VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Nastydlý NTB

https://forum.viry.cz:443/viewtopic.php?t=145889

Stránka 1 z 1

Nastydlý NTB

Napsal: 31 srp 2015 13:42
od identix
Dobrý den, nevím sice jak se do PC dostal, ale silně mě otravuje Record Page. Vytvořil jsem log FRST a chci požádat o pomoc. Několik let jsem neměl na PC vir a teď toto.

Děkuji moc za pomoc.

Log FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:30-08-2015
Ran by VAIO (administrator) on VAIO-PC (31-08-2015 14:35:47)
Running from C:\Users\VAIO\Downloads
Loaded Profiles: VAIO (Available Profiles: VAIO & Tomas & Eva & Guest)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvservice.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(UPEK Inc.) C:\Program Files\Protector Suite\upeksvr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(QUALCOMM, Inc.) C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kSony.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Oki Data Corporation) C:\Program Files (x86)\Okidata\ActKey\Network Configuration.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IntelWireless] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1928976 2010-03-05] (Intel(R) Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [9962016 2010-09-16] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1886504 2010-05-17] (Synaptics Incorporated)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [877600 2010-09-16] (Realtek Semiconductor)
HKLM\...\Run: [Network Configuration] => C:\Program Files (x86)\Okidata\ActKey\Network Configuration.exe [728640 2014-09-15] (Oki Data Corporation)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-03] (Intel Corporation)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [316784 2010-01-15] (Sony Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [39175960 2015-08-14] (Dropbox, Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2687520 2015-08-25] (Sony Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\psfus: C:\Program Files\Protector Suite\psqlpwd.dll (UPEK Inc.)
HKU\S-1-5-21-2479660694-2464071941-3064966213-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8455960 2015-08-20] (Piriform Ltd)
Lsa: [Notification Packages] scecli C:\Program Files\Protector Suite\psqlpwd.dll
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-06-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-06-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-06-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [UEAFOverlay] -> {F2F31467-B1AC-4df0-AE79-FD5FA085E22B} => C:\Program Files\Protector Suite\farchns.dll [2010-04-27] (UPEK Inc.)
ShellIconOverlayIdentifiers: [UEAFOverlayOpen] -> {A3E208F7-0E3A-4182-A7A6-B169D5D691AA} => C:\Program Files\Protector Suite\farchns.dll [2010-04-27] (UPEK Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
Startup: C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2013-11-08]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{BD48C6A0-A08E-49B9-B353-2F0EA29C119F}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{E689F427-283E-48A1-B493-D79ECAB67F96}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2479660694-2464071941-3064966213-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2479660694-2464071941-3064966213-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2479660694-2464071941-3064966213-1000 -> DefaultScope {90753D3C-C8FE-466D-A517-E892CB585E5C} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
SearchScopes: HKU\S-1-5-21-2479660694-2464071941-3064966213-1000 -> {90753D3C-C8FE-466D-A517-E892CB585E5C} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-06-09] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-30] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-06-09] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-06-16] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-30] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2015-06-09] (Microsoft Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\URLREDIR.DLL [2015-06-09] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2015-06-16] (Microsoft Corporation)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-04-14] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\VAIO\AppData\Roaming\Mozilla\Firefox\Profiles\ts2wpedn.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-31] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2014-02-17] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-30] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-11-04] (Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2014-02-17] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2014-02-17] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-31] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2014-02-17] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-17] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL [2013-11-04] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll [2008-09-10] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll [2008-09-10] (RealNetworks, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2014-02-17] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2014-02-17] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2479660694-2464071941-3064966213-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2014-02-17] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2479660694-2464071941-3064966213-1000: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2014-02-17] (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll [2014-02-17] (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2014-10-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2014-10-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2014-10-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2014-10-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2014-10-01] (Apple Inc.)

