Logfile of random's system information tool 1.10 (written by random/random)
Run by Vojtěch at 2015-02-19 20:28:02
Microsoft Windows 8.1 Pro N
System drive C: has 160 GB (51%) free of 311 GB
Total RAM: 3070 MB (43% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:28:18, on 19. 2. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Wireshark\Wireshark.exe
C:\Program Files (x86)\Wireshark\dumpcap.exe
C:\Program Files\Microsoft Office 15\root\office15\WINWORD.EXE
C:\Program Files\trend micro\Vojtěch.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [PSUAMain] "C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" /LaunchSysTray
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [BitTorrent Bleep] C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bleep\Bleep.appref-ms
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{F72ECEF9-5DCC-45BD-92B5-34B7261C3DCA}: Domain = vsb.cz
O17 - HKLM\System\CCS\Services\Tcpip\..\{F72ECEF9-5DCC-45BD-92B5-34B7261C3DCA}: NameServer = 158.196.149.9,158.196.162.8
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000 (c2wts) - Unknown owner - C:\Program Files (x86)\Windows Identity Foundation\v3.5\c2wtshost.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: ShrewSoft IKE Daemon (iked) - Unknown owner - C:\Program Files\ShrewSoft\VPN Client\iked.exe
O23 - Service: ShrewSoft IPSEC Daemon (ipsecd) - Unknown owner - C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Panda Protection Service (NanoServiceMain) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Panda Devices Agent (PandaAgent) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
O23 - Service: Panda Product Service (PSUAService) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TightVNC Server (tvnserver) - GlavSoft LLC. - C:\Program Files\TightVNC\tvnserver.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe
--
End of file - 10782 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
dashost.exe {fbe47d19-a8d0-49ec-a8f64bda3667f99d}
"C:\Program Files\ShrewSoft\VPN Client\iked.exe" -service
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe"
"C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe" -service
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe"
"C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe"
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Program Files\TightVNC\tvnserver.exe" -service
C:\Windows\SysWOW64\vmnat.exe
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe"
"C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe"
C:\Windows\SysWOW64\vmnetdhcp.exe
"C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
wimserv.exe 96d88320-be81-4d79-83e4-02f4e652263a
C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
taskhostex.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\skydrive.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" /LaunchSysTray
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Wireshark\Wireshark.exe"
"C:\Windows\system32\cmd.exe"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Wireshark\dumpcap" -n -i \Device\NPF_{7856DAEF-70F8-4307-938E-1DC959C7F3FC} -y EN10MB -Z 4988
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\Microsoft Office 15\root\office15\WINWORD.EXE"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe33_ Global\UsGthrCtrlFltPipeMssGthrPipe33 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
"C:\Users\Vojtěch\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o preventivku
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o preventivku
Zdravim 
Log neni cely... vlozte i jeho zbytek.
Log neni cely... vlozte i jeho zbytek.Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Prosím o preventivku
Omlouvam se, prehlidl jsem...
Zbytek logu:
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe_x\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
npPDFXCviewNPPlugin.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-01-13 218784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-13 2334928]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-01-13 153248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-11-08 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-01-13 1729744]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-11-08 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-08-19 1796056]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]
"tvncontrol"=C:\Program Files\TightVNC\tvnserver.exe [2013-07-19 2179056]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2015-01-15 23308256]
"BitTorrent Bleep"=C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bleep\Bleep.appref-ms [2014-11-16 290]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
"PSUAMain"=C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [2014-10-16 37624]
"ZoneAlarm"=C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [2014-08-13 137352]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NanoServiceMain]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PSUAService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-02-19 20:28:03 ----D---- C:\Program Files\trend micro
2015-02-19 20:28:02 ----D---- C:\rsit
2015-02-19 19:39:24 ----D---- C:\Program Files (x86)\WinPcap
2015-02-19 19:38:47 ----D---- C:\Program Files (x86)\Wireshark
2015-02-16 12:33:59 ----D---- C:\Program Files\Sweet Home 3D
2015-02-13 09:42:49 ----A---- C:\Windows\system32\aspnet_counters.dll
2015-02-13 09:42:46 ----A---- C:\Windows\SYSWOW64\aspnet_counters.dll
2015-02-13 07:55:36 ----A---- C:\Windows\system32\jscript9.dll
2015-02-13 07:55:35 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-02-11 22:40:38 ----D---- C:\Program Files (x86)\ImageWriter
2015-02-11 15:16:38 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-02-11 15:16:38 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-11 15:16:38 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-11 15:16:38 ----A---- C:\Windows\system32\certcli.dll
2015-02-11 15:16:37 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-02-11 15:16:37 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-02-11 15:16:37 ----A---- C:\Windows\system32\msaudite.dll
2015-02-11 15:16:37 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-11 15:16:37 ----A---- C:\Windows\system32\adtschema.dll
2015-02-11 15:16:15 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-02-11 15:16:15 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-11 15:16:10 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-02-11 15:16:10 ----A---- C:\Windows\system32\scesrv.dll
2015-02-11 15:16:06 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-02-11 15:16:06 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-11 15:16:05 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-02-11 15:16:05 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-11 15:16:04 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-02-11 15:16:04 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-02-11 15:16:04 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-02-11 15:16:04 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-02-11 15:16:04 ----A---- C:\Windows\system32\wow64cpu.dll
2015-02-11 15:16:04 ----A---- C:\Windows\system32\wow64.dll
2015-02-11 15:16:04 ----A---- C:\Windows\system32\ntvdm64.dll
2015-02-11 15:16:04 ----A---- C:\Windows\system32\ntdll.dll
2015-02-11 15:16:03 ----A---- C:\Windows\SYSWOW64\user.exe
2015-02-11 15:15:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-02-11 15:15:35 ----A---- C:\Windows\system32\schannel.dll
2015-02-11 15:15:29 ----A---- C:\Windows\system32\mshtml.dll
2015-02-11 15:15:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-02-11 15:15:25 ----A---- C:\Windows\system32\ieframe.dll
2015-02-11 15:15:24 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-02-11 15:15:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-02-11 15:15:22 ----A---- C:\Windows\system32\wininet.dll
2015-02-11 15:15:22 ----A---- C:\Windows\system32\vbscript.dll
2015-02-11 15:15:22 ----A---- C:\Windows\system32\jscript.dll
2015-02-11 15:15:22 ----A---- C:\Windows\system32\iertutil.dll
2015-02-11 15:15:21 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-02-11 15:15:21 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-02-11 15:15:21 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-02-11 15:15:20 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-02-11 15:15:20 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-02-11 15:15:19 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-11 15:15:19 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-11 15:15:19 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-11 15:15:18 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-02-11 15:15:18 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-02-11 15:15:18 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-02-11 15:15:18 ----A---- C:\Windows\system32\webcheck.dll
2015-02-11 15:15:18 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-11 15:15:18 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-11 15:15:18 ----A---- C:\Windows\system32\actxprxy.dll
2015-02-11 15:15:17 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-02-11 15:15:17 ----A---- C:\Windows\system32\urlmon.dll
2015-02-11 15:15:17 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-11 15:15:16 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-02-11 15:15:16 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-02-11 15:15:16 ----A---- C:\Windows\system32\inetcomm.dll
2015-02-11 15:15:16 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-11 15:15:15 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-02-11 15:14:30 ----A---- C:\Windows\system32\sppobjs.dll
2015-02-11 15:14:23 ----A---- C:\Windows\system32\invagent.dll
2015-02-11 15:14:23 ----A---- C:\Windows\system32\generaltel.dll
2015-02-11 15:14:23 ----A---- C:\Windows\system32\devinv.dll
2015-02-11 15:14:23 ----A---- C:\Windows\system32\appraiser.dll
2015-02-11 15:14:23 ----A---- C:\Windows\system32\aeinv.dll
2015-02-11 15:14:22 ----A---- C:\Windows\system32\aepdu.dll
2015-02-11 15:14:17 ----A---- C:\Windows\system32\win32k.sys
2015-01-27 09:22:36 ----A---- C:\Windows\system32\wups2.dll
2015-01-27 09:22:36 ----A---- C:\Windows\system32\wups.dll
2015-01-27 09:22:36 ----A---- C:\Windows\system32\wuaueng.dll
2015-01-27 09:22:36 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-01-27 09:22:36 ----A---- C:\Windows\system32\storewuauth.dll
2015-01-27 09:22:35 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-01-27 09:22:35 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-01-27 09:22:35 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-01-27 09:22:35 ----A---- C:\Windows\system32\wucltux.dll
2015-01-27 09:22:35 ----A---- C:\Windows\system32\wuapp.exe
2015-01-27 09:22:35 ----A---- C:\Windows\system32\wuapi.dll
2015-01-27 09:22:34 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-01-27 09:22:34 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-01-27 09:22:34 ----A---- C:\Windows\system32\wuwebv.dll
2015-01-27 09:22:34 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-01-27 09:22:34 ----A---- C:\Windows\system32\wudriver.dll
2015-01-27 09:22:34 ----A---- C:\Windows\system32\wuauclt.exe
2015-01-27 09:22:34 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-01-27 09:17:51 ----A---- C:\Windows\system32\drivers\PSKMAD.sys
2015-01-26 23:43:13 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-01-25 01:05:05 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-01-24 23:26:30 ----D---- C:\Users\Vojtěch\AppData\Roaming\Opera Software
2015-01-24 23:26:13 ----D---- C:\Program Files (x86)\JDownloader
2015-01-24 23:25:14 ----D---- C:\Program Files (x86)\Opera
2015-01-24 11:22:03 ----D---- C:\Program Files (x86)\Dia
2015-01-21 01:47:07 ----HD---- C:\$Windows.~BT
2015-01-20 22:39:42 ----RHD---- C:\MSOCache
======List of files/folders modified in the last 1 month======
2015-02-19 20:28:03 ----RD---- C:\Program Files
2015-02-19 20:27:29 ----D---- C:\Windows\Prefetch
2015-02-19 20:16:05 ----D---- C:\Windows\Temp
2015-02-19 20:02:01 ----D---- C:\Windows\system32\sru
2015-02-19 19:46:31 ----D---- C:\Windows\Microsoft.NET
2015-02-19 19:39:24 ----RD---- C:\Windows\System32
2015-02-19 19:39:24 ----RD---- C:\Program Files (x86)
2015-02-19 19:39:24 ----D---- C:\Windows\SysWOW64
2015-02-19 19:39:24 ----D---- C:\Windows\system32\drivers
2015-02-17 00:07:26 ----D---- C:\Windows\Inf
2015-02-17 00:07:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-02-16 13:33:05 ----D---- C:\Windows\system32\DriverStore
2015-02-16 13:32:55 ----D---- C:\Windows\Panther
2015-02-16 12:58:23 ----SHD---- C:\System Volume Information
2015-02-15 22:57:55 ----D---- C:\Windows\system32\config
2015-02-15 12:51:28 ----D---- C:\ProgramData\VMware
2015-02-15 12:51:09 ----D---- C:\ProgramData\NVIDIA
2015-02-13 12:46:16 ----D---- C:\Windows\rescache
2015-02-13 10:56:23 ----D---- C:\Windows\WinSxS
2015-02-13 09:45:01 ----D---- C:\Windows\CbsTemp
2015-02-13 09:43:55 ----D---- C:\Windows\system32\catroot2
2015-02-13 07:58:28 ----D---- C:\Windows\AppReadiness
2015-02-13 07:58:27 ----HD---- C:\Program Files\WindowsApps
2015-02-12 21:45:34 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-02-12 21:45:34 ----D---- C:\Windows\system32\cs-CZ
2015-02-12 21:45:34 ----D---- C:\Windows\apppatch
2015-02-12 20:29:01 ----D---- C:\Windows\system32\FxsTmp
2015-02-12 10:50:01 ----D---- C:\Windows\system32\catroot
2015-02-12 09:40:18 ----SD---- C:\Windows\system32\CompatTel
2015-02-12 09:40:18 ----D---- C:\Windows\system32\appraiser
2015-02-12 00:09:09 ----D---- C:\Windows\system32\MRT
2015-02-12 00:04:43 ----A---- C:\Windows\system32\MRT.exe
2015-02-09 14:46:17 ----D---- C:\Windows\system32\Tasks
2015-02-05 14:12:07 ----SHD---- C:\Windows\Installer
2015-02-05 14:07:54 ----D---- C:\Windows\Tasks
2015-02-04 21:54:34 ----D---- C:\Users\Vojtěch\AppData\Roaming\vlc
2015-02-03 20:31:19 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-01-27 09:17:11 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-27 00:55:24 ----D---- C:\Users\Vojtěch\AppData\Roaming\Skype
2015-01-25 01:06:04 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-24 21:25:06 ----D---- C:\ProgramData\Skype
2015-01-24 21:23:54 ----RD---- C:\Program Files (x86)\Skype
2015-01-24 18:50:55 ----SD---- C:\Users\Vojtěch\AppData\Roaming\Microsoft
2015-01-24 15:02:58 ----D---- C:\Windows\Logs
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 vmci;@oem19.inf,%vmci.Service.DispName%;VMware VMCI Bus Driver; C:\Windows\System32\drivers\vmci.sys [2014-11-17 85584]
R0 vsock;vSockets Driver; C:\Windows\system32\drivers\vsock.sys [2014-11-17 76480]
R1 NNSALPC;NNSAlpc; C:\Windows\system32\DRIVERS\NNSAlpc.sys [2014-06-04 96800]
R1 NNSHTTP;NNSHttp; C:\Windows\system32\DRIVERS\NNSHttp.sys [2014-06-18 162336]
R1 NNSHTTPS;NNSHttps; C:\Windows\system32\DRIVERS\NNSHttps.sys [2014-06-04 112160]
R1 NNSIDS;NNSids; C:\Windows\system32\DRIVERS\NNSIds.sys [2014-06-04 115232]
R1 NNSNAHSL;@oem8.inf,%NNSNAHSL_Desc%;Network Activity Hook Server LightWeight Filter Driver; C:\Windows\system32\DRIVERS\NNSNAHSL.sys [2014-01-16 47360]
R1 NNSPICC;NNSPicc; C:\Windows\system32\DRIVERS\NNSPicc.sys [2014-06-04 95776]
R1 NNSPIHSW;NNSPihsw; C:\Windows\system32\DRIVERS\NNSPihsw.sys [2014-06-04 70176]
R1 NNSPOP3;NNSPop3; C:\Windows\system32\DRIVERS\NNSPop3.sys [2014-06-04 125984]
R1 NNSPROT;NNSProt; C:\Windows\system32\DRIVERS\NNSProt.sys [2014-06-04 306720]
R1 NNSPRV;NNSPrv; C:\Windows\system32\DRIVERS\NNSPrv.sys [2014-06-04 169504]
R1 NNSSMTP;NNSSmtp; C:\Windows\system32\DRIVERS\NNSSmtp.sys [2014-06-04 115744]
R1 NNSSTRM;NNSStrm; C:\Windows\system32\DRIVERS\NNSStrm.sys [2014-06-04 261152]
R1 NNSTLSC;NNSTlsc; C:\Windows\system32\DRIVERS\NNSTlsc.sys [2014-06-04 109088]
R1 PSINKNC;PSINKnc; C:\Windows\system32\DRIVERS\psinknc.sys [2014-07-24 195616]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2014-10-11 917112]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2014-10-11 129168]
R1 vflt;@oem6.inf,%Description%;Shrew Soft Lightweight Filter; C:\Windows\system32\DRIVERS\vfilter.sys [2013-07-01 24064]
R1 Vsdatant;@oem9.inf,%Vsdatant_Desc%;Zone Alarm Firewall Driver; C:\Windows\System32\drivers\vsdatant.sys [2014-08-13 450456]
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys [2014-11-18 55488]
R2 PSINAflt;PSINAflt; C:\Windows\system32\DRIVERS\PSINAflt.sys [2014-10-13 163088]
R2 PSINFile;PSINFile; C:\Windows\system32\DRIVERS\PSINFile.sys [2014-10-13 121616]
R2 PSINProc;PSINProc; C:\Windows\system32\DRIVERS\PSINProc.sys [2014-07-24 122400]
R2 PSINProt;PSINProt; C:\Windows\system32\DRIVERS\PSINProt.sys [2014-07-24 132128]
R2 PSINReg;PSINReg; C:\Windows\system32\DRIVERS\PSINReg.sys [2014-10-13 107792]
R2 VMnetBridge;@oem17.inf,%VMware_Desc%;VMware Bridge Protocol; C:\Windows\system32\DRIVERS\vmnetbridge.sys [2014-11-20 48832]
R2 VMnetuserif;VMware Network Application Interface; \??\C:\Windows\system32\drivers\vmnetuserif.sys [2014-11-20 26816]
R2 VMparport;VMware VMparport; \??\C:\Windows\system32\drivers\VMparport.sys [2014-11-20 31936]
R2 vmx86;VMware vmx86; \??\C:\Windows\system32\drivers\vmx86.sys [2014-11-20 66752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-06-19 4065296]
R3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 NVHDA;@oem3.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-08-19 197408]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2014-08-19 12866008]
R3 PSKMAD;PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [2014-03-25 60400]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-12-13 121088]
R3 VBoxNetFlt;@oem12.inf,%VBoxNetFltService_Desc%;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2014-10-11 157448]
R3 vmkbd;VMware kbd; \??\C:\Windows\system32\drivers\VMkbd.sys [2014-11-20 33472]
S3 SensorsSimulatorDriver;@oem14.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-05-31 227840]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2014-10-11 142528]
S3 VBoxUSB;@oem10.inf,%VBoxUSB.SvcDesc%;VirtualBox USB; C:\Windows\System32\Drivers\VBoxUSB.sys [2014-10-11 116296]
S3 VMnetAdapter;@oem18.inf,%VMnetAdapter.Service.DispName%;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys [2014-11-20 28864]
S3 vnet;@oem7.inf,%Description%;Shrew Soft Virtual Adapter; C:\Windows\system32\DRIVERS\virtualnet.sys [2013-07-01 17408]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2014-11-12 2449592]
R2 iked;ShrewSoft IKE Daemon; C:\Program Files\ShrewSoft\VPN Client\iked.exe [2013-07-01 1127736]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2014-04-17 22768]
R2 ipsecd;ShrewSoft IPSEC Daemon; C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe [2013-07-01 810808]
R2 NanoServiceMain;Panda Protection Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [2014-10-13 142072]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 935368]
R2 PandaAgent;Panda Devices Agent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [2014-10-09 66808]
R2 PSUAService;Panda Product Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [2014-10-16 38136]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-10-20 130024]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
R2 tvnserver;TightVNC Server; C:\Program Files\TightVNC\tvnserver.exe [2013-07-19 2179056]
R2 VMAuthdService;VMware Authorization Service; C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [2014-11-20 87744]
R2 VMnetDHCP;VMware DHCP Service; C:\Windows\syswow64\vmnetdhcp.exe [2014-11-20 359104]
R2 VMUSBArbService;VMware USB Arbitration Service; C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2014-11-18 912576]
R2 VMware NAT Service;VMware NAT Service; C:\Windows\syswow64\vmnat.exe [2014-11-20 438464]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2014-08-13 3596752]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-09 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04 267440]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2014-11-09 5632]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2014-02-20 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-09 107912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-26 114800]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2014-12-21 1903472]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-12-13 150600]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 119808]
S3 VsEtwService120;Visual Studio ETW Event Collection Service; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [2014-04-30 87736]
-----------------EOF-----------------
Zbytek logu:
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe_x\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
npPDFXCviewNPPlugin.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-01-13 218784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-13 2334928]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-01-13 153248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-11-08 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-01-13 1729744]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-11-08 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-08-19 1796056]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]
"tvncontrol"=C:\Program Files\TightVNC\tvnserver.exe [2013-07-19 2179056]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2015-01-15 23308256]
"BitTorrent Bleep"=C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bleep\Bleep.appref-ms [2014-11-16 290]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
"PSUAMain"=C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [2014-10-16 37624]
"ZoneAlarm"=C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [2014-08-13 137352]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NanoServiceMain]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PSUAService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-02-19 20:28:03 ----D---- C:\Program Files\trend micro
2015-02-19 20:28:02 ----D---- C:\rsit
2015-02-19 19:39:24 ----D---- C:\Program Files (x86)\WinPcap
2015-02-19 19:38:47 ----D---- C:\Program Files (x86)\Wireshark
2015-02-16 12:33:59 ----D---- C:\Program Files\Sweet Home 3D
2015-02-13 09:42:49 ----A---- C:\Windows\system32\aspnet_counters.dll
2015-02-13 09:42:46 ----A---- C:\Windows\SYSWOW64\aspnet_counters.dll
2015-02-13 07:55:36 ----A---- C:\Windows\system32\jscript9.dll
2015-02-13 07:55:35 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-02-11 22:40:38 ----D---- C:\Program Files (x86)\ImageWriter
2015-02-11 15:16:38 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-02-11 15:16:38 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-11 15:16:38 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-11 15:16:38 ----A---- C:\Windows\system32\certcli.dll
2015-02-11 15:16:37 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-02-11 15:16:37 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-02-11 15:16:37 ----A---- C:\Windows\system32\msaudite.dll
2015-02-11 15:16:37 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-11 15:16:37 ----A---- C:\Windows\system32\adtschema.dll
2015-02-11 15:16:15 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-02-11 15:16:15 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-11 15:16:10 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-02-11 15:16:10 ----A---- C:\Windows\system32\scesrv.dll
2015-02-11 15:16:06 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-02-11 15:16:06 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-11 15:16:05 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-02-11 15:16:05 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-11 15:16:04 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-02-11 15:16:04 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-02-11 15:16:04 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-02-11 15:16:04 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-02-11 15:16:04 ----A---- C:\Windows\system32\wow64cpu.dll
2015-02-11 15:16:04 ----A---- C:\Windows\system32\wow64.dll
2015-02-11 15:16:04 ----A---- C:\Windows\system32\ntvdm64.dll
2015-02-11 15:16:04 ----A---- C:\Windows\system32\ntdll.dll
2015-02-11 15:16:03 ----A---- C:\Windows\SYSWOW64\user.exe
2015-02-11 15:15:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-02-11 15:15:35 ----A---- C:\Windows\system32\schannel.dll
2015-02-11 15:15:29 ----A---- C:\Windows\system32\mshtml.dll
2015-02-11 15:15:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-02-11 15:15:25 ----A---- C:\Windows\system32\ieframe.dll
2015-02-11 15:15:24 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-02-11 15:15:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-02-11 15:15:22 ----A---- C:\Windows\system32\wininet.dll
2015-02-11 15:15:22 ----A---- C:\Windows\system32\vbscript.dll
2015-02-11 15:15:22 ----A---- C:\Windows\system32\jscript.dll
2015-02-11 15:15:22 ----A---- C:\Windows\system32\iertutil.dll
2015-02-11 15:15:21 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-02-11 15:15:21 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-02-11 15:15:21 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-02-11 15:15:20 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-02-11 15:15:20 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-02-11 15:15:19 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-11 15:15:19 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-11 15:15:19 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-11 15:15:18 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-02-11 15:15:18 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-02-11 15:15:18 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-02-11 15:15:18 ----A---- C:\Windows\system32\webcheck.dll
2015-02-11 15:15:18 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-11 15:15:18 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-11 15:15:18 ----A---- C:\Windows\system32\actxprxy.dll
2015-02-11 15:15:17 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-02-11 15:15:17 ----A---- C:\Windows\system32\urlmon.dll
2015-02-11 15:15:17 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-11 15:15:16 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-02-11 15:15:16 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-02-11 15:15:16 ----A---- C:\Windows\system32\inetcomm.dll
2015-02-11 15:15:16 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-11 15:15:15 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-02-11 15:14:30 ----A---- C:\Windows\system32\sppobjs.dll
2015-02-11 15:14:23 ----A---- C:\Windows\system32\invagent.dll
2015-02-11 15:14:23 ----A---- C:\Windows\system32\generaltel.dll
2015-02-11 15:14:23 ----A---- C:\Windows\system32\devinv.dll
2015-02-11 15:14:23 ----A---- C:\Windows\system32\appraiser.dll
2015-02-11 15:14:23 ----A---- C:\Windows\system32\aeinv.dll
2015-02-11 15:14:22 ----A---- C:\Windows\system32\aepdu.dll
2015-02-11 15:14:17 ----A---- C:\Windows\system32\win32k.sys
2015-01-27 09:22:36 ----A---- C:\Windows\system32\wups2.dll
2015-01-27 09:22:36 ----A---- C:\Windows\system32\wups.dll
2015-01-27 09:22:36 ----A---- C:\Windows\system32\wuaueng.dll
