Zasekaný ntb HP 635 Vyřešeno

[MrAnnix99]

"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A996B6A-846E-4A89-B9C4-17546B7BE49F}" = Burnout(TM) Paradise The Ultimate Box
"{9AF7D6F5-50A5-432C-9F7B-83BCE03B11A0}" = SpinTires Tech Demo (June 060613)
"{9B28DDFC-B15A-F031-E5B2-4FA2E708521B}" = CCC Help Chinese Standard
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C2BA00E-0D9B-0769-5708-ED222A7886E3}" = CCC Help Danish
"{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1" = Gameforge Live 1.0 "Legend"
"{9D84E30F-6757-4A56-BCB5-51ADE3AE8631}" = BlueStacks Notification Center
"{A29E18C2-7AB1-4b6b-848C-5D5E2C85F0C0}" = FIFA 13
"{A312ABBC-E4A0-4595-BB69-95AFF48A9838}" = HP Software Framework
"{A59E89B3-B241-4476-CB7B-30D5D79D9F07}" = CCC Help Polish
"{A68C4D16-8046-5333-CB64-5E622C795785}" = CCC Help Dutch
"{A81E275C-C1D1-473D-90D9-7EAE310550C7}" = OpenOffice 4.0.0
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA7A2800-1E75-4240-855B-03AFF8E5171E}" = FIFA 14
"{AEDBD563-24BB-4EE3-8366-A654DAC2D988}" = Mirror's Edge™
"{B1557834-5188-706D-1379-D81062EE026E}" = CCC Help Chinese Traditional
"{B1B6F164-18C3-5F8E-686A-6572BC14FC93}" = CCC Help Korean
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B810D8-DFD6-TmbRaid-89A5-CC4D47756DAF}_is1" = Tomb Raider version 5.1
"{B92132C5-5722-82AA-B510-D73EF9A06123}" = CCC Help French
"{B97E3520-C726-475E-BC0C-7561952633AB}" = HP Power Manager
"{BA0601E1-B65C-11D5-80A9-0000B494D9A6}" = PC Booster
"{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}" = Energy Star Digital Logo
"{BE0B654E-FC60-40AE-F60B-06526508B5FD}" = CCC Help Italian
"{BE0E1491-B2DC-6447-217C-342D8F7100EA}" = CCC Help Czech
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{C1594429-8296-4652-BF54-9DBE4932A44C}" = Realtek PCIE Card Reader
"{C3A32068-8AB1-4327-BB16-BED9C6219DC7}" = Qualcomm Atheros Driver Installation Program
"{C3F73E70-FB24-3D11-5D35-13E076B52D82}" = CCC Help Russian
"{C5AB1EC3-5021-4B1F-0088-ED81A037473F}" = NHL06 DL PC Demo
"{C5EADF55-3B49-B545-E16F-402B443DDC77}" = CCC Help German
"{C6432960-7871-B04D-B121-7DB2DA88CCE4}" = ccc-core-static
"{C7231F7C-6530-4E65-ADA6-5B392CF5BEB1}" = Recovery Manager
"{CBDFF724-E925-2964-E647-0A83D2F9165C}" = CCC Help French
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.5.1 Game
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D4329609-4102-4F8C-B83F-7FE024EEA314}_is1" = Dead Space 3 CZ v1.0
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D5341564-7B93-ADAC-E737-C24AA85CC5FF}" = CCC Help Chinese Standard
"{DB52432E-3AD8-41A5-A586-0F065FB6A31E}" = Game Cam
"{DC8FE210-4C59-775C-18A6-453D465C62F3}" = CCC Help Hungarian
"{DDA52D9D-A313-3CD4-F0FF-60FF8B26C6F3}" = Catalyst Control Center InstallProxy
"{DF2035BE-5820-4965-BD97-7FAF8D4A7879}" = Microsoft_VC90_CRT_x86
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding
"{E311C37C-B86F-B94B-C0D3-4AEB0A78CE05}" = CCC Help Italian
"{E362724E-9320-4946-AF34-874E7B6B2927}" = System Requirements Lab CYRI
"{E3D181F8-246B-497F-945E-6DB98CBA6677}" = Hollywood FX Volumes 1-3
"{E3FB1E5A-1C24-D581-6BC8-6F8AC2D343AD}" = CCC Help Finnish
"{E824E81C-80A4-3DFF-B5F9-4842A9FF5F7F}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106
"{E96CAA2A-0244-4A2A-8403-0C3C9534778B}" = ESU for Microsoft Windows 7 SP1
"{EB38C3E0-4863-3123-9114-5BE86EC8E5C7}" = Google Talk Plugin
"{ED1BD69A-07E3-418C-91F1-D856582581BF}" = HP On Screen Display
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1" = War Thunder Launcher 1.0.1.246
"{EE202411-2C26-49E8-9784-1BC1DBF7DE96}" = HP Support Assistant
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E79BE5-20F5-82F4-6579-2A91AED3F066}" = Catalyst Control Center Localization All
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1886CD7-9F73-417A-92E9-7E0AB0F0E099}" = Pinnacle Studio 16 - Install Manager
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F4E2CBB0-B61E-4738-B3B2-AAFF61F1C828}" = Baku
"{F6113E54-9D89-18D0-5288-62D081A9A380}" = Catalyst Control Center InstallProxy
"{F761359C-9CED-45AE-9A51-9D6605CD55C4}" = Evernote v. 4.2.2
"{F88FFBE5-6A07-6206-0B13-4F648A6718C9}" = Catalyst Control Center InstallProxy
"{FA8FCABA-6FAD-34D0-E8BA-C8A29EEBD3CE}" = CCC Help Finnish
"{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}" = Windows Live Movie Maker
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 9.20
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Avira AntiVir Desktop" = Avira Free Antivirus
"Bandicam" = Bandicam
"BandiMPEG1" = Bandisoft MPEG-1 Decoder
"Combat Arms EU" = Combat Arms EU
"Counter-Strike Global Offensive_is1" = Counter-Strike Global Offensive
"CrystalDiskInfo_is1" = CrystalDiskInfo 5.6.1 Shizuku Edition
"Czech Soccer Manager 2002 FE" = Czech Soccer Manager 2002 FE
"DAEMON Tools Lite" = DAEMON Tools Lite
"Defraggler" = Defraggler (remove only)
"F1 Race Stars_is1" = F1 Race Stars
"ffdshow_is1" = ffdshow v1.2.4422 [2012-04-09]
"FIFA 13 PC Scoreboard Switcher 0.3" = FIFA 13 PC Scoreboard Switcher 0.3
"FormatFactory" = FormatFactory 3.00
"Fraps" = Fraps (remove only)
"Full Uninstall_is1" = Full Uninstall version 2.0
"GadgetPack" = GadgetPack (remove only)
"GFWL_{53450FA2-E900-456E-9715-501000008200}" = Virtua Tennis 4™
"Google Chrome" = Google Chrome
"HaaliMkx" = Haali Media Splitter
"HD Tune Pro_is1" = HD Tune Pro 4.50
"HeavyLoad_is1" = HeavyLoad V3.2
"Heroes & Generals" = Heroes & Generals
"Hitman Absolution_is1" = Hitman Absolution
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"LogMeIn Hamachi" = LogMeIn Hamachi
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.75.0.1300
"Man City FC" = Man City FC
"Media Player - Codec Pack" = Media Player Codec Pack 4.2.4
"Migration System Updater RBP" = Migration System Updater RBP
"Minecraft1.6.2" = Minecraft1.6.2
"Mirillis Action!" = Action!
"Mozilla Firefox 20.0.1 (x86 cs)" = Mozilla Firefox 20.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSTTS" = Microsoft Text-to-Speech Engine 4.0 (English)
"MTA:SA 1.3" = MTA:SA v1.3.2
"OCCT" = OCCT 4.4.0
"OpenAL" = OpenAL
"Opera 12.15.1748" = Opera 12.15
"Origin" = Origin
"PAYDAY 2_is1" = PAYDAY 2
"pcsx2-r5350" = PCSX2 - Playstation 2 Emulator
"PDF Complete" = PDF Complete Special Edition
"PunkBusterSvc" = PunkBuster Services
"RBPlus" = Roulette Bot Plus
"Rockstar Games Social Club" = Rockstar Games Social Club
"SLABCOMM&10C4&EA60" = Silicon Laboratories CP210x USB to UART Bridge (Driver Removal)
"SnadBoy's Revelation v2" = SnadBoy's Revelation v2
"Sniper Ghost Warrior 2_is1" = Sniper Ghost Warrior 2 v1.0.0 / RePack by Dz TeaM
"Spec Ops The Line_is1" = Spec Ops The Line
"SpeedFan" = SpeedFan (remove only)
"SSF Realism Mod" = SSF Realism Mod
"Steam App 108800" = Crysis 2 Maximum Edition
"Steam App 17470" = Dead Space
"SWAT 4 1.1" = SWAT 4 1.1
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 8" = TeamViewer 8
"TechPowerUp GPU-Z" = TechPowerUp GPU-Z
"Tweaking.com - Windows Repair (All in One)" = Tweaking.com - Windows Repair (All in One)
"Uplay" = Uplay
"uTorrent" = µTorrent
"VLC media player" = VLC media player 2.0.8
"WildTangent hp Master Uninstall" = HP Games
"Windows Doctor 2.7.1_is1" = Windows Doctor 2.7.1
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR 4.20 (32-bit)
"WT087328" = Blackhawk Striker 2
"WT087330" = Bounce Symphony
"WT087335" = Build-a-lot 2
"WT087343" = Dora's World Adventure
"WT087393" = Mah Jong Medley
"WT087394" = Penguins!
"WT087395" = Poker Superstars III
"WT087396" = Polar Bowler
"WT087397" = Polar Golfer
"WT087536" = Diner Dash 2 Restaurant Rescue
"WT089307" = Virtual Villagers 4 - The Tree of Life
"WT089308" = Blasterball 3
"WT089328" = Farm Frenzy
"WT089359" = Cake Mania
"WT089362" = Agatha Christie - Peril at End House
"WT089453" = Bejeweled 2 Deluxe
"WT089454" = Chuzzle Deluxe
"WT089455" = Zuma Deluxe
"WT089457" = Slingo Supreme
"WT089458" = Plants vs. Zombies - Game of the Year
"WT089470" = FATE - The Traitor Soul
"WT089484" = Namco All-Stars PAC-MAN
"WT089496" = Mystery P.I. - Stolen in San Francisco
"WT089498" = Bejeweled 3
"WT089504" = Final Drive Nitro
"x264vfw" = x264vfw - H.264/MPEG-4 AVC codec (remove only)
"Xvid_is1" = Xvid 1.2.2 final uninstall

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"GamersFirst LIVE!" = GamersFirst LIVE!
"SeznamInstall" = Seznam Software

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5.10.2013 4:54:50 | Computer Name = JAKUB-HP | Source = Application Error | ID = 1000
Description = Název chybující aplikace: ciesiotplun.exe, verze: 0.0.0.0, časové
razítko: 0x523a8006 Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové
razítko: 0x5154f82a Kód výjimky: 0xc0000005 Posun chyby: 0x00059d7d ID chybujícího
procesu: 0x98c Čas spuštění chybující aplikace: 0x01cec1a88c7bedd3 Cesta k chybující
aplikaci: C:\Users\JAKUB\AppData\Local\Temp\vkolifsyymljiar\ciesiotplun.exe Cesta
k chybujícímu modulu: C:\Windows\system32\amdocl.dll ID zprávy: ca8e779a-2d9b-11e3-9ffe-2c768add0320

Error - 5.10.2013 13:34:33 | Computer Name = JAKUB-HP | Source = Application Error | ID = 1000
Description = Název chybující aplikace: ciesiotplun.exe, verze: 0.0.0.0, časové
razítko: 0x523a8006 Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové
razítko: 0x5154f82a Kód výjimky: 0xc0000005 Posun chyby: 0x00059d7d ID chybujícího
procesu: 0x1674 Čas spuštění chybující aplikace: 0x01cec1f12491341d Cesta k chybující
aplikaci: C:\Users\JAKUB\AppData\Local\Temp\vkolifsyymljiar\ciesiotplun.exe Cesta
k chybujícímu modulu: C:\Windows\system32\amdocl.dll ID zprávy: 655b46f3-2de4-11e3-9ffe-2c768add0320

Error - 5.10.2013 14:09:26 | Computer Name = JAKUB-HP | Source = Application Error | ID = 1000
Description = Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové
razítko: 0x523a8006 Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové
razítko: 0x5154f82a Kód výjimky: 0xc0000005 Posun chyby: 0x00059d7d ID chybujícího
procesu: 0x1174 Čas spuštění chybující aplikace: 0x01cec1f5fef8055b Cesta k chybující
aplikaci: C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exe Cesta
k chybujícímu modulu: C:\Windows\system32\amdocl.dll ID zprávy: 4491ea38-2de9-11e3-a323-2c768add0320

Error - 5.10.2013 14:10:52 | Computer Name = JAKUB-HP | Source = Application Error | ID = 1000
Description = Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové
razítko: 0x523a8006 Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové
razítko: 0x5154f82a Kód výjimky: 0xc0000005 Posun chyby: 0x00059d7d ID chybujícího
procesu: 0x5e0 Čas spuštění chybující aplikace: 0x01cec1f639f88e9b Cesta k chybující
aplikaci: C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exe Cesta
k chybujícímu modulu: C:\Windows\system32\amdocl.dll ID zprávy: 781e13bb-2de9-11e3-a323-2c768add0320

Error - 5.10.2013 14:12:39 | Computer Name = JAKUB-HP | Source = Application Error | ID = 1000
Description = Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové
razítko: 0x523a8006 Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové
razítko: 0x5154f82a Kód výjimky: 0xc0000005 Posun chyby: 0x00059d7d ID chybujícího
procesu: 0x2dc Čas spuštění chybující aplikace: 0x01cec1f679620119 Cesta k chybující
aplikaci: C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exe Cesta
k chybujícímu modulu: C:\Windows\system32\amdocl.dll ID zprávy: b793e2a3-2de9-11e3-a323-2c768add0320

Error - 5.10.2013 14:13:45 | Computer Name = JAKUB-HP | Source = Application Error | ID = 1000
Description = Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové
razítko: 0x523a8006 Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové
razítko: 0x5154f82a Kód výjimky: 0xc0000005 Posun chyby: 0x00059d7d ID chybujícího
procesu: 0x5fc Čas spuštění chybující aplikace: 0x01cec1f6a15a67ee Cesta k chybující
aplikaci: C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exe Cesta
k chybujícímu modulu: C:\Windows\system32\amdocl.dll ID zprávy: df5a634d-2de9-11e3-a323-2c768add0320

Error - 5.10.2013 14:14:52 | Computer Name = JAKUB-HP | Source = Application Error | ID = 1000
Description = Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové
razítko: 0x523a8006 Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové
razítko: 0x5154f82a Kód výjimky: 0xc0000005 Posun chyby: 0x00059d7d ID chybujícího
procesu: 0x10c0 Čas spuštění chybující aplikace: 0x01cec1f6c8c530a9 Cesta k chybující
aplikaci: C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exe Cesta
k chybujícímu modulu: C:\Windows\system32\amdocl.dll ID zprávy: 06ecffc3-2dea-11e3-a323-2c768add0320

Error - 5.10.2013 14:16:05 | Computer Name = JAKUB-HP | Source = Application Error | ID = 1000
Description = Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové
razítko: 0x523a8006 Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové
razítko: 0x5154f82a Kód výjimky: 0xc0000005 Posun chyby: 0x00059d7d ID chybujícího
procesu: 0x11f0 Čas spuštění chybující aplikace: 0x01cec1f6f4ae11bc Cesta k chybující
aplikaci: C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exe Cesta
k chybujícímu modulu: C:\Windows\system32\amdocl.dll ID zprávy: 32ada792-2dea-11e3-a323-2c768add0320

Error - 5.10.2013 14:17:28 | Computer Name = JAKUB-HP | Source = Application Error | ID = 1000
Description = Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové
razítko: 0x523a8006 Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové
razítko: 0x5154f82a Kód výjimky: 0xc0000005 Posun chyby: 0x00059d7d ID chybujícího
procesu: 0x5c4 Čas spuštění chybující aplikace: 0x01cec1f725e1e9e8 Cesta k chybující
aplikaci: C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exe Cesta
k chybujícímu modulu: C:\Windows\system32\amdocl.dll ID zprávy: 63e1be36-2dea-11e3-a323-2c768add0320

Error - 5.10.2013 14:19:17 | Computer Name = JAKUB-HP | Source = Application Error | ID = 1000
Description = Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové
razítko: 0x523a8006 Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové
razítko: 0x5154f82a Kód výjimky: 0xc0000005 Posun chyby: 0x00059d7d ID chybujícího
procesu: 0x6c0 Čas spuštění chybující aplikace: 0x01cec1f7671402f4 Cesta k chybující
aplikaci: C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exe Cesta
k chybujícímu modulu: C:\Windows\system32\amdocl.dll ID zprávy: a5040830-2dea-11e3-a323-2c768add0320

[ Hewlett-Packard Events ]
Error - 24.2.2013 15:15:47 | Computer Name = JAKUB-HP | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\021324081536.xml
File not created by asset agent

Error - 3.3.2013 10:42:25 | Computer Name = JAKUB-HP | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\031303034217.xml
File not created by asset agent

[ HP Wireless Assistant Events ]
Error - 3.7.2013 5:41:14 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 5:41:15 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:27 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:29 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:30 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:32 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:33 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:35 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:37 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:38 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

[ System Events ]
Error - 5.10.2013 2:54:38 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby SwitchBoard bylo dosaženo časového
limitu (30000 ms).

Error - 5.10.2013 2:54:38 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7000
Description = Služba SwitchBoard neuspěla při spuštění v důsledku následující chyby:
%%1053

Error - 5.10.2013 2:55:36 | Computer Name = JAKUB-HP | Source = WMPNetworkSvc | ID = 866300
Description = Služba WMPNetworkSvc nebyla spuštěna správně, protože u funkce CoCreateInstance
(CLSID_UPnPDeviceFinder) došlo k chybě 0x80004005. Zkontrolujte, zda je spuštěná
služba UPnPHost a zda je správně nainstalována součást systému Windows UPnPHost.

Error - 5.10.2013 14:03:47 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7000
Description = Služba PnkBstrA neuspěla při spuštění v důsledku následující chyby:
%%3

Error - 5.10.2013 14:04:00 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby SwitchBoard bylo dosaženo časového
limitu (30000 ms).

Error - 5.10.2013 14:04:00 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7000
Description = Služba SwitchBoard neuspěla při spuštění v důsledku následující chyby:
%%1053

Error - 5.10.2013 14:04:28 | Computer Name = JAKUB-HP | Source = WMPNetworkSvc | ID = 866300
Description = Služba WMPNetworkSvc nebyla spuštěna správně, protože u funkce CoCreateInstance
(CLSID_UPnPDeviceFinder) došlo k chybě 0x80004005. Zkontrolujte, zda je spuštěná
služba UPnPHost a zda je správně nainstalována součást systému Windows UPnPHost.

Error - 5.10.2013 14:06:07 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7030
Description = Služba LogMeIn Hamachi Tunneling Engine je označena jako interaktivní
služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní
služby. Tato služba nebude fungovat správně.

Error - 5.10.2013 14:06:14 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby LogMeIn Hamachi Tunneling Engine bylo
dosaženo časového limitu (30000 ms).

Error - 5.10.2013 14:06:14 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7000
Description = Služba LogMeIn Hamachi Tunneling Engine neuspěla při spuštění v důsledku
následující chyby: %%1053


< End of report >

[Reklama]

[jaro3]

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: File not found
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013.08.27 19:32:04 | 000,000,000 | ---D | M]
[2013.08.25 19:35:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\JAKUB\AppData\Roaming\Mozilla\Extensions
[2013.08.29 10:08:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions
[2013.07.25 11:00:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}
[2013.07.25 11:00:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2013.06.28 11:59:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
File not found (No name found) -- C:\PROGRAM FILES (X86)\IOBIT APPS TOOLBAR\FF
File not found (No name found) -- C:\USERS\JAKUB\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4ANQZJ7D.DEFAULT\EXTENSIONS\ASCSURFINGPROTECTION@IOBIT.COM
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8:64bit: - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O9:64bit: - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - Reg Error: Value error. File not found
O13 - gopher Prefix: missing
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - AutoRun File - [2013.08.16 08:37:15 | 003,893,056 | R--- | M] (Electronic Arts, Inc.) - E:\AutoRun.exe -- [ UDF ]
O32 - AutoRun File - [2013.08.31 15:31:23 | 000,000,000 | R--D | M] - E:\Autorun -- [ UDF ]
O32 - AutoRun File - [2013.08.14 10:28:14 | 000,048,240 | R--- | M] () - E:\Autorun.ico -- [ UDF ]
O32 - AutoRun File - [2013.08.31 15:31:21 | 000,000,096 | R--- | M] () - E:\autorun.inf -- [ UDF ]
O32 - AutoRun File - [2013.08.30 07:40:50 | 000,000,054 | R--- | M] () - F:\AUTORUN.INF -- [ CDFS ]
[2013.09.28 11:54:37 | 000,659,188 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2013.09.28 11:54:37 | 000,652,348 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.09.28 11:54:37 | 000,138,262 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2013.09.28 11:54:37 | 000,118,690 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.10.04 21:04:26 | 099,288,311 | ---- | M] ()(C:\Windows\SysWow64\???) -- C:\Windows\SysWow64\犂ꞣᵌ
[2013.10.04 21:04:26 | 000,000,000 | ---- | C] ()(C:\Windows\SysWow64\???) -- C:\Windows\SysWow64\犂ꞣᵌ
[2013.09.27 15:58:37 | 098,267,320 | ---- | M] ()(C:\Windows\SysWow64\???ˆ) -- C:\Windows\SysWow64\䓀ᵌˆ
[2013.09.27 15:58:37 | 098,267,320 | ---- | C] ()(C:\Windows\SysWow64\???ˆ) -- C:\Windows\SysWow64\䓀ᵌˆ
[2013.09.24 21:31:46 | 097,540,783 | ---- | M] ()(C:\Windows\SysWow64\???B) -- C:\Windows\SysWow64\紧貮ᵌB
[2013.09.24 21:31:46 | 097,540,783 | ---- | C] ()(C:\Windows\SysWow64\???B) -- C:\Windows\SysWow64\紧貮ᵌB
[2013.09.21 15:06:08 | 098,547,399 | ---- | M] ()(C:\Windows\SysWow64\???˜) -- C:\Windows\SysWow64\⪙俋ᵌ˜
[2013.09.21 15:06:08 | 098,547,399 | ---- | C] ()(C:\Windows\SysWow64\???˜) -- C:\Windows\SysWow64\⪙俋ᵌ˜
[2013.09.19 15:41:02 | 098,378,485 | ---- | M] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\ʉ頬ᵌš
[2013.09.19 15:41:02 | 098,378,485 | ---- | C] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\ʉ頬ᵌš
[2013.09.18 15:13:57 | 098,132,872 | ---- | M] ()(C:\Windows\SysWow64\???) -- C:\Windows\SysWow64\覀량ᵌ
[2013.09.18 15:13:57 | 098,132,872 | ---- | C] ()(C:\Windows\SysWow64\???) -- C:\Windows\SysWow64\覀량ᵌ
[2013.09.10 13:58:07 | 096,922,344 | ---- | M] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\헜梢ᵌŸ
[2013.09.10 13:58:07 | 096,922,344 | ---- | C] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\헜梢ᵌŸ
[2013.09.07 08:15:23 | 096,496,803 | ---- | M] ()(C:\Windows\SysWow64\???@) -- C:\Windows\SysWow64\未ᵌ@
[2013.09.07 08:15:23 | 096,496,803 | ---- | C] ()(C:\Windows\SysWow64\???@) -- C:\Windows\SysWow64\未ᵌ@
[2013.09.06 15:02:16 | 096,334,488 | ---- | M] ()(C:\Windows\SysWow64\???{) -- C:\Windows\SysWow64\獢쫈ᵌ{
[2013.09.06 15:02:16 | 096,334,488 | ---- | C] ()(C:\Windows\SysWow64\???{) -- C:\Windows\SysWow64\獢쫈ᵌ{

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job /s
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Windows\SysNative\drivers\*.tmp
C:\Windows\SysWow64\drivers\*.tmp
C:\Program Files (x86)\*.tmp
C:\Windows\SysWow64\*.tmp
C:\Windows\SysNative\*.tmp
C:\Windows\SysWow64\TempWmicBatchFile.bat
C:\Users\JAKUB\Desktop\ComboFix – zástupce.lnk
C:\Windows\ativpsrm.bin
C:\Windows\AutoKMS.ini
C:\ProgramData\ezsidmv.dat
C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exe
C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp

:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" =-

:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

Stáhni si z některého odkazu SystemLook
SystemLook (32-bit)
http://jpshortstuff.247fixes.com/SystemLook.exe

SystemLook (64-bit)
http://jpshortstuff.247fixes.com/SystemLook_x64.exe

a ulož si ho na plochu.

Poklepej na stažený SystemLook , zkopíruj do hlavního text. okna tento následující text:

Kód: Vybrat vše

:filefind
fkwlbkbk.exe.*


Klikni na Look ke startu skenu. Když program skončí objeví se v poznámkovém bloku zpráva skenu. Zkopíruj sem celý jeho obsah. Log se také nachází na ploše pod názvem SystemLook.txt.

Stáhni si Farbar Recovery Scan Tool

a ulož jej na plochu.
Poznámka: Je třeba spustit kompatibilní verze s vaším systémem. Zde si můžeš zkontrolovat, pokud si nejsi jistý, zda je váš počítač 32-bit nebo 64-bit:
http://windows.microsoft.com/en-us/wind ... -or-64-bit
Poklepáním jej spusť . Když se otevře nástroj klepni na tlačítko YES(Ano) disclaimer.
Stiskni tlačítko Scan (Skenovat).Log (FRST.txt) bude ve stejném adresáři jako nástroj . Prosím, zkopíruj a vlož jej sem.
Poprvé když je nástroj spuštěn, udělá dalšílog (Addition.txt). Prosím, vlož ho sem také.

[MrAnnix99]

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Prefs.js: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1 removed from extensions.enabledAddons
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@java.com/JavaPlugin\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\ubisoft.com/uplaypc\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com deleted successfully.
C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Extensions folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\JAK folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\lib folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\defaults\preferences folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\defaults folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\components folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\locale\ru-RU folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\locale folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content\visual-bookmarks\js\utils folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content\visual-bookmarks\js\sandbox folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content\visual-bookmarks\js\proto folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content\visual-bookmarks\js\modules\bookmarks folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content\visual-bookmarks\js\modules folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content\visual-bookmarks\js\libs folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content\visual-bookmarks\js\config folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content\visual-bookmarks\js\application_core folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content\visual-bookmarks\js folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content\visual-bookmarks\background folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content\visual-bookmarks folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content\sputnik folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome\content folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\chrome folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D} folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\ffaddon@vagex.com\defaults\preferences folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\ffaddon@vagex.com\defaults folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\ffaddon@vagex.com\content\bin folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\ffaddon@vagex.com\content folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\ffaddon@vagex.com folder moved successfully.
C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions folder moved successfully.
Folder C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D}\ not found.
Folder C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\ not found.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons\default folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\E&xportovat do aplikace Microsoft Excel\ deleted successfully.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Od&eslat do aplikace OneNote\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\E&xportovat do aplikace Microsoft Excel\ not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Od&eslat do aplikace OneNote\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{7815BE26-237D-41A8-A98F-F7BD75F71086}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7815BE26-237D-41A8-A98F-F7BD75F71086}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlpg\ deleted successfully.
File Protocol\Handler\wlpg - No CLSID value found not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
File move failed. E:\AutoRun.exe scheduled to be moved on reboot.
File not found.
File move failed. E:\Autorun.ico scheduled to be moved on reboot.
File move failed. E:\autorun.inf scheduled to be moved on reboot.
File F:\AUTORUN.INF not found.
C:\Windows\SysNative\perfh005.dat moved successfully.
C:\Windows\SysNative\perfh009.dat moved successfully.
C:\Windows\SysNative\perfc005.dat moved successfully.
C:\Windows\SysNative\perfc009.dat moved successfully.
C:\Windows\SysWOW64\犂ꞣᵌ moved successfully.
File C:\Windows\SysWow64\犂ꞣᵌ not found.
C:\Windows\SysWOW64\䓀ᵌˆ moved successfully.
File C:\Windows\SysWow64\䓀ᵌˆ not found.
C:\Windows\SysWOW64\紧貮ᵌB moved successfully.
File C:\Windows\SysWow64\紧貮ᵌB not found.
C:\Windows\SysWOW64\⪙俋ᵌ˜ moved successfully.
File C:\Windows\SysWow64\⪙俋ᵌ˜ not found.
C:\Windows\SysWOW64\ʉ頬ᵌš moved successfully.
File C:\Windows\SysWow64\ʉ頬ᵌš not found.
File C:\Windows\SysWow64\覀량ᵌ not found.
File C:\Windows\SysWow64\覀량ᵌ not found.
C:\Windows\SysWOW64\헜梢ᵌŸ moved successfully.
File C:\Windows\SysWow64\헜梢ᵌŸ not found.
C:\Windows\SysWOW64\未ᵌ@ moved successfully.
File C:\Windows\SysWow64\未ᵌ@ not found.
C:\Windows\SysWOW64\獢쫈ᵌ{ moved successfully.
File C:\Windows\SysWow64\獢쫈ᵌ{ not found.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
c:\windows\Tasks\Adobe Flash Player Updater.job moved successfully.
c:\windows\Tasks\HPCeeScheduleForJAKUB.job moved successfully.
c:\windows\Tasks\SlimDrivers Startup.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
File\Folder C:\Windows\SysNative\drivers\*.tmp not found.
File\Folder C:\Windows\SysWow64\drivers\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
File\Folder C:\Windows\SysWow64\*.tmp not found.
C:\Windows\SysNative\SET1B15.tmp moved successfully.
C:\Windows\SysNative\SET39B1.tmp moved successfully.
C:\Windows\SysNative\SETB37D.tmp moved successfully.
C:\Windows\SysWow64\TempWmicBatchFile.bat moved successfully.
C:\Users\JAKUB\Desktop\ComboFix – zástupce.lnk moved successfully.
C:\Windows\ativpsrm.bin moved successfully.
C:\Windows\AutoKMS.ini moved successfully.
C:\ProgramData\ezsidmv.dat moved successfully.
File\Folder C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exe not found.
File\Folder C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus\\DisableMonitoring deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: JAKUB
->Temp folder emptied: 141535 bytes
->Temporary Internet Files folder emptied: 730644 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 357619888 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 492 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 19122 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
RecycleBin emptied: 791371 bytes

Total Files Cleaned = 343,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 10062013_110032

Files\Folders moved on Reboot...
File move failed. E:\AutoRun.exe scheduled to be moved on reboot.
File move failed. E:\Autorun.ico scheduled to be moved on reboot.
File move failed. E:\autorun.inf scheduled to be moved on reboot.
C:\Users\JAKUB\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Users\JAKUB\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

[MrAnnix99]

SystemLook 30.07.11 by jpshortstuff
Log created at 11:09 on 06/10/2013 by JAKUB
Administrator - Elevation successful

========== filefind ==========

Searching for "fkwlbkbk.exe.*"
No files found.

-= EOF =-

[MrAnnix99]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by JAKUB (administrator) on JAKUB-HP on 06-10-2013 11:21:42
Running from C:\Users\JAKUB\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(AMD) C:\Windows\system32\atieclxx.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(SlimWare Utilities, Inc.) C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Fork Ltd.) C:\Prey\platform\windows\cronsvc.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2000-01-01] (Realtek Semiconductor)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-05] (Avira Operations GmbH & Co. KG)
HKU\Default\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Before =
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page Before = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL =
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)

FireFox:
========
FF ProfilePath: C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @live.heroesandgenerals.com/npretox - C:\Program Files (x86)\Heroes & Generals\live\npretoxlive.dll (Reto-Moto ApS)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\JAKUB\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\JAKUB\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\JAKUB\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR HomePage: hxxp://www.seznam.cz/
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\pdf.dll ()
CHR Plugin: (AdobeExManDetect) - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
CHR Plugin: (AdobeAAMDetect) - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Heroes & Generals live) - C:\Program Files (x86)\Heroes & Generals\live\npretoxlive.dll (Reto-Moto ApS)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Nexon Game Controller) - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
CHR Plugin: (Facebook Desktop) - C:\Users\JAKUB\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
CHR Plugin: (Google Update) - C:\Users\JAKUB\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Google Talk Plugin) - C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
CHR Extension: (Docs) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
CHR Extension: (Google Drive) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0
CHR Extension: (FB Refresh) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdlfdaajmclngiomogmleihllaejcnni\2.1.0_0
CHR Extension: (YouTube) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Facebook) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm\1.0.3_0
CHR Extension: (Google Search) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (Photo Zoom for Facebook) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1208.30.1_0
CHR Extension: (AdBlock) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.8_0
CHR Extension: (Skype Click to Call) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.11.0.13348_0
CHR Extension: (Twitch Now) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk\1.1.48_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [140672 2011-08-12] (SUPERAntiSpyware.com)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-03-28] (Advanced Micro Devices, Inc.)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-09-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-05] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-09-05] (Avira Operations GmbH & Co. KG)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-05-09] (Atheros)
R2 CronService; C:\Prey\platform\windows\cronsvc.exe [23552 2013-05-08] (Fork Ltd.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1127448 2011-02-01] (PDF Complete Inc)
S2 PnkBstrA;

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
S3 AR5416; C:\Windows\System32\DRIVERS\athwx.sys [2793568 2011-02-25] (Atheros Communications, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-05] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-09-05] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-09-05] (Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-05-29] (DT Soft Ltd)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 RTCore64; C:\Program Files (x86)\RMClock\RTCore64.sys [14352 2008-09-08] ()
S3 RTCore64; C:\Program Files (x86)\RMClock\RTCore64.sys [14352 2008-09-08] ()
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2013-09-14] ()
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-10-06] ()
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-11-13] (OpenLibSys.org)
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-11-13] (OpenLibSys.org)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 atillk64; No ImagePath
S3 EagleX64; No ImagePath
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-06 11:21 - 2013-10-06 11:21 - 00000000 ____D C:\FRST
2013-10-06 11:20 - 2013-10-06 11:20 - 01954124 _____ (Farbar) C:\Users\JAKUB\Downloads\FRST64.exe
2013-10-06 11:09 - 2013-10-06 11:15 - 00000432 _____ C:\Users\JAKUB\Downloads\SystemLook.txt
2013-10-06 11:09 - 2013-10-06 11:09 - 00165376 _____ C:\Users\JAKUB\Downloads\SystemLook_x64.exe
2013-10-06 11:03 - 2013-10-06 11:03 - 00000410 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2013-10-06 11:02 - 2013-10-06 11:02 - 00000000 _____ C:\Windows\ativpsrm.bin
2013-10-06 11:01 - 2013-10-06 11:02 - 00000029 _____ C:\Windows\SysWOW64\TempWmicBatchFile.bat
2013-10-06 11:00 - 2013-10-06 11:00 - 00000000 ____D C:\_OTL
2013-10-06 10:15 - 2013-10-06 10:39 - 04191000 _____ C:\Users\JAKUB\Desktop\ZAPASOVE FOTO - ATL..psd
2013-10-05 20:52 - 2013-10-05 20:52 - 00000000 ____D C:\Users\JAKUB\AppData\Local\LogMeIn
2013-10-05 20:03 - 2013-10-06 11:02 - 00000224 _____ C:\Windows\setupact.log
2013-10-05 20:03 - 2013-10-05 20:03 - 00000000 _____ C:\Windows\setuperr.log
2013-10-05 19:47 - 2013-10-05 19:47 - 00003166 _____ C:\Windows\System32\Tasks\{A4089C6F-AA9D-428C-A317-5750300D6C5B}
2013-10-05 19:41 - 2013-10-05 19:44 - 148127918 _____ C:\Users\JAKUB\Downloads\FIFA14MWM05.rar
2013-10-05 19:40 - 2013-10-05 19:40 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-05 19:37 - 2013-10-05 19:37 - 04369632 _____ (Piriform Ltd) C:\Users\JAKUB\Downloads\ccsetup406.exe
2013-10-04 15:37 - 2013-10-06 09:43 - 00000000 ____D C:\Users\JAKUB\Documents\FIFA 14
2013-10-04 15:37 - 2013-10-04 15:37 - 00000304 _____ C:\Users\JAKUB\Desktop\dfgd.txt
2013-10-04 15:27 - 2013-10-04 15:36 - 00000876 _____ C:\Users\Public\Desktop\FIFA 14.lnk
2013-10-04 15:10 - 2013-10-05 19:48 - 00000000 ____D C:\Users\JAKUB\Desktop\FIFA14
2013-10-03 17:43 - 2013-10-03 17:43 - 00000000 ____D C:\Users\JAKUB\Downloads\NBA.2K14-RELOADED
2013-10-03 17:09 - 2013-10-03 17:09 - 00001007 _____ C:\Users\Public\Desktop\20Dollars2Surf.lnk
2013-10-03 17:08 - 2013-10-03 17:09 - 01563298 _____ (Galactic Brothers LTD ) C:\Users\JAKUB\Downloads\setup (7).exe
2013-10-03 16:57 - 2013-10-03 16:57 - 01907712 _____ (Kadrimex S.A.R.L) C:\Users\JAKUB\Downloads\AW-Manager-V5.exe
2013-10-03 16:57 - 2013-10-03 16:57 - 00000000 ____D C:\AW-Manager
2013-10-03 16:53 - 2013-10-03 16:53 - 00368960 _____ (www.roulettebotplus.com) C:\Users\JAKUB\Downloads\RBPSetup_bj80y (1).exe
2013-10-03 16:51 - 2013-10-03 16:56 - 00000000 ____D C:\Users\JAKUB\AppData\Local\MigsUpdater
2013-10-03 16:51 - 2013-10-03 16:52 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\RBotPlus
2013-10-03 16:51 - 2013-10-03 16:51 - 00368960 _____ (www.roulettebotplus.com) C:\Users\JAKUB\Downloads\RBPSetup_bj80y.exe
2013-10-03 16:51 - 2013-10-03 16:51 - 00004166 _____ C:\Windows\System32\Tasks\MigrationUpdateTask
2013-10-03 16:51 - 2013-10-03 16:51 - 00001003 _____ C:\Users\Public\Desktop\Roulette Bot Plus.lnk
2013-10-03 16:51 - 2013-10-03 16:51 - 00000000 ____D C:\Program Files (x86)\RBPlus
2013-10-03 16:34 - 2013-10-03 16:34 - 01882977 _____ (Agia3D ) C:\Users\JAKUB\Downloads\setupEuroHappy-008.exe
2013-10-03 16:34 - 2013-10-03 16:34 - 00000000 ____D C:\agia3d
2013-10-03 16:32 - 2013-10-03 16:32 - 00498688 _____ () C:\Users\JAKUB\Downloads\setup (6).exe
2013-10-03 16:25 - 2013-10-03 16:25 - 00437760 _____ () C:\Users\JAKUB\Downloads\setup (5).exe
2013-10-03 16:25 - 2013-10-03 16:25 - 00437760 _____ () C:\Users\JAKUB\Downloads\setup (4).exe
2013-10-03 16:25 - 2013-10-03 16:25 - 00437760 _____ () C:\Users\JAKUB\Downloads\setup (3).exe
2013-10-03 16:00 - 2013-10-03 16:00 - 00437760 _____ () C:\Users\JAKUB\Downloads\setup (2).exe
2013-10-03 15:56 - 2013-10-03 15:56 - 00437760 _____ () C:\Users\JAKUB\Downloads\setup (1).exe
2013-10-03 15:50 - 2013-10-03 15:50 - 00437760 _____ () C:\Users\JAKUB\Downloads\setup.exe
2013-10-02 21:38 - 2013-10-02 21:36 - 00453120 _____ C:\Users\JAKUB\Desktop\FreeVK.exe
2013-10-02 21:36 - 2013-10-02 21:36 - 00453120 _____ C:\Users\JAKUB\Downloads\FreeVK.exe
2013-10-02 21:35 - 2013-10-02 21:35 - 00021270 _____ C:\Users\JAKUB\Downloads\keylog1a.zip
2013-10-02 21:29 - 2013-10-02 21:29 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Creshex_-_Go!
2013-10-02 18:56 - 2013-10-03 15:18 - 00008114 _____ C:\Users\JAKUB\Desktop\hijackthis.log
2013-10-02 17:41 - 2013-10-02 17:41 - 00003904 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001UA
2013-10-02 17:41 - 2013-10-02 17:41 - 00003536 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001Core
2013-10-02 17:41 - 2013-10-02 17:41 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2013-10-02 17:41 - 2013-10-02 17:41 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Facebook
2013-10-02 17:39 - 2013-10-02 17:39 - 00000232 _____ C:\Users\JAKUB\Desktop\thibaut.txt
2013-09-30 18:47 - 2013-09-30 18:47 - 00002124 _____ C:\Users\JAKUB\Desktop\Minecraft.lnk
2013-09-29 20:49 - 2013-09-29 21:47 - 00000000 ____D C:\Program Files (x86)\Sniper Ghost Warrior 2
2013-09-29 12:45 - 2013-10-05 19:37 - 00000000 ____D C:\Windows\erdnt
2013-09-27 17:45 - 2013-09-27 21:14 - 00000000 ____D C:\AdwCleaner
2013-09-22 17:53 - 2013-09-22 17:53 - 00000000 ____D C:\Program Files\Windows Doctor
2013-09-22 17:52 - 2013-09-22 18:05 - 00000000 ____D C:\Program Files (x86)\Windows Doctor
2013-09-22 17:52 - 2013-09-22 17:52 - 00001078 _____ C:\Users\JAKUB\Desktop\Windows Doctor.lnk
2013-09-22 15:57 - 2013-09-22 16:00 - 00000000 ____D C:\Users\JAKUB\Desktop\Kahanec
2013-09-22 13:47 - 2013-08-10 07:22 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-22 13:47 - 2013-08-10 07:22 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-22 13:47 - 2013-08-10 07:22 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-22 13:47 - 2013-08-10 07:21 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-22 13:47 - 2013-08-10 07:21 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-22 13:47 - 2013-08-10 07:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-22 13:47 - 2013-08-10 07:20 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-22 13:47 - 2013-08-10 07:20 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-22 13:47 - 2013-08-10 07:20 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-22 13:47 - 2013-08-10 07:20 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-22 13:47 - 2013-08-10 07:20 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-22 13:47 - 2013-08-10 07:20 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-22 13:47 - 2013-08-10 07:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-22 13:47 - 2013-08-10 07:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-22 13:47 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-22 13:47 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-22 13:47 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-22 13:47 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-22 13:47 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-22 13:47 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-22 13:47 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-22 13:47 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-22 13:47 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-22 13:47 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-22 13:47 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-22 13:47 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-22 13:47 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-22 13:47 - 2013-08-10 05:17 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-22 13:47 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-22 13:47 - 2013-08-10 04:27 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-22 13:47 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-22 13:39 - 2013-09-22 13:46 - 00000000 ____D C:\Windows\system32\MRT
2013-09-22 12:46 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-22 12:46 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-22 12:46 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-09-22 12:46 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-09-22 12:45 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-09-22 12:45 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-09-22 12:45 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-09-22 12:45 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-09-22 12:45 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-09-22 12:45 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-09-22 12:45 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-09-22 12:45 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-09-22 12:45 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-09-22 12:45 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-09-22 12:45 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-09-22 12:44 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-09-22 12:44 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-09-22 12:44 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-09-22 12:43 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-22 12:43 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-22 12:43 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-09-22 12:43 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-09-22 12:43 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-09-22 12:43 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-22 12:43 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-09-22 12:43 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-22 12:43 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

[MrAnnix99]

2013-09-22 12:43 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-09-22 12:43 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-09-22 12:43 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-09-22 12:43 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-09-22 12:43 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-09-22 12:43 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-22 12:43 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-22 12:43 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-09-22 12:43 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-09-22 12:43 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-09-22 12:43 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-09-22 12:43 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-22 12:43 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-22 12:42 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-09-22 12:42 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-09-22 12:41 - 2013-08-08 03:20 - 03155456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-22 12:41 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-09-22 12:41 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-09-22 12:41 - 2013-04-10 01:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-09-22 12:41 - 2013-04-03 00:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-09-21 12:51 - 2013-09-21 12:51 - 00001629 _____ C:\Users\JAKUB\Desktop\pes2014 – zástupce.lnk
2013-09-20 21:03 - 2013-09-20 21:03 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Criterion Games
2013-09-20 20:18 - 2013-09-20 20:18 - 00000838 _____ C:\Users\JAKUB\Desktop\Burnout(TM) Paradise The Ultimate Box – zástupce.lnk
2013-09-20 20:14 - 2013-09-20 20:59 - 00006774 _____ C:\Windows\SysWOW64\ealregsnapshot1.reg
2013-09-20 15:49 - 2013-09-20 15:49 - 00000000 ____D C:\Users\JAKUB\Documents\KONAMI
2013-09-19 21:59 - 2013-09-19 21:59 - 00000000 ____D C:\Program Files (x86)\KONAMI
2013-09-19 21:17 - 2013-09-21 05:27 - 00000000 ____D C:\Program Files\Crashday
2013-09-18 15:13 - 2013-09-18 15:13 - 98132872 _____ C:\Windows\SysWOW64\覀량ᵌ 
2013-09-17 21:42 - 2013-09-28 21:47 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2013-09-17 21:42 - 2013-09-17 21:42 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\SUPERAntiSpyware.com
2013-09-17 21:42 - 2013-09-17 21:42 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-09-16 18:23 - 2013-09-16 18:23 - 00000000 ____D C:\Program Files (x86)\Milestone
2013-09-15 12:10 - 2013-09-15 13:05 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-09-15 12:09 - 2013-09-15 12:09 - 00000207 _____ C:\Windows\tweaking.com-regbackup-JAKUB-HP-Microsoft-Windows-7-Home-Premium-(64-bit).dat
2013-09-15 12:08 - 2013-09-15 12:08 - 00000000 ____D C:\RegBackup
2013-09-15 10:43 - 2013-09-15 10:43 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2013-09-14 21:14 - 2013-09-16 20:04 - 00000132 _____ C:\Users\JAKUB\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2013-09-14 11:19 - 2013-09-21 05:26 - 00000000 ____D C:\Program Files (x86)\LSoft Technologies
2013-09-14 11:19 - 2013-09-14 11:19 - 00834544 _____ C:\Windows\system32\Drivers\sptd.sys
2013-09-12 17:36 - 2013-09-22 17:45 - 00000000 ____D C:\Users\JAKUB\Desktop\PHOTOSHOP VĚCI
2013-09-11 16:34 - 2013-09-11 16:34 - 00000000 ____D C:\Users\JAKUB\Documents\OCCT
2013-09-10 19:39 - 2013-09-10 19:39 - 00000000 ____D C:\Users\JAKUB\AppData\Local\OCCT_-_Ocbase_-_Adrien_Me
2013-09-10 18:48 - 2013-09-10 18:49 - 00000000 ____D C:\Program Files (x86)\OCCTPT
2013-09-10 18:48 - 2013-09-10 18:48 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OCCT
2013-09-10 18:19 - 2013-09-10 18:36 - 00000000 ____D C:\Users\JAKUB\Documents\FIFA 14 DEMO
2013-09-10 15:31 - 2013-09-10 15:31 - 00001312 _____ C:\Users\Public\Desktop\FIFA 14 Demo.lnk
2013-09-09 21:08 - 2013-09-09 21:08 - 00000206 _____ C:\Users\JAKUB\Desktop\Dead Space.url
2013-09-09 21:02 - 2013-09-21 05:26 - 00000000 ____D C:\Program Files (x86)\Counter-Strike Global Offensive
2013-09-09 20:59 - 2013-09-09 20:59 - 00000207 _____ C:\Users\JAKUB\Desktop\Crysis 2 Maximum Edition.url
2013-09-08 18:52 - 2013-09-08 18:52 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\OpenOffice
2013-09-08 13:34 - 2013-09-08 13:34 - 00000739 _____ C:\Users\JAKUB\Desktop\FIFA 13.lnk
2013-09-08 10:29 - 2013-09-08 10:29 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-09-08 09:37 - 2013-09-08 09:37 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2013-09-08 09:16 - 2013-09-22 17:23 - 00000000 ____D C:\Program Files (x86)\The Bureau
2013-09-07 19:30 - 2013-09-07 19:30 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Microsoft Help
2013-09-06 22:13 - 2013-09-06 22:17 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\SpinTires
2013-09-06 21:34 - 2013-09-06 21:34 - 00002641 _____ C:\Users\Public\Desktop\SpinTires Tech Demo (June 060613).lnk
2013-09-06 21:34 - 2013-09-06 21:34 - 00000000 ____D C:\Program Files (x86)\Oovee
2013-09-06 15:20 - 2013-09-07 19:45 - 00000000 ____D C:\Program Files\WhoCrashed
2013-09-06 15:20 - 2013-09-06 15:20 - 00007968 _____ C:\Users\JAKUB\uninstall_list.txt
2013-09-06 15:01 - 2013-09-06 15:01 - 00081112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys

==================== One Month Modified Files and Folders =======

2013-10-06 11:21 - 2013-10-06 11:21 - 00000000 ____D C:\FRST
2013-10-06 11:20 - 2013-10-06 11:20 - 01954124 _____ (Farbar) C:\Users\JAKUB\Downloads\FRST64.exe
2013-10-06 11:15 - 2013-10-06 11:09 - 00000432 _____ C:\Users\JAKUB\Downloads\SystemLook.txt
2013-10-06 11:09 - 2013-10-06 11:09 - 00165376 _____ C:\Users\JAKUB\Downloads\SystemLook_x64.exe
2013-10-06 11:07 - 2009-07-14 06:45 - 00032064 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-06 11:07 - 2009-07-14 06:45 - 00032064 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-06 11:06 - 2013-05-10 16:27 - 02001753 _____ C:\Windows\WindowsUpdate.log
2013-10-06 11:03 - 2013-10-06 11:03 - 00000410 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2013-10-06 11:03 - 2013-08-02 20:29 - 00002836 _____ C:\Windows\System32\Tasks\SlimDrivers Startup
2013-10-06 11:02 - 2013-10-06 11:02 - 00000000 _____ C:\Windows\ativpsrm.bin
2013-10-06 11:02 - 2013-10-06 11:01 - 00000029 _____ C:\Windows\SysWOW64\TempWmicBatchFile.bat
2013-10-06 11:02 - 2013-10-05 20:03 - 00000224 _____ C:\Windows\setupact.log
2013-10-06 11:02 - 2013-08-02 20:29 - 00016152 _____ C:\Windows\system32\Drivers\SWDUMon.sys
2013-10-06 11:02 - 2013-05-29 20:03 - 00000000 ____D C:\Users\JAKUB\AppData\Local\LogMeIn Hamachi
2013-10-06 11:02 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-06 11:00 - 2013-10-06 11:00 - 00000000 ____D C:\_OTL
2013-10-06 11:00 - 2013-02-22 22:18 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Mozilla
2013-10-06 10:41 - 2013-08-28 14:22 - 00000000 ____D C:\Users\JAKUB\Desktop\fotky do komentů
2013-10-06 10:39 - 2013-10-06 10:15 - 04191000 _____ C:\Users\JAKUB\Desktop\ZAPASOVE FOTO - ATL..psd
2013-10-06 09:43 - 2013-10-04 15:37 - 00000000 ____D C:\Users\JAKUB\Documents\FIFA 14
2013-10-06 08:37 - 2013-04-20 16:38 - 00000000 ____D C:\Program Files (x86)\Origin
2013-10-06 07:50 - 2013-03-01 17:28 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Adobe
2013-10-06 07:48 - 2013-02-19 16:48 - 00003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{4A89B5EF-7001-4A95-A120-F4263B7BB0D1}
2013-10-05 21:41 - 2009-07-14 07:13 - 01588894 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-05 21:39 - 2013-02-23 17:38 - 00000000 ____D C:\Users\JAKUB\AppData\Local\CrashDumps
2013-10-05 20:54 - 2013-02-22 16:28 - 00000000 ____D C:\Windows\pss
2013-10-05 20:54 - 2013-02-19 16:48 - 00000000 ___RD C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-05 20:52 - 2013-10-05 20:52 - 00000000 ____D C:\Users\JAKUB\AppData\Local\LogMeIn
2013-10-05 20:19 - 2013-03-03 11:19 - 00000000 ___RD C:\Users\JAKUB\Desktop\aplikace
2013-10-05 20:05 - 2013-05-23 17:20 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-05 20:03 - 2013-10-05 20:03 - 00000000 _____ C:\Windows\setuperr.log
2013-10-05 19:49 - 2013-02-23 18:04 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\DAEMON Tools Lite
2013-10-05 19:49 - 2013-02-19 18:44 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\uTorrent
2013-10-05 19:48 - 2013-10-04 15:10 - 00000000 ____D C:\Users\JAKUB\Desktop\FIFA14
2013-10-05 19:48 - 2013-03-10 10:10 - 00000000 ____D C:\Windows\Minidump
2013-10-05 19:48 - 2007-01-02 03:25 - 00000000 ____D C:\Windows\Panther
2013-10-05 19:47 - 2013-10-05 19:47 - 00003166 _____ C:\Windows\System32\Tasks\{A4089C6F-AA9D-428C-A317-5750300D6C5B}
2013-10-05 19:44 - 2013-10-05 19:41 - 148127918 _____ C:\Users\JAKUB\Downloads\FIFA14MWM05.rar
2013-10-05 19:40 - 2013-10-05 19:40 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-05 19:40 - 2013-09-04 20:23 - 00000000 ____D C:\Program Files\CCleaner
2013-10-05 19:37 - 2013-10-05 19:37 - 04369632 _____ (Piriform Ltd) C:\Users\JAKUB\Downloads\ccsetup406.exe
2013-10-05 19:37 - 2013-09-29 12:45 - 00000000 ____D C:\Windows\erdnt
2013-10-05 10:04 - 2013-04-20 19:21 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\.minecraft
2013-10-04 19:47 - 2013-02-19 18:34 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Skype
2013-10-04 19:44 - 2013-05-05 19:03 - 00003186 _____ C:\Windows\System32\Tasks\HPCeeScheduleForJAKUB
2013-10-04 19:05 - 2013-07-25 11:42 - 00000000 ____D C:\Users\JAKUB\Desktop\FOTKY
2013-10-04 15:53 - 2013-02-19 19:35 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-04 15:53 - 2013-02-19 19:35 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-04 15:53 - 2013-02-19 19:35 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-04 15:37 - 2013-10-04 15:37 - 00000304 _____ C:\Users\JAKUB\Desktop\dfgd.txt
2013-10-04 15:36 - 2013-10-04 15:27 - 00000876 _____ C:\Users\Public\Desktop\FIFA 14.lnk
2013-10-04 15:09 - 2013-04-20 16:39 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Origin
2013-10-03 21:21 - 2013-03-01 18:19 - 00000000 ____D C:\Users\JAKUB\Documents\FIFA 13
2013-10-03 17:43 - 2013-10-03 17:43 - 00000000 ____D C:\Users\JAKUB\Downloads\NBA.2K14-RELOADED
2013-10-03 17:31 - 2013-08-20 14:11 - 00000202 _____ C:\Users\JAKUB\Desktop\sadasda.txt
2013-10-03 17:09 - 2013-10-03 17:09 - 00001007 _____ C:\Users\Public\Desktop\20Dollars2Surf.lnk
2013-10-03 17:09 - 2013-10-03 17:08 - 01563298 _____ (Galactic Brothers LTD ) C:\Users\JAKUB\Downloads\setup (7).exe
2013-10-03 17:09 - 2013-08-31 14:36 - 00000000 ____D C:\Program Files (x86)\20Dollars2Surf
2013-10-03 16:57 - 2013-10-03 16:57 - 01907712 _____ (Kadrimex S.A.R.L) C:\Users\JAKUB\Downloads\AW-Manager-V5.exe
2013-10-03 16:57 - 2013-10-03 16:57 - 00000000 ____D C:\AW-Manager
2013-10-03 16:56 - 2013-10-03 16:51 - 00000000 ____D C:\Users\JAKUB\AppData\Local\MigsUpdater
2013-10-03 16:53 - 2013-10-03 16:53 - 00368960 _____ (www.roulettebotplus.com) C:\Users\JAKUB\Downloads\RBPSetup_bj80y (1).exe
2013-10-03 16:52 - 2013-10-03 16:51 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\RBotPlus
2013-10-03 16:51 - 2013-10-03 16:51 - 00368960 _____ (www.roulettebotplus.com) C:\Users\JAKUB\Downloads\RBPSetup_bj80y.exe
2013-10-03 16:51 - 2013-10-03 16:51 - 00004166 _____ C:\Windows\System32\Tasks\MigrationUpdateTask
2013-10-03 16:51 - 2013-10-03 16:51 - 00001003 _____ C:\Users\Public\Desktop\Roulette Bot Plus.lnk
2013-10-03 16:51 - 2013-10-03 16:51 - 00000000 ____D C:\Program Files (x86)\RBPlus
2013-10-03 16:34 - 2013-10-03 16:34 - 01882977 _____ (Agia3D ) C:\Users\JAKUB\Downloads\setupEuroHappy-008.exe
2013-10-03 16:34 - 2013-10-03 16:34 - 00000000 ____D C:\agia3d
2013-10-03 16:32 - 2013-10-03 16:32 - 00498688 _____ () C:\Users\JAKUB\Downloads\setup (6).exe
2013-10-03 16:25 - 2013-10-03 16:25 - 00437760 _____ () C:\Users\JAKUB\Downloads\setup (5).exe
2013-10-03 16:25 - 2013-10-03 16:25 - 00437760 _____ () C:\Users\JAKUB\Downloads\setup (4).exe
2013-10-03 16:25 - 2013-10-03 16:25 - 00437760 _____ () C:\Users\JAKUB\Downloads\setup (3).exe
2013-10-03 16:00 - 2013-10-03 16:00 - 00437760 _____ () C:\Users\JAKUB\Downloads\setup (2).exe
2013-10-03 15:56 - 2013-10-03 15:56 - 00437760 _____ () C:\Users\JAKUB\Downloads\setup (1).exe
2013-10-03 15:50 - 2013-10-03 15:50 - 00437760 _____ () C:\Users\JAKUB\Downloads\setup.exe
2013-10-03 15:18 - 2013-10-02 18:56 - 00008114 _____ C:\Users\JAKUB\Desktop\hijackthis.log
2013-10-03 14:51 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2013-10-02 21:36 - 2013-10-02 21:38 - 00453120 _____ C:\Users\JAKUB\Desktop\FreeVK.exe
2013-10-02 21:36 - 2013-10-02 21:36 - 00453120 _____ C:\Users\JAKUB\Downloads\FreeVK.exe
2013-10-02 21:35 - 2013-10-02 21:35 - 00021270 _____ C:\Users\JAKUB\Downloads\keylog1a.zip
2013-10-02 21:29 - 2013-10-02 21:29 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Creshex_-_Go!
2013-10-02 17:41 - 2013-10-02 17:41 - 00003904 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001UA
2013-10-02 17:41 - 2013-10-02 17:41 - 00003536 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001Core
2013-10-02 17:41 - 2013-10-02 17:41 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2013-10-02 17:41 - 2013-10-02 17:41 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Facebook
2013-10-02 17:39 - 2013-10-02 17:39 - 00000232 _____ C:\Users\JAKUB\Desktop\thibaut.txt
2013-10-01 16:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-09-30 18:47 - 2013-09-30 18:47 - 00002124 _____ C:\Users\JAKUB\Desktop\Minecraft.lnk
2013-09-30 17:02 - 2013-02-19 19:14 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\vlc
2013-09-29 21:47 - 2013-09-29 20:49 - 00000000 ____D C:\Program Files (x86)\Sniper Ghost Warrior 2
2013-09-29 20:53 - 2013-08-20 15:48 - 00000000 ____D C:\Windows\SysWOW64\directx
2013-09-29 11:52 - 2011-08-03 11:38 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-09-28 21:47 - 2013-09-17 21:42 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2013-09-28 21:47 - 2013-07-14 08:19 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\DG
2013-09-28 21:47 - 2013-07-13 09:38 - 00000000 ____D C:\Windows\ERUNT
2013-09-28 21:47 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
2013-09-28 21:46 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2013-09-28 12:22 - 2013-07-05 13:56 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Uniblue
2013-09-28 11:49 - 2013-02-19 16:44 - 00000000 ____D C:\Users\JAKUB
2013-09-28 11:08 - 2013-08-24 09:03 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Deployment
2013-09-27 21:14 - 2013-09-27 17:45 - 00000000 ____D C:\AdwCleaner
2013-09-27 19:12 - 2013-02-22 19:24 - 01540756 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-09-26 15:47 - 2013-06-02 22:38 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab
2013-09-23 19:06 - 2013-07-02 20:07 - 00000000 ____D C:\New Folder
2013-09-22 18:20 - 2013-05-30 18:43 - 00000000 ____D C:\Program Files (x86)\Payday The Heist
2013-09-22 18:19 - 2013-02-23 19:17 - 00000000 ____D C:\Users\JAKUB\Documents\Ubisoft
2013-09-22 18:18 - 2013-03-25 16:44 - 00000000 ____D C:\Games
2013-09-22 18:17 - 2013-03-30 09:15 - 00000000 ____D C:\Program Files (x86)\R.G. Catalyst
2013-09-22 18:12 - 2013-04-07 13:57 - 00000000 ____D C:\Program Files (x86)\ePlayWorks
2013-09-22 18:10 - 2013-07-02 20:15 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-09-22 18:06 - 2013-07-07 08:32 - 00000000 ____D C:\Program Files (x86)\Mixxx
2013-09-22 18:06 - 2013-04-27 21:10 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
2013-09-22 18:05 - 2013-09-22 17:52 - 00000000 ____D C:\Program Files (x86)\Windows Doctor
2013-09-22 17:53 - 2013-09-22 17:53 - 00000000 ____D C:\Program Files\Windows Doctor
2013-09-22 17:52 - 2013-09-22 17:52 - 00001078 _____ C:\Users\JAKUB\Desktop\Windows Doctor.lnk
2013-09-22 17:45 - 2013-09-12 17:36 - 00000000 ____D C:\Users\JAKUB\Desktop\PHOTOSHOP VĚCI
2013-09-22 17:29 - 2013-03-08 17:54 - 00000000 ____D C:\Program Files (x86)\Mafia II Kompletní Edice
2013-09-22 17:23 - 2013-09-08 09:16 - 00000000 ____D C:\Program Files (x86)\The Bureau
2013-09-22 16:20 - 2013-08-25 19:34 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LSHunter.TV
2013-09-22 16:09 - 2013-05-11 22:41 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2013-09-22 16:00 - 2013-09-22 15:57 - 00000000 ____D C:\Users\JAKUB\Desktop\Kahanec
2013-09-22 15:24 - 2013-02-24 21:18 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-09-22 15:23 - 2013-03-24 16:31 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-09-22 15:13 - 2013-02-19 16:48 - 00000000 ___RD C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-22 15:11 - 2013-05-19 19:14 - 05174360 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-22 15:07 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-09-22 15:07 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-09-22 13:55 - 2013-03-01 21:17 - 00000000 ____D C:\Users\JAKUB\AppData\Local\SKIDROW
2013-09-22 13:54 - 2013-03-26 18:14 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Game Updater
2013-09-22 13:46 - 2013-09-22 13:39 - 00000000 ____D C:\Windows\system32\MRT
2013-09-21 12:51 - 2013-09-21 12:51 - 00001629 _____ C:\Users\JAKUB\Desktop\pes2014 – zástupce.lnk
2013-09-21 05:27 - 2013-09-19 21:17 - 00000000 ____D C:\Program Files\Crashday
2013-09-21 05:26 - 2013-09-14 11:19 - 00000000 ____D C:\Program Files (x86)\LSoft Technologies
2013-09-21 05:26 - 2013-09-09 21:02 - 00000000 ____D C:\Program Files (x86)\Counter-Strike Global Offensive
2013-09-21 05:26 - 2013-05-29 22:45 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-09-21 05:26 - 2013-03-13 20:26 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-09-20 21:03 - 2013-09-20 21:03 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Criterion Games
2013-09-20 20:59 - 2013-09-20 20:14 - 00006774 _____ C:\Windows\SysWOW64\ealregsnapshot1.reg
2013-09-20 20:18 - 2013-09-20 20:18 - 00000838 _____ C:\Users\JAKUB\Desktop\Burnout(TM) Paradise The Ultimate Box – zástupce.lnk
2013-09-20 20:12 - 2013-02-21 17:25 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Downloaded Installations
2013-09-20 15:49 - 2013-09-20 15:49 - 00000000 ____D C:\Users\JAKUB\Documents\KONAMI
2013-09-19 21:59 - 2013-09-19 21:59 - 00000000 ____D C:\Program Files (x86)\KONAMI
2013-09-19 21:16 - 2013-07-15 18:49 - 00000000 ____D C:\Program Files (x86)\R.G. World Games
2013-09-18 15:13 - 2013-09-18 15:13 - 98132872 _____ C:\Windows\SysWOW64\覀량ᵌ 
2013-09-17 21:42 - 2013-09-17 21:42 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\SUPERAntiSpyware.com
2013-09-17 21:42 - 2013-09-17 21:42 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-09-16 20:04 - 2013-09-14 21:14 - 00000132 _____ C:\Users\JAKUB\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2013-09-16 18:23 - 2013-09-16 18:23 - 00000000 ____D C:\Program Files (x86)\Milestone
2013-09-16 16:36 - 2013-05-19 19:15 - 00156520 _____ C:\Users\JAKUB\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-15 13:05 - 2013-09-15 12:10 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-09-15 12:58 - 2009-07-14 04:34 - 00000423 _____ C:\Windows\win.ini
2013-09-15 12:09 - 2013-09-15 12:09 - 00000207 _____ C:\Windows\tweaking.com-regbackup-JAKUB-HP-Microsoft-Windows-7-Home-Premium-(64-bit).dat
2013-09-15 12:08 - 2013-09-15 12:08 - 00000000 ____D C:\RegBackup
2013-09-15 12:06 - 2011-09-29 03:14 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-09-15 10:43 - 2013-09-15 10:43 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2013-09-15 09:52 - 2013-03-12 19:04 - 00000000 ____D C:\Users\JAKUB\Documents\My Games
2013-09-15 09:13 - 2013-03-11 19:04 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-09-15 08:49 - 2013-04-14 21:31 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-09-15 08:49 - 2013-03-16 12:42 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-09-14 11:19 - 2013-09-14 11:19 - 00834544 _____ C:\Windows\system32\Drivers\sptd.sys
2013-09-13 17:43 - 2013-08-21 16:26 - 00000000 ____D C:\Users\JAKUB\Desktop\FIFA 13
2013-09-12 18:25 - 2013-02-19 16:51 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Adobe
2013-09-11 16:34 - 2013-09-11 16:34 - 00000000 ____D C:\Users\JAKUB\Documents\OCCT
2013-09-10 19:39 - 2013-09-10 19:39 - 00000000 ____D C:\Users\JAKUB\AppData\Local\OCCT_-_Ocbase_-_Adrien_Me
2013-09-10 18:49 - 2013-09-10 18:48 - 00000000 ____D C:\Program Files (x86)\OCCTPT
2013-09-10 18:48 - 2013-09-10 18:48 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OCCT
2013-09-10 18:36 - 2013-09-10 18:19 - 00000000 ____D C:\Users\JAKUB\Documents\FIFA 14 DEMO
2013-09-10 15:31 - 2013-09-10 15:31 - 00001312 _____ C:\Users\Public\Desktop\FIFA 14 Demo.lnk
2013-09-09 21:08 - 2013-09-09 21:08 - 00000206 _____ C:\Users\JAKUB\Desktop\Dead Space.url
2013-09-09 20:59 - 2013-09-09 20:59 - 00000207 _____ C:\Users\JAKUB\Desktop\Crysis 2 Maximum Edition.url
2013-09-08 18:52 - 2013-09-08 18:52 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\OpenOffice
2013-09-08 13:34 - 2013-09-08 13:34 - 00000739 _____ C:\Users\JAKUB\Desktop\FIFA 13.lnk
2013-09-08 10:29 - 2013-09-08 10:29 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-09-08 09:37 - 2013-09-08 09:37 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2013-09-07 20:48 - 2013-05-11 08:36 - 00000000 ____D C:\Program Files\trend micro
2013-09-07 19:45 - 2013-09-06 15:20 - 00000000 ____D C:\Program Files\WhoCrashed
2013-09-07 19:39 - 2013-02-22 18:59 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2013-09-07 19:39 - 2013-02-22 18:54 - 00000000 ____D C:\Windows\SHELLNEW
2013-09-07 19:39 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-09-07 19:30 - 2013-09-07 19:30 - 00000000 ____D C:\Users\JAKUB\AppData\Local\Microsoft Help
2013-09-06 22:17 - 2013-09-06 22:13 - 00000000 ____D C:\Users\JAKUB\AppData\Roaming\SpinTires
2013-09-06 21:34 - 2013-09-06 21:34 - 00002641 _____ C:\Users\Public\Desktop\SpinTires Tech Demo (June 060613).lnk
2013-09-06 21:34 - 2013-09-06 21:34 - 00000000 ____D C:\Program Files (x86)\Oovee
2013-09-06 15:20 - 2013-09-06 15:20 - 00007968 _____ C:\Users\JAKUB\uninstall_list.txt
2013-09-06 15:15 - 2013-08-31 14:33 - 00000000 ____D C:\Program Files (x86)\Rublik
2013-09-06 15:01 - 2013-09-06 15:01 - 00081112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-01 16:02

==================== End Of Log ============================

[MrAnnix99]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-10-2013
Ran by JAKUB at 2013-10-06 11:23:29
Running from C:\Users\JAKUB\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================


==================== Installed Programs ======================

"Sniper - Ghost Warrior 2" (x32)
µTorrent (x32 Version: 3.3.0.29038)
20Dollars2Surf 1.1 (x32)
7-Zip 9.20 (x32)
Action! (x32 Version: 1.14.2)
Active@ ISO Burner (x32 Version: 2.5.1)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.175)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.168)
Adobe Photoshop CS6 (x32 Version: 13.0)
Agatha Christie - Peril at End House (x32 Version: 2.2.0.95)
AMD Accelerated Video Transcoding (Version: 12.10.100.30328)
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD Catalyst Install Manager (Version: 8.0.877.0)
AMD Catalyst Install Manager (Version: 8.0.915.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2013.0328.2218.38225)
AMD Media Foundation Decoders (Version: 1.0.80328.2204)
AMD System Monitor (x32 Version: 1.0.9)
AMD VISION Engine Control Center (x32 Version: 2013.0328.2218.38225)
Apple Application Support (x32 Version: 1.5.1)
Apple Software Update (x32 Version: 2.1.1.116)
Application Profiles (x32 Version: 2.0.4888.34279)
Avira Free Antivirus (x32 Version: 13.0.0.4052)
Avira SearchFree Toolbar plus Web Protection (x32 Version: 12.2.1.477)
Baku (x32 Version: 4.3.4369.39926)
Bandicam (x32 Version: 1.8.5.301)
Bandisoft MPEG-1 Decoder (x32)
Battlefield 1942™ (x32 Version: 1.6.20.0)
Battlefield 2(TM) (x32)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95)
Bejeweled 3 (x32 Version: 2.2.0.95)
Blackhawk Striker 2 (x32 Version: 2.2.0.95)
Blasterball 3 (x32 Version: 2.2.0.95)
BlueStacks Notification Center (x32 Version: 0.7.14.901)
Bluetooth Win7 Suite (64) (Version: 7.2.0.80)
Bonjour (Version: 2.0.4.0)
Bounce Symphony (x32 Version: 2.2.0.95)
Build-a-lot 2 (x32 Version: 2.2.0.95)
Burnout(TM) Paradise The Ultimate Box (x32 Version: 1.0.0.0)
Cake Mania (x32 Version: 2.2.0.95)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center InstallProxy (x32 Version: 2011.0201.2237.40525)
Catalyst Control Center InstallProxy (x32 Version: 2012.1116.1515.27190)
Catalyst Control Center InstallProxy (x32 Version: 2013.0830.1944.33589)
Catalyst Control Center Localization All (x32 Version: 2011.0201.2237.40525)
Catalyst Control Center Localization All (x32 Version: 2013.0328.2218.38225)
CCC Help Czech (x32 Version: 2011.0201.2236.40525)
CCC Help Czech (x32 Version: 2013.0328.2217.38225)
CCC Help Danish (x32 Version: 2011.0201.2236.40525)
CCC Help Danish (x32 Version: 2013.0328.2217.38225)
CCC Help Dutch (x32 Version: 2011.0201.2236.40525)
CCC Help Dutch (x32 Version: 2013.0328.2217.38225)
CCC Help English (x32 Version: 2011.0201.2236.40525)
CCC Help English (x32 Version: 2013.0328.2217.38225)
CCC Help Finnish (x32 Version: 2011.0201.2236.40525)
CCC Help Finnish (x32 Version: 2013.0328.2217.38225)
CCC Help French (x32 Version: 2011.0201.2236.40525)
CCC Help French (x32 Version: 2013.0328.2217.38225)
CCC Help German (x32 Version: 2011.0201.2236.40525)
CCC Help German (x32 Version: 2013.0328.2217.38225)
CCC Help Greek (x32 Version: 2011.0201.2236.40525)
CCC Help Greek (x32 Version: 2013.0328.2217.38225)
CCC Help Hungarian (x32 Version: 2011.0201.2236.40525)
CCC Help Hungarian (x32 Version: 2013.0328.2217.38225)
CCC Help Chinese Standard (x32 Version: 2011.0201.2236.40525)
CCC Help Chinese Standard (x32 Version: 2013.0328.2217.38225)
CCC Help Chinese Traditional (x32 Version: 2011.0201.2236.40525)
CCC Help Chinese Traditional (x32 Version: 2013.0328.2217.38225)
CCC Help Italian (x32 Version: 2011.0201.2236.40525)
CCC Help Italian (x32 Version: 2013.0328.2217.38225)
CCC Help Japanese (x32 Version: 2011.0201.2236.40525)
CCC Help Japanese (x32 Version: 2013.0328.2217.38225)
CCC Help Korean (x32 Version: 2011.0201.2236.40525)
CCC Help Korean (x32 Version: 2013.0328.2217.38225)
CCC Help Norwegian (x32 Version: 2011.0201.2236.40525)
CCC Help Norwegian (x32 Version: 2013.0328.2217.38225)
CCC Help Polish (x32 Version: 2011.0201.2236.40525)
CCC Help Polish (x32 Version: 2013.0328.2217.38225)
CCC Help Portuguese (x32 Version: 2011.0201.2236.40525)
CCC Help Portuguese (x32 Version: 2013.0328.2217.38225)
CCC Help Russian (x32 Version: 2011.0201.2236.40525)
CCC Help Russian (x32 Version: 2013.0328.2217.38225)
CCC Help Spanish (x32 Version: 2011.0201.2236.40525)
CCC Help Spanish (x32 Version: 2013.0328.2217.38225)
CCC Help Swedish (x32 Version: 2011.0201.2236.40525)
CCC Help Swedish (x32 Version: 2013.0328.2217.38225)
CCC Help Thai (x32 Version: 2011.0201.2236.40525)
CCC Help Thai (x32 Version: 2013.0328.2217.38225)
CCC Help Turkish (x32 Version: 2011.0201.2236.40525)
CCC Help Turkish (x32 Version: 2013.0328.2217.38225)
ccc-core-static (x32 Version: 2011.0201.2237.40525)
ccc-utility64 (Version: 2011.0201.2237.40525)
ccc-utility64 (Version: 2013.0328.2218.38225)
CCleaner (Version: 4.06)
Cisco EAP-FAST Module (x32 Version: 2.2.14)
Cisco LEAP Module (x32 Version: 1.0.19)
Cisco PEAP Module (x32 Version: 1.1.6)
CLEO v3.0.950 (x32)
Combat Arms EU (x32)
Counter-Strike Global Offensive (x32 Version: 1.0.0.0)
CPU Časomíra 2.0 (x32)
CPUID HWMonitor 1.23
Crysis 2 Maximum Edition (x32)
CrystalDiskInfo 5.6.1 Shizuku Edition (x32 Version: 5.6.1)
CyberLink YouCam (x32 Version: 3.2.1.3726)
Czech Soccer Manager 2002 FE (x32)
D3DX10 (x32 Version: 15.4.2368.0902)
DAEMON Tools Lite (x32 Version: 4.47.1.0333)
Dead Space (x32)
Dead Space 3 CZ v1.0 (x32 Version: 1.0)
Defraggler (remove only) (x32)
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95)
Dora's World Adventure (x32 Version: 2.2.0.95)
Energy Star Digital Logo (x32 Version: 1.0.1)
ESU for Microsoft Windows 7 SP1 (x32 Version: 2.1.1)
Euro Truck Simulator 2 (x32 Version: 1.1.1)
Euro-Happy M-B-v2.12e Bęta (x32)
Evernote v. 4.2.2 (x32 Version: 4.2.2.3979)
F1 Race Stars (x32)
Facebook Messenger 2.1.4814.0 (x32 Version: 2.1.4814.0)
Farm Frenzy (x32 Version: 2.2.0.95)
FATE - The Traitor Soul (x32 Version: 2.2.0.95)
ffdshow v1.2.4422 [2012-04-09] (x32 Version: 1.2.4422.0)
FiatECUScan (x32 Version: 3.6)
FIFA 13 (x32 Version: 1.1.0.0)
FIFA 13 PC Scoreboard Switcher 0.3 (x32)
FIFA 14 (x32 Version: 1.0.0.1)
FIFA 14 Demo (x32 Version: 1.0.0.0)
Final Drive Nitro (x32 Version: 2.2.0.95)
FormatFactory 3.00 (x32 Version: 3.00)
Fraps (remove only) (x32)
Full Uninstall version 2.0 (x32 Version: 2.0)
Futuremark SystemInfo (x32 Version: 4.15.0)
GadgetPack (remove only) (x32)
Game Cam (x32)
Gameforge Live 1.0 "Legend" (x32 Version: 1.0.1717)
GamersFirst LIVE! (HKCU)
Google Earth (x32 Version: 7.1.1.1888)
Google Chrome (x32 Version: 29.0.1547.62)
Google Talk Plugin (x32 Version: 4.5.3.14917)
Google Update Helper (x32 Version: 1.3.21.153)
GPS-Navigace-Sygic-Aura-V11.2.6-Android-CZ-pln-verze version for Windows (x32 Version: for Windows)
GTA San Andreas (x32 Version: 1.00.00001)
Haali Media Splitter (x32)
HD Tune Pro 4.50 (x32)
HeavyLoad V3.2 (x32 Version: 3.2)
Heroes & Generals (x32 Version: 1.0.4.6)
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000)
Hitman Absolution (x32)
Hitman Blood Money (x32 Version: 1.10.000)
Hollywood FX Volumes 1-3 (x32 Version: 2.0.0)
HP Auto (Version: 1.0.12935.3667)
HP Customer Experience Enhancements (x32 Version: 6.0.1.7)
HP Documentation (x32 Version: 1.1.0.0)
HP Games (x32 Version: 1.0.2.4)
HP On Screen Display (x32 Version: 1.3.5)
HP Power Manager (x32 Version: 1.2.1)
HP Quick Launch (x32 Version: 2.7.2)
HP Setup (x32 Version: 8.5.4526.3645)
HP Software Framework (x32 Version: 4.0.108.1)
HP Support Assistant (x32 Version: 7.0.39.15)
HP Wireless Assistant (Version: 4.0.10.0)
Chuzzle Deluxe (x32 Version: 2.2.0.95)
Imagenomic Portraiture 2.1 Plug-in (build 2105)
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32 Version: 2.1.9.5)
LogMeIn Hamachi (x32 Version: 2.2.0.58)
Mah Jong Medley (x32 Version: 2.2.0.95)
Malwarebytes Anti-Malware verze 1.75.0.1300 (x32 Version: 1.75.0.1300)
Man City FC (x32)
Media Player Codec Pack 4.2.4 (x32 Version: 4.2.4)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile FRA Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended CSY Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Text-to-Speech Engine 4.0 (English) (x32)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (x32 Version: 1.0.0)
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000)
Migration System Updater RBP (x32 Version: 1.2.0.0)
Minecraft1.6.2 (x32)
Mirror's Edge™ (x32 Version: 1.0.1.0)
Module linguistique Microsoft .NET Framework 4 Client Profile FRA (Version: 4.0.30319)
MotoGP(TM)13 (x32 Version: 1.00.0000)
Mozilla Firefox 20.0.1 (x86 cs) (x32 Version: 20.0.1)
Mozilla Maintenance Service (x32 Version: 20.0.1)
MSVCRT (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MTA:SA v1.3.2 (x32 Version: v1.3.2)
Mystery P.I. - Stolen in San Francisco (x32 Version: 2.2.0.95)
Namco All-Stars PAC-MAN (x32 Version: 2.2.0.95)
NHL06 DL PC Demo (x32)
NVIDIA PhysX (x32 Version: 9.12.1031)
OCCT 4.4.0 (x32 Version: 4.4.0)
OpenAL (x32)
OpenOffice 4.0.0 (x32 Version: 4.00.9702)
Opera 12.15 (x32 Version: 12.15.1748)
Origin (x32 Version: 9.1.15.109)
Ovladače videa společnosti Pinnacle (Version: 12.1.0.030)
Pando Media Booster (x32 Version: 2.6.0.
PAYDAY 2 (x32)
PC Booster (x32 Version: 6.0)
PCMark 7 (x32 Version: 1.4.0)
PCSX2 - Playstation 2 Emulator (x32)
PDF Complete Special Edition (x32 Version: 4.0.34)
PDF Settings CS6 (x32 Version: 11.0)
Penguins! (x32 Version: 2.2.0.95)
Pinnacle Studio 16 - Install Manager (x32 Version: 16.0.75)
Pinnacle Studio 16 - Standard Content Pack (x32 Version: 16.0.0)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95)
Poker Superstars III (x32 Version: 2.2.0.95)
Polar Bowler (x32 Version: 2.2.0.95)
Polar Golfer (x32 Version: 2.2.0.95)
Premium Pack Volumes 1-2 (x32 Version: 2.0.0)
Pro Evolution Soccer 2014 (x32 Version: 1.01.0000)
PunkBuster Services (x32 Version: 0.993)
Qualcomm Atheros Driver Installation Program (x32 Version: 10.0)
Rapture3D 2.5.1 Game (x32)
Razer Game Booster (x32 Version: 3.5.6.0)
Realtek Ethernet Controller Driver (x32 Version: 7.42.304.2011)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6662)
Realtek PCIE Card Reader (x32 Version: 6.2.8400.28123)
Recovery Manager (x32 Version: 1.0.22)
Rockstar Games Social Club (x32 Version: 1.0.5.0)
Roulette Bot Plus (x32 Version: 1.3.8.4)
Seznam Software (HKCU)
ShaunWhiteSnowboarding (x32 Version: 1.00)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (x32)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (x32 Version: 6.5)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7_2 (c:\SiLabs\MCU\CP210x\Windows_XP_S2K3_Vista_7_2) (x32 Version: 6.5)
SketchUp 8 (x32 Version: 3.0.15158)
Skype Click to Call (x32 Version: 6.11.13348)
Skype™ 6.6 (x32 Version: 6.6.106)
SlimDrivers (x32 Version: 2.2.30877)
Slingo Supreme (x32 Version: 2.2.0.95)
SnadBoy's Revelation v2 (x32 Version: 2.0.1.100)
Sniper Ghost Warrior 2 v1.0.0 / RePack by Dz TeaM (x32)
Spec Ops The Line (x32)
Speccy (Version: 1.21)
SpeedFan (remove only) (x32)
SpinTires Tech Demo (June 060613) (x32 Version: 1.3)
Splash PRO EX (x32 Version: 1.9.0)
SSF Realism Mod (x32)
Steam (x32 Version: 1.0.0.0)
SUPERAntiSpyware (Version: 5.0.1144)
SWAT 4 1.1 (x32)
Synaptics Pointing Device Driver (Version: 15.2.4.3)
System Requirements Lab CYRI (x32 Version: 6.0.7.0)
TeamSpeak 3 Client (x32 Version: 3.0.6)
TeamViewer 8 (x32 Version: 8.0.18051)
TechPowerUp GPU-Z (x32)
Thread Manager 2.4.0.0 (x32 Version: 2.4.0.0)
Tomb Raider version 5.1 (x32 Version: 5.1)
Tweaking.com - Windows Repair (All in One) (x32 Version: 1.9.18)
Update Installer for WildTangent Games App (x32)
Uplay (x32 Version: 3.0)
Virtua Tennis 4™ (x32 Version: 1.0.0000.130)
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.95)
VLC media player 2.0.8 (x32 Version: 2.0.
War Thunder Launcher 1.0.1.246 (x32)
WhoCrashed 4.02
WildTangent Games App (HP Games) (x32 Version: 4.0.5.2)
Windows Doctor 2.7.1 (x32)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3508.1109)
Windows Live Fotogaléria (x32 Version: 15.4.3502.0922)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
WinRAR
WinRAR 4.20 (32-bit) (x32 Version: 4.20.0)
x264vfw - H.264/MPEG-4 AVC codec (remove only) (x32)
Xobni Core (x32 Version: 1.0.0)
Xvid 1.2.2 final uninstall (x32 Version: 1.2)
Zuma Deluxe (x32 Version: 2.2.0.95)

==================== Restore Points =========================

05-10-2013 17:37:50 ComboFix created restore point

==================== Hosts content: ==========================

2009-07-14 04:34 - 2013-10-03 14:50 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {01A8739A-C21B-4223-876E-B639261B3416} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2008-07-30] (Apple Inc.)
Task: {0D0E63A3-0281-430C-BBB1-0DCE86F2E769} - System32\Tasks\AdobeAAMUpdater-1.0-JAKUB-HP-JAKUB => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated)
Task: {0F0F66B8-D501-4AAB-B9C4-882CD45CAE92} - System32\Tasks\FreeHDSport TV-enabler => C:\Program Files (x86)\FreeHDSport TV\FreeHDSport TV-enabler.exe
Task: {1272F4C9-1D76-4497-97CA-95B1E7B45FD7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {200FC071-2454-41D9-B198-B0277696425B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {22C4EE25-0553-44D0-9E65-2DE9E7187F3D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001Core => C:\Users\JAKUB\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {2984BA5E-9A5D-45C6-8BF3-92C149F37A64} - System32\Tasks\GoforFilesUpdate => C:\Program Files (x86)\GoforFiles\GFFUpdater.exe
Task: {31DFEC4D-4506-4A1B-A780-FD13457C01FB} - System32\Tasks\MigrationUpdateTask => C:\Users\JAKUB\AppData\Local\MigsUpdater\mupdater.exe [2013-05-05] ()
Task: {527A6BEC-235B-4D21-BECE-917A0F0632CC} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001UA => C:\Users\JAKUB\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {5F224D4F-E8B4-4F6A-9DE7-1CE05245B10E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-04-01] (Hewlett-Packard Company)
Task: {5FA63CFA-0D45-44AF-BC54-9F92012289E8} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe
Task: {615C95DB-6C7D-4842-AAC1-484717D2F87E} - System32\Tasks\Game_Booster_Startup => C:\Program Files (x86)\IObit\Game Booster 3\gbtray.exe
Task: {68203AB3-4015-476E-BAAD-0B935D67AE0D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-04] (Adobe Systems Incorporated)
Task: {75062EA8-912F-4C4D-8940-72FF3D279427} - System32\Tasks\Razer_Game_Booster_AutoUpdate => C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe [2012-11-13] ()
Task: {7E5C0D7B-A429-47E5-B99C-38435CEC928E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2013-09-17] (Microsoft)
Task: {83B02B5D-B184-455A-9E13-E01F47AE2313} - System32\Tasks\FreeHDSport TV-updater => C:\Program Files (x86)\FreeHDSport TV\FreeHDSport TV-updater.exe
Task: {85C018F8-7FA3-4D4E-B344-96B74A2C1922} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe
Task: {8919B6F2-0C6C-46B1-B7EA-6F63A1813065} - System32\Tasks\AutoKMSDaily => C:\Windows\AutoKMS.exe
Task: {8E2A0129-B4E4-4415-831A-266BF3D7E255} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-21] (Microsoft Corporation)
Task: {8EADB837-190B-4086-9CA5-263D432F147B} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2013-07-10] (SlimWare Utilities, Inc.)
Task: {946C220C-00DB-4E3A-88DB-C57224413CB2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {9F7F1F27-B903-4FBD-9E77-D1F73D3DEC2A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {A970EFEB-1235-45FD-AE77-B656C6A8F5D9} - \BrowserProtect No Task File
Task: {AE92AFC7-05D2-4368-BE9F-A0386004E38B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {B3EC0560-A7F8-48D7-87B8-C2A35D960E95} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-02-09] (CyberLink)
Task: {B63CD472-E8F8-4943-BAA0-69B2BD610CC1} - System32\Tasks\{C140F663-6E0B-4DB0-B686-F573F5235CFC} => C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe [2013-09-05] (Avira Operations GmbH & Co. KG)
Task: {C79EA9ED-53F5-4436-9AA4-435541E9A184} - System32\Tasks\FreeHDSport TV-codedownloader => C:\Program Files (x86)\FreeHDSport TV\FreeHDSport TV-codedownloader.exe
Task: {D9D3BDF7-5F87-4781-B775-7E7C1BDD0EB7} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe
Task: {E595E4BE-560E-4347-88C8-9F1235FFC3BA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\NetworkCheck => c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\Detection_NetworkCheck.exe [2013-09-17] (Hewlett-Packard)
Task: {EB5F147C-4979-4B0A-B949-CB7269E0FD68} - System32\Tasks\HPCeeScheduleForJAKUB => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard)
Task: {FC7E06CC-0302-4EAA-8BAD-6507ACBF2AFF} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe

==================== Loaded Modules (whitelisted) =============

2013-09-05 15:31 - 2013-09-05 15:31 - 00394824 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2013-08-29 20:38 - 2013-08-24 19:49 - 00709584 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\libglesv2.dll
2013-08-29 20:38 - 2013-08-24 19:49 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\libegl.dll
2013-08-29 20:38 - 2013-08-24 19:49 - 04053456 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\pdf.dll
2013-08-29 20:38 - 2013-08-24 19:49 - 00410576 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll
2013-08-29 20:38 - 2013-08-24 19:48 - 01604560 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\ffmpegsumo.dll
2013-08-29 20:38 - 2013-08-24 19:49 - 13594064 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\JAKUB\AppData\Roaming:NT

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== Faulty Device Manager Devices =============

Name: Atheros AR3011 Bluetooth 3.0 + HS Adapter
Description: Atheros AR3011 Bluetooth 3.0 + HS Adapter
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Atheros Communications
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/05/2013 09:39:09 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: yxrrkpasuun.exe, verze: 0.0.0.0, časové razítko: 0x523a8006
Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové razítko: 0x5154f82a
Kód výjimky: 0xc0000005
Posun chyby: 0x00059d7d
ID chybujícího procesu: 0x1308
Čas spuštění chybující aplikace: 0xyxrrkpasuun.exe0
Cesta k chybující aplikaci: yxrrkpasuun.exe1
Cesta k chybujícímu modulu: yxrrkpasuun.exe2
ID zprávy: yxrrkpasuun.exe3

Error: (10/05/2013 09:29:28 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: yxrrkpasuun.exe, verze: 0.0.0.0, časové razítko: 0x523a8006
Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové razítko: 0x5154f82a
Kód výjimky: 0xc0000005
Posun chyby: 0x00059d7d
ID chybujícího procesu: 0xb00
Čas spuštění chybující aplikace: 0xyxrrkpasuun.exe0
Cesta k chybující aplikaci: yxrrkpasuun.exe1
Cesta k chybujícímu modulu: yxrrkpasuun.exe2
ID zprávy: yxrrkpasuun.exe3

Error: (10/05/2013 08:54:34 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: yxrrkpasuun.exe, verze: 0.0.0.0, časové razítko: 0x523a8006
Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové razítko: 0x5154f82a
Kód výjimky: 0xc0000005
Posun chyby: 0x00059d7d
ID chybujícího procesu: 0xbc0
Čas spuštění chybující aplikace: 0xyxrrkpasuun.exe0
Cesta k chybující aplikaci: yxrrkpasuun.exe1
Cesta k chybujícímu modulu: yxrrkpasuun.exe2
ID zprávy: yxrrkpasuun.exe3

Error: (10/05/2013 08:53:42 PM) (Source: Application Hang) (User: )
Description: Program 20dollars2surf.exe verze 1.0.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: a74

Čas spuštění: 01cec1fbff36ae3b

Čas ukončení: 8

Cesta k aplikaci: C:\Program Files (x86)\20Dollars2Surf\20dollars2surf.exe

ID hlášení: 67232245-2def-11e3-bb6e-2c768add0320

Error: (10/05/2013 08:20:22 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové razítko: 0x523a8006
Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové razítko: 0x5154f82a
Kód výjimky: 0xc0000005
Posun chyby: 0x00059d7d
ID chybujícího procesu: 0x1158
Čas spuštění chybující aplikace: 0xrczgxvmehld.exe0
Cesta k chybující aplikaci: rczgxvmehld.exe1
Cesta k chybujícímu modulu: rczgxvmehld.exe2
ID zprávy: rczgxvmehld.exe3

Error: (10/05/2013 08:19:17 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové razítko: 0x523a8006
Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové razítko: 0x5154f82a
Kód výjimky: 0xc0000005
Posun chyby: 0x00059d7d
ID chybujícího procesu: 0x6c0
Čas spuštění chybující aplikace: 0xrczgxvmehld.exe0
Cesta k chybující aplikaci: rczgxvmehld.exe1
Cesta k chybujícímu modulu: rczgxvmehld.exe2
ID zprávy: rczgxvmehld.exe3

Error: (10/05/2013 08:17:28 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové razítko: 0x523a8006
Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové razítko: 0x5154f82a
Kód výjimky: 0xc0000005
Posun chyby: 0x00059d7d
ID chybujícího procesu: 0x5c4
Čas spuštění chybující aplikace: 0xrczgxvmehld.exe0
Cesta k chybující aplikaci: rczgxvmehld.exe1
Cesta k chybujícímu modulu: rczgxvmehld.exe2
ID zprávy: rczgxvmehld.exe3

Error: (10/05/2013 08:16:05 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové razítko: 0x523a8006
Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové razítko: 0x5154f82a
Kód výjimky: 0xc0000005
Posun chyby: 0x00059d7d
ID chybujícího procesu: 0x11f0
Čas spuštění chybující aplikace: 0xrczgxvmehld.exe0
Cesta k chybující aplikaci: rczgxvmehld.exe1
Cesta k chybujícímu modulu: rczgxvmehld.exe2
ID zprávy: rczgxvmehld.exe3

Error: (10/05/2013 08:14:52 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové razítko: 0x523a8006
Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové razítko: 0x5154f82a
Kód výjimky: 0xc0000005
Posun chyby: 0x00059d7d
ID chybujícího procesu: 0x10c0
Čas spuštění chybující aplikace: 0xrczgxvmehld.exe0
Cesta k chybující aplikaci: rczgxvmehld.exe1
Cesta k chybujícímu modulu: rczgxvmehld.exe2
ID zprávy: rczgxvmehld.exe3

Error: (10/05/2013 08:13:45 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: rczgxvmehld.exe, verze: 0.0.0.0, časové razítko: 0x523a8006
Název chybujícího modulu: amdocl.dll, verze: 10.0.1124.2, časové razítko: 0x5154f82a
Kód výjimky: 0xc0000005
Posun chyby: 0x00059d7d
ID chybujícího procesu: 0x5fc
Čas spuštění chybující aplikace: 0xrczgxvmehld.exe0
Cesta k chybující aplikaci: rczgxvmehld.exe1
Cesta k chybujícímu modulu: rczgxvmehld.exe2
ID zprávy: rczgxvmehld.exe3


System errors:
=============
Error: (10/06/2013 11:02:35 AM) (Source: Service Control Manager) (User: )
Description: Služba SwitchBoard neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (10/06/2013 11:02:35 AM) (Source: Service Control Manager) (User: )
Description: Při čekání na připojení služby SwitchBoard bylo dosaženo časového limitu (30000 ms).

Error: (10/06/2013 11:02:32 AM) (Source: Service Control Manager) (User: )
Description: Služba PnkBstrA neuspěla při spuštění v důsledku následující chyby:
%%3

Error: (10/06/2013 07:41:13 AM) (Source: WMPNetworkSvc) (User: )
Description: Služba WMPNetworkSvc nebyla spuštěna správně, protože u funkce CoCreateInstance (CLSID_UPnPDeviceFinder) došlo k chybě 0x80004005. Zkontrolujte, zda je spuštěná služba UPnPHost a zda je správně nainstalována součást systému Windows UPnPHost.

Error: (10/06/2013 07:40:46 AM) (Source: Service Control Manager) (User: )
Description: Služba SwitchBoard neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (10/06/2013 07:40:46 AM) (Source: Service Control Manager) (User: )
Description: Při čekání na připojení služby SwitchBoard bylo dosaženo časového limitu (30000 ms).

Error: (10/06/2013 07:40:40 AM) (Source: Service Control Manager) (User: )
Description: Služba PnkBstrA neuspěla při spuštění v důsledku následující chyby:
%%3

Error: (10/05/2013 08:52:53 PM) (Source: WMPNetworkSvc) (User: )
Description: Služba WMPNetworkSvc nebyla spuštěna správně, protože u funkce CoCreateInstance (CLSID_UPnPDeviceFinder) došlo k chybě 0x80004005. Zkontrolujte, zda je spuštěná služba UPnPHost a zda je správně nainstalována součást systému Windows UPnPHost.

Error: (10/05/2013 08:52:25 PM) (Source: Service Control Manager) (User: )
Description: Služba SwitchBoard neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (10/05/2013 08:52:25 PM) (Source: Service Control Manager) (User: )
Description: Při čekání na připojení služby SwitchBoard bylo dosaženo časového limitu (30000 ms).


Microsoft Office Sessions:
=========================
Error: (10/05/2013 09:39:09 PM) (Source: Application Error)(User: )
Description: yxrrkpasuun.exe0.0.0.0523a8006amdocl.dll10.0.1124.25154f82ac000000500059d7d130801cec2028d83a880C:\Users\JAKUB\AppData\Local\Temp\yyaiqqdwxbgww\yxrrkpasuun.exeC:\Windows\system32\amdocl.dllcd0b99af-2df5-11e3-bb6e-2c768add0320

Error: (10/05/2013 09:29:28 PM) (Source: Application Error)(User: )
Description: yxrrkpasuun.exe0.0.0.0523a8006amdocl.dll10.0.1124.25154f82ac000000500059d7db0001cec20134cf437dC:\Users\JAKUB\AppData\Local\Temp\yyaiqqdwxbgww\yxrrkpasuun.exeC:\Windows\system32\amdocl.dll72dbb2ad-2df4-11e3-bb6e-2c768add0320

Error: (10/05/2013 08:54:34 PM) (Source: Application Error)(User: )
Description: yxrrkpasuun.exe0.0.0.0523a8006amdocl.dll10.0.1124.25154f82ac000000500059d7dbc001cec1fc5454df72C:\Users\JAKUB\AppData\Local\Temp\yyaiqqdwxbgww\yxrrkpasuun.exeC:\Windows\system32\amdocl.dll92d2616e-2def-11e3-bb6e-2c768add0320

Error: (10/05/2013 08:53:42 PM) (Source: Application Hang)(User: )
Description: 20dollars2surf.exe1.0.0.0a7401cec1fbff36ae3b8C:\Program Files (x86)\20Dollars2Surf\20dollars2surf.exe67232245-2def-11e3-bb6e-2c768add0320

Error: (10/05/2013 08:20:22 PM) (Source: Application Error)(User: )
Description: rczgxvmehld.exe0.0.0.0523a8006amdocl.dll10.0.1124.25154f82ac000000500059d7d115801cec1f78ddb50e8C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exeC:\Windows\system32\amdocl.dllcbc848d8-2dea-11e3-a323-2c768add0320

Error: (10/05/2013 08:19:17 PM) (Source: Application Error)(User: )
Description: rczgxvmehld.exe0.0.0.0523a8006amdocl.dll10.0.1124.25154f82ac000000500059d7d6c001cec1f7671402f4C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exeC:\Windows\system32\amdocl.dlla5040830-2dea-11e3-a323-2c768add0320

Error: (10/05/2013 08:17:28 PM) (Source: Application Error)(User: )
Description: rczgxvmehld.exe0.0.0.0523a8006amdocl.dll10.0.1124.25154f82ac000000500059d7d5c401cec1f725e1e9e8C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exeC:\Windows\system32\amdocl.dll63e1be36-2dea-11e3-a323-2c768add0320

Error: (10/05/2013 08:16:05 PM) (Source: Application Error)(User: )
Description: rczgxvmehld.exe0.0.0.0523a8006amdocl.dll10.0.1124.25154f82ac000000500059d7d11f001cec1f6f4ae11bcC:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exeC:\Windows\system32\amdocl.dll32ada792-2dea-11e3-a323-2c768add0320

Error: (10/05/2013 08:14:52 PM) (Source: Application Error)(User: )
Description: rczgxvmehld.exe0.0.0.0523a8006amdocl.dll10.0.1124.25154f82ac000000500059d7d10c001cec1f6c8c530a9C:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exeC:\Windows\system32\amdocl.dll06ecffc3-2dea-11e3-a323-2c768add0320

Error: (10/05/2013 08:13:45 PM) (Source: Application Error)(User: )
Description: rczgxvmehld.exe0.0.0.0523a8006amdocl.dll10.0.1124.25154f82ac000000500059d7d5fc01cec1f6a15a67eeC:\Users\JAKUB\AppData\Local\Temp\fwckrkraedfpp\rczgxvmehld.exeC:\Windows\system32\amdocl.dlldf5a634d-2de9-11e3-a323-2c768add0320


CodeIntegrity Errors:
===================================
Date: 2013-10-03 14:40:23.440
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-03 14:40:23.362
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-03 14:40:23.284
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-03 14:40:23.206
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-03 14:30:02.169
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-03 14:30:02.091
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-03 14:30:02.013
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-03 14:30:01.935
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-02 18:01:30.708
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-02 18:01:30.626
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 51%
Total physical RAM: 3834.9 MB
Available physical RAM: 1848.98 MB
Total Pagefile: 9584.09 MB
Available Pagefile: 7163.95 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:449.46 GB) (Free:146.46 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:16.01 GB) (Free:1.95 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (FIFA 14) (CDROM) (Total:7.47 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 466 GB) (Disk ID: 7BAB854E)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=449 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=16 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)

==================== End Of Log ============================

[jaro3]

Spusť SystemLook

Poklepej na stažený SystemLook , zkopíruj do hlavního text. okna tento následující text:

Kód: Vybrat vše

:filefind
yxrrkpasuun.exe.*
0xyxrrkpasuun.exe.*
rczgxvmehld.exe.*
0xrczgxvmehld.exe.*


Klikni na Look ke startu skenu. Když program skončí objeví se v poznámkovém bloku zpráva skenu. Zkopíruj sem celý jeho obsah. Log se také nachází na ploše pod názvem SystemLook.txt.

Spusť znovu FRST

Zadej následující příkaz do textového pole "Search "(Hledat)".

Kód: Vybrat vše

explorer.exe

Klikni na tlačítko "Search" .

Po skončení práce se vytvoří log (Search.txt) ten sem celý vlož.

potom musíme ještzě smazat:
C:\Windows\SysWOW64\覀량ᵌ

[MrAnnix99]

SystemLook 30.07.11 by jpshortstuff
Log created at 15:35 on 07/10/2013 by JAKUB
Administrator - Elevation successful

========== filefind ==========

Searching for "yxrrkpasuun.exe.*"
C:\Users\JAKUB\AppData\Local\CrashDumps\yxrrkpasuun.exe.2816.dmp --a---- 1879130 bytes [19:29 05/10/2013] [19:29 05/10/2013] 6B59BA17C0558CAD67AED5DD2BE474AD
C:\Users\JAKUB\AppData\Local\CrashDumps\yxrrkpasuun.exe.4872.dmp --a---- 1879127 bytes [19:39 05/10/2013] [19:39 05/10/2013] 5EC31F238257FC67DF0241709E16C046

Searching for "0xyxrrkpasuun.exe.*"
No files found.

Searching for "rczgxvmehld.exe.*"
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.1476.dmp --a---- 1879130 bytes [18:18 05/10/2013] [18:18 05/10/2013] 37056A8822FEE65F28074327680B128E
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.1532.dmp --a---- 1879130 bytes [18:13 05/10/2013] [18:13 05/10/2013] E12DBAAC611813BDE5CE0D24F6DAC9E5
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.1728.dmp --a---- 1879130 bytes [18:19 05/10/2013] [18:19 05/10/2013] 4C3879376FF8FDBDCFBEFB865E0FD756
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.4288.dmp --a---- 1879127 bytes [18:15 05/10/2013] [18:15 05/10/2013] 6C23FB2885A6AF0ED2F345447CE8D658
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.4440.dmp --a---- 1879130 bytes [18:20 05/10/2013] [18:20 05/10/2013] FA62D63BF8F7D688F2CD4DD642366948
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.4592.dmp --a---- 1879130 bytes [18:16 05/10/2013] [18:16 05/10/2013] 09A69D604FE49048ADB0DCD79AEAE13B
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.732.dmp --a---- 1879130 bytes [18:12 05/10/2013] [18:12 05/10/2013] 1FF10EAD82E496DEEFFF6FC2E636301E

Searching for "0xrczgxvmehld.exe.*"
No files found.

-= EOF =-

[MrAnnix99]

Farbar Recovery Scan Tool (x64) Version: 02-10-2013
Ran by JAKUB at 2013-10-07 16:05:05
Running from C:\Users\JAKUB\Downloads
Boot Mode: Normal

================== Search: "explorer.exe" ===================

C:\Windows\explorer.exe
[2011-08-03 20:51] - [2011-08-03 20:51] - 2871808 ____A (Microsoft Corporation) 332FEAB1435662FC6C672E25BEB37BE3

C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011-08-03 20:51] - [2011-08-03 20:51] - 2616320 ____A (Microsoft Corporation) 0FB9C74046656D1579A64660AD67B746

C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2011-08-03 20:51] - [2011-08-03 20:51] - 2616320 ____A (Microsoft Corporation) 8B88EBBB05A0E56B7DCC708498C02B3E

C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2010-11-21 05:24] - [2010-11-21 05:24] - 2616320 ____A (Microsoft Corporation) 40D777B7A95E00593EB1568C68514493

C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2011-08-03 20:51] - [2011-08-03 20:51] - 2871808 ____A (Microsoft Corporation) 3B69712041F3D63605529BD66DC00C48

C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011-08-03 20:51] - [2011-08-03 20:51] - 2871808 ____A (Microsoft Corporation) 332FEAB1435662FC6C672E25BEB37BE3

C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2010-11-21 05:24] - [2010-11-21 05:24] - 2872320 ____A (Microsoft Corporation) AC4C51EB24AA95B77F705AB159189E24

C:\Windows\SysWOW64\explorer.exe
[2011-08-03 20:51] - [2011-08-03 20:51] - 2616320 ____A (Microsoft Corporation) 8B88EBBB05A0E56B7DCC708498C02B3E

C:\Windows\erdnt\cache86\explorer.exe
[2013-09-29 13:05] - [2011-08-03 20:51] - 2871808 ____A (Microsoft Corporation) 332FEAB1435662FC6C672E25BEB37BE3

====== End Of Search ======

Jak ho smazat?

[jaro3]

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job /s
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Windows\SysNative\drivers\*.tmp
C:\Windows\SysWow64\drivers\*.tmp
C:\Program Files (x86)\*.tmp
C:\Windows\SysWow64\*.tmp
C:\Windows\SysNative\*.tmp
C:\Windows\SysWOW64\覀량ᵌ
C:\Users\JAKUB\AppData\Local\CrashDumps\yxrrkpasuun.exe.2816.dmp
C:\Users\JAKUB\AppData\Local\CrashDumps\yxrrkpasuun.exe.4872.dmp
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.1476.dmp
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.1532.dmp
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.1728.dmp
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.4288.dmp
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.4440.dmp
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.4592.dmp
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.732.dmp

:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

[MrAnnix99]

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
c:\windows\Tasks\SlimDrivers Startup.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
File\Folder C:\Windows\SysNative\drivers\*.tmp not found.
File\Folder C:\Windows\SysWow64\drivers\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
File\Folder C:\Windows\SysWow64\*.tmp not found.
File\Folder C:\Windows\SysNative\*.tmp not found.
File\Folder C:\Windows\SysWOW64\覀량ᵌ not found.
C:\Users\JAKUB\AppData\Local\CrashDumps\yxrrkpasuun.exe.2816.dmp moved successfully.
C:\Users\JAKUB\AppData\Local\CrashDumps\yxrrkpasuun.exe.4872.dmp moved successfully.
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.1476.dmp moved successfully.
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.1532.dmp moved successfully.
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.1728.dmp moved successfully.
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.4288.dmp moved successfully.
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.4440.dmp moved successfully.
C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.4592.dmp moved successfully.
File\Folder C:\Users\JAKUB\AppData\Local\CrashDumps\rczgxvmehld.exe.732.dmp not found.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: JAKUB
->Temp folder emptied: 140119 bytes
->Temporary Internet Files folder emptied: 269233 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 351801350 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 24010 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 336,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 10082013_162156

Files\Folders moved on Reboot...
C:\Users\JAKUB\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Users\JAKUB\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...