VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu

https://forum.viry.cz:443/viewtopic.php?t=143642

Stránka 1 z 2

Prosím o kontrolu

Napsal: 22 bře 2015 21:23
od vaclavka83
Dobrý večer prosím o preventivku.... Dostal se mi do ruky maminky notebook na vyčištění... odinstaloval jsem mraky her, projel ccleaner, pročistil registry, defragmentoval.... Ale na záložním discu se možná nějaká havět bude schovávat??
Logfile of random's system information tool 1.10 (written by random/random)
Run by Ivana at 2015-03-22 21:09:29
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 415 GB (90%) free of 459 GB
Total RAM: 2972 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:09:46, on 22.3.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\igfxpers.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files\Nuance\PDF Professional 6\PdfPro6Hook.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\CyberLink\Shared Files\brs.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
C:\windows\system32\wbem\unsecapp.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Ivana\Desktop\RSIT.exe
C:\Program Files\trend micro\Ivana.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13014
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - (no file)
O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: ZeonIEEventHelper Class - {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll
O3 - Toolbar: Nuance PDF - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [PDFHook] C:\Program Files\Nuance\PDF Professional 6\pdfpro6hook.exe
O4 - HKLM\..\Run: [PDF6 Registry Controller] C:\Program Files\Nuance\PDF Professional 6\RegistryController.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
O8 - Extra context menu item: Append the content of the link to existing PDF file - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
O8 - Extra context menu item: Append the content of the selected links to existing PDF file - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppendSelLinks.HTML
O8 - Extra context menu item: Append to existing PDF file - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
O8 - Extra context menu item: Create PDF file - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
O8 - Extra context menu item: Create PDF file from the content of the link - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
O8 - Extra context menu item: Create PDF files from the selected links - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Open with Nuance PDF Converter 6.0 - res://C:\Program Files\Nuance\PDF Professional 6\cnvres_eng.dll /100
O8 - Extra context menu item: Open with PDF Professional 6 - res://C:\Program Files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll/PlusIEContextMenu.htm
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: HP Health Check Service - Unknown owner - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe (file missing)
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: hpqwmiex - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: PDFProFiltSrv - Nuance Communications, Inc. - C:\Program Files\Nuance\PDF Professional 6\PDFProFiltSrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\STacSV.exe

--
End of file - 10185 bytes

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Ivana\AppData\Roaming\Mozilla\Firefox\Profiles\vqqnwr0a.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "seznam.cz"
prefs.js - "extensions.enabledItems" - "nuance@pdf6:1.0, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.18"
prefs.js - "keyword.URL" - "http://www.bing.com/search?FORM=UP97DF&PC=UP97&q="

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF32_17_0_0_134.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\windows\system32\Wat\npWatWeb.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\ZEON/PDF,version=2.0]
"Description"=
"Path"=C:\Program Files\Nuance\PDF Reader\bin\nppdf.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{551A852F-39A6-44A7-9C13-AFBEC9185A9D}]
PlusIEEventHelper Class - C:\Program Files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll [2009-02-06 249856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-19 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-03-18 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9}]
ZeonIEEventHelper Class - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll [2009-03-26 475136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-19 172968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{E3286BF1-E654-42FF-B4A6-5E111731DF6B} - Nuance PDF - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll [2009-03-26 475136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"RemoteControl10"=C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe [2010-02-02 87336]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-03-18 5511352]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-01-29 495708]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"QLBController"=C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-01-28 256056]
"Persistence"=C:\windows\system32\igfxpers.exe [2010-03-12 166936]
"PDFHook"=C:\Program Files\Nuance\PDF Professional 6\pdfpro6hook.exe [2009-11-13 1277952]
"PDF6 Registry Controller"=C:\Program Files\Nuance\PDF Professional 6\RegistryController.exe [2009-11-03 110880]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2010-01-12 563736]
"Nuance PDF Reader-reminder"=C:\Program Files\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2010-03-12 141848]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-01-08 186904]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2010-03-12 175640]
"BDRegion"=C:\Program Files\Cyberlink\Shared files\brs.exe [2010-03-13 75048]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-03-07 335232]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"ISUSPM"=C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2009-05-05 222496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-12-29 795936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Ivana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
C:\Users\Ivana\AppData\Roaming\Dropbox\bin\Dropbox.exe [2014-03-19 32667896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2010-01-25 225792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=5