2015-01-27 09:22:36 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-01-27 09:22:36 ----A---- C:\Windows\system32\storewuauth.dll
2015-01-27 09:22:35 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-01-27 09:22:35 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-01-27 09:22:35 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-01-27 09:22:35 ----A---- C:\Windows\system32\wucltux.dll
2015-01-27 09:22:35 ----A---- C:\Windows\system32\wuapp.exe
2015-01-27 09:22:35 ----A---- C:\Windows\system32\wuapi.dll
2015-01-27 09:22:34 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-01-27 09:22:34 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-01-27 09:22:34 ----A---- C:\Windows\system32\wuwebv.dll
2015-01-27 09:22:34 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-01-27 09:22:34 ----A---- C:\Windows\system32\wudriver.dll
2015-01-27 09:22:34 ----A---- C:\Windows\system32\wuauclt.exe
2015-01-27 09:22:34 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-01-27 09:17:51 ----A---- C:\Windows\system32\drivers\PSKMAD.sys
2015-01-26 23:43:13 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-01-25 01:05:05 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-01-24 23:26:30 ----D---- C:\Users\Vojtěch\AppData\Roaming\Opera Software
2015-01-24 23:26:13 ----D---- C:\Program Files (x86)\JDownloader
2015-01-24 23:25:14 ----D---- C:\Program Files (x86)\Opera
2015-01-24 11:22:03 ----D---- C:\Program Files (x86)\Dia
2015-01-21 01:47:07 ----HD---- C:\$Windows.~BT
2015-01-20 22:39:42 ----RHD---- C:\MSOCache
======List of files/folders modified in the last 1 month======
2015-02-19 20:28:03 ----RD---- C:\Program Files
2015-02-19 20:27:29 ----D---- C:\Windows\Prefetch
2015-02-19 20:16:05 ----D---- C:\Windows\Temp
2015-02-19 20:02:01 ----D---- C:\Windows\system32\sru
2015-02-19 19:46:31 ----D---- C:\Windows\Microsoft.NET
2015-02-19 19:39:24 ----RD---- C:\Windows\System32
2015-02-19 19:39:24 ----RD---- C:\Program Files (x86)
2015-02-19 19:39:24 ----D---- C:\Windows\SysWOW64
2015-02-19 19:39:24 ----D---- C:\Windows\system32\drivers
2015-02-17 00:07:26 ----D---- C:\Windows\Inf
2015-02-17 00:07:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-02-16 13:33:05 ----D---- C:\Windows\system32\DriverStore
2015-02-16 13:32:55 ----D---- C:\Windows\Panther
2015-02-16 12:58:23 ----SHD---- C:\System Volume Information
2015-02-15 22:57:55 ----D---- C:\Windows\system32\config
2015-02-15 12:51:28 ----D---- C:\ProgramData\VMware
2015-02-15 12:51:09 ----D---- C:\ProgramData\NVIDIA
2015-02-13 12:46:16 ----D---- C:\Windows\rescache
2015-02-13 10:56:23 ----D---- C:\Windows\WinSxS
2015-02-13 09:45:01 ----D---- C:\Windows\CbsTemp
2015-02-13 09:43:55 ----D---- C:\Windows\system32\catroot2
2015-02-13 07:58:28 ----D---- C:\Windows\AppReadiness
2015-02-13 07:58:27 ----HD---- C:\Program Files\WindowsApps
2015-02-12 21:45:34 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-02-12 21:45:34 ----D---- C:\Windows\system32\cs-CZ
2015-02-12 21:45:34 ----D---- C:\Windows\apppatch
2015-02-12 20:29:01 ----D---- C:\Windows\system32\FxsTmp
2015-02-12 10:50:01 ----D---- C:\Windows\system32\catroot
2015-02-12 09:40:18 ----SD---- C:\Windows\system32\CompatTel
2015-02-12 09:40:18 ----D---- C:\Windows\system32\appraiser
2015-02-12 00:09:09 ----D---- C:\Windows\system32\MRT
2015-02-12 00:04:43 ----A---- C:\Windows\system32\MRT.exe
2015-02-09 14:46:17 ----D---- C:\Windows\system32\Tasks
2015-02-05 14:12:07 ----SHD---- C:\Windows\Installer
2015-02-05 14:07:54 ----D---- C:\Windows\Tasks
2015-02-04 21:54:34 ----D---- C:\Users\Vojtěch\AppData\Roaming\vlc
2015-02-03 20:31:19 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-01-27 09:17:11 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-27 00:55:24 ----D---- C:\Users\Vojtěch\AppData\Roaming\Skype
2015-01-25 01:06:04 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-24 21:25:06 ----D---- C:\ProgramData\Skype
2015-01-24 21:23:54 ----RD---- C:\Program Files (x86)\Skype
2015-01-24 18:50:55 ----SD---- C:\Users\Vojtěch\AppData\Roaming\Microsoft
2015-01-24 15:02:58 ----D---- C:\Windows\Logs
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 vmci;@oem19.inf,%vmci.Service.DispName%;VMware VMCI Bus Driver; C:\Windows\System32\drivers\vmci.sys [2014-11-17 85584]
R0 vsock;vSockets Driver; C:\Windows\system32\drivers\vsock.sys [2014-11-17 76480]
R1 NNSALPC;NNSAlpc; C:\Windows\system32\DRIVERS\NNSAlpc.sys [2014-06-04 96800]
R1 NNSHTTP;NNSHttp; C:\Windows\system32\DRIVERS\NNSHttp.sys [2014-06-18 162336]
R1 NNSHTTPS;NNSHttps; C:\Windows\system32\DRIVERS\NNSHttps.sys [2014-06-04 112160]
R1 NNSIDS;NNSids; C:\Windows\system32\DRIVERS\NNSIds.sys [2014-06-04 115232]
R1 NNSNAHSL;@oem8.inf,%NNSNAHSL_Desc%;Network Activity Hook Server LightWeight Filter Driver; C:\Windows\system32\DRIVERS\NNSNAHSL.sys [2014-01-16 47360]
R1 NNSPICC;NNSPicc; C:\Windows\system32\DRIVERS\NNSPicc.sys [2014-06-04 95776]
R1 NNSPIHSW;NNSPihsw; C:\Windows\system32\DRIVERS\NNSPihsw.sys [2014-06-04 70176]
R1 NNSPOP3;NNSPop3; C:\Windows\system32\DRIVERS\NNSPop3.sys [2014-06-04 125984]
R1 NNSPROT;NNSProt; C:\Windows\system32\DRIVERS\NNSProt.sys [2014-06-04 306720]
R1 NNSPRV;NNSPrv; C:\Windows\system32\DRIVERS\NNSPrv.sys [2014-06-04 169504]
R1 NNSSMTP;NNSSmtp; C:\Windows\system32\DRIVERS\NNSSmtp.sys [2014-06-04 115744]
R1 NNSSTRM;NNSStrm; C:\Windows\system32\DRIVERS\NNSStrm.sys [2014-06-04 261152]
R1 NNSTLSC;NNSTlsc; C:\Windows\system32\DRIVERS\NNSTlsc.sys [2014-06-04 109088]
R1 PSINKNC;PSINKnc; C:\Windows\system32\DRIVERS\psinknc.sys [2014-07-24 195616]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2014-10-11 917112]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2014-10-11 129168]
R1 vflt;@oem6.inf,%Description%;Shrew Soft Lightweight Filter; C:\Windows\system32\DRIVERS\vfilter.sys [2013-07-01 24064]
R1 Vsdatant;@oem9.inf,%Vsdatant_Desc%;Zone Alarm Firewall Driver; C:\Windows\System32\drivers\vsdatant.sys [2014-08-13 450456]
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys [2014-11-18 55488]
R2 PSINAflt;PSINAflt; C:\Windows\system32\DRIVERS\PSINAflt.sys [2014-10-13 163088]
R2 PSINFile;PSINFile; C:\Windows\system32\DRIVERS\PSINFile.sys [2014-10-13 121616]
R2 PSINProc;PSINProc; C:\Windows\system32\DRIVERS\PSINProc.sys [2014-07-24 122400]
R2 PSINProt;PSINProt; C:\Windows\system32\DRIVERS\PSINProt.sys [2014-07-24 132128]
R2 PSINReg;PSINReg; C:\Windows\system32\DRIVERS\PSINReg.sys [2014-10-13 107792]
R2 VMnetBridge;@oem17.inf,%VMware_Desc%;VMware Bridge Protocol; C:\Windows\system32\DRIVERS\vmnetbridge.sys [2014-11-20 48832]
R2 VMnetuserif;VMware Network Application Interface; \??\C:\Windows\system32\drivers\vmnetuserif.sys [2014-11-20 26816]
R2 VMparport;VMware VMparport; \??\C:\Windows\system32\drivers\VMparport.sys [2014-11-20 31936]
R2 vmx86;VMware vmx86; \??\C:\Windows\system32\drivers\vmx86.sys [2014-11-20 66752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-06-19 4065296]
R3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 NVHDA;@oem3.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-08-19 197408]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2014-08-19 12866008]
R3 PSKMAD;PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [2014-03-25 60400]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-12-13 121088]
R3 VBoxNetFlt;@oem12.inf,%VBoxNetFltService_Desc%;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2014-10-11 157448]
R3 vmkbd;VMware kbd; \??\C:\Windows\system32\drivers\VMkbd.sys [2014-11-20 33472]
S3 SensorsSimulatorDriver;@oem14.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-05-31 227840]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2014-10-11 142528]
S3 VBoxUSB;@oem10.inf,%VBoxUSB.SvcDesc%;VirtualBox USB; C:\Windows\System32\Drivers\VBoxUSB.sys [2014-10-11 116296]
S3 VMnetAdapter;@oem18.inf,%VMnetAdapter.Service.DispName%;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys [2014-11-20 28864]
S3 vnet;@oem7.inf,%Description%;Shrew Soft Virtual Adapter; C:\Windows\system32\DRIVERS\virtualnet.sys [2013-07-01 17408]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2014-11-12 2449592]
R2 iked;ShrewSoft IKE Daemon; C:\Program Files\ShrewSoft\VPN Client\iked.exe [2013-07-01 1127736]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2014-04-17 22768]
R2 ipsecd;ShrewSoft IPSEC Daemon; C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe [2013-07-01 810808]
R2 NanoServiceMain;Panda Protection Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [2014-10-13 142072]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 935368]
R2 PandaAgent;Panda Devices Agent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [2014-10-09 66808]
R2 PSUAService;Panda Product Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [2014-10-16 38136]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-10-20 130024]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
R2 tvnserver;TightVNC Server; C:\Program Files\TightVNC\tvnserver.exe [2013-07-19 2179056]
R2 VMAuthdService;VMware Authorization Service; C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [2014-11-20 87744]
R2 VMnetDHCP;VMware DHCP Service; C:\Windows\syswow64\vmnetdhcp.exe [2014-11-20 359104]
R2 VMUSBArbService;VMware USB Arbitration Service; C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2014-11-18 912576]
R2 VMware NAT Service;VMware NAT Service; C:\Windows\syswow64\vmnat.exe [2014-11-20 438464]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2014-08-13 3596752]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-09 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04 267440]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2014-11-09 5632]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2014-02-20 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-09 107912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-26 114800]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2014-12-21 1903472]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-12-13 150600]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 119808]
S3 VsEtwService120;Visual Studio ETW Event Collection Service; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [2014-04-30 87736]
-----------------EOF-----------------
Re: Prosím o preventivku
V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose). Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
- ukoncete vsechny programy
- kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
- kliknete na Scan, pote na Cleaning
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Prosím o preventivku
# AdwCleaner v4.111 - Logfile created 24/02/2015 at 16:36:17
# Updated 18/02/2015 by Xplode
# Database : 2015-02-18.3 [Server]
# Operating system : Windows 8.1 Pro N (x64)
# Username : Vojtěch - PC-VOJTA
# Running from : C:\Users\Vojtěch\Desktop\adwcleaner_4.111.exe
# Option : Cleaning
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Program Files (x86)\Check Point Software Technologies LTD
Folder Deleted : C:\Users\VOJTCH~1\AppData\Local\Temp\mt_ffx
Folder Deleted : C:\Users\Vojtěch\AppData\Roaming\Check Point Software Technologies LTD
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{06DEB529-DE09-43EC-B6E2-451AAB0FF000}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{987D9269-F8A1-408F-BF62-4397D2F5363E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0722BEB-FDA1-4AA1-A2A8-15A74A5B3F70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{06DEB529-DE09-43EC-B6E2-451AAB0FF000}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E00DE9B9-B128-4C39-B732-B5D85013FA48}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Your Software Deals_is1
***** [ Web browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v35.0.1 (x86 cs)
-\\ Google Chrome v40.0.2214.115
*************************
AdwCleaner[R0].txt - [2897 bytes] - [24/02/2015 16:32:19]
AdwCleaner[S0].txt - [2829 bytes] - [24/02/2015 16:36:17]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2888 bytes] ##########
# Updated 18/02/2015 by Xplode
# Database : 2015-02-18.3 [Server]
# Operating system : Windows 8.1 Pro N (x64)
# Username : Vojtěch - PC-VOJTA
# Running from : C:\Users\Vojtěch\Desktop\adwcleaner_4.111.exe
# Option : Cleaning
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Program Files (x86)\Check Point Software Technologies LTD
Folder Deleted : C:\Users\VOJTCH~1\AppData\Local\Temp\mt_ffx
Folder Deleted : C:\Users\Vojtěch\AppData\Roaming\Check Point Software Technologies LTD
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{06DEB529-DE09-43EC-B6E2-451AAB0FF000}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{987D9269-F8A1-408F-BF62-4397D2F5363E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0722BEB-FDA1-4AA1-A2A8-15A74A5B3F70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{06DEB529-DE09-43EC-B6E2-451AAB0FF000}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E00DE9B9-B128-4C39-B732-B5D85013FA48}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Your Software Deals_is1
***** [ Web browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v35.0.1 (x86 cs)
-\\ Google Chrome v40.0.2214.115
*************************
AdwCleaner[R0].txt - [2897 bytes] - [24/02/2015 16:32:19]
AdwCleaner[S0].txt - [2829 bytes] - [24/02/2015 16:36:17]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2888 bytes] ##########
Re: Prosím o preventivku
Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Prosím o preventivku
ten FRSTLauncher nelze stahnout.. je i jiny link, nebo ten log mam vytvorit bez toho launcheru?
Re: Prosím o preventivku
Vime o tom, dejte log bez FRSTLauncheru.Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Prosím o preventivku
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-03-2015 01
Ran by Vojtěch (administrator) on PC-VOJTA on 06-03-2015 21:06:11
Running from C:\Users\Vojtěch\Desktop
Loaded Profiles: Vojtěch & lenic_000 (Available profiles: Vojtěch & lenic_000)
Platform: Windows 8.1 Pro N (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
() C:\Program Files\ShrewSoft\VPN Client\iked.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
() C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Check Point Software Technologies, Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\msosync.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1796056 2014-08-19] (NVIDIA Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [2179056 2013-07-19] (GlavSoft LLC.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [37624 2014-10-16] (Panda Security, S.L.)
HKLM-x32\...\Run: [ZoneAlarm] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [137352 2014-08-13] (Check Point Software Technologies Ltd.)
HKU\S-1-5-21-100684261-1644508502-2125021975-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23308256 2015-01-15] (Google)
HKU\S-1-5-21-100684261-1644508502-2125021975-1001\...\Run: [BitTorrent Bleep] => C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bleep\Bleep.appref-ms
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-100684261-1644508502-2125021975-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 85.207.68.1 8.8.8.8
Tcpip\..\Interfaces\{F72ECEF9-5DCC-45BD-92B5-34B7261C3DCA}: [NameServer] 158.196.149.9,158.196.162.8
FireFox:
========
FF ProfilePath: C:\Users\Vojtěch\AppData\Roaming\Mozilla\Firefox\Profiles\axe6dw0v.default-1422374671251
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-100684261-1644508502-2125021975-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Extension: Adblock Plus - C:\Users\Vojtěch\AppData\Roaming\Mozilla\Firefox\Profiles\axe6dw0v.default-1422374671251\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-03]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR Profile: C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-10]
CHR Extension: (Google Docs) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-10]
CHR Extension: (Google Drive) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-10]
CHR Extension: (YouTube) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-10]
CHR Extension: (Google Search) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-10]
CHR Extension: (Google Sheets) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-10]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-12-18]
CHR Extension: (Google Wallet) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-10]
CHR Extension: (Gmail) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-10]
CHR HKU\S-1-5-21-100684261-1644508502-2125021975-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2014-11-09] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2711736 2015-01-13] (Microsoft Corporation)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [File not signed]
R2 iked; C:\Program Files\ShrewSoft\VPN Client\iked.exe [1127736 2013-07-01] ()
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22768 2014-04-17] (Microsoft Corporation)
R2 ipsecd; C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe [810808 2013-07-01] ()
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [142072 2014-10-13] (Panda Security, S.L.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1903472 2014-12-21] (Electronic Arts)
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [66808 2014-10-09] (Panda Security, S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [38136 2014-10-16] (Panda Security, S.L.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [2179056 2013-07-19] (GlavSoft LLC.)
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87736 2014-04-30] (Microsoft Corporation)
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [3596752 2014-08-13] (Check Point Software Technologies Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [96272 2014-08-13] (Check Point Software Technologies, Ltd.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [96800 2014-06-04] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [162336 2014-06-18] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [112160 2014-06-04] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [115232 2014-06-04] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\system32\DRIVERS\NNSNAHSL.sys [47360 2014-01-16] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [95776 2014-06-04] (Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [70176 2014-06-04] (Panda Security, S.L.)
R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [125984 2014-06-04] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [306720 2014-06-04] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [169504 2014-06-04] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [115744 2014-06-04] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [261152 2014-06-04] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [109088 2014-06-04] (Panda Security, S.L.)
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [163088 2014-10-13] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [121616 2014-10-13] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [195616 2014-07-24] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [122400 2014-07-24] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [132128 2014-07-24] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [107792 2014-10-13] (Panda Security, S.L.)
R3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [60400 2014-03-25] (Panda Security, S.L.)
S3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [116296 2014-10-11] (Oracle Corporation)
R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [31936 2014-11-20] (VMware, Inc.)
R1 Vsdatant; C:\Windows\System32\drivers\vsdatant.sys [450456 2014-08-13] (Check Point Software Technologies Ltd.)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [76480 2014-11-17] (VMware, Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-06 21:06 - 2015-03-06 21:06 - 00018849 _____ () C:\Users\Vojtěch\Desktop\FRST.txt
2015-03-06 15:38 - 2015-03-06 15:38 - 00132487 _____ () C:\Users\lenic_000\Downloads\bootstrap-7.x-3.0.zip
2015-03-06 15:38 - 2015-03-06 15:38 - 00009216 ___SH () C:\Users\lenic_000\Downloads\Thumbs.db
2015-03-06 15:38 - 2015-03-06 15:38 - 00000000 ____D () C:\Users\lenic_000\Downloads\bootstrap-7.x-3.0
2015-03-05 21:19 - 2015-03-05 21:20 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-05 17:26 - 2015-03-05 17:41 - 737781304 _____ () C:\Users\lenic_000\Downloads\to je moje dítě .CZ 2013.avi
2015-03-04 22:19 - 2015-03-06 21:06 - 00000000 ____D () C:\FRST
2015-03-04 22:18 - 2015-03-04 22:18 - 02092544 _____ (Farbar) C:\Users\Vojtěch\Desktop\FRST64.exe
2015-03-03 00:32 - 2015-03-03 00:32 - 00280256 _____ () C:\Windows\Minidump\030315-42312-01.dmp
2015-02-28 20:34 - 2015-02-28 20:34 - 00000000 ____D () C:\Users\Vojtěch\Downloads\Windows_7_IE8
2015-02-28 20:30 - 2015-02-28 20:31 - 03223040 _____ (Josh Cell Softwares) C:\Users\Vojtěch\Downloads\Quick 7z Extractor v1.0(1).exe
2015-02-28 20:29 - 2015-02-28 20:29 - 02487012 _____ () C:\Users\Vojtěch\Downloads\BANDIZIP-PORTABLE-EN.ZIP
2015-02-28 20:29 - 2015-02-28 20:29 - 00000000 ____D () C:\Users\Vojtěch\Downloads\BANDIZIP-PORTABLE-EN
2015-02-28 20:18 - 2015-02-28 20:18 - 00000000 ____D () C:\Users\Vojtěch\Downloads\Windows_7_IE8.part01
2015-02-28 20:16 - 2011-05-10 16:09 - 00013614 _____ () C:\Users\Vojtěch\Downloads\Win7_IE8.vmc
2015-02-28 20:16 - 2011-05-10 16:09 - 00000000 _____ () C:\Users\Vojtěch\Downloads\Win7_IE8.vhd
2015-02-28 18:26 - 2015-02-28 18:53 - 734003200 _____ () C:\Users\Vojtěch\Downloads\Windows_7_IE8.part03.rar
2015-02-28 18:26 - 2015-02-28 18:53 - 734003200 _____ () C:\Users\Vojtěch\Downloads\Windows_7_IE8.part02.rar
2015-02-28 18:26 - 2015-02-28 18:47 - 580817976 _____ () C:\Users\Vojtěch\Downloads\Windows_7_IE8.part04.rar
2015-02-28 18:08 - 2015-02-28 18:31 - 734019640 _____ () C:\Users\Vojtěch\Downloads\Windows_7_IE8.part01.rar
2015-02-27 10:44 - 2015-02-27 10:44 - 00070664 _____ () C:\Users\lenic_000\Desktop\hd.dib
2015-02-27 10:33 - 2014-03-25 14:15 - 00060400 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2015-02-27 10:30 - 2015-02-27 10:30 - 00002236 _____ () C:\Users\Vojtěch\Desktop\Ulead Photo Express 3.0 SE.lnk
2015-02-27 10:30 - 2015-02-27 10:30 - 00002236 _____ () C:\Users\lenic_000\Desktop\Ulead Photo Express 3.0 SE.lnk
2015-02-27 10:30 - 2015-02-27 10:30 - 00000319 _____ () C:\Windows\ULEAD32.INI
2015-02-27 10:30 - 2015-02-27 10:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ulead Photo Express 3.0 SE
2015-02-27 10:29 - 2015-02-27 10:29 - 00000000 ____D () C:\Program Files (x86)\Ulead Systems
2015-02-27 10:29 - 1999-08-17 12:10 - 00028672 _____ (Ulead Systems, Inc.) C:\Windows\Photo Express 3.scr
2015-02-27 10:29 - 1998-10-29 16:45 - 00306688 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2015-02-27 10:29 - 1996-08-24 11:11 - 00027632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CTL3DV2.DLL
2015-02-27 10:29 - 1996-08-23 20:11 - 00384512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCO40.DLL
2015-02-27 10:29 - 1995-10-26 05:55 - 00087328 _____ (Twain Working Group) C:\Windows\TWAIN.DLL
2015-02-27 10:29 - 1995-09-14 03:51 - 00069632 _____ (Twain Working Group) C:\Windows\TWUNK_32.EXE
2015-02-27 10:29 - 1995-09-14 03:51 - 00048560 _____ (Twain Working Group) C:\Windows\TWUNK_16.EXE
2015-02-27 10:29 - 1995-05-22 06:37 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC30.DLL
2015-02-27 10:29 - 1995-05-22 06:37 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCO30.DLL
2015-02-25 22:37 - 2015-02-25 22:37 - 00104448 _____ () C:\Users\Vojtěch\Downloads\Belbin_test.xls
2015-02-25 20:00 - 2015-02-25 20:01 - 00036563 _____ () C:\Users\Vojtěch\Downloads\Europass-CV-20150225-Oczka-CS.xml
2015-02-25 18:11 - 2014-10-29 02:27 - 01200128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2015-02-25 18:11 - 2014-10-29 02:04 - 00868352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2015-02-25 18:10 - 2014-12-13 22:28 - 00513488 _____ () C:\Windows\SysWOW64\locale.nls
2015-02-25 18:10 - 2014-12-13 22:28 - 00513488 _____ () C:\Windows\system32\locale.nls
2015-02-25 18:10 - 2014-10-29 02:27 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2015-02-25 18:10 - 2014-10-29 02:04 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2015-02-24 16:48 - 2015-02-24 16:48 - 00652864 _____ () C:\Users\Vojtěch\Downloads\7235v38.zip
2015-02-24 16:32 - 2015-02-24 16:36 - 00000000 ____D () C:\AdwCleaner
2015-02-24 16:30 - 2015-02-24 16:30 - 02126848 _____ () C:\Users\Vojtěch\Desktop\adwcleaner_4.111.exe
2015-02-22 17:20 - 2015-02-22 17:20 - 00001070 _____ () C:\Users\Vojtěch\Desktop\OffLine 2.0.24.3.lnk
2015-02-22 17:20 - 2015-02-22 17:20 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\OffLine
2015-02-22 17:20 - 2015-02-22 17:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OffLine 2.0.24.3
2015-02-22 17:20 - 2015-02-22 17:20 - 00000000 ____D () C:\Program Files (x86)\OffLine 2.0.24.3
2015-02-22 17:18 - 2015-02-22 17:18 - 01447092 _____ (Photomate, s.r.o. & Martin Mandak ) C:\Users\Vojtěch\Downloads\mojefoto online.exe
2015-02-22 17:04 - 2015-02-22 17:04 - 02126848 _____ () C:\Users\Vojtěch\Downloads\AdwCleaner.exe
2015-02-22 14:04 - 2015-02-22 14:04 - 00000000 ____D () C:\Users\Vojtěch\Downloads\Hacking Windows 7 x64
2015-02-21 11:44 - 2015-02-21 13:34 - 2409277051 _____ () C:\Users\Vojtěch\Downloads\Hacking Windows 7 x64.zip
2015-02-20 13:51 - 2015-02-20 13:51 - 00000283 _____ () C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Koš.lnk
2015-02-20 10:30 - 2015-02-20 10:30 - 00000000 ____D () C:\Users\Vojtěch\Downloads\Kali-Linux-1.0.9-vm-486
2015-02-20 10:27 - 2015-02-20 10:27 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\JetBrains
2015-02-20 10:25 - 2015-02-20 10:27 - 00000000 ____D () C:\Users\Vojtěch\.android
2015-02-20 10:25 - 2015-02-20 10:26 - 00000000 ____D () C:\Users\Vojtěch\.AndroidStudio
2015-02-20 10:25 - 2015-02-20 10:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio
2015-02-20 10:19 - 2015-02-20 10:19 - 00000000 ____D () C:\Program Files\Android
2015-02-20 10:19 - 2015-02-20 10:19 - 00000000 ____D () C:\android
2015-02-20 10:14 - 2015-02-20 10:13 - 00320424 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2015-02-20 10:13 - 2015-02-20 10:13 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2015-02-20 10:13 - 2015-02-20 10:13 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2015-02-20 10:13 - 2015-02-20 10:13 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-02-20 10:12 - 2015-02-20 10:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-02-20 10:11 - 2015-02-20 10:13 - 00000000 ____D () C:\Program Files\Java
2015-02-20 09:50 - 2015-02-20 09:52 - 135816096 _____ (Oracle Corporation) C:\Users\Vojtěch\Downloads\jdk-7u75-windows-x64.exe
2015-02-19 21:39 - 2015-02-19 22:00 - 856233768 _____ (Google Inc.) C:\Users\Vojtěch\Downloads\android-studio-bundle-135.1740770-windows.exe
2015-02-19 21:28 - 2015-02-19 22:58 - 164760638 _____ () C:\Users\Vojtěch\Downloads\Kali-Linux-1.0.9-vm-486.zip
2015-02-19 21:19 - 2015-02-19 21:19 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\Wireshark
2015-02-19 21:17 - 2015-02-19 21:18 - 79155192 _____ (VMware, Inc.) C:\Users\Vojtěch\Downloads\VMware-player-7.1.0-2496824.exe
2015-02-19 20:28 - 2015-02-19 20:28 - 00000000 ____D () C:\rsit
2015-02-19 20:28 - 2015-02-19 20:28 - 00000000 ____D () C:\Program Files\trend micro
2015-02-19 19:39 - 2015-02-19 19:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2015-02-19 19:39 - 2015-02-19 19:39 - 00000000 ____D () C:\Program Files (x86)\WinPcap
2015-02-19 19:38 - 2015-02-19 19:39 - 00000000 ____D () C:\Program Files (x86)\Wireshark
2015-02-19 19:38 - 2015-02-19 19:38 - 00001754 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2015-02-19 19:37 - 2015-02-19 19:38 - 23579536 _____ (Wireshark development team) C:\Users\Vojtěch\Downloads\Wireshark-win32-1.12.3.exe
2015-02-16 17:40 - 2015-02-16 17:40 - 01238970 _____ () C:\Users\Vojtěch\Documents\test.pptx
