Takže posílám foto když zapnu MBAM.
A po dokončení skenu.
Kontrola logu+problém se spuštěním Vyřešeno
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu+problém se spuštěním
. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu+problém se spuštěním
Tak já nevím, co dělám špatně.
Buď jsem fakt lempl a nerozumím tomu, proto jsem udělala menší záznam.
ALE když jsem si hrozby dala do karantény, tak jsem zkusila ještě jeden sken a na konci se mi logicky ukázalo 0 detekovaných objektů JENŽE se mi záhadně ukázal log.
Zkrátka když se mi detekují hrozby, tak mi log nejde vytvořit a když tam je 0 hrozeb, tak mi log jde udělat.
Tedy log po té, co jsou hrozby v karanténě:
Malwarebytes Anti-Malware
http://www.malwarebytes.org
Datum skenování: 19.8.2014
Čas skenování: 15:18:22
Protokol: log2.txt
Správce: Ano
Verze: 2.00.2.1012
Databáze malwaru: v2014.08.19.05
Databáze rootkitů: v2014.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Self-protection: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: LenÄ?a
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 387070
Uplynulý čas: 20 min, 54 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristics: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(No malicious items detected)
Moduly: 0
(No malicious items detected)
Klíče registru: 0
(No malicious items detected)
Hodnoty registru: 0
(No malicious items detected)
Data registru: 0
(No malicious items detected)
Složky: 0
(No malicious items detected)
Soubory: 0
(No malicious items detected)
Fyzické sektory: 0
(No malicious items detected)
(end)
A tady záznam ještě s detekcí:
http://uloz.to/xAf1up2G/ukazka5-mp4 Prosím o zhlédnutí
Buď jsem fakt lempl a nerozumím tomu, proto jsem udělala menší záznam.
ALE když jsem si hrozby dala do karantény, tak jsem zkusila ještě jeden sken a na konci se mi logicky ukázalo 0 detekovaných objektů JENŽE se mi záhadně ukázal log.
Zkrátka když se mi detekují hrozby, tak mi log nejde vytvořit a když tam je 0 hrozeb, tak mi log jde udělat.
Tedy log po té, co jsou hrozby v karanténě:
Malwarebytes Anti-Malware
http://www.malwarebytes.org
Datum skenování: 19.8.2014
Čas skenování: 15:18:22
Protokol: log2.txt
Správce: Ano
Verze: 2.00.2.1012
Databáze malwaru: v2014.08.19.05
Databáze rootkitů: v2014.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Self-protection: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: LenÄ?a
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 387070
Uplynulý čas: 20 min, 54 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristics: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(No malicious items detected)
Moduly: 0
(No malicious items detected)
Klíče registru: 0
(No malicious items detected)
Hodnoty registru: 0
(No malicious items detected)
Data registru: 0
(No malicious items detected)
Složky: 0
(No malicious items detected)
Soubory: 0
(No malicious items detected)
Fyzické sektory: 0
(No malicious items detected)
(end)
A tady záznam ještě s detekcí:
http://uloz.to/xAf1up2G/ukazka5-mp4 Prosím o zhlédnutí
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu+problém se spuštěním
Stáhni Kaspersky VRT
na svojí plochu.
Spusť program Kaspersky VRT, .Program se nainstaluje.
Potvrď licenci a klikni na „Start“ . Pokud program nabídne aktualizaci , klikni dole na na „Download Now“.
- Klikni na ozubené kolečko v pravém horním rohu. V okně vyber kromě již zatržených , svojí jednotku disku , pokud jich máš víc , můžeš zatrhnout všechny.
- zvol „Automatic Scan“ nahoře vlevo. a stiskni tlačítko „Start Scanning“
- Program začne skenovat zatržené jednotky
Zaškrtnuté :
Hidden startup objects
System Memory
Disk boot sectors
Počítač
Místní disk C
Nezašrkrtnuté:
Dokumenty
My email
Místní disk D
Jednotka DVD-Rom (E)
Jednotka BD-ROM (G)
Disketová jednotka
A jiné , např. Flash disky , které máš připojeny.
- povol programu Virus Removal Tool odstranit všechny nalezené infekce
- jakmile sken skončí ,zvol záložku „Report“ , vpravo nahoře (vedle ozubeného kolečka)
- klikni na „Detected Threads“ a klikni na obrázek diskety („Save“)
- ulož do počítače zprávu a vložit ji sem do příspěvku
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
na svojí plochu.
Spusť program Kaspersky VRT, .Program se nainstaluje.
Potvrď licenci a klikni na „Start“ . Pokud program nabídne aktualizaci , klikni dole na na „Download Now“.
- Klikni na ozubené kolečko v pravém horním rohu. V okně vyber kromě již zatržených , svojí jednotku disku , pokud jich máš víc , můžeš zatrhnout všechny.
- zvol „Automatic Scan“ nahoře vlevo. a stiskni tlačítko „Start Scanning“
- Program začne skenovat zatržené jednotky
Zaškrtnuté :
Hidden startup objects
System Memory
Disk boot sectors
Počítač
Místní disk C
Nezašrkrtnuté:
Dokumenty
My email
Místní disk D
Jednotka DVD-Rom (E)
Jednotka BD-ROM (G)
Disketová jednotka
A jiné , např. Flash disky , které máš připojeny.
- povol programu Virus Removal Tool odstranit všechny nalezené infekce
- jakmile sken skončí ,zvol záložku „Report“ , vpravo nahoře (vedle ozubeného kolečka)
- klikni na „Detected Threads“ a klikni na obrázek diskety („Save“)
- ulož do počítače zprávu a vložit ji sem do příspěvku
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
- akiller
- Level 3
- Příspěvky: 558
- Registrován: listopad 10
- Bydliště: Nothingtown
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu+problém se spuštěním
Možná jsem OT, ale log z MBAM se nachází zde: na hlavní obrazovce Historie > vlevo Záznamy aplikace > Záznam skenu > označ zvolený záznam > klikni na Zobrazit > Exportovat > Textový soubor.
Keybord not present. Press Enter to continue
Re: Kontrola logu+problém se spuštěním
Omlouvám se za pozdní odpověď, Kaspersky mi celý den skenoval pc, ale po skončení skenu jsem byla udivena, jelikož mi nic nedetekoval takže mi nešlo ani kliknout na "Save".
Logy FRST:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-08-2014 01
Ran by Lenča (administrator) on ACER-PC on 21-08-2014 01:35:01
Running from C:\Users\Lenča\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(AuthenTec, Inc.) C:\Program Files (x86)\Fingerprint Sensor\AtService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Egis Technology Inc.) C:\Program Files (x86)\Acer Bio Protection\CompPtcVUI.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Windows\PLFSetI.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
() C:\Users\Lenča\Desktop\Kaspersky_Virus_Removal_Tool_11.0.1.1245_[26.05.2014].exe
() C:\Users\LENA~1\AppData\Local\Temp\RarSFX0\1618266.exe
(Kaspersky Lab) C:\Users\LENA~1\AppData\Local\Temp\9911630\1618266.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation)
HKLM\...\Run: [mwlDaemon] => C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-05-27] (Egis Technology Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8060960 2009-08-06] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1842472 2009-09-18] (Synaptics Incorporated)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [206208 2010-06-10] ()
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [818720 2010-02-26] (Acer Incorporated)
HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [265984 2010-06-29] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-01-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1094736 2009-11-02] (Dritek System Inc.)
HKLM-x32\...\Run: [ArcadeDeluxeAgent] => C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [419112 2009-10-29] (CyberLink Corp.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5187088 2014-08-11] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\RunOnce: [GrpConv] => grpconv -o
HKU\S-1-5-21-3544951325-964006069-150248531-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-3544951325-964006069-150248531-1003\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_14_0_0_145_ActiveX.exe [851632 2014-07-10] (Adobe Systems Incorporated)
HKU\S-1-5-21-3544951325-964006069-150248531-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Lenča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_26062813.lnk
ShortcutTarget: _uninst_26062813.lnk -> C:\Users\Lenča\AppData\Local\Temp\_uninst_26062813.bat ()
ShellIconOverlayIdentifiers: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x64\psdprotect.dll (Egis Technology Inc.)
ShellIconOverlayIdentifiers-x32: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dll (Egis Technology Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKCU - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
Chrome:
=======
CHR DefaultSearchKeyword: google
CHR DefaultSearchURL: http://www.google.com/search?q={searchTerms}
CHR DefaultSuggestURL:
CHR Extension: (Docs) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-10]
CHR Extension: (Disk Google) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-16]
CHR Extension: (YouTube) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-16]
CHR Extension: (Vyhledávání Google) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-16]
CHR Extension: (AVG Do Not Track) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\epojjbofkhffmihobdncmbhdocjljhpi [2013-12-15]
CHR Extension: (Peněženka Google) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-15]
CHR Extension: (Gmail) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-16]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 ATService; C:\Program Files (x86)\Fingerprint Sensor\AtService.exe [1815800 2009-09-21] (AuthenTec, Inc.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3244048 2014-08-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328 2014-08-11] (AVG Technologies CZ, s.r.o.)
S3 IGBASVC; c:\Program Files (x86)\Acer Bio Protection\BASVC.exe [3449856 2009-09-26] (Egis Technology Inc.) [File not signed]
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-05-27] (Egis Technology Inc.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R0 26062813; C:\Windows\System32\DRIVERS\26062813.sys [460888 2014-05-26] (Kaspersky Lab ZAO)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-06-30] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [242968 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [328984 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [269080 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [39768 2013-02-18] (AVG Technologies)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-20] (Malwarebytes Corporation)
S3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [6144 2012-12-19] ()
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 iSafeKrnl; \??\C:\Program Files (x86)\iSafe\iSafeKrnl.sys [X]
S1 iSafeNetFilter; \??\C:\Program Files (x86)\iSafe\iSafeNetFilter.sys [X]
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-21 01:35 - 2014-08-21 01:36 - 00016268 _____ () C:\Users\Lenča\Desktop\FRST.txt
2014-08-21 01:34 - 2014-08-21 01:35 - 00000000 ____D () C:\FRST
2014-08-21 01:34 - 2014-08-21 01:34 - 02101760 _____ (Farbar) C:\Users\Lenča\Desktop\FRST64.exe
2014-08-20 14:16 - 2014-08-20 20:49 - 2463431517 _____ () C:\Users\Lenča\Desktop\The.X.Files.Fight.the.Future.1998.m-HD.720p.x264~RKO-CZ.mkv
2014-08-20 12:42 - 2014-08-20 13:08 - 366962688 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E15.Pondeli.avi
2014-08-20 10:07 - 2014-05-26 08:43 - 00460888 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\26062813.sys
2014-08-19 20:07 - 2014-08-19 20:07 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-19 20:04 - 2014-08-19 20:06 - 138427464 _____ () C:\Users\Lenča\Desktop\Kaspersky_Virus_Removal_Tool_11.0.1.1245_[26.05.2014].exe
2014-08-19 19:46 - 2014-08-20 18:45 - 00000344 _____ () C:\Windows\Tasks\Health-Check-deep.job
2014-08-19 19:46 - 2014-08-19 19:46 - 00002920 _____ () C:\Windows\System32\Tasks\Health-Check-deep
2014-08-19 19:46 - 2014-08-19 19:46 - 00000000 ____D () C:\Users\Lenča\AppData\Local\Innovative Solutions
2014-08-19 19:18 - 2014-08-19 19:18 - 00000000 ____D () C:\Users\ACER\AppData\Local\Avg2014
2014-08-19 14:56 - 2014-08-19 14:56 - 01370259 _____ () C:\Users\Lenča\Desktop\ukazka5.mp4
2014-08-19 14:01 - 2014-08-20 20:55 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-19 14:01 - 2014-08-19 20:34 - 00001150 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-19 14:01 - 2014-08-19 14:59 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-19 14:01 - 2014-08-19 14:01 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Lenča\Desktop\mbam-setup-2.0.2.1012.exe
2014-08-19 14:01 - 2014-08-19 14:01 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-19 14:01 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-19 14:01 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-19 14:01 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-08-19 13:54 - 2014-08-19 13:54 - 00014040 _____ () C:\Windows\PFRO.log
2014-08-19 13:51 - 2014-08-19 13:51 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Lenča\Desktop\mbam-clean-2.1.1.1001.exe
2014-08-19 01:14 - 2014-08-19 01:27 - 00000000 __SHD () C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2014-08-17 19:48 - 2014-08-17 19:48 - 00081303 _____ () C:\Users\Lenča\Desktop\uk4.wma
2014-08-17 19:44 - 2014-08-17 19:44 - 00040893 _____ () C:\Users\Lenča\Desktop\uk3.wma
2014-08-17 19:38 - 2014-08-19 13:38 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2014-08-17 14:33 - 2014-08-17 14:33 - 00000000 ____D () C:\ProgramData\VS
2014-08-17 13:27 - 2014-08-20 18:32 - 00000504 _____ () C:\Windows\setupact.log
2014-08-17 13:27 - 2014-08-17 13:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-17 02:45 - 2014-08-17 03:07 - 366804992 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E08.Destovy-kral.avi
2014-08-16 13:54 - 2014-08-16 13:54 - 00388608 _____ (Trend Micro Inc.) C:\Users\Lenča\Desktop\HiJackThis.exe
2014-08-16 13:36 - 2014-08-16 13:36 - 00009167 _____ () C:\Users\Lenča\Desktop\hijackthis3
2014-08-16 13:07 - 2014-08-16 13:07 - 00003118 _____ () C:\Windows\System32\Tasks\{F935550C-6E8C-49E1-BB10-B33B0D0506D3}
2014-08-16 12:25 - 2014-08-19 20:01 - 00000000 ____D () C:\Users\Lenča\Desktop\backups
2014-08-15 20:51 - 2014-08-15 20:51 - 00000512 _____ () C:\Users\Lenča\Desktop\MBR.dat
2014-08-15 10:29 - 2014-08-17 12:43 - 00000000 ____D () C:\Windows\erdnt
2014-08-15 01:03 - 2014-08-15 01:03 - 00086160 _____ () C:\Users\Default\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-15 01:03 - 2014-08-15 01:03 - 00086160 _____ () C:\Users\Default User\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-15 01:03 - 2014-08-15 01:03 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2010
2014-08-15 01:03 - 2014-08-15 01:03 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2010
2014-08-14 14:35 - 2014-08-14 19:59 - 00030312 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-08-14 14:35 - 2014-08-14 14:35 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-08-14 14:34 - 2014-08-14 14:34 - 05392984 _____ () C:\Users\Lenča\Desktop\RogueKillerX64.exe
2014-08-14 14:31 - 2014-08-14 14:31 - 00007098 _____ () C:\Users\Lenča\Desktop\JRT.txt
2014-08-14 14:23 - 2014-08-14 14:23 - 00000000 ____D () C:\Windows\ERUNT
2014-08-14 14:22 - 2014-08-14 14:22 - 01016261 _____ (Thisisu) C:\Users\Lenča\Desktop\JRT.exe
2014-08-14 14:12 - 2014-08-14 14:13 - 00001157 _____ () C:\AdwCleaner[S12].txt
2014-08-14 02:00 - 2014-08-16 20:39 - 00000000 ____D () C:\Users\Lenča\AppData\Local\Adobe
2014-08-13 23:47 - 2014-08-13 23:47 - 00000796 _____ () C:\Users\Lenča\Desktop\adwcleaner.txt
2014-08-13 23:45 - 2014-08-13 23:45 - 00001096 _____ () C:\AdwCleaner[R9].txt
2014-08-13 23:31 - 2014-08-13 23:32 - 00448512 _____ (OldTimer Tools) C:\Users\Lenča\Desktop\TFC.exe
2014-08-13 23:31 - 2014-08-13 23:31 - 00000000 ____D () C:\Users\Lenča\AppData\Local\ATI
2014-08-13 23:27 - 2014-08-13 23:27 - 00050688 _____ (Atribune.org) C:\Users\Lenča\Desktop\ATF-Cleaner.exe
2014-08-13 03:37 - 2014-08-13 03:37 - 00000000 ____D () C:\Program Files (x86)\PROnetworks
2014-08-13 02:18 - 2014-08-13 02:18 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-08-13 02:18 - 2014-08-13 02:18 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-08-13 02:18 - 2014-08-13 02:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-08-13 02:17 - 2014-08-14 01:45 - 00000000 ____D () C:\Users\Lenča\Documents\Visual Studio 2010
2014-08-13 02:16 - 2014-08-19 13:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
2014-08-13 02:13 - 2014-08-13 02:14 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 10.0
2014-08-13 02:11 - 2014-08-19 13:39 - 00000000 ____D () C:\Windows\symbols
2014-08-13 02:11 - 2014-08-13 02:11 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.0
2014-08-13 02:11 - 2014-08-13 02:11 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer
2014-08-13 02:11 - 2014-08-13 02:11 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs
2014-08-13 02:01 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-13 02:01 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-13 02:01 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-13 02:01 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-13 02:01 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-13 02:01 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-13 02:00 - 2014-08-13 02:00 - 00001487 _____ () C:\Users\Public\Desktop\The Sims 4 Vytvořit Simíka – demo.lnk
2014-08-13 02:00 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-13 02:00 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-13 01:33 - 2014-08-14 02:15 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{A8DAF5C9-1760-4F98-82E8-FC19F6865599}
2014-08-13 01:33 - 2014-08-13 01:53 - 00000000 ____D () C:\Program Files (x86)\NeoSmart Technologies