Chrome:
=======
CHR Profile: C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-19]
CHR Extension: (Google Docs) - C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-19]
CHR Extension: (Google Drive) - C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-19]
CHR Extension: (YouTube) - C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-19]
CHR Extension: (Google Search) - C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-19]
CHR Extension: (Google Sheets) - C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-19]
CHR Extension: (Google Wallet) - C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-19]
CHR Extension: (Gmail) - C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-19]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2753720 2015-07-01] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-28] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-28] (Dropbox, Inc.)
R2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2015-02-04] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-03-05] ()
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [50688 2012-07-31] (Hewlett-Packard) [File not signed]
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
R2 nvservice; C:\Windows\system32\nvservice.exe [192800 2013-02-04] (NVIDIA Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [496160 2015-08-25] (Sony Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [66048 2012-07-31] (Hewlett-Packard) [File not signed]
R2 QDLService2kSony; C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kSony.exe [330488 2009-12-03] (QUALCOMM, Inc.)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [266168 2015-02-04] (Intel Corporation)
S3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2015-02-04] (Intel Corporation)
R2 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [845312 2010-08-11] (Sony Corporation) [File not signed]
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1642544 2014-02-28] (Sony Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 blackberryncm; C:\Windows\System32\DRIVERS\blackberryncm6_AMD64.sys [25088 2014-09-08] (BlackBerry) [File not signed]
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [43664 2015-08-31] ()
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-05-04] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
R3 NETwNs64; C:\Windows\System32\DRIVERS\NETwsw01.sys [11532704 2015-05-04] (Intel Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation)
S3 qcfilterSny2k; C:\Windows\System32\DRIVERS\qcfilterSny2k.sys [6400 2009-12-03] (QUALCOMM Incorporated)
S3 qcusbnetsny2k; C:\Windows\System32\DRIVERS\qcusbnetsny2k.sys [240640 2009-12-03] (QUALCOMM Incorporated)
S3 qcusbsersny2k; C:\Windows\System32\DRIVERS\qcusbserSny2k.sys [121216 2009-12-03] (QUALCOMM Incorporated)
S3 rimvndis; C:\Windows\System32\Drivers\rimvndis6_AMD64.sys [17920 2014-11-28] (Research in Motion Limited) [File not signed]
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
R3 semav6thermal64ro; C:\Windows\system32\drivers\semav6thermal64ro.sys [13792 2015-08-17] ()
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2015-05-04] (Synaptics Incorporated)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
S3 catchme; \??\C:\Killer\catchme.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 phidmice; system32\DRIVERS\phidmice.sys [X]
S3 pmouself; system32\DRIVERS\pmouself.sys [X]
S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X]
S3 Ser2pl; system32\DRIVERS\ser2pl64.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-31 14:35 - 2015-08-31 14:36 - 00028293 _____ C:\Users\VAIO\Downloads\FRST.txt
2015-08-31 14:35 - 2015-08-31 14:35 - 00000000 ____D C:\FRST
2015-08-31 14:34 - 2015-08-31 14:34 - 02188288 _____ (Farbar) C:\Users\VAIO\Desktop\FRST64.exe
2015-08-31 14:25 - 2015-08-31 14:32 - 00000000 ____D C:\Users\VAIO\AppData\Local\Mozilla
2015-08-31 10:26 - 2015-08-31 10:26 - 00000774 _____ C:\Users\Tomas\Downloads\adobe_flash_player.appref-ms
2015-08-31 10:23 - 2015-08-31 10:23 - 00043664 _____ C:\Windows\system32\Drivers\hitmanpro37.sys
2015-08-31 09:45 - 2015-08-31 09:45 - 00001898 _____ C:\Windows\system32\.crusader
2015-08-31 09:40 - 2015-08-31 10:22 - 00000000 ____D C:\ProgramData\HitmanPro
2015-08-31 09:39 - 2015-08-31 09:40 - 11352032 _____ (SurfRight B.V.) C:\Users\Tomas\Downloads\HitmanPro_x64.exe
2015-08-31 09:28 - 2015-08-31 09:28 - 00000774 _____ C:\Users\VAIO\Downloads\adobe_flash_player.appref-ms
2015-08-31 09:13 - 2015-08-31 10:28 - 00002121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2015-08-31 09:13 - 2015-08-31 10:27 - 00000000 ____D C:\Program Files\Microsoft Security Client
2015-08-31 09:13 - 2015-08-31 10:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2015-08-31 08:33 - 2015-08-31 08:52 - 00000000 ____D C:\Killer
2015-08-31 07:58 - 2015-08-31 07:58 - 00000000 ____D C:\Users\VAIO\AppData\Local\Sony Corporation
2015-08-31 02:42 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2015-08-31 02:42 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2015-08-31 02:42 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-08-31 02:42 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-08-31 02:42 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-08-31 02:42 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2015-08-31 02:42 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2015-08-31 02:42 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2015-08-31 02:41 - 2015-08-31 08:24 - 00000000 ____D C:\Windows\erdnt
2015-08-31 02:05 - 2015-08-31 09:26 - 00000000 ____D C:\AdwCleaner
2015-08-31 02:04 - 2015-08-31 02:04 - 00000000 ____D C:\Program Files (x86)\ESET
2015-08-31 01:55 - 2015-08-31 09:02 - 00001488 _____ C:\Users\Tomas\Desktop\Avast Browser Cleanup.lnk
2015-08-31 01:55 - 2015-08-31 01:55 - 00004228 _____ C:\Windows\System32\Tasks\avast! BCU UpdateS-1-5-21-2479660694-2464071941-3064966213-1001
2015-08-31 01:55 - 2015-08-31 01:55 - 00003292 _____ C:\Windows\System32\Tasks\avastBCLS-1-5-21-2479660694-2464071941-3064966213-1001
2015-08-31 01:55 - 2015-08-31 01:55 - 00000000 ____D C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Avast Browser Cleanup
2015-08-31 01:55 - 2015-08-31 01:55 - 00000000 ____D C:\Users\Tomas\AppData\Roaming\AVAST Software
2015-08-31 00:46 - 2015-08-31 00:46 - 00000000 ____D C:\Users\Tomas\AppData\Roaming\Sun
2015-08-31 00:46 - 2015-08-31 00:46 - 00000000 ____D C:\Users\Tomas\.oracle_jre_usage
2015-08-30 17:56 - 2015-08-30 17:56 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Sun
2015-08-30 17:56 - 2015-08-30 17:56 - 00000000 ____D C:\Users\Eva\.oracle_jre_usage
2015-08-30 17:51 - 2015-08-30 17:51 - 00000000 ____D C:\Users\Eva\AppData\Local\Dropbox
2015-08-30 17:03 - 2015-08-30 17:03 - 00000000 ____D C:\Users\VAIO\AppData\Roaming\Sun
2015-08-30 17:03 - 2015-08-30 17:03 - 00000000 ____D C:\Users\VAIO\.oracle_jre_usage
2015-08-29 23:14 - 2015-08-29 23:14 - 00001443 _____ C:\Users\Tomas\AppData\Local\recently-used.xbel
2015-08-29 22:55 - 2015-08-29 22:55 - 00000000 ____D C:\Users\Tomas\AppData\Local\webkit
2015-08-29 20:53 - 2015-08-29 20:53 - 00000000 ____D C:\Users\Tomas\.thumbnails
2015-08-29 20:51 - 2015-08-29 23:28 - 00000000 ____D C:\Users\Tomas\.gimp-2.8
2015-08-29 20:51 - 2015-08-29 20:51 - 00000000 ____D C:\Users\Tomas\AppData\Local\gegl-0.2
2015-08-29 20:47 - 2015-08-29 20:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GimpShop
2015-08-29 20:46 - 2015-08-29 20:47 - 00000000 ____D C:\Program Files (x86)\GimpShop
2015-08-29 20:45 - 2015-08-29 20:45 - 00000000 ____D C:\Users\VAIO\AppData\Roaming\Opera Software
2015-08-29 20:45 - 2015-08-29 20:45 - 00000000 ____D C:\Users\VAIO\AppData\Local\Opera Software
2015-08-29 00:46 - 2015-08-31 14:33 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-08-29 00:46 - 2015-08-29 00:46 - 00001070 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-29 00:46 - 2015-08-29 00:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-29 00:46 - 2015-08-29 00:46 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-29 00:46 - 2015-08-29 00:46 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-29 00:46 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-08-29 00:46 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-08-29 00:46 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-08-28 22:39 - 2015-08-28 22:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-28 22:38 - 2015-08-31 14:20 - 00000900 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2015-08-28 22:38 - 2015-08-31 09:43 - 00000904 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2015-08-28 22:38 - 2015-08-29 00:01 - 00000000 ____D C:\Users\VAIO\AppData\Local\Dropbox
2015-08-28 22:38 - 2015-08-28 22:39 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-08-28 22:38 - 2015-08-28 22:38 - 00003900 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2015-08-28 22:38 - 2015-08-28 22:38 - 00003648 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2015-08-28 22:38 - 2015-08-28 22:38 - 00000000 ____D C:\Users\Tomas\AppData\Local\Dropbox
2015-08-28 22:38 - 2015-08-28 22:38 - 00000000 ____D C:\ProgramData\Dropbox
2015-08-28 22:23 - 2015-08-31 14:28 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0e1cf779981ee.job
2015-08-28 22:23 - 2015-08-31 14:20 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0e1cf776fb232.job
2015-08-28 22:23 - 2015-08-28 22:23 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0e1cf779981ee
2015-08-28 22:23 - 2015-08-28 22:23 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0e1cf776fb232