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"VIDC.WMV3"=wmv9vcm.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-03-22 21:09:29 ----D---- C:\rsit
2015-03-22 20:40:50 ----A---- C:\windows\system32\spoolsv.exe
2015-03-22 20:40:38 ----A---- C:\windows\system32\mstscax.dll
2015-03-22 20:40:38 ----A---- C:\windows\explorer.exe
2015-03-22 20:30:21 ----A---- C:\windows\system32\TSWbPrxy.exe
2015-03-22 20:30:21 ----A---- C:\windows\system32\rdpudd.dll
2015-03-22 20:30:21 ----A---- C:\windows\system32\RdpGroupPolicyExtension.dll
2015-03-22 20:30:21 ----A---- C:\windows\system32\rdpcorets.dll
2015-03-22 19:41:41 ----A---- C:\windows\system32\drivers\rdpvideominiport.sys
2015-03-22 19:41:39 ----A---- C:\windows\system32\rdpendp_winip.dll
2015-03-22 19:39:07 ----A---- C:\windows\system32\TsUsbGDCoInstaller.dll
2015-03-22 19:39:05 ----A---- C:\windows\system32\wksprtPS.dll
2015-03-22 19:39:05 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-03-22 19:39:05 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-03-22 19:39:05 ----A---- C:\windows\system32\tsgqec.dll
2015-03-22 19:39:05 ----A---- C:\windows\system32\MsRdpWebAccess.dll
2015-03-22 19:39:05 ----A---- C:\windows\system32\drivers\TsUsbFlt.sys
2015-03-22 19:39:04 ----A---- C:\windows\system32\wksprt.exe
2015-03-22 19:39:04 ----A---- C:\windows\system32\rdvidcrl.dll
2015-03-22 19:39:04 ----A---- C:\windows\system32\mstsc.exe
2015-03-22 19:37:18 ----A---- C:\windows\system32\msmpeg2vdec.dll
2015-03-22 19:36:03 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2015-03-22 19:36:03 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2015-03-22 19:36:02 ----A---- C:\windows\system32\WUDFx.dll
2015-03-22 19:36:02 ----A---- C:\windows\system32\WUDFSvc.dll
2015-03-22 19:36:02 ----A---- C:\windows\system32\WUDFPlatform.dll
2015-03-22 19:36:02 ----A---- C:\windows\system32\WUDFHost.exe
2015-03-22 19:36:02 ----A---- C:\windows\system32\WUDFCoinstaller.dll
2015-03-22 19:32:22 ----D---- C:\Program Files\Microsoft.NET
2015-03-22 19:32:21 ----D---- C:\windows\Migration
2015-03-22 19:29:52 ----A---- C:\windows\system32\msi.dll
2015-03-22 19:29:49 ----A---- C:\windows\system32\drivers\fvevol.sys
2015-03-22 19:29:42 ----A---- C:\windows\system32\netevent.dll
2015-03-22 19:29:42 ----A---- C:\windows\system32\netcorehc.dll
2015-03-22 19:29:42 ----A---- C:\windows\system32\iphlpsvc.dll
2015-03-22 19:29:42 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2015-03-22 19:29:36 ----A---- C:\windows\system32\esent.dll
2015-03-22 19:29:35 ----A---- C:\windows\system32\fsutil.exe
2015-03-22 19:29:35 ----A---- C:\windows\system32\drivers\USBSTOR.SYS
2015-03-22 19:29:35 ----A---- C:\windows\system32\drivers\nvstor.sys
2015-03-22 19:29:35 ----A---- C:\windows\system32\drivers\nvraid.sys
2015-03-22 19:29:35 ----A---- C:\windows\system32\drivers\iaStorV.sys
2015-03-22 19:29:35 ----A---- C:\windows\system32\drivers\amdxata.sys
2015-03-22 19:29:35 ----A---- C:\windows\system32\drivers\amdsata.sys
2015-03-22 19:29:19 ----A---- C:\windows\system32\drivers\bthport.sys
2015-03-22 19:29:15 ----A---- C:\windows\system32\Wpc.dll
2015-03-22 19:29:15 ----A---- C:\windows\system32\gameux.dll
2015-03-22 19:29:05 ----A---- C:\windows\system32\ntshrui.dll
2015-03-22 19:28:48 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2015-03-22 19:28:48 ----A---- C:\windows\system32\credui.dll
2015-03-22 19:28:45 ----A---- C:\windows\system32\cryptdlg.dll
2015-03-22 19:28:42 ----A---- C:\windows\system32\msieftp.dll
2015-03-22 19:28:41 ----A---- C:\windows\system32\tzres.dll
2015-03-22 19:28:39 ----A---- C:\windows\system32\tquery.dll
2015-03-22 19:28:39 ----A---- C:\windows\system32\mssrch.dll
2015-03-22 19:28:38 ----A---- C:\windows\system32\wdi.dll
2015-03-22 19:28:38 ----A---- C:\windows\system32\SearchProtocolHost.exe
2015-03-22 19:28:38 ----A---- C:\windows\system32\SearchIndexer.exe
2015-03-22 19:28:38 ----A---- C:\windows\system32\SearchFilterHost.exe
2015-03-22 19:28:38 ----A---- C:\windows\system32\powertracker.dll
2015-03-22 19:28:38 ----A---- C:\windows\system32\perftrack.dll
2015-03-22 19:28:38 ----A---- C:\windows\system32\mssvp.dll
2015-03-22 19:28:38 ----A---- C:\windows\system32\mssphtb.dll
2015-03-22 19:28:38 ----A---- C:\windows\system32\mssph.dll
2015-03-22 19:28:38 ----A---- C:\windows\system32\msscntrs.dll
2015-03-22 19:28:37 ----A---- C:\windows\system32\OxpsConverter.exe
2015-03-22 19:28:35 ----A---- C:\windows\system32\TSWorkspace.dll
2015-03-22 19:28:31 ----A---- C:\windows\system32\wwansvc.dll
2015-03-22 19:28:31 ----A---- C:\windows\system32\wwanprotdim.dll
2015-03-22 19:28:31 ----A---- C:\windows\system32\d3d10warp.dll
2015-03-22 19:28:30 ----A---- C:\windows\system32\drivers\RNDISMP.sys
2015-03-22 19:28:30 ----A---- C:\windows\system32\drivers\ndis.sys
2015-03-22 19:28:23 ----A---- C:\windows\system32\KBDYAK.DLL
2015-03-22 19:28:23 ----A---- C:\windows\system32\KBDTAT.DLL
2015-03-22 19:28:23 ----A---- C:\windows\system32\KBDRU1.DLL
2015-03-22 19:28:23 ----A---- C:\windows\system32\KBDRU.DLL
2015-03-22 19:28:23 ----A---- C:\windows\system32\KBDBASH.DLL
2015-03-22 19:28:22 ----A---- C:\windows\system32\scavengeui.dll
2015-03-22 19:28:21 ----A---- C:\windows\system32\WebClnt.dll
2015-03-22 19:28:21 ----A---- C:\windows\system32\drivers\ntfs.sys
2015-03-22 19:28:21 ----A---- C:\windows\system32\davclnt.dll
2015-03-22 19:28:20 ----A---- C:\windows\system32\drivers\tdx.sys
2015-03-22 19:28:13 ----A---- C:\windows\system32\iologmsg.dll
2015-03-22 19:28:13 ----A---- C:\windows\system32\drivers\storport.sys
2015-03-22 19:28:13 ----A---- C:\windows\system32\drivers\msiscsi.sys
2015-03-22 19:28:13 ----A---- C:\windows\system32\drivers\Diskdump.sys
2015-03-22 19:28:12 ----A---- C:\windows\system32\oleaut32.dll
2015-03-22 19:28:11 ----A---- C:\windows\system32\charmap.exe
2015-03-22 19:28:10 ----A---- C:\windows\system32\xmllite.dll
2015-03-22 19:28:10 ----A---- C:\windows\system32\prevhost.exe
2015-03-22 19:28:09 ----A---- C:\windows\system32\drivers\ataport.sys
2015-03-22 19:27:16 ----A---- C:\windows\system32\WsmWmiPl.dll
2015-03-22 19:27:16 ----A---- C:\windows\system32\WsmSvc.dll
2015-03-22 19:27:16 ----A---- C:\windows\system32\WsmAuto.dll
2015-03-22 19:27:16 ----A---- C:\windows\system32\WSManMigrationPlugin.dll
2015-03-22 19:27:16 ----A---- C:\windows\system32\WSManHTTPConfig.exe
2015-03-22 19:27:15 ----A---- C:\windows\system32\RMActivate_ssp_isv.exe
2015-03-22 19:27:15 ----A---- C:\windows\system32\RMActivate_isv.exe
2015-03-22 19:27:15 ----A---- C:\windows\system32\RMActivate.exe
2015-03-22 19:27:14 ----A---- C:\windows\system32\secproc_ssp_isv.dll
2015-03-22 19:27:14 ----A---- C:\windows\system32\secproc_ssp.dll
2015-03-22 19:27:14 ----A---- C:\windows\system32\secproc_isv.dll
2015-03-22 19:27:14 ----A---- C:\windows\system32\secproc.dll
2015-03-22 19:27:14 ----A---- C:\windows\system32\RMActivate_ssp.exe
2015-03-22 19:27:14 ----A---- C:\windows\system32\msdrm.dll
2015-03-22 19:26:08 ----A---- C:\windows\system32\dhcpcsvc6.dll
2015-03-22 19:26:08 ----A---- C:\windows\system32\dhcpcore6.dll
2015-03-22 18:59:43 ----D---- C:\Program Files\Mozilla Firefox
2015-03-22 18:59:31 ----A---- C:\windows\system32\urlmon.dll
2015-03-22 18:59:31 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-03-22 18:59:31 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-03-22 18:59:31 ----A---- C:\windows\system32\iernonce.dll
2015-03-22 18:59:31 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-03-22 18:59:31 ----A---- C:\windows\system32\ieetwcollector.exe
2015-03-22 18:59:31 ----A---- C:\windows\system32\iedkcs32.dll
2015-03-22 18:59:31 ----A---- C:\windows\system32\ie4uinit.exe
2015-03-22 18:59:30 ----A---- C:\windows\system32\jsproxy.dll
2015-03-22 18:59:30 ----A---- C:\windows\system32\jscript9diag.dll
2015-03-22 18:59:30 ----A---- C:\windows\system32\ieUnatt.exe
2015-03-22 18:59:30 ----A---- C:\windows\system32\ieapfltr.dll
2015-03-22 18:59:30 ----A---- C:\windows\system32\dxtmsft.dll
2015-03-22 18:59:29 ----A---- C:\windows\system32\msfeeds.dll
2015-03-22 18:59:28 ----A---- C:\windows\system32\msrating.dll
2015-03-22 18:59:28 ----A---- C:\windows\system32\iesetup.dll
2015-03-22 18:59:27 ----A---- C:\windows\system32\wininet.dll
2015-03-22 18:59:27 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-03-22 18:59:26 ----A---- C:\windows\system32\ieui.dll
2015-03-22 18:59:26 ----A---- C:\windows\system32\dxtrans.dll
2015-03-22 18:59:25 ----A---- C:\windows\system32\ieframe.dll
2015-03-22 18:59:24 ----A---- C:\windows\system32\mshtmled.dll
2015-03-22 18:59:23 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-03-22 18:59:23 ----A---- C:\windows\system32\MshtmlDac.dll
2015-03-22 18:59:23 ----A---- C:\windows\system32\iertutil.dll
2015-03-22 18:59:21 ----A---- C:\windows\system32\mshtml.dll
2015-03-22 18:59:20 ----A---- C:\windows\system32\vbscript.dll
2015-03-22 18:59:19 ----A---- C:\windows\system32\jscript9.dll
2015-03-22 18:57:59 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-03-22 18:57:00 ----A---- C:\windows\system32\d2d1.dll
2015-03-22 18:55:31 ----A---- C:\windows\system32\WMPhoto.dll
2015-03-20 22:59:29 ----D---- C:\Písničky
2015-03-20 21:47:43 ----D---- C:\windows\system32\MRT
2015-03-20 21:28:34 ----A---- C:\windows\system32\infocardapi.dll
2015-03-20 21:28:33 ----A---- C:\windows\system32\icardres.dll
2015-03-20 21:28:30 ----A---- C:\windows\system32\icardagt.exe
2015-03-20 21:28:29 ----A---- C:\windows\system32\TsWpfWrp.exe
2015-03-20 21:11:51 ----A---- C:\windows\system32\elshyph.dll
2015-03-20 21:11:50 ----A---- C:\windows\system32\webcheck.dll
2015-03-20 21:11:50 ----A---- C:\windows\system32\url.dll
2015-03-20 21:11:50 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2015-03-20 21:11:50 ----A---- C:\windows\system32\msls31.dll
2015-03-20 21:11:50 ----A---- C:\windows\system32\licmgr10.dll
2015-03-20 21:11:50 ----A---- C:\windows\system32\jsIntl.dll
2015-03-20 21:11:50 ----A---- C:\windows\system32\inseng.dll
2015-03-20 21:11:50 ----A---- C:\windows\system32\ieapfltr.dat
2015-03-20 21:11:50 ----A---- C:\windows\system32\icardie.dll
2015-03-20 21:11:49 ----A---- C:\windows\system32\wextract.exe
2015-03-20 21:11:49 ----A---- C:\windows\system32\SetIEInstalledDate.exe
2015-03-20 21:11:49 ----A---- C:\windows\system32\pngfilt.dll
2015-03-20 21:11:49 ----A---- C:\windows\system32\occache.dll
2015-03-20 21:11:49 ----A---- C:\windows\system32\mshta.exe
2015-03-20 21:11:49 ----A---- C:\windows\system32\msfeedssync.exe
2015-03-20 21:11:49 ----A---- C:\windows\system32\msfeedsbs.dll
2015-03-20 21:11:49 ----A---- C:\windows\system32\jscript.dll
2015-03-20 21:11:49 ----A---- C:\windows\system32\imgutil.dll
2015-03-20 21:11:49 ----A---- C:\windows\system32\iexpress.exe
2015-03-20 21:11:49 ----A---- C:\windows\system32\iepeers.dll
2015-03-20 21:11:49 ----A---- C:\windows\system32\IEAdvpack.dll
2015-03-20 21:11:48 ----A---- C:\windows\system32\mshtmler.dll
2015-03-20 21:11:48 ----A---- C:\windows\system32\iesysprep.dll
2015-03-20 21:11:24 ----A---- C:\windows\system32\tdh.dll
2015-03-20 21:11:24 ----A---- C:\windows\system32\ntdll.dll
2015-03-20 21:11:24 ----A---- C:\windows\system32\advapi32.dll
2015-03-20 21:11:11 ----A---- C:\windows\system32\mswsock.dll
2015-03-20 21:10:37 ----AH---- C:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-03-20 21:10:37 ----AH---- C:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-03-20 21:10:37 ----AH---- C:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-03-20 21:10:37 ----AH---- C:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-03-20 21:10:37 ----AH---- C:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-03-20 21:10:37 ----AH---- C:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-03-20 21:10:37 ----AH---- C:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-03-20 21:10:37 ----AH---- C:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-03-20 21:10:37 ----AH---- C:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-03-20 21:10:37 ----A---- C:\windows\system32\XpsPrint.dll
2015-03-20 21:10:37 ----A---- C:\windows\system32\XpsGdiConverter.dll
2015-03-20 21:10:37 ----A---- C:\windows\system32\WindowsCodecsExt.dll
2015-03-20 21:10:37 ----A---- C:\windows\system32\UIAnimation.dll
2015-03-20 21:10:37 ----A---- C:\windows\system32\FntCache.dll
2015-03-20 21:10:37 ----A---- C:\windows\system32\dxgi.dll
2015-03-20 21:10:37 ----A---- C:\windows\system32\DWrite.dll
2015-03-20 21:10:37 ----A---- C:\windows\system32\d3d10level9.dll
2015-03-20 21:10:37 ----A---- C:\windows\system32\d3d10core.dll
2015-03-20 21:10:37 ----A---- C:\windows\system32\d3d10_1core.dll
2015-03-20 21:10:37 ----A---- C:\windows\system32\d3d10_1.dll
2015-03-20 21:10:37 ----A---- C:\windows\system32\d3d10.dll
2015-03-20 21:09:42 ----A---- C:\windows\system32\d3d11.dll
2015-03-20 21:06:28 ----A---- C:\windows\system32\msxml3r.dll
2015-03-20 21:06:28 ----A---- C:\windows\system32\msxml3.dll
2015-03-20 21:06:24 ----A---- C:\windows\system32\objsel.dll
2015-03-20 21:06:24 ----A---- C:\windows\system32\KernelBase.dll
2015-03-20 21:06:23 ----A---- C:\windows\system32\wincredprovider.dll
2015-03-20 21:06:23 ----A---- C:\windows\system32\dpapiprovider.dll
2015-03-20 21:06:23 ----A---- C:\windows\system32\dimsroam.dll
2015-03-20 21:06:23 ----A---- C:\windows\system32\cngprovider.dll
2015-03-20 21:06:23 ----A---- C:\windows\system32\capiprovider.dll
2015-03-20 21:06:23 ----A---- C:\windows\system32\adprovider.dll
2015-03-20 21:06:15 ----A---- C:\windows\system32\pku2u.dll
2015-03-20 21:06:01 ----A---- C:\windows\system32\msxml6r.dll
2015-03-20 21:06:01 ----A---- C:\windows\system32\msxml6.dll
2015-03-20 21:05:44 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-03-20 21:05:42 ----A---- C:\windows\system32\EncDump.dll
2015-03-20 21:05:42 ----A---- C:\windows\system32\audiosrv.dll
2015-03-20 21:05:42 ----A---- C:\windows\system32\AudioSes.dll
2015-03-20 21:05:42 ----A---- C:\windows\system32\AUDIOKSE.dll
2015-03-20 21:05:42 ----A---- C:\windows\system32\AudioEng.dll
2015-03-20 21:05:40 ----A---- C:\windows\system32\gdi32.dll
2015-03-20 21:05:39 ----A---- C:\windows\system32\IMJP10K.DLL
2015-03-20 21:05:38 ----A---- C:\windows\system32\rastls.dll
2015-03-20 21:05:31 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2015-03-20 21:05:30 ----A---- C:\windows\system32\imagehlp.dll
2015-03-20 21:05:30 ----A---- C:\windows\system32\drivers\dxgmms1.sys
2015-03-20 21:05:30 ----A---- C:\windows\system32\cdd.dll
2015-03-20 21:05:28 ----A---- C:\windows\system32\wscript.exe
2015-03-20 21:05:28 ----A---- C:\windows\system32\scrrun.dll
2015-03-20 21:05:28 ----A---- C:\windows\system32\cscript.exe
2015-03-20 21:05:27 ----A---- C:\windows\system32\comctl32.dll
2015-03-20 21:05:26 ----A---- C:\windows\system32\drivers\usbscan.sys
2015-03-20 21:05:26 ----A---- C:\windows\system32\drivers\hidparse.sys
2015-03-20 21:05:26 ----A---- C:\windows\system32\drivers\hidclass.sys
2015-03-20 21:05:25 ----A---- C:\windows\system32\rpcrt4.dll
2015-03-20 21:05:10 ----A---- C:\windows\system32\drivers\portcls.sys
2015-03-20 21:05:10 ----A---- C:\windows\system32\drivers\drmk.sys
2015-03-20 21:05:05 ----A---- C:\windows\system32\drivers\usbport.sys
2015-03-20 21:05:05 ----A---- C:\windows\system32\drivers\usbehci.sys
2015-03-20 21:05:05 ----A---- C:\windows\system32\drivers\usbccgp.sys
2015-03-20 21:05:04 ----A---- C:\windows\system32\Wdfres.dll
2015-03-20 21:05:04 ----A---- C:\windows\system32\drivers\WdfLdr.sys
2015-03-20 21:05:04 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2015-03-20 21:05:04 ----A---- C:\windows\system32\drivers\usbuhci.sys
2015-03-20 21:05:04 ----A---- C:\windows\system32\drivers\usbohci.sys
2015-03-20 21:05:04 ----A---- C:\windows\system32\drivers\usbhub.sys
2015-03-20 21:05:04 ----A---- C:\windows\system32\drivers\usbd.sys
2015-03-20 21:05:01 ----A---- C:\windows\system32\termsrv.dll
2015-03-20 21:04:54 ----A---- C:\windows\system32\winsta.dll
2015-03-20 21:04:54 ----A---- C:\windows\system32\winlogon.exe
2015-03-20 21:04:53 ----A---- C:\windows\system32\rdpcorekmts.dll
2015-03-20 21:04:53 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2015-03-20 21:04:53 ----A---- C:\windows\system32\drivers\rdpwd.sys
2015-03-20 21:04:43 ----A---- C:\windows\system32\shell32.dll
2015-03-20 21:04:26 ----A---- C:\windows\system32\ntkrnlpa.exe
2015-03-20 21:04:25 ----A---- C:\windows\system32\srcore.dll
2015-03-20 21:04:25 ----A---- C:\windows\system32\ntoskrnl.exe
2015-03-20 21:04:24 ----A---- C:\windows\system32\srclient.dll
2015-03-20 21:04:24 ----A---- C:\windows\system32\smss.exe
2015-03-20 21:04:24 ----A---- C:\windows\system32\rstrui.exe
2015-03-20 21:04:24 ----A---- C:\windows\system32\csrsrv.dll
2015-03-20 21:04:24 ----A---- C:\windows\system32\apisetschema.dll
2015-03-20 21:04:16 ----A---- C:\windows\system32\msctf.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\wdigest.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\TSpkg.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\sspisrv.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\sspicli.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\schannel.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\secur32.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\ncrypt.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\msv1_0.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\msobjs.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\msaudite.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\lsass.exe
2015-03-20 21:04:14 ----A---- C:\windows\system32\lsasrv.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\kerberos.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-03-20 21:04:14 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-03-20 21:04:14 ----A---- C:\windows\system32\drivers\cng.sys
2015-03-20 21:04:14 ----A---- C:\windows\system32\credssp.dll
2015-03-20 21:04:14 ----A---- C:\windows\system32\auditpol.exe
2015-03-20 21:04:14 ----A---- C:\windows\system32\adtschema.dll
2015-03-20 21:04:08 ----A---- C:\windows\system32\ubpm.dll
2015-03-20 21:04:08 ----A---- C:\windows\system32\lpk.dll
2015-03-20 21:04:08 ----A---- C:\windows\system32\fontsub.dll
2015-03-20 21:04:08 ----A---- C:\windows\system32\dciman32.dll
2015-03-20 21:04:08 ----A---- C:\windows\system32\atmlib.dll
2015-03-20 21:04:08 ----A---- C:\windows\system32\atmfd.dll
2015-03-20 21:04:07 ----A---- C:\windows\system32\nshwfp.dll
2015-03-20 21:04:07 ----A---- C:\windows\system32\IKEEXT.DLL
2015-03-20 21:04:07 ----A---- C:\windows\system32\FWPUCLNT.DLL
2015-03-20 21:04:06 ----A---- C:\windows\system32\crypt32.dll
2015-03-20 21:04:05 ----A---- C:\windows\system32\cryptsvc.dll
2015-03-20 21:04:05 ----A---- C:\windows\system32\cryptnet.dll
2015-03-20 21:03:58 ----A---- C:\windows\system32\msihnd.dll
2015-03-20 21:03:58 ----A---- C:\windows\system32\consent.exe
2015-03-20 21:03:58 ----A---- C:\windows\system32\authui.dll
2015-03-20 21:03:52 ----A---- C:\windows\system32\shdocvw.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-03-20 21:03:48 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-03-20 21:03:48 ----A---- C:\windows\system32\winsrv.dll
2015-03-20 21:03:48 ----A---- C:\windows\system32\kernel32.dll
2015-03-20 21:03:48 ----A---- C:\windows\system32\conhost.exe
2015-03-20 21:03:47 ----A---- C:\windows\system32\win32k.sys
2015-03-20 21:03:46 ----A---- C:\windows\system32\WMVDECOD.DLL
2015-03-20 21:03:46 ----A---- C:\windows\system32\mscories.dll
2015-03-20 21:03:46 ----A---- C:\windows\system32\mscorier.dll
2015-03-20 21:03:46 ----A---- C:\windows\system32\dfshim.dll
2015-03-20 21:03:45 ----A---- C:\windows\system32\nlasvc.dll
2015-03-20 21:03:45 ----A---- C:\windows\system32\nlaapi.dll
2015-03-20 21:03:45 ----A---- C:\windows\system32\ncsi.dll
2015-03-20 21:03:44 ----A---- C:\windows\system32\usp10.dll
2015-03-20 21:03:43 ----A---- C:\windows\system32\osk.exe
2015-03-20 21:03:42 ----A---- C:\windows\system32\wer.dll
2015-03-20 21:03:42 ----A---- C:\windows\system32\qedit.dll
2015-03-20 21:03:40 ----A---- C:\windows\system32\drivers\tcpip.sys
2015-03-20 21:03:40 ----A---- C:\windows\system32\drivers\netio.sys
2015-03-20 21:03:40 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2015-03-20 21:03:39 ----A---- C:\windows\system32\profsvc.dll
2015-03-20 21:03:39 ----A---- C:\windows\system32\drivers\afd.sys
2015-03-20 21:03:38 ----A---- C:\windows\system32\packager.dll
2015-03-20 21:03:37 ----A---- C:\windows\system32\drivers\usbvideo.sys
2015-03-20 21:03:37 ----A---- C:\windows\system32\drivers\usbcir.sys
2015-03-20 21:03:37 ----A---- C:\windows\system32\drivers\mrxdav.sys
2015-03-20 20:59:23 ----A---- C:\windows\system32\scesrv.dll
2015-03-20 16:45:15 ----D---- C:\ProgramData\Mozilla
2015-03-20 16:45:15 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-03-19 16:07:00 ----D---- C:\Program Files\Common Files\Java
2015-03-18 21:31:49 ----A---- C:\windows\system32\wups2.dll
2015-03-18 21:31:49 ----A---- C:\windows\system32\wucltux.dll
2015-03-18 21:31:49 ----A---- C:\windows\system32\wuaueng.dll
2015-03-18 21:31:49 ----A---- C:\windows\system32\wuauclt.exe
2015-03-18 21:31:39 ----A---- C:\windows\system32\wups.dll
2015-03-18 21:31:39 ----A---- C:\windows\system32\wudriver.dll
2015-03-18 21:31:39 ----A---- C:\windows\system32\wuapi.dll
2015-03-18 21:31:31 ----A---- C:\windows\system32\wuwebv.dll
2015-03-18 21:31:31 ----A---- C:\windows\system32\wuapp.exe
2015-03-18 21:26:24 ----D---- C:\ProgramData\Oracle
2015-03-18 21:26:03 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2015-03-18 21:26:03 ----A---- C:\windows\system32\javaw.exe
2015-03-18 21:26:03 ----A---- C:\windows\system32\java.exe
2015-03-18 21:25:51 ----D---- C:\Program Files\Java
2015-03-18 21:19:00 ----D---- C:\windows\system32\vbox
2015-03-18 21:14:34 ----A---- C:\windows\system32\aswBoot.exe
2015-03-18 21:14:26 ----A---- C:\windows\avastSS.scr
2015-03-15 10:02:02 ----D---- C:\Program Files\Common Files\Adobe
2015-03-15 10:02:02 ----D---- C:\Program Files\Adobe
2015-03-13 18:19:03 ----SHD---- C:\Config.Msi
2015-03-07 08:20:11 ----D---- C:\Users\Ivana\AppData\Roaming\spotmau

======List of files/folders modified in the last 1 month======

2015-03-22 21:09:36 ----D---- C:\windows\temp
2015-03-22 21:09:31 ----D---- C:\Program Files\trend micro
2015-03-22 21:09:02 ----D---- C:\windows\winsxs
2015-03-22 21:08:33 ----D---- C:\windows\system32\catroot2
2015-03-22 21:08:33 ----D---- C:\windows\system32\catroot
2015-03-22 20:58:33 ----D---- C:\Windows
2015-03-22 20:57:27 ----D---- C:\windows\debug
2015-03-22 20:55:29 ----D---- C:\windows\System32
2015-03-22 20:55:29 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-03-22 20:55:28 ----D---- C:\windows\inf
2015-03-22 20:50:19 ----D---- C:\windows\system32\config
2015-03-22 20:49:02 ----D---- C:\windows\system32\en-US
2015-03-22 20:49:02 ----D---- C:\windows\system32\drivers
2015-03-22 20:49:02 ----D---- C:\windows\system32\Dism
2015-03-22 20:49:02 ----D---- C:\windows\system32\cs-CZ
2015-03-22 20:49:02 ----D---- C:\windows\system32\CodeIntegrity
2015-03-22 20:49:02 ----D---- C:\windows\system32\Boot
2015-03-22 20:49:02 ----D---- C:\Program Files\Windows Media Player
2015-03-22 20:48:22 ----SHD---- C:\System Volume Information
2015-03-22 20:42:21 ----D---- C:\windows\tracing
2015-03-22 20:31:15 ----D---- C:\windows\Prefetch
2015-03-22 20:10:49 ----AD---- C:\ProgramData
2015-03-22 20:08:57 ----SHD---- C:\windows\Installer
2015-03-22 20:08:11 ----D---- C:\windows\Microsoft.NET
2015-03-22 19:42:48 ----D---- C:\windows\PolicyDefinitions
2015-03-22 19:42:47 ----RSD---- C:\windows\Fonts
2015-03-22 19:42:47 ----D---- C:\windows\system32\wbem
2015-03-22 19:42:47 ----D---- C:\windows\system32\drivers\en-US
2015-03-22 19:42:46 ----D---- C:\windows\system32\migration
2015-03-22 19:42:46 ----D---- C:\windows\system32\drivers\cs-CZ
2015-03-22 19:42:46 ----D---- C:\windows\AppPatch
2015-03-22 19:42:43 ----D---- C:\windows\system32\DriverStore
2015-03-22 19:35:26 ----D---- C:\Program Files\LSI SoftModem
2015-03-22 19:33:41 ----RSD---- C:\windows\assembly
2015-03-22 19:32:22 ----D---- C:\Program Files
2015-03-22 19:32:21 ----SD---- C:\ProgramData\Microsoft
2015-03-22 19:07:40 ----D---- C:\Program Files\Internet Explorer
2015-03-20 23:25:04 ----D---- C:\windows\rescache
2015-03-20 22:56:37 ----D---- C:\Program Files\Microsoft Silverlight
2015-03-20 22:54:46 ----D---- C:\windows\ehome
2015-03-20 22:54:44 ----D---- C:\Program Files\Windows Journal
2015-03-20 22:54:25 ----D---- C:\windows\system32\zh-TW
2015-03-20 22:54:25 ----D---- C:\windows\system32\zh-HK
2015-03-20 22:54:25 ----D---- C:\windows\system32\tr-TR
2015-03-20 22:54:25 ----D---- C:\windows\system32\sv-SE
2015-03-20 22:54:25 ----D---- C:\windows\system32\pt-PT
2015-03-20 22:54:25 ----D---- C:\windows\system32\pt-BR
2015-03-20 22:54:25 ----D---- C:\windows\system32\pl-PL
2015-03-20 22:54:25 ----D---- C:\windows\system32\nl-NL
2015-03-20 22:54:25 ----D---- C:\windows\system32\ko-KR
2015-03-20 22:54:25 ----D---- C:\windows\system32\it-IT
2015-03-20 22:54:25 ----D---- C:\windows\system32\hu-HU
2015-03-20 22:54:25 ----D---- C:\windows\system32\fr-FR
2015-03-20 22:54:25 ----D---- C:\windows\system32\fi-FI
2015-03-20 22:54:25 ----D---- C:\windows\system32\es-ES
2015-03-20 22:54:25 ----D---- C:\windows\system32\el-GR
2015-03-20 22:54:25 ----D---- C:\windows\system32\de-DE
2015-03-20 22:54:24 ----D---- C:\windows\system32\zh-CN
2015-03-20 22:54:24 ----D---- C:\windows\system32\ru-RU
2015-03-20 22:54:24 ----D---- C:\windows\system32\nb-NO
2015-03-20 22:54:24 ----D---- C:\windows\system32\ja-JP
2015-03-20 22:54:24 ----D---- C:\windows\system32\da-DK
2015-03-20 21:14:56 ----D---- C:\windows\Logs
2015-03-20 16:51:54 ----D---- C:\Users\Ivana\AppData\Roaming\Adobe
2015-03-19 21:00:46 ----D---- C:\Users\Ivana\AppData\Roaming\Media Player Classic
2015-03-19 20:59:40 ----D---- C:\windows\pss
2015-03-19 20:12:38 ----SD---- C:\Users\Ivana\AppData\Roaming\Microsoft
2015-03-19 19:50:52 ----D---- C:\Program Files\Common Files
2015-03-19 16:39:13 ----D---- C:\windows\Tasks
2015-03-19 16:39:13 ----D---- C:\windows\system32\Tasks
2015-03-18 21:39:37 ----A---- C:\windows\system32\FlashPlayerApp.exe
2015-03-18 21:18:32 ----D---- C:\Users\Ivana\AppData\Roaming\hpqLog
2015-03-17 22:34:16 ----D---- C:\Users\Ivana\AppData\Roaming\Zoner
2015-03-17 21:34:45 ----HD---- C:\Program Files\InstallShield Installation Information
2015-03-17 21:30:25 ----D---- C:\Users\Ivana\AppData\Roaming\Seznam.cz
2015-03-17 20:50:49 ----D---- C:\Program Files\Virtually Real
2015-03-15 12:53:50 ----D---- C:\Users\Ivana\AppData\Roaming\Skype
2015-03-15 11:59:26 ----D---- C:\windows\system32\wfp
2015-03-15 11:58:25 ----D---- C:\windows\registration
2015-03-15 10:02:06 ----D---- C:\ProgramData\Adobe
2015-03-07 00:40:31 ----D---- C:\windows\system32\NDF
2015-03-05 00:12:15 ----D---- C:\Users\Ivana\AppData\Roaming\ShamanGS
2015-02-26 21:20:50 ----A---- C:\windows\system32\MRT.exe
2015-02-24 04:23:36 ----N---- C:\windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2015-03-18 49904]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2015-03-18 206976]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-01-08 331288]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2015-03-18 81728]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2015-03-18 788272]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2015-03-18 427480]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/10/20 15:21:19]; \??\C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-03-13 87536]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2015-03-18 24144]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2015-03-18 73440]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2015-03-18 106912]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-03-18 220240]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2010-01-26 1163328]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2010-01-25 6282240]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\windows\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\windows\system32\DRIVERS\rtl8192se.sys [2011-09-08 1117800]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2010-01-18 1763968]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys [2010-01-29 423424]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-01-07 86056]
S3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\drivers\btwavdt.sys [2010-01-07 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-01-07 18472]
S3 catchme;catchme; \??\C:\Users\Ivana\AppData\Local\Temp\catchme.sys []
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\windows\system32\DRIVERS\ewdcsc.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys []
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\windows\system32\DRIVERS\ewusbdev.sys []
S3 netr28u;RT2870 USB Wireless LAN Card Driver pro systém Windows Vista; C:\windows\system32\DRIVERS\netr28u.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\aestsrv.exe [2009-03-03 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-12-03 26112]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-03-18 343336]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 595232]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-28 265272]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-01-19 73728]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2010-01-12 635416]
R2 PDFProFiltSrv;PDFProFiltSrv; C:\Program Files\Nuance\PDF Professional 6\PDFProFiltSrv.exe [2009-11-03 134944]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\STacSV.exe [2010-01-29 229458]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-03-18 3205216]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-12-17 230968]
S2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-18 268464]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-02-20 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-03-22 148080]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\windows\system32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-10-24 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-11 45744]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

Re: Prosím o kontrolu

Napsal: 22 bře 2015 23:29
od altrok
Zdravim :bye:


:arrow: V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).


:arrow: Spustte jako spravce C:\Program Files\trend micro\Ivana.exe
:arrow: Odinstalujte
  • Skype Click to Call - adware z instalace Skypu

:arrow: Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
  • ukoncete vsechny programy
  • kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
  • kliknete na Scan, pote na Cleaning
  • po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

Re: Prosím o kontrolu

Napsal: 23 bře 2015 20:52
od vaclavka83
děkuji.....
# AdwCleaner v4.113 - Logfile created 23/03/2015 at 20:48:58
# Updated 22/03/2015 by Xplode
# Database : 2015-03-23.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x86)
# Username : Ivana - IVANA-HP
# Running from : C:\Users\Ivana\Desktop\adwcleaner_4.113.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\FileCure
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Users\Ivana\AppData\Local\Conduit
Folder Deleted : C:\Users\Ivana\AppData\Local\PackageAware
Folder Deleted : C:\Users\Ivana\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Ivana\AppData\LocalLow\MyFunCards_5m
Folder Deleted : C:\Users\Ivana\AppData\Roaming\quickclick

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{4724C5D8-DFA7-417A-A2F5-1EABFEE9B4AC}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{4724C5D8-DFA7-417A-A2F5-1EABFEE9B4AC}]
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\ParetoLogic
Key Deleted : HKLM\SOFTWARE\Uniblue

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17689


-\\ Mozilla Firefox v36.0.4 (x86 cs)

[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._5mMembers_.homepage", "hxxp://home.mywebsearch.com/index.jhtml?ptb=undefined&n=77ee8562&ptnrS=ZUxpi000");
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._5mMembers_.initialized", true);
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._5mMembers_.installation.contextKey", "");
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._5mMembers_.installation.installDate", "2012120418");
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._5mMembers_.installation.partnerId", "ZUxpi000");
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._5mMembers_.installation.partnerSubId", "");
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._5mMembers_.installation.success", false);
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._5mMembers_.installation.toolbarId", "undefined");
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._5mMembers_.searchHistory", "Stahování je pYístupné pouze pYihláaeným u~ivatelomTwilight SagaBreaking Dawn 2011 cz.avi");
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._5mMembers_.tab.date", "");
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._5mMembers_.weather.location", "10001");
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark.lastInstalled", "myfuncards@mindspark.com");
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark.sa.enabled", false);
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark.sa.owner", "");
[vqqnwr0a.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark.tab.enabled", false);

*************************

AdwCleaner[R0].txt - [3740 bytes] - [23/03/2015 20:46:45]
AdwCleaner[S0].txt - [3864 bytes] - [23/03/2015 20:48:58]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3923 bytes] ##########

Re: Prosím o kontrolu

Napsal: 23 bře 2015 22:24
od altrok
:arrow: Nainstalujte MBAM a udelejte vlastni sken vsech disku - http://forum.viry.cz/viewtopic.php?f=29&t=137928
  • Upozorneni: tento sken zabere od 30 minut po nekolik hodin

Re: Prosím o kontrolu

Napsal: 25 bře 2015 06:16
od vaclavka83
Děkuji...
Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 24.3.2015
Čas skenování: 21:25:11
Protokol: log 2.txt
Správce: Ano

Verze: 2.01.4.1018
Databáze malwaru: v2015.03.24.08
Databáze rootkitů: v2015.02.25.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Ivana

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 562654
Uplynulý čas: 1 hod, 26 min, 38 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 1
PUP.Optional.MindSpark.A, C:\Users\Ivana\AppData\Roaming\Mozilla\Firefox\Profiles\vqqnwr0a.default\OnlineMapFinder_9p, , [86d2242572189e98962b0f6fb74c55ab],

Soubory: 2
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Program Files\Conduit\Community Alerts\Alert0.dll.vir, , [3325dc6de9a161d5e22bba76c7397090],
PUP.Optional.MindSpark.A, C:\Users\Ivana\AppData\Roaming\Mozilla\Firefox\Profiles\vqqnwr0a.default\OnlineMapFinder_9p\4891EAC1-BBB3-4724-9923-B234CDC996FB.sqlite, , [86d2242572189e98962b0f6fb74c55ab],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

Re: Prosím o kontrolu

Napsal: 25 bře 2015 11:02
od altrok
:arrow: Vsechny nalezy smazte/presunte do karanteny.

:arrow: Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

Re: Prosím o kontrolu

Napsal: 25 bře 2015 19:16
od vaclavka83
Děkuji.....
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015
Ran by Ivana (administrator) on IVANA-HP on 25-03-2015 19:11:50
Running from C:\Users\Ivana\Desktop
Loaded Profiles: Ivana (Available profiles: Ivana)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\stacsv.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\AEstSrv.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(PDF Complete Inc) C:\Program Files\PDF Complete\pdfsvc.exe
(Nuance Communications, Inc.) C:\Program Files\Nuance\PDF Professional 6\PDFProFiltSrv.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Nuance Communications, Inc.) C:\Program Files\Nuance\PDF Professional 6\PdfPro6Hook.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(cyberlink) C:\Program Files\CyberLink\Shared Files\brs.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
() C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [WirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [499768 2009-09-01] (Hewlett-Packard)
HKLM\...\Run: [RemoteControl10] => C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe [87336 2010-02-02] (CyberLink Corp.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5511352 2015-03-18] (Avast Software s.r.o.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [495708 2010-01-29] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1791272 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [QLBController] => C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe [256056 2010-01-28] (Hewlett-Packard Company)
HKLM\...\Run: [PDFHook] => C:\Program Files\Nuance\PDF Professional 6\pdfpro6hook.exe [1277952 2009-11-13] (Nuance Communications, Inc.)
HKLM\...\Run: [PDF6 Registry Controller] => C:\Program Files\Nuance\PDF Professional 6\RegistryController.exe [110880 2009-11-03] (Nuance Communications, Inc.)
HKLM\...\Run: [PDF Complete] => C:\Program Files\PDF Complete\pdfsty.exe [563736 2010-01-12] (PDF Complete Inc)
HKLM\...\Run: [Nuance PDF Reader-reminder] => C:\Program Files\Nuance\PDF Reader\Ereg\Ereg.exe [328992 2008-11-03] (Nuance Communications, Inc.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2010-01-08] (Intel Corporation)
HKLM\...\Run: [BDRegion] => C:\Program Files\Cyberlink\Shared files\brs.exe [75048 2010-03-13] (cyberlink)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-1621432229-590387682-440638948-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
HKU\S-1-5-21-1621432229-590387682-440638948-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1621432229-590387682-440638948-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1621432229-590387682-440638948-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13014
HKU\S-1-5-21-1621432229-590387682-440638948-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM -> {783FB0DE-DAD1-42CA-BEEF-3AA2038443F1} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1621432229-590387682-440638948-1001 -> 51C884E219A642C396DECF9A631AE370 URL = http://www.google.cz/search?q={searchTe ... {startPage}
SearchScopes: HKU\S-1-5-21-1621432229-590387682-440638948-1001 -> {082A9038-5530-4B47-BF2F-FC3A4D255BA3} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13014
SearchScopes: HKU\S-1-5-21-1621432229-590387682-440638948-1001 -> {1A6A85A2-90B8-40AB-9628-E3785EEA2EAD} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13014
SearchScopes: HKU\S-1-5-21-1621432229-590387682-440638948-1001 -> {2F015395-3EBB-4A0E-88D5-00AE7B6EA5C2} URL = http://www.bing.com/search?FORM=UP97DF& ... -SearchBox
SearchScopes: HKU\S-1-5-21-1621432229-590387682-440638948-1001 -> {3DF4A7C7-F095-44AD-8075-7782524FC912} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13014
SearchScopes: HKU\S-1-5-21-1621432229-590387682-440638948-1001 -> {61CDA732-E6F2-4204-81F3-D32C841D332B} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13014
SearchScopes: HKU\S-1-5-21-1621432229-590387682-440638948-1001 -> {6BC80F01-E5EE-4497-8378-BB1DB1F0FE06} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13014
SearchScopes: HKU\S-1-5-21-1621432229-590387682-440638948-1001 -> {783FB0DE-DAD1-42CA-BEEF-3AA2038443F1} URL =
SearchScopes: HKU\S-1-5-21-1621432229-590387682-440638948-1001 -> {9405F513-7DBB-4AA1-B9BA-5BF9F88EC0DE} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13014
SearchScopes: HKU\S-1-5-21-1621432229-590387682-440638948-1001 -> {B0BEF621-90DA-483B-A195-94B39A2919F1} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13014
SearchScopes: HKU\S-1-5-21-1621432229-590387682-440638948-1001 -> {D06645EA-53F0-456F-B0E2-67518169BA1C} URL = http://search.seznam.cz/?q={searchTerms ... arch_13014
SearchScopes: HKU\S-1-5-21-1621432229-590387682-440638948-1001 -> {D3501CD1-7B9E-4C99-82AA-25908C990AAB} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13014
BHO: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll [2009-02-06] (Zeon Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-19] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-03-18] (Avast Software s.r.o.)
BHO: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: ZeonIEEventHelper Class -> {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} -> C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll [2009-03-26] (Zeon Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-19] (Oracle Corporation)
Toolbar: HKLM - Nuance PDF - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll [2009-03-26] (Zeon Corporation)
Toolbar: HKU\S-1-5-21-1621432229-590387682-440638948-1001 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
ShellExecuteHooks: - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No File [ ]
Tcpip\Parameters: [DhcpNameServer] 79.98.152.2 79.98.156.2

FireFox:
========
FF ProfilePath: C:\Users\Ivana\AppData\Roaming\Mozilla\Firefox\Profiles\vqqnwr0a.default
FF SearchEngineOrder.3: Bing
FF Homepage: seznam.cz
FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-18] ()
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-19] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-19] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> C:\windows\system32\Wat\npWatWeb.dll [2010-10-24] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin: ZEON/PDF,version=2.0 -> C:\Program Files\Nuance\PDF Reader\bin\nppdf.dll [2010-01-23] (Zeon Corporation)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-10-19]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx [2014-08-06]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-18]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [26112 2009-12-03] (LSI Corporation)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-03-18] (Avast Software s.r.o.)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3205216 2015-03-18] (Avast Software)
R2 hpHotkeyMonitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [265272 2010-01-28] (Hewlett-Packard Company)
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2011-01-19] (Hewlett-Packard Company) [File not signed]
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
R2 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [635416 2010-01-12] (PDF Complete Inc)
R2 PDFProFiltSrv; C:\Program Files\Nuance\PDF Professional 6\PDFProFiltSrv.exe [134944 2009-11-03] (Nuance Communications, Inc.)
R2 STacSV; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\STacSV.exe [229458 2010-01-29] (IDT, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 HP Health Check Service; "C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24144 2015-03-18] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [73440 2015-03-18] (Avast Software s.r.o.)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [81728 2015-03-18] (Avast Software s.r.o.)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49904 2015-03-18] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [788272 2015-03-18] (Avast Software s.r.o.)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [427480 2015-03-18] (Avast Software s.r.o.)
R2 aswStm; C:\windows\system32\drivers\aswStm.sys [106912 2015-03-18] (Avast Software s.r.o.)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [206976 2015-03-18] ()
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [23256 2015-03-17] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [51928 2015-03-17] (Malwarebytes Corporation)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1763968 2010-01-18] ()
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220240 2015-03-18] (Avast Software)
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}; C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl [87536 2010-03-13] (CyberLink Corp.)
U5 AppMgmt; C:\windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\Ivana\AppData\Local\Temp\catchme.sys [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S3 netr28u; system32\DRIVERS\netr28u.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-25 19:11 - 2015-03-25 19:12 - 00016412 _____ () C:\Users\Ivana\Desktop\FRST.txt
2015-03-25 19:11 - 2015-03-25 19:11 - 01135104 _____ (Farbar) C:\Users\Ivana\Desktop\FRST.exe
2015-03-25 19:11 - 2015-03-25 19:11 - 00000000 ____D () C:\FRST
2015-03-25 17:41 - 2015-03-25 17:41 - 00001402 _____ () C:\windows\PFRO.log
2015-03-24 21:23 - 2015-03-24 21:23 - 00119512 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-03-24 21:22 - 2015-03-24 21:22 - 00001020 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-03-24 21:22 - 2015-03-24 21:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-03-24 21:22 - 2015-03-24 21:22 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-03-24 21:22 - 2015-03-24 21:22 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-03-24 21:22 - 2015-03-17 06:15 - 00092888 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2015-03-24 21:22 - 2015-03-17 06:15 - 00051928 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2015-03-24 21:22 - 2015-03-17 06:15 - 00023256 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2015-03-24 21:19 - 2015-03-24 21:21 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\Ivana\Desktop\mbam-setup-2.1.4.1018.exe
2015-03-23 20:50 - 2015-03-25 17:41 - 00000168 _____ () C:\windows\setupact.log
2015-03-23 20:50 - 2015-03-23 20:50 - 00000000 _____ () C:\windows\setuperr.log
2015-03-23 20:46 - 2015-03-23 20:49 - 00000000 ____D () C:\AdwCleaner
2015-03-23 20:45 - 2015-03-23 20:45 - 02168320 _____ () C:\Users\Ivana\Desktop\adwcleaner_4.113.exe
2015-03-22 21:09 - 2015-03-25 06:14 - 00000000 ____D () C:\rsit
2015-03-22 20:40 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2015-03-22 20:40 - 2012-02-11 06:37 - 00317440 _____ (Microsoft Corporation) C:\windows\system32\spoolsv.exe
2015-03-22 20:40 - 2011-02-25 06:30 - 02616320 _____ (Microsoft Corporation) C:\windows\explorer.exe
2015-03-22 20:30 - 2015-01-31 04:33 - 02744320 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2015-03-22 20:30 - 2015-01-31 04:33 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\RdpGroupPolicyExtension.dll
2015-03-22 20:30 - 2015-01-31 01:48 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2015-03-22 20:30 - 2014-12-11 18:47 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe
2015-03-22 19:41 - 2012-08-23 15:44 - 00014848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpvideominiport.sys
2015-03-22 19:41 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\windows\system32\rdpendp_winip.dll
2015-03-22 19:39 - 2013-10-02 01:42 - 00049152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbFlt.sys
2015-03-22 19:39 - 2013-10-02 01:32 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-03-22 19:39 - 2013-10-02 01:30 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-03-22 19:39 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\MsRdpWebAccess.dll
2015-03-22 19:39 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\windows\system32\wksprtPS.dll
2015-03-22 19:39 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2015-03-22 19:39 - 2013-10-02 00:45 - 00032256 _____ (Microsoft Corporation) C:\windows\system32\TsUsbGDCoInstaller.dll
2015-03-22 19:39 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll
2015-03-22 19:39 - 2013-10-01 23:53 - 00350208 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe
2015-03-22 19:39 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe
2015-03-22 19:38 - 2015-01-09 00:44 - 00419936 _____ () C:\windows\system32\locale.nls
2015-03-22 19:37 - 2014-06-27 02:45 - 02285056 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2015-03-22 19:36 - 2012-07-26 04:21 - 00196608 _____ (Microsoft Corporation) C:\windows\system32\WUDFHost.exe
2015-03-22 19:36 - 2012-07-26 04:20 - 00613888 _____ (Microsoft Corporation) C:\windows\system32\WUDFx.dll
2015-03-22 19:36 - 2012-07-26 04:20 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\WUDFPlatform.dll
2015-03-22 19:36 - 2012-07-26 04:20 - 00073216 _____ (Microsoft Corporation) C:\windows\system32\WUDFSvc.dll
2015-03-22 19:36 - 2012-07-26 04:20 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\WUDFCoinstaller.dll
2015-03-22 19:36 - 2012-07-26 03:33 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFPf.sys
2015-03-22 19:36 - 2012-07-26 03:32 - 00155136 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFRd.sys
2015-03-22 19:36 - 2012-06-02 15:57 - 00000003 _____ () C:\windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2015-03-22 19:32 - 2015-03-22 19:32 - 00000000 ____D () C:\Program Files\Microsoft.NET
2015-03-22 19:29 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2015-03-22 19:29 - 2013-01-24 05:47 - 00196328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fvevol.sys
2015-03-22 19:29 - 2012-12-07 13:26 - 00308736 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll
2015-03-22 19:29 - 2012-12-07 13:20 - 02576384 _____ (Microsoft Corporation) C:\windows\system32\gameux.dll
2015-03-22 19:29 - 2012-12-07 11:46 - 00055296 _____ (Microsoft) C:\windows\system32\cero.rs
2015-03-22 19:29 - 2012-12-07 11:46 - 00051712 _____ (Microsoft) C:\windows\system32\esrb.rs
2015-03-22 19:29 - 2012-12-07 11:46 - 00046592 _____ (Microsoft) C:\windows\system32\fpb.rs
2015-03-22 19:29 - 2012-12-07 11:46 - 00045568 _____ (Microsoft) C:\windows\system32\oflc-nz.rs
2015-03-22 19:29 - 2012-12-07 11:46 - 00044544 _____ (Microsoft) C:\windows\system32\pegibbfc.rs
2015-03-22 19:29 - 2012-12-07 11:46 - 00043520 _____ (Microsoft) C:\windows\system32\csrr.rs
2015-03-22 19:29 - 2012-12-07 11:46 - 00040960 _____ (Microsoft) C:\windows\system32\cob-au.rs
2015-03-22 19:29 - 2012-12-07 11:46 - 00030720 _____ (Microsoft) C:\windows\system32\usk.rs
2015-03-22 19:29 - 2012-12-07 11:46 - 00023552 _____ (Microsoft) C:\windows\system32\oflc.rs
2015-03-22 19:29 - 2012-12-07 11:46 - 00021504 _____ (Microsoft) C:\windows\system32\grb.rs
2015-03-22 19:29 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\windows\system32\pegi-pt.rs
2015-03-22 19:29 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\windows\system32\pegi-fi.rs
2015-03-22 19:29 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\windows\system32\pegi.rs
2015-03-22 19:29 - 2012-12-07 11:46 - 00015360 _____ (Microsoft) C:\windows\system32\djctq.rs
2015-03-22 19:29 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\netcorehc.dll
2015-03-22 19:29 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\windows\system32\netevent.dll
2015-03-22 19:29 - 2012-10-03 17:40 - 00499712 _____ (Microsoft Corporation) C:\windows\system32\iphlpsvc.dll
2015-03-22 19:29 - 2012-10-03 16:21 - 00035328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpipreg.sys
2015-03-22 19:29 - 2012-07-06 20:23 - 00393728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthport.sys
2015-03-22 19:29 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\windows\system32\ntshrui.dll
2015-03-22 19:29 - 2011-03-11 06:39 - 00143744 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvstor.sys
2015-03-22 19:29 - 2011-03-11 06:39 - 00117120 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvraid.sys
2015-03-22 19:29 - 2011-03-11 06:38 - 00332160 _____ (Intel Corporation) C:\windows\system32\Drivers\iaStorV.sys
2015-03-22 19:29 - 2011-03-11 06:38 - 00080256 _____ (Advanced Micro Devices) C:\windows\system32\Drivers\amdsata.sys
2015-03-22 19:29 - 2011-03-11 06:38 - 00022400 _____ (Advanced Micro Devices) C:\windows\system32\Drivers\amdxata.sys
2015-03-22 19:29 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\windows\system32\esent.dll
2015-03-22 19:29 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\fsutil.exe
2015-03-22 19:29 - 2011-03-11 05:01 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBSTOR.SYS
2015-03-22 19:28 - 2015-01-09 03:48 - 00635904 _____ (Microsoft Corporation) C:\windows\system32\perftrack.dll
2015-03-22 19:28 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\wdi.dll
2015-03-22 19:28 - 2015-01-09 03:48 - 00027136 _____ (Microsoft Corporation) C:\windows\system32\powertracker.dll
2015-03-22 19:28 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2015-03-22 19:28 - 2014-11-11 02:32 - 00074752 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdx.sys
2015-03-22 19:28 - 2014-11-08 03:45 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2015-03-22 19:28 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\windows\system32\charmap.exe
2015-03-22 19:28 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2015-03-22 19:28 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\windows\system32\KBDYAK.DLL
2015-03-22 19:28 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\windows\system32\KBDTAT.DLL
2015-03-22 19:28 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\windows\system32\KBDRU1.DLL
2015-03-22 19:28 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\windows\system32\KBDBASH.DLL
2015-03-22 19:28 - 2014-07-09 02:29 - 00005632 _____ (Microsoft Corporation) C:\windows\system32\KBDRU.DLL
2015-03-22 19:28 - 2014-06-24 03:59 - 01987584 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2015-03-22 19:28 - 2014-02-04 03:07 - 00234432 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msiscsi.sys
2015-03-22 19:28 - 2014-02-04 03:07 - 00149440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2015-03-22 19:28 - 2014-02-04 03:07 - 00027072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Diskdump.sys
2015-03-22 19:28 - 2014-02-04 03:00 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\iologmsg.dll
2015-03-22 19:28 - 2014-01-28 03:07 - 00185344 _____ (Microsoft Corporation) C:\windows\system32\wwansvc.dll
2015-03-22 19:28 - 2014-01-24 03:18 - 01212352 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2015-03-22 19:28 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2015-03-22 19:28 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2015-03-22 19:28 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2015-03-22 19:28 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2015-03-22 19:28 - 2013-08-05 02:56 - 00133056 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ataport.sys
2015-03-22 19:28 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2015-03-22 19:28 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2015-03-22 19:28 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\cryptdlg.dll
2015-03-22 19:28 - 2013-03-19 04:33 - 00040960 _____ (Microsoft Corporation) C:\windows\system32\wwanprotdim.dll
2015-03-22 19:28 - 2012-08-22 18:16 - 00712048 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2015-03-22 19:28 - 2012-08-21 21:12 - 00245760 _____ (Microsoft Corporation) C:\windows\system32\OxpsConverter.exe
2015-03-22 19:28 - 2012-07-04 20:45 - 00033280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\RNDISMP.sys
2015-03-22 19:28 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\windows\system32\timedate.cpl
2015-03-22 19:28 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\windows\system32\xmllite.dll
2015-03-22 19:28 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\windows\system32\tquery.dll
2015-03-22 19:28 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\windows\system32\mssrch.dll
2015-03-22 19:28 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\windows\system32\mssvp.dll
2015-03-22 19:28 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\mssph.dll
2015-03-22 19:28 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\mssphtb.dll
2015-03-22 19:28 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\windows\system32\msscntrs.dll
2015-03-22 19:28 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\windows\system32\SearchIndexer.exe
2015-03-22 19:28 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\windows\system32\SearchProtocolHost.exe
2015-03-22 19:28 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\SearchFilterHost.exe
2015-03-22 19:28 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\prevhost.exe
2015-03-22 19:27 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\windows\system32\WsmSvc.dll
2015-03-22 19:27 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\WSManMigrationPlugin.dll
2015-03-22 19:27 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\windows\system32\WsmWmiPl.dll
2015-03-22 19:27 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\windows\system32\WsmAuto.dll
2015-03-22 19:27 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\windows\system32\WSManHTTPConfig.exe
2015-03-22 19:27 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\windows\system32\secproc.dll
2015-03-22 19:27 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\windows\system32\secproc_isv.dll
2015-03-22 19:27 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp_isv.dll
2015-03-22 19:27 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp.dll
2015-03-22 19:27 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\windows\system32\msdrm.dll
2015-03-22 19:27 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_isv.exe
2015-03-22 19:27 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\windows\system32\RMActivate.exe
2015-03-22 19:27 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp.exe
2015-03-22 19:27 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp_isv.exe
2015-03-22 19:26 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2015-03-22 19:26 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc6.dll
2015-03-22 19:03 - 2015-03-22 19:03 - 01107968 _____ () C:\Users\Ivana\Desktop\RSIT.exe
2015-03-22 18:59 - 2015-03-22 18:59 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-03-22 18:59 - 2015-02-24 03:32 - 00342696 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-03-22 18:59 - 2015-02-21 01:41 - 12827648 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-03-22 18:59 - 2015-02-21 01:27 - 00418304 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-03-22 18:59 - 2015-02-21 01:27 - 00285696 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-03-22 18:59 - 2015-02-21 01:25 - 19720192 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-03-22 18:59 - 2015-02-21 00:32 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-03-22 18:59 - 2015-02-20 03:22 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-03-22 18:59 - 2015-02-20 03:22 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2015-03-22 18:59 - 2015-02-20 03:09 - 00503296 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-03-22 18:59 - 2015-02-20 03:08 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-03-22 18:59 - 2015-02-20 03:08 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2015-03-22 18:59 - 2015-02-20 03:06 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-03-22 18:59 - 2015-02-20 03:03 - 02278400 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-03-22 18:59 - 2015-02-20 03:01 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-03-22 18:59 - 2015-02-20 03:00 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-03-22 18:59 - 2015-02-20 02:58 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2015-03-22 18:59 - 2015-02-20 02:56 - 00620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2015-03-22 18:59 - 2015-02-20 02:56 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2015-03-22 18:59 - 2015-02-20 02:56 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2015-03-22 18:59 - 2015-02-20 02:50 - 00667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2015-03-22 18:59 - 2015-02-20 02:41 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2015-03-22 18:59 - 2015-02-20 02:37 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-03-22 18:59 - 2015-02-20 02:30 - 04300288 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-03-22 18:59 - 2015-02-20 02:24 - 02052608 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-03-22 18:59 - 2015-02-20 02:24 - 00689152 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-03-22 18:59 - 2015-02-20 02:24 - 00684544 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-03-22 18:59 - 2015-02-20 02:23 - 01155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2015-03-22 18:59 - 2015-02-20 02:01 - 01888256 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-03-22 18:59 - 2015-02-20 01:57 - 01311232 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-03-22 18:59 - 2015-02-20 01:55 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-03-22 18:57 - 2015-02-03 04:12 - 01230848 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2015-03-22 18:57 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\windows\system32\d2d1.dll
2015-03-22 18:55 - 2015-02-04 03:54 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2015-03-20 22:59 - 2015-03-20 22:59 - 00000000 ____D () C:\Písničky
2015-03-20 21:47 - 2015-03-20 21:53 - 00000000 ____D () C:\windows\system32\MRT
2015-03-20 21:28 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\windows\system32\icardres.dll
2015-03-20 21:28 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2015-03-20 21:28 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\windows\system32\icardagt.exe
2015-03-20 21:28 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\windows\system32\infocardapi.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 01289096 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00645120 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00640512 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2015-03-20 21:11 - 2015-03-20 21:11 - 00610304 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2015-03-20 21:11 - 2015-03-20 21:11 - 00233472 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00208384 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00182272 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00151552 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2015-03-20 21:11 - 2015-03-20 21:11 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2015-03-20 21:11 - 2015-03-20 21:11 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2015-03-20 21:11 - 2015-03-20 21:11 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2015-03-20 21:11 - 2015-03-20 21:11 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2015-03-20 21:11 - 2015-03-20 21:11 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2015-03-20 21:11 - 2015-03-20 21:11 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2015-03-20 21:11 - 2015-03-20 21:11 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2015-03-20 21:10 - 2015-03-20 21:10 - 01247744 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 01158144 _____ (Microsoft Corporation) C:\windows\system32\XpsPrint.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 01080832 _____ (Microsoft Corporation) C:\windows\system32\d3d10.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00906240 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00604160 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00364544 _____ (Microsoft Corporation) C:\windows\system32\XpsGdiConverter.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00293376 _____ (Microsoft Corporation) C:\windows\system32\dxgi.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00249856 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1core.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00220160 _____ (Microsoft Corporation) C:\windows\system32\d3d10core.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00207872 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecsExt.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00187392 _____ (Microsoft Corporation) C:\windows\system32\UIAnimation.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00161792 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00010752 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00009728 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-03-20 21:10 - 2015-03-20 21:10 - 00002560 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-03-20 21:09 - 2015-03-20 21:09 - 01505280 _____ (Microsoft Corporation) C:\windows\system32\d3d11.dll
2015-03-20 21:06 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\windows\system32\pku2u.dll
2015-03-20 21:06 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2015-03-20 21:06 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2015-03-20 21:06 - 2014-03-26 15:27 - 01389056 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2015-03-20 21:06 - 2014-03-26 15:25 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2015-03-20 21:06 - 2014-03-04 10:17 - 00538112 _____ (Microsoft Corporation) C:\windows\system32\objsel.dll
2015-03-20 21:06 - 2014-03-04 10:17 - 00293376 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2015-03-20 21:06 - 2014-03-04 10:17 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\cngprovider.dll
2015-03-20 21:06 - 2014-03-04 10:17 - 00049664 _____ (Microsoft Corporation) C:\windows\system32\adprovider.dll
2015-03-20 21:06 - 2014-03-04 10:17 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\capiprovider.dll
2015-03-20 21:06 - 2014-03-04 10:17 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\dpapiprovider.dll
2015-03-20 21:06 - 2014-03-04 10:17 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\dimsroam.dll
2015-03-20 21:06 - 2014-03-04 10:17 - 00035328 _____ (Microsoft Corporation) C:\windows\system32\wincredprovider.dll
2015-03-20 21:05 - 2014-10-14 02:50 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll
2015-03-20 21:05 - 2014-10-03 02:44 - 00475136 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2015-03-20 21:05 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2015-03-20 21:05 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2015-03-20 21:05 - 2014-10-03 02:44 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2015-03-20 21:05 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2015-03-20 21:05 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\windows\system32\rastls.dll
2015-03-20 21:05 - 2014-08-23 02:46 - 00305152 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2015-03-20 21:05 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\windows\system32\IMJP10K.DLL
2015-03-20 21:05 - 2014-07-14 02:42 - 00654336 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2015-03-20 21:05 - 2014-06-16 02:44 - 00730048 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2015-03-20 21:05 - 2014-06-16 02:44 - 00219072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2015-03-20 21:05 - 2014-06-16 02:40 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2015-03-20 21:05 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2015-03-20 21:05 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2015-03-20 21:05 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2015-03-20 21:05 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2015-03-20 21:05 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2015-03-20 21:05 - 2013-11-27 02:13 - 00020480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2015-03-20 21:05 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2015-03-20 21:05 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2015-03-20 21:05 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2015-03-20 21:05 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2015-03-20 21:05 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2015-03-20 21:05 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2015-03-20 21:05 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2015-03-20 21:05 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2015-03-20 21:05 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-03-20 21:05 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2015-03-20 21:05 - 2013-07-03 05:02 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbscan.sys
2015-03-20 21:05 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2015-03-20 21:05 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2015-03-20 21:05 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2015-03-20 21:05 - 2012-11-28 23:57 - 00047720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdfLdr.sys
2015-03-20 21:05 - 2012-11-28 23:57 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\Wdfres.dll
2015-03-20 21:05 - 2012-11-28 23:57 - 00000003 _____ () C:\windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2015-03-20 21:04 - 2015-03-06 06:15 - 00137656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-03-20 21:04 - 2015-03-06 06:15 - 00067512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2015-03-20 21:04 - 2015-03-06 06:10 - 01061376 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-03-20 21:04 - 2015-03-06 06:10 - 00550912 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2015-03-20 21:04 - 2015-03-06 06:10 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2015-03-20 21:04 - 2015-03-06 06:10 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-03-20 21:04 - 2015-03-06 06:10 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2015-03-20 21:04 - 2015-03-06 06:10 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2015-03-20 21:04 - 2015-03-06 06:10 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2015-03-20 21:04 - 2015-03-06 06:10 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2015-03-20 21:04 - 2015-03-06 06:10 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2015-03-20 21:04 - 2015-03-06 06:10 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2015-03-20 21:04 - 2015-03-06 06:10 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2015-03-20 21:04 - 2015-03-06 06:09 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2015-03-20 21:04 - 2015-03-06 06:09 - 00022528 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2015-03-20 21:04 - 2015-03-06 06:07 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2015-03-20 21:04 - 2015-03-06 06:07 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2015-03-20 21:04 - 2015-03-06 06:06 - 00686080 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2015-03-20 21:04 - 2015-02-20 05:13 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2015-03-20 21:04 - 2015-02-20 05:13 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2015-03-20 21:04 - 2015-02-20 05:13 - 00026624 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2015-03-20 21:04 - 2015-02-20 05:13 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2015-03-20 21:04 - 2015-02-20 04:09 - 00299008 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2015-03-20 21:04 - 2015-02-13 06:26 - 12875264 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2015-03-20 21:04 - 2015-02-03 04:12 - 00171520 _____ (Microsoft Corporation) C:\windows\system32\ubpm.dll
2015-03-20 21:04 - 2015-01-31 00:56 - 00370488 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2015-03-20 21:04 - 2015-01-29 04:05 - 03973048 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2015-03-20 21:04 - 2015-01-29 04:05 - 03917752 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-03-20 21:04 - 2015-01-29 04:01 - 00400896 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-03-20 21:04 - 2015-01-29 04:01 - 00262656 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-03-20 21:04 - 2015-01-29 04:01 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2015-03-20 21:04 - 2015-01-29 04:01 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-03-20 21:04 - 2015-01-29 04:01 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2015-03-20 21:04 - 2015-01-29 03:57 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2015-03-20 21:04 - 2015-01-17 03:30 - 00828928 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2015-03-20 21:04 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\windows\system32\winsta.dll
2015-03-20 21:04 - 2014-07-17 02:39 - 00304128 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2015-03-20 21:04 - 2014-07-17 02:39 - 00130048 _____ (Microsoft Corporation) C:\windows\system32\rdpcorekmts.dll
2015-03-20 21:04 - 2014-07-17 02:03 - 00184320 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpwd.sys
2015-03-20 21:04 - 2014-07-17 02:02 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tssecsrv.sys
2015-03-20 21:04 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2015-03-20 21:04 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2015-03-20 21:04 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2015-03-20 21:04 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2015-03-20 21:04 - 2013-07-09 05:46 - 00140288 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2015-03-20 21:04 - 2013-07-09 05:46 - 00103936 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2015-03-20 21:03 - 2015-02-26 04:11 - 02381312 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-03-20 21:03 - 2014-12-19 03:43 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll
2015-03-20 21:03 - 2014-12-19 02:34 - 00116224 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2015-03-20 21:03 - 2014-12-06 04:50 - 00242688 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2015-03-20 21:03 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\windows\system32\packager.dll
2015-03-20 21:03 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\windows\system32\dfshim.dll
2015-03-20 21:03 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\windows\system32\mscorier.dll
2015-03-20 21:03 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\windows\system32\mscories.dll
2015-03-20 21:03 - 2014-06-18 02:51 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\osk.exe
2015-03-20 21:03 - 2014-06-06 10:44 - 00509440 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2015-03-20 21:03 - 2014-06-03 10:30 - 00101824 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2015-03-20 21:03 - 2014-06-03 10:29 - 01805824 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2015-03-20 21:03 - 2014-06-03 10:29 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2015-03-20 21:03 - 2014-05-30 07:36 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2015-03-20 21:03 - 2014-04-25 03:06 - 00626688 _____ (Microsoft Corporation) C:\windows\system32\usp10.dll
2015-03-20 21:03 - 2014-04-05 03:25 - 01294272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2015-03-20 21:03 - 2014-04-05 03:24 - 00187840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2015-03-20 21:03 - 2014-03-04 10:17 - 00868352 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2015-03-20 21:03 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2015-03-20 21:03 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2015-03-20 21:03 - 2013-08-02 02:50 - 00169984 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 01:52 - 00271360 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2015-03-20 21:03 - 2013-08-02 01:43 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 01:43 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 01:43 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-03-20 21:03 - 2013-08-02 01:43 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-03-20 21:03 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll
2015-03-20 21:03 - 2013-07-25 09:57 - 01620992 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2015-03-20 21:03 - 2013-07-12 11:08 - 00146816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys
2015-03-20 21:03 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2015-03-20 21:03 - 2012-10-03 17:42 - 00156672 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll
2015-03-20 21:03 - 2012-10-03 17:42 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\nlaapi.dll
2015-03-20 20:59 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\windows\system32\scesrv.dll
2015-03-20 16:56 - 2015-03-20 16:56 - 00000000 ____D () C:\Users\Ivana\Documents\Syberia Saves
2015-03-20 16:47 - 2015-03-20 16:52 - 00000000 ____D () C:\Users\Ivana\Desktop\Dokumenty
2015-03-20 16:47 - 2015-03-20 16:48 - 00000000 ____D () C:\Users\Ivana\Documents\Záloha mozilla záložky
2015-03-20 16:45 - 2015-03-22 19:44 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-03-20 16:45 - 2015-03-20 16:45 - 00001065 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-03-20 16:45 - 2015-03-20 16:45 - 00000000 ____D () C:\ProgramData\Mozilla
2015-03-19 16:07 - 2015-03-19 16:07 - 00000000 ____D () C:\Program Files\Common Files\Java
2015-03-18 21:31 - 2014-05-14 17:23 - 01973728 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2015-03-18 21:31 - 2014-05-14 17:23 - 00581600 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2015-03-18 21:31 - 2014-05-14 17:23 - 00054240 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2015-03-18 21:31 - 2014-05-14 17:23 - 00045536 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2015-03-18 21:31 - 2014-05-14 17:23 - 00036320 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2015-03-18 21:31 - 2014-05-14 17:17 - 02425856 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2015-03-18 21:31 - 2014-05-14 17:17 - 00092672 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2015-03-18 21:31 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2015-03-18 21:31 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2015-03-18 21:26 - 2015-03-19 16:06 - 00096680 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2015-03-18 21:26 - 2015-03-19 16:06 - 00000000 ____D () C:\ProgramData\Oracle
2015-03-18 21:26 - 2015-03-18 21:26 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-03-18 21:26 - 2015-03-18 21:25 - 00175528 _____ (Oracle Corporation) C:\windows\system32\javaw.exe
2015-03-18 21:26 - 2015-03-18 21:25 - 00175528 _____ (Oracle Corporation) C:\windows\system32\java.exe
2015-03-18 21:25 - 2015-03-19 16:06 - 00000000 ____D () C:\Program Files\Java
2015-03-18 21:19 - 2015-03-18 21:19 - 00000000 ____D () C:\windows\system32\vbox
2015-03-18 21:14 - 2015-03-18 21:14 - 00291312 _____ (Avast Software s.r.o.) C:\windows\system32\aswBoot.exe
2015-03-18 21:14 - 2015-03-18 21:14 - 00043112 _____ (Avast Software s.r.o.) C:\windows\avastSS.scr
2015-03-15 10:02 - 2015-03-18 21:20 - 00002441 ____H () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-03-15 10:02 - 2015-03-15 10:03 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-03-15 10:02 - 2015-03-15 10:02 - 00001949 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2015-03-15 10:02 - 2015-03-15 10:02 - 00000000 ____D () C:\Program Files\Adobe
2015-03-07 08:20 - 2015-03-07 08:20 - 00072359 _____ () C:\Users\Ivana\AppData\Roaming\userenv.xml
2015-03-07 08:20 - 2015-03-07 08:20 - 00000000 ____D () C:\Users\Ivana\AppData\Roaming\spotmau

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-25 19:03 - 2012-07-05 15:35 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-03-25 19:03 - 2010-04-13 23:40 - 01347602 _____ () C:\windows\WindowsUpdate.log
2015-03-25 17:48 - 2009-07-14 05:34 - 00019760 _____ () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-25 17:48 - 2009-07-14 05:34 - 00019760 _____ () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-25 17:45 - 2010-03-27 03:50 - 01582262 _____ () C:\windows\system32\PerfStringBackup.INI
2015-03-25 17:41 - 2012-01-11 09:52 - 00065536 _____ () C:\windows\system32\Ikeext.etl
2015-03-25 17:41 - 2009-07-14 05:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-03-24 23:17 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\rescache
2015-03-24 21:34 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\Microsoft.NET
2015-03-23 20:43 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\tracing
2015-03-23 06:25 - 2010-10-21 15:28 - 00000000 ___RD () C:\Program Files\Skype
2015-03-22 21:09 - 2010-10-20 17:50 - 00000000 ____D () C:\Program Files\trend micro
2015-03-22 20:10 - 2010-08-19 09:21 - 00000270 __RSH () C:\ProgramData\ntuser.pol
2015-03-22 19:45 - 2010-08-19 09:22 - 00113136 _____ () C:\Users\Ivana\AppData\Local\GDIPFONTCACHEV1.DAT
2015-03-22 19:45 - 2009-07-14 03:37 - 00000000 __RHD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-22 19:44 - 2009-07-14 05:33 - 00430712 _____ () C:\windows\system32\FNTCACHE.DAT
2015-03-22 19:35 - 2010-04-13 23:45 - 00000000 ____D () C:\Program Files\LSI SoftModem
2015-03-20 22:59 - 2010-08-19 09:19 - 00000000 ____D () C:\Users\Ivana
2015-03-20 22:56 - 2012-06-30 21:50 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-03-20 22:54 - 2009-07-27 12:09 - 00000000 ____D () C:\Program Files\Windows Journal
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\zh-TW
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\zh-HK
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\zh-CN
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\tr-TR
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\sv-SE
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\ru-RU
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\pt-PT
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\pt-BR
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\pl-PL
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\nl-NL
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\nb-NO
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\ko-KR
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\ja-JP
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\it-IT
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\hu-HU
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\fr-FR
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\fi-FI
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\el-GR
2015-03-20 22:54 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\de-DE
2015-03-20 21:22 - 2012-06-30 21:50 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-03-20 16:51 - 2010-08-19 09:33 - 00000000 ____D () C:\Users\Ivana\AppData\Roaming\Adobe
2015-03-20 16:50 - 2010-10-19 16:19 - 00000000 ____D () C:\Users\Ivana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-03-20 16:45 - 2010-10-18 14:13 - 00000000 ____D () C:\Users\Ivana\AppData\Local\Mozilla
2015-03-19 21:00 - 2010-10-18 16:44 - 00000000 ____D () C:\Users\Ivana\AppData\Roaming\Media Player Classic
2015-03-19 20:59 - 2012-10-26 00:11 - 00000000 ____D () C:\windows\pss
2015-03-18 21:39 - 2012-04-18 20:52 - 00778928 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2015-03-18 21:39 - 2011-08-14 22:56 - 00142512 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2015-03-18 21:37 - 2014-08-19 16:45 - 00000000 ____D () C:\Users\Ivana\AppData\Local\Adobe
2015-03-18 21:18 - 2010-08-19 09:47 - 00000000 ____D () C:\Users\Ivana\AppData\Roaming\hpqLog
2015-03-18 21:14 - 2014-04-29 19:04 - 00024144 _____ () C:\windows\system32\Drivers\aswHwid.sys
2015-03-18 21:14 - 2013-12-26 16:49 - 00106912 _____ (Avast Software s.r.o.) C:\windows\system32\Drivers\aswStm.sys
2015-03-18 21:14 - 2013-03-09 19:28 - 00206976 _____ () C:\windows\system32\Drivers\aswVmm.sys
2015-03-18 21:14 - 2013-03-09 19:28 - 00049904 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2015-03-18 21:14 - 2012-02-24 23:56 - 00081728 _____ (Avast Software s.r.o.) C:\windows\system32\Drivers\aswRdr2.sys
2015-03-18 21:14 - 2011-10-27 18:03 - 00788272 _____ (Avast Software s.r.o.) C:\windows\system32\Drivers\aswSnx.sys
2015-03-18 21:14 - 2011-10-27 18:03 - 00427480 _____ (Avast Software s.r.o.) C:\windows\system32\Drivers\aswSP.sys
2015-03-18 21:14 - 2011-10-27 18:03 - 00073440 _____ (Avast Software s.r.o.) C:\windows\system32\Drivers\aswMonFlt.sys
2015-03-18 08:55 - 2012-06-30 20:03 - 00000000 ____D () C:\Users\Ivana\AppData\Local\Facebook
2015-03-17 22:34 - 2012-06-30 08:15 - 00000000 ____D () C:\Users\Ivana\AppData\Roaming\Zoner
2015-03-17 21:48 - 2014-04-30 22:19 - 00000000 ____D () C:\Users\Ivana\Desktop\ŠPIDLA -CO MÁM
2015-03-17 21:34 - 2010-03-27 03:44 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2015-03-17 21:34 - 2009-07-14 05:52 - 00000000 __RHD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-03-17 21:30 - 2013-08-22 17:45 - 00000000 ____D () C:\Users\Ivana\AppData\Roaming\Seznam.cz
2015-03-17 21:30 - 2011-09-24 09:21 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Brickanoid v.1.0
2015-03-17 21:24 - 2010-10-24 08:22 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spidla
2015-03-17 21:22 - 2010-08-19 15:50 - 00000000 ____D () C:\Users\Ivana\AppData\Local\Google
2015-03-17 20:50 - 2011-09-24 09:10 - 00000000 ____D () C:\Program Files\Virtually Real
2015-03-15 12:53 - 2010-08-19 16:00 - 00000000 ____D () C:\Users\Ivana\AppData\Roaming\Skype
2015-03-15 11:59 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\wfp
2015-03-15 11:58 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\registration
2015-03-15 11:14 - 2011-02-26 14:57 - 00000000 ____D () C:\Users\Ivana\AppData\Local\Ghost
2015-03-15 11:12 - 2011-02-26 14:28 - 00000000 ____D () C:\Users\Ivana\AppData\Local\Crazy Chicken Tales
2015-03-15 11:09 - 2014-07-27 08:23 - 00001096 _____ () C:\Users\Ivana\AppData\Local\MRDownloader.nast
2015-03-15 10:56 - 2012-12-22 14:51 - 00001352 _____ () C:\Users\Ivana\AppData\Local\SRDownloader.nast
2015-03-15 10:56 - 2012-12-22 14:13 - 00002287 _____ () C:\Users\Ivana\AppData\Local\SRDownloader.err
2015-03-15 10:02 - 2010-10-18 15:37 - 00000000 ____D () C:\ProgramData\Adobe
2015-03-13 19:28 - 2012-10-11 23:48 - 00000000 ____D () C:\Users\Ivana\AppData\Local\CrashDumps
2015-03-07 17:51 - 2009-07-14 05:53 - 00032580 _____ () C:\windows\Tasks\SCHEDLGU.TXT
2015-03-07 00:40 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\NDF
2015-03-07 00:34 - 2015-01-22 21:18 - 00011264 _____ () C:\Users\Ivana\AppData\Local\file__0.localstorage
2015-03-05 00:12 - 2014-08-31 17:11 - 00000000 ____D () C:\Users\Ivana\AppData\Roaming\ShamanGS
2015-02-26 21:20 - 2010-10-18 13:58 - 119837696 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-02-24 04:23 - 2010-08-19 12:31 - 00246920 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe

==================== Files in the root of some directories =======

2010-10-24 11:15 - 2011-04-21 06:27 - 0005350 _____ () C:\Users\Ivana\AppData\Roaming\froggy_scorebox
2010-10-24 11:15 - 2011-04-21 06:27 - 0000908 _____ () C:\Users\Ivana\AppData\Roaming\pl_accounts.pl_acc
2010-10-24 11:15 - 2011-04-21 06:27 - 0000556 _____ () C:\Users\Ivana\AppData\Roaming\Troll.options
2015-03-07 08:20 - 2015-03-07 08:20 - 0072359 _____ () C:\Users\Ivana\AppData\Roaming\userenv.xml
2011-03-18 21:49 - 2011-05-21 16:45 - 0022927 _____ () C:\Users\Ivana\AppData\Roaming\UserTile.png
2010-10-18 16:45 - 2012-05-04 21:31 - 0011264 _____ () C:\Users\Ivana\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-22 21:18 - 2015-03-07 00:34 - 0011264 _____ () C:\Users\Ivana\AppData\Local\file__0.localstorage
2014-07-27 14:37 - 2014-07-27 14:37 - 0001072 _____ () C:\Users\Ivana\AppData\Local\MRDownloader(1).nast
2014-09-12 21:13 - 2014-09-12 21:13 - 0001064 _____ () C:\Users\Ivana\AppData\Local\MRDownloader(2).nast
2014-07-27 08:23 - 2015-03-15 11:09 - 0001096 _____ () C:\Users\Ivana\AppData\Local\MRDownloader.nast
2010-10-20 14:26 - 2010-10-20 14:26 - 0000017 _____ () C:\Users\Ivana\AppData\Local\resmon.resmoncfg
2012-02-10 00:07 - 2013-11-13 22:51 - 0001256 _____ () C:\Users\Ivana\AppData\Local\SRDownloader(1).nast
2012-02-05 12:21 - 2014-01-25 14:11 - 0001272 _____ () C:\Users\Ivana\AppData\Local\SRDownloader(2).nast
2013-11-16 20:59 - 2013-11-16 20:59 - 0001064 _____ () C:\Users\Ivana\AppData\Local\SRDownloader(3).nast
2012-12-10 20:21 - 2012-12-10 20:21 - 0001032 _____ () C:\Users\Ivana\AppData\Local\SRDownloader(4).nast
2012-12-22 14:00 - 2012-12-22 14:00 - 0001048 _____ () C:\Users\Ivana\AppData\Local\SRDownloader(6).nast
2012-12-22 14:13 - 2015-03-15 10:56 - 0002287 _____ () C:\Users\Ivana\AppData\Local\SRDownloader.err
2012-12-22 14:51 - 2015-03-15 10:56 - 0001352 _____ () C:\Users\Ivana\AppData\Local\SRDownloader.nast
2010-08-19 16:04 - 2010-08-19 16:04 - 0000056 _____ () C:\ProgramData\ezsidmv.dat
2010-03-27 04:36 - 2010-03-27 04:36 - 0000187 ____H () C:\ProgramData\HPWALog.txt

Some content of TEMP:
====================
C:\Users\Ivana\AppData\Local\temp\Quarantine.exe
C:\Users\Ivana\AppData\Local\temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-03-25 00:24

==================== End Of Log ============================

Re: Prosím o kontrolu

Napsal: 25 bře 2015 19:40
od altrok
:arrow: Vypnete trvale Windows Defender - http://windows.microsoft.com/cs-cz/wind ... =windows-7

:arrow: Mate nainstalovane 2 verze javy - starou (Java 7 Update 75) odinstalujte a ponechte jen tu aktualni (8U40).

  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu bude na plose ulozen fixlog, jehoz obsah mi vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CloseProcesses:
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)

HKU\S-1-5-21-1621432229-590387682-440638948-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
FF SearchEngineOrder.3: Bing 
FF NetworkProxy: "type", 0

2015-03-24 21:19 - 2015-03-24 21:21 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\Ivana\Desktop\mbam-setup-2.1.4.1018.exe
2015-03-23 20:50 - 2015-03-25 17:41 - 00000168 _____ () C:\windows\setupact.log
2015-03-23 20:50 - 2015-03-23 20:50 - 00000000 _____ () C:\windows\setuperr.log
2015-03-23 20:46 - 2015-03-23 20:49 - 00000000 ____D () C:\AdwCleaner
2015-03-23 20:45 - 2015-03-23 20:45 - 02168320 _____ () C:\Users\Ivana\Desktop\adwcleaner_4.113.exe
2015-03-22 21:09 - 2015-03-25 06:14 - 00000000 ____D () C:\rsit
2015-03-22 19:03 - 2015-03-22 19:03 - 01107968 _____ () C:\Users\Ivana\Desktop\RSIT.exe
2015-03-22 21:09 - 2010-10-20 17:50 - 00000000 ____D () C:\Program Files\trend micro

Task: {13362FDF-28B3-4478-BA8E-E1D0AAD3ABD9} - System32\Tasks\{1B0355FA-8068-432A-85D3-3B0109881187} => pcalua.exe -a "C:\Program Files\Virtually Real\AttraX\Uninstal.exe"
Task: {1B6C0D12-9DE6-46B2-80EF-B19323A41DBE} - System32\Tasks\{A3946CAF-C66E-4EA8-B7C3-C96CB647C4A2} => pcalua.exe -a G:\Arkanoid2000\arkinst.exe -d G:\Arkanoid2000
Task: {377C982A-1154-4208-AB3C-493019E858C0} - System32\Tasks\{6A07B840-01E5-48B3-AA5F-A415A63B10E1} => C:\GAMES\TRUCKER 2\CD-Start.exe
Task: {404BBA80-8EB9-44C3-9A43-91108EE17C82} - System32\Tasks\{6589F735-0F94-4330-A12F-937C012D9096} => pcalua.exe -a "C:\Users\Ivana\Desktop\HRY DAVID\Fuk\Uninstall.exe" -d "C:\Users\Ivana\Desktop\HRY DAVID\Fuk"
Task: {424CB1ED-823F-4862-A360-9CB501E7C1A1} - System32\Tasks\{70A92710-F6A4-4F09-AAEF-C46E3E2D3A23} => pcalua.exe -a "D:\Syberia 1a2\Syberia\setup.exe" -d "D:\Syberia 1a2\Syberia"
Task: {464AE62A-2605-4C9C-82C1-247C817C181F} - System32\Tasks\{67FE60A3-EF93-4DEE-A1E6-A36FA9235D4C} => pcalua.exe -a G:\setup.exe -d G:\
Task: {48937543-2290-429F-BD97-96BBDE082289} - System32\Tasks\AVG\PC Tuneup\Integrator\Start On Ivana Logon => C:\Program Files\AVG\AVG PC Tuneup\BoostSpeed.exe
Task: {63EAE315-CC38-4B69-8A37-CDBFB744342C} - System32\Tasks\{D19BB4B8-CF10-400C-8F96-B622DC16C40F} => pcalua.exe -a G:\AUTORUN.EXE -d G:\
Task: {ABB9FA20-4CB2-46CB-A698-1EB7542C9DFA} - System32\Tasks\{6F6301BE-D930-4783-9A13-8B77535E18DD} => pcalua.exe -a "G:\Hry s mašinkama na vypálení\Microsoft Train Simulator\cz_microsoft_train_sim\InstalaceTSCZv10e.exe" -d "G:\Hry s mašinkama na vypálení\Microsoft Train Simulator\cz_microsoft_train_sim"
Task: {AD605B72-2E11-4678-827E-B5BE0B4AFA3B} - System32\Tasks\{71063302-E318-4F3C-A6B8-A575ACDD8D8E} => pcalua.exe -a "G:\SPIDLA - KOLEKCE 85 FULL HER\Ptáčci.exe" -d "G:\SPIDLA - KOLEKCE 85 FULL HER"

AlternateDataStreams: C:\ProgramData:gs5sys
AlternateDataStreams: C:\Users\All Users:gs5sys
AlternateDataStreams: C:\Users\Ivana:gs5sys
AlternateDataStreams: C:\ProgramData\Application Data:gs5sys
AlternateDataStreams: C:\ProgramData\Temp:0B4227B4
AlternateDataStreams: C:\Users\Ivana\Data aplikací:gs5sys
AlternateDataStreams: C:\Users\Ivana\Local Settings:gs5sys
AlternateDataStreams: C:\Users\Ivana\Soubory cookie:gs5sys
AlternateDataStreams: C:\Users\Ivana\Šablony:gs5sys
AlternateDataStreams: C:\Users\Ivana\Desktop\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Ivana\AppData\Local:gs5sys
AlternateDataStreams: C:\Users\Ivana\AppData\Roaming:gs5sys
AlternateDataStreams: C:\Users\Ivana\AppData\Local\Data aplikací:gs5sys
AlternateDataStreams: C:\Users\Ivana\AppData\Local\History:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys
EmptyTemp:
End

Re: Prosím o kontrolu

Napsal: 25 bře 2015 21:00
od vaclavka83
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 11-03-2015
Ran by Ivana at 2015-03-25 20:56:42 Run:1
Running from C:\Users\Ivana\Desktop
Loaded Profiles: Ivana (Available profiles: Ivana)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)

HKU\S-1-5-21-1621432229-590387682-440638948-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF SearchEngineOrder.3: Bing
FF NetworkProxy: "type", 0

2015-03-24 21:19 - 2015-03-24 21:21 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\Ivana\Desktop\mbam-setup-2.1.4.1018.exe
2015-03-23 20:50 - 2015-03-25 17:41 - 00000168 _____ () C:\windows\setupact.log
2015-03-23 20:50 - 2015-03-23 20:50 - 00000000 _____ () C:\windows\setuperr.log
2015-03-23 20:46 - 2015-03-23 20:49 - 00000000 ____D () C:\AdwCleaner
2015-03-23 20:45 - 2015-03-23 20:45 - 02168320 _____ () C:\Users\Ivana\Desktop\adwcleaner_4.113.exe
2015-03-22 21:09 - 2015-03-25 06:14 - 00000000 ____D () C:\rsit
2015-03-22 19:03 - 2015-03-22 19:03 - 01107968 _____ () C:\Users\Ivana\Desktop\RSIT.exe
2015-03-22 21:09 - 2010-10-20 17:50 - 00000000 ____D () C:\Program Files\trend micro

Task: {13362FDF-28B3-4478-BA8E-E1D0AAD3ABD9} - System32\Tasks\{1B0355FA-8068-432A-85D3-3B0109881187} => pcalua.exe -a "C:\Program Files\Virtually Real\AttraX\Uninstal.exe"
Task: {1B6C0D12-9DE6-46B2-80EF-B19323A41DBE} - System32\Tasks\{A3946CAF-C66E-4EA8-B7C3-C96CB647C4A2} => pcalua.exe -a G:\Arkanoid2000\arkinst.exe -d G:\Arkanoid2000
Task: {377C982A-1154-4208-AB3C-493019E858C0} - System32\Tasks\{6A07B840-01E5-48B3-AA5F-A415A63B10E1} => C:\GAMES\TRUCKER 2\CD-Start.exe
Task: {404BBA80-8EB9-44C3-9A43-91108EE17C82} - System32\Tasks\{6589F735-0F94-4330-A12F-937C012D9096} => pcalua.exe -a "C:\Users\Ivana\Desktop\HRY DAVID\Fuk\Uninstall.exe" -d "C:\Users\Ivana\Desktop\HRY DAVID\Fuk"
Task: {424CB1ED-823F-4862-A360-9CB501E7C1A1} - System32\Tasks\{70A92710-F6A4-4F09-AAEF-C46E3E2D3A23} => pcalua.exe -a "D:\Syberia 1a2\Syberia\setup.exe" -d "D:\Syberia 1a2\Syberia"
Task: {464AE62A-2605-4C9C-82C1-247C817C181F} - System32\Tasks\{67FE60A3-EF93-4DEE-A1E6-A36FA9235D4C} => pcalua.exe -a G:\setup.exe -d G:\
Task: {48937543-2290-429F-BD97-96BBDE082289} - System32\Tasks\AVG\PC Tuneup\Integrator\Start On Ivana Logon => C:\Program Files\AVG\AVG PC Tuneup\BoostSpeed.exe
Task: {63EAE315-CC38-4B69-8A37-CDBFB744342C} - System32\Tasks\{D19BB4B8-CF10-400C-8F96-B622DC16C40F} => pcalua.exe -a G:\AUTORUN.EXE -d G:\
Task: {ABB9FA20-4CB2-46CB-A698-1EB7542C9DFA} - System32\Tasks\{6F6301BE-D930-4783-9A13-8B77535E18DD} => pcalua.exe -a "G:\Hry s mašinkama na vypálení\Microsoft Train Simulator\cz_microsoft_train_sim\InstalaceTSCZv10e.exe" -d "G:\Hry s mašinkama na vypálení\Microsoft Train Simulator\cz_microsoft_train_sim"
Task: {AD605B72-2E11-4678-827E-B5BE0B4AFA3B} - System32\Tasks\{71063302-E318-4F3C-A6B8-A575ACDD8D8E} => pcalua.exe -a "G:\SPIDLA - KOLEKCE 85 FULL HER\Ptáčci.exe" -d "G:\SPIDLA - KOLEKCE 85 FULL HER"

AlternateDataStreams: C:\ProgramData:gs5sys
AlternateDataStreams: C:\Users\All Users:gs5sys
AlternateDataStreams: C:\Users\Ivana:gs5sys
AlternateDataStreams: C:\ProgramData\Application Data:gs5sys
AlternateDataStreams: C:\ProgramData\Temp:0B4227B4
AlternateDataStreams: C:\Users\Ivana\Data aplikací:gs5sys
AlternateDataStreams: C:\Users\Ivana\Local Settings:gs5sys
AlternateDataStreams: C:\Users\Ivana\Soubory cookie:gs5sys
AlternateDataStreams: C:\Users\Ivana\Šablony:gs5sys
AlternateDataStreams: C:\Users\Ivana\Desktop\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Ivana\AppData\Local:gs5sys
AlternateDataStreams: C:\Users\Ivana\AppData\Roaming:gs5sys
AlternateDataStreams: C:\Users\Ivana\AppData\Local\Data aplikací:gs5sys
AlternateDataStreams: C:\Users\Ivana\AppData\Local\History:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value not found.
"HKU\S-1-5-21-1621432229-590387682-440638948-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
Firefox SearchEngineOrder.3 deleted successfully.
Firefox Proxy settings were reset.
C:\Users\Ivana\Desktop\mbam-setup-2.1.4.1018.exe => Moved successfully.
C:\windows\setupact.log => Moved successfully.
C:\windows\setuperr.log => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Ivana\Desktop\adwcleaner_4.113.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\Users\Ivana\Desktop\RSIT.exe => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{13362FDF-28B3-4478-BA8E-E1D0AAD3ABD9}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{13362FDF-28B3-4478-BA8E-E1D0AAD3ABD9}" => Key deleted successfully.
C:\Windows\System32\Tasks\{1B0355FA-8068-432A-85D3-3B0109881187} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1B0355FA-8068-432A-85D3-3B0109881187}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1B6C0D12-9DE6-46B2-80EF-B19323A41DBE}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1B6C0D12-9DE6-46B2-80EF-B19323A41DBE}" => Key deleted successfully.
C:\Windows\System32\Tasks\{A3946CAF-C66E-4EA8-B7C3-C96CB647C4A2} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A3946CAF-C66E-4EA8-B7C3-C96CB647C4A2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{377C982A-1154-4208-AB3C-493019E858C0}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{377C982A-1154-4208-AB3C-493019E858C0}" => Key deleted successfully.
C:\Windows\System32\Tasks\{6A07B840-01E5-48B3-AA5F-A415A63B10E1} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6A07B840-01E5-48B3-AA5F-A415A63B10E1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{404BBA80-8EB9-44C3-9A43-91108EE17C82}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{404BBA80-8EB9-44C3-9A43-91108EE17C82}" => Key deleted successfully.
C:\Windows\System32\Tasks\{6589F735-0F94-4330-A12F-937C012D9096} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6589F735-0F94-4330-A12F-937C012D9096}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{424CB1ED-823F-4862-A360-9CB501E7C1A1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{424CB1ED-823F-4862-A360-9CB501E7C1A1}" => Key deleted successfully.
C:\Windows\System32\Tasks\{70A92710-F6A4-4F09-AAEF-C46E3E2D3A23} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{70A92710-F6A4-4F09-AAEF-C46E3E2D3A23}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{464AE62A-2605-4C9C-82C1-247C817C181F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{464AE62A-2605-4C9C-82C1-247C817C181F}" => Key deleted successfully.
C:\Windows\System32\Tasks\{67FE60A3-EF93-4DEE-A1E6-A36FA9235D4C} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{67FE60A3-EF93-4DEE-A1E6-A36FA9235D4C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{48937543-2290-429F-BD97-96BBDE082289}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{48937543-2290-429F-BD97-96BBDE082289}" => Key deleted successfully.
C:\Windows\System32\Tasks\AVG\PC Tuneup\Integrator\Start On Ivana Logon => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVG\PC Tuneup\Integrator\Start On Ivana Logon" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{63EAE315-CC38-4B69-8A37-CDBFB744342C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{63EAE315-CC38-4B69-8A37-CDBFB744342C}" => Key deleted successfully.
C:\Windows\System32\Tasks\{D19BB4B8-CF10-400C-8F96-B622DC16C40F} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D19BB4B8-CF10-400C-8F96-B622DC16C40F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ABB9FA20-4CB2-46CB-A698-1EB7542C9DFA}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ABB9FA20-4CB2-46CB-A698-1EB7542C9DFA}" => Key deleted successfully.
C:\Windows\System32\Tasks\{6F6301BE-D930-4783-9A13-8B77535E18DD} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6F6301BE-D930-4783-9A13-8B77535E18DD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AD605B72-2E11-4678-827E-B5BE0B4AFA3B}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD605B72-2E11-4678-827E-B5BE0B4AFA3B}" => Key deleted successfully.
C:\Windows\System32\Tasks\{71063302-E318-4F3C-A6B8-A575ACDD8D8E} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{71063302-E318-4F3C-A6B8-A575ACDD8D8E}" => Key deleted successfully.
C:\ProgramData => ":gs5sys" ADS removed successfully.
"C:\Users\All Users" => ":gs5sys" ADS not found.
C:\Users\Ivana => ":gs5sys" ADS removed successfully.
"C:\ProgramData\Application Data" => ":gs5sys" ADS not found.
C:\ProgramData\Temp => ":0B4227B4" ADS removed successfully.
"C:\Users\Ivana\Data aplikací" => ":gs5sys" ADS not found.
"C:\Users\Ivana\Local Settings" => ":gs5sys" ADS not found.
"C:\Users\Ivana\Soubory cookie" => ":gs5sys" ADS not found.
"C:\Users\Ivana\Šablony" => ":gs5sys" ADS not found.
C:\Users\Ivana\Desktop\desktop.ini => ":gs5sys" ADS removed successfully.
C:\Users\Ivana\AppData\Local => ":gs5sys" ADS removed successfully.
C:\Users\Ivana\AppData\Roaming => ":gs5sys" ADS removed successfully.
"C:\Users\Ivana\AppData\Local\Data aplikací" => ":gs5sys" ADS not found.
"C:\Users\Ivana\AppData\Local\History" => ":gs5sys" ADS not found.
C:\Users\Public\Documents\desktop.ini => ":gs5sys" ADS removed successfully.
EmptyTemp: => Removed 918.4 MB temporary data.


The system needed a reboot.

==== End of Fixlog 20:57:56 ====

Re: Prosím o kontrolu

Napsal: 26 bře 2015 00:38
od altrok
Vyborne, ted jsou logy ciste. Jak se chova pocitac? Zacneme uklizet ci budeme patrat dal?

Re: Prosím o kontrolu

Napsal: 26 bře 2015 06:45
od vaclavka83
Děkuji No pc není moje, tak nemohu moc soudit..... Ale zdá se mi, že je vše daleko svižnější.... otvírání oken atd.... Ještě jedné věci jsem si všiml..... Na ploše jsou tři ikony, které nejdou smazat.... Zpoved zraleho muze(3).doc Zpoved zraleho muze(2).doc Zpoved zraleho muze.doc Ikona vipadá jako prázdný list papíru. Pokud se stím snažím cokoli udělat, tak na mě vyskočí okno: Tuto položku nebylo možné vyhledat. Položka již není umístěna C:/users/ivana/plocha

Re: Prosím o kontrolu

Napsal: 26 bře 2015 09:12
od altrok
Muze se jednat o zbytky v registru - vycistete registry pomoci CCleaneru (udelejte zalohu, kterou Vam CCleaner nabidne).

Po pouziti CCleaneru - zustavaji ikony i po restartu PC?

Napsal jste jejich presny nazev - vcetne pripadne diakritiky apod.?

  • Do Poznamkoveho bloku zkopirujte text nize (start -> spustit -> notepad)
  • ulozte na plochu jako zkouska.bat - Typ soubor: Vsechny soubory
  • zavrete poznamkovy blok a soubor zkouska.bat spustte dvojklikem
  • na plose Vam prave vznikl textovy soubor aaaaaa.txt, jehoz obsah mi vlozte do pristi odpovedi.

    Kód: Vybrat vše

    dir "%userprofile%\Desktop" > %userprofile%\Desktop\aaaaaa.txt
dir "%userprofile%\Plocha" >> %userprofile%\Desktop\aaaaaa.txt

Re: Prosím o kontrolu

Napsal: 26 bře 2015 10:28
od vaclavka83
Vyčištěno v cccleneru. restartováno, ikony stále vidět... ano název jsem kopíroval....

Re: Prosím o kontrolu

Napsal: 26 bře 2015 10:34
od vaclavka83
Svazek v jednotce C nem  § dnou jmenovku.
S‚riov‚ źˇslo svazku je C88C-137F.

Věpis adres ýe C:\Users\Ivana\Desktop

26.03.2015 10:34 <DIR> .
26.03.2015 10:34 <DIR> ..
26.03.2015 10:34 0 aaaaaa.txt
25.03.2015 19:15 10˙186 Addition.rar
25.03.2015 19:13 33˙156 Addition.txt
19.08.2010 11:53 965 CCleaner.lnk
20.03.2015 16:52 <DIR> Dokumenty
25.03.2015 20:57 11˙849 Fixlog.txt
04.09.2014 21:12 <DIR> FLEćKA 30GB
25.03.2015 19:11 1˙135˙104 FRST.exe
25.03.2015 19:13 74˙400 FRST.txt
16.04.2013 19:37 <DIR> hry nemazat
11.01.2014 11:20 71˙648 http _empire.goodgamestudios.com_.htm
19.08.2010 09:26 1˙413 Internet Explorer.lnk
18.10.2010 16:44 1˙742 Media Player.lnk
27.07.2014 08:20 911˙360 MRDownloader.exe
19.08.2010 11:40 359 Poźˇtaź.lnk
12.03.2015 22:13 239˙399 týˇda 8B.jpg
25.02.2011 21:06 1˙672 WebcamApp - z stupce.lnk
18.10.2010 17:33 967 WinRAR.lnk
26.03.2015 10:33 126 zkouska.bat
20.10.2010 03:26 0 Zpoved zraleho muze(2).doc
20.10.2010 03:26 0 Zpoved zraleho muze(3).doc
20.10.2010 03:26 0 Zpoved zraleho muze.doc
17.03.2015 21:48 <DIR> ćPIDLA -CO MµM
Soubor…: 19, Bajt…: 2˙494˙346
Adres ý…: 6, Volněch bajt…: 432˙579˙788˙800
Svazek v jednotce C nem  § dnou jmenovku.
S‚riov‚ źˇslo svazku je C88C-137F.

Věpis adres ýe C:\Users\Ivana

Re: Prosím o kontrolu

Napsal: 26 bře 2015 10:42
od altrok
  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu bude na plose ulozen fixlog, jehoz obsah mi vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CloseProcesses:
Unlock: C:\Users\Ivana\Desktop\Zpoved zraleho muze(2).doc
C:\Users\Ivana\Desktop\Zpoved zraleho muze(2).doc
Unlock: C:\Users\Ivana\Desktop\Zpoved zraleho muze(3).doc
C:\Users\Ivana\Desktop\Zpoved zraleho muze(3).doc
Unlock: C:\Users\Ivana\Desktop\Zpoved zraleho muze.doc
C:\Users\Ivana\Desktop\Zpoved zraleho muze.doc
Reboot:
End
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz