VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Vir nebo falešný poplach?

https://forum.viry.cz:443/viewtopic.php?t=134405

Stránka 2 z 2

Re: Vir nebo falešný poplach?

Napsal: 03 pro 2013 11:30
od johny231
Nainstaloval jsem Bitdefender. Děkuji za doporučení.

Log:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-12-2013
Ran by Já (administrator) on A05-0237A on 03-12-2013 11:21:26
Running from C:\Users\Já\Desktop
Windows 8.1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
(Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Soluto) C:\Program Files\Soluto\SolutoLauncherService.exe
(Soluto) C:\Program Files\Soluto\SolutoService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Desktop.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe
(Soluto) C:\Program Files\Soluto\Soluto.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\livecomm.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Lenovo) C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Connectify) C:\Program Files (x86)\Connectify\DispatchUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
(SODATSW spol. s r.o.) C:\Program Files (x86)\StartW8\bin\StartW8Button.exe
(SODATSW spol. s r. o.) C:\Program Files (x86)\StartW8\bin\StartW8Menu.exe
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(forum.viry.cz) C:\Users\Já\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13260944 2012-11-19] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1253520 2012-11-19] (Realtek Semiconductor)
HKLM\...\Run: [BTMTrayAgent] - rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [OnekeyStudio] - C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-08-10] (Lenovo)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [191544 2013-12-01] (Lenovo(beijing) Limited)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-03-22] (Intel Corporation)
HKLM\...\Run: [Connectify Dispatch] - C:\Program Files (x86)\Connectify\DispatchUI.exe [2233120 2013-09-24] (Connectify)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2958648 2012-10-04] (Synaptics Incorporated)
HKLM\...\Run: [Connectify Hotspot] - C:\Program Files (x86)\Connectify\Connectify.exe [4162336 2013-09-24] (Connectify)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376 2013-12-01] (Lenovo (Beijing) Limited)
HKLM\...\Winlogon: [Userinit] c:\windows\system32\userinit.exe,c:\program files\soluto\soluto.exe /userinit
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKCU\...\Run: [ApacheTomcatMonitor6.0_Tomcat6] - C:\web\tomcat\bin\Tomcat6w.exe [104448 2013-04-29] (Apache Software Foundation)
HKCU\...\Run: [Sony PC Companion] - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449248 2013-05-29] (Sony)
HKCU\...\Run: [Gadwin PrintScreen] - C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe [1842384 2012-05-30] (Gadwin Systems, Inc)
HKCU\...\Run: [Zoner Photo Studio Autoupdate] - C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe [774680 2013-06-07] (ZONER software)
HKCU\...\Run: [Lync] - C:\Program Files\Microsoft Office 15\root\office15\lync.exe [18741408 2013-11-13] (Microsoft Corporation)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
MountPoints2: {41bd7ca9-bfff-11e2-be7c-6036dd63262f} - "F:\vs_ultimate.exe"
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-07-18] (Intel Corporation)
HKLM-x32\...\Run: [Lenovo App Shop] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-07-18] (Intel Corporation)
HKLM-x32\...\Run: [StartW8Button] - C:\Program Files (x86)\StartW8\bin\StartW8Button.exe [59784 2013-08-28] (SODATSW spol. s r.o.)
HKLM-x32\...\Run: [] - [x]
AppInit_DLLs: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL [ ] ()
AppInit_DLLs-x32: C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll [ ] ()
Startup: C:\Users\Já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TeamViewer 8.lnk
ShortcutTarget: TeamViewer 8.lnk -> C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe (TeamViewer GmbH)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - {C81EE546-69D2-4BBF-9332-D5CE0D398624} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM-x32 - {C81EE546-69D2-4BBF-9332-D5CE0D398624} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKCU - {5D0F76F3-9421-4CBE-9B65-DAC098BBE271} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
SearchScopes: HKCU - {C81EE546-69D2-4BBF-9332-D5CE0D398624} URL =
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Já\AppData\Roaming\Slick Savings\Coupons64.dll No File
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft Web Test Recorder 10.0 Helper - {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
BHO-x32: No Name - {95289393-33EA-4F8D-B952-483415B9C955} - No File
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 147.229.190.143 147.229.191.143

FireFox:
========
FF ProfilePath: C:\Users\Já\AppData\Roaming\Mozilla\Firefox\Profiles\dpe2kumm.default
FF Homepage: about:home
FF DefaultSearchEngine: Yahoo!
FF SelectedSearchEngine: Yahoo!
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=402027&p=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.20 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 - C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: intel.com/AppUp - C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll (Intel)
FF Plugin HKCU: intel.com/AppUpx64 - C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll (Intel)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: sony.com/MediaGoDetector - C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll (Sony Network Entertainment International LLC)
FF SearchPlugin: C:\Users\Já\AppData\Roaming\Mozilla\Firefox\Profiles\dpe2kumm.default\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Start Page - C:\Users\Já\AppData\Roaming\Mozilla\Firefox\Profiles\dpe2kumm.default\Extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
FF Extension: iobitapps - C:\Users\Já\AppData\Roaming\Mozilla\Firefox\Profiles\dpe2kumm.default\Extensions\iobitapps@mybrowserbar.com
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://search.gboxapp.com/?affid=gb2", "", "hxxp://search.gboxapp.com/", "hxxp://www1.delta-search.com/?affID=119816&tt=gc_170513_18210&babsrc=HP_ss&mntrId=5CFC6036DD63262C", "hxxp://www.google.com"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (McAfee SecurityCenter) - c:\progra~2\mcafee\msc\npmcsn~1.dll No File
CHR Extension: (Google Docs) - C:\Users\JA30B~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\JA30B~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\JA30B~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\JA30B~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (AdBlock) - C:\Users\JA30B~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.16_0
CHR Extension: (avast! Online Security) - C:\Users\JA30B~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0
CHR Extension: (VratnePenize.cz) - C:\Users\JA30B~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiekfaemafmplemocgimeccahephhdgf\1.0_0
CHR Extension: (Vylep\u0161en\u00ED WISu) - C:\Users\JA30B~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\macimepnbaggfjekcmlcohlffafgamcc\1.4_0
CHR Extension: (Google Wallet) - C:\Users\JA30B~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Users\JA30B~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [aaaaoggiphohkihibdkcnhnokmkfmhnj] - C:\Users\Já\AppData\Local\APN\GoogleCRXs\aaaaoggiphohkihibdkcnhnokmkfmhnj_7.17.6.0.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx

==================== Services (Whitelisted) =================

S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [484592 2013-10-04] (BitRaider, LLC)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2013-10-17] (Microsoft Corporation)
R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [487936 2013-09-24] (Connectify)
R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2012-03-30] (Diskeeper Corporation)
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [154112 2013-03-19] (Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [5708800 2013-03-19] (Firebird Project)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [139776 2012-07-25] (Microsoft Corporation)
R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [69368 2013-10-23] (Bitdefender)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-03-22] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-20] (Intel Corporation)
S4 ktupdaterservice; C:\Program Files (x86)\Kerio\UpdaterService\ktupdaterservice.exe [949760 2013-11-03] (Kerio Technologies Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-04-18] ()
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-09-17] (Microsoft Corporation)
S4 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)
R2 SolutoLauncherService; C:\Program Files\Soluto\SolutoLauncherService.exe [221728 2013-07-10] (Soluto)
S3 SolutoRemoteService; C:\Program Files\Soluto\SolutoRemoteService.exe [1942528 2013-07-10] (GlavSoft LLC.)
S4 StartW8Service; C:\Program Files (x86)\StartW8\bin\StartW8Service.exe [620424 2013-05-23] (SODATSW spol. s .r.o.)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [126976 2012-07-25] (Microsoft Corporation)
S4 Tomcat6; C:\web\tomcat\bin\Tomcat6.exe [103936 2013-04-29] (Apache Software Foundation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3388144 2013-04-18] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2013-04-17] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-07-02] (Bitdefender SRL)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-10-15] (Motorola Solutions, Inc.)
R1 cnnctfy3; C:\Windows\system32\DRIVERS\cnnctfy3.sys [35352 2013-10-30] (Connectify)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2013-05-18] (DT Soft Ltd)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2012-03-30] (Diskeeper Corporation)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [95024 2012-03-30] (Diskeeper Corporation)
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-10-08] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-03-20] (Intel Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3345376 2013-09-04] (Intel Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8230160 2012-10-17] (Realtek Semiconductor Corp.)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [230912 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146272 2013-08-22] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44344 2012-10-04] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 VSPerfDrv110; C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [70264 2012-07-13] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
R3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [230912 2013-08-22] (Microsoft Corporation)
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [261056 2012-11-02] (BitDefender)
R3 cpuz136; \??\C:\WINDOWS\TEMP\cpuz136\cpuz136_x64.sys [x]
S3 iSafeKrnl; \??\C:\Program Files (x86)\iSafe\iSafeKrnl.sys [x]
S1 iSafeNetFilter; \??\C:\Program Files (x86)\iSafe\iSafeNetFilter.sys [x]
S3 NTGUARD; \??\C:\Program Files (x86)\IKARUS\anti.virus\bin\NTGUARD_X64.SYS [x]
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-03 11:21 - 2013-12-03 11:22 - 00026130 _____ C:\Users\Já\Desktop\FRST.txt
2013-12-03 11:10 - 2013-12-03 11:10 - 00203431 _____ C:\ProgramData\1386065061.bdinstall.bin
2013-12-03 11:06 - 2013-12-03 11:06 - 00002203 _____ C:\Users\Public\Desktop\Bitdefender Antivirus Free Edition.lnk
2013-12-03 11:06 - 2013-04-17 14:59 - 00718840 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2013-12-03 11:06 - 2013-04-17 14:59 - 00593144 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2013-12-03 11:06 - 2012-11-02 14:17 - 00261056 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avchv.sys
2013-12-03 11:04 - 2013-12-03 11:06 - 00000000 ____D C:\Program Files\Bitdefender
2013-12-03 11:04 - 2013-12-03 11:05 - 00000000 ____D C:\Users\Já\AppData\Roaming\QuickScan
2013-12-03 11:04 - 2013-05-28 12:12 - 00382536 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2013-12-03 11:04 - 2013-04-22 13:21 - 00148696 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2013-12-03 10:39 - 2013-12-03 10:39 - 00000085 _____ C:\WINDOWS\wininit.ini
2013-12-03 09:34 - 2013-12-03 09:34 - 00008410 _____ C:\Users\Já\Desktop\Addition.zip
2013-12-03 09:21 - 2013-12-03 09:21 - 00000000 ____D C:\FRST
2013-12-03 09:19 - 2013-12-03 09:16 - 00112640 _____ (forum.viry.cz) C:\Users\Já\Desktop\FRSTLauncher.exe
2013-12-03 09:17 - 2013-12-03 09:16 - 01959434 _____ (Farbar) C:\Users\Já\Desktop\FRST64.exe
2013-12-03 08:24 - 2013-12-03 10:52 - 00070760 _____ C:\WINDOWS\PFRO.log
2013-12-03 00:00 - 2013-12-03 00:00 - 00005994 _____ C:\Users\Já\Desktop\reportviry.txt
2013-12-02 22:40 - 2013-12-02 22:40 - 00001136 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-02 22:40 - 2013-12-02 22:40 - 00000000 ____D C:\Users\Já\AppData\Roaming\Malwarebytes
2013-12-02 22:40 - 2013-12-02 22:40 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-02 22:40 - 2013-12-02 22:40 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-02 22:40 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-12-02 22:30 - 2013-12-02 22:30 - 01110034 _____ C:\Users\Já\Desktop\adwcleaner.exe
2013-12-02 22:29 - 2013-12-02 22:29 - 00002993 _____ C:\Users\Já\Desktop\JRT.txt
2013-12-02 22:24 - 2013-12-02 22:24 - 00000000 ____D C:\WINDOWS\ERUNT
2013-12-02 22:24 - 2013-12-02 22:23 - 01034531 _____ (Thisisu) C:\Users\Já\Desktop\JRT.exe
2013-12-02 20:20 - 2013-12-02 20:50 - 00000000 ____D C:\Program Files\trend micro
2013-12-02 20:20 - 2013-12-02 20:20 - 00000000 ____D C:\rsit
2013-12-02 16:22 - 2013-12-02 16:22 - 00000000 ____D C:\Users\Já\AppData\Roaming\TortoiseGit
2013-12-02 16:16 - 2013-12-02 16:36 - 00000000 ____D C:\Program Files (x86)\Git
2013-12-02 16:12 - 2013-12-02 16:25 - 00000000 ____D C:\Users\Já\AppData\Local\TGitCache
2013-12-02 16:00 - 2013-12-03 11:06 - 00000592 _____ C:\WINDOWS\setupact.log
2013-12-02 16:00 - 2013-12-02 16:00 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-11-30 22:56 - 2013-11-30 22:56 - 00000000 ____D C:\Users\Já\AppData\Local\NVIDIA Corporation
2013-11-29 15:26 - 2013-11-29 16:23 - 00921600 _____ C:\Users\Já\Documents\Database1.accdb
2013-11-29 15:24 - 2013-11-29 15:24 - 00000000 ___SD C:\Users\Já\Documents\Zdroje dat
2013-11-29 15:23 - 2013-11-29 15:23 - 00000000 ____D C:\Users\Já\Documents\Poznámkové bloky aplikace OneNote
2013-11-28 23:50 - 2013-11-28 22:41 - 00014421 _____ C:\Users\Já\Desktop\PDB prvni schuzka.odt
2013-11-28 21:38 - 2013-11-28 21:38 - 00000000 ____D C:\Users\Já\AppData\Roaming\TuneUp Software
2013-11-27 09:07 - 2013-11-27 09:07 - 00001667 _____ C:\Users\Public\Desktop\NVIDIA Nsight HUD Launcher 3.2.lnk
2013-11-27 08:23 - 2013-11-27 08:23 - 00000000 ____D C:\Users\Já\AppData\Roaming\NVIDIA Corporation
2013-11-26 19:42 - 2013-11-26 19:42 - 00000052 _____ C:\Users\Já\Desktop\gamb.txt
2013-11-25 21:27 - 2013-11-25 21:27 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\stflt.sys
2013-11-25 21:10 - 2013-12-03 10:43 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-11-25 21:10 - 2013-11-25 21:10 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2013-11-25 20:47 - 2013-11-25 20:47 - 00000000 _____ C:\autoexec.bat
2013-11-25 20:46 - 2013-11-25 20:58 - 00000000 ____D C:\WINDOWS\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-25 20:42 - 2013-11-28 21:44 - 00000000 ____D C:\Users\Já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2013-11-25 20:38 - 2013-12-03 11:06 - 00000000 ____D C:\WINDOWS\LastGood
2013-11-25 20:38 - 2013-11-25 20:38 - 00000000 ____D C:\iBTWU
2013-11-22 20:45 - 2013-11-23 00:41 - 00000000 ___HD C:\ProgramData\{E5DACD7E-D1D3-4823-8572-CC7E90273D4C}
2013-11-20 15:35 - 2013-11-20 15:35 - 00002400 _____ C:\Users\Já\Desktop\RKreport[0]_D_11202013_153541.txt
2013-11-20 15:34 - 2013-11-20 15:34 - 00002641 _____ C:\Users\Já\Desktop\RKreport[0]_S_11202013_153406.txt
2013-11-20 15:16 - 2013-11-20 15:35 - 00000000 ____D C:\Users\Já\Desktop\RK_Quarantine
2013-11-20 14:22 - 2013-11-20 14:23 - 00000000 ____D C:\ProgramData\Sophos
2013-11-20 13:43 - 2013-12-02 22:33 - 00000000 ____D C:\AdwCleaner
2013-11-20 13:06 - 2013-12-03 11:12 - 01154189 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-20 12:52 - 2013-11-20 12:52 - 00000000 ____D C:\WINDOWS\pss
2013-11-20 12:46 - 2013-11-20 12:46 - 00000000 ____D C:\Users\Já\AppData\Roaming\eCyber
2013-11-20 12:45 - 2013-11-20 12:45 - 00000000 ____D C:\WINDOWS\system32\log
2013-11-19 19:31 - 2013-11-19 19:31 - 00000052 _____ C:\Users\Já\Desktop\gambrinusteamsud.txt
2013-11-19 18:55 - 2013-11-19 18:55 - 00000000 ____D C:\ProgramData\NuGet
2013-11-19 18:55 - 2013-11-19 18:55 - 00000000 ____D C:\Program Files (x86)\NuGet
2013-11-19 18:42 - 2013-11-19 18:42 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools
2013-11-19 18:28 - 2013-11-19 18:30 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2013-11-19 18:26 - 2013-11-14 12:58 - 30361888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 25257248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 22951200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 15862272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 12613408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2013-11-19 18:26 - 2013-11-14 12:58 - 11600432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 11514624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 09691888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 09619872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 03132704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 03125024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 02947872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 02747680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433182.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433182.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 00707360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 00657184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 00609568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 00562464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 00479520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 00405280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 00357152 _____ C:\WINDOWS\system32\NvIFROpenGL.dll
2013-11-19 18:26 - 2013-11-14 12:58 - 00314656 _____ C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2013-11-17 16:01 - 2013-11-17 16:01 - 00000000 ____D C:\Users\Já\AppData\Roaming\LavasoftStatistics
2013-11-17 15:00 - 2013-11-17 15:00 - 00000000 ____D C:\Program Files\Lavasoft
2013-11-17 14:58 - 2013-11-17 14:58 - 00000000 ____D C:\ProgramData\Lavasoft
2013-11-16 21:33 - 2013-03-19 11:21 - 00874496 _____ (Firebird Project) C:\WINDOWS\system32\FBCLIENT.DLL
2013-11-16 21:33 - 2013-03-19 11:02 - 00552960 _____ (Firebird Project) C:\WINDOWS\SysWOW64\GDS32.DLL
2013-11-16 21:29 - 2013-03-19 11:21 - 00874496 _____ (Firebird Project) C:\WINDOWS\system32\FIREBIRD.DLL
2013-11-16 21:28 - 2013-03-19 11:21 - 00874496 _____ (Firebird Project) C:\WINDOWS\system32\GDS32.DLL
2013-11-16 21:28 - 2013-03-19 11:02 - 00552960 _____ (Firebird Project) C:\WINDOWS\SysWOW64\FBCLIENT.DLL
2013-11-16 21:17 - 2013-11-16 21:22 - 00017531 _____ C:\WINDOWS\system32\Drivers\etc\services
2013-11-16 20:12 - 2013-11-16 20:12 - 00000000 ____D C:\Program Files (x86)\Firebird
2013-11-16 18:59 - 2013-11-05 21:21 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-11-16 18:59 - 2013-11-05 19:51 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-11-16 18:59 - 2013-11-05 17:20 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-11-16 18:59 - 2013-11-05 17:11 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-11-16 18:59 - 2013-11-05 15:30 - 11674112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-11-16 18:59 - 2013-11-05 15:29 - 13176320 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-11-16 18:59 - 2013-10-10 12:26 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-11-16 18:59 - 2013-10-10 12:05 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-11-16 18:59 - 2013-10-10 11:34 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-11-16 18:59 - 2013-10-10 11:27 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-11-16 18:58 - 2013-10-23 12:29 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2013-11-16 18:58 - 2013-10-23 12:21 - 00155480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-11-16 18:58 - 2013-10-23 12:13 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2013-11-16 18:58 - 2013-10-23 06:27 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-16 18:58 - 2013-10-23 06:09 - 04104704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-11-16 18:58 - 2013-10-23 06:04 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-16 18:58 - 2013-10-23 05:55 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-11-16 18:58 - 2013-10-23 05:46 - 00700928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-11-16 18:58 - 2013-10-22 09:18 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-11-16 18:58 - 2013-10-22 08:55 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-11-16 18:58 - 2013-10-22 07:03 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-11-16 18:58 - 2013-10-22 06:15 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2013-11-16 18:58 - 2013-10-22 05:04 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2013-11-16 18:58 - 2013-10-22 05:02 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-11-16 18:58 - 2013-10-22 04:56 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-11-16 18:58 - 2013-10-22 04:44 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-11-16 18:58 - 2013-10-22 03:38 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2013-11-16 18:58 - 2013-10-22 03:22 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-11-16 18:58 - 2013-10-22 03:13 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-11-16 18:58 - 2013-10-22 03:07 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-11-16 18:58 - 2013-10-22 02:53 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-11-16 18:58 - 2013-10-22 02:47 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-11-16 18:58 - 2013-10-19 10:13 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-11-16 18:58 - 2013-10-19 09:51 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-11-16 18:58 - 2013-10-19 08:12 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-11-16 18:58 - 2013-10-19 07:24 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-11-16 18:58 - 2013-10-19 05:48 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2013-11-16 18:58 - 2013-10-19 05:03 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2013-11-16 18:58 - 2013-10-19 04:57 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-11-16 18:58 - 2013-10-19 04:28 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-11-16 18:58 - 2013-10-19 04:26 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-11-16 18:58 - 2013-10-19 04:14 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-11-16 18:58 - 2013-10-17 16:42 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-11-16 18:58 - 2013-10-17 16:42 - 01373872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-11-16 18:58 - 2013-10-17 15:04 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-11-16 18:58 - 2013-10-16 10:34 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2013-11-16 18:58 - 2013-10-16 10:33 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2013-11-16 18:58 - 2013-10-13 04:06 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-11-16 18:58 - 2013-10-13 03:43 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-11-16 18:58 - 2013-10-11 16:11 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-11-16 18:58 - 2013-10-11 15:22 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-11-16 18:58 - 2013-10-11 14:24 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-11-16 18:58 - 2013-10-11 14:04 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-11-16 18:58 - 2013-10-11 14:03 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-11-16 18:58 - 2013-10-10 17:44 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2013-11-16 18:58 - 2013-10-10 17:26 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-11-16 18:58 - 2013-10-10 17:26 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2013-11-16 18:58 - 2013-10-10 17:23 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-11-16 18:58 - 2013-10-10 15:53 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-11-16 18:58 - 2013-10-10 15:53 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-11-16 18:58 - 2013-10-10 12:53 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-11-16 18:58 - 2013-10-10 12:38 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2013-11-16 18:58 - 2013-10-10 12:21 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-11-16 18:58 - 2013-10-10 11:40 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-11-16 18:58 - 2013-10-10 11:19 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-11-16 18:58 - 2013-10-09 06:40 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-11-16 18:58 - 2013-10-08 12:07 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-11-16 18:58 - 2013-10-08 11:28 - 00523096 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2013-11-16 18:58 - 2013-10-08 11:13 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-11-16 18:58 - 2013-10-08 07:46 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2013-11-16 18:58 - 2013-10-08 06:58 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2013-11-16 18:58 - 2013-10-08 06:50 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2013-11-16 18:58 - 2013-10-08 06:48 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2013-11-16 18:58 - 2013-10-08 06:15 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2013-11-16 18:58 - 2013-10-08 06:09 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-11-16 18:58 - 2013-10-08 05:50 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2013-11-16 18:58 - 2013-10-08 05:50 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-11-16 18:58 - 2013-10-07 08:21 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-11-16 18:58 - 2013-10-07 08:21 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-11-16 18:58 - 2013-10-07 03:13 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-11-16 18:58 - 2013-10-05 16:25 - 00371032 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-11-16 18:58 - 2013-10-05 16:25 - 00057176 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2013-11-16 18:58 - 2013-10-05 15:21 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-11-16 18:58 - 2013-10-05 13:05 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-11-16 18:58 - 2013-10-05 12:01 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2013-11-16 18:58 - 2013-10-05 12:01 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2013-11-16 18:58 - 2013-10-05 12:00 - 01200640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2013-11-16 18:58 - 2013-10-05 10:36 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2013-11-16 18:58 - 2013-10-05 10:18 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2013-11-16 18:58 - 2013-10-05 10:07 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-11-16 18:58 - 2013-10-05 09:56 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-11-16 18:58 - 2013-10-05 09:55 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-11-16 18:58 - 2013-10-05 09:40 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-11-16 18:58 - 2013-10-05 09:24 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-11-16 18:58 - 2013-10-05 09:21 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-11-16 18:58 - 2013-10-05 09:15 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2013-11-16 18:58 - 2013-10-05 08:43 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-11-16 18:58 - 2013-10-05 08:39 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-11-16 18:58 - 2013-10-05 08:35 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-11-16 18:58 - 2013-10-05 08:32 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-11-16 18:58 - 2013-10-04 09:10 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-11-16 18:58 - 2013-09-19 06:04 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-11-16 18:58 - 2013-09-17 10:06 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-11-16 18:58 - 2013-09-17 10:06 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-11-16 18:58 - 2013-09-17 08:01 - 00270848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-11-16 18:58 - 2013-09-17 07:31 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-11-16 18:58 - 2013-09-17 07:31 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-11-16 18:58 - 2013-09-17 05:37 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2013-11-16 18:58 - 2013-09-14 15:07 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2013-11-16 18:58 - 2013-09-14 15:00 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2013-11-16 18:58 - 2013-09-14 13:39 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2013-11-16 18:58 - 2013-09-14 13:33 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2013-11-16 18:58 - 2013-09-14 11:05 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-11-16 18:58 - 2013-09-14 10:11 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2013-11-16 18:58 - 2013-09-13 09:22 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2013-11-16 18:58 - 2013-09-13 08:47 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2013-11-16 18:58 - 2013-09-12 09:45 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-11-16 18:58 - 2013-09-12 09:08 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-11-16 18:58 - 2013-09-12 09:08 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2013-11-16 18:58 - 2013-09-12 09:02 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2013-11-16 18:58 - 2013-09-12 08:44 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-11-16 18:58 - 2013-09-12 08:37 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-11-16 18:58 - 2013-09-12 08:37 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2013-11-16 18:58 - 2013-09-12 08:21 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2013-11-16 18:58 - 2013-09-12 08:16 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-11-16 18:58 - 2013-09-12 08:01 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2013-11-16 18:58 - 2013-09-11 13:46 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-11-16 18:58 - 2013-09-10 06:26 - 04599808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2013-11-16 18:58 - 2013-09-10 05:52 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2013-11-16 18:58 - 2013-09-10 05:34 - 03934208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2013-11-16 18:39 - 2013-11-06 00:31 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-11-16 18:39 - 2013-11-06 00:31 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-16 14:09 - 2013-11-16 14:09 - 00000000 ____D C:\Program Files\Firebird
2013-11-16 14:08 - 2013-11-16 14:08 - 00001246 _____ C:\Users\Já\Desktop\ukoly.txt – zástupce.lnk
2013-11-14 09:07 - 2013-11-14 09:07 - 00000000 ____D C:\WINDOWS\PCHEALTH
2013-11-14 08:19 - 2013-10-19 09:08 - 23212544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-11-14 08:19 - 2013-10-19 07:37 - 17142784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-11-14 08:19 - 2013-10-19 07:02 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-11-14 08:19 - 2013-10-19 06:37 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2013-11-14 08:19 - 2013-10-19 06:19 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-11-14 08:19 - 2013-10-19 05:52 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-11-14 08:19 - 2013-10-19 05:44 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-11-14 08:19 - 2013-10-19 05:37 - 12995584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-11-14 08:19 - 2013-10-19 05:31 - 01993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-11-14 08:19 - 2013-10-19 04:56 - 11220992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-11-14 08:19 - 2013-10-19 04:55 - 01926656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-11-14 08:19 - 2013-10-19 04:23 - 01394176 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-11-14 08:19 - 2013-10-19 04:02 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-11-14 08:19 - 2013-10-13 03:48 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-11-14 08:19 - 2013-10-12 22:48 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-11-14 08:19 - 2013-10-12 22:34 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-11-14 08:19 - 2013-10-05 15:21 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-11-14 08:19 - 2013-10-05 09:39 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-11-14 08:18 - 2013-11-14 08:18 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2013-11-14 08:18 - 2013-11-14 08:18 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2013-11-14 08:18 - 2013-10-19 06:10 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-11-14 08:18 - 2013-10-19 04:53 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-11-14 08:18 - 2013-10-19 04:09 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-11-14 08:18 - 2013-10-16 16:58 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-11-14 08:18 - 2013-10-16 14:54 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-11-12 18:49 - 2013-11-23 18:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-11 22:11 - 2013-11-16 20:35 - 00000000 ____D C:\Users\Já\AppData\Roaming\Winamp
2013-11-11 22:11 - 2013-11-11 22:17 - 00000000 ____D C:\Program Files (x86)\Winamp
2013-11-11 22:11 - 2013-11-11 22:11 - 00001006 _____ C:\Users\Public\Desktop\Winamp.lnk
2013-11-11 22:11 - 2013-11-11 22:11 - 00000000 ____D C:\Users\Já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Detector Plug-in
2013-11-11 22:11 - 2013-11-11 22:11 - 00000000 ____D C:\Program Files (x86)\Winamp Detect
2013-11-11 21:58 - 2013-11-11 21:58 - 00054645 _____ C:\Users\Já\Documents\1384189159357468.jpeg
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2013-11-10 19:22 - 2013-11-10 19:22 - 00000000 ____D C:\Program Files (x86)\PANDORA.TV
2013-11-09 18:54 - 2001-11-08 02:27 - 00237568 _____ C:\WINDOWS\system32\glut32.dll
2013-11-09 18:26 - 2013-11-09 18:26 - 00000000 ____D C:\Users\Já\AppData\Roaming\Microsoft FxCop
2013-11-09 11:03 - 2013-11-09 11:05 - 00000000 ____D C:\Program Files (x86)\CollabNet
2013-11-09 10:49 - 2013-11-21 20:30 - 00000000 __HDC C:\ProgramData\{077034D4-0DBA-437F-8372-9C77B5B6FE74}
2013-11-09 10:49 - 2013-10-22 10:17 - 00030536 ____N (Embarcadero Technologies, Inc.) C:\WINDOWS\SysWOW64\ibxml.dll
2013-11-09 10:48 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2013-11-09 10:48 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2013-11-09 10:48 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2013-11-09 10:48 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2013-11-09 10:48 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2013-11-09 10:48 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2013-11-09 10:48 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2013-11-09 10:48 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2013-11-09 10:48 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2013-11-09 10:48 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2013-11-09 10:48 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2013-11-09 10:48 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2013-11-09 10:48 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2013-11-09 10:48 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2013-11-09 10:48 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2013-11-09 09:51 - 2013-11-09 09:51 - 00001952 _____ C:\Users\UpdatusUser\Desktop\Heroes of Newerth.lnk
2013-11-09 09:51 - 2013-11-09 09:51 - 00001952 _____ C:\Users\Já\Desktop\Heroes of Newerth.lnk
2013-11-09 09:51 - 2013-11-09 09:51 - 00000000 ____D C:\Users\Já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Heroes of Newerth
2013-11-09 09:47 - 2013-11-09 10:18 - 00000000 ____D C:\Program Files (x86)\Heroes of Newerth
2013-11-09 09:47 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2013-11-03 13:57 - 2013-11-03 13:57 - 00001633 _____ C:\Users\Já\Desktop\opravneniWindows.docx – zástupce.lnk

==================== One Month Modified Files and Folders =======

2013-12-03 11:22 - 2013-12-03 11:21 - 00026130 _____ C:\Users\Já\Desktop\FRST.txt
2013-12-03 11:20 - 2013-07-02 15:38 - 00004966 _____ C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for A05-0237A-Já A05-0237a
2013-12-03 11:19 - 2013-10-15 16:56 - 00000000 ____D C:\Users\Já\AppData\Local\TSVNCache
2013-12-03 11:19 - 2013-05-16 11:25 - 00002214 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-12-03 11:19 - 2013-05-16 11:25 - 00000956 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-03 11:18 - 2013-10-27 09:06 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-03 11:15 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-03 11:15 - 2013-05-16 20:11 - 00000503 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2013-12-03 11:14 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2013-12-03 11:12 - 2013-11-20 13:06 - 01154189 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-03 11:10 - 2013-12-03 11:10 - 00203431 _____ C:\ProgramData\1386065061.bdinstall.bin
2013-12-03 11:06 - 2013-12-03 11:06 - 00002203 _____ C:\Users\Public\Desktop\Bitdefender Antivirus Free Edition.lnk
2013-12-03 11:06 - 2013-12-03 11:04 - 00000000 ____D C:\Program Files\Bitdefender
2013-12-03 11:06 - 2013-12-02 16:00 - 00000592 _____ C:\WINDOWS\setupact.log
2013-12-03 11:06 - 2013-11-25 20:38 - 00000000 ____D C:\WINDOWS\LastGood
2013-12-03 11:05 - 2013-12-03 11:04 - 00000000 ____D C:\Users\Já\AppData\Roaming\QuickScan
2013-12-03 11:03 - 2013-05-16 11:17 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3156137623-2886176399-1245272821-1002
2013-12-03 11:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2013-12-03 10:58 - 2013-10-17 18:35 - 00000000 __RDO C:\Users\Já\SkyDrive
2013-12-03 10:52 - 2013-12-03 08:24 - 00070760 _____ C:\WINDOWS\PFRO.log
2013-12-03 10:51 - 2013-05-16 11:25 - 00000960 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-03 10:47 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2013-12-03 10:43 - 2013-11-25 21:10 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-12-03 10:39 - 2013-12-03 10:39 - 00000085 _____ C:\WINDOWS\wininit.ini
2013-12-03 09:46 - 2013-05-16 11:25 - 00003932 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-03 09:46 - 2013-05-16 11:25 - 00003696 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-03 09:34 - 2013-12-03 09:34 - 00008410 _____ C:\Users\Já\Desktop\Addition.zip
2013-12-03 09:21 - 2013-12-03 09:21 - 00000000 ____D C:\FRST
2013-12-03 09:16 - 2013-12-03 09:19 - 00112640 _____ (forum.viry.cz) C:\Users\Já\Desktop\FRSTLauncher.exe
2013-12-03 09:16 - 2013-12-03 09:17 - 01959434 _____ (Farbar) C:\Users\Já\Desktop\FRST64.exe
2013-12-03 08:22 - 2013-05-16 11:11 - 00000000 ___RD C:\Users\Já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-03 08:09 - 2013-08-19 13:01 - 00000000 ____D C:\antivirnastroje
2013-12-03 00:00 - 2013-12-03 00:00 - 00005994 _____ C:\Users\Já\Desktop\reportviry.txt
2013-12-03 00:00 - 2013-09-08 21:57 - 00047616 ___SH C:\Users\Já\Desktop\Thumbs.db
2013-12-02 22:40 - 2013-12-02 22:40 - 00001136 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-02 22:40 - 2013-12-02 22:40 - 00000000 ____D C:\Users\Já\AppData\Roaming\Malwarebytes
2013-12-02 22:40 - 2013-12-02 22:40 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-02 22:40 - 2013-12-02 22:40 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-02 22:33 - 2013-11-20 13:43 - 00000000 ____D C:\AdwCleaner
2013-12-02 22:31 - 2013-10-17 17:35 - 00000000 ____D C:\Users\Já\AppData\Roaming\GitHub
2013-12-02 22:30 - 2013-12-02 22:30 - 01110034 _____ C:\Users\Já\Desktop\adwcleaner.exe
2013-12-02 22:29 - 2013-12-02 22:29 - 00002993 _____ C:\Users\Já\Desktop\JRT.txt
2013-12-02 22:24 - 2013-12-02 22:24 - 00000000 ____D C:\WINDOWS\ERUNT
2013-12-02 22:24 - 2013-10-17 17:35 - 00000000 ____D C:\Users\Já\AppData\Local\GitHub
2013-12-02 22:23 - 2013-12-02 22:24 - 01034531 _____ (Thisisu) C:\Users\Já\Desktop\JRT.exe
2013-12-02 22:13 - 2013-10-17 17:32 - 00000000 ____D C:\Users\Já\AppData\Local\Deployment
2013-12-02 20:50 - 2013-12-02 20:20 - 00000000 ____D C:\Program Files\trend micro
2013-12-02 20:20 - 2013-12-02 20:20 - 00000000 ____D C:\rsit
2013-12-02 16:36 - 2013-12-02 16:16 - 00000000 ____D C:\Program Files (x86)\Git
2013-12-02 16:25 - 2013-12-02 16:12 - 00000000 ____D C:\Users\Já\AppData\Local\TGitCache
2013-12-02 16:22 - 2013-12-02 16:22 - 00000000 ____D C:\Users\Já\AppData\Roaming\TortoiseGit
2013-12-02 16:03 - 2013-05-16 11:59 - 00000000 ____D C:\Zaloha
2013-12-02 16:00 - 2013-12-02 16:00 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-12-02 15:47 - 2013-05-29 20:45 - 00000000 ____D C:\ProgramData\firebird
2013-12-02 15:36 - 2013-10-17 14:28 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-02 15:35 - 2013-10-17 14:38 - 00000000 ____D C:\Users\Já
2013-12-02 15:33 - 2013-06-22 11:25 - 00000000 ____D C:\Users\Já\AppData\Roaming\Skype
2013-12-02 13:19 - 2013-05-16 20:15 - 00000000 ____D C:\Users\Já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-12-01 15:22 - 2013-06-24 18:07 - 00579509 _____ C:\Users\Já\sanct.log
2013-12-01 15:22 - 2013-06-24 17:32 - 00000000 ____D C:\ProgramData\Embarcadero
2013-12-01 14:23 - 2012-12-26 20:44 - 00039008 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\LhdX64.sys
2013-12-01 14:23 - 2012-12-26 20:44 - 00019872 _____ (Lenovo (Beijing) Limited) C:\WINDOWS\system32\LenovoSDKEmSubSystem.dll
2013-12-01 14:07 - 2013-05-16 18:36 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-30 22:56 - 2013-11-30 22:56 - 00000000 ____D C:\Users\Já\AppData\Local\NVIDIA Corporation
2013-11-30 14:03 - 2013-05-16 11:10 - 00000000 ____D C:\Users\Já\AppData\Local\Packages
2013-11-30 13:26 - 2013-10-15 17:29 - 00000600 _____ C:\Users\Já\AppData\Roaming\winscp.rnd
2013-11-30 13:26 - 2013-10-15 17:03 - 00000600 _____ C:\Users\Já\AppData\Local\PUTTY.RND
2013-11-29 20:23 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-11-29 18:41 - 2013-10-15 17:06 - 00000000 ____D C:\Users\Já\AppData\Roaming\TortoiseSVN
2013-11-29 16:23 - 2013-11-29 15:26 - 00921600 _____ C:\Users\Já\Documents\Database1.accdb
2013-11-29 15:24 - 2013-11-29 15:24 - 00000000 ___SD C:\Users\Já\Documents\Zdroje dat
2013-11-29 15:23 - 2013-11-29 15:23 - 00000000 ____D C:\Users\Já\Documents\Poznámkové bloky aplikace OneNote
2013-11-28 22:54 - 2013-05-27 08:30 - 00000000 ____D C:\Users\Já\AppData\Roaming\PSpad
2013-11-28 22:41 - 2013-11-28 23:50 - 00014421 _____ C:\Users\Já\Desktop\PDB prvni schuzka.odt
2013-11-28 21:44 - 2013-11-25 20:42 - 00000000 ____D C:\Users\Já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2013-11-28 21:40 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2013-11-28 21:38 - 2013-11-28 21:38 - 00000000 ____D C:\Users\Já\AppData\Roaming\TuneUp Software
2013-11-28 08:13 - 2013-09-24 14:54 - 00000000 ____D C:\ProgramData\StartW8
2013-11-27 18:55 - 2013-07-09 18:54 - 00000000 ____D C:\Users\Já\Desktop\odevzdani
2013-11-27 10:42 - 2013-10-17 14:35 - 01947082 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-27 10:42 - 2013-09-30 04:56 - 00806462 _____ C:\WINDOWS\system32\perfh005.dat
2013-11-27 10:42 - 2013-09-30 04:56 - 00185482 _____ C:\WINDOWS\system32\perfc005.dat
2013-11-27 09:08 - 2013-05-16 18:52 - 00000000 ____D C:\Users\Já\AppData\Roaming\vlc
2013-11-27 09:07 - 2013-11-27 09:07 - 00001667 _____ C:\Users\Public\Desktop\NVIDIA Nsight HUD Launcher 3.2.lnk
2013-11-27 09:06 - 2013-10-17 14:28 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-11-27 09:06 - 2013-10-17 14:26 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-11-27 08:23 - 2013-11-27 08:23 - 00000000 ____D C:\Users\Já\AppData\Roaming\NVIDIA Corporation
2013-11-26 22:38 - 2013-05-16 20:17 - 00000000 ____D C:\Users\Já\AppData\Roaming\Dropbox
2013-11-26 21:22 - 2013-10-16 15:53 - 00000000 ____D C:\Users\Já\Documents\Visual Studio 2012
2013-11-26 19:42 - 2013-11-26 19:42 - 00000052 _____ C:\Users\Já\Desktop\gamb.txt
2013-11-26 16:43 - 2013-05-16 20:18 - 00000000 ___RD C:\DropBox
2013-11-26 16:37 - 2013-07-09 20:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-25 21:46 - 2013-08-12 21:18 - 00000000 ____D C:\fotky
2013-11-25 21:27 - 2013-11-25 21:27 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\stflt.sys
2013-11-25 21:25 - 2013-10-17 14:35 - 01965440 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2013-11-25 21:10 - 2013-11-25 21:10 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2013-11-25 20:58 - 2013-11-25 20:46 - 00000000 ____D C:\WINDOWS\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-25 20:47 - 2013-11-25 20:47 - 00000000 _____ C:\autoexec.bat
2013-11-25 20:40 - 2013-05-16 18:37 - 00334648 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2013-11-25 20:38 - 2013-11-25 20:38 - 00000000 ____D C:\iBTWU
2013-11-25 17:46 - 2013-06-25 16:55 - 00000000 ____D C:\ProgramData\IObit
2013-11-25 17:45 - 2013-10-27 09:06 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-11-25 17:45 - 2013-05-20 10:11 - 00000000 ____D C:\Users\Já\AppData\Local\Adobe
2013-11-23 18:40 - 2013-11-12 18:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-23 17:26 - 2013-05-16 11:26 - 00000000 ____D C:\skola
2013-11-23 16:29 - 2013-06-22 11:24 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-23 16:29 - 2013-06-22 11:24 - 00000000 ____D C:\ProgramData\Skype
2013-11-23 14:21 - 2013-08-22 15:44 - 00486144 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-11-23 09:08 - 2013-10-07 18:29 - 00000000 __HDC C:\ProgramData\{E3593754-BFF1-4BC1-8043-5D1DCCD7AED2}
2013-11-23 09:07 - 2013-10-07 18:29 - 00000104 _____ C:\Users\Já\Documents\Rad_Studio_XE5_Downloadsversion.ini
2013-11-23 09:07 - 2013-06-24 17:39 - 00000000 ____D C:\Program Files (x86)\DevJet
2013-11-23 00:47 - 2013-06-24 17:32 - 00000000 ____D C:\Users\Já\AppData\Roaming\Embarcadero
2013-11-23 00:41 - 2013-11-22 20:45 - 00000000 ___HD C:\ProgramData\{E5DACD7E-D1D3-4823-8572-CC7E90273D4C}
2013-11-23 00:31 - 2013-06-24 16:58 - 00000386 _____ C:\Users\Já\Desktop\navodinstalaceXE3.TXT
2013-11-21 20:30 - 2013-11-09 10:49 - 00000000 __HDC C:\ProgramData\{077034D4-0DBA-437F-8372-9C77B5B6FE74}
2013-11-21 18:52 - 2013-06-24 18:10 - 00000531 _____ C:\Users\Já\regwizard.log
2013-11-21 13:30 - 2013-05-18 21:57 - 00000000 ____D C:\Program Files\KN_StrongDC
2013-11-20 15:35 - 2013-11-20 15:35 - 00002400 _____ C:\Users\Já\Desktop\RKreport[0]_D_11202013_153541.txt
2013-11-20 15:35 - 2013-11-20 15:16 - 00000000 ____D C:\Users\Já\Desktop\RK_Quarantine
2013-11-20 15:34 - 2013-11-20 15:34 - 00002641 _____ C:\Users\Já\Desktop\RKreport[0]_S_11202013_153406.txt
2013-11-20 14:23 - 2013-11-20 14:22 - 00000000 ____D C:\ProgramData\Sophos
2013-11-20 12:52 - 2013-11-20 12:52 - 00000000 ____D C:\WINDOWS\pss
2013-11-20 12:46 - 2013-11-20 12:46 - 00000000 ____D C:\Users\Já\AppData\Roaming\eCyber
2013-11-20 12:45 - 2013-11-20 12:45 - 00000000 ____D C:\WINDOWS\system32\log
2013-11-19 19:31 - 2013-11-19 19:31 - 00000052 _____ C:\Users\Já\Desktop\gambrinusteamsud.txt
2013-11-19 18:59 - 2013-06-25 17:00 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-19 18:55 - 2013-11-19 18:55 - 00000000 ____D C:\ProgramData\NuGet
2013-11-19 18:55 - 2013-11-19 18:55 - 00000000 ____D C:\Program Files (x86)\NuGet
2013-11-19 18:42 - 2013-11-19 18:42 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools
2013-11-19 18:30 - 2013-11-19 18:28 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2013-11-19 11:30 - 2013-11-01 23:28 - 00267936 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2013-11-17 16:01 - 2013-11-17 16:01 - 00000000 ____D C:\Users\Já\AppData\Roaming\LavasoftStatistics
2013-11-17 15:00 - 2013-11-17 15:00 - 00000000 ____D C:\Program Files\Lavasoft
2013-11-17 14:58 - 2013-11-17 14:58 - 00000000 ____D C:\ProgramData\Lavasoft
2013-11-17 10:34 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-11-16 21:34 - 2013-07-04 18:02 - 00001650 _____ C:\Users\Public\Desktop\Systém agend pro školy.lnk
2013-11-16 21:34 - 2012-12-26 20:04 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-16 21:22 - 2013-11-16 21:17 - 00017531 _____ C:\WINDOWS\system32\Drivers\etc\services
2013-11-16 20:45 - 2013-05-16 11:11 - 00000000 ___RD C:\Users\Já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-11-16 20:39 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2013-11-16 20:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2013-11-16 20:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2013-11-16 20:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2013-11-16 20:35 - 2013-11-11 22:11 - 00000000 ____D C:\Users\Já\AppData\Roaming\Winamp
2013-11-16 20:18 - 2013-10-27 21:13 - 00019968 ___SH C:\Users\Já\Documents\Thumbs.db
2013-11-16 20:12 - 2013-11-16 20:12 - 00000000 ____D C:\Program Files (x86)\Firebird
2013-11-16 20:10 - 2013-05-18 23:01 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-16 14:09 - 2013-11-16 14:09 - 00000000 ____D C:\Program Files\Firebird
2013-11-16 14:08 - 2013-11-16 14:08 - 00001246 _____ C:\Users\Já\Desktop\ukoly.txt – zástupce.lnk
2013-11-14 12:58 - 2013-11-19 18:26 - 30361888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 25257248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 22951200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 15862272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 12613408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2013-11-14 12:58 - 2013-11-19 18:26 - 11600432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 11514624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 09691888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 09619872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 03132704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 03125024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 02947872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 02747680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433182.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433182.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 00707360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 00657184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 00609568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 00562464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 00479520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 00405280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 00357152 _____ C:\WINDOWS\system32\NvIFROpenGL.dll
2013-11-14 12:58 - 2013-11-19 18:26 - 00314656 _____ C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2013-11-14 12:58 - 2013-10-30 15:36 - 18208624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2013-11-14 12:58 - 2013-10-30 15:36 - 15218504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2013-11-14 12:58 - 2013-10-30 15:36 - 02697248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2013-11-14 12:58 - 2013-10-30 08:24 - 00061216 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2013-11-14 12:58 - 2013-10-30 08:24 - 00053024 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2013-11-14 12:58 - 2013-10-30 08:22 - 18293608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2013-11-14 12:58 - 2013-10-30 08:22 - 03069608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2013-11-14 12:58 - 2013-10-30 08:22 - 00023754 _____ C:\WINDOWS\system32\nvinfo.pb
2013-11-14 09:07 - 2013-11-14 09:07 - 00000000 ____D C:\WINDOWS\PCHEALTH
2013-11-14 09:07 - 2012-07-26 06:26 - 00000167 _____ C:\WINDOWS\win.ini
2013-11-14 09:04 - 2013-07-14 14:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-11-14 09:02 - 2013-05-16 19:13 - 82896128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-11-14 08:18 - 2013-11-14 08:18 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2013-11-14 08:18 - 2013-11-14 08:18 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2013-11-13 11:19 - 2013-05-27 21:15 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-11-11 22:17 - 2013-11-11 22:11 - 00000000 ____D C:\Program Files (x86)\Winamp
2013-11-11 22:11 - 2013-11-11 22:11 - 00001006 _____ C:\Users\Public\Desktop\Winamp.lnk
2013-11-11 22:11 - 2013-11-11 22:11 - 00000000 ____D C:\Users\Já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Detector Plug-in
2013-11-11 22:11 - 2013-11-11 22:11 - 00000000 ____D C:\Program Files (x86)\Winamp Detect
2013-11-11 21:58 - 2013-11-11 21:58 - 00054645 _____ C:\Users\Já\Documents\1384189159357468.jpeg
2013-11-11 16:02 - 2013-10-30 08:24 - 06674208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2013-11-11 16:02 - 2013-10-30 08:24 - 03490080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2013-11-11 16:01 - 2013-10-30 08:24 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2013-11-11 16:01 - 2013-10-30 08:24 - 00922912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2013-11-11 16:01 - 2013-10-30 08:24 - 00598304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\oemdspif.dll
2013-11-11 16:01 - 2013-10-30 08:24 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2013-11-11 16:01 - 2013-10-30 08:24 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2013-11-10 19:22 - 2013-11-10 19:22 - 00000000 ____D C:\Program Files (x86)\PANDORA.TV
2013-11-10 19:22 - 2013-05-19 10:08 - 00001062 _____ C:\Users\Já\Desktop\KMPlayer.lnk
2013-11-10 19:22 - 2013-05-19 10:08 - 00000000 ____D C:\Program Files (x86)\The KMPlayer
2013-11-09 23:49 - 2013-10-07 16:34 - 00000000 ___HD C:\ProgramData\~1
2013-11-09 18:26 - 2013-11-09 18:26 - 00000000 ____D C:\Users\Já\AppData\Roaming\Microsoft FxCop
2013-11-09 11:05 - 2013-11-09 11:03 - 00000000 ____D C:\Program Files (x86)\CollabNet
2013-11-09 10:18 - 2013-11-09 09:47 - 00000000 ____D C:\Program Files (x86)\Heroes of Newerth
2013-11-09 09:51 - 2013-11-09 09:51 - 00001952 _____ C:\Users\UpdatusUser\Desktop\Heroes of Newerth.lnk
2013-11-09 09:51 - 2013-11-09 09:51 - 00001952 _____ C:\Users\Já\Desktop\Heroes of Newerth.lnk
2013-11-09 09:51 - 2013-11-09 09:51 - 00000000 ____D C:\Users\Já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Heroes of Newerth
2013-11-06 13:18 - 2013-10-22 18:30 - 00000000 ____D C:\Users\Já\.VirtualBox
2013-11-06 00:31 - 2013-11-16 18:39 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-11-06 00:31 - 2013-11-16 18:39 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-05 21:21 - 2013-11-16 18:59 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-11-05 19:51 - 2013-11-16 18:59 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-11-05 17:20 - 2013-11-16 18:59 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-11-05 17:11 - 2013-11-16 18:59 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-11-05 15:30 - 2013-11-16 18:59 - 11674112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-11-05 15:29 - 2013-11-16 18:59 - 13176320 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-11-04 17:18 - 2013-10-30 09:11 - 00000000 ____D C:\Users\Já\AppData\Roaming\NVIDIA
2013-11-03 14:18 - 2013-05-16 11:26 - 00000000 ____D C:\prace
2013-11-03 14:12 - 2013-10-17 15:24 - 00000000 ___DC C:\WINDOWS\Panther
2013-11-03 14:12 - 2013-08-11 09:51 - 00000000 ____D C:\Program Files (x86)\Connectify
2013-11-03 14:12 - 2013-05-18 22:57 - 00000000 ____D C:\Users\Já\AppData\Roaming\DAEMON Tools Lite
2013-11-03 13:57 - 2013-11-03 13:57 - 00001633 _____ C:\Users\Já\Desktop\opravneniWindows.docx – zástupce.lnk

Some content of TEMP:
====================
C:\Users\Já\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Antivirus Free Edition (Enabled - Up to date) {9B5F5313-CAF9-DD97-C460-E778420237B4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antivirus Free Edition (Enabled - Up to date) {203EB2F7-ECC3-D219-FED0-DC0A39857D09}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\J�\Desktop" je 5 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Energy Management
C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtsFT
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"%ProgramFiles%\Synaptics\SynTP\SynLenovoGestureMgr.exe" /m [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynLenovoGestureMgr
"C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GShortCut
ECHO is off.


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Re: Vir nebo falešný poplach?

Napsal: 03 pro 2013 11:40
od vyosek
:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKCU\...\Run: [ApacheTomcatMonitor6.0_Tomcat6] - C:\web\tomcat\bin\Tomcat6w.exe [104448 2013-04-29] (Apache Software Foundation)
HKCU\...\Run: [Sony PC Companion] - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449248 2013-05-29] (Sony)
HKCU\...\Run: [Zoner Photo Studio Autoupdate] - C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe [774680 2013-06-07] (ZONER software)
HKCU\...\Run: [Lync] - C:\Program Files\Microsoft Office 15\root\office15\lync.exe [18741408 2013-11-13] (Microsoft Corporation)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
MountPoints2: {41bd7ca9-bfff-11e2-be7c-6036dd63262f} - "F:\vs_ultimate.exe" 
HKLM-x32\...\Run: [] - [x]
AppInit_DLLs: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL [ ] ()
AppInit_DLLs-x32: C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll [ ] ()
Startup: C:\Users\Já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TeamViewer 8.lnk
BootExecute: autocheck autochk * sdnclean64.exe

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - {C81EE546-69D2-4BBF-9332-D5CE0D398624} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKLM-x32 - {C81EE546-69D2-4BBF-9332-D5CE0D398624} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKCU - {5D0F76F3-9421-4CBE-9B65-DAC098BBE271} URL = http://search.yahoo.com/search?fr=chr-g ... =402027&p={searchTerms}
SearchScopes: HKCU - {C81EE546-69D2-4BBF-9332-D5CE0D398624} URL = 
BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Já\AppData\Roaming\Slick Savings\Coupons64.dll No File
BHO-x32: No Name - {95289393-33EA-4F8D-B952-483415B9C955} - No File

FF DefaultSearchEngine: Yahoo!
FF SelectedSearchEngine: Yahoo!
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=green ... =402027&p=
FF SearchPlugin: C:\Users\Já\AppData\Roaming\Mozilla\Firefox\Profiles\dpe2kumm.default\searchplugins\yahoo_ff.xml
FF Extension: iobitapps - C:\Users\Já\AppData\Roaming\Mozilla\Firefox\Profiles\dpe2kumm.default\Extensions\iobitapps@mybrowserbar.com
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

CHR Plugin: (McAfee SecurityCenter) - c:\progra~2\mcafee\msc\npmcsn~1.dll No File
CHR HKLM-x32\...\Chrome\Extension: [aaaaoggiphohkihibdkcnhnokmkfmhnj] - C:\Users\Já\AppData\Local\APN\GoogleCRXs\aaaaoggiphohkihibdkcnhnokmkfmhnj_7.17.6.0.crx

S4 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)

2013-11-25 21:10 - 2013-12-03 10:43 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-11-10 19:22 - 2013-11-10 19:22 - 00000000 ____D C:\Program Files (x86)\PANDORA.TV
2013-11-17 15:00 - 2013-11-17 15:00 - 00000000 ____D C:\Program Files\Lavasoft
2013-11-17 14:58 - 2013-11-17 14:58 - 00000000 ____D C:\ProgramData\Lavasoft

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GShortCut" /f

Hosts:
CMD: shutdown /r /f /t 2

End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt

Re: Vir nebo falešný poplach?

Napsal: 03 pro 2013 12:54
od johny231
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 03-12-2013
Ran by Já at 2013-12-03 12:34:08 Run:1
Running from C:\Users\Já\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKCU\...\Run: [ApacheTomcatMonitor6.0_Tomcat6] - C:\web\tomcat\bin\Tomcat6w.exe [104448 2013-04-29] (Apache Software Foundation)
HKCU\...\Run: [Sony PC Companion] - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449248 2013-05-29] (Sony)
HKCU\...\Run: [Zoner Photo Studio Autoupdate] - C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe [774680 2013-06-07] (ZONER software)
HKCU\...\Run: [Lync] - C:\Program Files\Microsoft Office 15\root\office15\lync.exe [18741408 2013-11-13] (Microsoft Corporation)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
MountPoints2: {41bd7ca9-bfff-11e2-be7c-6036dd63262f} - "F:\vs_ultimate.exe"
HKLM-x32\...\Run: [] - [x]
AppInit_DLLs: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL [ ] ()
AppInit_DLLs-x32: C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll [ ] ()
Startup: C:\Users\Já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TeamViewer 8.lnk
BootExecute: autocheck autochk * sdnclean64.exe

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - {C81EE546-69D2-4BBF-9332-D5CE0D398624} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM-x32 - {C81EE546-69D2-4BBF-9332-D5CE0D398624} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKCU - {5D0F76F3-9421-4CBE-9B65-DAC098BBE271} URL = http://search.yahoo.com/search?fr=chr-g ... =402027&p={searchTerms}
SearchScopes: HKCU - {C81EE546-69D2-4BBF-9332-D5CE0D398624} URL =
BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Já\AppData\Roaming\Slick Savings\Coupons64.dll No File
BHO-x32: No Name - {95289393-33EA-4F8D-B952-483415B9C955} - No File

FF DefaultSearchEngine: Yahoo!
FF SelectedSearchEngine: Yahoo!
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=green ... =402027&p=
FF SearchPlugin: C:\Users\Já\AppData\Roaming\Mozilla\Firefox\Profiles\dpe2kumm.default\searchplugins\yahoo_ff.xml
FF Extension: iobitapps - C:\Users\Já\AppData\Roaming\Mozilla\Firefox\Profiles\dpe2kumm.default\Extensions\iobitapps@mybrowserbar.com
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

CHR Plugin: (McAfee SecurityCenter) - c:\progra~2\mcafee\msc\npmcsn~1.dll No File
CHR HKLM-x32\...\Chrome\Extension: [aaaaoggiphohkihibdkcnhnokmkfmhnj] - C:\Users\Já\AppData\Local\APN\GoogleCRXs\aaaaoggiphohkihibdkcnhnokmkfmhnj_7.17.6.0.crx

S4 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)

2013-11-25 21:10 - 2013-12-03 10:43 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-11-10 19:22 - 2013-11-10 19:22 - 00000000 ____D C:\Program Files (x86)\PANDORA.TV
2013-11-17 15:00 - 2013-11-17 15:00 - 00000000 ____D C:\Program Files\Lavasoft
2013-11-17 14:58 - 2013-11-17 14:58 - 00000000 ____D C:\ProgramData\Lavasoft

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GShortCut" /f

Hosts:
CMD: shutdown /r /f /t 2

End

*****************

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\ApacheTomcatMonitor6.0_Tomcat6 => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Sony PC Companion => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Zoner Photo Studio Autoupdate => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Lync => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoLowDiskSpaceChecks => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{41bd7ca9-bfff-11e2-be7c-6036dd63262f} => Key deleted successfully.
HKCR\CLSID\{41bd7ca9-bfff-11e2-be7c-6036dd63262f} => Key not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
C:\Users\Já\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TeamViewer 8.lnk => Moved successfully.
HKLM\System\CurrentControlSet\Control\Session Manager\\BootExecute => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C81EE546-69D2-4BBF-9332-D5CE0D398624} => Key deleted successfully.
HKCR\CLSID\{C81EE546-69D2-4BBF-9332-D5CE0D398624} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{C81EE546-69D2-4BBF-9332-D5CE0D398624} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{C81EE546-69D2-4BBF-9332-D5CE0D398624} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{5D0F76F3-9421-4CBE-9B65-DAC098BBE271} => Key deleted successfully.
HKCR\CLSID\{5D0F76F3-9421-4CBE-9B65-DAC098BBE271} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C81EE546-69D2-4BBF-9332-D5CE0D398624} => Key deleted successfully.
HKCR\CLSID\{C81EE546-69D2-4BBF-9332-D5CE0D398624} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} => Key deleted successfully.
HKCR\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{95289393-33EA-4F8D-B952-483415B9C955} => Key not found.
Firefox DefaultSearchEngine deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
Firefox Keyword.URL deleted successfully.
C:\Users\Já\AppData\Roaming\Mozilla\Firefox\Profiles\dpe2kumm.default\searchplugins\yahoo_ff.xml => Moved successfully.
C:\Users\Já\AppData\Roaming\Mozilla\Firefox\Profiles\dpe2kumm.default\Extensions\iobitapps@mybrowserbar.com => Moved successfully.
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com => Value deleted successfully.
c:\progra~2\mcafee\msc\npmcsn~1.dll not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\aaaaoggiphohkihibdkcnhnokmkfmhnj => Key deleted successfully.
"C:\Users\Já\AppData\Local\APN\GoogleCRXs\aaaaoggiphohkihibdkcnhnokmkfmhnj_7.17.6.0.crx" => File/Directory not found.
PanService => Service deleted successfully.
C:\ProgramData\Spybot - Search & Destroy => Moved successfully.
C:\Program Files (x86)\PANDORA.TV => Moved successfully.
C:\Program Files\Lavasoft => Moved successfully.
C:\ProgramData\Lavasoft => Moved successfully.
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.

========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GShortCut" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========


==== End of Fixlog ====

Re: Vir nebo falešný poplach?

Napsal: 03 pro 2013 13:00
od vyosek
Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|

Re: Vir nebo falešný poplach?

Napsal: 03 pro 2013 13:04
od johny231
Provedu. :)

Díky moc za pomoc.

Re: Vir nebo falešný poplach?

Napsal: 03 pro 2013 17:50
od vyosek
Nemate zac, rad jsem pomohl :worship: Zase nekdy Obrázek

A na zaklade Pravidla o zamykani temat :lock:
Všechny časy jsou v UTC+01:00
Stránka 2 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz