VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

podezření na sledování klávesnice - key logger

https://forum.viry.cz:443/viewtopic.php?t=146348

Stránka 1 z 1

podezření na sledování klávesnice - key logger

Napsal: 05 říj 2015 19:02
od fandaj
Dobrý den,

jaký konkrétní log mám vložit pro kontrolu ?
Mám podezření na odposlouchávání klávesnice.
Děkuji.

Re: podezření na sledování klávesnice - key logger

Napsal: 05 říj 2015 19:54
od Rudy
Zdravím!
Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

Re: podezření na sledování klávesnice - key logger

Napsal: 05 říj 2015 20:41
od fandaj
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:04-10-2015
Ran by Franta (administrator) on ACER-FRANTA (05-10-2015 21:34:12)
Running from C:\Users\Franta\Downloads
Loaded Profiles: UpdatusUser & Franta (Available Profiles: UpdatusUser & Franta & rxbaapidwp)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCService.exe
(IOBit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCAvSvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
() C:\Program Files (x86)\Allway Sync\Bin\SyncService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(Ilja Herlein) C:\Program Files (x86)\NetSetMan\nsmservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\Monitor.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Ilja Herlein) C:\Program Files (x86)\NetSetMan\netsetman.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
() C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-09-16] (Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5595848 2015-07-08] (ESET)
HKLM-x32\...\Run: [NetSetMan] => C:\Program Files (x86)\NetSetMan\netsetman.exe [6544040 2015-09-17] (Ilja Herlein)
HKLM-x32\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [91488 2015-07-27] ()
HKLM-x32\...\Run: [4x24 Scan2PC] => C:\Windows\Twain_32\Samsung\SCX4x24\Scan2Pc.exe [915456 2012-01-11] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\...\Run: [Pokki] => C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\...\RunOnce: [RegDXVA1] => C:\Windows\system32\cmd.exe /c reg import "C:\Program Files (x86)\Acer\abPhoto\SwitchUserVideoKey.reg"
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\...\RunOnce: [SetAsDefault] => C:\Program Files (x86)\Acer\Acer Video Player\SwitchUserVideoKey.bat
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\...\RunOnce: [Application Restart #0] => C:\Users\UpdatusUser\AppData\Local\Pokki\Engine\HostAppService.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disab (the data entry has 556 more characters).
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\...\Run: [Advanced SystemCare Ultimate] => C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCTray.exe [2596640 2015-05-22] (IObit)
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\...\MountPoints2: {bc5d7cbd-d9c6-11e4-8309-3010b38b91a7} - "E:\AutoRun.exe"
HKU\S-1-5-18\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [1769312 2015-07-27] ()
HKU\S-1-5-18\...\Run: [KSS] => "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe" autorun
IFEO\DBUnpacker.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\gate32.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\gate64.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\StrongholdAntiMalware.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\StrongholdAntiMalwareInstaller.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\StrongholdAntiMalwareService.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\ToolbarRemover.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\UpdateAntiMalware.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-09-14]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Franta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.1.722_18.10.2013_16-28.lnk [2015-10-05]
ShortcutTarget: setup_9.0.1.722_18.10.2013_16-28.lnk -> C:\Users\Franta\Desktop\Virus Removal Tool\setup_9.0.1.722_18.10.2013_16-28\startup.exe ()
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Restriction - Chrome <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{D18363F6-0C08-4218-97C1-4CCB5B6F57F6}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{F22F1FC6-50F6-4270-9665-67DB837932F7}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com/?pc=ACJB
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1933510014-705603268-1897034679-1001 -> DefaultScope {F8631339-1A73-4B1D-AF65-705DDC88C6E3} URL =
SearchScopes: HKU\S-1-5-21-1933510014-705603268-1897034679-1001 -> {F8631339-1A73-4B1D-AF65-705DDC88C6E3} URL =
SearchScopes: HKU\S-1-5-21-1933510014-705603268-1897034679-1002 -> {F8631339-1A73-4B1D-AF65-705DDC88C6E3} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-09-11] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-10] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-10] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Toolbar: HKU\S-1-5-21-1933510014-705603268-1897034679-1002 -> No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-24] ()
FF Plugin: @eleco.com/o2cplayer -> C:\Program Files (x86)\Eleco\o2c Player\npO2CPlayer64.DLL [2015-02-17] (ELECO Software GmbH)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-24] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1220162.dll [2015-08-31] (Adobe Systems, Inc.)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @eleco.com/o2cplayer -> C:\Program Files (x86)\Eleco\o2c Player\npO2CPlayer.DLL [2015-02-17] (ELECO Software GmbH)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-10] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-03] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2015-01-08] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\wmp.dll [2015-01-21] (Microsoft Corporation)
FF Extension: Ant Video Downloader - C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\anttoolbar@ant.com [2015-05-31]
FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\artur.dubovoy@gmail.com [2015-09-24]
FF Extension: Flash and Video Download - C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2015-09-23]
FF Extension: Easy media download - C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\jid1-ach2kaGSshPJCg@jetpack.xpi [2015-05-31]
FF Extension: Google™ Translator Lite - C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\jid1-f3mYMbCpz2AZYl@jetpack.xpi [2015-09-07]
FF Extension: Fire Media Player - C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\musicplayer@firemediaplayer.com.xpi [2015-05-31]
FF Extension: Adblock Plus - C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-24]

Chrome:
=======
CHR StartupUrls: Profile 2 -> "hxxp://hugo.generali.cz/"
CHR Profile: C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Disk Google) - C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-26]
CHR Extension: (YouTube) - C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-26]
CHR Extension: (Vyhledávání Google) - C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-26]
CHR Extension: (Gmail) - C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-26]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCService.exe [911648 2014-11-22] (IObit)
R2 ASCAntivirusSrv; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ascavsvc.exe [660768 2015-06-11] (IOBit)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2013-11-14] (Broadcom Corporation.)
R2 BotkindSyncService; C:\Program Files (x86)\Allway Sync\Bin\SyncService.exe [182784 2015-04-13] () [File not signed]
S3 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2858336 2015-07-23] (Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2774104 2015-09-11] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1353720 2015-07-08] (ESET)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-06-12] (Acer Incorporated)
S4 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [347200 2015-01-08] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282096 2014-03-18] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-31] (IObit)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [455912 2014-12-30] (Acer Incorporate)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-05-29] ()
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2014-11-17] (Hewlett-Packard) [File not signed]
R2 nsmService; C:\Program Files (x86)\NetSetMan\nsmservice.exe [1278632 2015-02-06] (Ilja Herlein)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2014-11-17] (Hewlett-Packard) [File not signed]
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-06-26] (Acer Incorporate)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-08-25] ()
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-06-26] (Acer Incorporate)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240 2014-07-15] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
S2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3816176 2014-05-29] (Intel® Corporation)
S4 SpyHunter 4 Service; no ImagePath