2015-08-28 13:56 - 2015-08-29 20:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-25 23:58 - 2015-08-11 03:20 - 25191936 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-08-25 23:58 - 2015-08-11 03:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-08-25 23:58 - 2015-08-11 02:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-08-25 23:58 - 2015-08-11 02:20 - 19871232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-08-25 23:54 - 2015-07-23 02:06 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-25 23:54 - 2015-07-23 02:06 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-08-25 23:54 - 2015-07-23 02:06 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-08-25 23:54 - 2015-07-23 02:03 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-25 23:54 - 2015-07-23 02:03 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-08-25 23:54 - 2015-07-23 02:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-08-25 23:54 - 2015-07-23 02:03 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-08-25 23:54 - 2015-07-23 02:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-08-25 23:54 - 2015-07-23 02:02 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-08-25 23:54 - 2015-07-23 02:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-08-25 23:54 - 2015-07-23 02:02 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-08-25 23:54 - 2015-07-23 02:01 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-08-25 23:54 - 2015-07-23 02:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-08-25 23:54 - 2015-07-23 02:01 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-08-25 23:54 - 2015-07-23 01:58 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-08-25 23:54 - 2015-07-23 01:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-25 23:54 - 2015-07-23 01:51 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-08-25 23:54 - 2015-07-22 19:57 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-08-25 23:54 - 2015-07-22 19:57 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-08-25 23:54 - 2015-07-22 19:54 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-08-25 23:54 - 2015-07-22 19:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-08-25 23:54 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-08-25 23:54 - 2015-07-22 19:53 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-08-25 23:54 - 2015-07-22 19:53 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-08-25 23:54 - 2015-07-22 19:53 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-08-25 23:54 - 2015-07-22 19:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-08-25 23:54 - 2015-07-22 19:53 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-08-25 23:54 - 2015-07-22 19:53 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-08-25 23:54 - 2015-07-22 19:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-08-25 23:54 - 2015-07-22 19:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-08-25 23:54 - 2015-07-22 19:53 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-08-25 23:54 - 2015-07-22 19:53 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-08-25 23:54 - 2015-07-22 19:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-08-25 23:54 - 2015-07-22 19:52 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-08-25 23:54 - 2015-07-22 19:52 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-08-25 23:54 - 2015-07-22 19:52 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-08-25 23:54 - 2015-07-22 19:52 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-08-25 23:54 - 2015-07-22 19:52 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-08-25 23:54 - 2015-07-22 19:52 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-08-25 23:54 - 2015-07-22 19:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-08-25 23:54 - 2015-07-22 19:47 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-08-25 23:54 - 2015-07-22 19:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 18:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-08-25 23:54 - 2015-07-22 18:45 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-08-25 23:54 - 2015-07-22 18:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-08-25 23:54 - 2015-07-22 18:44 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-08-25 23:54 - 2015-07-22 18:34 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-08-25 23:54 - 2015-07-22 18:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-08-25 23:54 - 2015-07-22 18:31 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 18:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 18:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-25 23:54 - 2015-07-22 18:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-25 23:54 - 2015-07-15 05:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-08-25 23:54 - 2015-07-15 04:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-08-25 23:54 - 2015-07-09 19:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-08-25 23:54 - 2015-07-09 19:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-08-25 23:54 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-08-25 23:54 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-08-25 23:50 - 2015-06-25 12:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-08-25 23:50 - 2015-06-25 12:01 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-08-25 23:50 - 2015-06-25 12:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-08-25 23:50 - 2015-06-25 11:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-08-25 22:30 - 2015-08-31 08:33 - 00000000 ____D C:\Qoobox
2015-08-25 22:27 - 2015-08-29 23:58 - 05636265 ____R (Swearware) C:\Users\VAIO\Desktop\Killer.exe
2015-08-20 01:49 - 2015-08-20 01:49 - 00006242 _____ C:\Users\Tomas\Desktop\Paní Franke jsme představili 4PL.odt
2015-08-17 21:29 - 2015-08-31 09:17 - 00000000 ____D C:\Users\VAIO\AppData\Roaming\iolo
2015-08-17 21:29 - 2015-08-18 00:00 - 00000000 ____D C:\ProgramData\iolo
2015-08-17 21:29 - 2015-08-17 21:29 - 00074703 _____ C:\Windows\SysWOW64\mfc45.dll
2015-08-17 21:29 - 2015-08-17 21:29 - 00013792 _____ C:\Windows\system32\Drivers\semav6thermal64ro.sys
2015-08-17 21:29 - 2015-08-17 21:29 - 00003126 _____ C:\Windows\System32\Tasks\USER_ESRV_SVC
2015-08-17 21:29 - 2015-08-17 21:29 - 00002031 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care.lnk
2015-08-17 21:29 - 2015-08-17 21:29 - 00000000 __RHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2015-08-17 21:29 - 2015-02-04 16:37 - 00069000 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2015-08-17 21:29 - 2015-02-04 16:37 - 00021176 _____ (iolo technologies, LLC) C:\Windows\system32\iolorgdf64.exe
2015-08-17 21:25 - 2015-08-17 21:25 - 00001149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2015-08-17 20:52 - 2015-08-17 20:52 - 00000000 ____D C:\Users\Tomas\Documents\Sony PMB
2015-08-17 20:51 - 2015-08-17 20:51 - 00002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayMemories Home.lnk
2015-08-17 20:51 - 2015-08-17 20:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayMemories Home
2015-08-17 20:35 - 2015-08-17 20:35 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-08-17 20:35 - 2013-02-04 12:30 - 00192800 _____ (NVIDIA Corporation) C:\Windows\system32\nvservice.exe
2015-08-17 19:11 - 2015-08-29 00:04 - 00000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-08-17 19:11 - 2015-08-29 00:03 - 00000000 ____D C:\Program Files\CCleaner
2015-08-17 19:11 - 2015-08-17 19:11 - 00002786 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-08-17 19:11 - 2015-08-17 19:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-17 11:52 - 2013-02-05 08:58 - 00000104 _____ C:\Windows\system32\opnetext.ver
2015-08-17 11:52 - 2013-01-29 18:39 - 00130048 ____N (Oki Data Corporation) C:\Windows\system32\opnetext.dll
2015-08-17 11:52 - 2013-01-29 10:03 - 00010104 ____N C:\Windows\SysWOW64\opnetext.hlp
2015-08-17 11:52 - 2013-01-29 10:03 - 00010104 ____N C:\Windows\system32\OPNETEXT.HLP
2015-08-17 11:52 - 2013-01-29 10:03 - 00005832 ____N C:\Windows\system32\license.txt
2015-08-17 11:52 - 2013-01-29 10:03 - 00003844 ____N C:\Windows\system32\opnedef.str
2015-08-17 11:52 - 2013-01-29 10:03 - 00000144 ____N C:\Windows\SysWOW64\opnetext.cnt
2015-08-17 11:52 - 2013-01-29 10:03 - 00000144 ____N C:\Windows\system32\opnetext.cnt
2015-08-17 11:52 - 2013-01-29 10:03 - 00000000 ____N C:\Windows\SysWOW64\opnetext.gid
2015-08-17 11:52 - 2013-01-29 10:03 - 00000000 ____N C:\Windows\system32\OPNETEXT.GID
2015-08-17 11:50 - 2015-08-17 11:50 - 00000000 ____D C:\_okidata_temp_uninst
2015-08-17 11:34 - 2015-04-17 09:54 - 00000000 ____D C:\Users\Tomas\Desktop\AKY_ALL_010901_0
2015-08-17 08:21 - 2015-08-17 08:21 - 00000000 ____D C:\Users\Tomas\AppData\Roaming\Auslogics
2015-08-17 08:07 - 2015-08-17 21:15 - 00000000 ____D C:\Users\VAIO\AppData\Roaming\Auslogics
2015-08-17 08:07 - 2015-08-17 08:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2015-08-17 08:07 - 2015-08-17 08:07 - 00000000 ____D C:\Program Files (x86)\Auslogics
2015-08-16 23:59 - 2015-07-30 15:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-16 23:59 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-16 22:48 - 2015-08-16 22:48 - 00119920 _____ C:\Users\VAIO\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-16 22:28 - 2015-08-16 22:28 - 00000000 ____D C:\$SysReset
2015-08-16 22:24 - 2015-07-16 21:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-08-16 22:24 - 2015-07-16 21:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-08-16 22:24 - 2015-07-16 21:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-08-16 22:24 - 2015-07-16 21:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-16 22:24 - 2015-07-16 21:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-08-16 22:24 - 2015-07-16 21:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-08-16 22:24 - 2015-07-15 20:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-16 22:24 - 2015-07-15 20:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-08-16 22:24 - 2015-07-15 20:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-16 22:24 - 2015-07-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-08-16 22:23 - 2015-07-21 02:39 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-08-16 22:23 - 2015-07-21 02:12 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-08-16 22:23 - 2015-07-16 22:54 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-08-16 22:23 - 2015-07-16 22:37 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-08-16 22:23 - 2015-07-16 22:36 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-08-16 22:23 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-08-16 22:23 - 2015-07-16 22:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-08-16 22:23 - 2015-07-16 22:35 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-08-16 22:23 - 2015-07-16 22:35 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-08-16 22:23 - 2015-07-16 22:27 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-08-16 22:23 - 2015-07-16 22:26 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-08-16 22:23 - 2015-07-16 22:26 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-08-16 22:23 - 2015-07-16 22:23 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-08-16 22:23 - 2015-07-16 22:21 