2014-08-13 01:18 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-13 01:18 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-13 01:17 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-13 01:17 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-13 01:17 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-13 01:17 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-13 01:17 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-13 01:17 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-13 01:17 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-13 01:17 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-13 01:17 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-13 01:16 - 2014-07-16 05:25 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-13 01:16 - 2014-07-16 04:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-13 01:16 - 2014-07-16 04:12 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-13 01:16 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-13 01:16 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-13 01:16 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-13 01:16 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-13 01:16 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-13 01:16 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-13 01:16 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-13 01:16 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-13 01:16 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-13 01:16 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-13 01:16 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-13 01:16 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-13 01:16 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-13 01:15 - 2014-08-01 01:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-13 01:15 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-13 01:15 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-13 01:15 - 2014-07-25 16:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-13 01:15 - 2014-07-25 16:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 01:15 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-13 01:15 - 2014-07-25 15:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-13 01:15 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-13 01:15 - 2014-07-25 15:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-13 01:15 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-13 01:15 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-13 01:15 - 2014-07-25 15:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-13 01:15 - 2014-07-25 15:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-13 01:15 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-13 01:15 - 2014-07-25 15:03 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-13 01:15 - 2014-07-25 15:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-13 01:15 - 2014-07-25 15:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-13 01:15 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-13 01:15 - 2014-07-25 14:47 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 01:15 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-13 01:15 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-13 01:15 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-13 01:15 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-13 01:15 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-13 01:15 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-13 01:15 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 01:15 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-13 01:15 - 2014-07-25 14:19 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-13 01:15 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-13 01:15 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-13 01:15 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-13 01:15 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-13 01:15 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-13 01:15 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-13 01:15 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-13 01:15 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-13 01:15 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-13 01:15 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-13 01:15 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-13 01:15 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-13 01:15 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-13 01:15 - 2014-07-25 13:39 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-13 01:15 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-13 01:15 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-13 01:15 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-13 01:15 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-13 01:15 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-13 01:15 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-13 01:15 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-13 01:15 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-13 01:15 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-13 01:15 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-13 01:15 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-13 01:15 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-13 01:15 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-13 01:15 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-13 01:14 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-13 01:14 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-13 01:13 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-13 01:13 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-12 20:25 - 2014-08-13 01:59 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-12 17:25 - 2014-08-12 17:46 - 367001600 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E04.Zeme-Snu_1.avi
2014-08-12 13:38 - 2014-08-12 14:01 - 366907392 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E05.Zeme-Snu_2 (1).avi
2014-08-10 21:10 - 2014-08-10 21:10 - 00000000 ____D () C:\Users\Lenča\AppData\Local\PunkBuster
2014-08-10 21:05 - 2014-08-11 14:24 - 00000000 ____D () C:\Users\Lenča\Documents\Battlefield Play4Free
2014-08-10 21:04 - 2014-08-10 21:04 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EA Games
2014-08-07 21:40 - 2014-08-07 21:40 - 00001157 _____ () C:\AdwCleaner[R10].txt
2014-08-05 18:12 - 2014-08-05 18:12 - 00000704 _____ () C:\Users\Lenča\Desktop\Chov křečků « Rubrika Svět ZVÍŘAT.website
2014-07-28 06:28 - 2014-08-13 01:30 - 00000000 ____D () C:\Windows\pss
2014-07-27 22:01 - 2014-07-27 22:01 - 00001160 _____ () C:\Users\Public\Desktop\4Story.lnk
2014-07-27 22:00 - 2014-08-13 10:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4Story_CZ
2014-07-27 21:57 - 2014-08-13 10:41 - 00000000 ____D () C:\Program Files (x86)\Gameforge4D
2014-07-27 19:01 - 2014-08-15 11:02 - 00000000 ____D () C:\Users\Len�a
2014-07-25 20:21 - 2014-07-25 20:21 - 00000406 _____ () C:\Users\Lenča\AppData\Local\LMIR0002.tmp.bat
2014-07-25 20:21 - 2014-07-25 20:21 - 00000331 _____ () C:\Users\Lenča\AppData\Local\LMIR0002.tmp_r.bat
2014-07-24 14:42 - 2014-07-24 14:42 - 00001148 _____ () C:\Users\Lenča\Desktop\FiveStories.lnk
2014-07-24 14:36 - 2014-07-24 14:36 - 00000000 ____D () C:\Program Files (x86)\Five
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-21 01:36 - 2014-08-21 01:35 - 00016268 _____ () C:\Users\Lenča\Desktop\FRST.txt
2014-08-21 01:36 - 2011-03-08 00:35 - 01886792 _____ () C:\Windows\WindowsUpdate.log
2014-08-21 01:35 - 2014-08-21 01:34 - 00000000 ____D () C:\FRST
2014-08-21 01:34 - 2014-08-21 01:34 - 02101760 _____ (Farbar) C:\Users\Lenča\Desktop\FRST64.exe
2014-08-21 01:32 - 2013-02-24 04:54 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-20 23:47 - 2012-06-23 22:11 - 00000000 ____D () C:\ProgramData\MFAData
2014-08-20 23:31 - 2012-02-18 19:28 - 00000000 ____D () C:\Users\Lenča\AppData\Local\CrashDumps
2014-08-20 20:55 - 2014-08-19 14:01 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-20 20:49 - 2014-08-20 14:16 - 2463431517 _____ () C:\Users\Lenča\Desktop\The.X.Files.Fight.the.Future.1998.m-HD.720p.x264~RKO-CZ.mkv
2014-08-20 19:02 - 2013-09-21 17:40 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\TS3Client
2014-08-20 18:45 - 2014-08-19 19:46 - 00000344 _____ () C:\Windows\Tasks\Health-Check-deep.job
2014-08-20 18:32 - 2014-08-17 13:27 - 00000504 _____ () C:\Windows\setupact.log
2014-08-20 13:08 - 2014-08-20 12:42 - 366962688 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E15.Pondeli.avi
2014-08-20 12:10 - 2012-02-16 19:18 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\Skype
2014-08-19 20:34 - 2014-08-19 14:01 - 00001150 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-19 20:07 - 2014-08-19 20:07 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-19 20:06 - 2014-08-19 20:04 - 138427464 _____ () C:\Users\Lenča\Desktop\Kaspersky_Virus_Removal_Tool_11.0.1.1245_[26.05.2014].exe
2014-08-19 20:01 - 2014-08-16 12:25 - 00000000 ____D () C:\Users\Lenča\Desktop\backups
2014-08-19 19:46 - 2014-08-19 19:46 - 00002920 _____ () C:\Windows\System32\Tasks\Health-Check-deep
2014-08-19 19:46 - 2014-08-19 19:46 - 00000000 ____D () C:\Users\Lenča\AppData\Local\Innovative Solutions
2014-08-19 19:31 - 2009-07-14 06:45 - 00025840 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-19 19:31 - 2009-07-14 06:45 - 00025840 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-19 19:29 - 2009-07-14 06:45 - 04906656 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-19 19:25 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-19 19:18 - 2014-08-19 19:18 - 00000000 ____D () C:\Users\ACER\AppData\Local\Avg2014
2014-08-19 14:59 - 2014-08-19 14:01 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-19 14:56 - 2014-08-19 14:56 - 01370259 _____ () C:\Users\Lenča\Desktop\ukazka5.mp4
2014-08-19 14:01 - 2014-08-19 14:01 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Lenča\Desktop\mbam-setup-2.0.2.1012.exe
2014-08-19 14:01 - 2014-08-19 14:01 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-19 13:54 - 2014-08-19 13:54 - 00014040 _____ () C:\Windows\PFRO.log
2014-08-19 13:51 - 2014-08-19 13:51 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Lenča\Desktop\mbam-clean-2.1.1.1001.exe
2014-08-19 13:44 - 2012-02-16 19:17 - 00000000 ____D () C:\Users\Lenča
2014-08-19 13:39 - 2014-08-13 02:11 - 00000000 ____D () C:\Windows\symbols
2014-08-19 13:39 - 2011-06-14 13:38 - 00000000 ____D () C:\Users\ACER
2014-08-19 13:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-08-19 13:38 - 2014-08-17 19:38 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2014-08-19 13:38 - 2014-08-13 02:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
2014-08-19 13:38 - 2012-12-08 17:43 - 00000000 __SHD () C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2014-08-19 13:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-08-19 13:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-08-19 01:27 - 2014-08-19 01:14 - 00000000 __SHD () C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2014-08-19 01:15 - 2013-03-09 15:27 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\TuneUp Software
2014-08-17 19:48 - 2014-08-17 19:48 - 00081303 _____ () C:\Users\Lenča\Desktop\uk4.wma
2014-08-17 19:44 - 2014-08-17 19:44 - 00040893 _____ () C:\Users\Lenča\Desktop\uk3.wma
2014-08-17 14:33 - 2014-08-17 14:33 - 00000000 ____D () C:\ProgramData\VS
2014-08-17 13:27 - 2014-08-17 13:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-17 13:21 - 2011-10-06 21:10 - 00000000 ____D () C:\Windows\Minidump
2014-08-17 12:43 - 2014-08-15 10:29 - 00000000 ____D () C:\Windows\erdnt
2014-08-17 03:07 - 2014-08-17 02:45 - 366804992 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E08.Destovy-kral.avi
2014-08-16 21:09 - 2011-12-23 12:33 - 00000000 ____D () C:\ProgramData\Origin
2014-08-16 21:08 - 2012-11-04 19:45 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-08-16 20:39 - 2014-08-14 02:00 - 00000000 ____D () C:\Users\Lenča\AppData\Local\Adobe
2014-08-16 17:44 - 2011-03-08 01:24 - 00657842 _____ () C:\Windows\system32\perfh005.dat
2014-08-16 17:44 - 2011-03-08 01:24 - 00138112 _____ () C:\Windows\system32\perfc005.dat
2014-08-16 17:44 - 2009-07-14 07:13 - 01586178 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-16 13:54 - 2014-08-16 13:54 - 00388608 _____ (Trend Micro Inc.) C:\Users\Lenča\Desktop\HiJackThis.exe
2014-08-16 13:36 - 2014-08-16 13:36 - 00009167 _____ () C:\Users\Lenča\Desktop\hijackthis3
2014-08-16 13:26 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2014-08-16 13:07 - 2014-08-16 13:07 - 00003118 _____ () C:\Windows\System32\Tasks\{F935550C-6E8C-49E1-BB10-B33B0D0506D3}
2014-08-16 13:07 - 2013-10-29 16:05 - 00000000 ____D () C:\Users\Lenča\AppData\Local\VirtualStore
2014-08-16 13:01 - 2009-07-14 04:34 - 80195584 _____ () C:\Windows\system32\config\software.bak
2014-08-16 13:01 - 2009-07-14 04:34 - 21233664 _____ () C:\Windows\system32\config\system.bak
2014-08-16 13:01 - 2009-07-14 04:34 - 01572864 _____ () C:\Windows\system32\config\default.bak
2014-08-16 13:01 - 2009-07-14 04:34 - 00098304 _____ () C:\Windows\system32\config\sam.bak
2014-08-16 13:01 - 2009-07-14 04:34 - 00028672 _____ () C:\Windows\system32\config\security.bak
2014-08-16 13:00 - 2011-12-10 23:05 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-08-16 13:00 - 2011-06-22 18:21 - 00000000 ____D () C:\Users\ACER\AppData\Local\Google
2014-08-15 20:51 - 2014-08-15 20:51 - 00000512 _____ () C:\Users\Lenča\Desktop\MBR.dat
2014-08-15 20:06 - 2012-05-26 16:30 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\SoftGrid Client
2014-08-15 11:02 - 2014-07-27 19:01 - 00000000 ____D () C:\Users\Len�a
2014-08-15 11:02 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-08-15 10:45 - 2011-03-08 00:41 - 00000000 ____D () C:\Program Files (x86)\Acer Bio Protection
2014-08-15 10:30 - 2014-07-04 13:32 - 00000981 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-08-15 10:30 - 2014-06-17 16:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-08-15 01:03 - 2014-08-15 01:03 - 00086160 _____ () C:\Users\Default\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-15 01:03 - 2014-08-15 01:03 - 00086160 _____ () C:\Users\Default User\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-15 01:03 - 2014-08-15 01:03 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2010
2014-08-15 01:03 - 2014-08-15 01:03 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2010
2014-08-14 19:59 - 2014-08-14 14:35 - 00030312 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-08-14 14:35 - 2014-08-14 14:35 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-08-14 14:34 - 2014-08-14 14:34 - 05392984 _____ () C:\Users\Lenča\Desktop\RogueKillerX64.exe
2014-08-14 14:31 - 2014-08-14 14:31 - 00007098 _____ () C:\Users\Lenča\Desktop\JRT.txt
2014-08-14 14:23 - 2014-08-14 14:23 - 00000000 ____D () C:\Windows\ERUNT
2014-08-14 14:22 - 2014-08-14 14:22 - 01016261 _____ (Thisisu) C:\Users\Lenča\Desktop\JRT.exe
2014-08-14 14:21 - 2013-05-20 17:53 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\Seznam.cz
2014-08-14 14:13 - 2014-08-14 14:12 - 00001157 _____ () C:\AdwCleaner[S12].txt
2014-08-14 13:33 - 2009-07-14 07:08 - 00032538 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-14 02:15 - 2014-08-13 01:33 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{A8DAF5C9-1760-4F98-82E8-FC19F6865599}
2014-08-14 01:45 - 2014-08-13 02:17 - 00000000 ____D () C:\Users\Lenča\Documents\Visual Studio 2010
2014-08-13 23:47 - 2014-08-13 23:47 - 00000796 _____ () C:\Users\Lenča\Desktop\adwcleaner.txt
2014-08-13 23:45 - 2014-08-13 23:45 - 00001096 _____ () C:\AdwCleaner[R9].txt
2014-08-13 23:32 - 2014-08-13 23:31 - 00448512 _____ (OldTimer Tools) C:\Users\Lenča\Desktop\TFC.exe
2014-08-13 23:31 - 2014-08-13 23:31 - 00000000 ____D () C:\Users\Lenča\AppData\Local\ATI
2014-08-13 23:30 - 2014-07-04 13:23 - 00000000 ____D () C:\Users\Lenča\AppData\Local\Avg2014
2014-08-13 23:27 - 2014-08-13 23:27 - 00050688 _____ (Atribune.org) C:\Users\Lenča\Desktop\ATF-Cleaner.exe
2014-08-13 10:44 - 2014-07-27 22:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4Story_CZ
2014-08-13 10:44 - 2013-10-08 14:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-13 10:43 - 2012-12-24 20:40 - 00000000 ____D () C:\Users\Lenča\Documents\Electronic Arts
2014-08-13 10:42 - 2011-12-22 17:17 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-08-13 10:41 - 2014-07-27 21:57 - 00000000 ____D () C:\Program Files (x86)\Gameforge4D
2014-08-13 03:37 - 2014-08-13 03:37 - 00000000 ____D () C:\Program Files (x86)\PROnetworks
2014-08-13 03:12 - 2013-09-13 15:05 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-13 02:35 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-13 02:23 - 2013-07-31 19:13 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-13 02:18 - 2014-08-13 02:18 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-08-13 02:18 - 2014-08-13 02:18 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-08-13 02:18 - 2014-08-13 02:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-08-13 02:18 - 2013-05-19 04:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-08-13 02:14 - 2014-08-13 02:13 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 10.0
2014-08-13 02:13 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-08-13 02:12 - 2011-06-27 14:02 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-13 02:11 - 2014-08-13 02:11 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.0
2014-08-13 02:11 - 2014-08-13 02:11 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer
2014-08-13 02:11 - 2014-08-13 02:11 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs
2014-08-13 02:00 - 2014-08-13 02:00 - 00001487 _____ () C:\Users\Public\Desktop\The Sims 4 Vytvořit Simíka – demo.lnk
2014-08-13 01:59 - 2014-08-12 20:25 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-13 01:59 - 2014-05-01 19:59 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-13 01:59 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-08-13 01:53 - 2014-08-13 01:33 - 00000000 ____D () C:\Program Files (x86)\NeoSmart Technologies
2014-08-13 01:30 - 2014-07-28 06:28 - 00000000 ____D () C:\Windows\pss
2014-08-12 20:12 - 2012-08-31 23:49 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-08-12 17:46 - 2014-08-12 17:25 - 367001600 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E04.Zeme-Snu_1.avi
2014-08-12 14:01 - 2014-08-12 13:38 - 366907392 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E05.Zeme-Snu_2 (1).avi
2014-08-11 14:24 - 2014-08-10 21:05 - 00000000 ____D () C:\Users\Lenča\Documents\Battlefield Play4Free
2014-08-10 21:10 - 2014-08-10 21:10 - 00000000 ____D () C:\Users\Lenča\AppData\Local\PunkBuster
2014-08-10 21:04 - 2014-08-10 21:04 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EA Games
2014-08-07 21:40 - 2014-08-07 21:40 - 00001157 _____ () C:\AdwCleaner[R10].txt
2014-08-07 04:06 - 2014-08-13 01:13 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 04:01 - 2014-08-13 01:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-06 01:16 - 2014-03-21 17:17 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-05 18:12 - 2014-08-05 18:12 - 00000704 _____ () C:\Users\Lenča\Desktop\Chov křečků « Rubrika Svět ZVÍŘAT.website
2014-08-01 15:13 - 2013-12-14 04:34 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\.minecraft
2014-08-01 01:41 - 2014-08-13 01:15 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-01 01:16 - 2014-08-13 01:15 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-29 13:22 - 2011-06-22 18:20 - 00000000 ____D () C:\ProgramData\Skype
2014-07-27 23:36 - 2013-03-16 04:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-27 23:36 - 2013-03-16 04:02 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-27 23:36 - 2013-03-16 04:02 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-27 22:01 - 2014-07-27 22:01 - 00001160 _____ () C:\Users\Public\Desktop\4Story.lnk
2014-07-25 20:31 - 2012-02-18 01:51 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-07-25 20:21 - 2014-07-25 20:21 - 00000406 _____ () C:\Users\Lenča\AppData\Local\LMIR0002.tmp.bat
2014-07-25 20:21 - 2014-07-25 20:21 - 00000331 _____ () C:\Users\Lenča\AppData\Local\LMIR0002.tmp_r.bat
2014-07-25 19:57 - 2014-03-25 17:36 - 00000000 ____D () C:\Users\Lenča\AppData\Local\LogMeIn Rescue Applet
2014-07-25 16:52 - 2014-08-13 01:15 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-25 16:02 - 2014-08-13 01:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-25 16:01 - 2014-08-13 01:15 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-25 15:51 - 2014-08-13 01:15 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-25 15:30 - 2014-08-13 01:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-25 15:28 - 2014-08-13 01:15 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-25 15:28 - 2014-08-13 01:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-25 15:25 - 2014-08-13 01:15 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-25 15:25 - 2014-08-13 01:15 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-25 15:11 - 2014-08-13 01:15 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-25 15:10 - 2014-08-13 01:15 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-25 15:04 - 2014-08-13 01:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-25 15:03 - 2014-08-13 01:15 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-25 15:00 - 2014-08-13 01:15 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-25 15:00 - 2014-08-13 01:15 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-25 14:59 - 2014-08-13 01:15 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-25 14:47 - 2014-08-13 01:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-25 14:40 - 2014-08-13 01:15 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-25 14:34 - 2014-08-13 01:15 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-25 14:34 - 2014-08-13 01:15 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-25 14:33 - 2014-08-13 01:15 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-25 14:30 - 2014-08-13 01:15 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-25 14:28 - 2014-08-13 01:15 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-25 14:28 - 2014-08-13 01:15 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-25 14:21 - 2014-08-13 01:15 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-25 14:19 - 2014-08-13 01:15 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-25 14:18 - 2014-08-13 01:15 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-25 14:17 - 2014-08-13 01:15 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-25 14:17 - 2014-08-13 01:15 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-25 14:12 - 2014-08-13 01:15 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-25 14:10 - 2014-08-13 01:15 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-25 14:10 - 2014-08-13 01:15 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-25 14:08 - 2014-08-13 01:15 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-07-25 14:06 - 2014-08-13 01:15 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-25 13:52 - 2014-08-13 01:15 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-25 13:47 - 2014-08-13 01:15 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-25 13:43 - 2014-08-13 01:15 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-25 13:42 - 2014-08-13 01:15 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-25 13:39 - 2014-08-13 01:15 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-25 13:39 - 2014-08-13 01:15 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-25 13:36 - 2014-08-13 01:15 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-25 13:34 - 2014-08-13 01:15 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-25 13:29 - 2014-08-13 01:15 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-25 13:23 - 2014-08-13 01:15 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-25 13:13 - 2014-08-13 01:15 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-25 13:07 - 2014-08-13 01:15 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-25 13:07 - 2014-08-13 01:15 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-25 13:03 - 2014-08-13 01:15 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-25 12:52 - 2014-08-13 01:15 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-25 12:26 - 2014-08-13 01:15 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-25 12:17 - 2014-08-13 01:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-25 12:09 - 2014-08-13 01:15 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-25 12:05 - 2014-08-13 01:15 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-25 12:00 - 2014-08-13 01:15 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-24 14:42 - 2014-07-24 14:42 - 00001148 _____ () C:\Users\Lenča\Desktop\FiveStories.lnk
2014-07-24 14:36 - 2014-07-24 14:36 - 00000000 ____D () C:\Program Files (x86)\Five
2014-07-23 13:26 - 2014-05-01 17:24 - 00000420 _____ () C:\Users\Lenča\Desktop\zsbrok.cz.website
2014-07-23 12:05 - 2014-01-17 18:13 - 00000000 ____D () C:\Users\Lenča\Documents\cviky
2014-07-22 18:18 - 2011-06-22 19:23 - 00000000 ____D () C:\Program Files (x86)\EA GAMES
2014-07-22 18:17 - 2011-07-20 12:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2014-07-22 18:17 - 2010-09-23 20:15 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
Files to move or delete:
====================
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_14_0_0_145_ActiveX.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-07-02 20:55
==================== End Of Log ============================
Logy FRST:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-08-2014 01
Ran by Lenča (administrator) on ACER-PC on 21-08-2014 01:35:01
Running from C:\Users\Lenča\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(AuthenTec, Inc.) C:\Program Files (x86)\Fingerprint Sensor\AtService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Egis Technology Inc.) C:\Program Files (x86)\Acer Bio Protection\CompPtcVUI.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Windows\PLFSetI.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
() C:\Users\Lenča\Desktop\Kaspersky_Virus_Removal_Tool_11.0.1.1245_[26.05.2014].exe
() C:\Users\LENA~1\AppData\Local\Temp\RarSFX0\1618266.exe
(Kaspersky Lab) C:\Users\LENA~1\AppData\Local\Temp\9911630\1618266.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation)
HKLM\...\Run: [mwlDaemon] => C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-05-27] (Egis Technology Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8060960 2009-08-06] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1842472 2009-09-18] (Synaptics Incorporated)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [206208 2010-06-10] ()
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [818720 2010-02-26] (Acer Incorporated)
HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [265984 2010-06-29] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-01-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1094736 2009-11-02] (Dritek System Inc.)
HKLM-x32\...\Run: [ArcadeDeluxeAgent] => C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [419112 2009-10-29] (CyberLink Corp.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5187088 2014-08-11] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\RunOnce: [GrpConv] => grpconv -o
HKU\S-1-5-21-3544951325-964006069-150248531-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-3544951325-964006069-150248531-1003\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_14_0_0_145_ActiveX.exe [851632 2014-07-10] (Adobe Systems Incorporated)
HKU\S-1-5-21-3544951325-964006069-150248531-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Lenča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_26062813.lnk
ShortcutTarget: _uninst_26062813.lnk -> C:\Users\Lenča\AppData\Local\Temp\_uninst_26062813.bat ()
ShellIconOverlayIdentifiers: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x64\psdprotect.dll (Egis Technology Inc.)
ShellIconOverlayIdentifiers-x32: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dll (Egis Technology Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKCU - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
Chrome:
=======
CHR DefaultSearchKeyword: google
CHR DefaultSearchURL: http://www.google.com/search?q={searchTerms}
CHR DefaultSuggestURL:
CHR Extension: (Docs) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-10]
CHR Extension: (Disk Google) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-16]
CHR Extension: (YouTube) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-16]
CHR Extension: (Vyhledávání Google) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-16]
CHR Extension: (AVG Do Not Track) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\epojjbofkhffmihobdncmbhdocjljhpi [2013-12-15]
CHR Extension: (Peněženka Google) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-15]
CHR Extension: (Gmail) - C:\Users\Lenča\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-16]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 ATService; C:\Program Files (x86)\Fingerprint Sensor\AtService.exe [1815800 2009-09-21] (AuthenTec, Inc.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3244048 2014-08-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328 2014-08-11] (AVG Technologies CZ, s.r.o.)
S3 IGBASVC; c:\Program Files (x86)\Acer Bio Protection\BASVC.exe [3449856 2009-09-26] (Egis Technology Inc.) [File not signed]
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-05-27] (Egis Technology Inc.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R0 26062813; C:\Windows\System32\DRIVERS\26062813.sys [460888 2014-05-26] (Kaspersky Lab ZAO)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-06-30] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [242968 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [328984 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [269080 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [39768 2013-02-18] (AVG Technologies)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-20] (Malwarebytes Corporation)
S3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [6144 2012-12-19] ()
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 iSafeKrnl; \??\C:\Program Files (x86)\iSafe\iSafeKrnl.sys [X]
S1 iSafeNetFilter; \??\C:\Program Files (x86)\iSafe\iSafeNetFilter.sys [X]
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-21 01:35 - 2014-08-21 01:36 - 00016268 _____ () C:\Users\Lenča\Desktop\FRST.txt
2014-08-21 01:34 - 2014-08-21 01:35 - 00000000 ____D () C:\FRST
2014-08-21 01:34 - 2014-08-21 01:34 - 02101760 _____ (Farbar) C:\Users\Lenča\Desktop\FRST64.exe
2014-08-20 14:16 - 2014-08-20 20:49 - 2463431517 _____ () C:\Users\Lenča\Desktop\The.X.Files.Fight.the.Future.1998.m-HD.720p.x264~RKO-CZ.mkv
2014-08-20 12:42 - 2014-08-20 13:08 - 366962688 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E15.Pondeli.avi
2014-08-20 10:07 - 2014-05-26 08:43 - 00460888 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\26062813.sys
2014-08-19 20:07 - 2014-08-19 20:07 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-19 20:04 - 2014-08-19 20:06 - 138427464 _____ () C:\Users\Lenča\Desktop\Kaspersky_Virus_Removal_Tool_11.0.1.1245_[26.05.2014].exe
2014-08-19 19:46 - 2014-08-20 18:45 - 00000344 _____ () C:\Windows\Tasks\Health-Check-deep.job
2014-08-19 19:46 - 2014-08-19 19:46 - 00002920 _____ () C:\Windows\System32\Tasks\Health-Check-deep
2014-08-19 19:46 - 2014-08-19 19:46 - 00000000 ____D () C:\Users\Lenča\AppData\Local\Innovative Solutions
2014-08-19 19:18 - 2014-08-19 19:18 - 00000000 ____D () C:\Users\ACER\AppData\Local\Avg2014
2014-08-19 14:56 - 2014-08-19 14:56 - 01370259 _____ () C:\Users\Lenča\Desktop\ukazka5.mp4
2014-08-19 14:01 - 2014-08-20 20:55 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-19 14:01 - 2014-08-19 20:34 - 00001150 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-19 14:01 - 2014-08-19 14:59 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-19 14:01 - 2014-08-19 14:01 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Lenča\Desktop\mbam-setup-2.0.2.1012.exe
2014-08-19 14:01 - 2014-08-19 14:01 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-19 14:01 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-19 14:01 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-19 14:01 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-08-19 13:54 - 2014-08-19 13:54 - 00014040 _____ () C:\Windows\PFRO.log
2014-08-19 13:51 - 2014-08-19 13:51 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Lenča\Desktop\mbam-clean-2.1.1.1001.exe
2014-08-19 01:14 - 2014-08-19 01:27 - 00000000 __SHD () C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2014-08-17 19:48 - 2014-08-17 19:48 - 00081303 _____ () C:\Users\Lenča\Desktop\uk4.wma
2014-08-17 19:44 - 2014-08-17 19:44 - 00040893 _____ () C:\Users\Lenča\Desktop\uk3.wma
2014-08-17 19:38 - 2014-08-19 13:38 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2014-08-17 14:33 - 2014-08-17 14:33 - 00000000 ____D () C:\ProgramData\VS
2014-08-17 13:27 - 2014-08-20 18:32 - 00000504 _____ () C:\Windows\setupact.log
2014-08-17 13:27 - 2014-08-17 13:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-17 02:45 - 2014-08-17 03:07 - 366804992 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E08.Destovy-kral.avi
2014-08-16 13:54 - 2014-08-16 13:54 - 00388608 _____ (Trend Micro Inc.) C:\Users\Lenča\Desktop\HiJackThis.exe
2014-08-16 13:36 - 2014-08-16 13:36 - 00009167 _____ () C:\Users\Lenča\Desktop\hijackthis3
2014-08-16 13:07 - 2014-08-16 13:07 - 00003118 _____ () C:\Windows\System32\Tasks\{F935550C-6E8C-49E1-BB10-B33B0D0506D3}
2014-08-16 12:25 - 2014-08-19 20:01 - 00000000 ____D () C:\Users\Lenča\Desktop\backups
2014-08-15 20:51 - 2014-08-15 20:51 - 00000512 _____ () C:\Users\Lenča\Desktop\MBR.dat
2014-08-15 10:29 - 2014-08-17 12:43 - 00000000 ____D () C:\Windows\erdnt
2014-08-15 01:03 - 2014-08-15 01:03 - 00086160 _____ () C:\Users\Default\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-15 01:03 - 2014-08-15 01:03 - 00086160 _____ () C:\Users\Default User\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-15 01:03 - 2014-08-15 01:03 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2010
2014-08-15 01:03 - 2014-08-15 01:03 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2010
2014-08-14 14:35 - 2014-08-14 19:59 - 00030312 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-08-14 14:35 - 2014-08-14 14:35 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-08-14 14:34 - 2014-08-14 14:34 - 05392984 _____ () C:\Users\Lenča\Desktop\RogueKillerX64.exe
2014-08-14 14:31 - 2014-08-14 14:31 - 00007098 _____ () C:\Users\Lenča\Desktop\JRT.txt
2014-08-14 14:23 - 2014-08-14 14:23 - 00000000 ____D () C:\Windows\ERUNT
2014-08-14 14:22 - 2014-08-14 14:22 - 01016261 _____ (Thisisu) C:\Users\Lenča\Desktop\JRT.exe
2014-08-14 14:12 - 2014-08-14 14:13 - 00001157 _____ () C:\AdwCleaner[S12].txt
2014-08-14 02:00 - 2014-08-16 20:39 - 00000000 ____D () C:\Users\Lenča\AppData\Local\Adobe
2014-08-13 23:47 - 2014-08-13 23:47 - 00000796 _____ () C:\Users\Lenča\Desktop\adwcleaner.txt
2014-08-13 23:45 - 2014-08-13 23:45 - 00001096 _____ () C:\AdwCleaner[R9].txt
2014-08-13 23:31 - 2014-08-13 23:32 - 00448512 _____ (OldTimer Tools) C:\Users\Lenča\Desktop\TFC.exe
2014-08-13 23:31 - 2014-08-13 23:31 - 00000000 ____D () C:\Users\Lenča\AppData\Local\ATI
2014-08-13 23:27 - 2014-08-13 23:27 - 00050688 _____ (Atribune.org) C:\Users\Lenča\Desktop\ATF-Cleaner.exe
2014-08-13 03:37 - 2014-08-13 03:37 - 00000000 ____D () C:\Program Files (x86)\PROnetworks
2014-08-13 02:18 - 2014-08-13 02:18 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-08-13 02:18 - 2014-08-13 02:18 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-08-13 02:18 - 2014-08-13 02:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-08-13 02:17 - 2014-08-14 01:45 - 00000000 ____D () C:\Users\Lenča\Documents\Visual Studio 2010
2014-08-13 02:16 - 2014-08-19 13:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
2014-08-13 02:13 - 2014-08-13 02:14 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 10.0
2014-08-13 02:11 - 2014-08-19 13:39 - 00000000 ____D () C:\Windows\symbols
2014-08-13 02:11 - 2014-08-13 02:11 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.0
2014-08-13 02:11 - 2014-08-13 02:11 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer
2014-08-13 02:11 - 2014-08-13 02:11 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs
2014-08-13 02:01 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-13 02:01 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-13 02:01 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-13 02:01 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-13 02:01 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-13 02:01 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-13 02:00 - 2014-08-13 02:00 - 00001487 _____ () C:\Users\Public\Desktop\The Sims 4 Vytvořit Simíka – demo.lnk
2014-08-13 02:00 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-13 02:00 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-13 01:33 - 2014-08-14 02:15 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{A8DAF5C9-1760-4F98-82E8-FC19F6865599}
2014-08-13 01:33 - 2014-08-13 01:53 - 00000000 ____D () C:\Program Files (x86)\NeoSmart Technologies
2014-08-13 01:18 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-13 01:18 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-13 01:17 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-13 01:17 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-13 01:17 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-13 01:17 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-13 01:17 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-13 01:17 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-13 01:17 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-13 01:17 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-13 01:17 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-13 01:16 - 2014-07-16 05:25 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-13 01:16 - 2014-07-16 04:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-13 01:16 - 2014-07-16 04:12 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-13 01:16 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-13 01:16 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-13 01:16 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-13 01:16 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-13 01:16 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-13 01:16 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-13 01:16 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-13 01:16 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-13 01:16 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-13 01:16 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-13 01:16 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-13 01:16 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-13 01:16 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-13 01:15 - 2014-08-01 01:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-13 01:15 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-13 01:15 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-13 01:15 - 2014-07-25 16:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-13 01:15 - 2014-07-25 16:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 01:15 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-13 01:15 - 2014-07-25 15:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-13 01:15 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-13 01:15 - 2014-07-25 15:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-13 01:15 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-13 01:15 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-13 01:15 - 2014-07-25 15:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-13 01:15 - 2014-07-25 15:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-13 01:15 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-13 01:15 - 2014-07-25 15:03 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-13 01:15 - 2014-07-25 15:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-13 01:15 - 2014-07-25 15:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-13 01:15 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-13 01:15 - 2014-07-25 14:47 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 01:15 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-13 01:15 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-13 01:15 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-13 01:15 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-13 01:15 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-13 01:15 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-13 01:15 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 01:15 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-13 01:15 - 2014-07-25 14:19 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-13 01:15 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-13 01:15 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-13 01:15 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-13 01:15 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-13 01:15 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-13 01:15 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-13 01:15 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-13 01:15 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-13 01:15 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-13 01:15 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-13 01:15 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-13 01:15 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-13 01:15 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-13 01:15 - 2014-07-25 13:39 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-13 01:15 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-13 01:15 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-13 01:15 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-13 01:15 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-13 01:15 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-13 01:15 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-13 01:15 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-13 01:15 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-13 01:15 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-13 01:15 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-13 01:15 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-13 01:15 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-13 01:15 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-13 01:15 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-13 01:14 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-13 01:14 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-13 01:13 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-13 01:13 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-12 20:25 - 2014-08-13 01:59 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-12 17:25 - 2014-08-12 17:46 - 367001600 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E04.Zeme-Snu_1.avi
2014-08-12 13:38 - 2014-08-12 14:01 - 366907392 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E05.Zeme-Snu_2 (1).avi
2014-08-10 21:10 - 2014-08-10 21:10 - 00000000 ____D () C:\Users\Lenča\AppData\Local\PunkBuster
2014-08-10 21:05 - 2014-08-11 14:24 - 00000000 ____D () C:\Users\Lenča\Documents\Battlefield Play4Free
2014-08-10 21:04 - 2014-08-10 21:04 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EA Games
2014-08-07 21:40 - 2014-08-07 21:40 - 00001157 _____ () C:\AdwCleaner[R10].txt
2014-08-05 18:12 - 2014-08-05 18:12 - 00000704 _____ () C:\Users\Lenča\Desktop\Chov křečků « Rubrika Svět ZVÍŘAT.website
2014-07-28 06:28 - 2014-08-13 01:30 - 00000000 ____D () C:\Windows\pss
2014-07-27 22:01 - 2014-07-27 22:01 - 00001160 _____ () C:\Users\Public\Desktop\4Story.lnk
2014-07-27 22:00 - 2014-08-13 10:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4Story_CZ
2014-07-27 21:57 - 2014-08-13 10:41 - 00000000 ____D () C:\Program Files (x86)\Gameforge4D
2014-07-27 19:01 - 2014-08-15 11:02 - 00000000 ____D () C:\Users\Len�a
2014-07-25 20:21 - 2014-07-25 20:21 - 00000406 _____ () C:\Users\Lenča\AppData\Local\LMIR0002.tmp.bat
2014-07-25 20:21 - 2014-07-25 20:21 - 00000331 _____ () C:\Users\Lenča\AppData\Local\LMIR0002.tmp_r.bat
2014-07-24 14:42 - 2014-07-24 14:42 - 00001148 _____ () C:\Users\Lenča\Desktop\FiveStories.lnk
2014-07-24 14:36 - 2014-07-24 14:36 - 00000000 ____D () C:\Program Files (x86)\Five
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-21 01:36 - 2014-08-21 01:35 - 00016268 _____ () C:\Users\Lenča\Desktop\FRST.txt
2014-08-21 01:36 - 2011-03-08 00:35 - 01886792 _____ () C:\Windows\WindowsUpdate.log
2014-08-21 01:35 - 2014-08-21 01:34 - 00000000 ____D () C:\FRST
2014-08-21 01:34 - 2014-08-21 01:34 - 02101760 _____ (Farbar) C:\Users\Lenča\Desktop\FRST64.exe
2014-08-21 01:32 - 2013-02-24 04:54 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-20 23:47 - 2012-06-23 22:11 - 00000000 ____D () C:\ProgramData\MFAData
2014-08-20 23:31 - 2012-02-18 19:28 - 00000000 ____D () C:\Users\Lenča\AppData\Local\CrashDumps
2014-08-20 20:55 - 2014-08-19 14:01 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-20 20:49 - 2014-08-20 14:16 - 2463431517 _____ () C:\Users\Lenča\Desktop\The.X.Files.Fight.the.Future.1998.m-HD.720p.x264~RKO-CZ.mkv
2014-08-20 19:02 - 2013-09-21 17:40 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\TS3Client
2014-08-20 18:45 - 2014-08-19 19:46 - 00000344 _____ () C:\Windows\Tasks\Health-Check-deep.job
2014-08-20 18:32 - 2014-08-17 13:27 - 00000504 _____ () C:\Windows\setupact.log
2014-08-20 13:08 - 2014-08-20 12:42 - 366962688 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E15.Pondeli.avi
2014-08-20 12:10 - 2012-02-16 19:18 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\Skype
2014-08-19 20:34 - 2014-08-19 14:01 - 00001150 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-19 20:07 - 2014-08-19 20:07 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-19 20:06 - 2014-08-19 20:04 - 138427464 _____ () C:\Users\Lenča\Desktop\Kaspersky_Virus_Removal_Tool_11.0.1.1245_[26.05.2014].exe
2014-08-19 20:01 - 2014-08-16 12:25 - 00000000 ____D () C:\Users\Lenča\Desktop\backups
2014-08-19 19:46 - 2014-08-19 19:46 - 00002920 _____ () C:\Windows\System32\Tasks\Health-Check-deep
2014-08-19 19:46 - 2014-08-19 19:46 - 00000000 ____D () C:\Users\Lenča\AppData\Local\Innovative Solutions
2014-08-19 19:31 - 2009-07-14 06:45 - 00025840 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-19 19:31 - 2009-07-14 06:45 - 00025840 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-19 19:29 - 2009-07-14 06:45 - 04906656 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-19 19:25 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-19 19:18 - 2014-08-19 19:18 - 00000000 ____D () C:\Users\ACER\AppData\Local\Avg2014
2014-08-19 14:59 - 2014-08-19 14:01 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-19 14:56 - 2014-08-19 14:56 - 01370259 _____ () C:\Users\Lenča\Desktop\ukazka5.mp4
2014-08-19 14:01 - 2014-08-19 14:01 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Lenča\Desktop\mbam-setup-2.0.2.1012.exe
2014-08-19 14:01 - 2014-08-19 14:01 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-19 13:54 - 2014-08-19 13:54 - 00014040 _____ () C:\Windows\PFRO.log
2014-08-19 13:51 - 2014-08-19 13:51 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Lenča\Desktop\mbam-clean-2.1.1.1001.exe
2014-08-19 13:44 - 2012-02-16 19:17 - 00000000 ____D () C:\Users\Lenča
2014-08-19 13:39 - 2014-08-13 02:11 - 00000000 ____D () C:\Windows\symbols
2014-08-19 13:39 - 2011-06-14 13:38 - 00000000 ____D () C:\Users\ACER
2014-08-19 13:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-08-19 13:38 - 2014-08-17 19:38 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2014-08-19 13:38 - 2014-08-13 02:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
2014-08-19 13:38 - 2012-12-08 17:43 - 00000000 __SHD () C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2014-08-19 13:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-08-19 13:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-08-19 01:27 - 2014-08-19 01:14 - 00000000 __SHD () C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2014-08-19 01:15 - 2013-03-09 15:27 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\TuneUp Software
2014-08-17 19:48 - 2014-08-17 19:48 - 00081303 _____ () C:\Users\Lenča\Desktop\uk4.wma
2014-08-17 19:44 - 2014-08-17 19:44 - 00040893 _____ () C:\Users\Lenča\Desktop\uk3.wma
2014-08-17 14:33 - 2014-08-17 14:33 - 00000000 ____D () C:\ProgramData\VS
2014-08-17 13:27 - 2014-08-17 13:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-17 13:21 - 2011-10-06 21:10 - 00000000 ____D () C:\Windows\Minidump
2014-08-17 12:43 - 2014-08-15 10:29 - 00000000 ____D () C:\Windows\erdnt
2014-08-17 03:07 - 2014-08-17 02:45 - 366804992 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E08.Destovy-kral.avi
2014-08-16 21:09 - 2011-12-23 12:33 - 00000000 ____D () C:\ProgramData\Origin
2014-08-16 21:08 - 2012-11-04 19:45 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-08-16 20:39 - 2014-08-14 02:00 - 00000000 ____D () C:\Users\Lenča\AppData\Local\Adobe
2014-08-16 17:44 - 2011-03-08 01:24 - 00657842 _____ () C:\Windows\system32\perfh005.dat
2014-08-16 17:44 - 2011-03-08 01:24 - 00138112 _____ () C:\Windows\system32\perfc005.dat
2014-08-16 17:44 - 2009-07-14 07:13 - 01586178 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-16 13:54 - 2014-08-16 13:54 - 00388608 _____ (Trend Micro Inc.) C:\Users\Lenča\Desktop\HiJackThis.exe
2014-08-16 13:36 - 2014-08-16 13:36 - 00009167 _____ () C:\Users\Lenča\Desktop\hijackthis3
2014-08-16 13:26 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2014-08-16 13:07 - 2014-08-16 13:07 - 00003118 _____ () C:\Windows\System32\Tasks\{F935550C-6E8C-49E1-BB10-B33B0D0506D3}
2014-08-16 13:07 - 2013-10-29 16:05 - 00000000 ____D () C:\Users\Lenča\AppData\Local\VirtualStore
2014-08-16 13:01 - 2009-07-14 04:34 - 80195584 _____ () C:\Windows\system32\config\software.bak
2014-08-16 13:01 - 2009-07-14 04:34 - 21233664 _____ () C:\Windows\system32\config\system.bak
2014-08-16 13:01 - 2009-07-14 04:34 - 01572864 _____ () C:\Windows\system32\config\default.bak
2014-08-16 13:01 - 2009-07-14 04:34 - 00098304 _____ () C:\Windows\system32\config\sam.bak
2014-08-16 13:01 - 2009-07-14 04:34 - 00028672 _____ () C:\Windows\system32\config\security.bak
2014-08-16 13:00 - 2011-12-10 23:05 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-08-16 13:00 - 2011-06-22 18:21 - 00000000 ____D () C:\Users\ACER\AppData\Local\Google
2014-08-15 20:51 - 2014-08-15 20:51 - 00000512 _____ () C:\Users\Lenča\Desktop\MBR.dat
2014-08-15 20:06 - 2012-05-26 16:30 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\SoftGrid Client
2014-08-15 11:02 - 2014-07-27 19:01 - 00000000 ____D () C:\Users\Len�a
2014-08-15 11:02 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-08-15 10:45 - 2011-03-08 00:41 - 00000000 ____D () C:\Program Files (x86)\Acer Bio Protection
2014-08-15 10:30 - 2014-07-04 13:32 - 00000981 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-08-15 10:30 - 2014-06-17 16:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-08-15 01:03 - 2014-08-15 01:03 - 00086160 _____ () C:\Users\Default\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-15 01:03 - 2014-08-15 01:03 - 00086160 _____ () C:\Users\Default User\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-15 01:03 - 2014-08-15 01:03 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2010
2014-08-15 01:03 - 2014-08-15 01:03 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2010
2014-08-14 19:59 - 2014-08-14 14:35 - 00030312 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-08-14 14:35 - 2014-08-14 14:35 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-08-14 14:34 - 2014-08-14 14:34 - 05392984 _____ () C:\Users\Lenča\Desktop\RogueKillerX64.exe
2014-08-14 14:31 - 2014-08-14 14:31 - 00007098 _____ () C:\Users\Lenča\Desktop\JRT.txt
2014-08-14 14:23 - 2014-08-14 14:23 - 00000000 ____D () C:\Windows\ERUNT
2014-08-14 14:22 - 2014-08-14 14:22 - 01016261 _____ (Thisisu) C:\Users\Lenča\Desktop\JRT.exe
2014-08-14 14:21 - 2013-05-20 17:53 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\Seznam.cz
2014-08-14 14:13 - 2014-08-14 14:12 - 00001157 _____ () C:\AdwCleaner[S12].txt
2014-08-14 13:33 - 2009-07-14 07:08 - 00032538 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-14 02:15 - 2014-08-13 01:33 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{A8DAF5C9-1760-4F98-82E8-FC19F6865599}
2014-08-14 01:45 - 2014-08-13 02:17 - 00000000 ____D () C:\Users\Lenča\Documents\Visual Studio 2010
2014-08-13 23:47 - 2014-08-13 23:47 - 00000796 _____ () C:\Users\Lenča\Desktop\adwcleaner.txt
2014-08-13 23:45 - 2014-08-13 23:45 - 00001096 _____ () C:\AdwCleaner[R9].txt
2014-08-13 23:32 - 2014-08-13 23:31 - 00448512 _____ (OldTimer Tools) C:\Users\Lenča\Desktop\TFC.exe
2014-08-13 23:31 - 2014-08-13 23:31 - 00000000 ____D () C:\Users\Lenča\AppData\Local\ATI
2014-08-13 23:30 - 2014-07-04 13:23 - 00000000 ____D () C:\Users\Lenča\AppData\Local\Avg2014
2014-08-13 23:27 - 2014-08-13 23:27 - 00050688 _____ (Atribune.org) C:\Users\Lenča\Desktop\ATF-Cleaner.exe
2014-08-13 10:44 - 2014-07-27 22:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4Story_CZ
2014-08-13 10:44 - 2013-10-08 14:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-13 10:43 - 2012-12-24 20:40 - 00000000 ____D () C:\Users\Lenča\Documents\Electronic Arts
2014-08-13 10:42 - 2011-12-22 17:17 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-08-13 10:41 - 2014-07-27 21:57 - 00000000 ____D () C:\Program Files (x86)\Gameforge4D
2014-08-13 03:37 - 2014-08-13 03:37 - 00000000 ____D () C:\Program Files (x86)\PROnetworks
2014-08-13 03:12 - 2013-09-13 15:05 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-13 02:35 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-13 02:23 - 2013-07-31 19:13 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-13 02:18 - 2014-08-13 02:18 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-08-13 02:18 - 2014-08-13 02:18 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-08-13 02:18 - 2014-08-13 02:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-08-13 02:18 - 2013-05-19 04:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-08-13 02:14 - 2014-08-13 02:13 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 10.0
2014-08-13 02:13 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-08-13 02:12 - 2011-06-27 14:02 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-13 02:11 - 2014-08-13 02:11 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.0
2014-08-13 02:11 - 2014-08-13 02:11 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer
2014-08-13 02:11 - 2014-08-13 02:11 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs
2014-08-13 02:00 - 2014-08-13 02:00 - 00001487 _____ () C:\Users\Public\Desktop\The Sims 4 Vytvořit Simíka – demo.lnk
2014-08-13 01:59 - 2014-08-12 20:25 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-13 01:59 - 2014-05-01 19:59 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-13 01:59 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-08-13 01:53 - 2014-08-13 01:33 - 00000000 ____D () C:\Program Files (x86)\NeoSmart Technologies
2014-08-13 01:30 - 2014-07-28 06:28 - 00000000 ____D () C:\Windows\pss
2014-08-12 20:12 - 2012-08-31 23:49 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-08-12 17:46 - 2014-08-12 17:25 - 367001600 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E04.Zeme-Snu_1.avi
2014-08-12 14:01 - 2014-08-12 13:38 - 366907392 _____ () C:\Users\Lenča\Desktop\The.X-Files.S06E05.Zeme-Snu_2 (1).avi
2014-08-11 14:24 - 2014-08-10 21:05 - 00000000 ____D () C:\Users\Lenča\Documents\Battlefield Play4Free
2014-08-10 21:10 - 2014-08-10 21:10 - 00000000 ____D () C:\Users\Lenča\AppData\Local\PunkBuster
2014-08-10 21:04 - 2014-08-10 21:04 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EA Games
2014-08-07 21:40 - 2014-08-07 21:40 - 00001157 _____ () C:\AdwCleaner[R10].txt
2014-08-07 04:06 - 2014-08-13 01:13 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 04:01 - 2014-08-13 01:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-06 01:16 - 2014-03-21 17:17 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-05 18:12 - 2014-08-05 18:12 - 00000704 _____ () C:\Users\Lenča\Desktop\Chov křečků « Rubrika Svět ZVÍŘAT.website
2014-08-01 15:13 - 2013-12-14 04:34 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\.minecraft
2014-08-01 01:41 - 2014-08-13 01:15 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-01 01:16 - 2014-08-13 01:15 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-29 13:22 - 2011-06-22 18:20 - 00000000 ____D () C:\ProgramData\Skype
2014-07-27 23:36 - 2013-03-16 04:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-27 23:36 - 2013-03-16 04:02 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-27 23:36 - 2013-03-16 04:02 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-27 22:01 - 2014-07-27 22:01 - 00001160 _____ () C:\Users\Public\Desktop\4Story.lnk
2014-07-25 20:31 - 2012-02-18 01:51 - 00000000 ____D () C:\Users\Lenča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-07-25 20:21 - 2014-07-25 20:21 - 00000406 _____ () C:\Users\Lenča\AppData\Local\LMIR0002.tmp.bat
2014-07-25 20:21 - 2014-07-25 20:21 - 00000331 _____ () C:\Users\Lenča\AppData\Local\LMIR0002.tmp_r.bat
2014-07-25 19:57 - 2014-03-25 17:36 - 00000000 ____D () C:\Users\Lenča\AppData\Local\LogMeIn Rescue Applet
2014-07-25 16:52 - 2014-08-13 01:15 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-25 16:02 - 2014-08-13 01:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-25 16:01 - 2014-08-13 01:15 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-25 15:51 - 2014-08-13 01:15 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-25 15:30 - 2014-08-13 01:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-25 15:28 - 2014-08-13 01:15 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-25 15:28 - 2014-08-13 01:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-25 15:25 - 2014-08-13 01:15 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-25 15:25 - 2014-08-13 01:15 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-25 15:11 - 2014-08-13 01:15 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-25 15:10 - 2014-08-13 01:15 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-25 15:04 - 2014-08-13 01:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-25 15:03 - 2014-08-13 01:15 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-25 15:00 - 2014-08-13 01:15 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-25 15:00 - 2014-08-13 01:15 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-25 14:59 - 2014-08-13 01:15 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-25 14:47 - 2014-08-13 01:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-25 14:40 - 2014-08-13 01:15 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-25 14:34 - 2014-08-13 01:15 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-25 14:34 - 2014-08-13 01:15 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-25 14:33 - 2014-08-13 01:15 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-25 14:30 - 2014-08-13 01:15 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-25 14:28 - 2014-08-13 01:15 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-25 14:28 - 2014-08-13 01:15 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-25 14:21 - 2014-08-13 01:15 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-25 14:19 - 2014-08-13 01:15 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-25 14:18 - 2014-08-13 01:15 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-25 14:17 - 2014-08-13 01:15 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-25 14:17 - 2014-08-13 01:15 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-25 14:12 - 2014-08-13 01:15 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-25 14:10 - 2014-08-13 01:15 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-25 14:10 - 2014-08-13 01:15 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-25 14:08 - 2014-08-13 01:15 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-07-25 14:06 - 2014-08-13 01:15 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-25 13:52 - 2014-08-13 01:15 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-25 13:47 - 2014-08-13 01:15 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-25 13:43 - 2014-08-13 01:15 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-25 13:42 - 2014-08-13 01:15 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-25 13:39 - 2014-08-13 01:15 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-25 13:39 - 2014-08-13 01:15 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-25 13:36 - 2014-08-13 01:15 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-25 13:34 - 2014-08-13 01:15 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-25 13:29 - 2014-08-13 01:15 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-25 13:23 - 2014-08-13 01:15 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-25 13:13 - 2014-08-13 01:15 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-25 13:07 - 2014-08-13 01:15 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-25 13:07 - 2014-08-13 01:15 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-25 13:03 - 2014-08-13 01:15 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-25 12:52 - 2014-08-13 01:15 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-25 12:26 - 2014-08-13 01:15 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-25 12:17 - 2014-08-13 01:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-25 12:09 - 2014-08-13 01:15 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-25 12:05 - 2014-08-13 01:15 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-25 12:00 - 2014-08-13 01:15 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-24 14:42 - 2014-07-24 14:42 - 00001148 _____ () C:\Users\Lenča\Desktop\FiveStories.lnk
2014-07-24 14:36 - 2014-07-24 14:36 - 00000000 ____D () C:\Program Files (x86)\Five
2014-07-23 13:26 - 2014-05-01 17:24 - 00000420 _____ () C:\Users\Lenča\Desktop\zsbrok.cz.website
2014-07-23 12:05 - 2014-01-17 18:13 - 00000000 ____D () C:\Users\Lenča\Documents\cviky
2014-07-22 18:18 - 2011-06-22 19:23 - 00000000 ____D () C:\Program Files (x86)\EA GAMES
2014-07-22 18:17 - 2011-07-20 12:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2014-07-22 18:17 - 2010-09-23 20:15 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
Files to move or delete:
====================
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_14_0_0_145_ActiveX.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-07-02 20:55
==================== End Of Log ============================
Re: Kontrola logu+problém se spuštěním
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-08-2014 01
Ran by Lenča at 2014-08-21 01:37:12
Running from C:\Users\Lenča\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG AntiVirus 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: AVG AntiVirus 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKCU\...\uTorrent) (Version: 3.3.2.30488 - BitTorrent Inc.)
4Story CZ 4.1.98 (HKLM-x32\...\4Story_CZ_is1) (Version: - )
4StoryEG (HKLM-x32\...\4StoryEG2.0) (Version: 2.0 - Eternia Games)
Acer Arcade Deluxe (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 3.0.7319 - CyberLink Corp.)
Acer Arcade Deluxe (x32 Version: 3.0.7319 - CyberLink Corp.) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.68 - NewTech Infosystems)
Acer Bio Protection (HKLM-x32\...\InstallShield_{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}) (Version: 6.1.62 - Egis Technology Inc.)
Acer Crystal Eye Webcam (HKLM-x32\...\{7760D94E-B1B5-40A0-9AA0-ABF942108755}) (Version: 5.2.19.3 - Suyin Optronics Corp)
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.05.3007 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Acer Incorporated)
Acer GameZone Console (HKLM-x32\...\{58F4D244-314F-4D26-B5EF-C28AB32E22CB}_is1) (Version: 6.1.0.9 - Oberon Media, Inc.)
Acer GridVista (HKLM-x32\...\GridVista) (Version: 3.03.1223 - Acer Inc.)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.03.3003 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.5.0715 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3001 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Airport Mania First Flight (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11505173}) (Version: - Oberon Media)
Amazonia (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}) (Version: - Oberon Media)
Amnesia (HKLM-x32\...\Amnesia) (Version: 1.2 - TopCD)
ATI Catalyst Install Manager (HKLM\...\{8B79B3A9-6E49-5FFB-2017-A822BBDC4992}) (Version: 3.0.758.0 - ATI Technologies, Inc.)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.1341 - DsNET Corp)
AuthenTec Fingerprint Software (HKLM-x32\...\{83F136F0-2AE5-420C-A0B6-A440AD42591C}) (Version: 8.5.4.28 - AuthenTec, Inc.)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4745 - AVG Technologies CZ, s.r.o.)
AVG 2014 (Version: 14.0.4007 - AVG Technologies CZ, s.r.o.) Hidden
AVG 2014 (Version: 14.0.4745 - AVG Technologies CZ, s.r.o.) Hidden
Backup Manager Basic (x32 Version: 2.0.0.68 - NewTech Infosystems) Hidden
Broadcom Gigabit NetLink Controller (HKLM\...\{A84DB02B-9C2B-4272-9D2D-A80E00A56513}) (Version: 14.2.4.2 - Broadcom Corporation)
Cake Mania (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111199750}) (Version: - Oberon Media)
Camtasia Studio 8 (HKLM-x32\...\{2EB28256-1D66-49F1-AF66-691BF9A27C79}) (Version: 8.0.2.918 - TechSmith Corporation)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (x32 Version: 2010.0122.858.16002 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2010.0122.858.16002 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2010.0122.858.16002 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2010.0122.858.16002 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0122.858.16002 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2010.0122.858.16002 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2010.0122.858.16002 - ATI) Hidden
CCC Help Czech (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Danish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Dutch (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help English (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Finnish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help French (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help German (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Greek (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Italian (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Japanese (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Korean (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Polish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Russian (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Spanish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Swedish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Thai (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Turkish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
ccc-core-static (x32 Version: 2010.0122.858.16002 - ATI) Hidden
ccc-utility64 (Version: 2010.0122.858.16002 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.05 - Piriform)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{132D27B8-C656-44BD-8C16-73C54EA8A85F}) (Version: - Microsoft)
Dream Day First Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version: - Oberon Media)
eSobi v2 (HKLM-x32\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden
Fingerprint Solution (x32 Version: 6.1.62.0 - Egis Technology Inc.) Hidden
FiveStories 4.5 (HKLM-x32\...\FiveStories 4.5) (Version: 4.5 - Five)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Galapago (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version: - Oberon Media)
Google Talk Plugin (HKLM-x32\...\{BA31F48A-C811-30B4-AD93-1986C7838442}) (Version: 3.3.3.8675 - Google)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
GTA:SanAndreas_CZ (HKLM-x32\...\GTA:SanAndreas_CZ) (Version: - )
Heroes of Hellas (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}) (Version: - Oberon Media)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Java 7 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417040FF}) (Version: 7.0.400 - Oracle)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 3.0.06 - Acer Inc.)
Malwarebytes Anti-Malware verze 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Merriam Websters Spell Jam (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}) (Version: - Oberon Media)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (CSY) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (Version: 1.0.30319 - Microsoft Corporation) Hidden
Microsoft Office 2010 pro studenty a domácnosti (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Access MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Klikni a spusť 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1011 - Microsoft Corporation)
Microsoft Office Klikni a spusť 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - ENU (HKLM-x32\...\Microsoft Visual C++ 2010 Express - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - ENU (x32 Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Minecraft1.7.2 (HKLM-x32\...\Minecraft1.7.2) (Version: - )
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (x32 Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyWinLocker (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.212.0 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
Need for Speed™ Carbon (HKLM-x32\...\{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}) (Version: - )
NTI Media Maker 8 (HKLM-x32\...\InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.12.6636 - NewTech Infosystems)
NTI Media Maker 8 (x32 Version: 8.0.12.6636 - NewTech Infosystems) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.1.15.109 - Electronic Arts, Inc.)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.8 - Pando Networks Inc.)
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Poker Pop (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111355427}) (Version: - Oberon Media)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5911 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7100.30093 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden
Seznam Software (HKCU\...\SeznamInstall) (Version: - Seznam.cz)
Shredder (Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Spin & Win (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110300453}) (Version: - Oberon Media)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.6.0 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.12 - TeamSpeak Systems GmbH)
TeamViewer 8 (HKLM-x32\...\TeamViewer
(Version: 8.0.16642 - TeamViewer)
The Sims 2 Noční život (HKLM-x32\...\{F7529650-B9DB-481B-0089-A2AC3C2821C1}) (Version: - )
The Sims™ 2 (HKLM-x32\...\{2C82E097-694E-44ea-A947-2750679469CF}) (Version: - Electronic Arts)
The Sims™ 2 Mazlíčci (HKLM-x32\...\{4817189D-1785-4627-A33C-39FD90919300}) (Version: - )
The Sims™ 2 Šťastnou cestu (HKLM-x32\...\{F248ADFA-64E0-4b03-8A83-059078BED6A0}) (Version: - Electronic Arts)
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
The Sims™ 3 Domácí mazlíčci (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
The Sims™ 3 Obludárium (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
The Sims™ 3 Tropický ráj (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts)
The Sims™ 4 Vytvořit Simíka – demo (HKLM-x32\...\{6908ED99-F02B-4E99-A202-3FAC99C510ED}) (Version: 1.0.233.190 - Electronic Arts Inc.)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft)
Update for Microsoft Excel 2010 (KB2837600) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4ACD847E-547D-493F-9A86-F73EAE1B5174}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{EAD7BEF9-B28C-425F-B2C5-538CB27EF013}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0405-0000-0000000FF1CE}_Office14.SingleImage_{D02AE7ED-5B00-4251-B7D5-F9590899EEEA}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0405-0000-0000000FF1CE}_Office14.SingleImage_{7F5448C9-AC6C-41E4-8C35-66288813014C}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version: - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version: - Microsoft)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3004 - Acer Incorporated)
WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.1200 - Broadcom Corporation)
Windows Driver Package - Broadcom Bluetooth (01/06/2010 6.2.0.9416) (HKLM\...\DFEA59689C004DFD0378309F3A583EA32D78A1B3) (Version: 01/06/2010 6.2.0.9416 - Broadcom)
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (HKLM\...\6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1) (Version: 07/30/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{1407B87C-36E3-4FC1-9051-D08B21E1096F}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
17-08-2014 10:44:15 ComboFix created restore point
17-08-2014 12:30:33 Windows Update
18-08-2014 10:34:08 Windows Update
18-08-2014 18:55:40 Instalační služba modulů systému Windows
18-08-2014 23:14:37 Nainstalováno: TuneUp Utilities 2013
19-08-2014 00:57:44 Odebráno: TuneUp Utilities 2013
19-08-2014 00:59:03 Odebráno: TuneUp Utilities Language Pack (cs-CZ)
19-08-2014 11:17:38 Operace obnovení
19-08-2014 17:47:12 After installing Advanced Uninstaller PRO
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-12-15 17:59 - 2014-08-16 13:26 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {049411FE-E6EB-4EC1-93DB-67ECA2885B6C} - System32\Tasks\{1EFA1193-FF41-4E33-A947-2AB043CA0BD5} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {04A25316-A7E3-4AD1-A7FE-3DA8EFAC27A7} - System32\Tasks\{961455CD-5A18-4CC6-BBD2-A70F909C5886} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {0DA7A4FE-21D1-4F5C-B763-7AB304340A4E} - System32\Tasks\{3A21B230-0228-41FE-A459-91E209A64F34} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {128E0812-E2C1-4C9B-B649-0CAB6B4D3F66} - System32\Tasks\{3FD5EC25-5720-4F9D-B72B-9C60CB963213} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {1ED35998-4B3F-4D0A-89A7-421DD62637A9} - System32\Tasks\{2B064755-2F66-4E6E-9EC2-10F344C056C6} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2014-05-08] (Skype Technologies S.A.)
Task: {2204ED5A-9326-401D-8A7E-9D4FB469C4C9} - System32\Tasks\{B943DA5F-8911-411C-9E79-3A55DD6E9831} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {28A319E2-7CBC-41E6-B617-6C2D303ECE0F} - System32\Tasks\Microsoft\Internet Explorer\Odstranit předchozí verze aplikace Internet Explorer => C:\Windows\SYSTEM32\ie4uinit.EXE [2014-07-25] (Microsoft Corporation)
Task: {2F7A11EB-CB27-4A9B-B786-F6C86971CA53} - System32\Tasks\{5D952BFC-D36A-4027-BDB5-252BAFB7ABFB} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {31E7B815-87A2-4233-A771-CA0A8002D5A0} - System32\Tasks\{9CEA451C-548F-47DC-97A2-A21A0096F162} => Iexplore.exe http://ui.skype.com/ui/0/5.5.59.124/cs/ ... d;disabled
Task: {324A1BE7-E96A-464F-BCE4-7C53285D7975} - System32\Tasks\{7F76E2A3-1D8F-4D1D-AA80-1A82E3190E2E} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {3727E691-FAA4-48F7-99DD-128A9622FA08} - System32\Tasks\Health-Check-deep => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
Task: {3ECF01DA-FF99-4314-B3B0-86847B262845} - System32\Tasks\{5A6C64F6-E81F-48F9-8269-12A24CD711A2} => Iexplore.exe http://ui.skype.com/ui/0/6.16.0.105/cs/ ... age=tsMain
Task: {3F256E1A-DBC4-4F26-8551-974267A9294C} - System32\Tasks\{F0AA7592-6547-462F-B709-4C67483F3462} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {48073E10-29B5-4666-9E27-6B17246961AE} - System32\Tasks\{4265EFC0-C1A8-42DD-804C-6C2B772383F6} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {4DAD7B44-C0DB-4392-8212-4E4F003B9DF8} - System32\Tasks\{8464279E-EB6A-4546-BD37-8BBB836A57B0} => Chrome.exe http://ui.skype.com/ui/0/5.10.0.116/cs/ ... =tsInstall
Task: {597C3A65-7EEA-4A9D-8737-FB602805B78A} - System32\Tasks\{56E01F54-8A76-4049-A59D-D21A1C16CF23} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {64E2E459-8E20-4DFA-8227-F475ADDC2737} - System32\Tasks\{9A0CBEB5-A5D9-48E4-BD06-1D4984DC013D} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {739003D7-FAB2-479E-AC3B-1818E77B0F38} - System32\Tasks\{6E2DA4C2-C1F5-4FC0-8E43-D0AFE2C90E34} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {739BD8AF-D707-4846-AB88-4D01EA629CEE} - System32\Tasks\{45AA8894-86D7-4A7A-A05E-16944A213D33} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {744A71FF-851A-40EC-9243-6EA384B91C4E} - System32\Tasks\{0538DC00-CD6C-4FD2-A131-2274B5930ABE} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {7B901A45-EFD2-4ACE-9867-CC5A701C9DE8} - System32\Tasks\{DDEA445E-27F0-4AB8-9365-3C7E339D2669} => C:\Program Files (x86)\Gameforge4D\4Story_CZ\PrePatch.exe [2013-02-19] (Zemi Interactive Inc.)
Task: {82952524-B253-4E22-A750-B3EF7E7E59E3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-10] (Adobe Systems Incorporated)
Task: {82BC4C61-D9A2-4A67-A05E-A35BC378E988} - System32\Tasks\{6028FDA1-CEDA-4B2B-B01F-75CAA9AA8B4A} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {8B08425F-1026-4CEC-B2D5-5C9D3719383C} - System32\Tasks\{EFAC367C-329D-4039-AD7F-97AB89F196AA} => C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSGuide.exe
Task: {9897B9C4-05DE-4654-9E51-2EC727EA14B3} - System32\Tasks\{83C4BAD6-66DD-47DA-9ED1-25E0FC4B280F} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {9B1F570B-6D1A-42C1-A1BA-E43194E04F36} - System32\Tasks\{93386816-BB58-48E1-9BED-C4D37357D891} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {9DE5596E-A188-4E70-A718-DF7B8A6A8B45} - System32\Tasks\{18D7F1E1-91E7-4C2D-A66B-EF0D32FCEDEB} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {A3F39681-AC2A-4123-9F1E-260FD170D504} - System32\Tasks\{4C36AAF6-1544-4753-8D90-1F9D3B241BA9} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {A5BB98A0-3513-427A-84B7-F6F2E3948A5A} - System32\Tasks\{D209B637-0FBF-482B-BF10-43F3014ADC16} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {ABF229DC-507D-4CA4-9C64-178FF8C77037} - System32\Tasks\{DC228F91-A700-4C70-AAD4-91649B2A3565} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-05-08] (Skype Technologies S.A.)
Task: {C8EB8684-C42C-4511-8275-5E84C5513014} - System32\Tasks\{D278483D-E45E-45FB-B1F3-510F60B8EF8D} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {C924593F-5CBA-4B56-AEE4-653B76689102} - System32\Tasks\{3FC2A78B-7598-4E79-BB8E-7A9123F4B555} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {CDFBBC53-7092-4434-B5E0-05E7A7EDAB67} - System32\Tasks\{43AC8ADD-4318-490D-8FBD-DE19574609C7} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {D2305E54-8605-4B9F-B0BE-26EC39C67746} - System32\Tasks\{E0B37505-0F98-4B02-9143-782D9AB518CD} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {D4670650-695B-4BCD-8D9C-BA9A86495985} - System32\Tasks\{51E6AE8A-17CE-4B77-B2DA-A5B85F98FF7C} => Iexplore.exe http://www.skype.com/go/downloading?sou ... tError=404
Task: {D85B3BEA-7D4B-494D-BB58-86F9C3A8DF90} - System32\Tasks\AdobeAAMUpdater-1.0-ACER-PC-Lenča => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-12-15] (Adobe Systems Incorporated)
Task: {D875BC16-A748-4898-A9C3-4DD7E6AE5752} - System32\Tasks\{5002AAE3-BBC6-49F1-80BC-E1AED756FA00} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {D9DDE423-4302-44C6-B4E7-A61C3323F236} - System32\Tasks\{C87EE926-C920-4341-9C4D-07291BC4E788} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {E8F21197-6A8F-4552-BA1F-9384836390BE} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3544951325-964006069-150248531-1003
Task: {F6F9A12C-CF14-4721-A149-2387FA735790} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Health-Check-deep.job => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
==================== Loaded Modules (whitelisted) =============
2010-01-13 02:15 - 2010-01-13 02:15 - 00173344 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2011-03-08 00:42 - 2010-06-10 04:54 - 00206208 _____ () C:\Windows\PLFSetI.exe
2010-01-08 00:42 - 2010-01-08 00:42 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2011-03-08 00:39 - 2011-03-08 00:39 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-08-19 20:04 - 2014-08-19 20:06 - 138427464 _____ () C:\Users\Lenča\Desktop\Kaspersky_Virus_Removal_Tool_11.0.1.1245_[26.05.2014].exe
2014-08-20 10:07 - 2014-05-26 08:46 - 00717080 _____ () C:\Users\LENA~1\AppData\Local\Temp\RarSFX0\1618266.exe
2010-06-29 00:20 - 2010-06-29 00:20 - 00465576 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2010-06-29 00:12 - 2010-06-29 00:12 - 01081600 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\Temp:1A60DE96
AlternateDataStreams: C:\ProgramData\Temp:1CE11B51
AlternateDataStreams: C:\ProgramData\Temp:CDFF58FE
AlternateDataStreams: C:\ProgramData\Temp:E1F04E8D
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
==================== Faulty Device Manager Devices =============
Name: iSafeNetFilter
Description: iSafeNetFilter
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: iSafeNetFilter
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Video WebCam
Description: Zobrazovací zařízení USB
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: usbvideo
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: AuthenTec Inc. AES1610
Description: AuthenTec Inc. AES1610
Class Guid: {53d29ef7-377c-4d14-864b-eb3a85769359}
Manufacturer: AuthenTec
Service: ATSwpWDF
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (08/20/2014 11:31:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IEXPLORE.EXE, verze: 11.0.9600.17239, časové razítko: 0x53d22946
Název chybujícího modulu: MSHTML.dll, verze: 11.0.9600.17239, časové razítko: 0x53d26078
Kód výjimky: 0xc0000005
Posun chyby: 0x0015062f
ID chybujícího procesu: 0x2eac
Čas spuštění chybující aplikace: 0xIEXPLORE.EXE0
Cesta k chybující aplikaci: IEXPLORE.EXE1
Cesta k chybujícímu modulu: IEXPLORE.EXE2
ID zprávy: IEXPLORE.EXE3
Error: (08/20/2014 08:56:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe.exe, verze: 1.0.0.532, časové razítko: 0x53518532
Název chybujícího modulu: psdprotect.dll, verze: 3.1.212.0, časové razítko: 0x4bfd066b
Kód výjimky: 0x40000015
Posun chyby: 0x0000b1f3
ID chybujícího procesu: 0x2a20
Čas spuštění chybující aplikace: 0xexplorer.exe.exe0
Cesta k chybující aplikaci: explorer.exe.exe1
Cesta k chybujícímu modulu: explorer.exe.exe2
ID zprávy: explorer.exe.exe3
Error: (08/20/2014 07:00:18 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Zálohování nebylo dokončeno, protože došlo k chybě při zápisu do umístění zálohy F:\. Chyba: Umístění zálohy nebylo nalezeno nebo není platné. Zkontrolujte nastavení zálohování a umístění zálohy. (0x81000006).
Error: (08/20/2014 00:50:42 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program 1618266.exe verze 11.0.0.1245 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 16f8
Čas spuštění: 01cfbbf7141996a7
Čas ukončení: 40
Cesta k aplikaci: C:\Users\LENA~1\AppData\Local\Temp\6856824\1618266.exe
ID hlášení: 047201a4-27f3-11e4-b695-206a8a2efae2
Error: (08/19/2014 11:43:11 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program 1618266.exe verze 11.0.0.1245 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1eb4
Čas spuštění: 01cfbbd8753f1883
Čas ukončení: 280
Cesta k aplikaci: C:\Users\LENA~1\AppData\Local\Temp\9540905\1618266.exe
ID hlášení: 437b34b9-27e9-11e4-b695-206a8a2efae2
Error: (08/19/2014 07:00:04 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Zálohování nebylo dokončeno, protože došlo k chybě při zápisu do umístění zálohy F:\. Chyba: Umístění zálohy nebylo nalezeno nebo není platné. Zkontrolujte nastavení zálohování a umístění zálohy. (0x81000006).
Error: (08/19/2014 03:48:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wmprph.exe, verze: 12.0.7600.16385, časové razítko: 0x4a5bd018
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521eaf24
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000004e4e4
ID chybujícího procesu: 0x1bcc
Čas spuštění chybující aplikace: 0xwmprph.exe0
Cesta k chybující aplikaci: wmprph.exe1
Cesta k chybujícímu modulu: wmprph.exe2
ID zprávy: wmprph.exe3
Error: (08/19/2014 03:17:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe.exe, verze: 1.0.0.532, časové razítko: 0x53518532
Název chybujícího modulu: psdprotect.dll, verze: 3.1.212.0, časové razítko: 0x4bfd066b
Kód výjimky: 0x40000015
Posun chyby: 0x0000b1f3
ID chybujícího procesu: 0x58c
Čas spuštění chybující aplikace: 0xexplorer.exe.exe0
Cesta k chybující aplikaci: explorer.exe.exe1
Cesta k chybujícímu modulu: explorer.exe.exe2
ID zprávy: explorer.exe.exe3
Error: (08/19/2014 02:48:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbam.exe, verze: 1.0.0.532, časové razítko: 0x53518532
Název chybujícího modulu: psdprotect.dll, verze: 3.1.212.0, časové razítko: 0x4bfd066b
Kód výjimky: 0x40000015
Posun chyby: 0x0000b1f3
ID chybujícího procesu: 0x2488
Čas spuštění chybující aplikace: 0xmbam.exe0
Cesta k chybující aplikaci: mbam.exe1
Cesta k chybujícímu modulu: mbam.exe2
ID zprávy: mbam.exe3
Error: (08/19/2014 02:23:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbam.exe, verze: 1.0.0.532, časové razítko: 0x53518532
Název chybujícího modulu: psdprotect.dll, verze: 3.1.212.0, časové razítko: 0x4bfd066b
Kód výjimky: 0x40000015
Posun chyby: 0x0000b1f3
ID chybujícího procesu: 0x16a8
Čas spuštění chybující aplikace: 0xmbam.exe0
Cesta k chybující aplikaci: mbam.exe1
Cesta k chybujícímu modulu: mbam.exe2
ID zprávy: mbam.exe3
System errors:
=============
Error: (08/19/2014 07:27:21 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
iSafeNetFilter
Error: (08/19/2014 07:16:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:01 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:01 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:02 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Microsoft Office Sessions:
=========================
Error: (08/20/2014 11:31:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.1723953d22946MSHTML.dll11.0.9600.1723953d26078c00000050015062f2eac01cfbcbc44325eebC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\system32\MSHTML.dll4b3f58b3-28b1-11e4-b695-206a8a2efae2
Error: (08/20/2014 08:56:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: explorer.exe.exe1.0.0.53253518532psdprotect.dll3.1.212.04bfd066b400000150000b1f32a2001cfbca83cdf9dc2C:\Program Files (x86)\Malwarebytes Anti-Malware\explorer.exe.exeC:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dlla72af0f6-289b-11e4-b695-206a8a2efae2
Error: (08/20/2014 07:00:18 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: F:\Umístění zálohy nebylo nalezeno nebo není platné. Zkontrolujte nastavení zálohování a umístění zálohy. (0x81000006)
Error: (08/20/2014 00:50:42 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: 1618266.exe11.0.0.124516f801cfbbf7141996a740C:\Users\LENA~1\AppData\Local\Temp\6856824\1618266.exe047201a4-27f3-11e4-b695-206a8a2efae2
Error: (08/19/2014 11:43:11 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: 1618266.exe11.0.0.12451eb401cfbbd8753f1883280C:\Users\LENA~1\AppData\Local\Temp\9540905\1618266.exe437b34b9-27e9-11e4-b695-206a8a2efae2
Error: (08/19/2014 07:00:04 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: F:\Umístění zálohy nebylo nalezeno nebo není platné. Zkontrolujte nastavení zálohování a umístění zálohy. (0x81000006)
Error: (08/19/2014 03:48:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wmprph.exe12.0.7600.163854a5bd018ntdll.dll6.1.7601.18247521eaf24c0000005000000000004e4e41bcc01cfbbb44d7ee397C:\Program Files\Windows Media Player\wmprph.exeC:\Windows\SYSTEM32\ntdll.dll8ce88fca-27a7-11e4-9c79-206a8a2efae2
Error: (08/19/2014 03:17:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: explorer.exe.exe1.0.0.53253518532psdprotect.dll3.1.212.04bfd066b400000150000b1f358c01cfbbad6f26e549C:\Program Files (x86)\Malwarebytes Anti-Malware\explorer.exe.exeC:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dll2d33488f-27a3-11e4-9c79-206a8a2efae2
Error: (08/19/2014 02:48:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532psdprotect.dll3.1.212.04bfd066b400000150000b1f3248801cfbba87b3d5e52C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dll20c20949-279f-11e4-9c79-206a8a2efae2
Error: (08/19/2014 02:23:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532psdprotect.dll3.1.212.04bfd066b400000150000b1f316a801cfbba5566bc1ecC:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dllb09ccce9-279b-11e4-9c79-206a8a2efae2
CodeIntegrity Errors:
===================================
Date: 2014-08-16 13:14:25.253
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 13:14:25.160
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 13:14:25.051
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 13:14:24.957
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 12:59:45.415
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 12:59:45.315
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 12:59:45.225
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 12:59:45.125
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 12:48:00.365
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 12:48:00.275
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU T6670 @ 2.20GHz
Percentage of memory in use: 68%
Total physical RAM: 4090.92 MB
Available physical RAM: 1297.38 MB
Total Pagefile: 8180.02 MB
Available Pagefile: 4884.71 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: (ACER) (Fixed) (Total:451.99 GB) (Free:241.12 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: C95FC95F)
Partition 1: (Not Active) - (Size=13.7 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=452 GB) - (Type=07 NTFS)
==================== End Of Log ============================
akiller- to jsem už také zkoušela, ale objeví se mi ta chybová hláška
Ran by Lenča at 2014-08-21 01:37:12
Running from C:\Users\Lenča\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG AntiVirus 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: AVG AntiVirus 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKCU\...\uTorrent) (Version: 3.3.2.30488 - BitTorrent Inc.)
4Story CZ 4.1.98 (HKLM-x32\...\4Story_CZ_is1) (Version: - )
4StoryEG (HKLM-x32\...\4StoryEG2.0) (Version: 2.0 - Eternia Games)
Acer Arcade Deluxe (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 3.0.7319 - CyberLink Corp.)
Acer Arcade Deluxe (x32 Version: 3.0.7319 - CyberLink Corp.) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.68 - NewTech Infosystems)
Acer Bio Protection (HKLM-x32\...\InstallShield_{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}) (Version: 6.1.62 - Egis Technology Inc.)
Acer Crystal Eye Webcam (HKLM-x32\...\{7760D94E-B1B5-40A0-9AA0-ABF942108755}) (Version: 5.2.19.3 - Suyin Optronics Corp)
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.05.3007 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Acer Incorporated)
Acer GameZone Console (HKLM-x32\...\{58F4D244-314F-4D26-B5EF-C28AB32E22CB}_is1) (Version: 6.1.0.9 - Oberon Media, Inc.)
Acer GridVista (HKLM-x32\...\GridVista) (Version: 3.03.1223 - Acer Inc.)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.03.3003 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.5.0715 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3001 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Airport Mania First Flight (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11505173}) (Version: - Oberon Media)
Amazonia (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}) (Version: - Oberon Media)
Amnesia (HKLM-x32\...\Amnesia) (Version: 1.2 - TopCD)
ATI Catalyst Install Manager (HKLM\...\{8B79B3A9-6E49-5FFB-2017-A822BBDC4992}) (Version: 3.0.758.0 - ATI Technologies, Inc.)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.1341 - DsNET Corp)
AuthenTec Fingerprint Software (HKLM-x32\...\{83F136F0-2AE5-420C-A0B6-A440AD42591C}) (Version: 8.5.4.28 - AuthenTec, Inc.)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4745 - AVG Technologies CZ, s.r.o.)
AVG 2014 (Version: 14.0.4007 - AVG Technologies CZ, s.r.o.) Hidden
AVG 2014 (Version: 14.0.4745 - AVG Technologies CZ, s.r.o.) Hidden
Backup Manager Basic (x32 Version: 2.0.0.68 - NewTech Infosystems) Hidden
Broadcom Gigabit NetLink Controller (HKLM\...\{A84DB02B-9C2B-4272-9D2D-A80E00A56513}) (Version: 14.2.4.2 - Broadcom Corporation)
Cake Mania (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111199750}) (Version: - Oberon Media)
Camtasia Studio 8 (HKLM-x32\...\{2EB28256-1D66-49F1-AF66-691BF9A27C79}) (Version: 8.0.2.918 - TechSmith Corporation)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (x32 Version: 2010.0122.858.16002 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2010.0122.858.16002 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2010.0122.858.16002 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2010.0122.858.16002 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0122.858.16002 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2010.0122.858.16002 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2010.0122.858.16002 - ATI) Hidden
CCC Help Czech (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Danish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Dutch (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help English (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Finnish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help French (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help German (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Greek (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Italian (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Japanese (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Korean (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Polish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Russian (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Spanish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Swedish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Thai (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
CCC Help Turkish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden
ccc-core-static (x32 Version: 2010.0122.858.16002 - ATI) Hidden
ccc-utility64 (Version: 2010.0122.858.16002 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.05 - Piriform)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{132D27B8-C656-44BD-8C16-73C54EA8A85F}) (Version: - Microsoft)
Dream Day First Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version: - Oberon Media)
eSobi v2 (HKLM-x32\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden
Fingerprint Solution (x32 Version: 6.1.62.0 - Egis Technology Inc.) Hidden
FiveStories 4.5 (HKLM-x32\...\FiveStories 4.5) (Version: 4.5 - Five)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Galapago (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version: - Oberon Media)
Google Talk Plugin (HKLM-x32\...\{BA31F48A-C811-30B4-AD93-1986C7838442}) (Version: 3.3.3.8675 - Google)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
GTA:SanAndreas_CZ (HKLM-x32\...\GTA:SanAndreas_CZ) (Version: - )
Heroes of Hellas (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}) (Version: - Oberon Media)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Java 7 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417040FF}) (Version: 7.0.400 - Oracle)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 3.0.06 - Acer Inc.)
Malwarebytes Anti-Malware verze 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Merriam Websters Spell Jam (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}) (Version: - Oberon Media)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (CSY) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (Version: 1.0.30319 - Microsoft Corporation) Hidden
Microsoft Office 2010 pro studenty a domácnosti (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Access MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Klikni a spusť 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1011 - Microsoft Corporation)
Microsoft Office Klikni a spusť 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - ENU (HKLM-x32\...\Microsoft Visual C++ 2010 Express - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - ENU (x32 Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Minecraft1.7.2 (HKLM-x32\...\Minecraft1.7.2) (Version: - )
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (x32 Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyWinLocker (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.212.0 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
Need for Speed™ Carbon (HKLM-x32\...\{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}) (Version: - )
NTI Media Maker 8 (HKLM-x32\...\InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.12.6636 - NewTech Infosystems)
NTI Media Maker 8 (x32 Version: 8.0.12.6636 - NewTech Infosystems) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.1.15.109 - Electronic Arts, Inc.)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.8 - Pando Networks Inc.)
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Poker Pop (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111355427}) (Version: - Oberon Media)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5911 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7100.30093 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden
Seznam Software (HKCU\...\SeznamInstall) (Version: - Seznam.cz)
Shredder (Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Spin & Win (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110300453}) (Version: - Oberon Media)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.6.0 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.12 - TeamSpeak Systems GmbH)
TeamViewer 8 (HKLM-x32\...\TeamViewer

The Sims 2 Noční život (HKLM-x32\...\{F7529650-B9DB-481B-0089-A2AC3C2821C1}) (Version: - )
The Sims™ 2 (HKLM-x32\...\{2C82E097-694E-44ea-A947-2750679469CF}) (Version: - Electronic Arts)
The Sims™ 2 Mazlíčci (HKLM-x32\...\{4817189D-1785-4627-A33C-39FD90919300}) (Version: - )
The Sims™ 2 Šťastnou cestu (HKLM-x32\...\{F248ADFA-64E0-4b03-8A83-059078BED6A0}) (Version: - Electronic Arts)
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
The Sims™ 3 Domácí mazlíčci (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
The Sims™ 3 Obludárium (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
The Sims™ 3 Tropický ráj (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts)
The Sims™ 4 Vytvořit Simíka – demo (HKLM-x32\...\{6908ED99-F02B-4E99-A202-3FAC99C510ED}) (Version: 1.0.233.190 - Electronic Arts Inc.)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft)
Update for Microsoft Excel 2010 (KB2837600) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4ACD847E-547D-493F-9A86-F73EAE1B5174}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{EAD7BEF9-B28C-425F-B2C5-538CB27EF013}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0405-0000-0000000FF1CE}_Office14.SingleImage_{D02AE7ED-5B00-4251-B7D5-F9590899EEEA}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0405-0000-0000000FF1CE}_Office14.SingleImage_{7F5448C9-AC6C-41E4-8C35-66288813014C}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version: - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version: - Microsoft)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3004 - Acer Incorporated)
WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.1200 - Broadcom Corporation)
Windows Driver Package - Broadcom Bluetooth (01/06/2010 6.2.0.9416) (HKLM\...\DFEA59689C004DFD0378309F3A583EA32D78A1B3) (Version: 01/06/2010 6.2.0.9416 - Broadcom)
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (HKLM\...\6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1) (Version: 07/30/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{1407B87C-36E3-4FC1-9051-D08B21E1096F}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
17-08-2014 10:44:15 ComboFix created restore point
17-08-2014 12:30:33 Windows Update
18-08-2014 10:34:08 Windows Update
18-08-2014 18:55:40 Instalační služba modulů systému Windows
18-08-2014 23:14:37 Nainstalováno: TuneUp Utilities 2013
19-08-2014 00:57:44 Odebráno: TuneUp Utilities 2013
19-08-2014 00:59:03 Odebráno: TuneUp Utilities Language Pack (cs-CZ)
19-08-2014 11:17:38 Operace obnovení
19-08-2014 17:47:12 After installing Advanced Uninstaller PRO
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-12-15 17:59 - 2014-08-16 13:26 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {049411FE-E6EB-4EC1-93DB-67ECA2885B6C} - System32\Tasks\{1EFA1193-FF41-4E33-A947-2AB043CA0BD5} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {04A25316-A7E3-4AD1-A7FE-3DA8EFAC27A7} - System32\Tasks\{961455CD-5A18-4CC6-BBD2-A70F909C5886} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {0DA7A4FE-21D1-4F5C-B763-7AB304340A4E} - System32\Tasks\{3A21B230-0228-41FE-A459-91E209A64F34} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {128E0812-E2C1-4C9B-B649-0CAB6B4D3F66} - System32\Tasks\{3FD5EC25-5720-4F9D-B72B-9C60CB963213} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {1ED35998-4B3F-4D0A-89A7-421DD62637A9} - System32\Tasks\{2B064755-2F66-4E6E-9EC2-10F344C056C6} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2014-05-08] (Skype Technologies S.A.)
Task: {2204ED5A-9326-401D-8A7E-9D4FB469C4C9} - System32\Tasks\{B943DA5F-8911-411C-9E79-3A55DD6E9831} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {28A319E2-7CBC-41E6-B617-6C2D303ECE0F} - System32\Tasks\Microsoft\Internet Explorer\Odstranit předchozí verze aplikace Internet Explorer => C:\Windows\SYSTEM32\ie4uinit.EXE [2014-07-25] (Microsoft Corporation)
Task: {2F7A11EB-CB27-4A9B-B786-F6C86971CA53} - System32\Tasks\{5D952BFC-D36A-4027-BDB5-252BAFB7ABFB} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {31E7B815-87A2-4233-A771-CA0A8002D5A0} - System32\Tasks\{9CEA451C-548F-47DC-97A2-A21A0096F162} => Iexplore.exe http://ui.skype.com/ui/0/5.5.59.124/cs/ ... d;disabled
Task: {324A1BE7-E96A-464F-BCE4-7C53285D7975} - System32\Tasks\{7F76E2A3-1D8F-4D1D-AA80-1A82E3190E2E} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {3727E691-FAA4-48F7-99DD-128A9622FA08} - System32\Tasks\Health-Check-deep => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
Task: {3ECF01DA-FF99-4314-B3B0-86847B262845} - System32\Tasks\{5A6C64F6-E81F-48F9-8269-12A24CD711A2} => Iexplore.exe http://ui.skype.com/ui/0/6.16.0.105/cs/ ... age=tsMain
Task: {3F256E1A-DBC4-4F26-8551-974267A9294C} - System32\Tasks\{F0AA7592-6547-462F-B709-4C67483F3462} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {48073E10-29B5-4666-9E27-6B17246961AE} - System32\Tasks\{4265EFC0-C1A8-42DD-804C-6C2B772383F6} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {4DAD7B44-C0DB-4392-8212-4E4F003B9DF8} - System32\Tasks\{8464279E-EB6A-4546-BD37-8BBB836A57B0} => Chrome.exe http://ui.skype.com/ui/0/5.10.0.116/cs/ ... =tsInstall
Task: {597C3A65-7EEA-4A9D-8737-FB602805B78A} - System32\Tasks\{56E01F54-8A76-4049-A59D-D21A1C16CF23} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {64E2E459-8E20-4DFA-8227-F475ADDC2737} - System32\Tasks\{9A0CBEB5-A5D9-48E4-BD06-1D4984DC013D} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {739003D7-FAB2-479E-AC3B-1818E77B0F38} - System32\Tasks\{6E2DA4C2-C1F5-4FC0-8E43-D0AFE2C90E34} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {739BD8AF-D707-4846-AB88-4D01EA629CEE} - System32\Tasks\{45AA8894-86D7-4A7A-A05E-16944A213D33} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {744A71FF-851A-40EC-9243-6EA384B91C4E} - System32\Tasks\{0538DC00-CD6C-4FD2-A131-2274B5930ABE} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {7B901A45-EFD2-4ACE-9867-CC5A701C9DE8} - System32\Tasks\{DDEA445E-27F0-4AB8-9365-3C7E339D2669} => C:\Program Files (x86)\Gameforge4D\4Story_CZ\PrePatch.exe [2013-02-19] (Zemi Interactive Inc.)
Task: {82952524-B253-4E22-A750-B3EF7E7E59E3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-10] (Adobe Systems Incorporated)
Task: {82BC4C61-D9A2-4A67-A05E-A35BC378E988} - System32\Tasks\{6028FDA1-CEDA-4B2B-B01F-75CAA9AA8B4A} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {8B08425F-1026-4CEC-B2D5-5C9D3719383C} - System32\Tasks\{EFAC367C-329D-4039-AD7F-97AB89F196AA} => C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSGuide.exe
Task: {9897B9C4-05DE-4654-9E51-2EC727EA14B3} - System32\Tasks\{83C4BAD6-66DD-47DA-9ED1-25E0FC4B280F} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {9B1F570B-6D1A-42C1-A1BA-E43194E04F36} - System32\Tasks\{93386816-BB58-48E1-9BED-C4D37357D891} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {9DE5596E-A188-4E70-A718-DF7B8A6A8B45} - System32\Tasks\{18D7F1E1-91E7-4C2D-A66B-EF0D32FCEDEB} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {A3F39681-AC2A-4123-9F1E-260FD170D504} - System32\Tasks\{4C36AAF6-1544-4753-8D90-1F9D3B241BA9} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {A5BB98A0-3513-427A-84B7-F6F2E3948A5A} - System32\Tasks\{D209B637-0FBF-482B-BF10-43F3014ADC16} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {ABF229DC-507D-4CA4-9C64-178FF8C77037} - System32\Tasks\{DC228F91-A700-4C70-AAD4-91649B2A3565} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-05-08] (Skype Technologies S.A.)
Task: {C8EB8684-C42C-4511-8275-5E84C5513014} - System32\Tasks\{D278483D-E45E-45FB-B1F3-510F60B8EF8D} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {C924593F-5CBA-4B56-AEE4-653B76689102} - System32\Tasks\{3FC2A78B-7598-4E79-BB8E-7A9123F4B555} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {CDFBBC53-7092-4434-B5E0-05E7A7EDAB67} - System32\Tasks\{43AC8ADD-4318-490D-8FBD-DE19574609C7} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {D2305E54-8605-4B9F-B0BE-26EC39C67746} - System32\Tasks\{E0B37505-0F98-4B02-9143-782D9AB518CD} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {D4670650-695B-4BCD-8D9C-BA9A86495985} - System32\Tasks\{51E6AE8A-17CE-4B77-B2DA-A5B85F98FF7C} => Iexplore.exe http://www.skype.com/go/downloading?sou ... tError=404
Task: {D85B3BEA-7D4B-494D-BB58-86F9C3A8DF90} - System32\Tasks\AdobeAAMUpdater-1.0-ACER-PC-Lenča => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-12-15] (Adobe Systems Incorporated)
Task: {D875BC16-A748-4898-A9C3-4DD7E6AE5752} - System32\Tasks\{5002AAE3-BBC6-49F1-80BC-E1AED756FA00} => C:\Users\Lenča\Documents\4StoryGSP20130308_Downloader.exe
Task: {D9DDE423-4302-44C6-B4E7-A61C3323F236} - System32\Tasks\{C87EE926-C920-4341-9C4D-07291BC4E788} => C:\Program Files (x86)\Unlocker\Unlocker.exe
Task: {E8F21197-6A8F-4552-BA1F-9384836390BE} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3544951325-964006069-150248531-1003
Task: {F6F9A12C-CF14-4721-A149-2387FA735790} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Health-Check-deep.job => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
==================== Loaded Modules (whitelisted) =============
2010-01-13 02:15 - 2010-01-13 02:15 - 00173344 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2011-03-08 00:42 - 2010-06-10 04:54 - 00206208 _____ () C:\Windows\PLFSetI.exe
2010-01-08 00:42 - 2010-01-08 00:42 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2011-03-08 00:39 - 2011-03-08 00:39 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-08-19 20:04 - 2014-08-19 20:06 - 138427464 _____ () C:\Users\Lenča\Desktop\Kaspersky_Virus_Removal_Tool_11.0.1.1245_[26.05.2014].exe
2014-08-20 10:07 - 2014-05-26 08:46 - 00717080 _____ () C:\Users\LENA~1\AppData\Local\Temp\RarSFX0\1618266.exe
2010-06-29 00:20 - 2010-06-29 00:20 - 00465576 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2010-06-29 00:12 - 2010-06-29 00:12 - 01081600 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\Temp:1A60DE96
AlternateDataStreams: C:\ProgramData\Temp:1CE11B51
AlternateDataStreams: C:\ProgramData\Temp:CDFF58FE
AlternateDataStreams: C:\ProgramData\Temp:E1F04E8D
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
==================== Faulty Device Manager Devices =============
Name: iSafeNetFilter
Description: iSafeNetFilter
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: iSafeNetFilter
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Video WebCam
Description: Zobrazovací zařízení USB
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: usbvideo
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: AuthenTec Inc. AES1610
Description: AuthenTec Inc. AES1610
Class Guid: {53d29ef7-377c-4d14-864b-eb3a85769359}
Manufacturer: AuthenTec
Service: ATSwpWDF
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (08/20/2014 11:31:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IEXPLORE.EXE, verze: 11.0.9600.17239, časové razítko: 0x53d22946
Název chybujícího modulu: MSHTML.dll, verze: 11.0.9600.17239, časové razítko: 0x53d26078
Kód výjimky: 0xc0000005
Posun chyby: 0x0015062f
ID chybujícího procesu: 0x2eac
Čas spuštění chybující aplikace: 0xIEXPLORE.EXE0
Cesta k chybující aplikaci: IEXPLORE.EXE1
Cesta k chybujícímu modulu: IEXPLORE.EXE2
ID zprávy: IEXPLORE.EXE3
Error: (08/20/2014 08:56:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe.exe, verze: 1.0.0.532, časové razítko: 0x53518532
Název chybujícího modulu: psdprotect.dll, verze: 3.1.212.0, časové razítko: 0x4bfd066b
Kód výjimky: 0x40000015
Posun chyby: 0x0000b1f3
ID chybujícího procesu: 0x2a20
Čas spuštění chybující aplikace: 0xexplorer.exe.exe0
Cesta k chybující aplikaci: explorer.exe.exe1
Cesta k chybujícímu modulu: explorer.exe.exe2
ID zprávy: explorer.exe.exe3
Error: (08/20/2014 07:00:18 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Zálohování nebylo dokončeno, protože došlo k chybě při zápisu do umístění zálohy F:\. Chyba: Umístění zálohy nebylo nalezeno nebo není platné. Zkontrolujte nastavení zálohování a umístění zálohy. (0x81000006).
Error: (08/20/2014 00:50:42 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program 1618266.exe verze 11.0.0.1245 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 16f8
Čas spuštění: 01cfbbf7141996a7
Čas ukončení: 40
Cesta k aplikaci: C:\Users\LENA~1\AppData\Local\Temp\6856824\1618266.exe
ID hlášení: 047201a4-27f3-11e4-b695-206a8a2efae2
Error: (08/19/2014 11:43:11 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program 1618266.exe verze 11.0.0.1245 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1eb4
Čas spuštění: 01cfbbd8753f1883
Čas ukončení: 280
Cesta k aplikaci: C:\Users\LENA~1\AppData\Local\Temp\9540905\1618266.exe
ID hlášení: 437b34b9-27e9-11e4-b695-206a8a2efae2
Error: (08/19/2014 07:00:04 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Zálohování nebylo dokončeno, protože došlo k chybě při zápisu do umístění zálohy F:\. Chyba: Umístění zálohy nebylo nalezeno nebo není platné. Zkontrolujte nastavení zálohování a umístění zálohy. (0x81000006).
Error: (08/19/2014 03:48:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wmprph.exe, verze: 12.0.7600.16385, časové razítko: 0x4a5bd018
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521eaf24
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000004e4e4
ID chybujícího procesu: 0x1bcc
Čas spuštění chybující aplikace: 0xwmprph.exe0
Cesta k chybující aplikaci: wmprph.exe1
Cesta k chybujícímu modulu: wmprph.exe2
ID zprávy: wmprph.exe3
Error: (08/19/2014 03:17:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe.exe, verze: 1.0.0.532, časové razítko: 0x53518532
Název chybujícího modulu: psdprotect.dll, verze: 3.1.212.0, časové razítko: 0x4bfd066b
Kód výjimky: 0x40000015
Posun chyby: 0x0000b1f3
ID chybujícího procesu: 0x58c
Čas spuštění chybující aplikace: 0xexplorer.exe.exe0
Cesta k chybující aplikaci: explorer.exe.exe1
Cesta k chybujícímu modulu: explorer.exe.exe2
ID zprávy: explorer.exe.exe3
Error: (08/19/2014 02:48:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbam.exe, verze: 1.0.0.532, časové razítko: 0x53518532
Název chybujícího modulu: psdprotect.dll, verze: 3.1.212.0, časové razítko: 0x4bfd066b
Kód výjimky: 0x40000015
Posun chyby: 0x0000b1f3
ID chybujícího procesu: 0x2488
Čas spuštění chybující aplikace: 0xmbam.exe0
Cesta k chybující aplikaci: mbam.exe1
Cesta k chybujícímu modulu: mbam.exe2
ID zprávy: mbam.exe3
Error: (08/19/2014 02:23:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbam.exe, verze: 1.0.0.532, časové razítko: 0x53518532
Název chybujícího modulu: psdprotect.dll, verze: 3.1.212.0, časové razítko: 0x4bfd066b
Kód výjimky: 0x40000015
Posun chyby: 0x0000b1f3
ID chybujícího procesu: 0x16a8
Čas spuštění chybující aplikace: 0xmbam.exe0
Cesta k chybující aplikaci: mbam.exe1
Cesta k chybujícímu modulu: mbam.exe2
ID zprávy: mbam.exe3
System errors:
=============
Error: (08/19/2014 07:27:21 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
iSafeNetFilter
Error: (08/19/2014 07:16:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:01 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:01 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068
Error: (08/19/2014 07:16:02 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Microsoft Office Sessions:
=========================
Error: (08/20/2014 11:31:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.1723953d22946MSHTML.dll11.0.9600.1723953d26078c00000050015062f2eac01cfbcbc44325eebC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\system32\MSHTML.dll4b3f58b3-28b1-11e4-b695-206a8a2efae2
Error: (08/20/2014 08:56:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: explorer.exe.exe1.0.0.53253518532psdprotect.dll3.1.212.04bfd066b400000150000b1f32a2001cfbca83cdf9dc2C:\Program Files (x86)\Malwarebytes Anti-Malware\explorer.exe.exeC:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dlla72af0f6-289b-11e4-b695-206a8a2efae2
Error: (08/20/2014 07:00:18 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: F:\Umístění zálohy nebylo nalezeno nebo není platné. Zkontrolujte nastavení zálohování a umístění zálohy. (0x81000006)
Error: (08/20/2014 00:50:42 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: 1618266.exe11.0.0.124516f801cfbbf7141996a740C:\Users\LENA~1\AppData\Local\Temp\6856824\1618266.exe047201a4-27f3-11e4-b695-206a8a2efae2
Error: (08/19/2014 11:43:11 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: 1618266.exe11.0.0.12451eb401cfbbd8753f1883280C:\Users\LENA~1\AppData\Local\Temp\9540905\1618266.exe437b34b9-27e9-11e4-b695-206a8a2efae2
Error: (08/19/2014 07:00:04 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: F:\Umístění zálohy nebylo nalezeno nebo není platné. Zkontrolujte nastavení zálohování a umístění zálohy. (0x81000006)
Error: (08/19/2014 03:48:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wmprph.exe12.0.7600.163854a5bd018ntdll.dll6.1.7601.18247521eaf24c0000005000000000004e4e41bcc01cfbbb44d7ee397C:\Program Files\Windows Media Player\wmprph.exeC:\Windows\SYSTEM32\ntdll.dll8ce88fca-27a7-11e4-9c79-206a8a2efae2
Error: (08/19/2014 03:17:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: explorer.exe.exe1.0.0.53253518532psdprotect.dll3.1.212.04bfd066b400000150000b1f358c01cfbbad6f26e549C:\Program Files (x86)\Malwarebytes Anti-Malware\explorer.exe.exeC:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dll2d33488f-27a3-11e4-9c79-206a8a2efae2
Error: (08/19/2014 02:48:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532psdprotect.dll3.1.212.04bfd066b400000150000b1f3248801cfbba87b3d5e52C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dll20c20949-279f-11e4-9c79-206a8a2efae2
Error: (08/19/2014 02:23:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532psdprotect.dll3.1.212.04bfd066b400000150000b1f316a801cfbba5566bc1ecC:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dllb09ccce9-279b-11e4-9c79-206a8a2efae2
CodeIntegrity Errors:
===================================
Date: 2014-08-16 13:14:25.253
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 13:14:25.160
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 13:14:25.051
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 13:14:24.957
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 12:59:45.415
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 12:59:45.315
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 12:59:45.225
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 12:59:45.125
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 12:48:00.365
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-08-16 12:48:00.275
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU T6670 @ 2.20GHz
Percentage of memory in use: 68%
Total physical RAM: 4090.92 MB
Available physical RAM: 1297.38 MB
Total Pagefile: 8180.02 MB
Available Pagefile: 4884.71 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: (ACER) (Fixed) (Total:451.99 GB) (Free:241.12 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: C95FC95F)
Partition 1: (Not Active) - (Size=13.7 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=452 GB) - (Type=07 NTFS)
==================== End Of Log ============================
akiller- to jsem už také zkoušela, ale objeví se mi ta chybová hláška
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu+problém se spuštěním
odinstaluj:
Kaspersky AVP Tool.
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Kaspersky AVP Tool.
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
Kód: Vybrat vše
HKLM-x32\...\RunOnce: [GrpConv] => grpconv -o
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKCU - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
C:\Windows\System32\Tasks\{F935550C-6E8C-49E1-BB10-B33B0D0506D3}
(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu+problém se spuštěním
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 17-08-2014 01
Ran by Lenča at 2014-08-21 10:53:03 Run:1
Running from C:\Users\Lenča\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
HKLM-x32\...\RunOnce: [GrpConv] => grpconv -o
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKCU - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
C:\Windows\System32\Tasks\{F935550C-6E8C-49E1-BB10-B33B0D0506D3}
*****************
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\GrpConv => value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key deleted successfully.
"HKCR\CLSID\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" => Key deleted successfully.
"HKCR\CLSID\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key deleted successfully.
"HKCR\CLSID\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
"HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => value deleted successfully.
"HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value deleted successfully.
"HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => Key not found.
C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} => Moved successfully.
C:\Windows\System32\Tasks\{F935550C-6E8C-49E1-BB10-B33B0D0506D3} => Moved successfully.
==== End of Fixlog ====
Ran by Lenča at 2014-08-21 10:53:03 Run:1
Running from C:\Users\Lenča\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
HKLM-x32\...\RunOnce: [GrpConv] => grpconv -o
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKCU - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
C:\Windows\System32\Tasks\{F935550C-6E8C-49E1-BB10-B33B0D0506D3}
*****************
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\GrpConv => value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key deleted successfully.
"HKCR\CLSID\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" => Key deleted successfully.
"HKCR\CLSID\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key deleted successfully.
"HKCR\CLSID\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
"HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => value deleted successfully.
"HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value deleted successfully.
"HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => Key not found.
C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} => Moved successfully.
C:\Windows\System32\Tasks\{F935550C-6E8C-49E1-BB10-B33B0D0506D3} => Moved successfully.
==== End of Fixlog ====
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu+problém se spuštěním
Viry v tom nebudou ,
Stáhni si zde DelFix
ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt
co problémy?
Stáhni si zde DelFix
ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt
co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu+problém se spuštěním
# DelFix v10.8 - Logfile created 21/08/2014 at 19:24:05
# Updated 29/07/2014 by Xplode
# Username : Lenča - ACER-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
~ Removing disinfection tools ...
Deleted : C:\FRST
Deleted : C:\AdwCleaner[R10].txt
Deleted : C:\AdwCleaner[R9].txt
Deleted : C:\AdwCleaner[S12].txt
Deleted : C:\Users\Lenča\Desktop\Addition.txt
Deleted : C:\Users\Lenča\Desktop\adwcleaner.exe
Deleted : C:\Users\Lenča\Desktop\adwcleaner.txt
Deleted : C:\Users\Lenča\Desktop\Fixlog.txt
Deleted : C:\Users\Lenča\Desktop\FRST.txt
Deleted : C:\Users\Lenča\Desktop\FRST64.exe
Deleted : C:\Users\Lenča\Desktop\JRT.exe
Deleted : C:\Users\Lenča\Desktop\JRT.txt
Deleted : C:\Users\Lenča\Desktop\HiJackThis.exe
Deleted : C:\Users\Lenča\Desktop\hijackthis3
Deleted : C:\Users\Lenča\Desktop\log2.txt
Deleted : C:\Users\Lenča\Desktop\loggggg.txt
Deleted : C:\Users\Lenča\Desktop\MBR.dat
Deleted : C:\Users\Lenča\Desktop\RogueKillerX64.exe
Deleted : C:\Users\Lenča\Desktop\TFC.exe
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR
~ Cleaning system restore ...
Deleted : RP #460 [ComboFix created restore point | 08/17/2014 10:44:15]
Deleted : RP #461 [Windows Update | 08/17/2014 12:30:33]
Deleted : RP #462 [Windows Update | 08/18/2014 10:34:08]
Deleted : RP #463 [Instalační služba modulů systému Windows | 08/18/2014 18:55:40]
Deleted : RP #464 [Nainstalováno: TuneUp Utilities 2013 | 08/18/2014 23:14:37]
Deleted : RP #465 [Odebráno: TuneUp Utilities 2013 | 08/19/2014 00:57:44]
Deleted : RP #466 [Odebráno: TuneUp Utilities Language Pack (cs-CZ) | 08/19/2014 00:59:03]
Deleted : RP #467 [Operace obnovení | 08/19/2014 11:17:38]
Deleted : RP #468 [After installing Advanced Uninstaller PRO | 08/19/2014 17:47:12]
Deleted : RP #469 [Windows Update | 08/21/2014 08:54:46]
New restore point created !
########## - EOF - ##########
Pokud v tom tedy nejsou viry, pak bych už měla jen jeden problém a to ten se Správcem spuštění systému windows, který mi při startu pc nabídne výběr OS Windows 7 ( je tam opravdu napsáno jen toto) a pod tím nástroje Windows Memory Diagnostic
# Updated 29/07/2014 by Xplode
# Username : Lenča - ACER-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
~ Removing disinfection tools ...
Deleted : C:\FRST
Deleted : C:\AdwCleaner[R10].txt
Deleted : C:\AdwCleaner[R9].txt
Deleted : C:\AdwCleaner[S12].txt
Deleted : C:\Users\Lenča\Desktop\Addition.txt
Deleted : C:\Users\Lenča\Desktop\adwcleaner.exe
Deleted : C:\Users\Lenča\Desktop\adwcleaner.txt
Deleted : C:\Users\Lenča\Desktop\Fixlog.txt
Deleted : C:\Users\Lenča\Desktop\FRST.txt
Deleted : C:\Users\Lenča\Desktop\FRST64.exe
Deleted : C:\Users\Lenča\Desktop\JRT.exe
Deleted : C:\Users\Lenča\Desktop\JRT.txt
Deleted : C:\Users\Lenča\Desktop\HiJackThis.exe
Deleted : C:\Users\Lenča\Desktop\hijackthis3
Deleted : C:\Users\Lenča\Desktop\log2.txt
Deleted : C:\Users\Lenča\Desktop\loggggg.txt
Deleted : C:\Users\Lenča\Desktop\MBR.dat
Deleted : C:\Users\Lenča\Desktop\RogueKillerX64.exe
Deleted : C:\Users\Lenča\Desktop\TFC.exe
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR
~ Cleaning system restore ...
Deleted : RP #460 [ComboFix created restore point | 08/17/2014 10:44:15]
Deleted : RP #461 [Windows Update | 08/17/2014 12:30:33]
Deleted : RP #462 [Windows Update | 08/18/2014 10:34:08]
Deleted : RP #463 [Instalační služba modulů systému Windows | 08/18/2014 18:55:40]
Deleted : RP #464 [Nainstalováno: TuneUp Utilities 2013 | 08/18/2014 23:14:37]
Deleted : RP #465 [Odebráno: TuneUp Utilities 2013 | 08/19/2014 00:57:44]
Deleted : RP #466 [Odebráno: TuneUp Utilities Language Pack (cs-CZ) | 08/19/2014 00:59:03]
Deleted : RP #467 [Operace obnovení | 08/19/2014 11:17:38]
Deleted : RP #468 [After installing Advanced Uninstaller PRO | 08/19/2014 17:47:12]
Deleted : RP #469 [Windows Update | 08/21/2014 08:54:46]
New restore point created !
########## - EOF - ##########
Pokud v tom tedy nejsou viry, pak bych už měla jen jeden problém a to ten se Správcem spuštění systému windows, který mi při startu pc nabídne výběr OS Windows 7 ( je tam opravdu napsáno jen toto) a pod tím nástroje Windows Memory Diagnostic
- Orcus
- člen Security týmu
-
Elite Level 10.5
- Příspěvky: 10645
- Registrován: duben 10
- Bydliště: Okolo rostou 3 růže =o)
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu+problém se spuštěním
Něco se řešilo zde:
viewtopic.php?f=46&t=100556
Pokud nemáš zasviněnou klávesnici, zde označ jako vyřešené a založ prosím téma ve Windows sekci.
viewtopic.php?f=46&t=100556
Pokud nemáš zasviněnou klávesnici, zde označ jako vyřešené a založ prosím téma ve Windows sekci.
Láska hřeje, ale uhlí je uhlí.
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.

Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 106 hostů