-01-31 03:32:28 ----D---- C:\Users\Ruda\AppData\Roaming\uTorrent
2015-01-31 00:49:05 ----SHD---- C:\Windows\Installer
2015-01-31 00:49:03 ----SHDC---- C:\Config.Msi
2015-01-30 23:41:15 ----D---- C:\Windows\Tasks
2015-01-30 23:41:15 ----D---- C:\Windows\system32\wfp
2015-01-30 23:41:06 ----D---- C:\Windows\system32\wbem
2015-01-30 23:40:12 ----D---- C:\Windows\system32\DriverStore
2015-01-30 23:40:12 ----D---- C:\Windows\system32\drivers\etc
2015-01-30 23:40:12 ----D---- C:\Windows\system32\catroot2
2015-01-30 23:40:05 ----D---- C:\Windows\registration
2015-01-30 23:37:22 ----D---- C:\Windows\system32\catroot
2015-01-30 22:48:17 ----D---- C:\Windows\system32\CodeIntegrity
2015-01-30 16:12:44 ----D---- C:\ProgramData\Adobe
2015-01-30 03:46:38 ----RSD---- C:\Windows\assembly
2015-01-30 03:45:57 ----D---- C:\Program Files (x86)\LibreOffice 4
2015-01-30 03:44:56 ----RSD---- C:\Windows\Fonts
2015-01-30 00:11:38 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2015-01-29 15:21:02 ----D---- C:\Program Files (x86)\Internet Explorer
2015-01-28 17:23:31 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-28 00:38:40 ----D---- C:\Users\Ruda\AppData\Roaming\Q-Dir
2015-01-28 00:36:23 ----A---- C:\Windows\Q-Dir.ini
2015-01-27 11:32:12 ----D---- C:\Windows\Microsoft.NET
2015-01-27 11:23:15 ----DC---- C:\Temp
2015-01-27 11:23:14 ----D---- C:\ProgramData\NVIDIA
2015-01-27 11:21:37 ----A---- C:\Windows\system32\nvvsvc.exe
2015-01-27 11:20:21 ----D---- C:\Program Files\NVIDIA Corporation
2015-01-27 11:18:59 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2015-01-27 11:18:49 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-01-26 23:33:02 ----D---- C:\Program Files\CCleaner
2015-01-26 02:34:43 ----D---- C:\Program Files\Speccy
2015-01-25 19:20:03 ----D---- C:\Windows\winsxs
2015-01-25 19:19:41 ----D---- C:\Program Files (x86)\Microsoft Office
2015-01-24 13:53:52 ----D---- C:\Program Files (x86)\LastPass
2015-01-21 02:08:24 ----D---- C:\Windows\Sun
2015-01-21 01:05:48 ----D---- C:\Program Files (x86)\Common Files
2015-01-20 20:22:21 ----D---- C:\Program Files (x86)\Recepty doma
2015-01-20 16:01:03 ----D---- C:\Program Files (x86)\Comodo
2015-01-20 15:27:13 ----A---- C:\Windows\wininit.ini
2015-01-20 02:11:11 ----D---- C:\Users\Ruda\AppData\Roaming\AnvSoft
2015-01-19 15:04:52 ----D---- C:\Users\Ruda\AppData\Roaming\Internet Download Accelerator
2015-01-19 14:52:53 ----D---- C:\Users\Ruda\AppData\Roaming\Comodo
2015-01-19 14:52:52 ----D---- C:\Users\Ruda\AppData\Roaming\Mozilla
2015-01-19 02:13:31 ----SDC---- C:\Downloads
2015-01-19 01:48:48 ----D---- C:\Program Files (x86)\System Explorer
2015-01-17 23:07:14 ----D---- C:\Program Files (x86)\Ashampoo
2015-01-17 21:52:34 ----D---- C:\Windows\Logs
2015-01-15 23:32:16 ----D---- C:\ProgramData\ProgDVB
2015-01-15 22:40:51 ----D---- C:\Program Files\ProgDVB
2015-01-15 00:06:12 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-01-14 03:14:18 ----D---- C:\Windows\system32\MRT
2015-01-14 03:01:01 ----A---- C:\Windows\system32\MRT.exe
2015-01-11 20:20:40 ----D---- C:\Users\Ruda\AppData\Roaming\Ashampoo
2015-01-10 14:04:44 ----D---- C:\Windows\Migration
2015-01-10 14:02:58 ----D---- C:\Users\Ruda\AppData\Roaming\rmi
2015-01-10 12:08:29 ----D---- C:\Users
2015-01-10 00:30:01 ----A---- C:\Windows\system32\nvsvc64.dll
2015-01-10 00:30:01 ----A---- C:\Windows\system32\nvcpl.dll
2015-01-10 00:29:53 ----A---- C:\Windows\system32\nvsvcr.dll
2015-01-10 00:29:52 ----A---- C:\Windows\system32\nvshext.dll
2015-01-10 00:29:52 ----A---- C:\Windows\system32\nvmctray.dll
2015-01-10 00:29:52 ----A---- C:\Windows\system32\nv3dappshextr.dll
2015-01-10 00:29:52 ----A---- C:\Windows\system32\nv3dappshext.dll
2015-01-09 21:53:53 ----D---- C:\Users\Ruda\AppData\Roaming\Ashampoo Photo Commander 11
2015-01-08 19:23:23 ----D---- C:\Users\Ruda\AppData\Roaming\QuickScan
2015-01-08 18:58:59 ----D---- C:\ProgramData\Ashampoo
2015-01-08 17:37:10 ----D---- C:\Users\Ruda\AppData\Roaming\FastStone
2015-01-07 01:49:25 ----D---- C:\Program Files\Recuva
2015-01-04 21:08:35 ----D---- C:\Windows\SYSWOW64\drivers
2015-01-04 02:32:22 ----D---- C:\Program Files (x86)\Google
2015-01-02 01:09:52 ----D---- C:\Program Files (x86)\Cheat Engine 6.3
2015-01-02 01:08:44 ----HDC---- C:\VTRoot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 cumon;cumon; C:\Windows\system32\drivers\cumon.sys [2011-09-05 205512]
R0 Evdd;evdd; C:\Windows\system32\drivers\evdd.sys [2011-09-05 19568]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-12-23 568600]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2000-01-01 20464]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2015-01-27 31376]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 CFRMD;CFRMD; C:\Windows\system32\DRIVERS\CFRMD.sys [2014-06-26 37976]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2014-12-09 20184]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\system32\DRIVERS\cmdguard.sys [2014-12-09 792648]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2014-12-09 45880]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2014-12-09 104608]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2012-02-29 17152]
R3 anvsnddrv;AnvSoft Virtual Sound Device; C:\Windows\system32\drivers\anvsnddrv.sys [2015-01-06 33872]
R3 AsusVBus;AsusVBus; C:\Windows\system32\DRIVERS\AsusVBus.sys [2012-04-12 35968]
R3 AsusVTouch;AsusVTouch; C:\Windows\system32\DRIVERS\AsusVTouch.sys [2012-04-12 16512]
R3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2012-05-31 36480]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2014-04-06 3979776]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2012-05-31 341120]
R3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2012-05-31 111232]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2012-05-31 30848]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2012-05-31 168064]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2012-05-31 68736]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2012-05-31 281472]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2014-03-18 589000]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2012-02-24 80384]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2012-02-19 200488]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-01-29 5363200]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2000-01-01 342528]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2000-01-01 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2000-01-01 795632]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2000-01-01 117912]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2000-01-01 100312]
R3 MQAC;@mqutil.dll,-6101; C:\Windows\system32\drivers\mqac.sys [2009-07-14 189440]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-12-13 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2000-01-01 689840]
S1 KDHacker;KDHacker; \??\c:\program files (x86)\kingsoft\kingsoft antivirus\security\kxescan\kdhacker64.sys []
S3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 CLVirtualBus01;CyberLink Virtual CDROM Bus Enumerator; C:\Windows\system32\DRIVERS\CLVirtualBus01.sys []
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2013-04-22 21712]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []
S3 EsgScanner;EsgScanner; C:\Windows\system32\DRIVERS\EsgScanner.sys [2015-01-31 22704]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2014-03-31 58056]
S3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2014-10-22 164864]
S3 MsgPlusDriver;Messenger Plus! Virtual Camera; C:\Windows\system32\DRIVERS\MsgPlusDriver.sys []
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2014-12-11 82816]
S3 PCWinSoft;ScreenCamera Video Camera; C:\Windows\system32\DRIVERS\scrcamhrdrv_x64.sys [2012-10-11 241800]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2014-12-22 16152]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbser;USB Serial Emulation Driver; C:\Windows\system32\DRIVERS\usbser.sys [2013-08-29 33280]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2014-12-28 34816]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2011-11-21 80512]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [2012-04-13 277120]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-05-31 119424]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R2 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2009-07-14 19456]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2014-11-12 2449592]
R2 CLPSLauncher;COMODO LPS Launcher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [2014-12-25 70864]
R2 CmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2014-12-09 7618952]
R2 CPMService;COMODO Programs Manager Service; C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe [2015-01-18 116032]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-11-27 2370240]
R2 GeekBuddyRSP;GeekBuddyRSP Server; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2014-12-25 2327248]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-12-13 1148560]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2000-01-01 169432]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-01-14 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2000-01-01 390616]
R2 MSMQ;@mqutil.dll,-6102; C:\Windows\system32\mqsvc.exe [2009-07-14 9216]
R2 NetMsmqActivator;Adaptér naslouchání Net.Msmq; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-01-14 139944]
R2 NetPipeActivator;Adaptér naslouchání Net.Pipe; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-01-14 139944]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-12-13 1701520]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-12-13 19823248]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-01-27 935056]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\Windows\System32\tcpsvcs.exe [2009-07-14 10240]
R2 SNMP;@%SystemRoot%\system32\snmp.exe,-3; C:\Windows\System32\snmp.exe [2010-11-20 49664]
R2 ssinstall;SInstalátor; C:\Windows\SysWOW64\ssins.exe [2013-11-01 2324216]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-01-03 5426448]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2000-01-01 27768]
R2 VideoAcceleratorService;VideoAcceleratorService; C:\PROGRA~2\SPEEDB~1\VideoAcceleratorService.exe [2014-02-24 298152]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-01-14 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-01-14 124088]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-01-20 2485608]
S2 IEEtwCollectorService;Internet Explorer ETW Collector Service; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S2 NetTcpActivator;Adaptér naslouchání Net.Tcp; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-01-14 139944]
S2 SpyHunter 4 Service;SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-30 267440]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-01-14 50864]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-12-09 2265304]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-01-29 279000]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2014-03-31 1512640]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-27 114800]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-03-02 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2014-03-02 5132888]
S3 SystemExplorerHelpService;System Explorer Service; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [2014-12-20 820960]
S4 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe []

-----------------EOF-----------------

Re: Webssearch

Napsal: 01 úno 2015 02:48
od altrok
Dobry vecer :bye:

:arrow: V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

:arrow: Zkontrolujeme jeste i jina umisteni haveti. Dejte jeste log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

Re: Webssearch

Napsal: 01 úno 2015 10:52
od rudy630
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2015
Ran by Ruda (administrator) on RUDA-PC on 01-02-2015 10:45:46
Running from C:\PerfLogs\Desktop
Loaded Profiles: Ruda (Available profiles: Ruda & Guest & Classic .NET AppPool & DefaultAppPool)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Windows\System32\CISVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
() C:\Program Files\COMODO\COMODO Programs Manager\CPMservice.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(PS Media s.r.o.) C:\Windows\SysWOW64\ssins.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(SPEEDbit) C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(iSkySoft) C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2661672 2012-02-19] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-05-26] (Alcor Micro Corp.)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\btvstack.exe [1023616 2012-05-31] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\athbttray.exe [801920 2012-05-31] (Atheros Commnucations)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1297112 2014-12-09] (COMODO)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2000-01-01] (Intel Corporation)
HKLM-x32\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [102568 2012-02-21] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-03] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [iSkysoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2066432 2015-01-07] (iSkySoft)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3977576 2015-01-20] (LogMeIn Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [177624 2015-01-27] (NVIDIA Corporation)
AppInit_DLLs: , C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [177624 2015-01-27] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [164568 2015-01-27] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [164568 2015-01-27] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [164568 2015-01-27] (NVIDIA Corporation)
AppInit_DLLs-x32: , c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [164568 2015-01-27] (NVIDIA Corporation)
AppInit_DLLs-x32: , C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [164568 2015-01-27] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk
ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled ()
BootExecute: autocheck autochk * cnat
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?logged=1#obsah
SearchScopes: HKLM-x32 -> SuggestionsURL_JSON http://api.widdit.com/suggestions/?form ... earchTerms}
SearchScopes: HKLM-x32 -> TopResultURLFallback http://search.certified-toolbar.com?si= ... earchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> DefaultScope {9249FFDB-058C-45D6-9AF3-F1B23BF48FF0} URL = http://search.seznam.cz/?q={searchTerms ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {1E1F17B7-F889-4480-8A29-31EC9A9EFF8C} URL = http://www.novinky.cz/hledej?w={searchT ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {1E2C0E9F-5A57-404C-B006-0935D8B62540} URL = http://www.alza.cz/SearchAdvanced.asp?EXPS={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL =
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {206BE1CD-D8E5-4E8B-82A6-7642EF131402} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {261F48F8-D058-48FB-AF2F-1612D1198CC3} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {4B2BCD33-D984-4D8E-9C54-B803E34B1CA9} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {593B6F83-B0BB-4B83-A5D9-7AC258B674B2} URL = http://www.mapy.cz/?query={searchTerms} ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {9249FFDB-058C-45D6-9AF3-F1B23BF48FF0} URL = http://search.seznam.cz/?q={searchTerms ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {9FF53AE7-AE60-4664-949F-033A0F77247D} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {A11803E2-62F5-4A23-B930-9F8D435E2A78} URL = http://www.firmy.cz/phr/{searchTerms}?s ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {A3A70049-68EA-44AC-905D-25C4A57E654C} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {C7C7B0ED-D00A-4989-9D5A-29377FA141AF} URL = http://cs.wikipedia.org/w/index.php?tit ... earchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {D55EDDC6-DF84-4DE3-A258-8E0FC1DAE671} URL = http://www.radirna.cz/search/{searchTerms}/
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {DCEBF011-A869-4BF6-AF25-376F5EE21962} URL = http://cs.wikipedia.org/w/index.php?tit ... earchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
BHO: DownloadHelper Class -> {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} -> C:\Program Files\Common Files\Download Helper\DownloadHelperx64.dll (IE Download Helper)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Adblock Plus)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO-x32: DownloadHelper Class -> {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} -> C:\Program Files (x86)\Common Files\Download Helper\DownloadHelper.dll (IE Download Helper)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Adblock Plus)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} http://www.asus.com/support/asusTek_sys_ctrl3.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab
DPF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455}
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{A749964F-2A94-43D1-9724-95EC764BBAA2}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1

FireFox:
========
FF ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\g3adrwsv.default-1413532086244
FF Homepage: https://www.seznam.cz/?logged=1
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll (LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @Skype Technologies S.A..com/Skype Web Plugin -> C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin64.dll (Skype)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll (Adobe Systems, Inc.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @exent.com/npExentCtl,version=7.0.0.0 -> C:\Program Files (x86)\Free Ride Games\npExentCtl.dll No File
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll (LastPass)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @oberon-media.com/ONCAdapter -> C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.14\npapicomadapter.dll (Oberon-Media )
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: www.exent.com/GameTreatWidget -> C:\Program Files (x86)\Free Ride Games\NPGameTreatPlugin.dll No File
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Ruda\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @tools.google.com/Google Update;version=3 -> C:\Users\Ruda\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @tools.google.com/Google Update;version=9 -> C:\Users\Ruda\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ruda\AppData\Roaming\mozilla\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ruda\AppData\Roaming\mozilla\plugins\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF SearchPlugin: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\g3adrwsv.default-1413532086244\searchplugins\hledejcenycz.xml
FF SearchPlugin: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\g3adrwsv.default-1413532086244\searchplugins\vyhledvn-vide-ve-slub-youtube.xml
FF Extension: LastPass - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\g3adrwsv.default-1413532086244\Extensions\support@lastpass.com [2015-01-24]
FF Extension: S3.Google Translator - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\g3adrwsv.default-1413532086244\Extensions\s3google@translator.xpi [2014-10-17]
FF Extension: Speed Dial - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\g3adrwsv.default-1413532086244\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2014-10-17]
FF Extension: Adblock Plus - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\g3adrwsv.default-1413532086244\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-11-20]
FF Extension: Tab Mix Plus - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\g3adrwsv.default-1413532086244\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2014-10-17]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-01-27]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-01-27]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext

Chrome:
=======
CHR StartupUrls: Profile 2 -> "hxxp://www.google.cz/?gws_rd=ssl"
CHR Profile: C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Default
CHR Profile: C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Prezentace Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-24]
CHR Extension: (Dokumenty Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-24]
CHR Extension: (Disk Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-24]
CHR Extension: (YouTube) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-24]
CHR Extension: (Tabulky Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-24]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2015-01-24]
CHR Extension: (Peněženka Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-24]
CHR Extension: (Gmail) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-24]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - No Path
CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - No Path

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2449592 2014-11-12] (Microsoft Corporation)
R2 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70864 2014-12-25] (Comodo Security Solutions, Inc.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [7618952 2014-12-09] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265304 2014-12-09] (COMODO)
R2 CPMService; C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe [116032 2015-01-18] ()
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2370240 2014-11-27] (Comodo Security Solutions, Inc.)
R2 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2014-12-25] (Comodo Security Solutions, Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2000-01-01] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-01-14] (LogMeIn, Inc.)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [9216 2009-07-14] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation)
R2 simptcp; C:\Windows\SysWOW64\tcpsvcs.exe [9216 2009-07-14] (Microsoft Corporation)
R2 SNMP; C:\Windows\System32\snmp.exe [49664 2010-11-20] (Microsoft Corporation)
R2 SNMP; C:\Windows\SysWOW64\snmp.exe [47616 2010-11-20] (Microsoft Corporation)
R2 ssinstall; C:\Windows\SysWOW64\ssins.exe [2324216 2013-11-01] (PS Media s.r.o.)
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Mister Group)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5426448 2015-01-03] (TeamViewer GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2000-01-01] (VIA Technologies, Inc.)
R2 VideoAcceleratorService; C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorService.exe [298152 2014-02-24] (SPEEDbit)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [327296 2012-05-31] (Atheros)
S4 NAUpdate; "C:\Program Files (x86)\Nero\Update\NASvc.exe" [X]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [17152 2012-02-29] (ASUSTek Computer Inc.)
R3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [33872 2015-01-06] (AnvSoft Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [35968 2012-04-12] (Windows (R) Win 7 DDK provider)
R3 AsusVTouch; C:\Windows\System32\DRIVERS\AsusVTouch.sys [16512 2012-04-12] (Windows (R) Win 7 DDK provider)
R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [37976 2014-06-26] (Windows (R) Win 7 DDK provider) [File not signed]
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20184 2014-12-09] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [792648 2014-12-09] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [45880 2014-12-09] (COMODO)
R0 cumon; C:\Windows\System32\drivers\cumon.sys [205512 2011-09-05] (Windows (R) Win 7 DDK provider)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-01-31] ()
R0 Evdd; C:\Windows\System32\drivers\evdd.sys [19568 2011-09-05] ()
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [104608 2014-12-09] (COMODO)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [164864 2014-10-22] (ITE ) [File not signed]
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [117912 2000-01-01] (Qualcomm Atheros Co., Ltd.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 2000-01-01] (Intel Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [189440 2009-07-14] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 PCWinSoft; C:\Windows\System32\DRIVERS\scrcamhrdrv_x64.sys [241800 2012-10-11] (Windows (R) Server 2003 DDK provider)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-12-22] ()
S3 XHCIdrv; C:\Windows\System32\DRIVERS\XHCIdrv.sys [119720 2013-08-08] (Windows (R) Win 7 DDK provider)
S3 CLVirtualBus01; system32\DRIVERS\CLVirtualBus01.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S1 KDHacker; \??\c:\program files (x86)\kingsoft\kingsoft antivirus\security\kxescan\kdhacker64.sys [X]
S3 MsgPlusDriver; system32\DRIVERS\MsgPlusDriver.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-01 01:21 - 2015-02-01 01:21 - 02154496 _____ () C:\Users\Ruda\Downloads\adwcleaner_4.103.exe
2015-02-01 01:13 - 2015-02-01 01:13 - 00003134 _____ () C:\Windows\System32\Tasks\{DAB592B0-49D5-4393-87F5-F69B1E2418A6}
2015-02-01 01:08 - 2015-02-01 01:08 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Plus500
2015-02-01 01:08 - 2015-02-01 01:08 - 00000000 ____D () C:\Users\Ruda\AppData\Local\Plus500
2015-02-01 01:08 - 2015-02-01 01:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plus500
2015-02-01 01:08 - 2015-02-01 01:08 - 00000000 ____D () C:\Program Files (x86)\Plus500
2015-02-01 01:00 - 2015-02-01 01:00 - 00000000 _____ () C:\Windows\setuperr.log
2015-02-01 01:00 - 2015-02-01 01:00 - 00000000 _____ () C:\Windows\setupact.log
2015-02-01 00:25 - 2015-02-01 00:25 - 01222144 _____ () C:\Users\Ruda\Downloads\RSITx64.exe
2015-02-01 00:01 - 2015-02-01 00:01 - 00000000 ___RD () C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-01-31 18:40 - 2015-01-31 18:40 - 00003320 _____ () C:\Windows\System32\Tasks\SpyHunter4Startup
2015-01-31 18:39 - 2015-01-31 18:39 - 00022704 _____ () C:\Windows\system32\Drivers\EsgScanner.sys
2015-01-31 01:40 - 2006-07-13 20:56 - 00000716 _____ () C:\Users\Ruda\Downloads\Instalace.txt
2015-01-30 03:46 - 2015-01-30 03:46 - 00001468 _____ () C:\Users\Public\Desktop\LibreOffice 4.4.lnk
2015-01-30 03:46 - 2015-01-30 03:46 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.4
2015-01-30 03:32 - 2015-01-30 03:33 - 223940608 _____ () C:\Users\Ruda\Downloads\LibreOffice_4.4.0_Win_x86.msi
2015-01-30 00:11 - 2015-01-30 00:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-01-29 23:56 - 2015-02-01 10:45 - 00003962 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{B9C26119-2806-4546-B247-5A5B1261D67E}
2015-01-29 23:43 - 2015-01-29 23:43 - 18133680 _____ (Adobe Systems Incorporated) C:\Users\Ruda\Downloads\install_flash_player(1).exe
2015-01-29 23:41 - 2015-02-01 10:22 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-29 23:41 - 2015-01-30 00:38 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-29 23:41 - 2015-01-30 00:38 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-29 23:41 - 2015-01-30 00:38 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-29 15:15 - 2015-01-29 15:15 - 00000720 _____ () C:\Users\Ruda\Documents\regedit 29.1.2015.reg
2015-01-28 00:36 - 2015-01-28 00:36 - 00001783 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Q-Dir.lnk
2015-01-28 00:36 - 2015-01-28 00:36 - 00001777 _____ () C:\Users\Public\Desktop\Q-Dir.lnk
2015-01-28 00:36 - 2015-01-28 00:36 - 00000000 ____D () C:\Users\Ruda\Documents\Favorites_Q_Dir
2015-01-28 00:36 - 2015-01-28 00:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Q-Dir
2015-01-28 00:36 - 2015-01-28 00:36 - 00000000 ____D () C:\Program Files\Q-Dir
2015-01-28 00:35 - 2015-01-28 00:35 - 01544704 _____ (Nenad Hrg (SoftwareOK.com)) C:\Users\Ruda\Downloads\Q-Dir_Installer_x64.exe
2015-01-27 18:39 - 2015-01-28 00:52 - 00000000 ____D () C:\Users\Ruda\Documents\léčivé
2015-01-27 12:30 - 2015-01-27 12:31 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-27 11:29 - 2015-01-27 11:32 - 00000000 ____D () C:\Program Files (x86)\ProgDVB
2015-01-27 11:28 - 2015-01-27 11:28 - 19796088 _____ () C:\Users\Ruda\Downloads\ProgDVB7.08.0Std.exe
2015-01-27 11:23 - 2015-01-27 11:23 - 00000000 ____D () C:\Windows\SysWOW64\NV
2015-01-27 11:23 - 2015-01-27 11:23 - 00000000 ____D () C:\Windows\system32\NV
2015-01-27 11:17 - 2015-01-27 11:19 - 25459856 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-01-27 11:17 - 2015-01-27 11:19 - 03298816 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-01-27 11:17 - 2015-01-27 11:19 - 02902456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-01-27 11:17 - 2015-01-27 11:19 - 00994712 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-01-27 11:17 - 2015-01-27 11:19 - 00969360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-01-27 11:17 - 2015-01-27 11:19 - 00942736 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-01-27 11:17 - 2015-01-27 11:19 - 00929424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-01-27 11:17 - 2015-01-27 11:19 - 00906384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-01-27 11:17 - 2015-01-27 11:19 - 00353040 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-01-27 11:17 - 2015-01-27 11:19 - 00305320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 32102544 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 24765584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 20465296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 18566296 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 17250776 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 16009120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 14115944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 13295552 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 13210248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 10774544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 10714488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 10274448 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-01-27 11:17 - 2015-01-27 11:18 - 03607184 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 03245712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 01895240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434725.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 01556808 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434725.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 00177624 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-01-27 11:17 - 2015-01-27 11:18 - 00031376 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2015-01-27 11:17 - 2015-01-10 09:07 - 00027441 _____ () C:\Windows\system32\nvinfo.pb
2015-01-26 23:31 - 2015-01-26 23:32 - 05325208 _____ (Piriform Ltd) C:\Users\Ruda\Downloads\ccsetup502.exe
2015-01-26 02:33 - 2015-01-26 02:33 - 05135288 _____ (Piriform Ltd) C:\Users\Ruda\Downloads\spsetup128.exe
2015-01-25 11:35 - 2015-01-28 02:37 - 00000000 ____D () C:\Users\Ruda\Documents\Lupénka
2015-01-24 13:53 - 2015-01-24 13:53 - 00001196 _____ () C:\Users\Public\Desktop\My LastPass Vault.lnk
2015-01-24 13:51 - 2015-01-24 13:51 - 14147584 _____ () C:\Users\Ruda\Downloads\lastpass_x64.exe
2015-01-24 13:32 - 2015-01-24 13:33 - 17545392 _____ (Adobe Systems Incorporated) C:\Users\Ruda\Downloads\install_flash_player_ax.exe
2015-01-24 12:45 - 2015-01-24 12:44 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-01-24 12:44 - 2015-01-24 12:44 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-24 12:43 - 2015-01-24 12:43 - 00000000 ____D () C:\Program Files\Java
2015-01-24 12:41 - 2015-01-24 12:43 - 93427112 _____ (Oracle Corporation) C:\Users\Ruda\Downloads\jre-8u31-windows-x64.exe
2015-01-24 12:31 - 2015-01-24 12:31 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2015-01-24 12:31 - 2015-01-24 12:31 - 00000000 ____D () C:\Program Files (x86)\GPU-Z
2015-01-24 12:30 - 2015-01-24 12:30 - 01710888 _____ (techPowerUp (www.techpowerup.com)) C:\Users\Ruda\Downloads\GPU-Z.0.8.1.exe
2015-01-21 01:48 - 2015-01-21 01:48 - 01110476 _____ () C:\Users\Ruda\Downloads\7-zip.exe
2015-01-21 01:48 - 2015-01-21 01:48 - 00000000 ____D () C:\Program Files (x86)\7-Zip
2015-01-21 00:52 - 2015-01-21 01:34 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Yandex
2015-01-21 00:52 - 2015-01-21 00:52 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Opera Software
2015-01-21 00:52 - 2015-01-21 00:52 - 00000000 ____D () C:\Users\Ruda\AppData\Local\Chromium
2015-01-20 13:55 - 2015-01-20 13:55 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cechoslovak
2015-01-20 13:55 - 2015-01-20 13:55 - 00000000 ____D () C:\Program Files (x86)\Cechoslovak
2015-01-20 13:54 - 2015-01-22 21:44 - 00000000 ____D () C:\Users\Ruda\Downloads\CeskolovenskeTVinstall
2015-01-19 01:48 - 2015-01-19 01:48 - 01917504 _____ (Mister Group ) C:\Users\Ruda\Downloads\SystemExplorerSetup_630.exe
2015-01-18 20:55 - 2015-01-18 21:03 - 00000000 ____D () C:\Users\Ruda\AppData\Local\Thunderbird
2015-01-18 20:55 - 2015-01-18 20:55 - 00002072 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2015-01-18 20:55 - 2015-01-18 20:55 - 00002060 _____ () C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2015-01-18 20:54 - 2015-01-18 20:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2015-01-18 20:53 - 2015-01-18 20:53 - 28763032 _____ (Mozilla) C:\Users\Ruda\Downloads\ThunderbirdSetup31.4.0.exe
2015-01-18 00:44 - 2011-09-05 16:12 - 00027968 _____ (COMODO Security Solutions Inc.) C:\Windows\system32\cpmnat.exe
2015-01-18 00:41 - 2015-01-18 00:41 - 00001017 _____ () C:\Users\Public\Desktop\COMODO Programs Manager.lnk
2015-01-18 00:41 - 2011-09-05 16:14 - 00205512 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\cumon.sys
2015-01-18 00:41 - 2011-09-05 16:14 - 00019568 _____ () C:\Windows\system32\Drivers\evdd.sys
2015-01-17 22:04 - 2015-01-22 21:42 - 00000000 ____D () C:\Users\Ruda\Downloads\CINEBENCH OSX.app
2015-01-17 21:22 - 2015-01-17 21:22 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-01-16 11:22 - 2015-01-16 11:22 - 27276128 _____ (pdfforge ) C:\Users\Ruda\Downloads\PDFCreator-2_0_0-setup.exe
2015-01-15 22:40 - 2015-01-27 11:30 - 00000972 _____ () C:\Users\Public\Desktop\ProgDVB 7.lnk
2015-01-15 22:40 - 2015-01-27 11:30 - 00000948 _____ () C:\Users\Public\Desktop\ProgTV.lnk
2015-01-15 22:40 - 2015-01-15 22:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProgDVB
2015-01-13 21:24 - 2015-01-13 21:24 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-13 21:24 - 2015-01-13 21:24 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-13 21:24 - 2015-01-13 21:24 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-13 21:24 - 2015-01-13 21:24 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-13 21:24 - 2015-01-13 21:24 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-13 21:23 - 2015-01-13 21:23 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-13 21:23 - 2015-01-13 21:23 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-13 21:23 - 2015-01-13 21:23 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-13 21:23 - 2015-01-13 21:23 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-13 21:23 - 2015-01-13 21:23 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-13 21:23 - 2015-01-13 21:23 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-13 21:23 - 2015-01-13 21:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-13 21:23 - 2015-01-13 21:23 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-11 22:28 - 2015-02-01 10:33 - 00000924 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002UA.job
2015-01-11 22:28 - 2015-01-31 22:33 - 00000902 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002Core.job
2015-01-11 01:33 - 2015-01-11 01:33 - 00000000 ____D () C:\_OTM
2015-01-11 01:01 - 2015-02-01 00:31 - 00000000 ____D () C:\rsit
2015-01-09 23:20 - 2015-02-01 10:46 - 00000000 ____D () C:\FRST
2015-01-09 18:43 - 2015-01-09 18:43 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\VitySoft
2015-01-09 11:09 - 2015-01-13 00:49 - 00001036 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2015-01-09 11:09 - 2015-01-09 11:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2015-01-09 11:09 - 2015-01-09 11:09 - 00000000 ____D () C:\Program Files\CPUID
2015-01-09 11:08 - 2015-01-09 11:08 - 01577464 _____ ( ) C:\Users\Ruda\Downloads\cpu-z_1.71.1-setup-en.exe
2015-01-08 18:10 - 2015-01-26 00:03 - 00342528 ___SH () C:\Users\Ruda\Downloads\Thumbs.db
2015-01-08 17:44 - 2015-01-08 17:44 - 11278928 _____ (COMODO) C:\Users\Ruda\Downloads\CPM_SETUP_1.3.2.30_xp_vista_server2003_win7.exe
2015-01-07 20:00 - 2015-01-07 20:00 - 00000000 ____D () C:\Users\Ruda\Documents\iSkysoft Video Converter Ultimate
2015-01-07 20:00 - 2015-01-07 20:00 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
2015-01-07 20:00 - 2015-01-07 20:00 - 00000000 ____D () C:\Users\Ruda\AppData\Local\iSkysoft
2015-01-07 19:59 - 2015-01-07 20:08 - 00000000 ____D () C:\ProgramData\iSkysoft
2015-01-07 19:59 - 2015-01-07 20:06 - 00000000 ____D () C:\ProgramData\iSkysoft Video Converter Ultimate
2015-01-07 19:58 - 2015-01-07 19:58 - 00000000 ____D () C:\Users\Public\Documents\iSkysoft
2015-01-06 17:01 - 2015-01-31 18:08 - 00976896 ___SH () C:\Users\Ruda\Documents\Thumbs.db
2015-01-06 15:10 - 2015-01-06 15:10 - 00000000 ____D () C:\Users\Ruda\Documents\Any Video Converter Ultimate
2015-01-06 15:05 - 2015-01-06 15:05 - 00033872 _____ (AnvSoft Inc.) C:\Windows\system32\Drivers\anvsnddrv.sys
2015-01-06 14:58 - 2015-01-06 14:59 - 37459872 _____ (Any-Video-Converter.com ) C:\Users\Ruda\Downloads\avc-ultimate.exe
2015-01-06 01:13 - 2015-01-06 19:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
2015-01-06 01:12 - 2015-01-06 19:55 - 00000000 ____D () C:\Program Files (x86)\Anvsoft
2015-01-03 21:44 - 2015-01-03 21:44 - 00000000 ____D () C:\Users\Ruda\AppData\Local\TeamViewer
2015-01-03 20:35 - 2015-01-23 22:09 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2015-01-03 20:35 - 2015-01-03 20:35 - 00001009 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-01-03 20:35 - 2015-01-03 20:35 - 00000997 _____ () C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-01-03 20:34 - 2015-01-03 20:34 - 08986784 _____ (TeamViewer GmbH) C:\Users\Ruda\Downloads\TeamViewer_Setup.exe
2015-01-03 12:02 - 2015-01-08 22:45 - 24743106 _____ () C:\Users\Ruda\Downloads\vlc-2.1.5-win32.exe
2015-01-02 01:10 - 2015-01-31 18:24 - 00024210 _____ () C:\Windows\CUAppUsage.Dat

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-01 10:47 - 2013-08-23 16:09 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Skype
2015-02-01 10:40 - 2014-12-25 14:40 - 01474832 _____ () C:\Windows\system32\Drivers\sfi.dat
2015-02-01 03:00 - 2013-05-29 00:14 - 01880553 _____ () C:\Windows\WindowsUpdate.log
2015-02-01 01:13 - 2014-11-05 01:12 - 00000891 _____ () C:\Users\Ruda\Desktop\Plus500.lnk
2015-02-01 01:13 - 2014-11-05 01:12 - 00000891 _____ () C:\Users\Guest\Desktop\Plus500.lnk
2015-02-01 00:27 - 2013-10-12 22:46 - 00000000 ____D () C:\Program Files\trend micro
2015-02-01 00:17 - 2013-07-15 19:59 - 00000000 ____D () C:\Users\Ruda\AppData\Local\LogMeIn Hamachi
2015-02-01 00:15 - 2013-03-07 10:49 - 00000000 ____D () C:\Users\Ruda\AppData\Local\CrashDumps
2015-02-01 00:12 - 2014-07-03 21:04 - 00000000 ___DC () C:\AdwCleaner
2015-02-01 00:09 - 2009-07-14 05:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-01 00:09 - 2009-07-14 05:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-01 00:07 - 2011-02-19 06:36 - 00840382 _____ () C:\Windows\system32\perfh005.dat
2015-02-01 00:07 - 2011-02-19 06:36 - 00232846 _____ () C:\Windows\system32\perfc005.dat
2015-02-01 00:07 - 2009-07-14 06:13 - 01943282 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-01 00:02 - 2014-04-13 15:39 - 00000434 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2015-02-01 00:01 - 2013-03-07 02:52 - 00000466 _____ () C:\Users\Ruda\AppData\Roaming\sp_data.sys
2015-02-01 00:00 - 2014-09-14 12:37 - 00000000 _____ () C:\Windows\SysWOW64\sinstall.log
2015-02-01 00:00 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-31 23:39 - 2013-03-07 02:48 - 00000000 ____D () C:\Users\Ruda
2015-01-31 23:07 - 2014-09-28 15:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-01-31 23:07 - 2014-02-24 20:49 - 00001029 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-01-31 23:07 - 2014-02-24 20:49 - 00001025 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-01-31 23:07 - 2013-11-13 02:46 - 00000969 _____ () C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-01-31 22:45 - 2014-09-28 15:19 - 00002217 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-31 18:24 - 2014-12-28 03:28 - 04022386 _____ () C:\Windows\system32\Drivers\fvstore.dat
2015-01-31 12:10 - 2013-11-23 00:33 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\vlc
2015-01-31 03:38 - 2014-05-15 13:38 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\TeamViewer
2015-01-31 03:32 - 2013-10-02 17:41 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\uTorrent
2015-01-30 23:44 - 2013-03-07 02:52 - 00000000 ____D () C:\Users\Ruda\Documents\Bluetooth Folder
2015-01-30 23:40 - 2014-01-05 15:51 - 00000000 ____D () C:\Users\Guest
2015-01-30 23:40 - 2013-12-07 18:51 - 00000000 ____D () C:\Users\Classic .NET AppPool
2015-01-30 23:40 - 2013-07-28 10:32 - 00000000 ____D () C:\Users\DefaultAppPool
2015-01-30 23:40 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2015-01-30 16:12 - 2012-02-24 12:39 - 00000000 ____D () C:\ProgramData\Adobe
2015-01-30 13:13 - 2014-09-13 00:22 - 00081840 _____ () C:\Users\Ruda\AppData\Local\GDIPFONTCACHEV1.DAT
2015-01-30 13:13 - 2009-07-14 05:45 - 04924104 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-30 12:36 - 2014-02-28 01:48 - 00000000 ____D () C:\Users\Ruda\Downloads\czech
2015-01-30 03:45 - 2014-11-16 17:45 - 00000000 ____D () C:\Program Files (x86)\LibreOffice 4
2015-01-30 00:38 - 2013-03-07 03:23 - 00000000 ____D () C:\Users\Ruda\AppData\Local\Adobe
2015-01-30 00:11 - 2013-07-15 19:57 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2015-01-30 00:09 - 2009-07-14 06:08 - 00032546 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-01-28 17:23 - 2014-02-13 11:44 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-28 02:38 - 2014-03-19 01:25 - 00000000 ____D () C:\Users\Ruda\Documents\Paraziti
2015-01-28 02:34 - 2013-11-12 01:05 - 00000000 ____D () C:\Users\Ruda\Documents\Vlasovci + MMS
2015-01-28 00:38 - 2014-12-23 11:57 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Q-Dir
2015-01-28 00:36 - 2013-09-03 09:22 - 00070129 _____ () C:\Windows\Q-Dir.ini
2015-01-27 11:23 - 2014-11-28 01:08 - 00000000 ___DC () C:\Temp
2015-01-27 11:23 - 2013-03-08 11:06 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-27 11:21 - 2014-01-08 20:21 - 00935056 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-01-27 11:20 - 2013-03-08 11:05 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-01-27 11:18 - 2014-05-27 12:05 - 00877488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-01-27 11:18 - 2013-11-19 19:52 - 00164568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-01-26 23:33 - 2013-12-02 11:38 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-01-26 23:33 - 2013-12-02 11:38 - 00000000 ____D () C:\Program Files\CCleaner
2015-01-26 02:34 - 2013-11-16 01:04 - 00000798 _____ () C:\Users\Public\Desktop\Speccy.lnk
2015-01-26 02:34 - 2013-11-16 01:04 - 00000000 ____D () C:\Program Files\Speccy
2015-01-25 19:19 - 2012-02-24 12:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-01-24 13:53 - 2013-11-30 00:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass
2015-01-24 13:53 - 2013-11-30 00:32 - 00000000 ____D () C:\Program Files (x86)\LastPass
2015-01-24 13:53 - 2013-11-04 20:47 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2015-01-23 21:20 - 2013-03-07 02:49 - 00000000 ____D () C:\Users\Ruda\AppData\Local\VirtualStore
2015-01-23 21:12 - 2014-10-07 00:16 - 00008704 _____ () C:\Users\Ruda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-22 23:11 - 2014-12-25 14:35 - 00001078 _____ () C:\Users\Public\Desktop\Comodo Dragon.lnk
2015-01-22 21:44 - 2014-12-23 22:23 - 00000000 ____D () C:\Users\Ruda\Downloads\FreeRapid-0.9u4
2015-01-22 21:44 - 2014-11-26 14:25 - 00000000 ____D () C:\Users\Ruda\Downloads\CCEnhancer-4.2-mulitlingual
2015-01-22 21:44 - 2013-12-02 14:13 - 00000000 ____D () C:\Users\Ruda\Downloads\SysinternalsSuite
2015-01-22 21:42 - 2014-09-29 13:46 - 00000000 ____D () C:\Users\Ruda\Downloads\Photos
2015-01-22 21:42 - 2014-05-08 20:46 - 00000000 ____D () C:\Users\Ruda\Downloads\Návody
2015-01-22 21:41 - 2014-01-18 11:13 - 00000000 ____D () C:\Users\Ruda\Downloads\chrome-win32
2015-01-21 02:08 - 2013-10-09 15:57 - 00000000 ____D () C:\Windows\Sun
2015-01-20 20:22 - 2014-06-19 14:40 - 00000000 ____D () C:\Program Files (x86)\Recepty doma
2015-01-20 17:14 - 2014-09-01 16:37 - 00000000 ____D () C:\Users\Ruda\TapinRadio
2015-01-20 16:01 - 2014-12-25 14:35 - 00000000 ____D () C:\Program Files (x86)\Comodo
2015-01-20 16:00 - 2014-12-25 14:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2015-01-20 15:27 - 2014-01-05 03:48 - 00000331 _____ () C:\Windows\wininit.ini
2015-01-20 15:12 - 2014-03-14 20:54 - 00000000 ____D () C:\Users\Ruda\Documents\Korejs,Havlán
2015-01-20 02:11 - 2014-07-28 00:16 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\AnvSoft
2015-01-19 15:04 - 2014-11-28 01:59 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Internet Download Accelerator
2015-01-19 14:52 - 2014-12-25 14:35 - 00000000 ____D () C:\Users\Ruda\AppData\Local\Comodo
2015-01-19 14:52 - 2013-10-23 00:28 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Comodo
2015-01-19 14:52 - 2013-03-07 13:18 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Mozilla
2015-01-19 01:48 - 2014-05-05 00:52 - 00001054 _____ () C:\Users\Public\Desktop\System Explorer.lnk
2015-01-19 01:48 - 2014-05-05 00:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
2015-01-19 01:48 - 2014-04-21 13:00 - 00000000 ____D () C:\Program Files (x86)\System Explorer
2015-01-17 23:07 - 2014-04-22 08:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-01-17 23:07 - 2014-04-22 08:49 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2015-01-15 23:32 - 2013-12-10 15:23 - 00000000 ____D () C:\ProgramData\ProgDVB
2015-01-15 22:40 - 2014-07-15 00:58 - 00000000 ____D () C:\Program Files\ProgDVB
2015-01-15 00:06 - 2012-02-24 12:39 - 01918932 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-01-14 11:32 - 2013-07-15 19:59 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-01-14 03:14 - 2013-07-10 13:25 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-14 03:01 - 2013-03-07 09:48 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-13 00:49 - 2014-11-04 12:14 - 00001185 _____ () C:\Users\Public\Desktop\PDF-Viewer.lnk
2015-01-13 00:44 - 2013-06-06 13:36 - 00000000 ____D () C:\Users\Ruda\Documents\Zdroje dat
2015-01-11 22:44 - 2014-11-28 01:50 - 00000000 ____D () C:\Users\Ruda\Documents\čištění
2015-01-11 22:28 - 2014-02-25 23:03 - 00003898 _____ () C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002UA
2015-01-11 22:28 - 2014-02-25 23:03 - 00003530 _____ () C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002Core
2015-01-11 20:20 - 2014-01-10 00:12 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Ashampoo
2015-01-10 14:02 - 2014-02-26 12:16 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\rmi
2015-01-10 00:30 - 2014-01-08 20:21 - 06860432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-01-10 00:30 - 2014-01-08 20:21 - 03517256 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-01-10 00:29 - 2014-01-08 20:21 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-01-10 00:29 - 2014-01-08 20:21 - 01097872 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2015-01-10 00:29 - 2014-01-08 20:21 - 00385352 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-01-10 00:29 - 2014-01-08 20:21 - 00075080 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2015-01-10 00:29 - 2014-01-08 20:21 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-01-09 21:53 - 2014-11-23 03:32 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Ashampoo Photo Commander 11
2015-01-09 20:47 - 2014-01-08 20:21 - 04173527 _____ () C:\Windows\system32\nvcoproc.bin
2015-01-08 22:46 - 2013-12-29 19:08 - 00001028 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-01-08 19:23 - 2014-06-12 12:45 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\QuickScan
2015-01-08 18:58 - 2014-01-10 00:11 - 00000000 ____D () C:\ProgramData\Ashampoo
2015-01-08 17:45 - 2015-01-01 22:37 - 629145600 ____H () C:\fileimage.dat
2015-01-08 17:37 - 2013-11-14 11:57 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\FastStone
2015-01-07 22:52 - 2014-12-19 22:10 - 00000000 ____D () C:\Users\Ruda\Documents\LICENČNÍ ČÍSLA PROGR
2015-01-07 01:49 - 2013-05-31 09:15 - 00000000 ____D () C:\Program Files\Recuva
2015-01-04 21:11 - 2014-10-30 12:31 - 00000701 _____ () C:\Users\Ruda\.swfinfo
2015-01-04 02:32 - 2012-02-24 12:40 - 00000000 ____D () C:\Program Files (x86)\Google
2015-01-02 01:10 - 2014-12-25 14:40 - 00000000 ____D () C:\Windows\System32\Tasks\COMODO
2015-01-02 01:09 - 2014-06-29 17:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3
2015-01-02 01:09 - 2014-06-29 17:00 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.3
2015-01-02 01:08 - 2013-10-10 09:54 - 00000000 __HDC () C:\VTRoot

==================== Files in the root of some directories =======

2013-03-16 11:33 - 2013-03-16 04:27 - 15271824 _____ (Google Inc.) C:\Program Files (x86)\picasa39-setup.exe
2013-10-16 00:00 - 2015-01-24 13:53 - 14147584 _____ () C:\Program Files (x86)\Common Files\lpuninstall.exe
2014-11-30 11:45 - 2014-12-26 17:59 - 0000624 _____ () C:\Users\Ruda\AppData\Roaming\All CPU MeterV3_Settings.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0000096 _____ () C:\Users\Ruda\AppData\Roaming\Camdata.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0000408 _____ () C:\Users\Ruda\AppData\Roaming\CamLayout.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0000408 _____ () C:\Users\Ruda\AppData\Roaming\CamShapes.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0004509 _____ () C:\Users\Ruda\AppData\Roaming\CamStudio.cfg
2014-06-26 22:04 - 2014-06-26 22:04 - 0000000 _____ () C:\Users\Ruda\AppData\Roaming\CamStudio.Producer.Data.ini
2014-06-26 22:04 - 2014-06-26 22:04 - 0001206 _____ () C:\Users\Ruda\AppData\Roaming\CamStudio.Producer.ini
2014-03-24 18:03 - 2015-01-01 14:05 - 0099384 _____ () C:\Users\Ruda\AppData\Roaming\inst.exe
2014-12-28 20:04 - 2014-12-28 20:04 - 0000006 _____ () C:\Users\Ruda\AppData\Roaming\Network Meter_Usage.ini
2014-03-24 18:03 - 2015-01-01 14:05 - 0007859 _____ () C:\Users\Ruda\AppData\Roaming\pcouffin.cat
2014-03-24 18:03 - 2015-01-01 14:05 - 0001167 _____ () C:\Users\Ruda\AppData\Roaming\pcouffin.inf
2014-03-24 18:03 - 2015-01-01 14:05 - 0000033 _____ () C:\Users\Ruda\AppData\Roaming\pcouffin.log
2014-03-24 18:03 - 2015-01-01 14:05 - 0082816 _____ (VSO Software) C:\Users\Ruda\AppData\Roaming\pcouffin.sys
2013-03-07 02:52 - 2015-02-01 00:01 - 0000466 _____ () C:\Users\Ruda\AppData\Roaming\sp_data.sys
2014-01-18 18:31 - 2014-01-18 18:31 - 0022713 _____ () C:\Users\Ruda\AppData\Roaming\UserTile.png
2014-12-11 18:11 - 2015-01-01 13:54 - 0001057 _____ () C:\Users\Ruda\AppData\Roaming\vso_ts_preview.xml
2013-07-10 23:56 - 2013-07-10 23:56 - 0081582 _____ () C:\Users\Ruda\AppData\Roaming\zulagames.ico
2014-10-07 00:16 - 2015-01-23 21:12 - 0008704 _____ () C:\Users\Ruda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-28 16:12 - 2013-11-28 16:12 - 0001715 _____ () C:\Users\Ruda\AppData\Local\FastClean.20131128.161230.txt
2014-09-29 15:09 - 2014-09-29 15:27 - 0029696 _____ () C:\Users\Ruda\AppData\Local\MSGBOX.EXE
2014-12-16 22:52 - 2014-12-16 22:52 - 0002119 _____ () C:\Users\Ruda\AppData\Local\recently-used.xbel
2013-03-27 21:44 - 2014-08-16 15:37 - 0007670 _____ () C:\Users\Ruda\AppData\Local\Resmon.ResmonCfg
2014-06-03 08:57 - 2014-10-22 14:52 - 0012326 _____ () C:\ProgramData\LmeUSB.log
2014-06-03 08:57 - 2014-10-22 14:52 - 0012342 _____ () C:\ProgramData\LSDmbTH.log
2013-12-10 15:36 - 2013-12-10 15:36 - 0004987 _____ () C:\ProgramData\mxnhytee.feu
2013-03-08 02:37 - 2013-03-08 02:38 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2013-03-08 02:36 - 2013-03-08 02:37 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2013-03-08 02:36 - 2013-03-08 02:36 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-24 02:58

==================== End Of Log ============================

Re: Webssearch

Napsal: 01 úno 2015 10:54
od rudy630
ještě addition

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-02-2015
Ran by Ruda at 2015-02-01 10:47:44
Running from C:\PerfLogs\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: COMODO Antivirus (Enabled - Up to date) {F0BC89B2-8937-0933-021B-B17D981F2A71}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Comodo Defense+ (Enabled - Up to date) {4BDD6856-AF0D-06BD-38AB-8A0FE39860CC}
FW: COMODO Firewall (Enabled) {C8870897-C358-086B-2944-184866CC6D0A}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

„Windows Live Essentials“ (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
„Windows Live Mail“ (x32 Version: 16.4.3528.0331 - „Microsoft Corporation“) Hidden
„Windows Live Messenger“ (x32 Version: 16.4.3528.0331 - „Microsoft Corporation“) Hidden
µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - )
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{CB320215-F4BD-40FD-A209-62B131DA1B82}) (Version: 99.9 - Eyeo GmbH)
Adblock Plus for IE (HKLM-x32\...\{1ce01891-839b-4ad1-b629-2e608ba0c6ba}) (Version: 1.0 - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Akamai NetSession Interface (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\Akamai) (Version: - Akamai Technologies, Inc)
Aktualizace NVIDIA 16.18.9 (Version: 16.18.9 - NVIDIA Corporation) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 1.4.42.69356 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 1.4.42.69356 - Alcor Micro Corp.) Hidden
Any Video Converter Ultimate 5.7.7 (HKLM-x32\...\Any Video Converter Ultimate_is1) (Version: - Any-Video-Converter.com)
Ashampoo Burning Studio FREE v.1.14.5 (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Commander 11 v.11.1.8 (HKLM-x32\...\{C92AB6F1-0F9C-8526-5DF1-0A2FD0FB33D9}_is1) (Version: 11.1.8 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Optimizer FREE (HKLM-x32\...\Ashampoo Photo Optimizer FREE_is1) (Version: 1.2.0 - ashampoo GmbH & Co. KG)
ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.24 - ASUS)
ASUS FaceLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0014 - ASUS)
ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.2 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.1 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.7 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.1 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0041 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.0.9 - ASUS)
ASUS Virtual Touch (HKLM-x32\...\{938CFBD4-0652-49E5-BB8B-153948865941}) (Version: 1.0.11 - ASUS)
ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.144.298 - ASUS Cloud Corporation)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.309 - ASUSTEK)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.140 - Atheros)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.12 - Atheros Communications Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.5187 - DsNET Corp)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Bass Audio Decoder (remove only) (HKLM-x32\...\Bass Audio Decoder) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5306 - CDBurnerXP)
cechoslovak (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\cechoslovak) (Version: - )
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 36.1.1.21 - Comodo)
COMODO Internet Security Premium (HKLM\...\{18F14F4B-D8A9-4309-817E-3BC0B7664E53}) (Version: 8.0.0.4344 - COMODO Security Solutions Inc.)
COMODO Programs Manager (HKLM\...\{D968E920-3A49-48EB-BA1D-8964DCDF0CA9}) (Version: 1.3_build_30 - COMODO)
CPUID CPU-Z 1.71.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2926 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
DirectVobSub (remove only) (HKLM-x32\...\DirectVobSub) (Version: - )
Dream Day First Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version: - Oberon Media)
Dream Vacation Solitaire (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111249233}) (Version: - Oberon Media)
ETDWare PS/2-X64 10.5.9.0 (HKLM\...\Elantech) (Version: 10.5.9.0 - ELAN Microelectronic Corp.)
Evidence LSoft 4.2.0.0 (HKLM-x32\...\{6B7574A7-ADE5-40CD-B4DE-3A72C483DB92}_is1) (Version: - Martin Lutonský)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
FastStone Image Viewer 5.3 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.3 - FastStone Soft)
FFMPEG Core Files (remove only) (HKLM-x32\...\FFMPEG Core Files) (Version: - )
FormatFactory 3.5.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.5.0.0 - Format Factory)
Fotoattēlu galerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foto-galerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Freemake Video Converter verze 4.1.5 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.5 - Ellora Assets Corporation)
Gabest MPEG Splitter (remove only) (HKLM-x32\...\Gabest MPEG Splitter) (Version: - )
Galapago (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version: - Oberon Media)
Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Game Park Console (HKLM-x32\...\Game Park Console) (Version: 1.2.4.431 - Oberon Media Inc.)
GeekBuddy (HKLM\...\{E98902C5-09AF-487A-AFAE-D4C386F506C0}) (Version: 4.18.121 - Comodo Security Solutions Inc)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Go Go Gourmet Chef of the Year (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115290153}) (Version: - Oberon Media)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.94 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google+ Auto Backup (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\Google+ Auto Backup) (Version: 1.0.26.151 - Google, Inc.)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
IE Download Helper (HKLM\...\{92A49BB2-0039-470F-82F8-A599BF5C4410}) (Version: 3.2 - IE Download Helper)
InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.3.3 - ASUS)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
LastPass (pouze odinstalace) (HKLM-x32\...\LastPass) (Version: - LastPass)
LAV Filters 0.63.0 (HKLM-x32\...\lavfilters_is1) (Version: 0.63.0 - Hendrik Leppkes)
LibreOffice 4.4.0.3 (HKLM-x32\...\{8BEE1CDD-F95D-4759-952D-6B38DF99D1F0}) (Version: 4.4.0.3 - The Document Foundation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.303 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.303 - LogMeIn, Inc.) Hidden
Mahjong Secrets (HKLM-x32\...\510008402) (Version: - Oberon Media)
MediaPortal (HKLM-x32\...\MediaPortal) (Version: 1.9.0 - Team MediaPortal)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft OneNote 2013 - cs-cz (HKLM\...\OneNoteFreeRetail - cs-cz) (Version: 15.0.4675.1003 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 CSY (HKLM\...\{0A8A841B-29C4-4947-BF59-241216B4D904}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Visual Basic PowerPacks 10.0 (HKLM-x32\...\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}) (Version: 10.0.20911 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Web Platform Installer 4.6 (HKLM\...\{16C7D2AD-20CA-491E-80BC-8607A9AACED9}) (Version: 4.0.40719.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 35.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 cs)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.4.0 - Mozilla)
Mozilla Thunderbird 31.4.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 31.4.0 (x86 cs)) (Version: 31.4.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 7.0.0.7128 - MyHeritage.com)
NVIDIA GeForce Experience 2.1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.5 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.25 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenSource AVI Splitter (remove only) (HKLM-x32\...\OpenSource AVI Splitter) (Version: - )
OpenSource DTS/AC3/DD+ Source Filter (remove only) (HKLM-x32\...\OpenSource DTS/AC3/DD+ Source Filter) (Version: - )
OpenSource Flash Video Splitter (remove only) (HKLM-x32\...\OpenSource Flash Video Splitter) (Version: - )
Ovládací panel NVIDIA 347.25 (Version: 347.25 - NVIDIA Corporation) Hidden
PDF Architect 2 OCR Module (x32 Version: 2.0.17.17583 - pdfforge GmbH) Hidden
PDF24 Creator 6.9.2 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.309.0 - Tracker Software Products Ltd)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PicPick (HKLM-x32\...\PicPick) (Version: 3.4.0 - NTeWORKS)
Plants vs Zombies (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117080787}) (Version: - Oberon Media)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Plus500 (HKLM-x32\...\Plus500) (Version: - )
Poczta usługi Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Pošta Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
ProgDVB (HKLM-x32\...\ProgDVB) (Version: 7.x - Prog)
ProgDVB x64 (HKLM\...\ProgDVB) (Version: 7.x - Prog)
Q-Dir (HKLM\...\Q-Dir) (Version: - )
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Qualcomm Atheros)
Recepty doma (HKLM-x32\...\Recepty doma_is1) (Version: - Martin Roubec)
Recuva (HKLM\...\Recuva) (Version: 1.48 - Piriform)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Sada Compatibility Pack pro systém Office 2007 (HKLM-x32\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.12 - ASUS)
Seznam Instalátor (HKLM-x32\...\ssinstall) (Version: - Seznam.cz)
Seznam Software (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\SeznamInstall) (Version: - Seznam.cz)
SHIELD Streaming (Version: 3.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.18.9 - NVIDIA Corporation) Hidden
Simple Adblock (HKLM-x32\...\{B4920103-09F6-4AD2-B150-CFC4474D2DDC}) (Version: 1.1.5 - Simple Adblock)
Skype Web Plugin (HKLM-x32\...\{B51DD93B-3CB5-4D9D-BFF2-FD19DBBBFD9A}) (Version: 2.9.13008.18866 - Skype Technologies S.A.)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
Svět skládaček (HKLM-x32\...\Svět skládaček) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Explorer 6.3.0 (HKLM-x32\...\{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1) (Version: - Mister Group)
TapinRadio 1.60.1 (HKLM-x32\...\TapinRadio_is1) (Version: - Raimersoft)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.36897 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.27 - ASUS)
World of Goo (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-116672750}) (Version: - Oberon Media)
Фотогалерия (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{A75BE48D-BF58-4A8B-B96C-F9A09DFB9844}\InprocServer32 -> %LOCALAPPDATA%\Pokki\ocdeskband_0.dll No File
CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

30-01-2015 23:36:35 Operace obnovení
31-01-2015 00:33:16 Installed Microsoft Image Composite Editor
31-01-2015 00:48:39 Removed Microsoft Image Composite Editor
31-01-2015 01:45:09 Revo Uninstaller's restore point - ICQ 5.1
31-01-2015 01:49:12 Revo Uninstaller's restore point - ICQ Toolbar
31-01-2015 12:15:31 Revo Uninstaller's restore point - webssearches uninstall
31-01-2015 12:27:08 Revo Uninstaller's restore point - XTab
01-02-2015 01:00:57 Revo Uninstaller's restore point - Plus500

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2015-01-10 10:17 - 00000035 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {00B4C1D0-87B9-446F-9BD5-3FC8C2467514} - System32\Tasks\{18940542-76C0-4F13-9BE4-8A66F0476E6A} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {030C4D65-5770-4883-AAE9-A6EEF09B80CA} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002UA => C:\Users\Ruda\AppData\Local\Google\Update\GoogleUpdate.exe [2014-06-12] (Google Inc.)
Task: {063B2351-F936-4ADC-B53F-DD1E5582889F} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-12-09] (COMODO)
Task: {0C6B6EBC-9031-44FA-B832-2A50AC01A441} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-12-09] (COMODO)
Task: {0EA9B830-5DC4-4E1B-A3F2-5A1794F8501C} - System32\Tasks\{9166EEE1-665A-47B7-9AA3-F28205031DCF} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Galapago\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Galapago\install.log"
Task: {10FFDDB6-187C-4FF4-A221-EDF0455A1B23} - System32\Tasks\{F631C605-FF2F-4804-AA14-842D626AB4D0} => pcalua.exe -a C:\Users\Ruda\Downloads\Winamp5.3.3.1100CZ.exe -d C:\Users\Ruda\Downloads
Task: {11FA246D-C1FB-4763-82E6-F9EB4F15CCF0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-26] (Piriform Ltd)
Task: {11FFDE89-7029-4CAD-99B2-4058B8D36F77} - System32\Tasks\{327BF183-22F5-4AB3-A914-6C35530911CB} => pcalua.exe -a C:\Users\Ruda\Downloads\ScreenShots.exe
Task: {16B650C0-89C9-454D-97D5-6C2102834D84} - System32\Tasks\{6B5CC6B3-B792-45FF-9E34-6A890BAA3CBF} => pcalua.exe -a C:\Users\Ruda\Downloads\Android.Manager.WiFi.v2010.10.01.exe -d C:\Users\Ruda\Downloads
Task: {16EC238F-8D7D-4C90-A41B-F10D5F8B95E3} - System32\Tasks\{BFFDA647-C68E-454A-B685-C181E1C9EEF0} => Chrome.exe http://ui.skype.com/ui/0/6.7.0.102/cs/g ... Error=1603
Task: {1AB0F5BC-6361-4DFA-82E6-E03EF58F9B29} - System32\Tasks\{17B8EBB4-ACC4-40FC-9E86-5E55A576447D} => pcalua.exe -a c:\vallen\jpegger\jpegger.exe -c -ui -q
Task: {1B030A60-CD3C-46E5-9D8D-09ECFB600B57} - System32\Tasks\C__Users_Ruda_Downloads_tvonline.exe => C:\Users\Ruda\Downloads\tvonline.exe
Task: {21F63DC7-40DC-4AFB-9776-A61419648025} - System32\Tasks\{D6893A38-300B-4034-AEEE-3EA1D9C1E11C} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {247BD6D5-3C21-4DD9-9179-6AC13EC5E037} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-12-09] (COMODO)
Task: {2547CE60-04D2-4E81-A72C-7D14A59FAE45} - System32\Tasks\{83EAA0A7-58FB-4FB5-8FF1-0142CB60BC2D} => Chrome.exe http://ui.skype.com/ui/0/6.7.0.102/cs/g ... Error=1603
Task: {28AE289D-6C60-414E-9452-0372B314D19F} - System32\Tasks\{7E2599D8-728D-4529-B8DF-4D3425C0E6A8} => pcalua.exe -a C:\Users\Ruda\Downloads\flashplayer-lista-centrumcz.exe -d C:\Users\Ruda\Downloads
Task: {29B6765C-3E5D-4669-B996-06AC5DF531B4} - System32\Tasks\{A1CF3082-39CC-4078-AEC3-25C007D9ED63} => Chrome.exe http://ui.skype.com/ui/0/6.3.0.105/cs/g ... Error=1603
Task: {300A3041-2778-4470-9D6C-51F8BC874D93} - System32\Tasks\{737437BC-901B-4288-BABE-7F80E77DBB3F} => pcalua.exe -a C:\Users\Ruda\Downloads\Q-Dir_Installer.exe -d C:\Users\Ruda\Downloads
Task: {37087F67-6F6B-497C-8243-910F7194E560} - System32\Tasks\{BF848EB0-7806-4688-96BF-34413190A1F6} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {37C1B75B-A500-45B3-B1AE-90E1EFD6C201} - System32\Tasks\{6BBE8BB2-5C12-4A6E-92BE-36A91ADE43FD} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Bubbletown\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Bubbletown\install.log"
Task: {380EF2F5-1933-45D0-84A2-E73992A28DD5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002Core => C:\Users\Ruda\AppData\Local\Google\Update\GoogleUpdate.exe [2014-06-12] (Google Inc.)
Task: {3B69497D-214E-4AC6-9BD7-5D08A3AAD0E7} - System32\Tasks\{99330A8B-B583-4E52-B6D9-8CCCC44BB57A} => pcalua.exe -a C:\Users\Ruda\Downloads\utorrent-lista-centrumcz.exe -d C:\Users\Ruda\Downloads
Task: {3BA38A96-8C57-4DFA-B37F-13BEE26FE5BC} - System32\Tasks\{5F50205B-81B7-4BE5-A556-CAF25610E21D} => pcalua.exe -a C:\Users\Ruda\Documents\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Documents\FreeRapid-0.9u3\FreeRapid-0.9u3
Task: {3DB4F540-0DA0-4B85-B5BC-69EB92075629} - System32\Tasks\{1A9D60BE-8A7F-4668-8FC6-3784F8E88970} => pcalua.exe -a "C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\SetupTv.exe" -d "C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server"
Task: {3FAFCF43-3B51-4FC9-AEEF-12C98082BEFE} - System32\Tasks\{8B1919D7-7714-4D33-96FD-34DF36DC72E6} => C:\Users\Ruda\Downloads\Luminance-HDR-Win32-SETUP-v2.3.1-2.exe
Task: {4218984F-6740-45DF-9257-BEC2967174D6} - System32\Tasks\{2F0CBDFA-5117-4D5A-B7D9-EF2A2ADD726D} => pcalua.exe -a C:\Users\Ruda\Downloads\Install-winMd5Sum.exe -d C:\Users\Ruda\Downloads
Task: {46334A36-2A94-45FE-91AD-21E678AE8106} - System32\Tasks\{A002E75E-1495-4BA8-9A86-F4D44AD135DA} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Plants vs Zombies\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Plants vs Zombies\install.log"
Task: {4A1E6D7E-D213-44F7-80C9-08B4ABDA0F84} - System32\Tasks\{6FBB8A7D-5EE5-43AA-94E5-BE60D121BDD9} => C:\Program Files (x86)\WinThruster\WinThruster.exe
Task: {4CD71E3C-DCF9-4B8E-843E-F46C858C7DE5} - System32\Tasks\{61BE9914-AB99-4F00-8FD1-F742D2A73D72} => pcalua.exe -a "C:\Users\Ruda\Downloads\irfanview_plugins_436_setup (1).exe" -d C:\Users\Ruda\Downloads
Task: {4D42D988-220F-4BC7-B7DC-B8E44055D893} - System32\Tasks\{2181C5A6-223E-4525-BB57-559A0BC59D43} => pcalua.exe -a E:\obsah\Programy\Ostatní\OpenOffice\OOo_3.2.0rc3_20100118_Win32Intel_install_cs.exe -d E:\obsah\Programy\Ostatní\OpenOffice
Task: {4FD437B7-9854-48BB-B791-B77A1FA57D9A} - System32\Tasks\_UPDATES => C:\Program Files (x86)\WinThruster\WinThruster.exe
Task: {53CD46E0-70BD-4881-A93C-F94191C5712C} - System32\Tasks\{1A6BA995-46D6-4D3A-BC5D-45518B3AF759} => pcalua.exe -a C:\Users\Ruda\Downloads\uninstall.exe
Task: {5702B3D4-BC81-45E2-9ABA-68BC3D512AEA} - System32\Tasks\{7F5B67FF-7FC5-433A-B43F-7C97030550DC} => C:\Users\Ruda\Downloads\Luminance-HDR-Win32-SETUP-v2.3.1-2.exe
Task: {596F0B48-FC9F-43E7-B75F-37DBD67176A3} - System32\Tasks\{3CA36EE5-E256-4568-B0D0-D654007BFB6E} => pcalua.exe -a E:\software\oem\oemsetup.exe -d E:\software\oem
Task: {5A08588B-9980-4FAE-A675-B8BE597CE218} - System32\Tasks\{7064E0ED-D387-4527-B3FB-D3E603B18F21} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3
Task: {5A181C72-62DB-4B2E-9A58-697ED9E1824B} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002Core => C:\Users\Ruda\AppData\Local\Facebook\Update\FacebookUpdate.exe [2015-01-11] (Facebook Inc.)
Task: {5BC1BF0D-5504-4D12-9F8D-12A226E1FF9A} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {5DBF41C4-05C3-44C4-8A5A-9F8C01F8D2B4} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2012-09-27] ()
Task: {60C99AB4-F669-44B2-8138-1C54E3C0CC62} - System32\Tasks\{F2016396-B017-48F7-A855-8A17138D566C} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Turbo Fiesta\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Turbo Fiesta\install.log"
Task: {6386991A-9AD7-4771-AB2B-08D289E2209A} - \One-Click Optimizer WO11 No Task File <==== ATTENTION
Task: {70CF69D2-989B-4CDF-AD9E-7F59AFD5BBE2} - System32\Tasks\{6735FC5D-B0D4-41FB-983F-D6A0632CB305} => C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
Task: {712B8D58-53FD-47AA-A47E-B77BEB389D27} - System32\Tasks\{47747F88-D939-441C-BA01-5980F3ACC2C1} => pcalua.exe -a C:\Users\Ruda\Downloads\AdobeAIRInstaller(1).exe -d C:\Users\Ruda\Downloads
Task: {73598455-55F6-457F-A91D-18E3C7C42BAC} - System32\Tasks\{B4C4EABB-5B0D-4EF7-8449-BFA20337AEEC} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Dream Day First Home\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Dream Day First Home\install.log"
Task: {73D09C75-C9E8-4D7E-9A05-54315B7E0A74} - System32\Tasks\{17A30D0C-9F9A-42D2-ADD6-E6C2A6087AAA} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\
Task: {74960CA7-B50D-4A3D-838C-C6E30438E0F2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)
Task: {74BAB3AC-7C7A-4C02-9F63-AD3A5E095058} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)
Task: {75977CC3-1E01-4AD2-A0BC-DE752D94BE37} - System32\Tasks\{86B6FF6A-565B-4AE2-A512-561E454D84F8} => C:\Program Files (x86)\ASUS\FaceLogon\logonmgr.exe [2012-02-21] (ASUSTek Computer Inc.)
Task: {75B04332-4088-494F-957F-EA8CE8E6EFE6} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
Task: {782AF7B1-93C4-46BB-9331-671A3DEA7473} - System32\Tasks\ASUS Quick Gesture (x64) => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe [2012-04-11] (ASUSTeK Computer Inc.)
Task: {796FB41F-561A-4CDB-A13E-DA8677AD52B3} - System32\Tasks\{3B64BBF6-C46E-482D-934F-2F09EA63E528} => Chrome.exe http://ui.skype.com/ui/0/6.7.0.102/cs/g ... Error=1603
Task: {7AB9DA8D-80DE-46E8-B6EE-740D1548BEA2} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-06-20] (ASUSTeK Computer Inc.)
Task: {7EFAFBEE-4A0E-4258-8F22-B56A074FC1EE} - System32\Tasks\{CE160BED-AA6C-4B07-B819-15E1D2ED4F96} => pcalua.exe -a "C:\Program Files (x86)\OpenAL\oalinst.exe"
Task: {7F061C75-D6FC-4936-98CD-A81BADAAA50E} - System32\Tasks\{E70DE9C2-B021-460F-B37F-A045C1BD318B} => pcalua.exe -a C:\Users\Ruda\Downloads\Install-winMd5Sum.exe -d C:\Users\Ruda\Downloads
Task: {81169D4E-22EB-4B20-B641-AFCE30989E53} - System32\Tasks\{E9107696-4A75-4598-8970-BB83E8189B72} => pcalua.exe -a "c:\program files (x86)\kingsoft\kingsoft antivirus\uni0nst.exe"
Task: {8507C6E0-AB15-4A94-8661-252E988BBE53} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-12-09] (COMODO)
Task: {855C2966-0F57-492E-9289-49D291F7077F} - System32\Tasks\{EA700A6E-4619-4175-87F5-4DD8516627A9} => pcalua.exe -a E:\EasySetupAssistant\TL-WDR3600\EasySetupAssistant.exe -d E:\EasySetupAssistant\TL-WDR3600
Task: {85EC1DB6-DF1D-4F4F-84A8-8BF3C48D845E} - System32\Tasks\{DF50BD1D-B297-4274-95D1-9537FECDF4FD} => C:\Users\Ruda\Downloads\flock-2.6.0.en-US.win32.exe
Task: {8654D406-C33C-420F-8CF4-4E1EDC113B85} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-11-04] (Microsoft Corporation)
Task: {8A6064C4-E61B-4442-A531-779DA76F62A6} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe [2012-02-17] (ASUSTek Computer Inc.)
Task: {8B8F3C55-A04A-4C63-93FA-25E3BA0E2AE0} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe
Task: {8E1EF39C-C9C4-4604-B02C-5777F2E1D975} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {8F6A888A-91DF-44B3-A669-E86ED83FE6AA} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe
Task: {90FAEF35-3C1F-472B-99EE-577638B37680} - System32\Tasks\{009319D0-F3BB-4BA5-A79C-64A982F5295A} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9
Task: {921C83AC-37D6-4F90-BDDE-05224498DBF2} - System32\Tasks\{21A3F374-CB7E-4E4F-9012-95CA8CA4BAE9} => C:\Users\Ruda\Downloads\adwcleaner.exe
Task: {95BA0704-4383-4360-8A79-C648AC6657CC} - System32\Tasks\{767F9478-3C3D-4EAA-AB9E-61FD8DC323EC} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2014-04-17] (Microsoft Corporation)
Task: {9B604BA7-4990-4066-ADEE-F3E1E3AB2077} - System32\Tasks\{EF25F101-B955-42F5-9878-F24186A0A763} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {9C253EF1-E933-4C60-9C9C-2020699D01F1} - System32\Tasks\{4428E1A8-8A3F-43FB-A889-1A0C6ED40E8E} => C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
Task: {9DD4C10B-EAE3-45B3-B84F-FC885D539853} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-12-09] (COMODO)
Task: {9FAC172D-4CA5-4419-B661-B5C427F70794} - System32\Tasks\{F3796B24-9A0C-4930-A356-6EB166310D6C} => pcalua.exe -a "C:\Program Files (x86)\FlashGet Network\FlashGet 3\uninst.exe"
Task: {A0E4045A-A82E-40C0-8251-CCF2EF9C4DB5} - System32\Tasks\{4CAE5787-73F8-42AA-820D-13DFD7C1BC04} => pcalua.exe -a C:\Users\Ruda\Downloads\RegCleaner.exe -d C:\Users\Ruda\Downloads
Task: {A531A161-339D-4362-A29F-B71B712BCA8E} - System32\Tasks\{E28F3532-125E-4BE3-BC6B-C39100C0C74C} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Farm Frenzy 3 - Madagascar\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Farm Frenzy 3 - Madagascar\install.log"
Task: {A70A2388-E6AE-4C8A-BAC7-72241A828F77} - System32\Tasks\{91E9A25E-61BF-4194-9114-A965A07543E7} => pcalua.exe -a C:\Users\Ruda\Downloads\ytd-1.25.exe -d C:\Users\Ruda\Downloads
Task: {A7B080BD-8455-423E-BD5F-8964591CFCA3} - System32\Tasks\{37307FD2-BAB0-4627-B352-FDAEC564DE7C} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3
Task: {ACC1D449-0B5C-4147-9276-7881F1A0CEDF} - System32\Tasks\{F230008E-22AA-45DB-BC33-0AD646C51DAA} => Chrome.exe http://ui.skype.com/ui/0/6.3.0.105/cs/g ... Error=1603
Task: {AE595AEE-C073-4DDA-968A-65FD87657463} - System32\Tasks\ASUS Quick Gesture => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe [2012-04-11] (ASUSTeK Computer Inc.)
Task: {B037B310-9877-4270-A541-A2A4D10B4928} - System32\Tasks\{12F3F5D9-2FE5-4D60-A69F-D350813ABF07} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {B6D3F62D-EA60-47E6-94B5-0951D8F8A948} - System32\Tasks\{DAB592B0-49D5-4393-87F5-F69B1E2418A6} => pcalua.exe -a C:\Users\Ruda\Downloads\InstallPlus500(1).exe -d C:\Users\Ruda\Downloads
Task: {B9377CF7-D996-4021-B03C-C2B772A125D0} - System32\Tasks\{DC882E5B-1A06-4E48-B21B-3D82B17243FD} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {BCFAAA81-E865-4CC4-B387-1D54FCB965F5} - System32\Tasks\{3FDD096B-4477-4116-9577-8D01A2A457C0} => pcalua.exe -a C:\Users\Ruda\Downloads\IrfanView-4.32-cestina.exe -d C:\Users\Ruda\Downloads
Task: {BFD6723D-0194-414E-B84B-CDBB7C310CB7} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002UA => C:\Users\Ruda\AppData\Local\Facebook\Update\FacebookUpdate.exe [2015-01-11] (Facebook Inc.)
Task: {C31E0E22-2242-4B96-8DD5-6399CBED420F} - System32\Tasks\{C841434A-58F6-4B51-A900-FDB75DD8C7C6} => pcalua.exe -a C:\Users\Ruda\FreeRapid-0.9u4\frd.exe -d C:\Users\Ruda\FreeRapid-0.9u4
Task: {C71C5F8F-8CBE-41D5-A71A-DD9A34B238C1} - System32\Tasks\{75D8443C-5E6E-4EEC-9CA2-1CD4A83155EF} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Deadtime Stories\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Deadtime Stories\install.log"
Task: {C787445F-7F00-4E87-854D-E25060E58B1F} - System32\Tasks\{EDE012CB-828B-43A7-B05D-799D50643F98} => pcalua.exe -a C:\Users\Ruda\Downloads\Q-Dir_Installer\Q-Dir_Installer.exe -d C:\Users\Ruda\Downloads\Q-Dir_Installer
Task: {C795DFDD-E73F-4421-AF65-2DAA23DCD7D5} - System32\Tasks\_DEFAULT => C:\Program Files (x86)\WinThruster\WinThruster.exe
Task: {C8C1F110-C824-438D-A675-90B8ED30FDCF} - System32\Tasks\{69E4AD2B-0444-4F0F-938E-E25216565717} => pcalua.exe -a C:\Users\Ruda\Downloads\irfanviewcestina.exe -d C:\Users\Ruda\Downloads
Task: {C9B0E551-C092-4A34-A052-48938833C4AE} - System32\Tasks\{A6A6EE80-91BB-4C25-B7AE-007E7827504E} => pcalua.exe -a C:\Users\Ruda\Downloads\PuranDefragFree73cz.exe -d C:\Users\Ruda\Downloads
Task: {CC12428E-D56B-4AD1-B482-958669ACE552} - System32\Tasks\{497236D4-2B86-47EE-B2DC-494DE0F459E0} => Chrome.exe http://ui.skype.com/ui/0/6.7.0.102/cs/g ... Error=1603
Task: {CFFF0114-748E-4136-952C-9885E6DFD2BB} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2009-07-14] (Microsoft Corporation)
Task: {D03F2332-EE2B-4B19-9FCE-81837046DBA9} - System32\Tasks\{B537248A-7A51-4F21-9537-1F4656D35C43} => pcalua.exe -a "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe" -d "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller"
Task: {D5C22487-285D-414C-BCBA-95F31573C5DF} - \{33994548-DB11-4397-AAC6-A973A5AD255E} No Task File <==== ATTENTION
Task: {DC3B6C01-BB96-4CC8-A94A-12D5DADC8CB2} - System32\Tasks\{F1C323FF-2AE3-4EE4-B2A7-664C45CF8786} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3
Task: {DCFE36AD-5A4B-4737-8371-E3AECD3D28F2} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25] (ASUSTek Computer Inc.)
Task: {E1CC17F3-46BC-4C83-9AB4-2D5301740B16} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-841361005-909514878-2309378359-1002 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {E39B3F81-57A4-4C48-A27C-B7BB6641F6D9} - System32\Tasks\{6093F58B-05B8-4885-AC3E-5CBADB3B9EE8} => pcalua.exe -a "C:\Program Files (x86)\Q-Dir\Q-Dir.exe" -c -uninstall
Task: {E3A4C2E2-F09C-4FB8-AB3B-A5C57EA40DB8} - System32\Tasks\{F54D05B9-8665-451C-B33E-50DBCEE2C466} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u4\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u4
Task: {E86C242E-58BE-4D9E-9CD7-377E682ABDA1} - System32\Tasks\{46D68E75-36A5-415B-870B-2044C36BB17D} => Chrome.exe http://ui.skype.com/ui/0/6.3.0.105/cs/g ... Error=1603
Task: {EAC240FD-628B-421C-B9D9-F9A6699C5447} - System32\Tasks\{8934D43F-07E3-4AC9-8B51-EE69159070D9} => pcalua.exe -a C:\Users\Ruda\Downloads\InstallPlus500.exe -d C:\PerfLogs\Desktop
Task: {EE121801-62E4-413E-90B1-35D247602CDC} - System32\Tasks\{565C191B-0775-4FC9-9A45-B4693D41137F} => pcalua.exe -a "C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe" -d "C:\Program Files (x86)\Maxthon\Bin"
Task: {F22C2E35-F41F-4796-A405-B7B0FC0004FF} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-02-29] (ASUSTek Computer Inc.)
Task: {F68F5127-7E5C-43A9-B13E-6B79E1600FF9} - System32\Tasks\Wise Disk Cleaner Schedule Task => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe
Task: {F8762AE5-8D0F-4553-964B-38F1CB6524F3} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {F9CEAC5E-8BD9-4E8D-A9DD-72585A11D274} - System32\Tasks\{D0A82C02-D5B6-40F3-A6FE-5C6222ECAC6A} => Chrome.exe http://ui.skype.com/ui/0/6.3.0.105/cs/g ... Error=1603
Task: {F9F7AE3C-F149-49A5-B175-AA2EAC6D5570} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {FBB56E48-46C1-4174-A6F9-1E58A55FC723} - System32\Tasks\{974A3388-1B51-49AC-ADC4-7C199260FE17} => pcalua.exe -a C:\Users\Ruda\Downloads\iview436_setup.exe
Task: {FC4C46C5-AAE6-4316-9892-FD88BE98D484} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-30] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002Core.job => C:\Users\Ruda\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002UA.job => C:\Users\Ruda\AppData\Local\Facebook\Update\FacebookUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-01-08 20:21 - 2015-01-10 00:29 - 00117392 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-03-25 01:22 - 2014-05-20 08:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2011-09-05 16:11 - 2015-01-18 00:41 - 00116032 _____ () C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe
2013-04-15 17:39 - 2013-04-15 17:39 - 00073424 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2014-10-10 13:39 - 2015-01-27 11:19 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2012-02-21 23:49 - 2012-02-21 23:49 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2012-01-31 18:25 - 2012-01-31 18:25 - 01163264 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll
2015-01-07 19:59 - 2015-01-07 19:59 - 01498112 _____ () C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\DAQExp.dll
2015-01-07 19:59 - 2015-01-07 19:59 - 00137728 _____ () C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\CBSCreateVC.dll
2014-11-17 11:01 - 2000-01-01 01:00 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-01-27 12:30 - 2015-01-27 12:31 - 03925104 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2015-01-24 14:42 - 2015-01-24 14:42 - 01020928 _____ () C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\g3adrwsv.default-1413532086244\extensions\support@lastpass.com\platform\WINNT_x86-msvc\components\lpxpcom.dll
2015-01-18 20:54 - 2015-01-09 22:45 - 03347056 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
2015-01-18 20:54 - 2015-01-09 22:45 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2015-01-18 20:54 - 2015-01-09 22:45 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows\system32\MpSigStub.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nlasvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvapi64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcompiler.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvd3dumx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6434725.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6434725.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NvFBC64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NvIFR64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvinitx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvoglshim64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvoglv64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvumdshimx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvvsvc.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvwgf2umx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\profsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rstrui.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\srclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\srcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TSWbPrxy.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\D3DX9_42.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mediarcpt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ncsi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nlaapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntkrnlpa.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcompiler.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvd3dum.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NvFBC.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NvIFR.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvinit.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvoglshim32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvoglv32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvumdshim.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvwgf2um.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\srclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\anvsnddrv.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\EsgScanner.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mrxdav.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvlddmkm.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvpciflt.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\VClone.sys:$CmdTcID
AlternateDataStreams: C:\ProgramData\Temp:373C6DC2
AlternateDataStreams: C:\ProgramData\Temp:77846FFE
AlternateDataStreams: C:\ProgramData\Temp:E19699F8
AlternateDataStreams: C:\ProgramData\Temp:FEF919E6
AlternateDataStreams: C:\Users\Ruda\Downloads\7-zip.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\adwcleaner_4.103.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\adwcleaner_4.103.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\avc-ultimate.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\avc-ultimate.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\ccsetup502.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ccsetup502.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cdbxp_setup_4.5.4.5306.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\cdbxp_setup_4.5.4.5306.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\CPM_SETUP_1.3.2.30_xp_vista_server2003_win7.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cpu-z_1.71.1-setup-en.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\cpu-z_1.71.1-setup-en.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\GPU-Z.0.8.1.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\GPU-Z.0.8.1.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\HB N-ET6271.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\HB N-ET6271.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player_ax.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player_ax.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\InstalRecepty.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\InstalRecepty.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\jre-8u31-windows-x64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\jre-8u31-windows-x64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\lastpass_x64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\lastpass_x64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\LibreOffice_4.4.0_Win_x86.msi:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\PDFCreator-2_0_0-setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\PDFCreator-2_0_0-setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\ProgDVB7.08.0Std.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Q-Dir_Installer_x64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\RSITx64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\spsetup128.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\spsetup128.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\SystemExplorerSetup_630.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\SystemExplorerSetup_630.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\TeamViewer_Setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\TeamViewer_Setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\ThunderbirdSetup31.4.0.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ThunderbirdSetup31.4.0.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlc-2.1.5-win32.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlc-2.1.5-win32.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\win8_prakticka_prirucka_ukazka.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\win8_prakticka_prirucka_ukazka.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\AppData\Roaming\inst.exe:$CmdTcID

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: ehRecvr => 3
MSCONFIG\Services: ehSched => 3
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Skype.lnk => C:\Windows\pss\Skype.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Ruda^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Odeslat do OneNote.lnk => C:\Windows\pss\Odeslat do OneNote.lnk.Startup
MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.144.298\AsusWSPanel.exe /S
MSCONFIG\startupreg: Family Tree Builder Update => C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
MSCONFIG\startupreg: Google+ Auto Backup => "C:\Users\Ruda\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart
MSCONFIG\startupreg: tvncontrol => "C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -controlservice -slave

========================= Accounts: ==========================

Administrator (S-1-5-21-841361005-909514878-2309378359-500 - Administrator - Disabled)
Guest (S-1-5-21-841361005-909514878-2309378359-501 - Limited - Enabled) => C:\Users\Guest
Ruda (S-1-5-21-841361005-909514878-2309378359-1002 - Administrator - Enabled) => C:\Users\Ruda

==================== Faulty Device Manager Devices =============

Name: KDHacker
Description: KDHacker
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: KDHacker
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (02/01/2015 00:07:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 6.1.7601.17567, časové razítko: 0x4d672ee4
Název chybujícího modulu: EXPLORERFRAME.dll, verze: 6.1.7601.17514, časové razítko: 0x4ce7c6a8
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000411ce
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xExplorer.EXE0
Cesta k chybující aplikaci: Explorer.EXE1
Cesta k chybujícímu modulu: Explorer.EXE2
ID zprávy: Explorer.EXE3

Error: (02/01/2015 00:00:47 AM) (Source: EvntAgnt) (EventID: 2019) (User: )
Description: Agent rozšíření protokolu událostí služby SNMP nebyl inicializován správně.

Error: (02/01/2015 00:00:47 AM) (Source: EvntAgnt) (EventID: 1020) (User: )
Description: Při zpracovávání parametrů registru došlo k chybě. Agent rozšíření je ukončován.

Error: (02/01/2015 00:00:47 AM) (Source: EvntAgnt) (EventID: 2019) (User: )
Description: Agent rozšíření protokolu událostí služby SNMP nebyl inicializován správně.

Error: (01/31/2015 11:30:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 6.1.7601.17567, časové razítko: 0x4d672ee4
Název chybujícího modulu: EXPLORERFRAME.dll, verze: 6.1.7601.17514, časové razítko: 0x4ce7c6a8
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000411ce
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xExplorer.EXE0
Cesta k chybující aplikaci: Explorer.EXE1
Cesta k chybujícímu modulu: Explorer.EXE2
ID zprávy: Explorer.EXE3

Error: (01/31/2015 11:27:28 PM) (Source: EvntAgnt) (EventID: 2019) (User: )
Description: Agent rozšíření protokolu událostí služby SNMP nebyl inicializován správně.

Error: (01/31/2015 11:27:28 PM) (Source: EvntAgnt) (EventID: 1020) (User: )
Description: Při zpracovávání parametrů registru došlo k chybě. Agent rozšíření je ukončován.

Error: (01/31/2015 11:27:28 PM) (Source: EvntAgnt) (EventID: 2019) (User: )
Description: Agent rozšíření protokolu událostí služby SNMP nebyl inicializován správně.

Error: (01/31/2015 10:15:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IEXPLORE.EXE, verze: 11.0.9600.17496, časové razítko: 0x546fddcc
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00130530
ID chybujícího procesu: 0x1f8c
Čas spuštění chybující aplikace: 0xIEXPLORE.EXE0
Cesta k chybující aplikaci: IEXPLORE.EXE1
Cesta k chybujícímu modulu: IEXPLORE.EXE2
ID zprávy: IEXPLORE.EXE3

Error: (01/31/2015 06:26:18 PM) (Source: EvntAgnt) (EventID: 2019) (User: )
Description: Agent rozšíření protokolu událostí služby SNMP nebyl inicializován správně.


System errors:
=============
Error: (02/01/2015 10:00:34 AM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0

Error: (02/01/2015 08:00:34 AM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0

Error: (02/01/2015 05:00:34 AM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0

Error: (02/01/2015 00:02:14 AM) (Source: ipnathlp) (EventID: 30013) (User: )
Description: 25.144.235.58192.168.137.0255.255.255.0

Error: (02/01/2015 00:02:14 AM) (Source: ipnathlp) (EventID: 1233) (User: )
Description:

Error: (02/01/2015 00:02:01 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
KDHacker

Error: (02/01/2015 00:01:35 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba LogMeIn Hamachi Tunneling Engine neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (02/01/2015 00:01:35 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby LogMeIn Hamachi Tunneling Engine bylo dosaženo časového limitu (30000 ms).

Error: (02/01/2015 00:00:42 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Adaptér naslouchání Net.Tcp závisí na službě Služba sdílení portů Net.Tcp, která neuspěla při spuštění v důsledku následující chyby:
%%1058

Error: (02/01/2015 00:00:44 AM) (Source: SNMP) (EventID: 1500) (User: )
Description: Služba SNMP zjistila při přístupu ke klíči registru SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration chybu.


Microsoft Office Sessions:
=========================
Error: (02/01/2015 00:07:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.1.7601.175674d672ee4EXPLORERFRAME.dll6.1.7601.175144ce7c6a8c000000500000000000411ce

Error: (02/01/2015 00:00:47 AM) (Source: EvntAgnt) (EventID: 2019) (User: )
Description:

Error: (02/01/2015 00:00:47 AM) (Source: EvntAgnt) (EventID: 1020) (User: )
Description:

Error: (02/01/2015 00:00:47 AM) (Source: EvntAgnt) (EventID: 2019) (User: )
Description:

Error: (01/31/2015 11:30:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.1.7601.175674d672ee4EXPLORERFRAME.dll6.1.7601.175144ce7c6a8c000000500000000000411ce

Error: (01/31/2015 11:27:28 PM) (Source: EvntAgnt) (EventID: 2019) (User: )
Description:

Error: (01/31/2015 11:27:28 PM) (Source: EvntAgnt) (EventID: 1020) (User: )
Description:

Error: (01/31/2015 11:27:28 PM) (Source: EvntAgnt) (EventID: 2019) (User: )
Description:

Error: (01/31/2015 10:15:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.17496546fddccunknown0.0.0.000000000c0000005001305301f8c01d03d9ad209ef85C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown4b4eb101-a98e-11e4-b995-94dbc999140f

Error: (01/31/2015 06:26:18 PM) (Source: EvntAgnt) (EventID: 2019) (User: )
Description:


CodeIntegrity Errors:
===================================
Date: 2014-11-16 23:51:45.335
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-11-16 23:51:45.242
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-11-16 23:46:25.555
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-11-16 23:46:25.384
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-10-22 15:48:44.609
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-10-22 15:48:44.546
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-10-22 15:43:39.254
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-10-22 15:43:39.185
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-09-15 20:13:30.760
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-09-15 20:13:30.610
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU B970 @ 2.30GHz
Percentage of memory in use: 61%
Total physical RAM: 3979.91 MB
Available physical RAM: 1544.75 MB
Total Pagefile: 9946.1 MB
Available Pagefile: 6353.43 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:65.81 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (DATA) (Fixed) (Total:254.14 GB) (Free:57.36 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 30EC77D9)

Partition: GPT Partition Type.

==================== End Of Log ============================

Re: Webssearch

Napsal: 01 úno 2015 13:10
od altrok
  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CloseProcesses:
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3977576 2015-01-20] (LogMeIn Inc.)
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKLM-x32 -> SuggestionsURL_JSON http://api.widdit.com/suggestions/?form ... 1&command={searchTerms}
SearchScopes: HKLM-x32 -> TopResultURLFallback http://search.certified-toolbar.com?si= ... D049FA9&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = 
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin-x32: @exent.com/npExentCtl,version=7.0.0.0 -> C:\Program Files (x86)\Free Ride Games\npExentCtl.dll No File
FF Plugin-x32: www.exent.com/GameTreatWidget -> C:\Program Files (x86)\Free Ride Games\NPGameTreatPlugin.dll No File

S4 NAUpdate; "C:\Program Files (x86)\Nero\Update\NASvc.exe" [X]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X]
S3 CLVirtualBus01; system32\DRIVERS\CLVirtualBus01.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S1 KDHacker; \??\c:\program files (x86)\kingsoft\kingsoft antivirus\security\kxescan\kdhacker64.sys [X]
S3 MsgPlusDriver; system32\DRIVERS\MsgPlusDriver.sys [X]

2015-02-01 01:21 - 2015-02-01 01:21 - 02154496 _____ () C:\Users\Ruda\Downloads\adwcleaner_4.103.exe
2015-02-01 00:25 - 2015-02-01 00:25 - 01222144 _____ () C:\Users\Ruda\Downloads\RSITx64.exe
2015-01-11 01:01 - 2015-02-01 00:31 - 00000000 ____D () C:\rsit
2015-02-01 00:12 - 2014-07-03 21:04 - 00000000 ___DC () C:\AdwCleaner
2013-12-10 15:36 - 2013-12-10 15:36 - 0004987 _____ () C:\ProgramData\mxnhytee.feu

Task: {10FFDDB6-187C-4FF4-A221-EDF0455A1B23} - System32\Tasks\{F631C605-FF2F-4804-AA14-842D626AB4D0} => pcalua.exe -a C:\Users\Ruda\Downloads\Winamp5.3.3.1100CZ.exe -d C:\Users\Ruda\Downloads
Task: {11FFDE89-7029-4CAD-99B2-4058B8D36F77} - System32\Tasks\{327BF183-22F5-4AB3-A914-6C35530911CB} => pcalua.exe -a C:\Users\Ruda\Downloads\ScreenShots.exe
Task: {28AE289D-6C60-414E-9452-0372B314D19F} - System32\Tasks\{7E2599D8-728D-4529-B8DF-4D3425C0E6A8} => pcalua.exe -a C:\Users\Ruda\Downloads\flashplayer-lista-centrumcz.exe -d C:\Users\Ruda\Downloads
Task: {300A3041-2778-4470-9D6C-51F8BC874D93} - System32\Tasks\{737437BC-901B-4288-BABE-7F80E77DBB3F} => pcalua.exe -a C:\Users\Ruda\Downloads\Q-Dir_Installer.exe -d C:\Users\Ruda\Downloads
Task: {3B69497D-214E-4AC6-9BD7-5D08A3AAD0E7} - System32\Tasks\{99330A8B-B583-4E52-B6D9-8CCCC44BB57A} => pcalua.exe -a C:\Users\Ruda\Downloads\utorrent-lista-centrumcz.exe -d C:\Users\Ruda\Downloads
Task: {4CD71E3C-DCF9-4B8E-843E-F46C858C7DE5} - System32\Tasks\{61BE9914-AB99-4F00-8FD1-F742D2A73D72} => pcalua.exe -a "C:\Users\Ruda\Downloads\irfanview_plugins_436_setup (1).exe" -d C:\Users\Ruda\Downloads
Task: {53CD46E0-70BD-4881-A93C-F94191C5712C} - System32\Tasks\{1A6BA995-46D6-4D3A-BC5D-45518B3AF759} => pcalua.exe -a C:\Users\Ruda\Downloads\uninstall.exe
Task: {6386991A-9AD7-4771-AB2B-08D289E2209A} - \One-Click Optimizer WO11 No Task File <==== ATTENTION
Task: {75B04332-4088-494F-957F-EA8CE8E6EFE6} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
Task: {921C83AC-37D6-4F90-BDDE-05224498DBF2} - System32\Tasks\{21A3F374-CB7E-4E4F-9012-95CA8CA4BAE9} => C:\Users\Ruda\Downloads\adwcleaner.exe
Task: {D5C22487-285D-414C-BCBA-95F31573C5DF} - \{33994548-DB11-4397-AAC6-A973A5AD255E} No Task File <==== ATTENTION
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002Core.job => C:\Users\Ruda\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002UA.job => C:\Users\Ruda\AppData\Local\Facebook\Update\FacebookUpdate.exe
AlternateDataStreams: C:\ProgramData\Temp:373C6DC2
AlternateDataStreams: C:\ProgramData\Temp:77846FFE
AlternateDataStreams: C:\ProgramData\Temp:E19699F8
AlternateDataStreams: C:\ProgramData\Temp:FEF919E6
Hosts:
EmptyTemp:
End

Re: Webssearch

Napsal: 01 úno 2015 13:43
od rudy630
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-02-2015
Ran by Ruda at 2015-02-01 13:33:23 Run:1
Running from C:\PerfLogs\Desktop
Loaded Profiles: Ruda (Available profiles: Ruda & Guest & Classic .NET AppPool & DefaultAppPool)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3977576 2015-01-20] (LogMeIn Inc.)
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKLM-x32 -> SuggestionsURL_JSON http://api.widdit.com/suggestions/?form ... 1&command={searchTerms}
SearchScopes: HKLM-x32 -> TopResultURLFallback http://search.certified-toolbar.com?si= ... D049FA9&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL =
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin-x32: @exent.com/npExentCtl,version=7.0.0.0 -> C:\Program Files (x86)\Free Ride Games\npExentCtl.dll No File
FF Plugin-x32: www.exent.com/GameTreatWidget -> C:\Program Files (x86)\Free Ride Games\NPGameTreatPlugin.dll No File

S4 NAUpdate; "C:\Program Files (x86)\Nero\Update\NASvc.exe" [X]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X]
S3 CLVirtualBus01; system32\DRIVERS\CLVirtualBus01.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S1 KDHacker; \??\c:\program files (x86)\kingsoft\kingsoft antivirus\security\kxescan\kdhacker64.sys [X]
S3 MsgPlusDriver; system32\DRIVERS\MsgPlusDriver.sys [X]

2015-02-01 01:21 - 2015-02-01 01:21 - 02154496 _____ () C:\Users\Ruda\Downloads\adwcleaner_4.103.exe
2015-02-01 00:25 - 2015-02-01 00:25 - 01222144 _____ () C:\Users\Ruda\Downloads\RSITx64.exe
2015-01-11 01:01 - 2015-02-01 00:31 - 00000000 ____D () C:\rsit
2015-02-01 00:12 - 2014-07-03 21:04 - 00000000 ___DC () C:\AdwCleaner
2013-12-10 15:36 - 2013-12-10 15:36 - 0004987 _____ () C:\ProgramData\mxnhytee.feu

Task: {10FFDDB6-187C-4FF4-A221-EDF0455A1B23} - System32\Tasks\{F631C605-FF2F-4804-AA14-842D626AB4D0} => pcalua.exe -a C:\Users\Ruda\Downloads\Winamp5.3.3.1100CZ.exe -d C:\Users\Ruda\Downloads
Task: {11FFDE89-7029-4CAD-99B2-4058B8D36F77} - System32\Tasks\{327BF183-22F5-4AB3-A914-6C35530911CB} => pcalua.exe -a C:\Users\Ruda\Downloads\ScreenShots.exe
Task: {28AE289D-6C60-414E-9452-0372B314D19F} - System32\Tasks\{7E2599D8-728D-4529-B8DF-4D3425C0E6A8} => pcalua.exe -a C:\Users\Ruda\Downloads\flashplayer-lista-centrumcz.exe -d C:\Users\Ruda\Downloads
Task: {300A3041-2778-4470-9D6C-51F8BC874D93} - System32\Tasks\{737437BC-901B-4288-BABE-7F80E77DBB3F} => pcalua.exe -a C:\Users\Ruda\Downloads\Q-Dir_Installer.exe -d C:\Users\Ruda\Downloads
Task: {3B69497D-214E-4AC6-9BD7-5D08A3AAD0E7} - System32\Tasks\{99330A8B-B583-4E52-B6D9-8CCCC44BB57A} => pcalua.exe -a C:\Users\Ruda\Downloads\utorrent-lista-centrumcz.exe -d C:\Users\Ruda\Downloads
Task: {4CD71E3C-DCF9-4B8E-843E-F46C858C7DE5} - System32\Tasks\{61BE9914-AB99-4F00-8FD1-F742D2A73D72} => pcalua.exe -a "C:\Users\Ruda\Downloads\irfanview_plugins_436_setup (1).exe" -d C:\Users\Ruda\Downloads
Task: {53CD46E0-70BD-4881-A93C-F94191C5712C} - System32\Tasks\{1A6BA995-46D6-4D3A-BC5D-45518B3AF759} => pcalua.exe -a C:\Users\Ruda\Downloads\uninstall.exe
Task: {6386991A-9AD7-4771-AB2B-08D289E2209A} - \One-Click Optimizer WO11 No Task File <==== ATTENTION
Task: {75B04332-4088-494F-957F-EA8CE8E6EFE6} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
Task: {921C83AC-37D6-4F90-BDDE-05224498DBF2} - System32\Tasks\{21A3F374-CB7E-4E4F-9012-95CA8CA4BAE9} => C:\Users\Ruda\Downloads\adwcleaner.exe
Task: {D5C22487-285D-414C-BCBA-95F31573C5DF} - \{33994548-DB11-4397-AAC6-A973A5AD255E} No Task File <==== ATTENTION
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002Core.job => C:\Users\Ruda\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002UA.job => C:\Users\Ruda\AppData\Local\Facebook\Update\FacebookUpdate.exe
AlternateDataStreams: C:\ProgramData\Temp:373C6DC2
AlternateDataStreams: C:\ProgramData\Temp:77846FFE
AlternateDataStreams: C:\ProgramData\Temp:E19699F8
AlternateDataStreams: C:\ProgramData\Temp:FEF919E6
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\LogMeIn Hamachi Ui => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoViewContextMenu => value deleted successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\SuggestionsURL_JSON http://api.widdit.com/suggestions/?form ... => Value not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\TopResultURLFallback http://search.certified-toolbar.com?si= ... => Value not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-841361005-909514878-2309378359-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}" => Key deleted successfully.
HKCR\CLSID\{E733165D-CBCF-4FDA-883E-ADEF965B476C} => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.7" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@exent.com/npExentCtl,version=7.0.0.0" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\www.exent.com/GameTreatWidget" => Key deleted successfully.
NAUpdate => Service deleted successfully.
SpyHunter 4 Service => Service deleted successfully.
CLVirtualBus01 => Service deleted successfully.
esgiguard => Service deleted successfully.
KDHacker => Service deleted successfully.
MsgPlusDriver => Service deleted successfully.
C:\Users\Ruda\Downloads\adwcleaner_4.103.exe => Moved successfully.
C:\Users\Ruda\Downloads\RSITx64.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\ProgramData\mxnhytee.feu => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{10FFDDB6-187C-4FF4-A221-EDF0455A1B23}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{10FFDDB6-187C-4FF4-A221-EDF0455A1B23}" => Key deleted successfully.
C:\Windows\System32\Tasks\{F631C605-FF2F-4804-AA14-842D626AB4D0} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F631C605-FF2F-4804-AA14-842D626AB4D0}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{11FFDE89-7029-4CAD-99B2-4058B8D36F77}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{11FFDE89-7029-4CAD-99B2-4058B8D36F77}" => Key deleted successfully.
C:\Windows\System32\Tasks\{327BF183-22F5-4AB3-A914-6C35530911CB} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{327BF183-22F5-4AB3-A914-6C35530911CB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{28AE289D-6C60-414E-9452-0372B314D19F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{28AE289D-6C60-414E-9452-0372B314D19F}" => Key deleted successfully.
C:\Windows\System32\Tasks\{7E2599D8-728D-4529-B8DF-4D3425C0E6A8} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7E2599D8-728D-4529-B8DF-4D3425C0E6A8}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{300A3041-2778-4470-9D6C-51F8BC874D93}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{300A3041-2778-4470-9D6C-51F8BC874D93}" => Key deleted successfully.
C:\Windows\System32\Tasks\{737437BC-901B-4288-BABE-7F80E77DBB3F} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{737437BC-901B-4288-BABE-7F80E77DBB3F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3B69497D-214E-4AC6-9BD7-5D08A3AAD0E7}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B69497D-214E-4AC6-9BD7-5D08A3AAD0E7}" => Key deleted successfully.
C:\Windows\System32\Tasks\{99330A8B-B583-4E52-B6D9-8CCCC44BB57A} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{99330A8B-B583-4E52-B6D9-8CCCC44BB57A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4CD71E3C-DCF9-4B8E-843E-F46C858C7DE5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4CD71E3C-DCF9-4B8E-843E-F46C858C7DE5}" => Key deleted successfully.
C:\Windows\System32\Tasks\{61BE9914-AB99-4F00-8FD1-F742D2A73D72} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{61BE9914-AB99-4F00-8FD1-F742D2A73D72}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{53CD46E0-70BD-4881-A93C-F94191C5712C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{53CD46E0-70BD-4881-A93C-F94191C5712C}" => Key deleted successfully.
C:\Windows\System32\Tasks\{1A6BA995-46D6-4D3A-BC5D-45518B3AF759} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1A6BA995-46D6-4D3A-BC5D-45518B3AF759}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6386991A-9AD7-4771-AB2B-08D289E2209A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6386991A-9AD7-4771-AB2B-08D289E2209A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\One-Click Optimizer WO11" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{75B04332-4088-494F-957F-EA8CE8E6EFE6}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75B04332-4088-494F-957F-EA8CE8E6EFE6}" => Key deleted successfully.
C:\Windows\System32\Tasks\SpyHunter4Startup => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SpyHunter4Startup" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{921C83AC-37D6-4F90-BDDE-05224498DBF2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{921C83AC-37D6-4F90-BDDE-05224498DBF2}" => Key deleted successfully.
C:\Windows\System32\Tasks\{21A3F374-CB7E-4E4F-9012-95CA8CA4BAE9} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{21A3F374-CB7E-4E4F-9012-95CA8CA4BAE9}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D5C22487-285D-414C-BCBA-95F31573C5DF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D5C22487-285D-414C-BCBA-95F31573C5DF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{33994548-DB11-4397-AAC6-A973A5AD255E}" => Key deleted successfully.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002Core.job => Moved successfully.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002UA.job => Moved successfully.
C:\ProgramData\Temp => ":373C6DC2" ADS removed successfully.
C:\ProgramData\Temp => ":77846FFE" ADS removed successfully.
C:\ProgramData\Temp => ":E19699F8" ADS removed successfully.
C:\ProgramData\Temp => ":FEF919E6" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 2.3 GB temporary data.


The system needed a reboot.

==== End of Fixlog 13:34:20 ====

Re: Webssearch

Napsal: 01 úno 2015 14:08
od altrok
Takze jeste uklidime.
A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

Re: Webssearch

Napsal: 01 úno 2015 14:17
od rudy630
Děkuji převelice. Vypadá to vše v pořádku.

Re: Webssearch

Napsal: 01 úno 2015 14:41
od altrok
Nemate zac, rad jsem pomohl :worship:


Mejte se krasne a treba zase nekdy :bye:
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz