VIRY.CZ

Mám problém s dlouhým startem W7 a pravidelně se nenačítá uživatelský účet. Můžete, prosím, najít problém?

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:42:05, on 25.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Program Files (x86)\KONICA MINOLTA\magicolor 1680MF\LinkMagic for magicolor 1680MF\lmmc1680.exe
C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files (x86)\ATnotes\ATnotes.exe
C:\Users\Majda\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Users\Majda\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Users\Majda\Downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Majda\AppData\Roaming\Complitly\Complitly.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [HP HD Webcam [Fixed]_Monitor] C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [IFXSPMGT] "c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe" /NotifyLogon
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKCU\..\Run: [LinkMagic for magicolor 1680MF] C:\Program Files (x86)\KONICA MINOLTA\magicolor 1680MF\LinkMagic for magicolor 1680MF\lmmc1680.exe -startup
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [ATnotes.exe] C:\Program Files (x86)\ATnotes\ATnotes.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Majda\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Majda\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - Startup: Dropbox.lnk = Majda\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Broadcom Corporation - C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 18830 bytes

Zdravím!
Účet bude zřejmě poškozen. Zkuste tento postup: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-10-2013
Ran by Majda (administrator) on MAJDA-HP on 26-10-2013 13:43:21
Running from C:\Users\Majda\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Hewlett-Packard Company) C:\windows\system32\Hpservice.exe
(Validity Sensors, Inc.) C:\windows\system32\vcsFPService.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
(Microsoft Corporation) C:\windows\system32\WLANExt.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe
(DigitalPersona, Inc.) c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Hewlett-Packard Company) c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
(Infineon Technologies AG) c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe
(Infineon Technologies AG) c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
() C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(Infineon Technologies AG) c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(ArcSoft, Inc.) C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Hewlett-Packard Development Company, L.P) c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(DigitalPersona, Inc.) c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.EXE
() C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Konica Minolta) C:\Program Files (x86)\KONICA MINOLTA\magicolor 1680MF\LinkMagic for magicolor 1680MF\lmmc1680.exe
(Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe
(Thomas Ascher) C:\Program Files (x86)\ATnotes\ATnotes.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
() C:\Users\Majda\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Majda\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(DigitalPersona, Inc.) c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
() C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Dropbox, Inc.) C:\Users\Majda\AppData\Roaming\Dropbox\bin\Dropbox.exe
(BitTorrent, Inc.) C:\Program Files (x86)\uTorrent\uTorrent.exe
() C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Nokia) C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe
(Infineon Technologies AG) c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
(Microsoft Corporation) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSdkHelperx64.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe
(Hewlett-Packard Development Company L.P.) c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Intel Corporation) C:\windows\system32\igfxext.exe
(Intel Corporation) C:\windows\system32\igfxsrvc.exe
() C:\Program Files (x86)\Roxio\Roxio Burn\Roxio Burn.exe
(Microsoft Corporation) C:\windows\splwow64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(forum.viry.cz) C:\Users\Majda\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\windows\system32\consent.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HPPowerAssistant] - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [2919992 2011-01-27] (Hewlett-Packard Company)
HKLM\...\Run: [Broadcom Wireless Manager UI] - C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [7177728 2013-08-11] (Broadcom Corporation)
HKLM\...\Run: [MfeEpePcMonitor] - C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [200704 2011-02-09] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1664000 2013-06-09] (IDT, Inc.)
HKLM\...\Run: [HotKeysCmds] - C:\windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3056880 2013-10-13] (Synaptics Incorporated)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [LinkMagic for magicolor 1680MF] - C:\Program Files (x86)\KONICA MINOLTA\magicolor 1680MF\LinkMagic for magicolor 1680MF\lmmc1680.exe [5005312 2008-08-26] (Konica Minolta)
HKCU\...\Run: [ISUSPM] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [213936 2006-03-20] (Macrovision Corporation)
HKCU\...\Run: [] - [x]
HKCU\...\Run: [ATnotes.exe] - C:\Program Files (x86)\ATnotes\ATnotes.exe [1015808 2005-01-05] (Thomas Ascher)
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\Majda\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\Majda\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20472992 2013-10-02] (Skype Technologies S.A.)
HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [153136 2007-03-12] (Nero AG)
HKLM-x32\...\Run: [Desktop Disc Tool] - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [514544 2011-01-12] ()
HKLM-x32\...\Run: [File Sanitizer] - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [12274688 2011-02-07] (Hewlett-Packard)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-26] (Intel Corporation)
HKLM-x32\...\Run: [HP HD Webcam [Fixed]_Monitor] - C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe [267128 2010-11-26] ()
HKLM-x32\...\Run: [HPConnectionManager] - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [94264 2011-04-05] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [HPQuickWebProxy] - c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [76344 2011-02-11] (Hewlett-Packard Company)
HKLM-x32\...\Run: [IFXSPMGT] - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1125728 2011-01-20] (Infineon Technologies AG)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PDF Complete] - C:\Program Files (x86)\PDF Complete\pdfsty.exe [658424 2011-05-06] (PDF Complete Inc)
HKLM-x32\...\Run: [NokiaMServer] - C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [QLBController] - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [312376 2011-03-21] (Hewlett-Packard Company)
Lsa: [Notification Packages] EpePcNp64 DPPassFilter scecli
Startup: C:\Users\Majda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Majda\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDF
SearchScopes: HKLM - DefaultScope {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2475029
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2475029
SearchScopes: HKCU - DefaultScope {3123846C-476F-4963-9A05-928B27B0B9FB} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKCU - {3123846C-476F-4963-9A05-928B27B0B9FB} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://search.filebulldog.com/results/1 ... earchTerms}
SearchScopes: HKCU - {4FE9206E-3D24-4685-AB6F-48DDBECB89C5} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKCU - {54C11DFC-E6E2-404C-AA83-397767D5117F} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKCU - {5D191177-D07D-492E-9650-A6DEE758B6E6} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKCU - {733563A0-00BE-43D6-976A-A6A1CFB55ED2} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {9F9EC38C-6B5D-4EC8-8A9B-11FDAF8BF8B2} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2475029
SearchScopes: HKCU - {C2C8441E-DC7B-4B84-BEEF-0A4C8EC21506} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKCU - {CBB97297-2739-4107-86D9-CC2777FB7844} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKCU - {D8F7E884-4D3E-4D01-A3FE-B0818C8B6BDA} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKCU - {ED67371B-1EBF-4935-BFD9-F32D0B9BD689} URL = http://websearch.ask.com/redirect?clien ... 858925D027
SearchScopes: HKCU - {F4A8584F-9866-45DA-A97F-A35733DB9BB8} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Majda\AppData\Roaming\Complitly\64\Complitly64.dll (SimplyGen)
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Majda\AppData\Roaming\Complitly\Complitly.dll (SimplyGen)
BHO-x32: File Sanitizer for HP ProtectTools - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Majda\AppData\Roaming\Mozilla\Firefox\Profiles\wc609sal.default
FF user.js: detected! => C:\Users\Majda\AppData\Roaming\Mozilla\Firefox\Profiles\wc609sal.default\user.js
FF NewTab: user_pref("browser.newtab.url", "");
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.seznam.cz/
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=800236&p=
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Majda\AppData\Roaming\Mozilla\Firefox\Profiles\wc609sal.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Majda\AppData\Roaming\Mozilla\Firefox\Profiles\wc609sal.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\filebulldogtb.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Conduit Engine - C:\Users\Majda\AppData\Roaming\Mozilla\Firefox\Profiles\wc609sal.default\Extensions\engine@conduit.com
FF Extension: Complitly - Speed up your search with your personal search suggestions tool - C:\Users\Majda\AppData\Roaming\Mozilla\Firefox\Profiles\wc609sal.default\Extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516}
FF Extension: MyAshampoo Community Toolbar - C:\Users\Majda\AppData\Roaming\Mozilla\Firefox\Profiles\wc609sal.default\Extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}
FF Extension: Seznam lištička - C:\Users\Majda\AppData\Roaming\Mozilla\Firefox\Profiles\wc609sal.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
FF Extension: BS Player ControlBar - C:\Users\Majda\AppData\Roaming\Mozilla\Firefox\Profiles\wc609sal.default\Extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt\
FF Extension: DigitalPersona Extension - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt\
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Thunderbird\Extensions: [{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}] - C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\
FF Extension: Thunderbird Address Book Synchronisation Extension - C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\

Chrome:
=======
CHR HomePage: hxxp://search.filebulldog.com/vmn/06A8175F8811602CBDBC7751AA11CE56
CHR RestoreOnStartup: "hxxp://search.filebulldog.com/vmn/06A8175F8811602CBDBC7751AA11CE56", "hxxp://www.google.com"
CHR DefaultSearchURL: (Search The Web) - http://search.filebulldog.com/results/1 ... earchTerms}
CHR DefaultSuggestURL: (Search The Web) - "suggest_url": "",
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.75\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Extension: (Seznam Li\u0161ti\u010Dka - Email) - C:\Users\Majda\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig\1.3.13_0
CHR Extension: (Seznam Li\u0161ti\u010Dka - Slovn\u00EDk) - C:\Users\Majda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd\1.2.13_0
CHR Extension: (Complitly plugin for chrome) - C:\Users\Majda\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Majda\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj\1.0_0
CHR Extension: (Domain Error Assistant) - C:\Users\Majda\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.1_0
CHR Extension: (Slick Savings) - C:\Users\Majda\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk\2.4_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Majda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Seznam Li\u0161ti\u010Dka - Rychl\u00E1 volba) - C:\Users\Majda\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.5.14_0
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Majda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp\1.0_0
CHR HKLM-x32\...\Chrome\Extension: [dlfienamagdnkekbbbocojppncdambda] - C:\Program Files (x86)\Complitly\chrome\ComplitlyChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.0.crx
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\errorassistant_1.1.crx
CHR HKLM-x32\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Users\Majda\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.4.crx
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx

==================== Services (Whitelisted) =================

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [481104 2011-02-12] (DigitalPersona, Inc.)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [464480 2011-02-04] (Hewlett-Packard Company)
R3 HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [36864 2011-01-12] (Hewlett-Packard Development Company, L.P)
R2 HPDayStarterService; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [133688 2011-01-28] (Hewlett-Packard Company)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [293944 2011-03-21] (Hewlett-Packard Company)
R2 IFXSpMgtSrv; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1125728 2011-01-20] (Infineon Technologies AG)
R2 IFXTCS; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [980320 2011-01-20] (Infineon Technologies AG)
R2 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1318912 2011-02-09] ()
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-05-06] (PDF Complete Inc)
R2 PersonalSecureDriveService; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [203104 2011-01-20] (Infineon Technologies AG)
R2 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [502464 2010-11-11] (ArcSoft, Inc.)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE [48128 2013-08-11] (Broadcom Corporation)

==================== Drivers (Whitelisted) ====================

R3 ARCVCAM; C:\Windows\System32\DRIVERS\ArcSoftVCapture.sys [32192 2010-11-11] (ArcSoft, Inc.)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-07-06] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-07-06] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-07-06] ()
S3 DAMDrv; C:\Windows\System32\DRIVERS\DAMDrv64.sys [63336 2011-02-07] (Hewlett-Packard Company)
R3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2013-07-31] (JMicron Technology Corp.)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [168008 2011-02-09] (McAfee, Inc.)
R1 PersonalSecureDrive; C:\Windows\System32\drivers\psd.sys [44576 2010-01-26] (Infineon Technologies AG)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [17720 2010-11-26] ()
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [2611704 2011-01-12] (Sunplus Technology)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-26 13:43 - 2013-10-26 13:43 - 00000000 ____D C:\FRST
2013-10-26 13:39 - 2013-10-26 13:38 - 00112128 _____ (forum.viry.cz) C:\Users\Majda\Desktop\FRSTLauncher.exe
2013-10-26 13:38 - 2013-10-26 13:38 - 01956086 _____ (Farbar) C:\Users\Majda\Desktop\FRST64.exe
2013-10-25 16:42 - 2013-10-25 16:42 - 00018832 _____ C:\Users\Majda\Downloads\hijackthis.log
2013-10-25 16:40 - 2013-10-25 16:40 - 00388608 _____ (Trend Micro Inc.) C:\Users\Majda\Downloads\HiJackThis.exe
2013-10-24 19:46 - 2013-10-24 19:46 - 00000000 ____D C:\Users\Majda\Downloads\Subs
2013-10-24 19:24 - 2013-10-24 19:38 - 247384992 _____ C:\Users\Majda\Downloads\Pretty.Little.Liars.S04E13.HDTV.x264-LOL.mp4
2013-10-22 08:27 - 2013-09-04 14:12 - 00343040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2013-10-22 08:27 - 2013-09-04 14:11 - 00325120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2013-10-22 08:27 - 2013-09-04 14:11 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2013-10-22 08:27 - 2013-09-04 14:11 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2013-10-22 08:27 - 2013-09-04 14:11 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2013-10-22 08:27 - 2013-09-04 14:11 - 00025600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2013-10-22 08:27 - 2013-09-04 14:11 - 00007808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2013-10-18 08:40 - 2013-10-18 08:40 - 00000000 ____D C:\Users\Majda\Desktop\pozvánka_50T
2013-10-15 10:52 - 2013-10-15 10:55 - 00000000 ____D C:\Users\Majda\Downloads\the help
2013-10-13 22:43 - 2013-10-23 22:19 - 00000000 ___RD C:\Users\Majda\Dropbox
2013-10-13 22:39 - 2013-10-13 22:39 - 00000000 ____D C:\Users\Majda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-10-13 22:38 - 2013-10-26 13:09 - 00000000 ____D C:\Users\Majda\AppData\Roaming\Dropbox
2013-10-13 22:37 - 2013-10-13 22:38 - 35289176 _____ (Dropbox, Inc.) C:\Users\Majda\Downloads\Dropbox 2.4.2.exe
2013-10-13 20:27 - 2013-10-13 20:27 - 00000000 ____D C:\Users\Majda\Desktop\PAVEL P. 50
2013-10-13 18:58 - 2013-10-13 18:59 - 00006848 _____ C:\windows\DPINST.LOG
2013-10-13 18:58 - 2013-10-13 18:59 - 00001324 _____ C:\windows\Synaptics.log
2013-10-13 18:58 - 2013-10-13 18:58 - 01060080 _____ (Synaptics Incorporated) C:\windows\system32\SynCOM.dll
2013-10-13 18:58 - 2013-10-13 18:58 - 00544496 _____ (Synaptics Incorporated) C:\windows\SysWOW64\SynCom.dll
2013-10-13 18:58 - 2013-10-13 18:58 - 00495856 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\SynTP.sys
2013-10-13 18:58 - 2013-10-13 18:58 - 00264432 _____ (Synaptics Incorporated) C:\windows\system32\SynTPAPI.dll
2013-10-13 18:58 - 2013-10-13 18:58 - 00192240 _____ (Synaptics Incorporated) C:\windows\system32\SynTPCo18.dll
2013-10-13 18:58 - 2013-10-13 18:58 - 00151280 _____ (Synaptics Incorporated) C:\windows\SysWOW64\SynTPCom.dll
2013-10-12 00:34 - 2013-09-23 01:28 - 01767936 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-10-12 00:34 - 2013-09-23 01:28 - 01141248 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-10-12 00:34 - 2013-09-23 01:27 - 14335488 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-10-12 00:34 - 2013-09-23 01:27 - 13761024 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-10-12 00:34 - 2013-09-23 01:27 - 02876928 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-10-12 00:34 - 2013-09-23 01:27 - 02048512 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-10-12 00:34 - 2013-09-23 01:27 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-10-12 00:34 - 2013-09-23 01:27 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-10-12 00:34 - 2013-09-23 01:27 - 00391168 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2013-10-12 00:34 - 2013-09-23 01:27 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-10-12 00:34 - 2013-09-23 01:27 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-10-12 00:34 - 2013-09-23 01:27 - 00039424 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2013-10-12 00:34 - 2013-09-23 01:27 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-10-12 00:34 - 2013-09-23 00:55 - 02241024 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-10-12 00:34 - 2013-09-23 00:55 - 01365504 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-10-12 00:34 - 2013-09-23 00:55 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-10-12 00:34 - 2013-09-23 00:54 - 19252224 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-10-12 00:34 - 2013-09-23 00:54 - 15404544 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-10-12 00:34 - 2013-09-23 00:54 - 03959296 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-10-12 00:34 - 2013-09-23 00:54 - 02647552 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-10-12 00:34 - 2013-09-23 00:54 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-10-12 00:34 - 2013-09-23 00:54 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-10-12 00:34 - 2013-09-23 00:54 - 00526336 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2013-10-12 00:34 - 2013-09-23 00:54 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-10-12 00:34 - 2013-09-23 00:54 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2013-10-12 00:34 - 2013-09-23 00:54 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-10-12 00:34 - 2013-09-23 00:54 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2013-10-12 00:34 - 2013-09-21 05:38 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-10-12 00:34 - 2013-09-21 05:30 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2013-10-12 00:34 - 2013-09-21 04:48 - 00089600 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-10-12 00:34 - 2013-09-21 04:39 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-10 23:51 - 2013-10-10 23:53 - 00000000 ____D C:\Users\Majda\AppData\Local\Ahead
2013-10-10 23:50 - 2013-10-10 23:53 - 00000000 ____D C:\Users\Majda\AppData\Roaming\Ahead
2013-10-10 23:47 - 2013-10-10 23:47 - 00000000 ____D C:\ProgramData\Nero
2013-10-10 23:47 - 2013-10-10 23:47 - 00000000 ____D C:\Program Files (x86)\Nero
2013-10-10 19:25 - 2013-09-14 03:10 - 00497152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2013-10-10 19:25 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2013-10-10 19:25 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2013-10-10 19:25 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswsock.dll
2013-10-10 19:25 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2013-10-10 19:25 - 2013-08-29 03:29 - 00033280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbser.sys
2013-10-10 19:25 - 2013-08-28 03:21 - 03155968 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2013-10-10 19:25 - 2013-07-12 12:41 - 00185344 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys
2013-10-10 19:25 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2013-10-10 19:25 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2013-10-10 19:25 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2013-10-10 19:25 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2013-10-10 19:25 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebClnt.dll
2013-10-10 19:25 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\windows\SysWOW64\davclnt.dll
2013-10-10 19:25 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\windows\SysWOW64\comctl32.dll
2013-10-10 19:25 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2013-10-10 19:25 - 2013-07-03 06:40 - 00042496 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbscan.sys
2013-10-10 19:25 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2013-10-10 19:25 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2013-10-10 19:25 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2013-10-10 19:25 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2013-10-10 19:25 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2013-10-10 19:25 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2013-10-10 19:25 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2013-10-10 19:25 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2013-10-10 19:25 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2013-10-10 19:25 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2013-10-10 19:25 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2013-10-10 19:25 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2013-10-10 19:25 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2013-10-10 19:24 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2013-10-10 19:24 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2013-10-10 19:24 - 2013-08-29 04:16 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2013-10-10 19:24 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2013-10-10 19:24 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2013-10-10 19:24 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2013-10-10 19:24 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2013-10-10 19:24 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdh.dll
2013-10-10 19:24 - 2013-08-29 03:50 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2013-10-10 19:24 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2013-10-10 19:24 - 2013-08-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2013-10-10 19:24 - 2013-08-29 02:49 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2013-10-10 19:24 - 2013-08-29 02:49 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2013-10-10 19:24 - 2013-08-29 02:49 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2013-10-10 19:24 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2013-10-10 19:24 - 2013-08-01 11:19 - 00984512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2013-10-10 19:24 - 2013-08-01 11:19 - 00265152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2013-10-10 19:24 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 19:24 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-06 13:58 - 2013-10-06 14:00 - 1297430143 _____ C:\Users\Majda\Documents\fotky_tatka.zip
2013-10-06 11:24 - 2013-10-06 14:06 - 00000000 ____D C:\Users\Majda\Documents\fotky_tatka
2013-10-06 11:05 - 2013-10-21 18:49 - 00000000 ____D C:\Users\Majda\AppData\Roaming\BSplayer
2013-10-06 11:05 - 2013-10-06 11:05 - 00000000 ____D C:\Users\Majda\AppData\Roaming\BSplayer Pro
2013-10-06 11:05 - 2013-10-06 11:05 - 00000000 ____D C:\Program Files (x86)\Webteh
2013-10-06 11:01 - 2013-10-06 11:01 - 00000000 _____ C:\END
2013-10-06 10:59 - 2013-10-06 10:59 - 07733328 _____ C:\Users\Majda\Downloads\bsplayer-setup.exe
2013-10-05 22:59 - 2013-10-18 08:45 - 00000000 ____D C:\Users\Majda\Desktop\Breaking Bad
2013-10-05 22:56 - 2013-10-05 22:56 - 03293576 _____ C:\Users\Majda\Downloads\Breaking.Bad.S01.Season.1.720p.BRRip.x264-Visionx.exe
2013-10-05 21:32 - 2013-10-06 00:25 - 00000000 ____D C:\Users\Majda\Documents\Nová složka
2013-10-01 20:08 - 2013-10-01 20:08 - 00000000 ____D C:\Users\Majda\Downloads\Camera
2013-10-01 20:07 - 2013-10-01 20:07 - 47327041 _____ C:\Users\Majda\Downloads\Camera.rar
2013-10-01 11:08 - 2013-10-01 11:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-29 16:03 - 2013-09-29 22:00 - 20848753 _____ C:\Users\Majda\Desktop\pozvánka_tisk.ai
2013-09-29 14:33 - 2013-09-29 15:51 - 36981878 _____ C:\Users\Majda\Desktop\POZVÁNKA.ai
2013-09-29 11:30 - 2013-09-29 11:30 - 00312595 _____ C:\Users\Majda\Downloads\cabinsketch.zip
2013-09-29 11:30 - 2013-09-29 11:30 - 00149094 _____ C:\Users\Majda\Downloads\mathlete.zip
2013-09-29 11:30 - 2013-09-29 11:30 - 00078585 _____ C:\Users\Majda\Downloads\amatic.zip
2013-09-29 11:28 - 2013-09-29 11:28 - 00125292 _____ C:\Users\Majda\Downloads\upirpaw.zip
2013-09-29 11:28 - 2013-09-29 11:28 - 00100950 _____ C:\Users\Majda\Downloads\grutchhanded.zip
2013-09-29 11:20 - 2013-09-29 11:20 - 00137792 _____ C:\Users\Majda\Downloads\LoveYaLikeASister.zip
2013-09-29 11:20 - 2013-09-29 11:20 - 00042057 _____ C:\Users\Majda\Downloads\KGTwoIsBetterThanOne.zip
2013-09-29 11:09 - 2013-09-29 11:09 - 00415591 _____ C:\Users\Majda\Downloads\Appleberry(2).zip
2013-09-29 11:08 - 2013-09-29 11:09 - 00415591 _____ C:\Users\Majda\Downloads\Appleberry(1).zip
2013-09-29 11:01 - 2013-09-29 11:01 - 00415591 _____ C:\Users\Majda\Downloads\Appleberry.zip
2013-09-29 10:55 - 2013-09-29 10:55 - 00022391 _____ C:\Users\Majda\Downloads\BlackBoysOnMopeds.zip

==================== One Month Modified Files and Folders =======

2013-10-26 13:44 - 2012-01-22 21:41 - 00000000 ____D C:\Users\Majda\AppData\Roaming\uTorrent
2013-10-26 13:43 - 2013-10-26 13:43 - 00000000 ____D C:\FRST
2013-10-26 13:42 - 2012-08-19 13:33 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2013-10-26 13:42 - 2009-07-14 06:45 - 00020944 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-26 13:42 - 2009-07-14 06:45 - 00020944 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-26 13:38 - 2013-10-26 13:39 - 00112128 _____ (forum.viry.cz) C:\Users\Majda\Desktop\FRSTLauncher.exe
2013-10-26 13:38 - 2013-10-26 13:38 - 01956086 _____ (Farbar) C:\Users\Majda\Desktop\FRST64.exe
2013-10-26 13:23 - 2012-05-27 13:01 - 00000950 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-26 13:09 - 2013-10-13 22:38 - 00000000 ____D C:\Users\Majda\AppData\Roaming\Dropbox
2013-10-26 12:35 - 2011-07-12 12:44 - 01385868 _____ C:\windows\WindowsUpdate.log
2013-10-26 10:25 - 2012-05-27 13:01 - 00000946 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-26 10:16 - 2011-12-27 11:42 - 00000000 ____D C:\Users\Majda\AppData\Roaming\Skype
2013-10-25 21:43 - 2011-03-09 05:17 - 00668236 _____ C:\windows\system32\perfh005.dat
2013-10-25 21:43 - 2011-03-09 05:17 - 00140852 _____ C:\windows\system32\perfc005.dat
2013-10-25 21:43 - 2009-07-14 07:13 - 01576554 _____ C:\windows\system32\PerfStringBackup.INI
2013-10-25 16:42 - 2013-10-25 16:42 - 00018832 _____ C:\Users\Majda\Downloads\hijackthis.log
2013-10-25 16:42 - 2011-12-24 21:32 - 00000000 ____D C:\Users\Majda\AppData\Local\VirtualStore
2013-10-25 16:40 - 2013-10-25 16:40 - 00388608 _____ (Trend Micro Inc.) C:\Users\Majda\Downloads\HiJackThis.exe
2013-10-25 15:31 - 2011-12-24 21:31 - 00003186 _____ C:\windows\System32\Tasks\HPCeeScheduleForMajda
2013-10-25 15:31 - 2011-12-24 21:31 - 00000332 _____ C:\windows\Tasks\HPCeeScheduleForMajda.job
2013-10-25 15:27 - 2012-07-12 21:43 - 00004182 _____ C:\windows\System32\Tasks\avast! Emergency Update
2013-10-24 19:46 - 2013-10-24 19:46 - 00000000 ____D C:\Users\Majda\Downloads\Subs
2013-10-24 19:38 - 2013-10-24 19:24 - 247384992 _____ C:\Users\Majda\Downloads\Pretty.Little.Liars.S04E13.HDTV.x264-LOL.mp4
2013-10-23 22:23 - 2013-06-01 17:22 - 00000000 ____D C:\Users\Majda\AppData\Roaming\Seznam.cz
2013-10-23 22:19 - 2013-10-13 22:43 - 00000000 ___RD C:\Users\Majda\Dropbox
2013-10-23 22:17 - 2011-03-09 05:05 - 00000000 ____D C:\ProgramData\PDFC
2013-10-23 22:17 - 2011-03-09 05:01 - 00000000 ____D C:\ProgramData\HPQLOG
2013-10-23 22:16 - 2013-08-03 10:18 - 00019405 _____ C:\windows\setupact.log
2013-10-23 22:16 - 2009-07-14 07:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-10-21 18:49 - 2013-10-06 11:05 - 00000000 ____D C:\Users\Majda\AppData\Roaming\BSplayer
2013-10-20 23:07 - 2012-01-15 13:07 - 00000000 _____ C:\windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-10-20 23:07 - 2011-12-25 20:02 - 00000052 _____ C:\windows\SysWOW64\DOErrors.log
2013-10-18 09:22 - 2011-12-30 12:28 - 00000000 ____D C:\Users\Majda\Documents\Majda pracuje
2013-10-18 08:45 - 2013-10-05 22:59 - 00000000 ____D C:\Users\Majda\Desktop\Breaking Bad
2013-10-18 08:40 - 2013-10-18 08:40 - 00000000 ____D C:\Users\Majda\Desktop\pozvánka_50T
2013-10-18 08:27 - 2011-12-26 11:57 - 00000000 ____D C:\Users\Majda\Documents\Zástupci
2013-10-16 09:18 - 2012-05-27 13:01 - 00003946 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-16 09:17 - 2012-05-27 13:01 - 00003694 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-15 10:55 - 2013-10-15 10:52 - 00000000 ____D C:\Users\Majda\Downloads\the help
2013-10-13 22:43 - 2011-12-24 21:15 - 00000000 ____D C:\Users\Majda
2013-10-13 22:39 - 2013-10-13 22:39 - 00000000 ____D C:\Users\Majda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-10-13 22:39 - 2011-12-24 21:32 - 00000000 ___RD C:\Users\Majda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-13 22:38 - 2013-10-13 22:37 - 35289176 _____ (Dropbox, Inc.) C:\Users\Majda\Downloads\Dropbox 2.4.2.exe
2013-10-13 20:27 - 2013-10-13 20:27 - 00000000 ____D C:\Users\Majda\Desktop\PAVEL P. 50
2013-10-13 18:59 - 2013-10-13 18:58 - 00006848 _____ C:\windows\DPINST.LOG
2013-10-13 18:59 - 2013-10-13 18:58 - 00001324 _____ C:\windows\Synaptics.log
2013-10-13 18:58 - 2013-10-13 18:58 - 01060080 _____ (Synaptics Incorporated) C:\windows\system32\SynCOM.dll
2013-10-13 18:58 - 2013-10-13 18:58 - 00544496 _____ (Synaptics Incorporated) C:\windows\SysWOW64\SynCom.dll
2013-10-13 18:58 - 2013-10-13 18:58 - 00495856 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\SynTP.sys
2013-10-13 18:58 - 2013-10-13 18:58 - 00264432 _____ (Synaptics Incorporated) C:\windows\system32\SynTPAPI.dll
2013-10-13 18:58 - 2013-10-13 18:58 - 00192240 _____ (Synaptics Incorporated) C:\windows\system32\SynTPCo18.dll
2013-10-13 18:58 - 2013-10-13 18:58 - 00151280 _____ (Synaptics Incorporated) C:\windows\SysWOW64\SynTPCom.dll
2013-10-13 18:58 - 2011-02-02 22:42 - 00000000 ____D C:\swsetup
2013-10-13 15:55 - 2011-12-25 04:04 - 00000000 ____D C:\windows\rescache
2013-10-13 13:09 - 2011-12-27 11:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-13 13:09 - 2011-12-27 11:41 - 00000000 ____D C:\ProgramData\Skype
2013-10-13 12:43 - 2009-07-14 06:45 - 05337560 _____ C:\windows\system32\FNTCACHE.DAT
2013-10-13 12:37 - 2013-08-03 10:18 - 00011956 _____ C:\windows\PFRO.log
2013-10-13 12:37 - 2013-03-14 00:37 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-13 12:37 - 2013-03-14 00:37 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-12 00:37 - 2011-12-24 21:38 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-12 00:29 - 2011-03-09 04:34 - 01559508 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2013-10-12 00:23 - 2013-08-10 01:01 - 00000000 ____D C:\windows\system32\MRT
2013-10-12 00:17 - 2012-07-12 20:23 - 80541720 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-10-10 23:53 - 2013-10-10 23:51 - 00000000 ____D C:\Users\Majda\AppData\Local\Ahead
2013-10-10 23:53 - 2013-10-10 23:50 - 00000000 ____D C:\Users\Majda\AppData\Roaming\Ahead
2013-10-10 23:47 - 2013-10-10 23:47 - 00000000 ____D C:\ProgramData\Nero
2013-10-10 23:47 - 2013-10-10 23:47 - 00000000 ____D C:\Program Files (x86)\Nero
2013-10-09 12:01 - 2012-08-19 13:33 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 12:01 - 2012-08-19 13:33 - 00003852 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 12:01 - 2011-12-25 15:18 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-06 14:06 - 2013-10-06 11:24 - 00000000 ____D C:\Users\Majda\Documents\fotky_tatka
2013-10-06 14:00 - 2013-10-06 13:58 - 1297430143 _____ C:\Users\Majda\Documents\fotky_tatka.zip
2013-10-06 11:05 - 2013-10-06 11:05 - 00000000 ____D C:\Users\Majda\AppData\Roaming\BSplayer Pro
2013-10-06 11:05 - 2013-10-06 11:05 - 00000000 ____D C:\Program Files (x86)\Webteh
2013-10-06 11:01 - 2013-10-06 11:01 - 00000000 _____ C:\END
2013-10-06 10:59 - 2013-10-06 10:59 - 07733328 _____ C:\Users\Majda\Downloads\bsplayer-setup.exe
2013-10-06 10:49 - 2011-12-28 19:37 - 00000000 ____D C:\Users\Majda\AppData\Roaming\vlc
2013-10-06 00:25 - 2013-10-05 21:32 - 00000000 ____D C:\Users\Majda\Documents\Nová složka
2013-10-05 22:56 - 2013-10-05 22:56 - 03293576 _____ C:\Users\Majda\Downloads\Breaking.Bad.S01.Season.1.720p.BRRip.x264-Visionx.exe
2013-10-04 16:52 - 2012-05-03 15:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-03 12:26 - 2011-12-25 14:39 - 00000000 ____D C:\Users\Majda\AppData\Local\Mozilla
2013-10-01 20:08 - 2013-10-01 20:08 - 00000000 ____D C:\Users\Majda\Downloads\Camera
2013-10-01 20:07 - 2013-10-01 20:07 - 47327041 _____ C:\Users\Majda\Downloads\Camera.rar
2013-10-01 11:08 - 2013-10-01 11:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-29 22:00 - 2013-09-29 16:03 - 20848753 _____ C:\Users\Majda\Desktop\pozvánka_tisk.ai
2013-09-29 15:51 - 2013-09-29 14:33 - 36981878 _____ C:\Users\Majda\Desktop\POZVÁNKA.ai
2013-09-29 12:18 - 2011-12-24 21:30 - 00136632 _____ C:\Users\Majda\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-29 11:30 - 2013-09-29 11:30 - 00312595 _____ C:\Users\Majda\Downloads\cabinsketch.zip
2013-09-29 11:30 - 2013-09-29 11:30 - 00149094 _____ C:\Users\Majda\Downloads\mathlete.zip
2013-09-29 11:30 - 2013-09-29 11:30 - 00078585 _____ C:\Users\Majda\Downloads\amatic.zip
2013-09-29 11:28 - 2013-09-29 11:28 - 00125292 _____ C:\Users\Majda\Downloads\upirpaw.zip
2013-09-29 11:28 - 2013-09-29 11:28 - 00100950 _____ C:\Users\Majda\Downloads\grutchhanded.zip
2013-09-29 11:20 - 2013-09-29 11:20 - 00137792 _____ C:\Users\Majda\Downloads\LoveYaLikeASister.zip
2013-09-29 11:20 - 2013-09-29 11:20 - 00042057 _____ C:\Users\Majda\Downloads\KGTwoIsBetterThanOne.zip
2013-09-29 11:09 - 2013-09-29 11:09 - 00415591 _____ C:\Users\Majda\Downloads\Appleberry(2).zip
2013-09-29 11:09 - 2013-09-29 11:08 - 00415591 _____ C:\Users\Majda\Downloads\Appleberry(1).zip
2013-09-29 11:01 - 2013-09-29 11:01 - 00415591 _____ C:\Users\Majda\Downloads\Appleberry.zip
2013-09-29 10:55 - 2013-09-29 10:55 - 00022391 _____ C:\Users\Majda\Downloads\BlackBoysOnMopeds.zip
2013-09-27 12:26 - 2011-03-09 05:14 - 00000000 ____D C:\ProgramData\Sonic
2013-09-27 11:25 - 2011-12-24 21:13 - 00003218 _____ C:\windows\System32\Tasks\HPCeeScheduleForMAJDA-HP$
2013-09-27 11:25 - 2011-12-24 21:13 - 00000342 _____ C:\windows\Tasks\HPCeeScheduleForMAJDA-HP$.job
2013-09-26 16:21 - 2009-07-14 05:20 - 00000000 ____D C:\windows\system32\NDF

Some content of TEMP:
====================
C:\Users\Majda\AppData\Local\Temp\AtpTimerInfo.dll
C:\Users\Majda\AppData\Local\Temp\Extract.exe
C:\Users\Majda\AppData\Local\Temp\NOSEventMessages.dll
C:\Users\Majda\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Majda\AppData\Local\Temp\SP52616.exe
C:\Users\Majda\AppData\Local\Temp\SP56729.exe
C:\Users\Majda\AppData\Local\Temp\SP59033.exe
C:\Users\Majda\AppData\Local\Temp\SP59202.exe
C:\Users\Majda\AppData\Local\Temp\SP60504.exe
C:\Users\Majda\AppData\Local\Temp\SP60775.exe
C:\Users\Majda\AppData\Local\Temp\SP62449.exe
C:\Users\Majda\AppData\Local\Temp\SP62738.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-21 15:50




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:445.09 GB) (Free:204.65 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (HP_RECOVERY) (Fixed) (Total:15.37 GB) (Free:2.04 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (HP_TOOLS) (Fixed) (Total:4.98 GB) (Free:2.12 GB) FAT32

Available physical RAM: 969.31 MB
Total physical RAM: 4030.36 MB
Percentage of memory in use: 75%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 47CAA2A8)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=445 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=5 GB) - (Type=0C)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HPCeeScheduleForMAJDA-HP$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\windows\Tasks\HPCeeScheduleForMajda.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 28_09_2013 (06)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Majda\Desktop" je 52756 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Bulldog Anti-phishing Domain Advisor
"C:\ProgramData\File Bulldog Anti-phishing Domain Advisor\filebulldog_antiphishing.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Remote Mouse
C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce
"C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate [x]


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000001


==================== End Of Log ==============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKCU\...\Run: [] - [x]
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDF
SearchScopes: HKLM - DefaultScope {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2475029
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2475029
SearchScopes: HKCU - DefaultScope {3123846C-476F-4963-9A05-928B27B0B9FB} URL = http://search.yahoo.com/search?fr=chr-g ... =800236&p={searchTerms}
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKCU - {3123846C-476F-4963-9A05-928B27B0B9FB} URL = http://search.yahoo.com/search?fr=chr-g ... =800236&p={searchTerms}
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://search.filebulldog.com/results/1 ... A11CE56?q={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2475029
SearchScopes: HKCU - {ED67371B-1EBF-4935-BFD9-F32D0B9BD689} URL = http://websearch.ask.com/redirect?clien ... &src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYCZ&apn_uid=2F73D074-6B5A-4371-BC13-AB023FB4F40B&apn_sauid=54705A84-A920-412A-9C8A-00858925D027
FF ProfilePath: C:\Users\Majda\AppData\Roaming\Mozilla\Firefox\Profiles\wc609sal.default
FF user.js: detected! => C:\Users\Majda\AppData\Roaming\Mozilla\Firefox\Profiles\wc609sal.default\user.js
FF NewTab: user_pref("browser.newtab.url", "");
FF SearchEngineOrder.1: Ask.com
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=green ... =800236&p=
FF Plugin: @microsoft.com/GENUINE - disabled No File
CHR HomePage: hxxp://search.filebulldog.com/vmn/06A81 ... 51AA11CE56
CHR RestoreOnStartup: "hxxp://search.filebulldog.com/vmn/06A8175F8811602CBDBC7751AA11CE56", "hxxp://www.google.com"
CHR DefaultSearchURL: (Search The Web) - http://search.filebulldog.com/results/1 ... A11CE56?q={searchTerms}
CHR DefaultSuggestURL: (Search The Web) - "suggest_url": "",
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.75\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
C:\Users\Majda\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Log je příliš velký, proto přikládám. Porestartu stále potíže. Díky.

Zkuste obnovu systému k datu, kdy korektně fungoval. FRST vše smazal.