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-08-16 22:23 - 2015-07-16 22:21 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-08-16 22:23 - 2015-07-16 22:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-08-16 22:23 - 2015-07-16 22:21 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-08-16 22:23 - 2015-07-16 22:12 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-16 22:23 - 2015-07-16 22:08 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-08-16 22:23 - 2015-07-16 22:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-16 22:23 - 2015-07-16 21:55 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-08-16 22:23 - 2015-07-16 21:54 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-08-16 22:23 - 2015-07-16 21:51 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-08-16 22:23 - 2015-07-16 21:51 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-08-16 22:23 - 2015-07-16 21:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-08-16 22:23 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-08-16 22:23 - 2015-07-16 21:50 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-08-16 22:23 - 2015-07-16 21:49 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-08-16 22:23 - 2015-07-16 21:45 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-08-16 22:23 - 2015-07-16 21:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-08-16 22:23 - 2015-07-16 21:43 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-08-16 22:23 - 2015-07-16 21:41 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-08-16 22:23 - 2015-07-16 21:39 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-08-16 22:23 - 2015-07-16 21:39 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-08-16 22:23 - 2015-07-16 21:38 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-08-16 22:23 - 2015-07-16 21:36 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-08-16 22:23 - 2015-07-16 21:35 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-08-16 22:23 - 2015-07-16 21:34 - 14451200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-08-16 22:23 - 2015-07-16 21:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-08-16 22:23 - 2015-07-16 21:32 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-08-16 22:23 - 2015-07-16 21:29 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-08-16 22:23 - 2015-07-16 21:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-08-16 22:23 - 2015-07-16 21:20 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-08-16 22:23 - 2015-07-16 21:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-08-16 22:23 - 2015-07-16 21:17 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-08-16 22:23 - 2015-07-16 21:12 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-08-16 22:23 - 2015-07-16 21:12 - 02427904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-08-16 22:23 - 2015-07-16 21:10 - 12856832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-08-16 22:23 - 2015-07-16 21:06 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-08-16 22:23 - 2015-07-16 21:06 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-08-16 22:23 - 2015-07-16 21:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-08-16 22:23 - 2015-07-16 21:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-08-16 22:23 - 2015-07-16 20:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-08-16 22:23 - 2015-07-16 20:42 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-08-16 22:23 - 2015-07-16 20:38 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-08-16 22:23 - 2015-07-16 20:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-08-16 22:23 - 2015-07-15 05:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-16 22:21 - 2015-07-30 20:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-16 22:21 - 2015-07-30 20:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-16 22:21 - 2015-07-30 20:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-16 22:21 - 2015-07-30 20:06 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-08-16 22:21 - 2015-07-30 20:06 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-16 22:21 - 2015-07-30 20:06 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-08-16 22:21 - 2015-07-30 20:06 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-08-16 22:21 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-08-16 22:21 - 2015-07-30 19:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-16 22:21 - 2015-07-30 19:57 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-08-16 22:21 - 2015-07-30 19:57 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-08-16 22:21 - 2015-07-30 19:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-08-16 22:21 - 2015-07-30 19:55 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-08-16 22:21 - 2015-07-30 18:56 - 03208192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-16 22:21 - 2015-07-30 18:52 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-16 22:21 - 2015-07-30 18:49 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-08-16 22:21 - 2015-07-15 05:19 - 02004992 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-16 22:21 - 2015-07-15 05:19 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-16 22:21 - 2015-07-15 05:14 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-08-16 22:21 - 2015-07-15 05:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-08-16 22:21 - 2015-07-15 04:55 - 01390592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-08-16 22:21 - 2015-07-15 04:55 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-08-16 22:21 - 2015-07-15 04:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-08-16 22:21 - 2015-07-15 04:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-08-16 22:21 - 2015-07-10 19:51 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-16 22:21 - 2015-07-10 19:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-08-16 22:21 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-16 22:21 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-16 22:21 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-08-16 22:21 - 2015-07-01 22:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-16 22:21 - 2015-07-01 22:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-08-16 22:21 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-08-16 22:21 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-08-16 22:08 - 2015-08-31 10:26 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{7809B002-6FCC-4D50-8779-321597BA0037}
2015-08-13 11:38 - 2015-08-16 23:00 - 00000000 ___RD C:\Users\Eva\SkyDrive
2015-08-12 00:07 - 2015-08-18 03:02 - 00000000 ____D C:\Update
2015-08-11 23:17 - 2015-08-16 23:00 - 00000000 ____D C:\Users\Tomas\Desktop\plocha
2015-08-09 13:59 - 2015-08-16 23:01 - 00000000 ____D C:\Recovery
2015-08-09 13:55 - 2015-08-22 10:33 - 00002147 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-09 13:27 - 2015-08-09 13:27 - 00008192 _____ C:\Windows\system32\config\userdiff
2015-08-09 12:20 - 2015-08-09 13:59 - 00021879 _____ C:\Windows\diagerr.xml
2015-08-09 12:20 - 2015-08-09 13:59 - 00020958 _____ C:\Windows\diagwrn.xml
2015-08-07 12:04 - 2015-07-28 22:09 - 00017344 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-08-07 12:04 - 2015-07-28 22:05 - 01116672 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-08-07 12:04 - 2015-07-28 22:05 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-08-07 12:04 - 2015-07-28 22:05 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-08-07 12:04 - 2015-07-28 22:05 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-08-07 12:04 - 2015-07-28 22:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-08-07 12:04 - 2015-07-28 22:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-08-07 12:04 - 2015-07-28 21:55 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-08-07 12:04 - 2015-07-20 20:12 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-08-07 12:04 - 2015-07-20 20:12 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-08-07 12:04 - 2015-07-20 20:12 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-08-07 12:04 - 2015-07-20 20:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-08-07 12:04 - 2015-07-20 20:12 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-08-07 12:04 - 2015-07-20 20:12 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-08-07 12:04 - 2015-07-20 20:12 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-08-07 12:04 - 2015-07-20 20:12 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-08-07 12:04 - 2015-07-20 20:12 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-08-07 12:04 - 2015-07-20 20:12 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-08-07 12:04 - 2015-07-20 20:12 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-08-07 12:04 - 2015-07-20 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-08-07 12:04 - 2015-07-20 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-08-07 12:04 - 2015-07-20 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-08-07 12:04 - 2015-07-20 19:56 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-08-07 12:04 - 2015-07-20 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-08-07 00:51 - 2015-08-07 00:58 - 00000000 ____D C:\.Trash-999
2015-08-07 00:17 - 2015-08-31 14:04 - 01995336 ____N C:\Windows\WindowsUpdate.log
2015-08-07 00:14 - 2015-08-07 00:14 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
2015-08-06 23:00 - 2015-08-17 00:02 - 00475864 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-06 11:29 - 2015-08-06 11:29 - 00000000 ____D C:\Users\Tomas\AppData\Local\NVIDIA
2015-08-06 11:28 - 2015-07-03 06:28 - 00069992 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-08-06 11:28 - 2015-07-03 06:28 - 00065896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-08-06 11:28 - 2015-07-03 06:28 - 00047976 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-31 14:25 - 2014-04-08 10:43 - 00000000 ____D C:\Users\Tomas\OneDrive
2015-08-31 14:25 - 2014-01-17 23:01 - 00000000 ____D C:\Users\VAIO\AppData\Roaming\Mozilla
2015-08-31 14:24 - 2013-03-25 23:40 - 00000000 ____D C:\Users\Tomas\Documents\Soubory aplikace Outlook
2015-08-31 14:21 - 2015-01-16 11:28 - 00000000 ___RD C:\Users\Tomas\Dropbox
2015-08-31 14:21 - 2015-01-16 11:26 - 00000000 ____D C:\Users\Tomas\AppData\Roaming\Dropbox
2015-08-31 14:21 - 2014-10-01 16:49 - 00000000 ____D C:\Users\Tomas\AppData\Local\0A41A807-236E-4E22-B14E-2AA161CF164C.aplzod
2015-08-31 14:21 - 2014-10-01 16:48 - 00000000 ___RD C:\Users\Tomas\iCloudDrive
