VIRY.CZ

Zdravím.
Prosím o kontrolu logu.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Vlasta (administrator) on VLASTA-HP on 29-03-2014 17:32:23
Running from C:\Users\Vlasta\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(PostgreSQL Global Development Group) c:\eISIS\servers\postgresql\bin\pg_ctl.exe
(Apache Software Foundation) c:\eISIS\servers\tomcat\bin\tomcat5.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(PostgreSQL Global Development Group) c:\eISIS\servers\postgresql\bin\postgres.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\bin\fbguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(PostgreSQL Global Development Group) c:\eISIS\servers\postgresql\bin\postgres.exe
(PostgreSQL Global Development Group) c:\eISIS\servers\postgresql\bin\postgres.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\bin\fbserver.exe
(PostgreSQL Global Development Group) c:\eISIS\servers\postgresql\bin\postgres.exe
(PostgreSQL Global Development Group) c:\eISIS\servers\postgresql\bin\postgres.exe
(PostgreSQL Global Development Group) c:\eISIS\servers\postgresql\bin\postgres.exe
(PostgreSQL Global Development Group) c:\eISIS\servers\postgresql\bin\postgres.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe
(Google Inc.) C:\Users\Vlasta\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vlasta\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vlasta\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vlasta\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vlasta\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vlasta\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vlasta\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vlasta\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vlasta\AppData\Local\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Vlasta\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6463592 2012-02-13] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2885904 2012-02-24] (Synaptics Incorporated)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-25] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1557535924-674888761-1873309798-1000\...\Run: [Google Update] - C:\Users\Vlasta\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-11-10] (Google Inc.)
HKU\S-1-5-21-1557535924-674888761-1873309798-1000\...\MountPoints2: H - H:\setup.exe
HKU\S-1-5-21-1557535924-674888761-1873309798-1000\...\MountPoints2: {10a448f5-65f9-11e2-b44e-a0b3cccad611} - F:\Autorun.exe
HKU\S-1-5-21-1557535924-674888761-1873309798-1000\...\MountPoints2: {a1d7c522-8b55-11e3-ac9e-a0b3cccad611} - H:\setup.exe
Startup: C:\Users\Vlasta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kooperativa - PDF Server.lnk
ShortcutTarget: Kooperativa - PDF Server.lnk -> C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=UP97&ocid=UP97DHP
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?pc=UP97&ocid=UP97DHP
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = cs-cz
HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/UP97_FRPage
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1C3DF2CB-8661-4301-8BAC-4CCF83E26FFE}: [NameServer]
Tcpip\..\Interfaces\{3385A54F-82E2-43CE-9C5A-E94B3A76D460}: [NameServer]

FireFox:
========
FF ProfilePath: C:\Users\Vlasta\AppData\Roaming\Mozilla\Firefox\Profiles\2gcootby.default
FF Homepage: https://www.google.cz/?gfe_rd=cr&ei=1l8 ... 6P_AaTzYEo
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @java.com/DTPlugin,version=10.9.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.9.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Vlasta\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Vlasta\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: DownloadHelper - C:\Users\Vlasta\AppData\Roaming\Mozilla\Firefox\Profiles\2gcootby.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-26]
FF Extension: MEGA - C:\Users\Vlasta\AppData\Roaming\Mozilla\Firefox\Profiles\2gcootby.default\Extensions\firefox@mega.co.nz.xpi [2014-01-03]
FF Extension: Adblock Plus - C:\Users\Vlasta\AppData\Roaming\Mozilla\Firefox\Profiles\2gcootby.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-22]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-03-03]

Chrome:
=======
CHR Extension: (Entanglement) - C:\Users\Vlasta\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd [2013-06-12]
CHR Extension: (Google Drive) - C:\Users\Vlasta\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-06-05]
CHR Extension: (YouTube) - C:\Users\Vlasta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-06-05]
CHR Extension: (Google Search) - C:\Users\Vlasta\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-05]
CHR Extension: (AutoCAD 360) - C:\Users\Vlasta\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcjeclnkejmbepoibfnamioojinoopln [2013-06-12]
CHR Extension: (Sketch Toy) - C:\Users\Vlasta\AppData\Local\Google\Chrome\User Data\Default\Extensions\ednofnkligfbacmlfggaccfhpkfopojb [2013-06-12]
CHR Extension: (AdBlock) - C:\Users\Vlasta\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-06-12]
CHR Extension: (Pixlr Express) - C:\Users\Vlasta\AppData\Local\Google\Chrome\User Data\Default\Extensions\hojmjpdlmjopaeginhldhiokeidchjid [2013-06-12]
CHR Extension: (CanvasDraw) - C:\Users\Vlasta\AppData\Local\Google\Chrome\User Data\Default\Extensions\knfimpamngmggpbamfoomdpebdoleghe [2013-06-12]
CHR Extension: (Google Maps) - C:\Users\Vlasta\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2013-06-12]
CHR Extension: (Gmail) - C:\Users\Vlasta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-06-05]
CHR Extension: (GCH Weather Forecast.) - C:\Users\Vlasta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pobcbokjdifiefbdkmnhfbjnmbleiofa [2013-07-11]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-03-03]

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-25] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-25] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1017424 2014-02-25] (Avira Operations GmbH & Co. KG)
S4 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
R4 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363584 2014-03-03] (Microsoft Corporation)
R4 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1748608 2014-03-03] (Microsoft Corporation)
R2 eISISPostgreSQL; c:\eISIS\servers\postgresql\bin\pg_ctl.exe [79948 2012-09-27] (PostgreSQL Global Development Group)
R2 eISISTomcat; c:\eISIS\servers\tomcat\bin\tomcat5.exe [57344 2012-09-27] (Apache Software Foundation)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\bin\fbguard.exe [65536 2007-12-12] (The Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\bin\fbserver.exe [1531989 2007-12-12] (The Firebird Project)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-08] (Intel Corporation)
R2 MbnExt; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\MbnExt.dll [417128 2013-12-02] (Gemfor s.r.o.)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1134584 2012-02-19] (PDF Complete Inc)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-21] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2014-02-25] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2014-02-25] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-02-25] (Avira Operations GmbH & Co. KG)
S3 Axtmvflt; C:\Windows\System32\DRIVERS\Axtmvflt.sys [6144 2007-03-26] (Axesstel)
S3 Axtmvmdm; C:\Windows\System32\DRIVERS\Axtmvmdm.sys [54272 2007-03-26] (Axesstel)
S3 Axtmvprt; C:\Windows\System32\Drivers\Axtmvprt.sys [52224 2007-03-26] (Axesstel)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [238080 2012-04-23] (Huawei Technologies Co., Ltd.)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19032 2012-08-20] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12384 2012-08-20] ()
S3 RSP2STOR; C:\Windows\System32\DRIVERS\RtsP2Stor.sys [259688 2011-10-27] (Realtek Semiconductor Corp.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SmbDrv; C:\Windows\system32\drivers\Smb_driver.sys [21264 2012-02-24] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2014-02-01] (Duplex Secure Ltd.)
U3 a2q9vk3l; C:\Windows\System32\Drivers\a2q9vk3l.sys [0 ] (Advanced Micro Devices)
U3 adk1gemy; C:\Windows\System32\Drivers\adk1gemy.sys [0 ] (Advanced Micro Devices)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-29 17:32 - 2014-03-29 17:32 - 00017439 _____ () C:\Users\Vlasta\Desktop\FRST.txt
2014-03-29 17:30 - 2014-03-29 17:30 - 02157056 _____ (Farbar) C:\Users\Vlasta\Desktop\FRST64.exe
2014-03-29 17:30 - 2014-03-29 17:30 - 00112640 _____ (forum.viry.cz) C:\Users\Vlasta\Desktop\FRSTLauncher.exe
2014-03-28 08:45 - 2014-03-28 08:45 - 00000000 ____D () C:\Users\Vlasta\Desktop\2014_03_28
2014-03-25 08:44 - 2014-03-29 17:21 - 00000336 _____ () C:\Windows\setupact.log
2014-03-25 08:44 - 2014-03-25 08:44 - 00009936 _____ () C:\Windows\PFRO.log
2014-03-25 08:44 - 2014-03-25 08:44 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-24 13:17 - 2014-03-24 13:17 - 00000000 ____D () C:\ProgramData\HP
2014-03-24 13:16 - 2014-03-24 13:16 - 06598344 _____ () C:\Users\Vlasta\Downloads\HPPSdr.exe
2014-03-24 13:16 - 2014-03-24 13:16 - 00002004 _____ () C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2014-03-24 13:16 - 2014-03-24 13:16 - 00000000 ____D () C:\Program Files (x86)\HP
2014-03-24 13:14 - 2014-03-24 13:14 - 03208024 _____ () C:\Users\Vlasta\Downloads\lj1018_1020_1022-HB-pnp-win64-cs(1).exe
2014-03-24 13:13 - 2014-03-24 13:14 - 00000000 ____D () C:\FRST
2014-03-24 13:07 - 2014-03-24 13:07 - 00347816 _____ (Microsoft Corporation) C:\Users\Vlasta\Downloads\MicrosoftFixit.Printing.LB.Run.exe
2014-03-24 12:59 - 2014-03-24 12:59 - 02243616 _____ (Megaify Software ) C:\Users\Vlasta\Downloads\driver_setup.exe
2014-03-24 09:16 - 2014-03-24 09:16 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-03-24 09:16 - 2014-03-24 09:16 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-03-23 15:01 - 2014-03-23 15:29 - 782127104 ____R () C:\Users\Vlasta\Downloads\Apokalypsa v Hollywoodu.avi
2014-03-23 15:01 - 2014-03-23 15:01 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-23 15:01 - 2014-03-23 15:01 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-23 15:01 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-23 14:59 - 2014-03-23 15:00 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Vlasta\Downloads\mbam-setup-1.75.0.1300(1).exe
2014-03-20 08:18 - 2014-03-20 08:18 - 00000000 ____D () C:\Users\Vlasta\AppData\Roaming\TuneUp Software
2014-03-20 08:14 - 2014-03-25 08:44 - 00000000 ____D () C:\ProgramData\MFAData
2014-03-20 08:14 - 2014-03-20 08:14 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\MFAData
2014-03-20 08:13 - 2014-03-20 08:13 - 04462384 _____ (AVG Technologies) C:\Users\Vlasta\Downloads\avg_free_stb_all_2014_4335_cnet.exe
2014-03-17 12:01 - 2014-03-17 12:01 - 00018085 _____ () C:\Users\Vlasta\Desktop\Sešit1.xlsx
2014-03-13 14:14 - 2014-03-13 14:14 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-03-13 08:15 - 2014-03-01 07:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-13 08:15 - 2014-03-01 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-13 08:15 - 2014-03-01 06:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-13 08:15 - 2014-03-01 05:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-13 08:15 - 2014-03-01 05:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-13 08:15 - 2014-03-01 05:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-13 08:15 - 2014-03-01 05:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-13 08:15 - 2014-03-01 05:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-13 08:15 - 2014-03-01 05:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-13 08:15 - 2014-03-01 05:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-13 08:15 - 2014-03-01 05:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-13 08:15 - 2014-03-01 05:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-13 08:15 - 2014-03-01 05:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-13 08:15 - 2014-03-01 05:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-13 08:15 - 2014-03-01 05:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-13 08:15 - 2014-03-01 05:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-13 08:15 - 2014-03-01 05:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-13 08:15 - 2014-03-01 04:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-13 08:15 - 2014-03-01 04:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-13 08:15 - 2014-03-01 04:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-13 08:15 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-13 08:15 - 2014-03-01 04:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-13 08:15 - 2014-03-01 04:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-13 08:15 - 2014-03-01 04:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-13 08:15 - 2014-03-01 04:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-13 08:15 - 2014-03-01 04:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-13 08:15 - 2014-03-01 04:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-13 08:15 - 2014-03-01 04:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-13 08:15 - 2014-03-01 04:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-13 08:15 - 2014-03-01 04:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-13 08:15 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-13 08:15 - 2014-03-01 04:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-13 08:15 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-13 08:15 - 2014-03-01 04:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-13 08:15 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-13 08:15 - 2014-03-01 03:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-13 08:15 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-13 08:15 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-13 08:15 - 2014-03-01 03:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-13 08:15 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-13 08:15 - 2014-02-07 02:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-13 08:15 - 2014-01-29 03:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-13 08:15 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-13 08:15 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-13 08:11 - 2014-02-04 03:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-13 08:11 - 2014-02-04 03:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-13 08:11 - 2014-02-04 03:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-13 08:11 - 2014-02-04 03:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-11 14:00 - 2014-03-11 14:01 - 00000000 ____D () C:\Program Files (x86)\Windows Phone
2014-03-11 13:59 - 2014-03-11 13:59 - 06790816 _____ (Microsoft Corporation) C:\Users\Vlasta\Downloads\WindowsPhone.exe
2014-03-11 13:59 - 2014-03-11 13:59 - 00000000 ____D () C:\ProgramData\Applications
2014-03-09 19:27 - 2014-03-09 19:27 - 00000000 ____D () C:\Users\Vlasta\AppData\Roaming\Avira
2014-03-09 19:20 - 2014-02-25 11:41 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-03-09 19:20 - 2014-02-25 11:41 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-03-09 19:20 - 2014-02-25 11:41 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-03-09 19:13 - 2014-03-09 19:46 - 00000000 ____D () C:\ProgramData\Avira
2014-03-09 19:13 - 2014-03-09 19:46 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-03-08 08:22 - 2014-03-08 08:22 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Vlasta\Downloads\mbam-setup-1.75.0.1300.exe
2014-03-08 08:22 - 2014-03-08 08:22 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-03-08 08:22 - 2014-03-08 08:22 - 00000822 _____ () C:\Users\Vlasta\Desktop\CCleaner.lnk
2014-03-08 08:21 - 2014-03-08 08:21 - 04765152 _____ (Piriform Ltd) C:\Users\Vlasta\Downloads\ccsetup411.exe
2014-03-08 02:28 - 2014-03-08 02:28 - 00075776 _____ (FRIEND) C:\Users\Vlasta\Downloads\PC ShutDown Timer.exe
2014-03-08 02:26 - 2014-03-08 02:26 - 01207296 _____ () C:\Users\Vlasta\Downloads\ShutdownTimerSetup.msi
2014-03-06 13:22 - 2014-03-08 08:15 - 00000000 ____D () C:\Users\Vlasta\AppData\Roaming\Samsung
2014-03-06 13:22 - 2014-03-08 08:15 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\Samsung
2014-03-06 13:22 - 2014-03-06 13:22 - 00000000 ____D () C:\Users\Vlasta\Documents\samsung
2014-03-06 13:22 - 2014-03-06 13:22 - 00000000 ____D () C:\Users\Public\Documents\NativeFus_Log
2014-03-06 09:30 - 2014-03-06 09:31 - 01331024 _____ (Viber Media Inc) C:\Users\Vlasta\Downloads\ViberSetup(2).exe
2014-03-06 08:11 - 2014-03-06 08:11 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\{30E28D3B-0485-4E08-B131-4E3FCECD5367}
2014-03-05 14:04 - 2014-01-23 18:23 - 04659712 _____ (Dmitry Streblechenko) C:\Windows\SysWOW64\Redemption.dll
2014-03-05 14:04 - 2014-01-23 18:23 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\SysWOW64\secman.dll
2014-03-05 14:03 - 2014-03-08 08:15 - 00000000 ____D () C:\ProgramData\Samsung
2014-03-05 14:03 - 2014-03-08 08:15 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-03-05 13:59 - 2014-03-05 13:59 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\Downloaded Installations
2014-03-05 13:44 - 2014-03-05 13:45 - 75397136 _____ (Samsung Electronics Co., Ltd.) C:\Users\Vlasta\Downloads\KiesSetup.exe
2014-03-04 11:45 - 2014-03-04 11:45 - 00005309 _____ () C:\Users\Vlasta\Desktop\Viber_S40.jad
2014-03-04 11:40 - 2014-03-04 11:40 - 01331024 _____ (Viber Media Inc) C:\Users\Vlasta\Downloads\ViberSetup(1).exe
2014-03-04 11:24 - 2014-03-04 11:24 - 01678496 _____ (Skype Technologies S.A.) C:\Users\Vlasta\Downloads\SkypeSetup.exe
2014-03-04 11:09 - 2014-03-04 11:09 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\Skype
2014-03-04 11:08 - 2014-03-11 11:09 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-04 11:07 - 2014-03-04 11:07 - 34828960 _____ (Skype Technologies S.A.) C:\Users\Vlasta\Downloads\SkypeSetupFull.exe
2014-03-04 10:59 - 2014-03-04 11:00 - 01331024 _____ (Viber Media Inc) C:\Users\Vlasta\Downloads\ViberSetup.exe
2014-03-03 16:08 - 2014-03-03 16:08 - 00526274 _____ () C:\Users\Vlasta\Downloads\7006281175.zip
2014-03-03 16:06 - 2014-03-03 16:06 - 02487808 _____ () C:\Users\Vlasta\Downloads\strucny-navod-k-prohlizeni-smluv-on-line.pps
2014-03-03 16:02 - 2014-03-03 16:02 - 00194458 _____ () C:\Users\Vlasta\Downloads\KodisSkenPage.tif
2014-03-03 16:02 - 2014-03-03 16:02 - 00194458 _____ () C:\Users\Vlasta\Downloads\KodisSkenPage (1).tif
2014-03-03 16:02 - 2014-03-03 16:02 - 00088724 _____ () C:\Users\Vlasta\Downloads\A0362 7006281175 120430124433 0000198504 W1946611 X000000817567.tif
2014-03-02 14:07 - 2014-03-05 14:21 - 1991548928 ____R () C:\Users\Vlasta\Downloads\The Words.avi
2014-03-02 14:06 - 2014-03-02 14:06 - 00019537 _____ () C:\Users\Vlasta\Downloads\[CzT]The_Words_2012_CZ_.torrent
2014-03-01 15:27 - 2014-03-01 15:27 - 00015470 _____ () C:\Users\Vlasta\Downloads\[CzT]Apokalypsa_v_Hollywoodu_This_Is_the_End_2013_CZ_ (1).torrent
2014-03-01 14:26 - 2014-03-01 14:26 - 00015486 _____ () C:\Users\Vlasta\Downloads\[CzT]Apokalypsa_v_Hollywoodu_This_Is_the_End_2013_CZ_.torrent
2014-03-01 14:25 - 2014-03-01 14:25 - 00015757 _____ () C:\Users\Vlasta\Downloads\[CzT]Gravitace_Gravity_2013_CZ_.torrent
2014-02-28 15:45 - 2014-03-17 16:41 - 00043520 _____ () C:\Users\Vlasta\Desktop\SNOPKOVA-1.xls
2014-02-27 12:41 - 2014-02-27 12:55 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\Battle.net
2014-02-27 12:41 - 2014-02-27 12:41 - 00000000 ____D () C:\Users\Vlasta\AppData\Roaming\Battle.net
2014-02-27 12:41 - 2014-02-27 12:41 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\Blizzard Entertainment
2014-02-27 12:40 - 2014-02-27 12:41 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-02-27 12:40 - 2014-02-27 12:40 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2014-02-27 12:38 - 2014-02-27 12:38 - 00000000 ____D () C:\ProgramData\Battle.net
2014-02-27 12:32 - 2014-02-27 12:32 - 05971136 _____ (Blizzard Entertainment) C:\Users\Vlasta\Downloads\Hearthstone-Beta-Setup-enUS.exe
2014-02-27 12:27 - 2014-02-27 12:30 - 178382340 _____ () C:\Users\Vlasta\Downloads\Ishq_-_The_Invisible_Landscape_2014-psy-music.ru .rar

==================== One Month Modified Files and Folders =======

2014-03-29 17:32 - 2014-03-29 17:32 - 00017439 _____ () C:\Users\Vlasta\Desktop\FRST.txt
2014-03-29 17:30 - 2014-03-29 17:30 - 02157056 _____ (Farbar) C:\Users\Vlasta\Desktop\FRST64.exe
2014-03-29 17:30 - 2014-03-29 17:30 - 00112640 _____ (forum.viry.cz) C:\Users\Vlasta\Desktop\FRSTLauncher.exe
2014-03-29 17:30 - 2009-07-14 05:45 - 00031472 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-29 17:30 - 2009-07-14 05:45 - 00031472 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-29 17:28 - 2012-11-10 10:48 - 01414995 _____ () C:\Windows\WindowsUpdate.log
2014-03-29 17:27 - 2012-11-10 10:51 - 00003978 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5A40F3D5-9700-4ADD-8A7F-68D698691971}
2014-03-29 17:23 - 2013-12-03 08:08 - 00000966 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1557535924-674888761-1873309798-1000UA.job
2014-03-29 17:23 - 2012-03-15 11:56 - 00000000 ____D () C:\ProgramData\PDFC
2014-03-29 17:21 - 2014-03-25 08:44 - 00000336 _____ () C:\Windows\setupact.log
2014-03-29 17:21 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-28 17:50 - 2013-09-23 08:29 - 01763328 _____ () C:\Users\Vlasta\Desktop\ODESILACI.xls
2014-03-28 16:15 - 2013-03-15 12:07 - 00000000 ____D () C:\Users\Vlasta\Desktop\Monika1
2014-03-28 08:45 - 2014-03-28 08:45 - 00000000 ____D () C:\Users\Vlasta\Desktop\2014_03_28
2014-03-28 08:22 - 2013-12-03 08:08 - 00000914 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1557535924-674888761-1873309798-1000Core.job
2014-03-27 11:23 - 2012-03-15 19:47 - 00727896 _____ () C:\Windows\system32\perfh005.dat
2014-03-27 11:23 - 2012-03-15 19:47 - 00166098 _____ () C:\Windows\system32\perfc005.dat
2014-03-27 11:23 - 2009-07-14 06:13 - 01747962 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-25 08:44 - 2014-03-25 08:44 - 00009936 _____ () C:\Windows\PFRO.log
2014-03-25 08:44 - 2014-03-25 08:44 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-25 08:44 - 2014-03-20 08:14 - 00000000 ____D () C:\ProgramData\MFAData
2014-03-24 17:01 - 2013-06-04 08:30 - 00132608 _____ () C:\Users\Vlasta\Desktop\KOVAR.xls
2014-03-24 13:17 - 2014-03-24 13:17 - 00000000 ____D () C:\ProgramData\HP
2014-03-24 13:16 - 2014-03-24 13:16 - 06598344 _____ () C:\Users\Vlasta\Downloads\HPPSdr.exe
2014-03-24 13:16 - 2014-03-24 13:16 - 00002004 _____ () C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2014-03-24 13:16 - 2014-03-24 13:16 - 00000000 ____D () C:\Program Files (x86)\HP
2014-03-24 13:15 - 2014-02-19 09:31 - 00023418 _____ () C:\1020.log
2014-03-24 13:14 - 2014-03-24 13:14 - 03208024 _____ () C:\Users\Vlasta\Downloads\lj1018_1020_1022-HB-pnp-win64-cs(1).exe
2014-03-24 13:14 - 2014-03-24 13:13 - 00000000 ____D () C:\FRST
2014-03-24 13:07 - 2014-03-24 13:07 - 00347816 _____ (Microsoft Corporation) C:\Users\Vlasta\Downloads\MicrosoftFixit.Printing.LB.Run.exe
2014-03-24 12:59 - 2014-03-24 12:59 - 02243616 _____ (Megaify Software ) C:\Users\Vlasta\Downloads\driver_setup.exe
2014-03-24 12:52 - 2014-02-01 16:26 - 00000000 ____D () C:\Users\Vlasta\AppData\Roaming\DAEMON Tools Lite
2014-03-24 12:52 - 2014-01-09 12:34 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-03-24 12:52 - 2013-11-26 19:49 - 00000000 ____D () C:\Users\Vlasta\AppData\Roaming\BitTorrent
2014-03-24 12:52 - 2012-11-13 20:01 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\CrashDumps
2014-03-24 12:52 - 2012-11-10 12:18 - 00000000 ____D () C:\Users\Vlasta\AppData\Roaming\Winamp
2014-03-24 12:52 - 2007-01-02 02:25 - 00000000 ____D () C:\Windows\Panther
2014-03-24 12:02 - 2013-05-24 10:11 - 00000000 ____D () C:\Users\Vlasta\Desktop\Mirek
2014-03-24 09:50 - 2013-07-01 15:20 - 00000000 ____D () C:\Users\Vlasta\Desktop\monika
2014-03-24 09:16 - 2014-03-24 09:16 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-03-24 09:16 - 2014-03-24 09:16 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-03-23 15:29 - 2014-03-23 15:01 - 782127104 ____R () C:\Users\Vlasta\Downloads\Apokalypsa v Hollywoodu.avi
2014-03-23 15:01 - 2014-03-23 15:01 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-23 15:01 - 2014-03-23 15:01 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-23 15:00 - 2014-03-23 14:59 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Vlasta\Downloads\mbam-setup-1.75.0.1300(1).exe
2014-03-21 10:02 - 2014-01-17 14:52 - 00025600 _____ () C:\Users\Vlasta\Desktop\ZAHN.xls
2014-03-20 09:14 - 2012-06-07 10:41 - 00000000 ____D () C:\Users\Public\Documents\YouCam
2014-03-20 08:18 - 2014-03-20 08:18 - 00000000 ____D () C:\Users\Vlasta\AppData\Roaming\TuneUp Software
2014-03-20 08:14 - 2014-03-20 08:14 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\MFAData
2014-03-20 08:13 - 2014-03-20 08:13 - 04462384 _____ (AVG Technologies) C:\Users\Vlasta\Downloads\avg_free_stb_all_2014_4335_cnet.exe
2014-03-20 08:01 - 2013-05-19 21:19 - 00000000 ____D () C:\Users\Vlasta\Desktop\Honza
2014-03-19 16:32 - 2014-01-15 14:31 - 00021504 _____ () C:\Users\Vlasta\Desktop\Macner.xls
2014-03-19 15:26 - 2013-07-15 13:42 - 00080384 _____ () C:\Users\Vlasta\Desktop\MORAVEK.xls
2014-03-18 17:18 - 2013-07-19 15:51 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-18 17:16 - 2012-11-12 14:38 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-17 16:41 - 2014-02-28 15:45 - 00043520 _____ () C:\Users\Vlasta\Desktop\SNOPKOVA-1.xls
2014-03-17 14:08 - 2013-12-22 14:29 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\PMB Files
2014-03-17 14:08 - 2013-12-22 14:29 - 00000000 ____D () C:\ProgramData\PMB Files
2014-03-17 12:01 - 2014-03-17 12:01 - 00018085 _____ () C:\Users\Vlasta\Desktop\Sešit1.xlsx
2014-03-14 15:15 - 2012-11-10 12:09 - 00000000 ____D () C:\Users\Vlasta\AppData\Roaming\vlc
2014-03-14 07:28 - 2009-07-14 05:45 - 00311520 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-14 07:26 - 2013-03-13 16:16 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-14 07:26 - 2013-03-13 16:16 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-03-13 14:14 - 2014-03-13 14:14 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-03-11 14:01 - 2014-03-11 14:00 - 00000000 ____D () C:\Program Files (x86)\Windows Phone
2014-03-11 13:59 - 2014-03-11 13:59 - 06790816 _____ (Microsoft Corporation) C:\Users\Vlasta\Downloads\WindowsPhone.exe
2014-03-11 13:59 - 2014-03-11 13:59 - 00000000 ____D () C:\ProgramData\Applications
2014-03-11 12:21 - 2013-08-01 14:49 - 00000000 ____D () C:\Users\Vlasta\Desktop\ZALOHA 1
2014-03-11 12:03 - 2014-01-23 12:24 - 00023552 _____ () C:\Users\Vlasta\Desktop\Brzek.xls
2014-03-11 11:09 - 2014-03-04 11:08 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-10 09:44 - 2013-08-23 14:22 - 00022016 _____ () C:\Users\Vlasta\Desktop\splátky US.xls
2014-03-09 19:46 - 2014-03-09 19:13 - 00000000 ____D () C:\ProgramData\Avira
2014-03-09 19:46 - 2014-03-09 19:13 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-03-09 19:45 - 2012-11-12 14:41 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-03-09 19:31 - 2009-07-14 06:08 - 00032526 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-09 19:27 - 2014-03-09 19:27 - 00000000 ____D () C:\Users\Vlasta\AppData\Roaming\Avira
2014-03-09 19:10 - 2013-11-26 22:22 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-03-08 08:27 - 2012-11-14 10:02 - 00000000 ____D () C:\Users\Vlasta\AppData\Roaming\Skype
2014-03-08 08:22 - 2014-03-08 08:22 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Vlasta\Downloads\mbam-setup-1.75.0.1300.exe
2014-03-08 08:22 - 2014-03-08 08:22 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-03-08 08:22 - 2014-03-08 08:22 - 00000822 _____ () C:\Users\Vlasta\Desktop\CCleaner.lnk
2014-03-08 08:22 - 2013-03-26 23:00 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-08 08:21 - 2014-03-08 08:21 - 04765152 _____ (Piriform Ltd) C:\Users\Vlasta\Downloads\ccsetup411.exe
2014-03-08 08:15 - 2014-03-06 13:22 - 00000000 ____D () C:\Users\Vlasta\AppData\Roaming\Samsung
2014-03-08 08:15 - 2014-03-06 13:22 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\Samsung
2014-03-08 08:15 - 2014-03-05 14:03 - 00000000 ____D () C:\ProgramData\Samsung
2014-03-08 08:15 - 2014-03-05 14:03 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-03-08 02:28 - 2014-03-08 02:28 - 00075776 _____ (FRIEND) C:\Users\Vlasta\Downloads\PC ShutDown Timer.exe
2014-03-08 02:26 - 2014-03-08 02:26 - 01207296 _____ () C:\Users\Vlasta\Downloads\ShutdownTimerSetup.msi
2014-03-07 09:45 - 2012-11-10 10:51 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\PDFC
2014-03-06 13:22 - 2014-03-06 13:22 - 00000000 ____D () C:\Users\Vlasta\Documents\samsung
2014-03-06 13:22 - 2014-03-06 13:22 - 00000000 ____D () C:\Users\Public\Documents\NativeFus_Log
2014-03-06 09:31 - 2014-03-06 09:30 - 01331024 _____ (Viber Media Inc) C:\Users\Vlasta\Downloads\ViberSetup(2).exe
2014-03-06 08:11 - 2014-03-06 08:11 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\{30E28D3B-0485-4E08-B131-4E3FCECD5367}
2014-03-05 14:21 - 2014-03-02 14:07 - 1991548928 ____R () C:\Users\Vlasta\Downloads\The Words.avi
2014-03-05 14:04 - 2012-03-15 12:06 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-05 13:59 - 2014-03-05 13:59 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\Downloaded Installations
2014-03-05 13:45 - 2014-03-05 13:44 - 75397136 _____ (Samsung Electronics Co., Ltd.) C:\Users\Vlasta\Downloads\KiesSetup.exe
2014-03-04 14:01 - 2014-01-14 12:29 - 00022528 _____ () C:\Users\Vlasta\Desktop\UTESENY.xls
2014-03-04 11:45 - 2014-03-04 11:45 - 00005309 _____ () C:\Users\Vlasta\Desktop\Viber_S40.jad
2014-03-04 11:40 - 2014-03-04 11:40 - 01331024 _____ (Viber Media Inc) C:\Users\Vlasta\Downloads\ViberSetup(1).exe
2014-03-04 11:25 - 2012-03-15 11:56 - 00000000 ____D () C:\ProgramData\Skype
2014-03-04 11:24 - 2014-03-04 11:24 - 01678496 _____ (Skype Technologies S.A.) C:\Users\Vlasta\Downloads\SkypeSetup.exe
2014-03-04 11:09 - 2014-03-04 11:09 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\Skype
2014-03-04 11:07 - 2014-03-04 11:07 - 34828960 _____ (Skype Technologies S.A.) C:\Users\Vlasta\Downloads\SkypeSetupFull.exe
2014-03-04 11:00 - 2014-03-04 10:59 - 01331024 _____ (Viber Media Inc) C:\Users\Vlasta\Downloads\ViberSetup.exe
2014-03-03 16:08 - 2014-03-03 16:08 - 00526274 _____ () C:\Users\Vlasta\Downloads\7006281175.zip
2014-03-03 16:06 - 2014-03-03 16:06 - 02487808 _____ () C:\Users\Vlasta\Downloads\strucny-navod-k-prohlizeni-smluv-on-line.pps
2014-03-03 16:02 - 2014-03-03 16:02 - 00194458 _____ () C:\Users\Vlasta\Downloads\KodisSkenPage.tif
2014-03-03 16:02 - 2014-03-03 16:02 - 00194458 _____ () C:\Users\Vlasta\Downloads\KodisSkenPage (1).tif
2014-03-03 16:02 - 2014-03-03 16:02 - 00088724 _____ () C:\Users\Vlasta\Downloads\A0362 7006281175 120430124433 0000198504 W1946611 X000000817567.tif
2014-03-02 14:06 - 2014-03-02 14:06 - 00019537 _____ () C:\Users\Vlasta\Downloads\[CzT]The_Words_2012_CZ_.torrent
2014-03-01 15:27 - 2014-03-01 15:27 - 00015470 _____ () C:\Users\Vlasta\Downloads\[CzT]Apokalypsa_v_Hollywoodu_This_Is_the_End_2013_CZ_ (1).torrent
2014-03-01 14:26 - 2014-03-01 14:26 - 00015486 _____ () C:\Users\Vlasta\Downloads\[CzT]Apokalypsa_v_Hollywoodu_This_Is_the_End_2013_CZ_.torrent
2014-03-01 14:25 - 2014-03-01 14:25 - 00015757 _____ () C:\Users\Vlasta\Downloads\[CzT]Gravitace_Gravity_2013_CZ_.torrent
2014-03-01 07:05 - 2014-03-13 08:15 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-01 06:17 - 2014-03-13 08:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-01 06:16 - 2014-03-13 08:15 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-01 05:58 - 2014-03-13 08:15 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-01 05:52 - 2014-03-13 08:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-01 05:51 - 2014-03-13 08:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-01 05:42 - 2014-03-13 08:15 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-01 05:40 - 2014-03-13 08:15 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-01 05:37 - 2014-03-13 08:15 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-01 05:33 - 2014-03-13 08:15 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-01 05:33 - 2014-03-13 08:15 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-01 05:32 - 2014-03-13 08:15 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-01 05:30 - 2014-03-13 08:15 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-01 05:23 - 2014-03-13 08:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-01 05:17 - 2014-03-13 08:15 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-01 05:11 - 2014-03-13 08:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-01 05:02 - 2014-03-13 08:15 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-01 04:54 - 2014-03-13 08:15 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-01 04:52 - 2014-03-13 08:15 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-01 04:51 - 2014-03-13 08:15 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-01 04:47 - 2014-03-13 08:15 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-01 04:43 - 2014-03-13 08:15 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-01 04:43 - 2014-03-13 08:15 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-01 04:42 - 2014-03-13 08:15 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-01 04:40 - 2014-03-13 08:15 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-01 04:38 - 2014-03-13 08:15 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-01 04:37 - 2014-03-13 08:15 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-01 04:35 - 2014-03-13 08:15 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-01 04:18 - 2014-03-13 08:15 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-01 04:16 - 2014-03-13 08:15 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-01 04:14 - 2014-03-13 08:15 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-01 04:10 - 2014-03-13 08:15 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-01 04:03 - 2014-03-13 08:15 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-01 04:00 - 2014-03-13 08:15 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-01 03:57 - 2014-03-13 08:15 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-01 03:38 - 2014-03-13 08:15 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-01 03:32 - 2014-03-13 08:15 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-01 03:27 - 2014-03-13 08:15 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-01 03:25 - 2014-03-13 08:15 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-01 03:25 - 2014-03-13 08:15 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-28 16:56 - 2012-11-13 12:37 - 01723548 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-28 12:02 - 2014-02-04 15:27 - 00020992 _____ () C:\Users\Vlasta\Desktop\KITLEROVA.xls
2014-02-27 12:55 - 2014-02-27 12:41 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\Battle.net
2014-02-27 12:41 - 2014-02-27 12:41 - 00000000 ____D () C:\Users\Vlasta\AppData\Roaming\Battle.net
2014-02-27 12:41 - 2014-02-27 12:41 - 00000000 ____D () C:\Users\Vlasta\AppData\Local\Blizzard Entertainment
2014-02-27 12:41 - 2014-02-27 12:40 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-02-27 12:40 - 2014-02-27 12:40 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2014-02-27 12:38 - 2014-02-27 12:38 - 00000000 ____D () C:\ProgramData\Battle.net
2014-02-27 12:32 - 2014-02-27 12:32 - 05971136 _____ (Blizzard Entertainment) C:\Users\Vlasta\Downloads\Hearthstone-Beta-Setup-enUS.exe
2014-02-27 12:30 - 2014-02-27 12:27 - 178382340 _____ () C:\Users\Vlasta\Downloads\Ishq_-_The_Invisible_Landscape_2014-psy-music.ru .rar

Some content of TEMP:
====================
C:\Users\Vlasta\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1557535924-674888761-1873309798-1000Core.job => C:\Users\Vlasta\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1557535924-674888761-1873309798-1000UA.job => C:\Users\Vlasta\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Vlasta\Desktop" je 16141 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds
C:\Windows\system32\hkcmd.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Quick Launch
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPConnectionManager
C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPOSD
C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray
C:\Windows\system32\igfxtray.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence
C:\Windows\system32\igfxpers.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SetDefault
C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Vlasta^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^V��ezy obrazovky a spu�t�n� aplikace OneNote 2007.lnk
C:\PROGRA~2\MICROS~1\Office12\ONENOTEM.EXE /tsr [x]


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000001


==================== End Of Log ==============================

Zdravim

krisa píše:Velikost slozky "C:\Users\Vlasta\Desktop" je 16141 MB.

Velikost plochy by nemela byt vetsi nez 200 - 300 MB. Cim vetsi je a vic souboru obsahuje, tim je pc pomalejsi, hlavne start.


Vidim tam MBAM. Nasel neco pri uplne kontrole?


Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

Omlouvám se za neaktivitu, mbam nic nenašel, plochu vyčistím a AdwCleaner stáhnu hned jak budu u ntb a napíšu jak dopadl test

OK

# AdwCleaner v3.023 - Report created 14/04/2014 at 20:08:34
# Updated 01/04/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Vlasta - VLASTA-HP
# Running from : C:\Users\Vlasta\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\GreenTree Applications
Folder Deleted : C:\Windows\SysWOW64\AI_RecycleBin

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\Software\Conduit

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16521


-\\ Mozilla Firefox v28.0 (cs)

[ File : C:\Users\Vlasta\AppData\Roaming\Mozilla\Firefox\Profiles\2gcootby.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\Vlasta\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R1].txt - [2604 octets] - [14/04/2014 20:06:56]
AdwCleaner[S1].txt - [2462 octets] - [14/04/2014 20:08:34]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2522 octets] ##########

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Vlasta [Práva správce]
Mód : Kontrola -- Datum : 04/16/2014 18:10:15
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9500325AS +++++
--- User ---
[MBR] 81b3134499edf3fd51a7e40527257dba
[BSP] d1b510c72336fe01161474f46efe5a75 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 199 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 454845 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 931932160 | Size: 21791 MB
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 976560128 | Size: 103 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_04162014_181015.txt >>

Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.




3.5. pro neaktivitu http://forum.viry.cz/viewtopic.php?f=12&t=123975