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 01611921; C:\Windows\system32\DRIVERS\01611921.sys [157712 2013-10-18] (Kaspersky Lab)
R0 01611922; C:\Windows\system32\DRIVERS\01611922.sys [40464 2013-10-18] (Kaspersky Lab)
R0 62012566; C:\Windows\system32\DRIVERS\62012566.sys [460888 2011-07-21] (Kaspersky Lab ZAO)
R1 adgnetworkwfpdrv; C:\Windows\System32\drivers\adgnetworkwfpdrv.sys [55800 2015-06-02] ()
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-11-14] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7593176 2015-07-09] (Broadcom Corporation)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2014-03-26] (Motorola Solutions, Inc.)
S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [54072 2007-12-12] (Samsung Electronics)
S2 DgiVecp; C:\Windows\SysWOW64\Drivers\DgiVecp.sys [41984 2007-12-11] (Samsung Electronics Co., Ltd.) [File not signed]
S3 DrvAgent64; C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [13824 2015-02-18] (Phoenix Technologies) [File not signed]
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [255240 2015-07-14] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [251632 2015-07-14] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [178520 2015-07-14] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [231520 2015-07-14] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [53360 2015-07-14] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [72400 2015-07-14] (ESET)
S3 ESETCleanersDriver; C:\Windows\system32\Drivers\ESETCleanersDriver.sys [170280 2014-12-27] (ESET)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-07-29] ()
R3 ETDI2C; C:\Windows\system32\DRIVERS\ETDI2C.sys [173384 2014-04-09] (ELAN Microelectronic Corp.)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [243200 2009-12-15] (Huawei Technologies Co., Ltd.)
S3 Huawei; C:\Windows\system32\DRIVERS\ewdcsc.sys [32768 2015-04-07] (Huawei Tech. Co., Ltd.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2014-12-27] (REALiX(tm))
S3 hwusbdev; C:\Windows\system32\DRIVERS\ewusbdev.sys [114304 2009-12-15] (Huawei Technologies Co., Ltd.)
R3 iaLPSS_I2C; C:\Windows\System32\drivers\iaLPSS_I2C.sys [120312 2014-06-03] (Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2015-07-09] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated)
R1 RrNetCapFilterDriver; C:\Windows\system32\DRIVERS\RrNetCapFilterDriver.sys [25256 2015-09-02] (Audials AG)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [752856 2015-09-16] (Realsil Semiconductor Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
S3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33448 2015-07-09] (Synaptics Incorporated)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 WIMMount; C:\Program Files (x86)\Windows Kits\8.0\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wimmount.sys [40392 2012-07-25] (Microsoft Corporation)
S3 keycrypt; system32\DRIVERS\KeyCrypt64.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S2 sbapifs; system32\DRIVERS\sbapifs.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-05 21:34 - 2015-10-05 21:34 - 00028834 _____ C:\Users\Franta\Downloads\FRST.txt
2015-10-05 21:33 - 2015-10-05 21:34 - 00000000 ____D C:\FRST
2015-10-05 21:33 - 2015-10-05 21:33 - 02193920 _____ (Farbar) C:\Users\Franta\Downloads\FRST64.exe
2015-10-05 19:55 - 2015-10-05 19:56 - 92763288 _____ (Kaspersky Lab ZAO) C:\Users\Franta\Downloads\KVRT.exe
2015-10-05 19:38 - 2015-10-05 19:39 - 00340552 _____ C:\Windows\Minidump\100515-46218-01.dmp
2015-10-05 19:37 - 2015-10-05 19:37 - 00000668 _____ C:\Windows\PFRO.log
2015-10-05 19:36 - 2015-10-05 19:43 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-10-05 19:35 - 2015-10-05 19:36 - 00000000 ____D C:\Users\Franta\Desktop\Virus Removal Tool
2015-10-05 19:35 - 2013-10-18 16:26 - 00157712 _____ (Kaspersky Lab) C:\Windows\system32\Drivers\01611921.sys
2015-10-05 19:35 - 2013-10-18 16:26 - 00040464 _____ (Kaspersky Lab) C:\Windows\system32\Drivers\01611922.sys
2015-10-05 16:43 - 2015-10-05 21:29 - 00024286 _____ C:\Users\Franta\Desktop\D00000.DAV
2015-10-05 11:10 - 2015-10-05 11:10 - 00000000 ____D C:\Users\Franta\Documents\Nová složka
2015-10-05 09:41 - 2015-10-05 19:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-10-03 18:43 - 2015-10-05 19:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-03 17:10 - 2015-10-03 18:49 - 00000000 ____D C:\Users\Franta\Documents\homecast staelit
2015-10-03 17:08 - 2015-10-05 19:39 - 00001368 _____ C:\Windows\setupact.log
2015-10-03 17:08 - 2015-10-03 17:08 - 00000000 _____ C:\Windows\setuperr.log
2015-10-03 17:05 - 2015-10-05 20:27 - 00186207 _____ C:\Windows\WindowsUpdate.log
2015-09-29 21:03 - 2015-09-29 21:03 - 00000000 ____D C:\Users\Franta\AppData\Roaming\ProductData
2015-09-29 21:03 - 2015-09-29 21:03 - 00000000 ____D C:\ProgramData\ProductData
2015-09-29 15:44 - 2015-09-29 15:50 - 00000304 _____ C:\Windows\Tasks\Uninstaller_SkipUac_Franta.job
2015-09-29 15:44 - 2015-09-29 15:44 - 00002406 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_Franta
2015-09-29 10:33 - 2015-09-29 10:33 - 00000000 ____D C:\Users\Franta\Downloads\backups
2015-09-29 10:29 - 2015-09-29 10:29 - 00388608 _____ (Trend Micro Inc.) C:\Users\Franta\Downloads\hijackthis.exe
2015-09-29 10:29 - 2015-09-29 10:29 - 00016750 _____ C:\Users\Franta\Downloads\hijackthis.log
2015-09-29 09:29 - 2015-09-29 09:29 - 00002798 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-09-29 09:29 - 2015-09-29 09:29 - 00000840 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-09-29 09:29 - 2015-09-29 09:29 - 00000840 _____ C:\ProgramData\Desktop\CCleaner.lnk
2015-09-29 09:29 - 2015-09-29 09:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-09-29 09:29 - 2015-09-29 09:29 - 00000000 ____D C:\Program Files\CCleaner
2015-09-28 23:37 - 2015-09-28 23:37 - 00000085 _____ C:\Windows\wininit.ini
2015-09-28 22:56 - 2015-09-28 22:56 - 00364404 _____ C:\Users\Franta\Downloads\i_isrc_czech.exe
2015-09-28 22:43 - 2015-09-29 15:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Instant Source
2015-09-28 22:24 - 2015-09-28 22:24 - 01594840 _____ (Kaspersky Lab) C:\Users\Franta\Downloads\kts15.0.2.361abccs_8421.exe
2015-09-28 22:08 - 2015-09-28 22:16 - 00000000 ____D C:\ProgramData\F-Secure
2015-09-28 22:08 - 2015-09-28 22:08 - 00572456 _____ (F-Secure Corporation) C:\Users\Franta\Downloads\F-SecureOnlineScanner.exe
2015-09-28 22:08 - 2015-09-28 22:08 - 00000000 ____D C:\Users\Franta\AppData\Local\F-Secure
2015-09-28 21:20 - 2015-09-28 21:20 - 00029140 _____ C:\Users\Franta\Desktop\report.txt
2015-09-24 22:22 - 2015-09-24 22:22 - 00029771 _____ C:\Users\Franta\Documents\výsledek testu anti malware.txt
2015-09-24 21:43 - 2015-09-29 19:31 - 00000000 ____D C:\Users\Public\Documents\Stronghold AntiMalware
2015-09-24 21:43 - 2015-09-29 19:31 - 00000000 ____D C:\ProgramData\Documents\Stronghold AntiMalware