2015-08-31 14:08 - 2009-07-14 06:45 - 00018752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-31 14:08 - 2009-07-14 06:45 - 00018752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-31 14:05 - 2014-08-15 12:23 - 00704412 _____ C:\Windows\system32\perfh007.dat
2015-08-31 14:05 - 2014-08-15 12:23 - 00156754 _____ C:\Windows\system32\perfc007.dat
2015-08-31 14:05 - 2009-07-14 17:18 - 00689606 _____ C:\Windows\system32\perfh005.dat
2015-08-31 14:05 - 2009-07-14 17:18 - 00149672 _____ C:\Windows\system32\perfc005.dat
2015-08-31 14:05 - 2009-07-14 07:13 - 02494996 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-31 14:00 - 2015-04-07 23:00 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2015-08-31 14:00 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-31 10:28 - 2013-03-25 19:02 - 00001945 _____ C:\Windows\epplauncher.mif
2015-08-31 09:28 - 2014-11-05 20:30 - 00000000 ____D C:\Users\VAIO\AppData\Local\Apps\2.0
2015-08-31 09:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\tracing
2015-08-31 08:43 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-08-31 00:46 - 2013-03-25 21:27 - 00000000 ____D C:\Users\Tomas
2015-08-31 00:39 - 2012-11-08 13:22 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-31 00:39 - 2012-11-08 13:22 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-31 00:38 - 2014-10-20 02:14 - 00000000 ____D C:\Users\VAIO\AppData\Local\Adobe
2015-08-31 00:38 - 2013-03-27 18:43 - 00000000 ____D C:\Users\Tomas\AppData\Local\Adobe
2015-08-30 17:56 - 2013-04-10 23:27 - 00000000 ____D C:\Users\Eva
2015-08-30 17:51 - 2013-04-10 23:27 - 00000008 __RSH C:\Users\Eva\ntuser.pol
2015-08-30 17:14 - 2015-03-22 18:18 - 00000000 ____D C:\Users\Tomas\Documents\Enpass
2015-08-30 17:03 - 2015-03-24 20:37 - 00110688 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-08-30 17:03 - 2014-04-27 21:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-30 17:03 - 2014-04-27 21:26 - 00000000 ____D C:\Program Files\Java
2015-08-30 17:03 - 2012-11-08 11:13 - 00000000 ____D C:\Users\VAIO
2015-08-30 16:42 - 2012-11-08 11:14 - 00001397 _____ C:\Users\VAIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-08-29 23:57 - 2013-03-25 21:21 - 00000008 __RSH C:\Users\VAIO\ntuser.pol
2015-08-29 22:38 - 2013-03-25 21:27 - 00000008 __RSH C:\Users\Tomas\ntuser.pol
2015-08-29 20:25 - 2013-04-10 23:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-29 00:40 - 2015-03-22 17:52 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-29 00:40 - 2015-03-22 17:52 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-28 22:39 - 2015-01-16 11:28 - 00000000 ____D C:\Users\VAIO\AppData\Roaming\Dropbox
2015-08-28 11:16 - 2013-11-03 15:45 - 00000000 ____D C:\Users\Eva\AppData\Roaming\OkiData
2015-08-28 11:16 - 2009-07-14 07:08 - 00032536 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-08-25 22:29 - 2013-10-25 15:51 - 00000000 ____D C:\Users\VAIO\AppData\Roaming\OkiData
2015-08-20 10:20 - 2014-08-08 15:55 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Apple Computer
2015-08-20 09:14 - 2013-04-10 23:27 - 00000000 ____D C:\Users\Eva\AppData\Roaming\Sony Corporation
2015-08-19 23:57 - 2015-07-24 00:59 - 00002150 _____ C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2015-08-18 03:02 - 2012-11-08 12:03 - 00000000 ____D C:\Program Files\Sony
2015-08-17 21:45 - 2013-04-10 23:41 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-08-17 21:45 - 2013-04-10 23:41 - 00000000 ____D C:\Program Files (x86)\Windows Live
2015-08-17 21:30 - 2012-11-08 11:39 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-08-17 21:25 - 2013-03-25 20:07 - 00000000 ____D C:\Windows\System32\Tasks\Sony Corporation
2015-08-17 21:25 - 2012-11-08 12:03 - 00000000 ____D C:\ProgramData\Sony Corporation
2015-08-17 21:24 - 2012-11-08 12:37 - 00000000 ____D C:\Users\VAIO\AppData\Roaming\Sony Corporation
2015-08-17 21:12 - 2012-11-08 11:58 - 00000021 _____ C:\Windows\Model.txt
2015-08-17 21:01 - 2013-03-31 22:19 - 00000000 ____D C:\Windows\System32\Tasks\SONY
2015-08-17 20:59 - 2012-11-08 12:03 - 00000000 ____D C:\Program Files (x86)\Sony
2015-08-17 20:51 - 2013-03-25 21:27 - 00000000 ____D C:\Users\Tomas\AppData\Roaming\Sony Corporation
2015-08-17 16:11 - 2014-01-31 12:16 - 00036277 _____ C:\Users\Tomas\Documents\ASped50.wlog
2015-08-17 15:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-08-17 11:52 - 2013-10-25 15:50 - 00000000 ____D C:\Program Files\Okidata
2015-08-17 11:34 - 2013-10-25 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Okidata
2015-08-17 10:23 - 2012-11-09 11:17 - 00000000 ____D C:\ProgramData\Skype
2015-08-16 23:59 - 2013-03-25 23:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-16 23:49 - 2013-04-11 09:47 - 00000000 ____D C:\Users\Tomas\AppData\Roaming\Skype
2015-08-16 23:12 - 2013-08-09 11:24 - 00000000 ____D C:\Users\Tomas\AppData\Local\Apple Computer
2015-08-16 22:49 - 2015-06-04 12:44 - 00000000 ____D C:\Program Files\Google
2015-08-16 22:49 - 2015-03-22 17:52 - 00000000 ____D C:\Program Files (x86)\Google
2015-08-16 22:49 - 2012-11-08 13:22 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-16 22:48 - 2015-07-10 18:24 - 00000000 ____D C:\$Windows.~BT
2015-08-16 22:46 - 2015-05-04 22:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse and Keyboard Center
2015-08-16 22:46 - 2015-04-10 12:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-08-16 22:46 - 2015-03-24 22:48 - 00000000 ____D C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-16 22:46 - 2015-03-22 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enpass
2015-08-16 22:46 - 2015-03-22 17:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-16 22:46 - 2015-03-22 16:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-08-16 22:46 - 2014-11-03 11:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-08-16 22:46 - 2014-06-20 11:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
2015-08-16 22:46 - 2014-04-08 23:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange
2015-08-16 22:46 - 2014-04-08 10:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange Lite 2012
2015-08-16 22:46 - 2014-02-04 12:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer
2015-08-16 22:46 - 2013-11-04 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-08-16 22:46 - 2013-08-16 14:28 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2015-08-16 22:46 - 2013-08-09 11:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trans
2015-08-16 22:46 - 2013-05-17 17:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutePDF
2015-08-16 22:46 - 2013-04-06 21:04 - 00000000 ____D C:\Users\Guest
2015-08-16 22:46 - 2012-11-08 12:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2015-08-16 22:46 - 2012-11-08 12:13 - 00000000 ____D C:\Users\VAIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-16 22:46 - 2012-11-08 12:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-16 22:46 - 2012-11-08 12:11 - 00000000 ____D C:\Users\VAIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2015-08-16 22:46 - 2012-11-08 11:59 - 00000000 ____D C:\Program Files\Protector Suite
2015-08-16 22:46 - 2012-11-08 11:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-08-16 22:46 - 2009-07-14 17:18 - 00000000 ____D C:\Windows\SysWOW64\sysprep
2015-08-16 22:46 - 2009-07-14 07:37 - 00000000 ____D C:\Windows\DigitalLocker
2015-08-16 22:09 - 2013-04-16 11:40 - 00000000 ____D C:\Users\Tomas\AppData\Local\Google
2015-08-16 22:08 - 2015-03-22 17:52 - 00000000 ____D C:\Users\VAIO\AppData\Local\Google
2015-08-16 22:08 - 2013-04-10 13:42 - 00000000 ____D C:\Users\Tomas\AppData\Roaming\Mozilla
2015-08-16 21:38 - 2013-03-25 18:46 - 00000000 ___RD C:\Users\VAIO\SkyDrive
2015-08-16 21:31 - 2013-11-02 23:57 - 00005216 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for VAIO-PC-Tomas VAIO-PC
2015-08-16 19:55 - 2014-01-31 12:16 - 00000000 ____D C:\TmpReports
2015-08-13 12:25 - 2012-11-08 13:22 - 00003888 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-11 23:09 - 2013-03-25 23:18 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-11 23:09 - 2013-03-25 23:18 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-11 22:53 - 2012-11-08 12:33 - 132483416 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-08-11 09:31 - 2012-11-08 12:10 - 00004194 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{857D649D-CA49-4E18-8AF3-EB32C65EB175}
2015-08-09 13:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2015-08-09 13:58 - 2015-05-04 22:46 - 00003270 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2015-08-09 13:58 - 2015-05-04 22:46 - 00003244 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2015-08-09 13:58 - 2015-05-04 22:46 - 00003242 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_itype_exe
2015-08-09 13:58 - 2015-05-04 22:46 - 00003214 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe
2015-08-09 13:58 - 2015-05-04 22:46 - 00003212 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe
2015-08-09 13:58 - 2015-05-04 21:47 - 00003052 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_Tomas
2015-08-09 13:58 - 2015-05-04 21:30 - 00003104 _____ C:\Windows\System32\Tasks\Open Chrome
2015-08-09 13:58 - 2015-03-22 17:52 - 00004058 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-09 13:58 - 2015-03-22 17:52 - 00003806 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-09 13:58 - 2012-11-08 12:27 - 00003642 _____ C:\Windows\System32\Tasks\CreateChoiceProcessTask
2015-08-09 13:50 - 2015-03-24 20:22 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-09 13:50 - 2015-03-24 20:22 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-09 13:38 - 2015-05-01 13:30 - 00000000 ____D C:\Intel
2015-08-09 12:26 - 2015-07-28 22:40 - 00000000 ____D C:\Windows\Panther
2015-08-08 12:51 - 2013-05-17 17:41 - 00000000 ____D C:\Users\Tomas\AppData\Local\CutePDF Writer
2015-08-07 12:14 - 2015-04-08 11:37 - 00000000 ____D C:\Windows\system32\appraiser
2015-08-07 12:14 - 2014-05-06 20:50 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-08-06 23:14 - 2013-03-31 16:26 - 00000000 ____D C:\Users\Tomas\Documents\Projekty
2015-08-06 11:22 - 2012-11-08 11:48 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-08-06 11:22 - 2012-11-08 11:47 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-08-06 10:58 - 2013-07-17 23:28 - 00000000 ____D C:\Users\Tomas\Scan
2015-08-03 21:53 - 2015-05-04 21:47 - 00000000 ____D C:\ProgramData\ProductData

==================== Files in the root of some directories =======

2014-04-08 10:40 - 2014-04-08 23:25 - 0000824 _____ () C:\Program Files\Common Files\TrackerSoftwareInstallerPDFX5SA(TRG).log
2014-05-29 12:16 - 2014-05-29 12:16 - 0000394 _____ () C:\Program Files\Common Files\TrackerSoftwareInstallerPDFX5SA.log
2013-10-25 15:51 - 2013-10-25 15:51 - 0000191 _____ () C:\Users\VAIO\AppData\Roaming\Opusbext.dat
2012-11-20 13:24 - 2012-11-20 13:25 - 0001212 _____ () C:\Users\VAIO\AppData\Roaming\Winhotspot.log
2012-11-09 18:11 - 2012-11-09 18:11 - 0003584 _____ () C:\Users\VAIO\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-05-04 22:04 - 2015-05-04 22:04 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Tomas\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpz3ppes.dll
C:\Users\VAIO\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpgrloqa.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-17 14:56

==================== End of FRST.txt ============================

Re: Nastydlý NTB

Napsal: 31 srp 2015 18:01
od Rudy
Zdravím!
Jak je na tom váš oper. systém s legalitou?

Re: Nastydlý NTB

Napsal: 31 srp 2015 18:31
od identix
OEM

Re: Nastydlý NTB

Napsal: 31 srp 2015 19:19
od Rudy
Zkusíme tento postup:

Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na havěť PURITY" a do dolního bílého okna zkopírujte:
CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*loader* /s
a klikněte na >Prohledat<. Dejte oba logy.

Re: Nastydlý NTB

Napsal: 31 srp 2015 20:21
od identix
Extras.txt

OTL Extras logfile created on: 31.8.2015 20:41:37 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\VAIO\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17959)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

5,68 Gb Total Physical Memory | 3,45 Gb Available Physical Memory | 60,75% Memory free
11,35 Gb Paging File | 8,95 Gb Available in Paging File | 78,84% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 119,15 Gb Total Space | 15,11 Gb Free Space | 12,68% Space Free | Partition Type: NTFS

Computer Name: VAIO-PC | User Name: VAIO | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2479660694-2464071941-3064966213-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0112A074-0912-4A25-A50A-F6D1EA9D4C6E}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{04A78EB1-122A-408F-B6A0-961E05569703}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{05B210F5-A11E-4183-9343-F41B0A956195}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{12AAD578-A5C3-4083-A67C-733C5ED38D41}" = rport=138 | protocol=17 | dir=out | app=system |
"{2D58555B-7802-438F-B6F0-BAB8233C99A1}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{381C852E-D938-4D28-96D6-14264884E24C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3B2300BE-8EF0-484E-A2E7-5E04B1D556B1}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{3ED4628E-F041-4A8C-B223-0C90B634E34C}" = lport=138 | protocol=17 | dir=in | app=system |
"{41D2830D-A2AB-4FE8-978A-7AAD8D35AA50}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{461CC2D7-3A50-45D3-93F6-56A429C94CD6}" = lport=9996 | protocol=6 | dir=in | app=c:\program files\sony\vaio care\vcsystemtray.exe |
"{54381DDF-4843-4C0A-B8C6-A352C62F4BC7}" = lport=139 | protocol=6 | dir=in | app=system |
"{59A60169-AB3B-471D-80FE-ED2C0949C589}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{5BD5A135-430E-4243-B3EC-6BD1577DABA6}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office 15\root\office15\outlook.exe |
"{6C6F1B1C-A815-41BD-9783-7206485D94F3}" = lport=137 | protocol=17 | dir=in | app=system |
"{78A46657-AEC1-4D1B-B30B-333D3489761A}" = lport=9997 | protocol=6 | dir=in | app=c:\program files\sony\vaio care\vaioshell.exe |
"{8AD8AFC7-0EC1-4939-B05D-250349681D62}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{9D0014BF-0F87-4111-B506-80B0EF5DA4B0}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{9DC2950B-EA7B-436D-B389-241B18720D85}" = lport=9999 | protocol=6 | dir=in | app=c:\program files\sony\vaio care\vcagent.exe |
"{AD1DC22E-B350-4824-B308-949D7950918F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{B9A5B430-57CD-4940-8F81-10A3008F2143}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{BB8EF9DF-D2A2-4D87-93FC-A1E77B1CB756}" = lport=445 | protocol=6 | dir=in | app=system |
"{C0BE6E86-E6FA-429E-8AEB-D9DE9B2CAFC2}" = lport=9998 | protocol=6 | dir=in | app=c:\program files\sony\vaio care\vcadmin.exe |
"{C2C4A9FB-80DC-42C4-A71A-E161B5C1C837}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C3D5D1D1-6A3A-4643-ADF1-608B09CF606A}" = rport=137 | protocol=17 | dir=out | app=system |
"{CD426DC9-6CCE-4B92-8CE7-BC7DE12DF0B5}" = rport=139 | protocol=6 | dir=out | app=system |
"{D6F6703B-DFEB-4EBC-9814-17B09839C7DF}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{DCFB6E67-7843-47FB-B492-320BA87B8D0D}" = rport=445 | protocol=6 | dir=out | app=system |
"{EC1BF970-C82A-4ED3-B892-E49D5354AD9D}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0118D826-9A5E-4FC8-B574-D04A32A0CA60}" = protocol=6 | dir=in | app=c:\program files\microsoft office 15\root\office15\lync.exe |
"{03BB1DD2-20B1-4364-A6D2-25B34E264D62}" = protocol=6 | dir=in | app=c:\program files (x86)\okidata\actkey\network configuration.exe |
"{1DF5104D-C00B-477C-9505-1F723261CFCE}" = protocol=17 | dir=in | app=c:\program files\microsoft office 15\root\office15\lync.exe |
"{2305F26F-AE36-436E-BAF7-19F88C1B8E4A}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{3786501D-E97E-42DE-B030-9F6F666F9501}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{3FC93C71-9F87-4A8B-80FF-170F359060F5}" = protocol=17 | dir=in | app=c:\program files\microsoft office 15\root\office15\ucmapi.exe |
"{40D77199-BA4A-459C-8C48-ECB65B38BD02}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{4587CE7D-C6E4-4ECD-B547-3997C6DCC450}" = protocol=6 | dir=in | app=c:\program files (x86)\okidata\actkey\network configuration.exe |
"{5CF36DC6-B1DF-4F08-BFC4-639FDD88D38E}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{62801711-4815-4619-A6E9-FF3CC9CAF3FC}" = protocol=6 | dir=in | app=c:\program files\microsoft office 15\root\office15\ucmapi.exe |
"{789E00F8-D5FE-40F9-B20F-B1D97C6D823B}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{7AC2B7B2-7BD1-462B-897A-1F78942509F6}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{7EB9AC7F-F9B9-46DA-89EE-D507E4F78D30}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{8538C46A-2FEA-4DFE-BE54-CC8CAADD586E}" = dir=in | app=c:\program files (x86)\dropbox\client\dropbox.exe |
"{8CFCA5DF-69DC-485E-9417-51B7E10DF7D2}" = protocol=17 | dir=in | app=c:\program files (x86)\okidata\actkey\network configuration.exe |
"{A4ED9C82-59FF-4609-919B-A60A2F39B6D0}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{ABB50056-2EA5-4204-9B5A-E10200EF1A23}" = protocol=17 | dir=in | app=c:\program files (x86)\okidata\actkey\network configuration.exe |
"{B273A034-D62A-48CB-84D5-3E0AB56B9BC2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{BE20600E-6FD2-46C4-8987-86B59BFD883A}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{C98F7EA0-0CF0-4C76-9437-E88CBCF434E8}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{DAD6C370-B938-4763-98B8-24C68ADF94C0}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{E4413DCD-7A56-403E-8E3B-FC6E1B57FE0A}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{ECDBB68A-DABB-4760-AFEA-55B1B26A7C52}" = dir=in | app=c:\program files\itunes\itunes.exe |
"TCP Query User{1EE9F855-69CE-4784-85E1-C35069F38EB8}C:\program files (x86)\trans\trans.exe" = protocol=6 | dir=in | app=c:\program files (x86)\trans\trans.exe |
"TCP Query User{8499F287-47FC-472B-9DD7-1182F152BB18}C:\program files (x86)\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe |
"TCP Query User{92338584-7FD1-4195-8443-2FB1557ABEC6}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"TCP Query User{BE71280D-3984-4296-8E29-2C00DD287D7C}C:\windows\explorer.exe" = protocol=6 | dir=in | app=c:\windows\explorer.exe |
"TCP Query User{E8ACC39E-ED34-4641-B576-8C81655B5471}C:\program files (x86)\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe |
"TCP Query User{F86353DF-A783-4FFB-911F-C903B4F95426}C:\program files (x86)\trans\trans.exe" = protocol=6 | dir=in | app=c:\program files (x86)\trans\trans.exe |
"UDP Query User{0D33AA09-0B9C-4AF6-9782-5739855D59D7}C:\program files (x86)\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe |
"UDP Query User{90B99284-F194-4332-8732-0888F08CC97B}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"UDP Query User{9C1B4FC2-4C78-482E-AB03-51ECA016C099}C:\program files (x86)\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe |
"UDP Query User{A99CF62F-425F-4E32-8D4F-D5544338CD87}C:\program files (x86)\trans\trans.exe" = protocol=17 | dir=in | app=c:\program files (x86)\trans\trans.exe |
"UDP Query User{B5438AD2-2272-4BB3-8B63-828235F8B401}C:\windows\explorer.exe" = protocol=17 | dir=in | app=c:\windows\explorer.exe |
"UDP Query User{B9704672-0DBE-4228-B75C-8ED699D68F4B}C:\program files (x86)\trans\trans.exe" = protocol=17 | dir=in | app=c:\program files (x86)\trans\trans.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0F841121-4DB6-4B31-839F-7F5AB3BB3423}" = Protector Suite 2009
"{14915907-DB64-49DC-BB9D-1935D38CD250}" = ScannerDriver
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1DB0C90B-2A9F-3A1E-B1DF-616C5A2A1417}" = Microsoft .NET Framework 4.5.2 (DEU)
"{23D2AFC7-C01E-4413-9D9A-0BABF52569BF}" = Microsoft Mouse and Keyboard Center
"{25CFCE3C-5C95-49CB-B63A-E2861E6C0C98}_is1" = PDF-XChange Lite 2012
"{26784146-6E05-3FF9-9335-786C7C0FB5BE}" = Microsoft .NET Framework 4.5.2
"{26A24AE4-039D-4CA4-87B4-2F86418060F0}" = Java 8 Update 60 (64-bit)
"{306B3D69-E336-4644-9A08-D85A5603D1BE}" = PDF-XChange Editor
"{309768A4-A2BB-4930-A5A2-8169678C9B4C}" = iCloud
"{3138F992-045B-4F55-825C-53B231E647CA}" = 64 Bit HP CIO Components Installer
"{4D668D4F-FAA2-4726-834C-31F4614F312E}" = MSVC80_x64_v2
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{680EDA59-9266-44B4-949E-0C24F65DFF82}" = Microsoft_VC100_CRT_SP1_x64
"{6B7DE186-374B-4873-AEC1-7464DA337DD6}" = VU5x64
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{6ED1750E-F44F-4635-8F0D-B76B9262B7FB}" = VAIO Care Recovery
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90150000-007E-0000-1000-0000000FF1CE}" = Office 15 Click-to-Run Licensing Component
"{90150000-008C-0000-1000-0000000FF1CE}" = Office 15 Click-to-Run Extensibility Component
"{90150000-008C-0405-1000-0000000FF1CE}" = Office 15 Click-to-Run Localization Component
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.2 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031" = Microsoft .NET Framework 4.5.2 (Deutsch)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{934ACD4F-3E96-4B2A-96A8-158A5E057288}" = VAIO Care
"{93F2A022-6C37-48B8-B241-FFABD9F60C30}" = iTunes
"{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1" = PDF-Viewer
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.GuardService" = NVIDIA Guard Service 1.3
"{C4123106-B685-48E6-B9BD-E4F911841EB4}" = Apple Mobile Device Support
"{C48AF3CF-C632-3C19-838E-7DAB7283D46A}" = Microsoft .NET Framework 4.5.2 (CSY)
"{CB3CA48C-95CB-412B-B7AE-6F2EA8F89907}" = Windows Live Family Safety
"{CE52672C-A0E9-4450-8875-88A221D5CD50}" = Windows Live ID Sign-in Assistant
"{D16A2127-B927-4379-B153-3DEC091E4EEB}" = Software Intel(R) PROSet/Wireless WiFi
"{D7B824DE-DA32-4772-9E5E-39C5158136A7}" = Podpora aplikací Apple (64bitová)
"{D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6}" = Microsoft Security Client
"{E9FA781F-3E80-4399-825A-AD3E11C28C77}" = MSVCRT110_amd64
"62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F" = Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0)
"B81055EA372C9E3EA5000B4BD9585D992D51F1DE" = Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/11/2009 2.0.0010.00002)
"CCleaner" = CCleaner
"CutePDF Writer Installation" = CutePDF Writer 3.0
"EPSON WP-4535 Series" = EPSON WP-4535 Series Printer Uninstall
"Microsoft Mouse and Keyboard Center" = Microsoft Mouse and Keyboard Center
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"O365SmallBusPremRetail - cs-cz" = Microsoft Office 365 Small Business Premium - cs-cz
"ProInst" = Intel PROSet Wireless
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinRAR archiver" = WinRAR 5.21 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}" = Windows Live UX Platform
"{07AAB66E-4718-422D-9218-4AFB3C922A71}" = Photo Gallery
"{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}" = VAIO Smart Network
"{099218A5-A723-43DC-8DB5-6173656A1E94}" = Dropbox Update Helper
"{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}" = Epson FAX Utility
"{15BFD731-A10E-43E9-9D18-0F682BC0480F}" = Photo Common
"{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}" = Windows Live Photo Common
"{2BC9C2FF-E0B7-40F9-B1A5-6F80663C301B}" = Windows Live Family Safety
"{2eef0fe2-cc4a-47d6-959c-de2d5c2cc40b}" = PDF-XChange Editor
"{38ADB9A6-798C-11D6-A855-00105A80791C}" = OKI Network Extension
"{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}" = QuickTime 7
"{3D2CF65C-B544-4308-B996-700D3E5F6C4C}" = Movie Maker
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3E31400D-274E-4647-916C-2CACC3741799}" = EpsonNet Print
"{3F1C9552-58E0-4AAC-A616-AE3A28720EC6}" = GimpShop 2.8
"{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}" = Microsoft ASP.NET MVC 4 Runtime
"{41C61308-6CFD-4D54-AB6A-7136ED08A18E}" = Windows Live Communications Platform
"{449CE12D-E2C7-4B97-B19E-55D163EA9435}" = Bing Bar
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{659CB81C-B54E-4DF1-B618-F35777393A54}" = Windows Live Installer
"{681B82EF-A457-4849-AABC-5B6099380FA5}" = ActKey
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{70991E0A-1108-437E-BA7D-085702C670C0}" =
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{72042FA6-5609-489F-A8EA-3C2DD650F667}" = VAIO Control Center
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX
"{7ED89AE0-5832-4ED3-B29A-099F65295E82}" = Qualcomm Gobi 2000 Package for Sony
"{803E4FA5-A940-4420-B89D-A8BC2E160247}" = VAIO Power Management
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110
"{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}" = Epson Event Manager
"{94F4815B-755A-4FFA-AFDC-EE8FE776981E}" = PlayMemories Home
"{9A470EA9-FF86-4C0E-992C-572BF2B9D6FF}" = Windows Live Essentials
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D12A8B5-9D41-4465-BF11-70719EB0CD02}" = VU5x86
"{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}" = VAIO Update
"{A344F95E-E51A-450C-8F84-C940BF61903E}" = OKI Color Swatch Utility
"{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}" =
"{A8D93648-9F7F-407D-915C-62044644C3DA}" = MSI to redistribute MS VS2005 CRT libraries
"{A93A662D-C667-42F5-A1E8-B93E0103EF53}_is1" = A-SPED Win 5.0
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}" = Podpora aplikací Apple (32bitová)
"{B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}" = Windows Live PIMT Platform
"{C7477742-DDB4-43E5-AC8D-0259E1E661B1}" =
"{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}" = Windows Live SOXE
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D1893000-EA77-493C-8DDD-E262436E959B}" = Windows Live SOXE Definitions
"{D5318740-B088-4B1A-B6A8-1F90A172CCD1}" = PMB_ModeEditor
"{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}" = Intel(R) Turbo Boost Technology Driver
"{DD67BE4B-7E62-4215-AFA3-F123A800A389}" = Movie Maker
"{DD7721BB-CF1C-4DC9-AD87-8D5FB75413B7}" = MergeModule_x86
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E100E2B5-F2EF-4955-AB7A-C3F2125A3BCD}" = Windows Live UX Platform Language Pack
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{E7FDF11C-12BB-4D6F-9B6D-F8E488C776DC}" = PMB_ServiceUploader
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F37D360D-9308-4BB1-8515-DC6B637B9486}" = Fotogalerie
"{FEDC7C10-EF67-11E4-9B07-00505695D7B0}" = Evernote v. 5.8.6
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player ActiveX" = Adobe Flash Player 18 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 18 NPAPI
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE v.6.83
"Dropbox" = Dropbox
"Enpass" = Enpass 4.6.1
"ESET Online Scanner" = ESET Online Scanner v3
"Google Chrome" = Google Chrome
"InstallShield_{14915907-DB64-49DC-BB9D-1935D38CD250}" = OKI MC5(3)x2/ES5(3)4x2 Scanner
"InstallShield_{681B82EF-A457-4849-AABC-5B6099380FA5}" = OKI ActKey
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 4.4.5
"LinuxLive USB Creator" = LinuxLive USB Creator
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware verze 2.1.8.1057
"Mozilla Firefox 40.0.3 (x86 cs)" = Mozilla Firefox 40.0.3 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Revo Uninstaller" = Revo Uninstaller 1.95
"Trans_is1" = Trans 4.3.5.4538
"WinLiveSuite" = Windows Live Essentials

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-2479660694-2464071941-3064966213-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SkyDriveSetup.exe" = Microsoft SkyDrive

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 31.8.2015 15:06:14 | Computer Name = VAIO-PC | Source = Bonjour Service | ID = 100
Description = AppendDNSNameString: Illegal empty label in name "."

Error - 31.8.2015 15:06:14 | Computer Name = VAIO-PC | Source = Bonjour Service | ID = 100
Description = AppendDNSNameString: Illegal empty label in name "."

Error - 31.8.2015 15:07:20 | Computer Name = VAIO-PC | Source = Bonjour Service | ID = 100
Description = AppendDNSNameString: Illegal empty label in name "."

Error - 31.8.2015 15:07:20 | Computer Name = VAIO-PC | Source = Bonjour Service | ID = 100
Description = AppendDNSNameString: Illegal empty label in name "."

Error - 31.8.2015 15:08:25 | Computer Name = VAIO-PC | Source = Bonjour Service | ID = 100
Description = AppendDNSNameString: Illegal empty label in name "."

Error - 31.8.2015 15:08:25 | Computer Name = VAIO-PC | Source = Bonjour Service | ID = 100
Description = AppendDNSNameString: Illegal empty label in name "."

Error - 31.8.2015 15:09:29 | Computer Name = VAIO-PC | Source = Bonjour Service | ID = 100
Description = AppendDNSNameString: Illegal empty label in name "."

Error - 31.8.2015 15:09:29 | Computer Name = VAIO-PC | Source = Bonjour Service | ID = 100
Description = AppendDNSNameString: Illegal empty label in name "."

Error - 31.8.2015 15:10:33 | Computer Name = VAIO-PC | Source = Bonjour Service | ID = 100
Description = AppendDNSNameString: Illegal empty label in name "."

Error - 31.8.2015 15:10:33 | Computer Name = VAIO-PC | Source = Bonjour Service | ID = 100
Description = AppendDNSNameString: Illegal empty label in name "."

[ ESRV_SVC Events ]
Error - 17.8.2015 15:29:33 | Computer Name = VAIO-PC | Source = ESRV_SVC | ID = 2
Description =

[ System Events ]
Error - 31.8.2015 14:28:46 | Computer Name = VAIO-PC | Source = Service Control Manager | ID = 7034
Description = Služba Intel(R) PROSet/Wireless Event Log byla neočekávaně ukončena.
Tento stav nastal již 1krát.

Error - 31.8.2015 14:28:46 | Computer Name = VAIO-PC | Source = Service Control Manager | ID = 7034
Description = Služba VAIO Power Management byla neočekávaně ukončena. Tento stav
nastal již 1krát.

Error - 31.8.2015 14:28:46 | Computer Name = VAIO-PC | Source = Service Control Manager | ID = 7031
Description = Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát.
Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error - 31.8.2015 14:28:47 | Computer Name = VAIO-PC | Source = Service Control Manager | ID = 7031
Description = Služba Služba Microsoft Office ClickToRun byla nečekaně ukončena.
Stalo se to 2 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat
službu.

Error - 31.8.2015 14:28:51 | Computer Name = VAIO-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = Rozšiřující modul sítě WLAN byl neočekávaně ukončen. Cesta k modulu:
C:\Windows\System32\IWMSSvc.dll

Error - 31.8.2015 14:28:55 | Computer Name = VAIO-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = Rozšiřující modul sítě WLAN byl neočekávaně ukončen. Cesta k modulu:
C:\Windows\System32\IWMSSvc.dll

Error - 31.8.2015 14:28:55 | Computer Name = VAIO-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = Rozšiřující modul sítě WLAN byl neočekávaně ukončen. Cesta k modulu:
C:\Windows\System32\IWMSSvc.dll

Error - 31.8.2015 14:28:55 | Computer Name = VAIO-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = Rozšiřující modul sítě WLAN byl neočekávaně ukončen. Cesta k modulu:
C:\Windows\System32\IWMSSvc.dll

Error - 31.8.2015 14:28:56 | Computer Name = VAIO-PC | Source = Service Control Manager | ID = 7000
Description = Služba Windows Live ID Sign-in Assistant neuspěla při spuštění v důsledku
následující chyby: %%3

Error - 31.8.2015 14:30:33 | Computer Name = VAIO-PC | Source = DCOM | ID = 10016
Description =


< End of report >

Re: Nastydlý NTB

Napsal: 31 srp 2015 20:40
od Rudy
Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text:
:OTL
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-2479660694-2464071941-3064966213-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-2479660694-2464071941-3064966213-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IESR02
IE - HKU\S-1-5-21-2479660694-2464071941-3064966213-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IESR02
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\
CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\
CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

:files
C:\Windows\tasks\GoogleUpdateTaskMachineUA1d0e1cf779981ee.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]
[CreateRestorePoint]
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.

Re: Nastydlý NTB

Napsal: 31 srp 2015 21:16
od identix
All processes killed
Error: Unable to interpret <IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC> in the current context!
Error: Unable to interpret <IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-2479660694-2464071941-3064966213-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-2479660694-2464071941-3064966213-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IESR02> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-2479660694-2464071941-3064966213-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IESR02> in the current context!
Error: Unable to interpret <FF - user.js - File not found> in the current context!
Error: Unable to interpret <FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll File not found> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\> in the current context!
Error: Unable to interpret <O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.> in the current context!
Error: Unable to interpret <O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.> in the current context!
========== FILES ==========
C:\Windows\tasks\GoogleUpdateTaskMachineUA1d0e1cf779981ee.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Eva
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 244817489 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 370308087 bytes
->Google Chrome cache emptied: 277660826 bytes
->Flash cache emptied: 8781 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 1074936 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 187522918 bytes
->Google Chrome cache emptied: 153011294 bytes
->Flash cache emptied: 17960 bytes

User: Public
->Temp folder emptied: 0 bytes

User: Tomas
->Temp folder emptied: 4886025 bytes
->Temporary Internet Files folder emptied: 41597858 bytes
->Java cache emptied: 48342 bytes
->FireFox cache emptied: 16424012 bytes
->Google Chrome cache emptied: 8896147 bytes
->Apple Safari cache emptied: 30291968 bytes
->Flash cache emptied: 875 bytes

User: VAIO
->Temp folder emptied: 4222332 bytes
->Temporary Internet Files folder emptied: 66227810 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 29406059 bytes
->Google Chrome cache emptied: 15153682 bytes
->Flash cache emptied: 523 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 619947 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 195 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1 385,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Eva
->Flash cache emptied: 0 bytes

User: Guest
->Flash cache emptied: 0 bytes

User: Public

User: Tomas
->Flash cache emptied: 0 bytes

User: VAIO
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.69.0 log created on 08312015_200702

Files\Folders moved on Reboot...
File\Folder C:\Users\VAIO\AppData\Local\Temp\etilqs_LXOSJ430fD6LItv not found!
File\Folder C:\Users\VAIO\AppData\Local\Temp\etilqs_qruf5umMia72MLc not found!
C:\Users\VAIO\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\VAIO\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Users\VAIO\AppData\Local\Mozilla\Firefox\Profiles\ts2wpedn.default\startupCache\startupCache.4.little moved successfully.
C:\Users\VAIO\AppData\Local\Mozilla\Firefox\Profiles\ts2wpedn.default\cache2\entries\549BD11E49F5BEC9F35204725B77EA8E2CF5F402 moved successfully.
File\Folder C:\Windows\temp\officeclicktorun.exe_c2ruidll(20150831200350790).log not found!
File\Folder C:\Windows\temp\officeclicktorun.exe_streamserver(20150831200350790).log not found!
File\Folder C:\Windows\temp\SEP7808.tmp not found!
C:\Windows\temp\VAIO-PC-20150831-2003.log moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Re: Nastydlý NTB

Napsal: 31 srp 2015 21:18
od identix
je tam furt :-(

Re: Nastydlý NTB

Napsal: 31 srp 2015 21:44
od Rudy
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

Re: Nastydlý NTB

Napsal: 31 srp 2015 21:52
od identix
Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 31.8.2015
Čas skenování: 20:19
Protokol: mbam.txt
Správce: Ano

Verze: 2.1.8.1057
Databáze malwaru: v2015.08.31.03
Databáze rootkitů: v2015.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: VAIO

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 542445
Uplynulý čas: 10 min, 35 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 2
PUP.Optional.RecordPage, C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_recordpage-a.akamaihd.net_0.localstorage, , [5906fe115d2e92a44c59dbcedf2512ee],
PUP.Optional.RecordPage, C:\Users\VAIO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_recordpage-a.akamaihd.net_0.localstorage-journal, , [ff60957adead94a25b4aa405ac58b947],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

Re: Nastydlý NTB

Napsal: 01 zář 2015 17:07
od Rudy
Nálezy smažte.

Re: Nastydlý NTB

Napsal: 01 zář 2015 18:02
od identix
Smazal jsem je, ale slo to jen v linuxu. I kdyz jsem vypnul ochranu systemu a smazal stare body obnoveni, promazal jsem prohlizece pomoci avast browser cleaner, jakmile jsem znovu nabootoval win a spustil chrome, byly tam reklamy zpět. Pomohlo až odinstalování chrome.

Jinak moc děkuji za pomoc.

Re: Nastydlý NTB

Napsal: 01 zář 2015 19:06
od Rudy
OK a nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz