VIRY.CZ

Zdravím vás!

Tátovi se podařilo po jistém crackování stáhnout dávku řádných virů a všemožné další havěti. Zkoušel jsem projet PC Adwcleanerem aj. spousty prográmků, které mě osobně pomáhají. Tenhle PC je ale fakt v bídném stavu. Windows defender mi nejde zapnout, správce účtů je nějak porušený. Avast najde viry, ale nesmaže (nejspíš právě kvůli přístupu - rozjížděno přes administrátora)

Vím že jste moc šikovní a že dokážete rozpoznat havěť podle logů, což já neumím. Proto vám jeden z RFSIT posílám.

Moc vám děkuji za pomoc!

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:02-08-2015 01
Ran by Homer (administrator) on HOMERSAURUS (03-08-2015 20:56:55)
Running from C:\Users\Homer\Downloads
Loaded Profiles: Homer (Available Profiles: Homer & Pavel)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
() C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
() C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Program Files (x86)\Gaming Keyboard\OSD.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7634648 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [7060848 2012-10-02] (O&O Software GmbH)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [VICTORY Gaming Keyboard] => C:\Program Files (x86)\Gaming Keyboard\Monitor.exe [270336 2013-04-09] ()
Winlogon\Notify\igfxcui: igfxdev.dll [X]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
BootExecute: autocheck autochk * OODBSsdnclean64.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKU\S-1-5-21-766231400-2784921558-2389940221-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
URLSearchHook: HKU\S-1-5-21-766231400-2784921558-2389940221-1001 - Default Value = {FE69C007-C452-4d3e-86D2-1730DF8BC871}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-766231400-2784921558-2389940221-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Tcpip\Parameters: [DhcpNameServer] 10.236.184.254 10.0.0.3 10.0.0.2
Tcpip\..\Interfaces\{2955E3B7-60E4-4250-90F2-E4C51CBE562D}: [DhcpNameServer] 10.236.184.254 10.0.0.3 10.0.0.2

FireFox:
========
FF ProfilePath: C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-07-14] ()
FF Plugin: @iqiyi.com/npclient -> C:\IQIYI Video\LStyle\npclient.dll No File
FF Plugin: @iqiyi.com/npWebPlayer -> C:\IQIYI Video\LStyle\npWebPlayer.dll No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-14] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-27] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-24] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-24] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-766231400-2784921558-2389940221-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-03-07] ()
FF Extension: No Name - C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\ich@maltegoetz.de [not found]
FF Extension: No Name - C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\jid0-HYNmqxA9zQGfJADREri4n2AHKSI@jetpack [not found]
FF Extension: No Name - C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\LPESNIOB27154074@RO39491085.com [not found]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Homer\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Homer\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-07-31]
CHR Extension: (YouTube) - C:\Users\Homer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-07-31]
CHR Extension: (Google Search) - C:\Users\Homer\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-31]
CHR Extension: (Gmail) - C:\Users\Homer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-31]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [815392 2014-11-04] (IObit)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-20] (Microsoft Corporation)
R2 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2013-07-05] (CyberLink)
R2 CyberLink PowerDVD 13 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [327432 2013-07-05] (CyberLink)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2000-01-01] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-31] (IObit)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [2552176 2012-10-02] (O&O Software GmbH)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2007048 2015-07-27] (Electronic Arts)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2015-02-12] ()
R2 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [288768 2011-03-09] (WDC) [File not signed]
R2 WDFME; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [1066896 2011-03-09] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WDSC; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [491920 2011-03-09] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 MBAMService; C:\Users\Homer\Desktop\Antiviry portable 04_2015\Malwarebytes' Anti-Malware 2.1.4.1018 Portable Premium ML (17.3.2015)\App\Malwarebytes\mbamservice.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2014-03-11] (Advanced Micro Devices)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-05-21] ()
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-12-14] (Disc Soft Ltd)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-05-21] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2000-01-01] (Intel Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31400 2000-01-01] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [130320 2013-07-06] (CyberLink Corp.)
S3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-25 23:12 - 2014-10-05 20:08 - 00000000 ____D C:\Users\Homer\Documents\100MEDIA
2015-08-03 20:56 - 2015-08-03 20:57 - 00014936 _____ C:\Users\Homer\Downloads\FRST.txt
2015-08-03 20:56 - 2015-08-03 20:57 - 00000000 ____D C:\FRST
2015-08-03 20:56 - 2015-08-03 20:56 - 00000513 _____ C:\Users\Homer\Desktop\Nový textový dokument.txt
2015-08-03 20:55 - 2015-08-03 20:55 - 02169856 _____ (Farbar) C:\Users\Homer\Downloads\FRST64.exe
2015-08-03 20:21 - 2015-08-03 20:21 - 00000000 ____D C:\Users\Homer\AppData\Roaming\ProductData
2015-08-03 20:03 - 2015-08-03 20:04 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2015-08-03 20:03 - 2015-08-03 20:04 - 00000000 ____D C:\WINDOWS\system32\vbox
2015-08-03 20:01 - 2015-08-03 20:30 - 00000000 ____D C:\ProgramData\AVAST Software
2015-08-03 20:01 - 2015-08-03 20:01 - 05500000 _____ (Avast Software s.r.o.) C:\Users\Homer\Downloads\avast_free_antivirus_setup_online.exe
2015-08-03 20:00 - 2015-08-03 20:00 - 00000024 _____ C:\Users\Homer\AppData\Roaming\appdataFr25.bin
2015-08-03 19:59 - 2015-08-03 19:59 - 00000000 ____D C:\ProgramData\ProductData
2015-08-03 19:42 - 2015-08-03 19:42 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-03 19:42 - 2015-08-03 19:20 - 00107736 ____R (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-08-03 19:42 - 2015-08-03 19:19 - 00064216 ____R (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-08-03 19:42 - 2015-08-03 19:19 - 00025816 ____R (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-08-03 19:38 - 2015-08-03 19:39 - 00000000 ____D C:\KVRT_Data
2015-08-03 19:28 - 2015-08-03 19:28 - 00000085 _____ C:\WINDOWS\wininit.ini
2015-08-03 19:19 - 2015-08-03 19:30 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-08-03 19:19 - 2015-08-03 19:28 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-08-03 19:19 - 2015-08-03 19:19 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-08-03 19:18 - 2015-08-03 19:18 - 00028316 _____ C:\Users\Homer\Downloads\[CzT]Kolekce_Portable_programu_na_odstraneni_viru_04_2015_.torrent
2015-08-03 19:16 - 2015-08-03 19:17 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Homer\Downloads\spybot-2.4.exe
2015-08-03 19:01 - 2015-08-03 19:01 - 00000000 ____D C:\Users\Homer\AppData\Local\Western_Digital
2015-08-03 19:00 - 2015-08-03 20:30 - 00491760 _____ C:\WINDOWS\PFRO.log
2015-08-03 19:00 - 2015-08-03 20:30 - 00000616 _____ C:\WINDOWS\setupact.log
2015-08-03 19:00 - 2015-08-03 19:00 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-08-03 18:40 - 2015-08-03 19:03 - 00000000 ____D C:\WINDOWS\pss
2015-08-03 17:54 - 2015-08-03 17:54 - 00772016 _____ (Reimage®) C:\Users\Homer\Downloads\Nepotvrzeno 477714.crdownload
2015-08-03 17:29 - 2015-08-03 18:28 - 00000000 ____D C:\qycache
2015-08-03 17:29 - 2015-08-03 17:29 - 00000000 ____D C:\ppsfile
2015-08-03 17:06 - 2015-08-03 17:47 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-08-03 16:55 - 2015-08-03 16:55 - 00000000 ____D C:\Program Files (x86)\baidu
2015-08-03 16:54 - 2015-08-03 16:54 - 00671230 _____ C:\Users\Homer\Downloads\Battlefield Hardline Key Gener Downloader__3687_i1572273388_il96987.exe.zip
2015-08-03 14:33 - 2015-08-03 14:33 - 00076203 _____ C:\Users\Homer\Downloads\Battlefield.Hardline.Reloaded.torrent
2015-08-03 09:55 - 2015-08-03 09:55 - 00000000 ____H C:\asc_rdflag
2015-08-02 13:49 - 2015-08-03 15:25 - 00000000 ____D C:\Users\Homer\Desktop\PowerDVD 15
2015-08-02 10:01 - 2015-08-02 10:01 - 00000000 ____D C:\Users\Homer\AppData\Roaming\21615
2015-07-31 21:43 - 2015-08-01 10:01 - 00000000 ____D C:\Users\Homer\AppData\Local\Arma 3
2015-07-31 21:43 - 2015-07-31 22:46 - 00000000 ____D C:\Users\Homer\Documents\Arma 3
2015-07-31 21:43 - 2015-07-31 21:43 - 00000000 ____D C:\ProgramData\Bohemia Interactive
2015-07-31 21:36 - 2015-07-31 21:36 - 00000527 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arma 3.lnk
2015-07-30 17:49 - 2015-07-29 21:23 - 00000000 ____D C:\Users\Homer\Desktop\TOP Tapety ( Kolekce 312 )
2015-07-29 22:02 - 2015-07-29 22:02 - 00000000 ____D C:\Users\Homer\AppData\Local\CEF
2015-07-28 20:53 - 2015-07-28 20:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Far Cry 3 Blood Dragon
2015-07-28 18:10 - 2015-07-28 18:10 - 00000000 ____D C:\Users\Homer\AppData\Roaming\DVDFab9
2015-07-28 18:10 - 2015-07-28 18:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab 9
2015-07-28 10:40 - 2015-07-28 10:40 - 00000000 ____D C:\Users\Homer\Downloads\Manic Street Preachers - Futurology (Deluxe) (2014) [FLAC]
2015-07-28 08:38 - 2015-07-25 15:34 - 01084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-07-27 23:01 - 2015-05-26 12:02 - 00001495 _____ C:\Users\Homer\Desktop\Drаgоn Аgе Inquisitiоn.lnk
2015-07-27 20:36 - 2015-07-27 20:36 - 00000000 ____D C:\ProgramData\Western Digital
2015-07-27 20:35 - 2015-07-27 20:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WD SmartWare
2015-07-27 20:35 - 2015-07-27 20:35 - 00000000 ____D C:\Program Files\Western Digital
2015-07-27 20:35 - 2015-07-27 20:35 - 00000000 ____D C:\Program Files\WDCSAM
2015-07-27 20:35 - 2015-07-27 20:35 - 00000000 ____D C:\Program Files\DIFX
2015-07-27 20:35 - 2015-07-27 20:35 - 00000000 ____D C:\Program Files (x86)\Western Digital
2015-07-27 14:09 - 2014-04-16 01:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-07-27 14:09 - 2014-04-16 01:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-07-25 22:51 - 2015-07-25 22:51 - 00041391 _____ C:\Users\Homer\Downloads\Akmareul-boatda(0000191381).srt
2015-07-25 15:07 - 2015-07-25 15:36 - 522366035 _____ C:\Users\Homer\Downloads\Simpsonovi-26-05-Protiklady-se-přifrakují-HD-720p-cz.mkv
2015-07-25 14:37 - 2015-07-25 15:06 - 520432418 _____ C:\Users\Homer\Downloads\Simpsonovi-26-03-Mama-Sendvič-HD-720p-cz.mkv
2015-07-24 22:20 - 2015-07-24 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III Public Test
2015-07-24 22:12 - 2015-07-24 22:52 - 00000000 ____D C:\Program Files (x86)\Diablo III Public Test
2015-07-23 14:41 - 2015-08-02 17:11 - 00000000 ____D C:\Users\Homer\Documents\CANON
2015-07-23 11:49 - 2015-07-23 11:49 - 18823680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-07-23 11:49 - 2015-07-23 11:49 - 15159296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-07-23 11:48 - 2015-07-23 11:48 - 02476376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-07-23 11:48 - 2015-07-23 11:48 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-07-23 11:48 - 2015-07-23 11:48 - 00411133 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-07-22 20:01 - 2015-07-22 20:01 - 00495671 _____ C:\Users\Homer\Downloads\[CzT]Hra_o_truny_Game_of_Thrones_1_4_serie_CZ_EN_1080pHD_.torrent
2015-07-21 07:37 - 2015-07-14 16:14 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-07-21 07:37 - 2015-07-14 16:14 - 00301056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-07-21 07:37 - 2015-07-14 16:14 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-07-21 07:37 - 2015-07-14 16:13 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-07-19 19:43 - 2015-07-19 19:43 - 00000947 _____ C:\Users\Homer\Desktop\Toy Soldiers Complete v14.lnk
2015-07-19 19:43 - 2015-07-19 19:43 - 00000000 ____D C:\Users\Homer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toy Soldiers Complete v14 1.0
2015-07-19 19:43 - 2015-07-19 19:43 - 00000000 ____D C:\Users\Homer\AppData\Local\toy soldiers complete
2015-07-19 16:44 - 2015-07-19 16:44 - 00001680 _____ C:\Users\Homer\Desktop\Risen3.lnk
2015-07-19 11:21 - 2015-07-19 11:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tropico 5
2015-07-19 10:24 - 2015-07-19 10:24 - 05226031 _____ C:\Users\Homer\Downloads\Battlefield-Hardline-crack.rar
2015-07-19 10:20 - 2015-07-19 10:20 - 00409384 _____ C:\Users\Homer\Downloads\Battlefield Hardline Key Gener Downloader.zip
2015-07-18 20:35 - 2015-07-18 20:35 - 00003152 _____ C:\WINDOWS\System32\Tasks\{5501693B-B104-4B8A-95F9-EEABAAB7C0AE}
2015-07-18 20:33 - 2015-07-18 20:33 - 00000000 _____ C:\WINDOWS\prleth.sys
2015-07-18 20:33 - 2015-07-18 20:33 - 00000000 _____ C:\WINDOWS\hgfs.sys
2015-07-18 20:31 - 2015-07-18 20:31 - 00661526 _____ C:\Users\Homer\Downloads\BattlefieldHardlineKey.zip
2015-07-18 20:29 - 2015-07-18 20:30 - 20202571 _____ C:\Users\Homer\Downloads\Battlefield-Hardline-PC-Game-Downloader.rar
2015-07-16 19:56 - 2015-07-16 19:56 - 00000000 ____D C:\Users\Homer\AppData\Roaming\Intel Corporation
2015-07-16 19:55 - 2015-07-16 19:55 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-07-16 19:54 - 2015-07-16 19:54 - 00000000 ____D C:\Users\Homer\Intel
2015-07-16 12:38 - 2015-07-23 11:42 - 00000000 ____D C:\Program Files (x86)\Minute Draw
2015-07-16 07:45 - 2015-07-13 23:10 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-07-16 07:45 - 2015-07-13 23:10 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-15 18:54 - 2015-07-15 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Race Driver GRID
2015-07-15 08:47 - 2015-07-09 21:51 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-07-15 08:47 - 2015-07-09 20:40 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-07-15 08:47 - 2015-07-09 18:03 - 03701760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-07-15 08:47 - 2015-07-09 17:54 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-07-15 08:47 - 2015-07-09 17:53 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-07-15 08:47 - 2015-07-09 17:50 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-07-15 08:47 - 2015-07-09 17:50 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-07-15 08:47 - 2015-07-09 17:48 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-07-15 08:47 - 2015-07-09 17:46 - 02229248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-07-15 08:47 - 2015-07-09 17:38 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-07-15 08:47 - 2015-07-09 17:37 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-07-15 08:47 - 2015-07-09 17:35 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-07-15 08:47 - 2015-07-09 17:34 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-07-15 08:47 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-07-15 08:47 - 2015-07-02 22:49 - 25193984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-07-15 08:47 - 2015-07-02 00:08 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-07-15 08:47 - 2015-07-01 23:14 - 04520448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-07-15 08:47 - 2015-06-30 00:43 - 00026288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-07-15 08:47 - 2015-06-29 17:07 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-07-15 08:47 - 2015-06-29 17:07 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-07-15 08:47 - 2015-06-29 17:07 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-07-15 08:47 - 2015-06-29 17:07 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-07-15 08:47 - 2015-06-28 07:07 - 00442712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2015-07-15 08:47 - 2015-06-28 07:07 - 00178008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-07-15 08:47 - 2015-06-28 07:06 - 01311960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-07-15 08:47 - 2015-06-28 07:06 - 00332120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2015-07-15 08:47 - 2015-06-27 18:42 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-07-15 08:47 - 2015-06-27 05:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2015-07-15 08:47 - 2015-06-27 05:12 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2015-07-15 08:47 - 2015-06-27 05:12 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2015-07-15 08:47 - 2015-06-27 04:40 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-07-15 08:47 - 2015-06-27 04:05 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-07-15 08:47 - 2015-06-27 04:00 - 00989184 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-07-15 08:47 - 2015-06-27 03:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-07-15 08:47 - 2015-06-27 03:26 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-07-15 08:47 - 2015-06-27 01:21 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-07-15 08:47 - 2015-06-27 01:21 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-07-15 08:47 - 2015-06-25 04:31 - 04177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-07-15 08:47 - 2015-06-16 00:41 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-07-15 08:47 - 2015-06-16 00:24 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-07-15 08:47 - 2015-06-15 23:16 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-07-15 08:47 - 2015-06-15 23:09 - 03607552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-07-15 08:47 - 2015-06-15 22:50 - 02774528 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-07-15 08:47 - 2015-06-15 21:57 - 02460160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-07-15 08:47 - 2015-05-30 23:18 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2015-07-15 08:47 - 2015-05-30 21:36 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-15 08:47 - 2015-05-30 21:35 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-07-15 08:46 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-07-15 08:46 - 2015-07-02 22:23 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-07-15 08:46 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-07-15 08:46 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-07-15 08:46 - 2015-07-02 21:20 - 14453248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-07-15 08:46 - 2015-07-02 20:59 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-07-15 08:46 - 2015-06-16 00:39 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-07-15 08:46 - 2015-06-16 00:38 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-07-15 08:46 - 2015-06-16 00:26 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-07-15 08:46 - 2015-06-15 23:36 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-07-15 08:46 - 2015-06-15 23:17 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-07-15 08:46 - 2015-06-15 23:16 - 02427392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-07-15 08:46 - 2015-06-15 23:15 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-07-15 08:46 - 2015-06-15 23:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-07-15 08:46 - 2015-06-15 23:04 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-07-15 08:46 - 2015-06-15 22:52 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-07-15 08:46 - 2015-06-15 22:17 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-07-15 08:46 - 2015-06-15 22:07 - 01951232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-07-15 08:46 - 2015-06-15 22:02 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-07-15 08:45 - 2015-06-16 07:36 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2015-07-15 08:45 - 2015-06-16 07:36 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2015-07-15 08:45 - 2015-06-16 00:24 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-07-15 08:45 - 2015-06-16 00:02 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2015-07-15 08:45 - 2015-06-15 23:58 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2015-07-15 08:45 - 2015-06-15 23:57 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-07-15 08:45 - 2015-06-15 23:56 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-07-15 08:45 - 2015-06-15 23:55 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-07-15 08:45 - 2015-06-15 23:49 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-07-15 08:45 - 2015-06-15 23:41 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-07-15 08:45 - 2015-06-15 23:38 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-07-15 08:45 - 2015-06-15 23:03 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-07-15 08:45 - 2015-06-15 22:47 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2015-07-15 08:45 - 2015-06-15 22:44 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2015-07-15 08:45 - 2015-06-15 22:43 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-07-15 08:45 - 2015-06-15 22:42 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-07-15 08:45 - 2015-06-15 22:41 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-07-15 08:45 - 2015-06-15 22:37 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-07-15 08:45 - 2015-06-15 22:32 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-07-15 08:45 - 2015-06-15 22:31 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-07-15 08:45 - 2015-06-15 22:30 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-07-15 08:45 - 2015-06-15 22:30 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-07-15 08:45 - 2015-06-11 05:49 - 01380600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-07-15 08:45 - 2015-06-10 18:13 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-07-12 10:39 - 2015-07-12 10:39 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-07-12 10:39 - 2015-07-12 10:39 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-07-12 10:39 - 2015-07-12 10:39 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-07-10 18:25 - 2015-07-28 11:43 - 00000000 ___HD C:\$Windows.~BT
2015-07-10 13:53 - 2015-07-10 13:53 - 00000000 _____ C:\Users\Homer\AppData\Local\Temp.dat
2015-07-06 14:42 - 2015-08-03 19:58 - 00077736 _____ C:\WINDOWS\system32\lvcoinst.log
2015-07-06 14:42 - 2015-07-06 14:42 - 00000000 ____D C:\Program Files\Common Files\logishrd
2015-07-05 18:04 - 2015-07-05 18:04 - 00000000 ____D C:\Users\Homer\AppData\Roaming\15015

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-03 20:57 - 2012-12-30 18:26 - 07891456 ___SH C:\Users\Homer\Downloads\Thumbs.db
2015-08-03 20:48 - 2012-12-24 20:33 - 00000000 ____D C:\Users\Homer\AppData\Roaming\uTorrent
2015-08-03 20:41 - 2013-11-07 19:54 - 01411255 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-03 20:36 - 2012-12-24 20:09 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-766231400-2784921558-2389940221-1001
2015-08-03 20:31 - 2014-02-13 13:57 - 00000000 ___DO C:\Users\Homer\SkyDrive
2015-08-03 20:30 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-03 20:30 - 2013-03-24 09:16 - 02560674 _____ C:\WINDOWS\system32\oodbs.lor
2015-08-03 20:29 - 2013-11-07 19:41 - 00000000 ____D C:\Users\Homer
2015-08-03 20:05 - 2013-02-28 08:48 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-03 20:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-03 19:39 - 2014-01-18 14:04 - 00000000 ____D C:\AdwCleaner
2015-08-03 19:25 - 2013-01-16 15:27 - 00000000 ____D C:\Program Files (x86)\IObit
2015-08-03 19:25 - 2012-12-28 15:35 - 00000000 ____D C:\Users\Homer\AppData\Roaming\IObit
2015-08-03 19:25 - 2012-12-28 15:35 - 00000000 ____D C:\ProgramData\IObit
2015-08-03 19:04 - 2013-01-11 23:21 - 00000000 ___RD C:\Users\Homer\Desktop\Programy
2015-08-03 18:59 - 2015-01-30 13:51 - 00000266 _____ C:\WINDOWS\Tasks\ASC8_SkipUac_Homer.job
2015-08-03 18:53 - 2013-12-14 12:57 - 00000000 ____D C:\Users\Homer\AppData\Roaming\Seznam.cz
2015-08-03 18:50 - 2012-12-28 00:58 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2015-08-03 18:41 - 2014-06-03 14:37 - 00000000 ____D C:\Program Files (x86)\Steam
2015-08-03 18:41 - 2012-12-24 21:48 - 00000000 ____D C:\Users\Homer\AppData\Roaming\DAEMON Tools Lite
2015-08-03 18:31 - 2013-01-11 16:31 - 00000000 ____D C:\Users\Homer\AppData\Local\Unity
2015-08-03 17:59 - 2013-07-18 20:17 - 00000000 ____D C:\Program Files (x86)\1C
2015-08-03 17:49 - 2012-07-26 07:26 - 00000304 _____ C:\WINDOWS\win.ini
2015-08-03 17:43 - 2012-12-24 22:47 - 00000000 ____D C:\Program Files (x86)\1C Company
2015-08-03 17:39 - 2013-08-22 16:44 - 00550344 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-03 17:29 - 2013-01-23 13:19 - 00000000 ___RD C:\Users\Homer\Desktop\Hry Tata
2015-08-03 16:07 - 2014-03-08 12:25 - 00000000 ____D C:\Users\Homer\AppData\Local\Battle.net
2015-08-03 15:32 - 2013-11-07 19:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2015-08-03 09:57 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-03 09:56 - 2014-03-10 08:14 - 101773312 _____ C:\WINDOWS\system32\config\SOFTWARE.iodefrag.bak
2015-08-03 09:56 - 2014-03-10 08:14 - 00376832 _____ C:\WINDOWS\system32\config\DEFAULT.iodefrag.bak
2015-08-03 09:56 - 2014-03-10 08:14 - 00069632 _____ C:\WINDOWS\system32\config\SAM.iodefrag.bak
2015-08-03 09:56 - 2014-03-10 08:14 - 00028672 _____ C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2015-08-01 15:08 - 2013-11-07 19:55 - 00005430 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-01 15:08 - 2013-09-30 05:56 - 02832240 _____ C:\WINDOWS\system32\perfh005.dat
2015-08-01 15:08 - 2013-09-30 05:56 - 00856458 _____ C:\WINDOWS\system32\perfc005.dat
2015-08-01 15:07 - 2015-04-17 17:05 - 00000080 _____ C:\Users\Homer\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-08-01 12:59 - 2013-08-22 15:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-08-01 09:59 - 2012-12-24 23:33 - 00000000 ___RD C:\Users\Homer\Desktop\Hry Pepík
2015-07-31 19:26 - 2013-11-29 15:33 - 00000000 ____D C:\ProgramData\Origin
2015-07-31 13:01 - 2013-07-31 19:31 - 00000000 ____D C:\Users\Homer\AppData\Local\Google
2015-07-30 21:15 - 2012-12-24 23:40 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-07-28 20:54 - 2012-12-27 13:42 - 00000000 ____D C:\ProgramData\Orbit
2015-07-28 20:54 - 2012-12-24 22:55 - 00000000 ____D C:\Users\Homer\Documents\my games
2015-07-28 20:36 - 2015-01-07 12:33 - 05844992 _____ C:\WINDOWS\system32\config\DRIVERS.iodefrag.bak
2015-07-28 18:11 - 2015-04-01 21:21 - 00000000 ____D C:\Program Files (x86)\DVDFab 9
2015-07-28 12:12 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-07-28 12:06 - 2013-12-30 11:03 - 00203776 ___SH C:\Users\Homer\Documents\Thumbs.db
2015-07-28 11:49 - 2013-11-07 19:35 - 00000000 ___DC C:\WINDOWS\Panther
2015-07-27 22:56 - 2014-10-15 18:16 - 00000000 ____D C:\Program Files (x86)\Origin
2015-07-27 15:01 - 2014-10-05 12:33 - 00000000 ____D C:\ProgramData\CanonIJPLM
2015-07-27 14:18 - 2015-03-31 12:42 - 00000000 ____D C:\Users\Homer\AppData\Local\Super Internet TV
2015-07-27 14:01 - 2015-01-01 18:25 - 00000000 __SHD C:\Users\Homer\AppData\Local\EmieBrowserModeList
2015-07-27 14:01 - 2014-04-25 16:00 - 00000000 __SHD C:\Users\Homer\AppData\Local\EmieUserList
2015-07-27 14:01 - 2014-04-25 16:00 - 00000000 __SHD C:\Users\Homer\AppData\Local\EmieSiteList
2015-07-26 19:03 - 2015-02-18 16:05 - 00000000 ____D C:\Users\Homer\AppData\Roaming\MMFApplications
2015-07-25 09:44 - 2015-03-30 09:59 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-07-24 22:52 - 2013-05-22 15:06 - 00000000 ____D C:\Users\Homer\Documents\Diablo III
2015-07-19 20:29 - 2014-07-30 11:45 - 00000000 ____D C:\Users\Homer\AppData\Roaming\Tropico 5
2015-07-17 11:14 - 2015-03-30 09:59 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-07-16 19:55 - 2012-12-28 00:51 - 00000000 ____D C:\Program Files\Intel
2015-07-16 19:55 - 2012-10-30 14:49 - 00000000 ____D C:\ProgramData\Intel
2015-07-15 15:40 - 2014-06-26 14:11 - 00000000 ____D C:\ProgramData\Codemasters
2015-07-15 14:34 - 2014-06-03 15:34 - 00000000 ____D C:\Users\Homer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-07-15 13:31 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-07-15 12:59 - 2015-04-27 21:26 - 00000000 ____D C:\Program Files\Rockstar Games
2015-07-15 12:59 - 2013-06-29 23:01 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-07-15 11:09 - 2013-11-29 15:33 - 00000000 ____D C:\Users\Homer\Documents\FIFA 14
2015-07-15 09:27 - 2015-06-09 10:21 - 60104704 _____ C:\WINDOWS\system32\config\COMPONENTS.iodefrag.bak
2015-07-15 09:25 - 2013-01-06 11:31 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-07-15 09:24 - 2015-04-08 21:30 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-07-15 09:24 - 2014-11-20 10:12 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-07-15 09:23 - 2013-08-14 19:21 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-07-14 20:05 - 2013-02-28 08:48 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-07-11 13:44 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-07-06 14:47 - 2012-12-24 20:04 - 00000000 ____D C:\Users\Homer\AppData\Local\Packages
2015-07-05 14:15 - 2015-03-24 20:20 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2015-07-05 12:08 - 2012-10-08 16:28 - 00300704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Files in the root of some directories =======

2015-08-03 20:00 - 2015-08-03 20:00 - 0000024 _____ () C:\Users\Homer\AppData\Roaming\appdataFr25.bin
2013-12-20 22:30 - 2013-12-20 22:30 - 0002131 _____ () C:\Users\Homer\AppData\Roaming\default.rss
2015-03-25 20:13 - 2015-03-25 20:13 - 0099384 _____ () C:\Users\Homer\AppData\Roaming\inst.exe
2015-03-25 20:13 - 2015-03-25 20:13 - 0007859 _____ () C:\Users\Homer\AppData\Roaming\pcouffin.cat
2015-03-25 20:13 - 2015-03-25 20:13 - 0001167 _____ () C:\Users\Homer\AppData\Roaming\pcouffin.inf
2015-03-25 20:13 - 2015-03-25 20:13 - 0000055 _____ () C:\Users\Homer\AppData\Roaming\pcouffin.log
2015-03-25 20:13 - 2015-03-25 20:13 - 0082816 _____ (VSO Software) C:\Users\Homer\AppData\Roaming\pcouffin.sys
2014-06-19 06:50 - 2014-06-19 06:50 - 0000024 _____ () C:\Users\Homer\AppData\Roaming\temp.ini
2015-03-29 17:36 - 2015-03-29 17:37 - 0000906 _____ () C:\Users\Homer\AppData\Roaming\__AvidCloudManager.log
2014-07-31 11:04 - 2014-07-31 11:07 - 0000906 _____ () C:\Users\Homer\AppData\Roaming\__AvidCloudManagerPrevious.log
2015-06-20 08:27 - 2015-06-20 08:27 - 0000000 ____H () C:\Users\Homer\AppData\Local\BIT1161.tmp
2013-10-14 16:59 - 2013-12-30 23:48 - 0004608 _____ () C:\Users\Homer\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-07-10 13:53 - 2015-07-10 13:53 - 0000000 _____ () C:\Users\Homer\AppData\Local\Temp.dat
2015-01-18 10:33 - 2015-01-18 10:33 - 0000000 _____ () C:\Users\Homer\AppData\Local\{166F5D01-5246-4C90-AF01-B000FC2B39BB}
2014-08-25 07:38 - 2014-08-25 07:38 - 0000000 _____ () C:\Users\Homer\AppData\Local\{2E6794DC-5071-4A35-B55E-0C863D28E9E7}
2014-08-18 08:21 - 2014-08-18 08:21 - 0000000 _____ () C:\Users\Homer\AppData\Local\{3849D98E-4F80-4E36-91AE-C1E4BA0D1CE2}
2015-06-20 08:27 - 2015-06-20 08:27 - 0000000 _____ () C:\Users\Homer\AppData\Local\{6022FF12-83F9-4F09-8578-299CBD16BD37}
2015-04-11 08:48 - 2015-04-11 08:48 - 0000000 _____ () C:\Users\Homer\AppData\Local\{67A239D2-064C-4DA0-87AC-D0043BCC8C6A}
2014-09-15 07:42 - 2014-09-15 07:42 - 0000000 _____ () C:\Users\Homer\AppData\Local\{B55D4984-AB12-41D9-9B0E-756D4825E960}
2015-02-14 10:02 - 2015-02-14 10:02 - 0000000 _____ () C:\Users\Homer\AppData\Local\{B72B6145-6125-4F4A-B33E-39D618ED59E1}
2013-11-07 22:05 - 2013-11-07 22:05 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-09-24 08:29 - 2014-10-05 11:47 - 0012566 _____ () C:\ProgramData\hpzinstall.log

Some files in TEMP:
====================
C:\Users\Homer\AppData\Local\Temp\Quarantine.exe
C:\Users\Homer\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-03 19:54

==================== End of log ============================

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Nic nenašel -

# AdwCleaner v4.208 - Log vytvořen 03/08/2015 v 22:09:00
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-08-01.1 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : Homer - HOMERSAURUS
# Spuštěno z : C:\Users\Homer\Downloads\adwcleaner_4.208.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****


***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****


***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17840


-\\ Mozilla Firefox v


-\\ Google Chrome v43.0.2357.132


-\\ Chromium v


-\\ Comodo Dragon v


*************************

AdwCleaner[R0].txt - [8758 bytů] - [18/01/2014 14:04:31]
AdwCleaner[R1].txt - [16230 bytů] - [01/01/2015 17:40:09]
AdwCleaner[R2].txt - [16217 bytů] - [01/01/2015 17:42:49]
AdwCleaner[R3].txt - [2189 bytů] - [01/01/2015 18:37:28]
AdwCleaner[R4].txt - [19838 bytů] - [03/08/2015 19:32:06]
AdwCleaner[R5].txt - [1397 bytů] - [03/08/2015 22:08:57]
AdwCleaner[S0].txt - [7835 bytů] - [18/01/2014 14:04:56]
AdwCleaner[S1].txt - [467 bytů] - [01/01/2015 17:41:09]
AdwCleaner[S2].txt - [15395 bytů] - [01/01/2015 17:43:48]
AdwCleaner[S3].txt - [2276 bytů] - [01/01/2015 18:37:35]
AdwCleaner[S4].txt - [17374 bytů] - [03/08/2015 19:32:15]
AdwCleaner[S5].txt - [1323 bytů] - [03/08/2015 22:09:00]

########## EOF - C:\AdwCleaner\AdwCleaner[S5].txt - [1381 bytů] ##########





Přikládám ještě log z mého předchozího samostatného čištění -

# AdwCleaner v4.208 - Log vytvořen 03/08/2015 v 19:32:10
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-08-01.1 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : Homer - HOMERSAURUS
# Spuštěno z : C:\Users\Homer\Desktop\AdwCleaner.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

Složka Smazáno : C:\QiYi
Složka Smazáno : C:\ProgramData\{4303060f-1456-dfab-4303-3060f145183c}
Složka Smazáno : C:\ProgramData\{62123e7d-ca9e-4690-6212-23e7dca9f9f7}
Složka Smazáno : C:\ProgramData\{8e3aa7b6-d876-d599-8e3a-aa7b6d879edb}
Složka Smazáno : C:\Program Files (x86)\SysPlayer
Složka Smazáno : C:\Program Files (x86)\BorderlineFunc
Složka Smazáno : C:\Program Files (x86)\ShoepDroPi
Složka Smazáno : C:\Program Files (x86)\SSHoupDrropp
Složka Smazáno : C:\Users\Pavel\AppData\Local\Crossbrowse
Složka Smazáno : C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdakmnplckeopfghnlpocafcepegjeap
Složka Smazáno : C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkmjljdbbgogihjcapfhgkonfmccbffp
Složka Smazáno : C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgkhkilhggphmffnnfachajcdggpofle
Složka Smazáno : C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ienliabamfodknkhibkcbojljkmgfjmi
Složka Smazáno : C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pabfempgigicdjjlccdgnbmeggkbjdhd
Složka Smazáno : C:\Users\Homer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdakmnplckeopfghnlpocafcepegjeap
Složka Smazáno : C:\Users\Homer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkmjljdbbgogihjcapfhgkonfmccbffp
Složka Smazáno : C:\Users\Homer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hgkhkilhggphmffnnfachajcdggpofle
Složka Smazáno : C:\Users\Homer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ienliabamfodknkhibkcbojljkmgfjmi
Složka Smazáno : C:\Users\Homer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pabfempgigicdjjlccdgnbmeggkbjdhd
Soubor Smazáno : C:\Users\Homer\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_cmaiofennmphjldldcpphcechfnnohja_0.localstorage
Soubor Smazáno : C:\Users\Homer\AppData\Roaming\HOMERSAURUS.MTBF.txt
Soubor Smazáno : C:\Users\Homer\AppData\Roaming\UKVY
Soubor Smazáno : C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\user.js

***** [ Naplánované úlohy ] *****

Úloha Smazáno : amiupdaterExd
Úloha Smazáno : amiupdaterExi
Úloha Smazáno : UKVY

***** [ Zástupci ] *****


***** [ Registry ] *****

Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Mediaplayer\Shiminclusionlist\crossbrowse.exe
Hodnota Smazáno : HKLM\SOFTWARE\Classes\.htm\OpenWithProgids [CRSBRWSHTML]
Hodnota Smazáno : HKLM\SOFTWARE\Classes\.html\OpenWithProgids [CRSBRWSHTML]
Hodnota Smazáno : HKLM\SOFTWARE\RegisteredApplications [Crossbrowse]
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\globalupdate.exe
Hodnota Smazáno : HKLM\SOFTWARE\Classes\.xht\OpenWithProgIDs [CRSBRWSHTML]
Hodnota Smazáno : HKLM\SOFTWARE\Classes\.webp\OpenWithProgIDs [CRSBRWSHTML]
Hodnota Smazáno : HKLM\SOFTWARE\Classes\.shtml\OpenWithProgIDs [CRSBRWSHTML]
Klíč Smazáno : HKCU\Software\MozillaPlugins\@iqiyi.com/npWebPlayer
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@iqiyi.com/npWebPlayer
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@iqiyi.com/npclient
Klíč Smazáno : HKLM\SOFTWARE\Classes\HCDNProxy
Klíč Smazáno : HKLM\SOFTWARE\08c462b5-c438-88f5-dfe6-f16d98a8beae
Klíč Smazáno : HKLM\SOFTWARE\c2373f08-e064-4ecd-bc7a-899cdd6b2618
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{d057f194}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{085CB97F-6D0B-487D-B94C-E11A736C38CE}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5E6A8DA1-5731-465B-B036-B9E16EF26CAC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{CF3CDEFB-31BE-43AE-B064-B9C62C883259}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{D96C1D26-5CDF-4506-9244-57233C3984DF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D96C1D26-5CDF-4506-9244-57233C3984DF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{B6360BD3-5CD0-40D3-BD87-DAFF37889F50}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{E6F928E4-B672-4F3A-8CA2-53C4259235DE}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5E6A8DA1-5731-465B-B036-B9E16EF26CAC}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1E6A8DA1-1731-465B-B036-B9E16EF26CAC}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1E6BE0FB-8B18-4DFC-959F-233651CC4D7F}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2E6A8DA1-2731-465B-B036-B9E16EF26CAC}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BAC94FEE-45B4-4FD4-9EEA-D8978EC96C6E}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{085CB97F-6D0B-487D-B94C-E11A736C38CE}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{5E6A8DA1-5731-465B-B036-B9E16EF26CAC}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{5CD76C57-6893-478A-B776-47E7C82504BE}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{D96C1D26-5CDF-4506-9244-57233C3984DF}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1E6A8DA1-1731-465B-B036-B9E16EF26CAC}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2E6A8DA1-2731-465B-B036-B9E16EF26CAC}
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Klíč Smazáno : HKCU\Software\1ClickDownload
Klíč Smazáno : HKCU\Software\GlobalUpdate
Klíč Smazáno : HKCU\Software\HomeTab
Klíč Smazáno : HKCU\Software\simplytech
Klíč Smazáno : HKCU\Software\WajIEnhance
Klíč Smazáno : HKCU\Software\TNT2
Klíč Smazáno : HKCU\Software\WajIntEnhance
Klíč Smazáno : HKCU\Software\CrossBrowser
Klíč Smazáno : HKCU\Software\SearchProtectWS
Klíč Smazáno : HKCU\Software\Linkey
Klíč Smazáno : HKCU\Software\YorkNewCin
Klíč Smazáno : HKCU\Software\HighDefAction
Klíč Smazáno : HKCU\Software\ArenaHD
Klíč Smazáno : HKCU\Software\Kromtech
Klíč Smazáno : HKCU\Software\SlimWare Utilities Inc
Klíč Smazáno : HKCU\Software\QyGameClient
Klíč Smazáno : HKCU\Software\AppDataLow\Software\Crossrider
Klíč Smazáno : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Klíč Smazáno : HKLM\SOFTWARE\Conduit
Klíč Smazáno : HKLM\SOFTWARE\GlobalUpdate
Klíč Smazáno : HKLM\SOFTWARE\Iminent
Klíč Smazáno : HKLM\SOFTWARE\SearchProtect
Klíč Smazáno : HKLM\SOFTWARE\SupDp
Klíč Smazáno : HKLM\SOFTWARE\SupTab
Klíč Smazáno : HKLM\SOFTWARE\supWindowsMangerProtect
Klíč Smazáno : HKLM\SOFTWARE\IHProtect
Klíč Smazáno : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Klíč Smazáno : HKLM\SOFTWARE\WajIntEnhance
Klíč Smazáno : HKLM\SOFTWARE\SpeedBit
Klíč Smazáno : HKLM\SOFTWARE\AIM Toolbar
Klíč Smazáno : HKLM\SOFTWARE\YorkNewCin
Klíč Smazáno : HKLM\SOFTWARE\HighDefAction
Klíč Smazáno : HKLM\SOFTWARE\oursurfingSoftware
Klíč Smazáno : HKLM\SOFTWARE\ArenaHD
Klíč Smazáno : HKLM\SOFTWARE\searchult
Klíč Smazáno : HKLM\SOFTWARE\SlimWare Utilities Inc
Klíč Smazáno : HKU\.DEFAULT\Software\TornTv Downloader
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\GUPlayer
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B6D700D3-3D0D-FEEB-D675-2CE78F9EC5D6}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C206CC20-60D6-8D02-746E-4465CC40B2F6}
Klíč Smazáno : [x64] HKLM\SOFTWARE\SysPlayer
Klíč Smazáno : [x64] HKLM\SOFTWARE\YorkNewCin
Klíč Smazáno : [x64] HKLM\SOFTWARE\HighDefAction
Klíč Smazáno : [x64] HKLM\SOFTWARE\ArenaHD
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Distributed Computing Experiment

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17840

Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v

[nvtrg9zj.default\prefs.js] - Řádek Smazáno : user_pref("extensions.aLPESNIOB27154074RO39491085com63317.63317.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2C%22dealply_p%22%3A[...]

-\\ Google Chrome v43.0.2357.132

[C:\Users\Homer\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://www.oursurfing.com/web/?type=dspp&ts=14 ... earchTerms}

-\\ Chromium v


-\\ Comodo Dragon v

[C:\Users\Homer\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : bdakmnplckeopfghnlpocafcepegjeap
[C:\Users\Homer\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : dkmjljdbbgogihjcapfhgkonfmccbffp
[C:\Users\Homer\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : hgkhkilhggphmffnnfachajcdggpofle
[C:\Users\Homer\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : ienliabamfodknkhibkcbojljkmgfjmi
[C:\Users\Homer\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : pabfempgigicdjjlccdgnbmeggkbjdhd

*************************

AdwCleaner[R0].txt - [8758 bytů] - [18/01/2014 14:04:31]
AdwCleaner[R1].txt - [16230 bytů] - [01/01/2015 17:40:09]
AdwCleaner[R2].txt - [16217 bytů] - [01/01/2015 17:42:49]
AdwCleaner[R3].txt - [2189 bytů] - [01/01/2015 18:37:28]
AdwCleaner[R4].txt - [19838 bytů] - [03/08/2015 19:32:06]
AdwCleaner[S0].txt - [7835 bytů] - [18/01/2014 14:04:56]
AdwCleaner[S1].txt - [467 bytů] - [01/01/2015 17:41:09]
AdwCleaner[S2].txt - [15395 bytů] - [01/01/2015 17:43:48]
AdwCleaner[S3].txt - [2276 bytů] - [01/01/2015 18:37:35]
AdwCleaner[S4].txt - [17151 bytů] - [03/08/2015 19:32:10]

########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [17210 bytů] ##########

Dejte nový log FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:02-08-2015 01
Ran by Homer (administrator) on HOMERSAURUS (04-08-2015 14:27:33)
Running from C:\Users\Homer\Downloads
Loaded Profiles: Homer (Available Profiles: Homer & Pavel)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
() C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
() C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Program Files (x86)\Gaming Keyboard\OSD.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.6061\Battle.net.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7634648 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [7060848 2012-10-02] (O&O Software GmbH)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [VICTORY Gaming Keyboard] => C:\Program Files (x86)\Gaming Keyboard\Monitor.exe [270336 2013-04-09] ()
Winlogon\Notify\igfxcui: igfxdev.dll [X]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
BootExecute: autocheck autochk * OODBSsdnclean64.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKU\S-1-5-21-766231400-2784921558-2389940221-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
URLSearchHook: HKU\S-1-5-21-766231400-2784921558-2389940221-1001 - Default Value = {FE69C007-C452-4d3e-86D2-1730DF8BC871}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-766231400-2784921558-2389940221-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Tcpip\Parameters: [DhcpNameServer] 10.236.184.254 10.0.0.3 10.0.0.2
Tcpip\..\Interfaces\{2955E3B7-60E4-4250-90F2-E4C51CBE562D}: [DhcpNameServer] 10.236.184.254 10.0.0.3 10.0.0.2

FireFox:
========
FF ProfilePath: C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-07-14] ()
FF Plugin: @iqiyi.com/npclient -> C:\IQIYI Video\LStyle\npclient.dll No File
FF Plugin: @iqiyi.com/npWebPlayer -> C:\IQIYI Video\LStyle\npWebPlayer.dll No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-14] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-27] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-24] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-24] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-766231400-2784921558-2389940221-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-03-07] ()
FF Extension: No Name - C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\ich@maltegoetz.de [not found]
FF Extension: No Name - C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\jid0-HYNmqxA9zQGfJADREri4n2AHKSI@jetpack [not found]
FF Extension: No Name - C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\LPESNIOB27154074@RO39491085.com [not found]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Homer\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Homer\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-07-31]
CHR Extension: (YouTube) - C:\Users\Homer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-07-31]
CHR Extension: (Google Search) - C:\Users\Homer\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-31]
CHR Extension: (Gmail) - C:\Users\Homer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-31]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [815392 2014-11-04] (IObit)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-20] (Microsoft Corporation)
R2 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2013-07-05] (CyberLink)
R2 CyberLink PowerDVD 13 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [327432 2013-07-05] (CyberLink)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2000-01-01] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-31] (IObit)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [2552176 2012-10-02] (O&O Software GmbH)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2007048 2015-07-27] (Electronic Arts)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2015-02-12] ()
R2 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [288768 2011-03-09] (WDC) [File not signed]
R2 WDFME; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [1066896 2011-03-09] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WDSC; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [491920 2011-03-09] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 MBAMService; C:\Users\Homer\Desktop\Antiviry portable 04_2015\Malwarebytes' Anti-Malware 2.1.4.1018 Portable Premium ML (17.3.2015)\App\Malwarebytes\mbamservice.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2014-03-11] (Advanced Micro Devices)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-05-21] ()
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-12-14] (Disc Soft Ltd)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-05-21] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2000-01-01] (Intel Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31400 2000-01-01] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [130320 2013-07-06] (CyberLink Corp.)
S3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-25 23:12 - 2014-10-05 20:08 - 00000000 ____D C:\Users\Homer\Documents\100MEDIA
2015-08-03 22:08 - 2015-08-03 22:08 - 02248704 _____ C:\Users\Homer\Downloads\adwcleaner_4.208.exe
2015-08-03 21:04 - 2015-08-03 21:04 - 00000879 _____ C:\Users\Homer\Desktop\PAYDAY 2.lnk
2015-08-03 20:57 - 2015-08-03 20:57 - 00089406 _____ C:\Users\Homer\Downloads\Addition.txt
2015-08-03 20:56 - 2015-08-04 14:27 - 00014934 _____ C:\Users\Homer\Downloads\FRST.txt
2015-08-03 20:56 - 2015-08-04 14:27 - 00000000 ____D C:\FRST
2015-08-03 20:55 - 2015-08-03 20:55 - 02169856 _____ (Farbar) C:\Users\Homer\Downloads\FRST64.exe
2015-08-03 20:21 - 2015-08-03 20:21 - 00000000 ____D C:\Users\Homer\AppData\Roaming\ProductData
2015-08-03 20:03 - 2015-08-03 20:04 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2015-08-03 20:03 - 2015-08-03 20:04 - 00000000 ____D C:\WINDOWS\system32\vbox
2015-08-03 20:01 - 2015-08-03 20:30 - 00000000 ____D C:\ProgramData\AVAST Software
2015-08-03 20:01 - 2015-08-03 20:01 - 05500000 _____ (Avast Software s.r.o.) C:\Users\Homer\Downloads\avast_free_antivirus_setup_online.exe
2015-08-03 20:00 - 2015-08-03 20:00 - 00000024 _____ C:\Users\Homer\AppData\Roaming\appdataFr25.bin
2015-08-03 19:59 - 2015-08-03 19:59 - 00000000 ____D C:\ProgramData\ProductData
2015-08-03 19:42 - 2015-08-03 19:42 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-03 19:42 - 2015-08-03 19:20 - 00107736 ____R (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-08-03 19:42 - 2015-08-03 19:19 - 00064216 ____R (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-08-03 19:42 - 2015-08-03 19:19 - 00025816 ____R (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-08-03 19:38 - 2015-08-03 19:39 - 00000000 ____D C:\KVRT_Data
2015-08-03 19:28 - 2015-08-03 19:28 - 00000085 _____ C:\WINDOWS\wininit.ini
2015-08-03 19:19 - 2015-08-03 19:30 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-08-03 19:19 - 2015-08-03 19:28 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-08-03 19:19 - 2015-08-03 19:19 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-08-03 19:18 - 2015-08-03 19:18 - 00028316 _____ C:\Users\Homer\Downloads\[CzT]Kolekce_Portable_programu_na_odstraneni_viru_04_2015_.torrent
2015-08-03 19:16 - 2015-08-03 19:17 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Homer\Downloads\spybot-2.4.exe
2015-08-03 19:01 - 2015-08-03 19:01 - 00000000 ____D C:\Users\Homer\AppData\Local\Western_Digital
2015-08-03 19:00 - 2015-08-04 08:29 - 00000847 _____ C:\WINDOWS\setupact.log
2015-08-03 19:00 - 2015-08-03 20:30 - 00491760 _____ C:\WINDOWS\PFRO.log
2015-08-03 19:00 - 2015-08-03 19:00 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-08-03 18:40 - 2015-08-03 19:03 - 00000000 ____D C:\WINDOWS\pss
2015-08-03 17:54 - 2015-08-03 17:54 - 00772016 _____ (Reimage®) C:\Users\Homer\Downloads\Nepotvrzeno 477714.crdownload
2015-08-03 17:29 - 2015-08-03 18:28 - 00000000 ____D C:\qycache
2015-08-03 17:29 - 2015-08-03 17:29 - 00000000 ____D C:\ppsfile
2015-08-03 17:06 - 2015-08-03 17:47 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-08-03 16:55 - 2015-08-03 16:55 - 00000000 ____D C:\Program Files (x86)\baidu
2015-08-03 16:54 - 2015-08-03 16:54 - 00671230 _____ C:\Users\Homer\Downloads\Battlefield Hardline Key Gener Downloader__3687_i1572273388_il96987.exe.zip
2015-08-03 14:33 - 2015-08-03 14:33 - 00076203 _____ C:\Users\Homer\Downloads\Battlefield.Hardline.Reloaded.torrent
2015-08-03 09:55 - 2015-08-03 09:55 - 00000000 ____H C:\asc_rdflag
2015-08-02 10:01 - 2015-08-02 10:01 - 00000000 ____D C:\Users\Homer\AppData\Roaming\21615
2015-07-31 21:43 - 2015-08-01 10:01 - 00000000 ____D C:\Users\Homer\AppData\Local\Arma 3
2015-07-31 21:43 - 2015-07-31 22:46 - 00000000 ____D C:\Users\Homer\Documents\Arma 3
2015-07-31 21:43 - 2015-07-31 21:43 - 00000000 ____D C:\ProgramData\Bohemia Interactive
2015-07-31 21:36 - 2015-07-31 21:36 - 00000527 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arma 3.lnk
2015-07-29 22:02 - 2015-07-29 22:02 - 00000000 ____D C:\Users\Homer\AppData\Local\CEF
2015-07-28 20:53 - 2015-07-28 20:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Far Cry 3 Blood Dragon
2015-07-28 18:10 - 2015-07-28 18:10 - 00000000 ____D C:\Users\Homer\AppData\Roaming\DVDFab9
2015-07-28 18:10 - 2015-07-28 18:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab 9
2015-07-28 10:40 - 2015-07-28 10:40 - 00000000 ____D C:\Users\Homer\Downloads\Manic Street Preachers - Futurology (Deluxe) (2014) [FLAC]
2015-07-28 08:38 - 2015-07-25 15:34 - 01084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-07-27 23:01 - 2015-05-26 12:02 - 00001495 _____ C:\Users\Homer\Desktop\Drаgоn Аgе Inquisitiоn.lnk
2015-07-27 20:36 - 2015-07-27 20:36 - 00000000 ____D C:\ProgramData\Western Digital
2015-07-27 20:35 - 2015-07-27 20:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WD SmartWare
2015-07-27 20:35 - 2015-07-27 20:35 - 00000000 ____D C:\Program Files\Western Digital
2015-07-27 20:35 - 2015-07-27 20:35 - 00000000 ____D C:\Program Files\WDCSAM
2015-07-27 20:35 - 2015-07-27 20:35 - 00000000 ____D C:\Program Files\DIFX
2015-07-27 20:35 - 2015-07-27 20:35 - 00000000 ____D C:\Program Files (x86)\Western Digital
2015-07-27 14:09 - 2014-04-16 01:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-07-27 14:09 - 2014-04-16 01:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-07-25 22:51 - 2015-07-25 22:51 - 00041391 _____ C:\Users\Homer\Downloads\Akmareul-boatda(0000191381).srt
2015-07-25 15:07 - 2015-07-25 15:36 - 522366035 _____ C:\Users\Homer\Downloads\Simpsonovi-26-05-Protiklady-se-přifrakují-HD-720p-cz.mkv
2015-07-25 14:37 - 2015-07-25 15:06 - 520432418 _____ C:\Users\Homer\Downloads\Simpsonovi-26-03-Mama-Sendvič-HD-720p-cz.mkv
2015-07-24 22:20 - 2015-07-24 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III Public Test
2015-07-24 22:12 - 2015-07-24 22:52 - 00000000 ____D C:\Program Files (x86)\Diablo III Public Test
2015-07-23 14:41 - 2015-08-02 17:11 - 00000000 ____D C:\Users\Homer\Documents\CANON
2015-07-23 11:49 - 2015-07-23 11:49 - 18823680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-07-23 11:49 - 2015-07-23 11:49 - 15159296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-07-23 11:48 - 2015-07-23 11:48 - 02476376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-07-23 11:48 - 2015-07-23 11:48 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-07-23 11:48 - 2015-07-23 11:48 - 00411133 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-07-22 20:01 - 2015-07-22 20:01 - 00495671 _____ C:\Users\Homer\Downloads\[CzT]Hra_o_truny_Game_of_Thrones_1_4_serie_CZ_EN_1080pHD_.torrent
2015-07-21 07:37 - 2015-07-14 16:14 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-07-21 07:37 - 2015-07-14 16:14 - 00301056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-07-21 07:37 - 2015-07-14 16:14 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-07-21 07:37 - 2015-07-14 16:13 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-07-19 19:43 - 2015-07-19 19:43 - 00000947 _____ C:\Users\Homer\Desktop\Toy Soldiers Complete v14.lnk
2015-07-19 19:43 - 2015-07-19 19:43 - 00000000 ____D C:\Users\Homer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toy Soldiers Complete v14 1.0
2015-07-19 19:43 - 2015-07-19 19:43 - 00000000 ____D C:\Users\Homer\AppData\Local\toy soldiers complete
2015-07-19 16:44 - 2015-07-19 16:44 - 00001680 _____ C:\Users\Homer\Desktop\Risen3.lnk
2015-07-19 11:21 - 2015-07-19 11:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tropico 5
2015-07-19 10:24 - 2015-07-19 10:24 - 05226031 _____ C:\Users\Homer\Downloads\Battlefield-Hardline-crack.rar
2015-07-19 10:20 - 2015-07-19 10:20 - 00409384 _____ C:\Users\Homer\Downloads\Battlefield Hardline Key Gener Downloader.zip
2015-07-18 20:35 - 2015-07-18 20:35 - 00003152 _____ C:\WINDOWS\System32\Tasks\{5501693B-B104-4B8A-95F9-EEABAAB7C0AE}
2015-07-18 20:33 - 2015-07-18 20:33 - 00000000 _____ C:\WINDOWS\prleth.sys
2015-07-18 20:33 - 2015-07-18 20:33 - 00000000 _____ C:\WINDOWS\hgfs.sys
2015-07-18 20:31 - 2015-07-18 20:31 - 00661526 _____ C:\Users\Homer\Downloads\BattlefieldHardlineKey.zip
2015-07-18 20:29 - 2015-07-18 20:30 - 20202571 _____ C:\Users\Homer\Downloads\Battlefield-Hardline-PC-Game-Downloader.rar
2015-07-16 19:56 - 2015-07-16 19:56 - 00000000 ____D C:\Users\Homer\AppData\Roaming\Intel Corporation
2015-07-16 19:55 - 2015-07-16 19:55 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-07-16 19:54 - 2015-07-16 19:54 - 00000000 ____D C:\Users\Homer\Intel
2015-07-16 12:38 - 2015-07-23 11:42 - 00000000 ____D C:\Program Files (x86)\Minute Draw
2015-07-16 07:45 - 2015-07-13 23:10 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-07-16 07:45 - 2015-07-13 23:10 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-15 18:54 - 2015-07-15 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Race Driver GRID
2015-07-15 08:47 - 2015-07-09 21:51 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-07-15 08:47 - 2015-07-09 20:40 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-07-15 08:47 - 2015-07-09 18:03 - 03701760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-07-15 08:47 - 2015-07-09 17:54 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-07-15 08:47 - 2015-07-09 17:53 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-07-15 08:47 - 2015-07-09 17:50 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-07-15 08:47 - 2015-07-09 17:50 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-07-15 08:47 - 2015-07-09 17:48 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-07-15 08:47 - 2015-07-09 17:46 - 02229248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-07-15 08:47 - 2015-07-09 17:38 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-07-15 08:47 - 2015-07-09 17:37 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-07-15 08:47 - 2015-07-09 17:35 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-07-15 08:47 - 2015-07-09 17:34 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-07-15 08:47 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-07-15 08:47 - 2015-07-02 22:49 - 25193984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-07-15 08:47 - 2015-07-02 00:08 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-07-15 08:47 - 2015-07-01 23:14 - 04520448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-07-15 08:47 - 2015-06-30 00:43 - 00026288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-07-15 08:47 - 2015-06-29 17:07 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-07-15 08:47 - 2015-06-29 17:07 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-07-15 08:47 - 2015-06-29 17:07 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-07-15 08:47 - 2015-06-29 17:07 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-07-15 08:47 - 2015-06-28 07:07 - 00442712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2015-07-15 08:47 - 2015-06-28 07:07 - 00178008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-07-15 08:47 - 2015-06-28 07:06 - 01311960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-07-15 08:47 - 2015-06-28 07:06 - 00332120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2015-07-15 08:47 - 2015-06-27 18:42 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-07-15 08:47 - 2015-06-27 05:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2015-07-15 08:47 - 2015-06-27 05:12 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2015-07-15 08:47 - 2015-06-27 05:12 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2015-07-15 08:47 - 2015-06-27 04:40 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-07-15 08:47 - 2015-06-27 04:05 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-07-15 08:47 - 2015-06-27 04:00 - 00989184 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-07-15 08:47 - 2015-06-27 03:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-07-15 08:47 - 2015-06-27 03:26 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-07-15 08:47 - 2015-06-27 01:21 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-07-15 08:47 - 2015-06-27 01:21 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-07-15 08:47 - 2015-06-25 04:31 - 04177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-07-15 08:47 - 2015-06-16 00:41 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-07-15 08:47 - 2015-06-16 00:24 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-07-15 08:47 - 2015-06-15 23:16 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-07-15 08:47 - 2015-06-15 23:09 - 03607552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-07-15 08:47 - 2015-06-15 22:50 - 02774528 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-07-15 08:47 - 2015-06-15 21:57 - 02460160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-07-15 08:47 - 2015-05-30 23:18 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2015-07-15 08:47 - 2015-05-30 21:36 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-15 08:47 - 2015-05-30 21:35 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-07-15 08:46 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-07-15 08:46 - 2015-07-02 22:23 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-07-15 08:46 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-07-15 08:46 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-07-15 08:46 - 2015-07-02 21:20 - 14453248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-07-15 08:46 - 2015-07-02 20:59 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-07-15 08:46 - 2015-06-16 00:39 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-07-15 08:46 - 2015-06-16 00:38 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-07-15 08:46 - 2015-06-16 00:26 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-07-15 08:46 - 2015-06-15 23:36 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-07-15 08:46 - 2015-06-15 23:17 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-07-15 08:46 - 2015-06-15 23:16 - 02427392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-07-15 08:46 - 2015-06-15 23:15 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-07-15 08:46 - 2015-06-15 23:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-07-15 08:46 - 2015-06-15 23:04 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-07-15 08:46 - 2015-06-15 22:52 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-07-15 08:46 - 2015-06-15 22:17 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-07-15 08:46 - 2015-06-15 22:07 - 01951232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-07-15 08:46 - 2015-06-15 22:02 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-07-15 08:45 - 2015-06-16 07:36 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2015-07-15 08:45 - 2015-06-16 07:36 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2015-07-15 08:45 - 2015-06-16 00:24 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-07-15 08:45 - 2015-06-16 00:02 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2015-07-15 08:45 - 2015-06-15 23:58 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2015-07-15 08:45 - 2015-06-15 23:57 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-07-15 08:45 - 2015-06-15 23:56 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-07-15 08:45 - 2015-06-15 23:55 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-07-15 08:45 - 2015-06-15 23:49 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-07-15 08:45 - 2015-06-15 23:41 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-07-15 08:45 - 2015-06-15 23:38 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-07-15 08:45 - 2015-06-15 23:03 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-07-15 08:45 - 2015-06-15 22:47 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2015-07-15 08:45 - 2015-06-15 22:44 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2015-07-15 08:45 - 2015-06-15 22:43 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-07-15 08:45 - 2015-06-15 22:42 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-07-15 08:45 - 2015-06-15 22:41 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-07-15 08:45 - 2015-06-15 22:37 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-07-15 08:45 - 2015-06-15 22:32 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-07-15 08:45 - 2015-06-15 22:31 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-07-15 08:45 - 2015-06-15 22:30 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-07-15 08:45 - 2015-06-15 22:30 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-07-15 08:45 - 2015-06-11 05:49 - 01380600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-07-15 08:45 - 2015-06-10 18:13 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-07-12 10:39 - 2015-07-12 10:39 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-07-12 10:39 - 2015-07-12 10:39 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-07-12 10:39 - 2015-07-12 10:39 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-07-10 18:25 - 2015-07-28 11:43 - 00000000 ___HD C:\$Windows.~BT
2015-07-10 13:53 - 2015-07-10 13:53 - 00000000 _____ C:\Users\Homer\AppData\Local\Temp.dat
2015-07-06 14:42 - 2015-08-04 13:30 - 00079618 _____ C:\WINDOWS\system32\lvcoinst.log
2015-07-06 14:42 - 2015-07-06 14:42 - 00000000 ____D C:\Program Files\Common Files\logishrd
2015-07-05 18:04 - 2015-07-05 18:04 - 00000000 ____D C:\Users\Homer\AppData\Roaming\15015

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-04 14:27 - 2012-12-30 18:26 - 07891968 ___SH C:\Users\Homer\Downloads\Thumbs.db
2015-08-04 14:05 - 2013-02-28 08:48 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-04 14:02 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-04 13:55 - 2014-06-03 14:37 - 00000000 ____D C:\Program Files (x86)\Steam
2015-08-04 13:48 - 2013-11-07 19:54 - 01596880 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-04 13:04 - 2012-12-24 20:33 - 00000000 ____D C:\Users\Homer\AppData\Roaming\uTorrent
2015-08-04 11:07 - 2014-03-08 12:25 - 00000000 ____D C:\Users\Homer\AppData\Local\Battle.net
2015-08-04 10:38 - 2014-03-08 12:25 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-08-04 08:30 - 2014-02-13 13:57 - 00000000 ___DO C:\Users\Homer\SkyDrive
2015-08-04 08:29 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-04 08:29 - 2013-03-24 09:16 - 02564502 _____ C:\WINDOWS\system32\oodbs.lor
2015-08-03 22:10 - 2014-01-18 14:04 - 00000000 ____D C:\AdwCleaner
2015-08-03 21:55 - 2015-01-30 13:51 - 00000266 _____ C:\WINDOWS\Tasks\ASC8_SkipUac_Homer.job
2015-08-03 21:44 - 2012-12-24 20:09 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-766231400-2784921558-2389940221-1001
2015-08-03 20:29 - 2013-11-07 19:41 - 00000000 ____D C:\Users\Homer
2015-08-03 19:25 - 2013-01-16 15:27 - 00000000 ____D C:\Program Files (x86)\IObit
2015-08-03 19:25 - 2012-12-28 15:35 - 00000000 ____D C:\Users\Homer\AppData\Roaming\IObit
2015-08-03 19:25 - 2012-12-28 15:35 - 00000000 ____D C:\ProgramData\IObit
2015-08-03 19:04 - 2013-01-11 23:21 - 00000000 ___RD C:\Users\Homer\Desktop\Programy
2015-08-03 18:53 - 2013-12-14 12:57 - 00000000 ____D C:\Users\Homer\AppData\Roaming\Seznam.cz
2015-08-03 18:50 - 2012-12-28 00:58 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2015-08-03 18:41 - 2012-12-24 21:48 - 00000000 ____D C:\Users\Homer\AppData\Roaming\DAEMON Tools Lite
2015-08-03 18:31 - 2013-01-11 16:31 - 00000000 ____D C:\Users\Homer\AppData\Local\Unity
2015-08-03 17:59 - 2013-07-18 20:17 - 00000000 ____D C:\Program Files (x86)\1C
2015-08-03 17:49 - 2012-07-26 07:26 - 00000304 _____ C:\WINDOWS\win.ini
2015-08-03 17:43 - 2012-12-24 22:47 - 00000000 ____D C:\Program Files (x86)\1C Company
2015-08-03 17:39 - 2013-08-22 16:44 - 00550344 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-03 17:29 - 2013-01-23 13:19 - 00000000 ___RD C:\Users\Homer\Desktop\Hry Tata
2015-08-03 15:32 - 2013-11-07 19:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2015-08-03 09:57 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-03 09:56 - 2014-03-10 08:14 - 101773312 _____ C:\WINDOWS\system32\config\SOFTWARE.iodefrag.bak
2015-08-03 09:56 - 2014-03-10 08:14 - 00376832 _____ C:\WINDOWS\system32\config\DEFAULT.iodefrag.bak
2015-08-03 09:56 - 2014-03-10 08:14 - 00069632 _____ C:\WINDOWS\system32\config\SAM.iodefrag.bak
2015-08-03 09:56 - 2014-03-10 08:14 - 00028672 _____ C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2015-08-01 15:08 - 2013-11-07 19:55 - 00005430 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-01 15:08 - 2013-09-30 05:56 - 02832240 _____ C:\WINDOWS\system32\perfh005.dat
2015-08-01 15:08 - 2013-09-30 05:56 - 00856458 _____ C:\WINDOWS\system32\perfc005.dat
2015-08-01 15:07 - 2015-04-17 17:05 - 00000080 _____ C:\Users\Homer\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-08-01 12:59 - 2013-08-22 15:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-08-01 09:59 - 2012-12-24 23:33 - 00000000 ___RD C:\Users\Homer\Desktop\Hry Pepík
2015-07-31 19:26 - 2013-11-29 15:33 - 00000000 ____D C:\ProgramData\Origin
2015-07-31 13:01 - 2013-07-31 19:31 - 00000000 ____D C:\Users\Homer\AppData\Local\Google
2015-07-30 21:15 - 2012-12-24 23:40 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-07-28 20:54 - 2012-12-27 13:42 - 00000000 ____D C:\ProgramData\Orbit
2015-07-28 20:54 - 2012-12-24 22:55 - 00000000 ____D C:\Users\Homer\Documents\my games
2015-07-28 20:36 - 2015-01-07 12:33 - 05844992 _____ C:\WINDOWS\system32\config\DRIVERS.iodefrag.bak
2015-07-28 18:11 - 2015-04-01 21:21 - 00000000 ____D C:\Program Files (x86)\DVDFab 9
2015-07-28 12:12 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-07-28 12:06 - 2013-12-30 11:03 - 00203776 ___SH C:\Users\Homer\Documents\Thumbs.db
2015-07-28 11:49 - 2013-11-07 19:35 - 00000000 ___DC C:\WINDOWS\Panther
2015-07-27 22:56 - 2014-10-15 18:16 - 00000000 ____D C:\Program Files (x86)\Origin
2015-07-27 15:01 - 2014-10-05 12:33 - 00000000 ____D C:\ProgramData\CanonIJPLM
2015-07-27 14:18 - 2015-03-31 12:42 - 00000000 ____D C:\Users\Homer\AppData\Local\Super Internet TV
2015-07-27 14:01 - 2015-01-01 18:25 - 00000000 __SHD C:\Users\Homer\AppData\Local\EmieBrowserModeList
2015-07-27 14:01 - 2014-04-25 16:00 - 00000000 __SHD C:\Users\Homer\AppData\Local\EmieUserList
2015-07-27 14:01 - 2014-04-25 16:00 - 00000000 __SHD C:\Users\Homer\AppData\Local\EmieSiteList
2015-07-26 19:03 - 2015-02-18 16:05 - 00000000 ____D C:\Users\Homer\AppData\Roaming\MMFApplications
2015-07-25 09:44 - 2015-03-30 09:59 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-07-24 22:52 - 2013-05-22 15:06 - 00000000 ____D C:\Users\Homer\Documents\Diablo III
2015-07-19 20:29 - 2014-07-30 11:45 - 00000000 ____D C:\Users\Homer\AppData\Roaming\Tropico 5
2015-07-17 11:14 - 2015-03-30 09:59 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-07-16 19:55 - 2012-12-28 00:51 - 00000000 ____D C:\Program Files\Intel
2015-07-16 19:55 - 2012-10-30 14:49 - 00000000 ____D C:\ProgramData\Intel
2015-07-15 15:40 - 2014-06-26 14:11 - 00000000 ____D C:\ProgramData\Codemasters
2015-07-15 14:34 - 2014-06-03 15:34 - 00000000 ____D C:\Users\Homer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-07-15 13:31 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-07-15 12:59 - 2015-04-27 21:26 - 00000000 ____D C:\Program Files\Rockstar Games
2015-07-15 12:59 - 2013-06-29 23:01 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-07-15 11:09 - 2013-11-29 15:33 - 00000000 ____D C:\Users\Homer\Documents\FIFA 14
2015-07-15 09:27 - 2015-06-09 10:21 - 60104704 _____ C:\WINDOWS\system32\config\COMPONENTS.iodefrag.bak
2015-07-15 09:25 - 2013-01-06 11:31 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-07-15 09:24 - 2015-04-08 21:30 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-07-15 09:24 - 2014-11-20 10:12 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-07-15 09:23 - 2013-08-14 19:21 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-07-14 20:05 - 2013-02-28 08:48 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-07-11 13:44 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-07-06 14:47 - 2012-12-24 20:04 - 00000000 ____D C:\Users\Homer\AppData\Local\Packages
2015-07-05 14:15 - 2015-03-24 20:20 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2015-07-05 12:08 - 2012-10-08 16:28 - 00300704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Files in the root of some directories =======

2015-08-03 20:00 - 2015-08-03 20:00 - 0000024 _____ () C:\Users\Homer\AppData\Roaming\appdataFr25.bin
2013-12-20 22:30 - 2013-12-20 22:30 - 0002131 _____ () C:\Users\Homer\AppData\Roaming\default.rss
2015-03-25 20:13 - 2015-03-25 20:13 - 0099384 _____ () C:\Users\Homer\AppData\Roaming\inst.exe
2015-03-25 20:13 - 2015-03-25 20:13 - 0007859 _____ () C:\Users\Homer\AppData\Roaming\pcouffin.cat
2015-03-25 20:13 - 2015-03-25 20:13 - 0001167 _____ () C:\Users\Homer\AppData\Roaming\pcouffin.inf
2015-03-25 20:13 - 2015-03-25 20:13 - 0000055 _____ () C:\Users\Homer\AppData\Roaming\pcouffin.log
2015-03-25 20:13 - 2015-03-25 20:13 - 0082816 _____ (VSO Software) C:\Users\Homer\AppData\Roaming\pcouffin.sys
2014-06-19 06:50 - 2014-06-19 06:50 - 0000024 _____ () C:\Users\Homer\AppData\Roaming\temp.ini
2015-03-29 17:36 - 2015-03-29 17:37 - 0000906 _____ () C:\Users\Homer\AppData\Roaming\__AvidCloudManager.log
2014-07-31 11:04 - 2014-07-31 11:07 - 0000906 _____ () C:\Users\Homer\AppData\Roaming\__AvidCloudManagerPrevious.log
2015-06-20 08:27 - 2015-06-20 08:27 - 0000000 ____H () C:\Users\Homer\AppData\Local\BIT1161.tmp
2013-10-14 16:59 - 2013-12-30 23:48 - 0004608 _____ () C:\Users\Homer\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-07-10 13:53 - 2015-07-10 13:53 - 0000000 _____ () C:\Users\Homer\AppData\Local\Temp.dat
2015-01-18 10:33 - 2015-01-18 10:33 - 0000000 _____ () C:\Users\Homer\AppData\Local\{166F5D01-5246-4C90-AF01-B000FC2B39BB}
2014-08-25 07:38 - 2014-08-25 07:38 - 0000000 _____ () C:\Users\Homer\AppData\Local\{2E6794DC-5071-4A35-B55E-0C863D28E9E7}
2014-08-18 08:21 - 2014-08-18 08:21 - 0000000 _____ () C:\Users\Homer\AppData\Local\{3849D98E-4F80-4E36-91AE-C1E4BA0D1CE2}
2015-06-20 08:27 - 2015-06-20 08:27 - 0000000 _____ () C:\Users\Homer\AppData\Local\{6022FF12-83F9-4F09-8578-299CBD16BD37}
2015-04-11 08:48 - 2015-04-11 08:48 - 0000000 _____ () C:\Users\Homer\AppData\Local\{67A239D2-064C-4DA0-87AC-D0043BCC8C6A}
2014-09-15 07:42 - 2014-09-15 07:42 - 0000000 _____ () C:\Users\Homer\AppData\Local\{B55D4984-AB12-41D9-9B0E-756D4825E960}
2015-02-14 10:02 - 2015-02-14 10:02 - 0000000 _____ () C:\Users\Homer\AppData\Local\{B72B6145-6125-4F4A-B33E-39D618ED59E1}
2013-11-07 22:05 - 2013-11-07 22:05 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-09-24 08:29 - 2014-10-05 11:47 - 0012566 _____ () C:\ProgramData\hpzinstall.log

Some files in TEMP:
====================
C:\Users\Homer\AppData\Local\Temp\Quarantine.exe
C:\Users\Homer\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-04 09:24

==================== End of log ============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
Winlogon\Notify\igfxcui: igfxdev.dll [X]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @iqiyi.com/npclient -> C:\IQIYI Video\LStyle\npclient.dll No File
FF Plugin: @iqiyi.com/npWebPlayer -> C:\IQIYI Video\LStyle\npWebPlayer.dll No File
FF Extension: No Name - C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\ich@maltegoetz.de [not found]
FF Extension: No Name - C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\jid0-HYNmqxA9zQGfJADREri4n2AHKSI@jetpack [not found]
FF Extension: No Name - C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\LPESNIOB27154074@RO39491085.com [not found]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]
CHR dev: Chrome dev build detected! <======= ATTENTION
C:\Program Files (x86)\baidu
C:\Users\Homer\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
C:\Users\Homer\AppData\Local\BIT1161.tmp
C:\Users\Homer\AppData\Local\Temp.dat
C:\ProgramData\DP45977C.lfl
C:\Users\Homer\AppData\Local\Temp
End

Uložte do C:\Users\Homer\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version:02-08-2015 01
Ran by Homer (2015-08-04 17:38:00) Run:1
Running from C:\Users\Homer\Desktop
Loaded Profiles: Homer (Available Profiles: Homer & Pavel)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
Winlogon\Notify\igfxcui: igfxdev.dll [X]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @iqiyi.com/npclient -> C:\IQIYI Video\LStyle\npclient.dll No File
FF Plugin: @iqiyi.com/npWebPlayer -> C:\IQIYI Video\LStyle\npWebPlayer.dll No File
FF Extension: No Name - C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\ich@maltegoetz.de [not found]
FF Extension: No Name - C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\jid0-HYNmqxA9zQGfJADREri4n2AHKSI@jetpack [not found]
FF Extension: No Name - C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\LPESNIOB27154074@RO39491085.com [not found]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]
CHR dev: Chrome dev build detected! <======= ATTENTION
C:\Program Files (x86)\baidu
C:\Users\Homer\AppData\Local???????????????????
C:\Users\Homer\AppData\Local\BIT1161.tmp
C:\Users\Homer\AppData\Local\Temp.dat
C:\ProgramData\DP45977C.lfl
C:\Users\Homer\AppData\Local\Temp
End
*****************

"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui" => key removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully.
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully.
"HKLM\SOFTWARE\Policies\Google" => key removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKLM\Software\MozillaPlugins\@iqiyi.com/npclient" => key removed successfully
"HKLM\Software\MozillaPlugins\@iqiyi.com/npWebPlayer" => key removed successfully
C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\ich@maltegoetz.de not found.
C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\jid0-HYNmqxA9zQGfJADREri4n2AHKSI@jetpack not found.
C:\Users\Homer\AppData\Roaming\Mozilla\Firefox\Profiles\nvtrg9zj.default\extensions\LPESNIOB27154074@RO39491085.com not found.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} not found.
CHR dev: Chrome dev build detected! <======= ATTENTION => Error: No automatic fix found for this entry.
C:\Program Files (x86)\baidu => moved successfully.

"C:\Users\Homer\AppData\Local???????????????????" folder move:

Could not move "C:\Users\Homer\AppData\Local???????????????????" => Scheduled to move on reboot.

C:\Users\Homer\AppData\Local\BIT1161.tmp => moved successfully.
C:\Users\Homer\AppData\Local\Temp.dat => moved successfully.
C:\ProgramData\DP45977C.lfl => moved successfully.
C:\Users\Homer\AppData\Local\Temp => moved successfully.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-08-04 17:39:26)<=

"C:\Users\Homer\AppData\Local???????????????????" => Could not move

==== End of Fixlog 17:39:26 ====

Smazáno. Nastala nějaká změna?

Minimálně chrome se zdá být vyčištěný - po vymazání a opětovné instalace mi jde nainstalovat i Adblock.

Bohužel se mi stále nedaří zapnout Windows Defender. Smazal jsem Advanced Cleaner a všechny ,,náhražky" antivirů ale stále nic

Co konkrátně jste odinstalovával? Možná tam něco zbylo, co nyní blokuje winDefender.

Pouze Advanced system care a jeho doplňky.

Zkuste ho odinstalovat pomocí TotalUninstall: http://www.stahuj.centrum.cz/utility_a_ ... uninstall/ . Možná k tomu budete muset ASC znovu nainstalovat.

Nakonec bude táta dělat reinstall windows, PC je už hodně zasekaný i co se týče HDD apod..

AVG mu to ale vzalo a i čistilo...

Moc vám děkuju za pomoc, alespoň si bude moct v klidu zálohovat věci z PC (předtím to moc dobře nešlo)

OK a rádo se stalo!