2015-02-16 12:34 - 2015-02-16 12:34 - 00005117 _____ () C:\Users\Vojtěch\Desktop\1.sh3d
2015-02-16 12:34 - 2015-02-16 12:34 - 00000956 _____ () C:\Users\Vojtěch\Desktop\Sweet Home 3D.lnk
2015-02-16 12:34 - 2015-02-16 12:34 - 00000000 ____D () C:\Users\Vojtěch\eTeks
2015-02-16 12:34 - 2015-02-16 12:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eTeks Sweet Home 3D
2015-02-16 12:33 - 2015-02-16 12:34 - 00000000 ____D () C:\Program Files\Sweet Home 3D
2015-02-16 12:33 - 2015-02-16 12:33 - 41662512 _____ (eTeks ) C:\Users\Vojtěch\Downloads\SweetHome3D-4.6-windows.exe
2015-02-13 09:42 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2015-02-13 09:42 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2015-02-13 07:55 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-13 07:55 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-12 17:05 - 2015-02-12 17:13 - 233832448 _____ () C:\Users\Vojtěch\Downloads\gparted-live-0.21.0-1-i586.iso
2015-02-12 10:29 - 2015-02-12 10:29 - 15945984 _____ () C:\Users\Vojtěch\Downloads\Oracle_VM_VirtualBox_Extension_Pack-4.3.20-96996.vbox-extpack
2015-02-11 23:02 - 2015-02-11 23:05 - 248901632 _____ () C:\Users\Vojtěch\Downloads\NAS4Free-x86-LiveCD-9.3.0.2.1349.iso
2015-02-11 22:40 - 2015-02-11 22:40 - 00001075 _____ () C:\Users\Public\Desktop\Win32DiskImager.lnk
2015-02-11 22:40 - 2015-02-11 22:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Writer
2015-02-11 22:40 - 2015-02-11 22:40 - 00000000 ____D () C:\Program Files (x86)\ImageWriter
2015-02-11 22:39 - 2015-02-11 22:40 - 12290974 _____ (ImageWriter Developers ) C:\Users\Vojtěch\Downloads\Win32DiskImager-0.9.5-install.exe
2015-02-11 21:31 - 2015-02-11 21:52 - 995098624 _____ () C:\Users\Vojtěch\Downloads\NAS4Free-x86-LiveUSB-9.3.0.2.1349.img
2015-02-11 15:16 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-11 15:16 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-11 15:16 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-02-11 15:16 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-02-11 15:16 - 2015-01-13 23:11 - 01762840 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-11 15:16 - 2015-01-13 23:04 - 01489072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-11 15:16 - 2015-01-10 10:10 - 07472960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-11 15:16 - 2015-01-10 10:10 - 01733440 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-02-11 15:16 - 2015-01-10 09:28 - 01498360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-02-11 15:16 - 2014-12-19 09:57 - 00788680 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-11 15:16 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-11 15:16 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-11 15:16 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-11 15:16 - 2014-12-09 00:12 - 00391526 _____ () C:\Windows\system32\ApnDatabase.xml
2015-02-11 15:16 - 2014-10-29 03:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-11 15:16 - 2014-10-29 03:50 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-11 15:16 - 2014-10-29 03:06 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-11 15:16 - 2014-10-29 03:06 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-11 15:16 - 2014-10-29 03:02 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-02-11 15:16 - 2014-10-29 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-02-11 15:16 - 2014-10-29 02:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-02-11 15:16 - 2014-10-29 02:31 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-11 15:16 - 2014-10-29 02:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-02-11 15:16 - 2014-10-29 02:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-02-11 15:16 - 2014-10-29 02:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-02-11 15:16 - 2014-10-29 02:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-02-11 15:16 - 2014-10-29 02:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-02-11 15:15 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-11 15:15 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-11 15:15 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-11 15:15 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-11 15:15 - 2015-01-12 03:34 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-02-11 15:15 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-11 15:15 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-11 15:15 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-11 15:15 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-11 15:15 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-11 15:15 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-11 15:15 - 2015-01-12 02:58 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-02-11 15:15 - 2015-01-12 02:55 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-02-11 15:15 - 2015-01-12 02:51 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-02-11 15:15 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-11 15:15 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-11 15:15 - 2015-01-12 02:48 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-11 15:15 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-11 15:15 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-11 15:15 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-11 15:15 - 2015-01-12 02:34 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-02-11 15:15 - 2015-01-12 02:30 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-02-11 15:15 - 2015-01-12 02:27 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-02-11 15:15 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-11 15:15 - 2015-01-12 02:25 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-02-11 15:15 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-11 15:15 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-11 15:15 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-11 15:15 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-11 15:15 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-11 15:15 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-11 15:15 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-11 15:15 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-11 15:15 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-11 15:15 - 2015-01-10 08:00 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-11 15:15 - 2015-01-10 07:38 - 00359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-11 15:14 - 2015-02-04 00:38 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-02-11 15:14 - 2015-02-04 00:08 - 00761856 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-02-11 15:14 - 2015-02-04 00:08 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-02-11 15:14 - 2015-02-03 00:11 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-02-11 15:14 - 2015-02-03 00:11 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-02-11 15:14 - 2015-02-03 00:11 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-02-11 15:14 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-02-11 15:14 - 2015-01-10 09:22 - 04175872 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-10 19:13 - 2015-02-10 19:14 - 00000406 _____ () C:\Users\lenic_000\Desktop\lenička.txt
2015-02-08 15:01 - 2015-02-12 18:41 - 00002248 ____H () C:\Users\Vojtěch\Documents\Default.rdp
2015-02-07 20:26 - 2015-02-07 20:26 - 00000016 _____ () C:\Users\lenic_000\Desktop\Nový textový dokument.txt
2015-02-07 20:12 - 2015-02-08 14:32 - 00002246 ____H () C:\Users\lenic_000\Documents\Default.rdp
2015-02-07 15:08 - 2015-02-07 15:08 - 04831232 _____ (Geza Kovacs) C:\Users\lenic_000\Downloads\unetbootin-windows-608.exe
2015-02-07 15:07 - 2015-02-07 15:30 - 1028653056 _____ () C:\Users\lenic_000\Downloads\ubuntu-14.04.1-desktop-amd64.iso
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-06 21:03 - 2014-11-08 17:40 - 01766999 _____ () C:\Windows\WindowsUpdate.log
2015-03-06 21:00 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2015-03-06 20:59 - 2015-01-14 19:46 - 00004982 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for PC-VOJTA-Vojtěch pc-vojta
2015-03-06 20:55 - 2014-11-09 11:29 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-03-06 20:49 - 2014-11-08 17:56 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-100684261-1644508502-2125021975-1001
2015-03-06 20:12 - 2014-11-09 16:57 - 00000978 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-06 19:28 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-03-06 19:24 - 2014-11-08 17:52 - 00003978 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{8ADC7B6C-C553-45CF-9903-E39E2D709EC6}
2015-03-06 19:21 - 2014-11-08 17:42 - 01943106 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-06 19:21 - 2013-08-22 23:05 - 00803648 _____ () C:\Windows\system32\perfh005.dat
2015-03-06 19:21 - 2013-08-22 23:05 - 00184704 _____ () C:\Windows\system32\perfc005.dat
2015-03-06 19:18 - 2014-11-09 16:57 - 00000974 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-06 19:18 - 2014-11-08 17:52 - 00000000 ___DO () C:\Users\Vojtěch\SkyDrive
2015-03-06 19:17 - 2014-12-05 20:02 - 00000000 ___DO () C:\Users\lenic_000\OneDrive
2015-03-06 19:16 - 2014-12-14 20:09 - 00000000 ____D () C:\ProgramData\VMware
2015-03-06 19:16 - 2014-12-05 19:50 - 00000000 ____D () C:\Users\lenic_000
2015-03-06 19:16 - 2014-11-08 18:08 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-03-06 19:16 - 2013-08-22 15:45 - 00004826 _____ () C:\Windows\setupact.log
2015-03-06 19:16 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-06 19:15 - 2014-11-08 18:03 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-06 15:21 - 2015-01-14 19:36 - 00003986 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{C2632A8B-DF86-4A25-AF28-36D7F525AB30}
2015-03-05 21:51 - 2014-12-05 20:05 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-100684261-1644508502-2125021975-1002
2015-03-05 21:05 - 2014-12-12 20:50 - 00000000 ____D () C:\Users\lenic_000\AppData\Roaming\vlc
2015-03-05 19:50 - 2013-08-22 14:25 - 00524288 ___SH () C:\Windows\system32\config\BBI
2015-03-03 23:08 - 2014-11-08 17:48 - 00000000 ____D () C:\Users\Vojtěch
2015-03-03 01:10 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-03-03 00:32 - 2014-11-09 00:33 - 00000000 ____D () C:\Windows\Minidump
2015-03-03 00:31 - 2014-11-09 00:33 - 434037199 _____ () C:\Windows\MEMORY.DMP
2015-03-03 00:28 - 2014-12-14 20:12 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\VMware
2015-03-03 00:28 - 2014-12-14 20:12 - 00000000 ____D () C:\Users\Vojtěch\AppData\Local\VMware
2015-03-03 00:27 - 2014-11-08 17:48 - 00000000 ____D () C:\Users\Vojtěch\AppData\Local\Packages
2015-03-02 21:59 - 2014-11-09 00:04 - 00000000 ____D () C:\Users\Vojtěch\.VirtualBox
2015-02-28 20:45 - 2014-11-10 17:23 - 00000000 ____D () C:\Users\Vojtěch\VirtualBox VMs
2015-02-27 12:51 - 2014-11-09 11:21 - 00000000 ____D () C:\Users\Vojtěch\Documents\Visual Studio 2013
2015-02-27 10:34 - 2014-12-05 19:50 - 00000000 ____D () C:\Users\lenic_000\AppData\Local\VirtualStore
2015-02-27 10:33 - 2013-08-22 15:44 - 00677040 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-25 21:49 - 2014-11-08 20:32 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\vlc
2015-02-24 08:53 - 2014-11-08 17:26 - 00010194 _____ () C:\Windows\PFRO.log
2015-02-24 08:51 - 2014-11-08 17:48 - 00000000 ____D () C:\Users\Vojtěch\AppData\Local\VirtualStore
2015-02-23 20:04 - 2015-01-13 22:31 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-02-20 13:52 - 2014-12-02 13:11 - 00000000 ____D () C:\Users\Vojtěch\Downloads\freerapid
2015-02-20 10:16 - 2014-11-10 18:44 - 00002203 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-02-17 00:05 - 2014-11-09 16:58 - 00000000 ___RD () C:\Users\Vojtěch\Disk Google
2015-02-16 13:32 - 2014-11-08 17:26 - 00000000 ____D () C:\Windows\Panther
2015-02-16 13:29 - 2015-01-21 01:47 - 00000000 ___HD () C:\$Windows.~BT
2015-02-13 12:46 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache
2015-02-12 20:29 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\FxsTmp
2015-02-12 09:40 - 2014-12-10 08:56 - 00000000 ____D () C:\Windows\system32\appraiser
2015-02-12 09:40 - 2014-11-13 22:55 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-02-12 00:09 - 2014-11-10 10:51 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-12 00:04 - 2014-11-10 10:51 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-10 23:40 - 2014-12-10 15:03 - 00000000 ____D () C:\Users\lenic_000\AppData\Roaming\Skype
2015-02-05 14:07 - 2014-11-09 16:57 - 00003950 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-05 14:07 - 2014-11-09 16:57 - 00003714 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-04 19:55 - 2014-11-09 11:29 - 00003802 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
==================== Files in the root of some directories =======
2015-01-24 14:12 - 2015-01-24 14:12 - 0023391 _____ () C:\Users\Vojtěch\AppData\Local\recently-used.xbel
Some content of TEMP:
====================
C:\Users\Vojtěch\AppData\Local\Temp\130666118553279402.exe
C:\Users\Vojtěch\AppData\Local\Temp\13066611872437922399.exe
C:\Users\Vojtěch\AppData\Local\Temp\install_flashplayer16x32au_mssd_aaa_aih.exe
C:\Users\Vojtěch\AppData\Local\Temp\Quarantine.exe
C:\Users\Vojtěch\AppData\Local\Temp\sqlite3.dll
C:\Users\Vojtěch\AppData\Local\Temp\{B5D2C3E6-2144-49EF-8D9C-2C4C4AE2AEC5}.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-03-02 20:36
==================== End Of Log ============================
Ran by Vojtěch (administrator) on PC-VOJTA on 06-03-2015 21:06:11
Running from C:\Users\Vojtěch\Desktop
Loaded Profiles: Vojtěch & lenic_000 (Available profiles: Vojtěch & lenic_000)
Platform: Windows 8.1 Pro N (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
() C:\Program Files\ShrewSoft\VPN Client\iked.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
() C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Check Point Software Technologies, Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\msosync.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1796056 2014-08-19] (NVIDIA Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [2179056 2013-07-19] (GlavSoft LLC.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [37624 2014-10-16] (Panda Security, S.L.)
HKLM-x32\...\Run: [ZoneAlarm] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [137352 2014-08-13] (Check Point Software Technologies Ltd.)
HKU\S-1-5-21-100684261-1644508502-2125021975-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23308256 2015-01-15] (Google)
HKU\S-1-5-21-100684261-1644508502-2125021975-1001\...\Run: [BitTorrent Bleep] => C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bleep\Bleep.appref-ms
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-100684261-1644508502-2125021975-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 85.207.68.1 8.8.8.8
Tcpip\..\Interfaces\{F72ECEF9-5DCC-45BD-92B5-34B7261C3DCA}: [NameServer] 158.196.149.9,158.196.162.8
FireFox:
========
FF ProfilePath: C:\Users\Vojtěch\AppData\Roaming\Mozilla\Firefox\Profiles\axe6dw0v.default-1422374671251
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-100684261-1644508502-2125021975-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Extension: Adblock Plus - C:\Users\Vojtěch\AppData\Roaming\Mozilla\Firefox\Profiles\axe6dw0v.default-1422374671251\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-03]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR Profile: C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-10]
CHR Extension: (Google Docs) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-10]
CHR Extension: (Google Drive) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-10]
CHR Extension: (YouTube) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-10]
CHR Extension: (Google Search) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-10]
CHR Extension: (Google Sheets) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-10]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-12-18]
CHR Extension: (Google Wallet) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-10]
CHR Extension: (Gmail) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-10]
CHR HKU\S-1-5-21-100684261-1644508502-2125021975-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2014-11-09] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2711736 2015-01-13] (Microsoft Corporation)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [File not signed]
R2 iked; C:\Program Files\ShrewSoft\VPN Client\iked.exe [1127736 2013-07-01] ()
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22768 2014-04-17] (Microsoft Corporation)
R2 ipsecd; C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe [810808 2013-07-01] ()
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [142072 2014-10-13] (Panda Security, S.L.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1903472 2014-12-21] (Electronic Arts)
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [66808 2014-10-09] (Panda Security, S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [38136 2014-10-16] (Panda Security, S.L.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [2179056 2013-07-19] (GlavSoft LLC.)
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87736 2014-04-30] (Microsoft Corporation)
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [3596752 2014-08-13] (Check Point Software Technologies Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [96272 2014-08-13] (Check Point Software Technologies, Ltd.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [96800 2014-06-04] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [162336 2014-06-18] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [112160 2014-06-04] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [115232 2014-06-04] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\system32\DRIVERS\NNSNAHSL.sys [47360 2014-01-16] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [95776 2014-06-04] (Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [70176 2014-06-04] (Panda Security, S.L.)
R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [125984 2014-06-04] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [306720 2014-06-04] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [169504 2014-06-04] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [115744 2014-06-04] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [261152 2014-06-04] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [109088 2014-06-04] (Panda Security, S.L.)
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [163088 2014-10-13] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [121616 2014-10-13] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [195616 2014-07-24] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [122400 2014-07-24] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [132128 2014-07-24] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [107792 2014-10-13] (Panda Security, S.L.)
R3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [60400 2014-03-25] (Panda Security, S.L.)
S3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [116296 2014-10-11] (Oracle Corporation)
R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [31936 2014-11-20] (VMware, Inc.)
R1 Vsdatant; C:\Windows\System32\drivers\vsdatant.sys [450456 2014-08-13] (Check Point Software Technologies Ltd.)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [76480 2014-11-17] (VMware, Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-06 21:06 - 2015-03-06 21:06 - 00018849 _____ () C:\Users\Vojtěch\Desktop\FRST.txt
2015-03-06 15:38 - 2015-03-06 15:38 - 00132487 _____ () C:\Users\lenic_000\Downloads\bootstrap-7.x-3.0.zip
2015-03-06 15:38 - 2015-03-06 15:38 - 00009216 ___SH () C:\Users\lenic_000\Downloads\Thumbs.db
2015-03-06 15:38 - 2015-03-06 15:38 - 00000000 ____D () C:\Users\lenic_000\Downloads\bootstrap-7.x-3.0
2015-03-05 21:19 - 2015-03-05 21:20 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-05 17:26 - 2015-03-05 17:41 - 737781304 _____ () C:\Users\lenic_000\Downloads\to je moje dítě .CZ 2013.avi
2015-03-04 22:19 - 2015-03-06 21:06 - 00000000 ____D () C:\FRST
2015-03-04 22:18 - 2015-03-04 22:18 - 02092544 _____ (Farbar) C:\Users\Vojtěch\Desktop\FRST64.exe
2015-03-03 00:32 - 2015-03-03 00:32 - 00280256 _____ () C:\Windows\Minidump\030315-42312-01.dmp
2015-02-28 20:34 - 2015-02-28 20:34 - 00000000 ____D () C:\Users\Vojtěch\Downloads\Windows_7_IE8
2015-02-28 20:30 - 2015-02-28 20:31 - 03223040 _____ (Josh Cell Softwares) C:\Users\Vojtěch\Downloads\Quick 7z Extractor v1.0(1).exe
2015-02-28 20:29 - 2015-02-28 20:29 - 02487012 _____ () C:\Users\Vojtěch\Downloads\BANDIZIP-PORTABLE-EN.ZIP
2015-02-28 20:29 - 2015-02-28 20:29 - 00000000 ____D () C:\Users\Vojtěch\Downloads\BANDIZIP-PORTABLE-EN
2015-02-28 20:18 - 2015-02-28 20:18 - 00000000 ____D () C:\Users\Vojtěch\Downloads\Windows_7_IE8.part01
2015-02-28 20:16 - 2011-05-10 16:09 - 00013614 _____ () C:\Users\Vojtěch\Downloads\Win7_IE8.vmc
2015-02-28 20:16 - 2011-05-10 16:09 - 00000000 _____ () C:\Users\Vojtěch\Downloads\Win7_IE8.vhd
2015-02-28 18:26 - 2015-02-28 18:53 - 734003200 _____ () C:\Users\Vojtěch\Downloads\Windows_7_IE8.part03.rar
2015-02-28 18:26 - 2015-02-28 18:53 - 734003200 _____ () C:\Users\Vojtěch\Downloads\Windows_7_IE8.part02.rar
2015-02-28 18:26 - 2015-02-28 18:47 - 580817976 _____ () C:\Users\Vojtěch\Downloads\Windows_7_IE8.part04.rar
2015-02-28 18:08 - 2015-02-28 18:31 - 734019640 _____ () C:\Users\Vojtěch\Downloads\Windows_7_IE8.part01.rar
2015-02-27 10:44 - 2015-02-27 10:44 - 00070664 _____ () C:\Users\lenic_000\Desktop\hd.dib
2015-02-27 10:33 - 2014-03-25 14:15 - 00060400 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2015-02-27 10:30 - 2015-02-27 10:30 - 00002236 _____ () C:\Users\Vojtěch\Desktop\Ulead Photo Express 3.0 SE.lnk
2015-02-27 10:30 - 2015-02-27 10:30 - 00002236 _____ () C:\Users\lenic_000\Desktop\Ulead Photo Express 3.0 SE.lnk
2015-02-27 10:30 - 2015-02-27 10:30 - 00000319 _____ () C:\Windows\ULEAD32.INI
2015-02-27 10:30 - 2015-02-27 10:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ulead Photo Express 3.0 SE
2015-02-27 10:29 - 2015-02-27 10:29 - 00000000 ____D () C:\Program Files (x86)\Ulead Systems
2015-02-27 10:29 - 1999-08-17 12:10 - 00028672 _____ (Ulead Systems, Inc.) C:\Windows\Photo Express 3.scr
2015-02-27 10:29 - 1998-10-29 16:45 - 00306688 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2015-02-27 10:29 - 1996-08-24 11:11 - 00027632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CTL3DV2.DLL
2015-02-27 10:29 - 1996-08-23 20:11 - 00384512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCO40.DLL
2015-02-27 10:29 - 1995-10-26 05:55 - 00087328 _____ (Twain Working Group) C:\Windows\TWAIN.DLL
2015-02-27 10:29 - 1995-09-14 03:51 - 00069632 _____ (Twain Working Group) C:\Windows\TWUNK_32.EXE
2015-02-27 10:29 - 1995-09-14 03:51 - 00048560 _____ (Twain Working Group) C:\Windows\TWUNK_16.EXE
2015-02-27 10:29 - 1995-05-22 06:37 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC30.DLL
2015-02-27 10:29 - 1995-05-22 06:37 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCO30.DLL
2015-02-25 22:37 - 2015-02-25 22:37 - 00104448 _____ () C:\Users\Vojtěch\Downloads\Belbin_test.xls
2015-02-25 20:00 - 2015-02-25 20:01 - 00036563 _____ () C:\Users\Vojtěch\Downloads\Europass-CV-20150225-Oczka-CS.xml
2015-02-25 18:11 - 2014-10-29 02:27 - 01200128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2015-02-25 18:11 - 2014-10-29 02:04 - 00868352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2015-02-25 18:10 - 2014-12-13 22:28 - 00513488 _____ () C:\Windows\SysWOW64\locale.nls
2015-02-25 18:10 - 2014-12-13 22:28 - 00513488 _____ () C:\Windows\system32\locale.nls
2015-02-25 18:10 - 2014-10-29 02:27 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2015-02-25 18:10 - 2014-10-29 02:04 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2015-02-24 16:48 - 2015-02-24 16:48 - 00652864 _____ () C:\Users\Vojtěch\Downloads\7235v38.zip
2015-02-24 16:32 - 2015-02-24 16:36 - 00000000 ____D () C:\AdwCleaner
2015-02-24 16:30 - 2015-02-24 16:30 - 02126848 _____ () C:\Users\Vojtěch\Desktop\adwcleaner_4.111.exe
2015-02-22 17:20 - 2015-02-22 17:20 - 00001070 _____ () C:\Users\Vojtěch\Desktop\OffLine 2.0.24.3.lnk
2015-02-22 17:20 - 2015-02-22 17:20 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\OffLine
2015-02-22 17:20 - 2015-02-22 17:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OffLine 2.0.24.3
2015-02-22 17:20 - 2015-02-22 17:20 - 00000000 ____D () C:\Program Files (x86)\OffLine 2.0.24.3
2015-02-22 17:18 - 2015-02-22 17:18 - 01447092 _____ (Photomate, s.r.o. & Martin Mandak ) C:\Users\Vojtěch\Downloads\mojefoto online.exe
2015-02-22 17:04 - 2015-02-22 17:04 - 02126848 _____ () C:\Users\Vojtěch\Downloads\AdwCleaner.exe
2015-02-22 14:04 - 2015-02-22 14:04 - 00000000 ____D () C:\Users\Vojtěch\Downloads\Hacking Windows 7 x64
2015-02-21 11:44 - 2015-02-21 13:34 - 2409277051 _____ () C:\Users\Vojtěch\Downloads\Hacking Windows 7 x64.zip
2015-02-20 13:51 - 2015-02-20 13:51 - 00000283 _____ () C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Koš.lnk
2015-02-20 10:30 - 2015-02-20 10:30 - 00000000 ____D () C:\Users\Vojtěch\Downloads\Kali-Linux-1.0.9-vm-486
2015-02-20 10:27 - 2015-02-20 10:27 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\JetBrains
2015-02-20 10:25 - 2015-02-20 10:27 - 00000000 ____D () C:\Users\Vojtěch\.android
2015-02-20 10:25 - 2015-02-20 10:26 - 00000000 ____D () C:\Users\Vojtěch\.AndroidStudio
2015-02-20 10:25 - 2015-02-20 10:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio
2015-02-20 10:19 - 2015-02-20 10:19 - 00000000 ____D () C:\Program Files\Android
2015-02-20 10:19 - 2015-02-20 10:19 - 00000000 ____D () C:\android
2015-02-20 10:14 - 2015-02-20 10:13 - 00320424 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2015-02-20 10:13 - 2015-02-20 10:13 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2015-02-20 10:13 - 2015-02-20 10:13 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2015-02-20 10:13 - 2015-02-20 10:13 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-02-20 10:12 - 2015-02-20 10:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-02-20 10:11 - 2015-02-20 10:13 - 00000000 ____D () C:\Program Files\Java
2015-02-20 09:50 - 2015-02-20 09:52 - 135816096 _____ (Oracle Corporation) C:\Users\Vojtěch\Downloads\jdk-7u75-windows-x64.exe
2015-02-19 21:39 - 2015-02-19 22:00 - 856233768 _____ (Google Inc.) C:\Users\Vojtěch\Downloads\android-studio-bundle-135.1740770-windows.exe
2015-02-19 21:28 - 2015-02-19 22:58 - 164760638 _____ () C:\Users\Vojtěch\Downloads\Kali-Linux-1.0.9-vm-486.zip
2015-02-19 21:19 - 2015-02-19 21:19 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\Wireshark
2015-02-19 21:17 - 2015-02-19 21:18 - 79155192 _____ (VMware, Inc.) C:\Users\Vojtěch\Downloads\VMware-player-7.1.0-2496824.exe
2015-02-19 20:28 - 2015-02-19 20:28 - 00000000 ____D () C:\rsit
2015-02-19 20:28 - 2015-02-19 20:28 - 00000000 ____D () C:\Program Files\trend micro
2015-02-19 19:39 - 2015-02-19 19:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2015-02-19 19:39 - 2015-02-19 19:39 - 00000000 ____D () C:\Program Files (x86)\WinPcap
2015-02-19 19:38 - 2015-02-19 19:39 - 00000000 ____D () C:\Program Files (x86)\Wireshark
2015-02-19 19:38 - 2015-02-19 19:38 - 00001754 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2015-02-19 19:37 - 2015-02-19 19:38 - 23579536 _____ (Wireshark development team) C:\Users\Vojtěch\Downloads\Wireshark-win32-1.12.3.exe
2015-02-16 17:40 - 2015-02-16 17:40 - 01238970 _____ () C:\Users\Vojtěch\Documents\test.pptx
2015-02-16 12:34 - 2015-02-16 12:34 - 00005117 _____ () C:\Users\Vojtěch\Desktop\1.sh3d
2015-02-16 12:34 - 2015-02-16 12:34 - 00000956 _____ () C:\Users\Vojtěch\Desktop\Sweet Home 3D.lnk
2015-02-16 12:34 - 2015-02-16 12:34 - 00000000 ____D () C:\Users\Vojtěch\eTeks
2015-02-16 12:34 - 2015-02-16 12:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eTeks Sweet Home 3D
2015-02-16 12:33 - 2015-02-16 12:34 - 00000000 ____D () C:\Program Files\Sweet Home 3D
2015-02-16 12:33 - 2015-02-16 12:33 - 41662512 _____ (eTeks ) C:\Users\Vojtěch\Downloads\SweetHome3D-4.6-windows.exe
2015-02-13 09:42 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2015-02-13 09:42 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2015-02-13 07:55 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-13 07:55 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-12 17:05 - 2015-02-12 17:13 - 233832448 _____ () C:\Users\Vojtěch\Downloads\gparted-live-0.21.0-1-i586.iso
2015-02-12 10:29 - 2015-02-12 10:29 - 15945984 _____ () C:\Users\Vojtěch\Downloads\Oracle_VM_VirtualBox_Extension_Pack-4.3.20-96996.vbox-extpack
2015-02-11 23:02 - 2015-02-11 23:05 - 248901632 _____ () C:\Users\Vojtěch\Downloads\NAS4Free-x86-LiveCD-9.3.0.2.1349.iso
2015-02-11 22:40 - 2015-02-11 22:40 - 00001075 _____ () C:\Users\Public\Desktop\Win32DiskImager.lnk
2015-02-11 22:40 - 2015-02-11 22:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Writer
2015-02-11 22:40 - 2015-02-11 22:40 - 00000000 ____D () C:\Program Files (x86)\ImageWriter
2015-02-11 22:39 - 2015-02-11 22:40 - 12290974 _____ (ImageWriter Developers ) C:\Users\Vojtěch\Downloads\Win32DiskImager-0.9.5-install.exe
2015-02-11 21:31 - 2015-02-11 21:52 - 995098624 _____ () C:\Users\Vojtěch\Downloads\NAS4Free-x86-LiveUSB-9.3.0.2.1349.img
2015-02-11 15:16 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-11 15:16 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-11 15:16 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-02-11 15:16 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-02-11 15:16 - 2015-01-13 23:11 - 01762840 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-11 15:16 - 2015-01-13 23:04 - 01489072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-11 15:16 - 2015-01-10 10:10 - 07472960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-11 15:16 - 2015-01-10 10:10 - 01733440 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-02-11 15:16 - 2015-01-10 09:28 - 01498360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-02-11 15:16 - 2014-12-19 09:57 - 00788680 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-11 15:16 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-11 15:16 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-11 15:16 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-11 15:16 - 2014-12-09 00:12 - 00391526 _____ () C:\Windows\system32\ApnDatabase.xml
2015-02-11 15:16 - 2014-10-29 03:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-11 15:16 - 2014-10-29 03:50 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-11 15:16 - 2014-10-29 03:06 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-11 15:16 - 2014-10-29 03:06 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-11 15:16 - 2014-10-29 03:02 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-02-11 15:16 - 2014-10-29 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-02-11 15:16 - 2014-10-29 02:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-02-11 15:16 - 2014-10-29 02:31 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-11 15:16 - 2014-10-29 02:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-02-11 15:16 - 2014-10-29 02:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-02-11 15:16 - 2014-10-29 02:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-02-11 15:16 - 2014-10-29 02:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-02-11 15:16 - 2014-10-29 02:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-02-11 15:15 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-11 15:15 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-11 15:15 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-11 15:15 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-11 15:15 - 2015-01-12 03:34 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-02-11 15:15 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-11 15:15 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-11 15:15 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-11 15:15 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-11 15:15 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-11 15:15 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-11 15:15 - 2015-01-12 02:58 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-02-11 15:15 - 2015-01-12 02:55 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-02-11 15:15 - 2015-01-12 02:51 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-02-11 15:15 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-11 15:15 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-11 15:15 - 2015-01-12 02:48 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-11 15:15 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-11 15:15 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-11 15:15 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-11 15:15 - 2015-01-12 02:34 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-02-11 15:15 - 2015-01-12 02:30 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-02-11 15:15 - 2015-01-12 02:27 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-02-11 15:15 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-11 15:15 - 2015-01-12 02:25 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-02-11 15:15 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-11 15:15 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-11 15:15 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-11 15:15 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-11 15:15 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-11 15:15 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-11 15:15 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-11 15:15 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-11 15:15 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-11 15:15 - 2015-01-10 08:00 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-11 15:15 - 2015-01-10 07:38 - 00359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-11 15:14 - 2015-02-04 00:38 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-02-11 15:14 - 2015-02-04 00:08 - 00761856 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-02-11 15:14 - 2015-02-04 00:08 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-02-11 15:14 - 2015-02-03 00:11 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-02-11 15:14 - 2015-02-03 00:11 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-02-11 15:14 - 2015-02-03 00:11 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-02-11 15:14 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-02-11 15:14 - 2015-01-10 09:22 - 04175872 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-10 19:13 - 2015-02-10 19:14 - 00000406 _____ () C:\Users\lenic_000\Desktop\lenička.txt
2015-02-08 15:01 - 2015-02-12 18:41 - 00002248 ____H () C:\Users\Vojtěch\Documents\Default.rdp
2015-02-07 20:26 - 2015-02-07 20:26 - 00000016 _____ () C:\Users\lenic_000\Desktop\Nový textový dokument.txt
2015-02-07 20:12 - 2015-02-08 14:32 - 00002246 ____H () C:\Users\lenic_000\Documents\Default.rdp
2015-02-07 15:08 - 2015-02-07 15:08 - 04831232 _____ (Geza Kovacs) C:\Users\lenic_000\Downloads\unetbootin-windows-608.exe
2015-02-07 15:07 - 2015-02-07 15:30 - 1028653056 _____ () C:\Users\lenic_000\Downloads\ubuntu-14.04.1-desktop-amd64.iso
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-06 21:03 - 2014-11-08 17:40 - 01766999 _____ () C:\Windows\WindowsUpdate.log
2015-03-06 21:00 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2015-03-06 20:59 - 2015-01-14 19:46 - 00004982 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for PC-VOJTA-Vojtěch pc-vojta
2015-03-06 20:55 - 2014-11-09 11:29 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-03-06 20:49 - 2014-11-08 17:56 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-100684261-1644508502-2125021975-1001
2015-03-06 20:12 - 2014-11-09 16:57 - 00000978 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-06 19:28 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-03-06 19:24 - 2014-11-08 17:52 - 00003978 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{8ADC7B6C-C553-45CF-9903-E39E2D709EC6}
2015-03-06 19:21 - 2014-11-08 17:42 - 01943106 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-06 19:21 - 2013-08-22 23:05 - 00803648 _____ () C:\Windows\system32\perfh005.dat
2015-03-06 19:21 - 2013-08-22 23:05 - 00184704 _____ () C:\Windows\system32\perfc005.dat
2015-03-06 19:18 - 2014-11-09 16:57 - 00000974 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-06 19:18 - 2014-11-08 17:52 - 00000000 ___DO () C:\Users\Vojtěch\SkyDrive
2015-03-06 19:17 - 2014-12-05 20:02 - 00000000 ___DO () C:\Users\lenic_000\OneDrive
2015-03-06 19:16 - 2014-12-14 20:09 - 00000000 ____D () C:\ProgramData\VMware
2015-03-06 19:16 - 2014-12-05 19:50 - 00000000 ____D () C:\Users\lenic_000
2015-03-06 19:16 - 2014-11-08 18:08 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-03-06 19:16 - 2013-08-22 15:45 - 00004826 _____ () C:\Windows\setupact.log
2015-03-06 19:16 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-06 19:15 - 2014-11-08 18:03 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-06 15:21 - 2015-01-14 19:36 - 00003986 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{C2632A8B-DF86-4A25-AF28-36D7F525AB30}
2015-03-05 21:51 - 2014-12-05 20:05 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-100684261-1644508502-2125021975-1002
2015-03-05 21:05 - 2014-12-12 20:50 - 00000000 ____D () C:\Users\lenic_000\AppData\Roaming\vlc
2015-03-05 19:50 - 2013-08-22 14:25 - 00524288 ___SH () C:\Windows\system32\config\BBI
2015-03-03 23:08 - 2014-11-08 17:48 - 00000000 ____D () C:\Users\Vojtěch
2015-03-03 01:10 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-03-03 00:32 - 2014-11-09 00:33 - 00000000 ____D () C:\Windows\Minidump
2015-03-03 00:31 - 2014-11-09 00:33 - 434037199 _____ () C:\Windows\MEMORY.DMP
2015-03-03 00:28 - 2014-12-14 20:12 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\VMware
2015-03-03 00:28 - 2014-12-14 20:12 - 00000000 ____D () C:\Users\Vojtěch\AppData\Local\VMware
2015-03-03 00:27 - 2014-11-08 17:48 - 00000000 ____D () C:\Users\Vojtěch\AppData\Local\Packages
2015-03-02 21:59 - 2014-11-09 00:04 - 00000000 ____D () C:\Users\Vojtěch\.VirtualBox
2015-02-28 20:45 - 2014-11-10 17:23 - 00000000 ____D () C:\Users\Vojtěch\VirtualBox VMs
2015-02-27 12:51 - 2014-11-09 11:21 - 00000000 ____D () C:\Users\Vojtěch\Documents\Visual Studio 2013
2015-02-27 10:34 - 2014-12-05 19:50 - 00000000 ____D () C:\Users\lenic_000\AppData\Local\VirtualStore
2015-02-27 10:33 - 2013-08-22 15:44 - 00677040 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-25 21:49 - 2014-11-08 20:32 - 00000000 ____D () C:\Users\Vojtěch\AppData\Roaming\vlc
2015-02-24 08:53 - 2014-11-08 17:26 - 00010194 _____ () C:\Windows\PFRO.log
2015-02-24 08:51 - 2014-11-08 17:48 - 00000000 ____D () C:\Users\Vojtěch\AppData\Local\VirtualStore
2015-02-23 20:04 - 2015-01-13 22:31 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-02-20 13:52 - 2014-12-02 13:11 - 00000000 ____D () C:\Users\Vojtěch\Downloads\freerapid
2015-02-20 10:16 - 2014-11-10 18:44 - 00002203 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-02-17 00:05 - 2014-11-09 16:58 - 00000000 ___RD () C:\Users\Vojtěch\Disk Google
2015-02-16 13:32 - 2014-11-08 17:26 - 00000000 ____D () C:\Windows\Panther
2015-02-16 13:29 - 2015-01-21 01:47 - 00000000 ___HD () C:\$Windows.~BT
2015-02-13 12:46 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache
2015-02-12 20:29 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\FxsTmp
2015-02-12 09:40 - 2014-12-10 08:56 - 00000000 ____D () C:\Windows\system32\appraiser
2015-02-12 09:40 - 2014-11-13 22:55 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-02-12 00:09 - 2014-11-10 10:51 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-12 00:04 - 2014-11-10 10:51 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-10 23:40 - 2014-12-10 15:03 - 00000000 ____D () C:\Users\lenic_000\AppData\Roaming\Skype
2015-02-05 14:07 - 2014-11-09 16:57 - 00003950 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-05 14:07 - 2014-11-09 16:57 - 00003714 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-04 19:55 - 2014-11-09 11:29 - 00003802 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
==================== Files in the root of some directories =======
2015-01-24 14:12 - 2015-01-24 14:12 - 0023391 _____ () C:\Users\Vojtěch\AppData\Local\recently-used.xbel
Some content of TEMP:
====================
C:\Users\Vojtěch\AppData\Local\Temp\130666118553279402.exe
C:\Users\Vojtěch\AppData\Local\Temp\13066611872437922399.exe
C:\Users\Vojtěch\AppData\Local\Temp\install_flashplayer16x32au_mssd_aaa_aih.exe
C:\Users\Vojtěch\AppData\Local\Temp\Quarantine.exe
C:\Users\Vojtěch\AppData\Local\Temp\sqlite3.dll
C:\Users\Vojtěch\AppData\Local\Temp\{B5D2C3E6-2144-49EF-8D9C-2C4C4AE2AEC5}.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-03-02 20:36
==================== End Of Log ============================
- Přílohy
-
- Addition.zip
- (10.06 KiB) Staženo 74 x
Re: Prosím o preventivku
Mate nainstalovano vice verzi Javy, takze duplicity odinstalovat a zbytek aktualizovat (aktualne 8U40) - pozor na adware (Ask toolbar) pri instalaci.- Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
- ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
- znovu spustte FRST a kliknete na Fix
- po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi
Kód: Vybrat vše
Start CloseProcesses: HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1796056 2014-08-19] (NVIDIA Corporation) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation) SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 2015-02-24 16:32 - 2015-02-24 16:36 - 00000000 ____D () C:\AdwCleaner 2015-02-24 16:30 - 2015-02-24 16:30 - 02126848 _____ () C:\Users\Vojtěch\Desktop\adwcleaner_4.111.exe 2015-02-22 17:04 - 2015-02-22 17:04 - 02126848 _____ () C:\Users\Vojtěch\Downloads\AdwCleaner.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe EmptyTemp: End
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Prosím o preventivku
Omlouvam se, nedodrzel jsem uplne postup... nejdrive jse dal fix, pak jsem odinstaloval javu a udelel update a pak jsem spustil znovu fix pri kterem jsem premazal 1. log coz mi nedoslo pred spustenim. Jeste jednou se omlouvam.
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 09-03-2015 01
Ran by Vojtěch at 2015-03-10 18:58:39 Run:2
Running from C:\Users\Vojtěch\Desktop
Loaded Profiles: Vojtěch (Available profiles: Vojtěch & lenic_000)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1796056 2014-08-19] (NVIDIA Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
2015-02-24 16:32 - 2015-02-24 16:36 - 00000000 ____D () C:\AdwCleaner
2015-02-24 16:30 - 2015-02-24 16:30 - 02126848 _____ () C:\Users\Vojtěch\Desktop\adwcleaner_4.111.exe
2015-02-22 17:04 - 2015-02-22 17:04 - 02126848 _____ () C:\Users\Vojtěch\Downloads\AdwCleaner.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
"C:\AdwCleaner" => File/Directory not found.
"C:\Users\Vojtěch\Desktop\adwcleaner_4.111.exe" => File/Directory not found.
"C:\Users\Vojtěch\Downloads\AdwCleaner.exe" => File/Directory not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job not found.
EmptyTemp: => Removed 20.7 MB temporary data.
The system needed a reboot.
==== End of Fixlog 18:58:56 ====
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 09-03-2015 01
Ran by Vojtěch at 2015-03-10 18:58:39 Run:2
Running from C:\Users\Vojtěch\Desktop
Loaded Profiles: Vojtěch (Available profiles: Vojtěch & lenic_000)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1796056 2014-08-19] (NVIDIA Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
2015-02-24 16:32 - 2015-02-24 16:36 - 00000000 ____D () C:\AdwCleaner
2015-02-24 16:30 - 2015-02-24 16:30 - 02126848 _____ () C:\Users\Vojtěch\Desktop\adwcleaner_4.111.exe
2015-02-22 17:04 - 2015-02-22 17:04 - 02126848 _____ () C:\Users\Vojtěch\Downloads\AdwCleaner.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
"C:\AdwCleaner" => File/Directory not found.
"C:\Users\Vojtěch\Desktop\adwcleaner_4.111.exe" => File/Directory not found.
"C:\Users\Vojtěch\Downloads\AdwCleaner.exe" => File/Directory not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job not found.
EmptyTemp: => Removed 20.7 MB temporary data.
The system needed a reboot.
==== End of Fixlog 18:58:56 ====
Re: Prosím o preventivku
jinak po restartovani pc nelze spoustet dost programu...chybi knihovny ktere fix odstranil..., mam dat zkusit vratit zmeny pomoci bodu obnoveni nebo navrhujete neco jineho?
Re: Prosím o preventivku
Problem pretrvava i po dalsim restartu? Jakou chybu aplikace vykazuji?
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Prosím o preventivku
Nemuzu vam popsat presnou hlasku ktera tam byla, protoze jsem chtel zkusit pro jistotu jeste 3 restart ale ten zapricinul nefunkcnost celeho pc z duvodu ze se zacli pri restartu instalovat jeste aktualizace win ktere po dokonceni a naslednem najizdeni systemu nebyli schopne se dokoncit a zobrazovali stale hlasku pockejte prosim a zkusil jsme to nechat celou noc ale beze zmeny... Musel jsem dat obnovit system z bodu obnoveni z pred spustenim fixu a odinstalaci javy...
Jinak programy vykazovali problem typu zda je zvolen spravny operacni system a ze nemuzou najit knihovny kde byla cesta ktera mela neco spolecneho s tempem a nasledne se ukoncili nebo pripadne zmizel i spousteci zastupce. Jinak programy co jsme zkousel byli: Panda Free andtivirus, MBAM, Zonealarm, google drive - tyto nefungovali ale napriklad firefox fungoval bez problemu.
Pisi az ted prt jsem terpve dneska obnovil pc pomoci bodu obnoveni a instalacniho cd.
Jinak programy vykazovali problem typu zda je zvolen spravny operacni system a ze nemuzou najit knihovny kde byla cesta ktera mela neco spolecneho s tempem a nasledne se ukoncili nebo pripadne zmizel i spousteci zastupce. Jinak programy co jsme zkousel byli: Panda Free andtivirus, MBAM, Zonealarm, google drive - tyto nefungovali ale napriklad firefox fungoval bez problemu.
Pisi az ted prt jsem terpve dneska obnovil pc pomoci bodu obnoveni a instalacniho cd.
Re: Prosím o preventivku
Dekuji za informace.
Mohlo se sejit vic failu a je dost mozne, ze vycisteni tempu je jen souhra nahod, ktera je v tom nevinne, ale prozkoumame to.
Panda se ve stredu sama "pojidala" http://www.theregister.co.uk/2015/03/11 ... _self_pwn/
Jedna aktualizace na W7 zpusobovala cyklicke restarty (nepatral jsem po tom, zda opravdu jen W7) http://krebsonsecurity.com/2015/03/ms-u ... boot-loop/
A do toho podezreni, ze problemy zpusobilo vymazani tempu...
Postup kolegy Naughtyho:
Po stazeni http://www.xuetr.com/download/PCHunter_free.zip
(rezervni odkaz http://www.epoolsoft.com/pchunter/PCHunter_free.zip ),
rozbaleni, spusteni spravne verze dle operacniho systemu 32b vs 64b, prejdi do zalozky Examination, v ni zaskrkej vsechny volby, dej generovat, po skonceni generovani klik na exportovat - textak do raru a vloz do prispevku (neb bude dlouhy a nevesel by se).
Mohlo se sejit vic failu a je dost mozne, ze vycisteni tempu je jen souhra nahod, ktera je v tom nevinne, ale prozkoumame to.
Panda se ve stredu sama "pojidala" http://www.theregister.co.uk/2015/03/11 ... _self_pwn/
Jedna aktualizace na W7 zpusobovala cyklicke restarty (nepatral jsem po tom, zda opravdu jen W7) http://krebsonsecurity.com/2015/03/ms-u ... boot-loop/
A do toho podezreni, ze problemy zpusobilo vymazani tempu...
Postup kolegy Naughtyho:Po stazeni http://www.xuetr.com/download/PCHunter_free.zip
(rezervni odkaz http://www.epoolsoft.com/pchunter/PCHunter_free.zip ),
rozbaleni, spusteni spravne verze dle operacniho systemu 32b vs 64b, prejdi do zalozky Examination, v ni zaskrkej vsechny volby, dej generovat, po skonceni generovani klik na exportovat - textak do raru a vloz do prispevku (neb bude dlouhy a nevesel by se).
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Přispějete na provoz fóra?