2015-09-24 21:43 - 2015-09-24 21:43 - 00001350 _____ C:\Users\Franta\Desktop\Stronghold AntiMalware.lnk
2015-09-24 21:43 - 2015-09-24 21:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stronghold AntiMalware
2015-09-24 21:43 - 2015-09-24 21:43 - 00000000 ____D C:\Program Files (x86)\Stronghold AntiMalware
2015-09-24 21:18 - 2014-10-10 09:44 - 01122304 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Windows\SysWOW64\libeay32.dll
2015-09-24 21:18 - 2014-10-10 09:44 - 00274432 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Windows\SysWOW64\ssleay32.dll
2015-09-24 20:28 - 2015-09-24 20:28 - 00000000 ____D C:\Users\Franta\AppData\Local\AntiLogger Free
2015-09-24 20:00 - 2015-09-24 20:00 - 00000000 ____D C:\Program Files\Common Files\AV
2015-09-24 19:42 - 2015-09-24 19:42 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2015-09-24 00:32 - 2015-09-24 00:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2015-09-24 00:32 - 2015-09-24 00:32 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2015-09-23 09:08 - 2015-09-23 09:08 - 00073198 _____ C:\Users\Franta\Downloads\Kalkulačka kasko–změna pojistné částky (4).xlsx
2015-09-22 20:44 - 2015-09-28 23:42 - 00000000 ____D C:\Users\Franta\AppData\Roaming\JAM Software
2015-09-22 20:28 - 2015-09-22 20:39 - 18727080 _____ (JAM Software ) C:\Users\Franta\Downloads\TreeSizeProfessional-x64-Demo.exe
2015-09-22 19:39 - 2015-09-22 19:39 - 00000000 ____D C:\Users\Franta\AppData\Local\Microsoft Corporation
2015-09-22 19:36 - 2015-09-22 19:36 - 00002181 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Poradce pro upgrade na systém Windows 7.lnk
2015-09-22 19:36 - 2015-09-22 19:36 - 00000000 ____D C:\Program Files (x86)\Microsoft Windows 7 Upgrade Advisor
2015-09-22 19:35 - 2015-09-22 19:35 - 08682272 _____ (Microsoft Corporation) C:\Users\Franta\Downloads\Windows7UpgradeAdvisorSetup.exe
2015-09-22 19:32 - 2015-09-22 19:32 - 00000000 ____D C:\Users\Franta\AppData\Roaming\NVIDIA
2015-09-22 19:26 - 2015-09-29 09:36 - 00003042 _____ C:\Windows\System32\Tasks\{407B9CC9-6072-4ABB-8FF8-FD22C43AFEF8}
2015-09-22 18:20 - 2015-09-14 00:09 - 06884984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-09-22 18:20 - 2015-09-14 00:09 - 03496056 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-09-22 18:20 - 2015-09-14 00:09 - 02558584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-09-22 18:20 - 2015-09-14 00:09 - 01062192 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2015-09-22 18:20 - 2015-09-14 00:09 - 00937776 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-09-22 18:20 - 2015-09-14 00:09 - 00385144 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-09-22 18:20 - 2015-09-14 00:09 - 00074872 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2015-09-22 18:20 - 2015-09-14 00:09 - 00062584 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-09-22 18:20 - 2015-09-11 14:17 - 05231082 _____ C:\Windows\system32\nvcoproc.bin
2015-09-22 18:17 - 2015-09-14 02:29 - 42840368 _____ C:\Windows\system32\nvcompiler.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 37819000 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 22525560 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 18543736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 17082928 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 16637528 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 15513208 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 14936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 14635600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 13660648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 12514824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 12185344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 11096696 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-09-22 18:17 - 2015-09-14 02:29 - 03530608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 03116160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 02940024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 02627192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 01898288 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435598.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 01558832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435598.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 01074808 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 01064056 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 00986232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 00944760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 00155792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 00033079 _____ C:\Windows\system32\nvinfo.pb
2015-09-22 17:22 - 2015-09-10 13:01 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-09-22 15:50 - 2015-09-22 15:50 - 00000000 ____D C:\Users\Franta\Documents\Kotle děda
2015-09-22 09:33 - 2015-09-15 03:18 - 00812008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-09-22 09:33 - 2015-09-15 03:18 - 00178152 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-21 15:42 - 2015-09-21 15:42 - 00000000 ____D C:\Users\Franta\Documents\Drbohlav
2015-09-19 22:45 - 2015-09-19 22:45 - 00001404 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2015-09-19 22:40 - 2015-10-05 19:37 - 896342347 _____ C:\Windows\MEMORY.DMP
2015-09-19 18:13 - 2015-09-19 18:35 - 00000000 ____D C:\GEN Šnejderová
2015-09-18 10:21 - 2015-09-18 10:21 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PicosmosTools
2015-09-18 10:21 - 2015-09-18 10:21 - 00000000 ____D C:\Program Files (x86)\PicosmosTools
2015-09-18 08:13 - 2015-09-18 08:13 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2015-09-17 18:09 - 2015-09-17 18:09 - 00000000 ____D C:\Users\Franta\Documents\modem Comtrend doma
2015-09-17 17:36 - 2015-09-17 17:36 - 00000989 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-09-17 17:36 - 2015-09-17 17:36 - 00000977 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-09-17 17:36 - 2015-09-17 17:36 - 00000977 _____ C:\ProgramData\Desktop\TeamViewer 10.lnk
2015-09-17 16:54 - 2015-09-17 16:54 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-17 16:43 - 2015-09-17 16:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MovieCut
2015-09-17 16:42 - 2015-09-17 16:43 - 00000000 ____D C:\Program Files (x86)\MovieCut
2015-09-16 23:57 - 2015-09-16 23:59 - 37653017 _____ (PortableApps.com) C:\Users\Franta\Downloads\ASCPortable_8.3.0.807_Free.paf.exe
2015-09-16 23:49 - 2015-08-06 21:15 - 01658544 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-09-16 23:49 - 2015-08-06 21:15 - 01519592 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-09-16 23:49 - 2015-08-06 21:15 - 01487008 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-09-16 23:49 - 2015-08-06 21:15 - 01355848 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-09-16 23:48 - 2015-08-22 15:42 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-09-16 23:48 - 2015-08-10 20:15 - 01084928 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-09-16 23:48 - 2015-08-10 20:15 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-09-16 23:48 - 2015-08-10 20:06 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-09-16 23:48 - 2015-08-10 19:49 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-09-16 23:48 - 2015-08-10 18:56 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-09-16 23:48 - 2015-08-10 18:46 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-09-16 23:48 - 2015-08-07 23:41 - 07460168 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-09-16 23:48 - 2015-08-07 23:40 - 01736520 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-09-16 23:48 - 2015-08-07 23:40 - 01499920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-09-16 23:48 - 2015-08-07 23:40 - 01134752 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-09-16 23:48 - 2015-08-07 23:40 - 00686960 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-09-16 23:48 - 2015-08-07 23:40 - 00507176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-09-16 23:48 - 2015-08-07 16:13 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-09-16 23:48 - 2015-08-06 19:05 - 00669184 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2015-09-16 23:48 - 2015-08-06 18:47 - 04710400 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-09-16 23:48 - 2015-08-06 18:37 - 00536576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2015-09-16 23:48 - 2015-08-06 18:18 - 04068352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-09-16 23:48 - 2015-07-16 20:58 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\NcdAutoSetup.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 35222128 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-09-16 23:21 - 2015-09-16 23:21 - 06255888 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 05714880 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 04514008 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-09-16 23:21 - 2015-09-16 23:21 - 02930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 02702552 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-09-16 23:21 - 2015-09-16 23:21 - 02585816 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 02461528 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 02393432 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 01933584 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 01749208 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 01310936 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 00944984 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 00349968 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 00349528 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 00298768 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 00184688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-09-16 23:03 - 2015-09-16 23:03 - 00003210 _____ C:\Windows\System32\Tasks\ASCU8_PerformanceMonitor
2015-09-16 22:58 - 2015-09-16 22:58 - 00752856 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsPer.sys
2015-09-16 22:58 - 2015-09-16 22:58 - 00083160 _____ (Realtek Semiconductor.) C:\Windows\system32\RtCRX64.dll
2015-09-16 22:53 - 2015-09-16 22:53 - 00464144 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2015-09-16 22:37 - 2015-09-29 09:56 - 00000286 _____ C:\Windows\Tasks\ASCU8_SkipUac_Franta.job
2015-09-16 22:37 - 2015-09-22 17:24 - 00002882 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Franta)
2015-09-16 22:37 - 2015-09-16 22:37 - 00003184 _____ C:\Windows\System32\Tasks\Driver Booster Update
2015-09-16 22:37 - 2015-09-16 22:37 - 00002388 _____ C:\Windows\System32\Tasks\ASCU8_SkipUac_Franta
2015-09-16 19:08 - 2015-10-05 21:13 - 00000982 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-16 19:08 - 2015-10-05 19:40 - 00000978 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d041411166f36.job
2015-09-14 20:01 - 2014-03-19 05:14 - 00229080 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2015-09-14 20:01 - 2014-03-19 05:14 - 00190168 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2015-09-14 20:01 - 2014-03-19 05:14 - 00038616 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2015-09-14 20:01 - 2012-07-27 01:48 - 00040248 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2015-09-14 19:49 - 2015-09-14 19:58 - 191052979 _____ C:\Users\Franta\Downloads\Wireless LAN_Broadcom_12.0.0.9590_W81x64_A.zip
2015-09-14 17:36 - 2015-09-14 17:36 - 00000000 ____D C:\Users\Franta\Documents\OK Písek
2015-09-14 13:51 - 2015-09-14 13:54 - 00000000 ____D C:\Users\Franta\Documents\Kubeš bonusy
2015-09-11 08:31 - 2015-09-11 08:31 - 00000000 ____D C:\Users\Franta\Documents\Luby reklama
2015-09-11 08:18 - 2015-09-11 08:21 - 00144384 _____ C:\Users\Franta\Desktop\Špatenková.xls
2015-09-10 12:54 - 2015-09-10 12:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-09-10 12:54 - 2015-09-10 12:54 - 00000000 ____D C:\ProgramData\ESET
2015-09-08 21:22 - 2015-09-08 21:22 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Sun
2015-09-08 21:22 - 2015-09-08 21:22 - 00000000 ____D C:\Users\Franta\.oracle_jre_usage
2015-09-08 21:20 - 2015-09-08 21:20 - 00584288 _____ (Oracle Corporation) C:\Users\Franta\Downloads\jre-8u60-windows-i586-iftw.exe
2015-09-08 20:35 - 2015-08-22 20:19 - 25188352 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-08 20:35 - 2015-08-22 19:22 - 19856384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-09-08 20:34 - 2015-09-03 04:18 - 02531400 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-08 20:34 - 2015-09-03 04:17 - 01903848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-09-08 20:34 - 2015-09-02 20:48 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-08 20:34 - 2015-09-02 19:09 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-09-08 20:34 - 2015-09-02 04:56 - 04175872 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-08 20:34 - 2015-09-02 04:55 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-08 20:34 - 2015-09-02 04:50 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-08 20:34 - 2015-09-02 04:17 - 00301568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-09-08 20:34 - 2015-09-02 04:13 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-09-08 20:34 - 2015-08-27 04:48 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-09-08 20:34 - 2015-08-26 20:00 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-09-08 20:34 - 2015-08-26 20:00 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-09-08 20:34 - 2015-08-26 20:00 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-09-08 20:34 - 2015-08-26 20:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-09-08 20:34 - 2015-08-26 16:46 - 03705344 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-09-08 20:34 - 2015-08-26 16:29 - 02240512 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-09-08 20:34 - 2015-08-26 16:27 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-09-08 20:34 - 2015-08-26 16:27 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-09-08 20:34 - 2015-08-26 16:26 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-09-08 20:34 - 2015-08-26 16:26 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-09-08 20:34 - 2015-08-26 16:26 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-09-08 20:34 - 2015-08-22 19:35 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-08 20:34 - 2015-08-22 19:34 - 00585216 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-08 20:34 - 2015-08-22 19:21 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-08 20:34 - 2015-08-22 19:20 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-08 20:34 - 2015-08-22 18:55 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-09-08 20:34 - 2015-08-22 18:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-09-08 20:34 - 2015-08-22 18:50 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-09-08 20:34 - 2015-08-22 18:45 - 00665600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-09-08 20:34 - 2015-08-22 18:44 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-09-08 20:34 - 2015-08-22 18:41 - 14451712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-08 20:34 - 2015-08-22 18:41 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-08 20:34 - 2015-08-22 18:41 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-09-08 20:34 - 2015-08-22 18:41 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-09-08 20:34 - 2015-08-22 18:39 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-08 20:34 - 2015-08-22 18:28 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-09-08 20:34 - 2015-08-22 18:26 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-08 20:34 - 2015-08-22 18:23 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-09-08 20:34 - 2015-08-22 18:22 - 12857344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-09-08 20:34 - 2015-08-22 18:20 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-09-08 20:34 - 2015-08-22 18:18 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-09-08 20:34 - 2015-08-22 18:18 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-09-08 20:34 - 2015-08-22 18:18 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-09-08 20:34 - 2015-08-22 18:14 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-08 20:34 - 2015-08-22 18:01 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-09-08 20:34 - 2015-08-22 18:00 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-09-08 20:34 - 2015-08-22 17:56 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-09-08 20:34 - 2015-08-22 17:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-09-08 20:34 - 2015-08-03 23:15 - 00074928 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-09-08 20:34 - 2015-08-03 23:15 - 00065600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-09-08 20:34 - 2015-08-01 16:22 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-09-08 20:34 - 2015-08-01 05:47 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2015-09-08 20:34 - 2015-08-01 05:45 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
2015-09-08 20:34 - 2015-08-01 05:38 - 01265152 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-08 20:34 - 2015-08-01 05:37 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2015-09-08 20:34 - 2015-08-01 05:37 - 00359936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2015-09-08 20:34 - 2015-07-30 19:18 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-09-08 20:34 - 2015-07-30 18:22 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-09-08 20:34 - 2015-07-22 16:34 - 02775552 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-09-08 20:34 - 2015-07-22 16:33 - 01728000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2015-09-08 20:34 - 2015-07-22 16:25 - 02461184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-09-08 20:34 - 2015-07-22 16:25 - 01546752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2015-09-08 20:34 - 2015-07-18 20:31 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2015-09-08 20:34 - 2015-07-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2015-09-08 20:34 - 2015-07-18 20:29 - 00148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2015-09-08 20:34 - 2015-07-18 20:27 - 00520192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2015-09-08 17:06 - 2015-09-08 17:06 - 00183222 _____ C:\Users\Franta\Downloads\Kalkulačka_aktualizace_PČ_HAV_SMART_2014.xlsx
2015-09-07 22:04 - 2015-09-28 22:54 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2015-09-07 21:40 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2015-09-07 21:38 - 2015-09-07 21:38 - 00001792 _____ C:\AdwCleaner[R1].txt
2015-09-07 20:08 - 2015-09-07 20:08 - 00000000 ____D C:\Users\Franta\AppData\Roaming\AudioCD
2015-09-07 19:51 - 2015-09-07 19:51 - 00000270 __RSH C:\ProgramData\ntuser.pol
2015-09-07 19:49 - 2015-09-29 20:49 - 00000000 ____D C:\AdwCleaner
2015-09-07 19:49 - 2012-05-02 12:17 - 01070152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX
2015-09-07 19:49 - 2009-03-24 13:52 - 00129872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSSTDFMT.DLL
2015-09-07 19:40 - 2015-09-07 19:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 12
2015-09-07 19:37 - 2015-09-07 19:40 - 00000000 ____D C:\Program Files\CyberLink
2015-09-07 19:36 - 2015-09-07 19:40 - 00000000 ____D C:\ProgramData\install_clap
2015-09-07 19:34 - 2015-09-07 19:34 - 00000262 _____ C:\Windows\SysWOW64\Drivers\vwifikerneldrv.sys
2015-09-07 19:34 - 2015-09-07 19:34 - 00000262 _____ C:\Windows\SysWOW64\d3dx9_11.dll.tmp
2015-09-07 19:34 - 2015-09-07 19:34 - 00000262 _____ C:\ProgramData\fontcacheev1.dat
2015-09-07 19:34 - 2015-06-02 17:38 - 00055800 _____ () C:\Windows\system32\Drivers\adgnetworkwfpdrv.sys
2015-09-07 19:33 - 2015-09-07 19:33 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Performix LLC
2015-09-07 19:31 - 2015-09-07 19:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audials 12
2015-09-07 19:31 - 2015-09-07 19:31 - 00000000 ____D C:\ProgramData\RapidSolution
2015-09-07 19:31 - 2015-09-07 19:31 - 00000000 ____D C:\Program Files (x86)\Audials
2015-09-07 19:29 - 2015-09-07 19:29 - 00000000 ____D C:\Users\Franta\AppData\Local\RapidSolution
2015-09-07 11:20 - 2015-09-07 11:20 - 00007161 _____ C:\Users\Franta\Downloads\SPVAK20150101_20150331 (1).xlsx
2015-09-07 11:19 - 2015-09-07 11:19 - 00007018 _____ C:\Users\Franta\Downloads\SPVAK20150701_20150831.xlsx
2015-09-07 11:17 - 2015-09-07 11:17 - 00007210 _____ C:\Users\Franta\Downloads\SPVAK20150401_20150630.xlsx
2015-09-07 11:16 - 2015-09-07 11:16 - 00007161 _____ C:\Users\Franta\Downloads\SPVAK20150101_20150331.xlsx

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-05 21:33 - 2014-11-29 01:25 - 00000000 ____D C:\Users\Franta\AppData\Roaming\ClassicShell
2015-10-05 21:10 - 2014-11-28 10:34 - 00003842 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{EDF3D146-1DF7-49B7-A925-313BC664BFDD}
2015-10-05 21:01 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-10-05 19:40 - 2014-11-28 09:02 - 00000000 ____D C:\Users\Franta
2015-10-05 19:38 - 2015-07-03 12:49 - 00000000 ____D C:\Windows\Minidump
2015-10-05 19:38 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-05 19:37 - 2014-11-27 20:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-05 19:33 - 2014-12-20 21:52 - 00000000 ____D C:\Users\Franta\Documents\foto vozidel
2015-10-05 14:50 - 2014-11-28 09:03 - 00000000 ____D C:\Users\Franta\AppData\Local\Packages
2015-10-05 13:29 - 2015-08-06 14:51 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1933510014-705603268-1897034679-1002
2015-10-05 11:18 - 2014-12-20 19:59 - 00000000 ____D C:\Users\Franta\Documents\AUTO NEJDL
2015-10-05 11:10 - 2014-12-20 19:58 - 00000000 ____D C:\Users\Franta\Documents\AEROXON
2015-10-05 08:59 - 2014-12-20 21:59 - 00000000 ____D C:\Users\Franta\Documents\Majerová Přeštice
2015-10-05 08:39 - 2014-12-20 18:04 - 00000000 ____D C:\scan
2015-10-05 07:54 - 2014-11-28 09:07 - 00000000 ____D C:\Users\Franta\AppData\Local\CrashDumps
2015-10-03 18:44 - 2014-09-15 15:15 - 00739924 _____ C:\Windows\system32\perfh005.dat
2015-10-03 18:44 - 2014-09-15 15:15 - 00151610 _____ C:\Windows\system32\perfc005.dat
2015-10-03 18:44 - 2014-03-18 12:03 - 01745984 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-03 17:41 - 2014-12-27 16:07 - 00000000 ____D C:\Users\Franta\AppData\Roaming\MPC-HC
2015-10-03 17:07 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-09-29 21:24 - 2015-08-07 14:38 - 00000000 ____D C:\Users\Franta\Documents\Facebook
2015-09-29 21:17 - 2013-08-22 15:25 - 00000219 _____ C:\Windows\system.ini
2015-09-29 21:16 - 2014-11-28 09:03 - 00000000 ____D C:\Users\Franta\AppData\Local\VirtualStore
2015-09-29 18:20 - 2014-12-20 21:59 - 00000000 ____D C:\Users\Franta\Documents\kucharky
2015-09-29 14:01 - 2014-12-20 22:44 - 00000000 ____D C:\Users\Franta\Documents\záloha foták Rybníčky
2015-09-28 23:39 - 2015-07-22 17:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aplikace společnosti Lotus
2015-09-28 23:39 - 2014-12-23 16:19 - 00000000 ___RD C:\Users\Franta\Desktop\aplikace
2015-09-28 23:26 - 2013-08-22 17:36 - 00000000 ___HD C:\Windows\ELAMBKUP
2015-09-28 23:25 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-09-28 23:00 - 2015-07-23 17:26 - 00000000 ____D C:\ProgramData\Norton
2015-09-28 21:26 - 2015-07-20 16:24 - 00000000 ____D C:\Program Files\PDFCreator
2015-09-28 19:46 - 2015-01-07 21:24 - 00000000 ____D C:\ProgramData\CanonIJPLM
2015-09-28 19:42 - 2014-12-20 19:59 - 00000000 ____D C:\Users\Franta\Documents\Canon sceny
2015-09-24 23:59 - 2015-06-22 22:03 - 00000000 ____D C:\ProgramData\Smarty Uninstaller 4
2015-09-24 23:59 - 2014-12-20 22:06 - 00000000 ____D C:\Users\Franta\Documents\Stažené soubory
2015-09-24 23:06 - 2014-11-27 20:35 - 00000000 ____D C:\Users\Franta\AppData\Local\Adobe
2015-09-24 19:15 - 2014-11-28 23:26 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-09-24 00:32 - 2014-07-25 23:21 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-23 13:38 - 2014-12-20 22:08 - 00000000 ____D C:\Users\Franta\Documents\škody
2015-09-22 21:28 - 2015-01-07 20:35 - 00002562 _____ C:\Windows\diagwrn.xml
2015-09-22 21:28 - 2015-01-07 20:35 - 00001908 _____ C:\Windows\diagerr.xml
2015-09-22 18:20 - 2015-02-18 22:24 - 00000000 ____D C:\Temp
2015-09-22 18:20 - 2014-09-15 15:00 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-22 18:20 - 2014-09-15 15:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-09-22 18:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Help
2015-09-22 18:19 - 2014-09-15 15:00 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-22 17:43 - 2015-01-09 16:14 - 00000000 ____D C:\Users\Franta\AppData\Roaming\TeamViewer
2015-09-22 17:41 - 2015-07-22 17:29 - 00228456 _____ C:\Users\Franta\Documents\LotusInstall.log
2015-09-22 17:24 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2015-09-22 17:22 - 2014-12-21 00:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-22 17:22 - 2014-12-21 00:22 - 00000000 ____D C:\Program Files (x86)\Java
2015-09-22 17:21 - 2015-01-20 19:10 - 00000000 ____D C:\Program Files (x86)\Secunia
2015-09-22 17:20 - 2015-05-11 21:50 - 00000000 ____D C:\Users\Franta\AppData\Roaming\GlarySoft
2015-09-22 17:20 - 2015-05-11 21:49 - 00000000 ____D C:\Program Files (x86)\Glarysoft
2015-09-22 17:20 - 2014-07-25 23:21 - 00000000 ____D C:\ProgramData\Temp
2015-09-22 11:39 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-09-22 11:18 - 2015-07-07 10:42 - 00000099 _____ C:\Users\Public\LMDebug.log
2015-09-22 10:57 - 2014-12-20 21:59 - 00000000 ____D C:\Users\Franta\Documents\Kontaktní místo Klatovy
2015-09-22 09:33 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-09-21 09:56 - 2014-12-20 22:02 - 00000000 ____D C:\Users\Franta\Documents\Nový Hugo
2015-09-21 07:52 - 2014-11-27 21:16 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-09-19 22:47 - 2015-08-18 08:58 - 00003336 _____ C:\Windows\System32\Tasks\AcerCloud
2015-09-19 18:35 - 2014-12-20 16:19 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Generali pojišťovna
2015-09-18 10:47 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-09-17 16:43 - 2015-02-01 20:34 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Abelssoft
2015-09-17 16:43 - 2015-02-01 20:34 - 00000000 ____D C:\Users\Franta\AppData\Local\Abelssoft
2015-09-17 09:25 - 2015-01-05 23:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetSetMan
2015-09-17 09:25 - 2015-01-05 23:19 - 00000000 ____D C:\Program Files (x86)\NetSetMan
2015-09-16 23:22 - 2015-07-09 17:42 - 00000000 ____D C:\Windows\system32\DAX2
2015-09-16 23:22 - 2014-09-15 15:07 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-09-16 22:58 - 2014-09-15 15:05 - 00000000 ____D C:\Windows\SysWOW64\sda
2015-09-16 22:48 - 2015-06-24 21:49 - 00000000 ____D C:\Windows\Panther
2015-09-16 19:08 - 2015-02-05 14:41 - 00003718 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d041411166f36
2015-09-16 19:08 - 2014-11-28 10:35 - 00003954 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-14 08:58 - 2014-11-28 10:35 - 00000000 ____D C:\Users\Franta\AppData\Local\Google
2015-09-10 17:26 - 2014-12-20 21:59 - 00000000 ____D C:\Users\Franta\Documents\nabídky
2015-09-10 13:23 - 2014-11-28 00:12 - 00000000 ____D C:\ProgramData\Oracle
2015-09-10 09:09 - 2014-12-20 22:00 - 00000000 ____D C:\Users\Franta\Documents\náklady
2015-09-09 11:07 - 2015-02-05 23:14 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Foxit Software
2015-09-08 21:36 - 2013-08-22 16:44 - 00606056 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-08 21:33 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-09-08 20:46 - 2014-03-18 11:45 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-08 20:43 - 2014-11-28 09:53 - 00000000 ____D C:\Windows\system32\MRT
2015-09-08 10:54 - 2014-12-20 21:52 - 00000000 ____D C:\Users\Franta\Documents\foto škody
2015-09-07 22:03 - 2014-07-25 23:24 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-09-07 22:03 - 2014-07-25 23:24 - 00000000 ____D C:\Program Files (x86)\WildGames
2015-09-07 19:49 - 2015-07-23 17:40 - 00000000 ____D C:\ProgramData\Licenses
2015-09-07 19:41 - 2014-07-25 23:22 - 00000000 ____D C:\ProgramData\CyberLink
2015-09-07 19:36 - 2014-07-25 23:21 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-07 19:34 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore
2015-09-07 16:12 - 2014-12-20 22:53 - 00000000 ____D C:\Users\Franta\Documents\životní pojištění firmy

==================== Files in the root of some directories =======

2015-07-15 17:10 - 2015-07-15 17:10 - 0004608 _____ () C:\Users\Franta\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-09-15 15:07 - 2014-09-15 15:07 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-09-07 19:34 - 2015-09-07 19:34 - 0000262 _____ () C:\ProgramData\fontcacheev1.dat

Files to move or delete:
====================
C:\ProgramData\fontcacheev1.dat


Some files in TEMP:
====================
C:\Users\Franta\AppData\Local\Temp\COMAP.EXE
C:\Users\Franta\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-10-05 13:29

==================== End of FRST.txt ============================

Re: podezření na sledování klávesnice - key logger

Napsal: 05 říj 2015 20:59
od Rudy
Teď spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: podezření na sledování klávesnice - key logger

Napsal: 05 říj 2015 22:28
od fandaj
Zde log:

# AdwCleaner v5.010 - Logfile created 05/10/2015 at 23:23:22
# Updated 04/10/2015 by Xplode
# Database : 2015-10-05.3 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Franta - ACER-FRANTA
# Running from : C:\Users\Franta\AppData\Local\Microsoft\Windows\INetCache\IE\CELQMBTF\adwcleaner_5.010.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\SecTaskMan
[-] Folder Deleted : C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\anttoolbar@ant.com

***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{363F46BE-27B4-4C8D-99E7-B1E049B84376}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{525F116F-04AD-40A2-AE2F-A0C4E1AFEF98}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{90A9B7D2-3794-45EA-9E23-140E3938D2D9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9852A670-F845-491B-9BE6-EBD841B8A613}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A753A1EC-973E-4718-AF8E-A3F554D45C44}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ACE4747B-35BD-4E97-9DD7-1D4245B0695C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CE77C59C-CFD2-429F-868C-8B04D23F94CA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F544E0F5-CA3C-47EA-A64D-35FCF1602396}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02AFA80F-4BEE-41FD-8572-214B58A9EF90}

***** [ Web browsers ] *****


*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1885 bytes] ##########

Re: podezření na sledování klávesnice - key logger

Napsal: 06 říj 2015 16:34
od Rudy
Dejte nový log FRST.

Re: podezření na sledování klávesnice - key logger

Napsal: 06 říj 2015 19:04
od fandaj
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:04-10-2015
Ran by Franta (administrator) on ACER-FRANTA (06-10-2015 19:52:09)
Running from C:\Users\Franta\Downloads
Loaded Profiles: UpdatusUser & Franta (Available Profiles: UpdatusUser & Franta & rxbaapidwp)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCService.exe
(IOBit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCAvSvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
() C:\Program Files (x86)\Allway Sync\Bin\SyncService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(Ilja Herlein) C:\Program Files (x86)\NetSetMan\nsmservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\Monitor.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Ilja Herlein) C:\Program Files (x86)\NetSetMan\netsetman.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
() C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Nokia) C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
(Farbar) C:\Users\Franta\Downloads\FRST64 (1).exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-09-16] (Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5595848 2015-07-08] (ESET)
HKLM-x32\...\Run: [NetSetMan] => C:\Program Files (x86)\NetSetMan\netsetman.exe [6544040 2015-09-17] (Ilja Herlein)
HKLM-x32\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [91488 2015-07-27] ()
HKLM-x32\...\Run: [4x24 Scan2PC] => C:\Windows\Twain_32\Samsung\SCX4x24\Scan2Pc.exe [915456 2012-01-11] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\...\Run: [Pokki] => C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\...\RunOnce: [RegDXVA1] => C:\Windows\system32\cmd.exe /c reg import "C:\Program Files (x86)\Acer\abPhoto\SwitchUserVideoKey.reg"
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\...\RunOnce: [SetAsDefault] => C:\Program Files (x86)\Acer\Acer Video Player\SwitchUserVideoKey.bat
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\...\RunOnce: [Application Restart #0] => C:\Users\UpdatusUser\AppData\Local\Pokki\Engine\HostAppService.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disab (the data entry has 556 more characters).
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\...\Run: [Advanced SystemCare Ultimate] => C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCTray.exe [2596640 2015-05-22] (IObit)
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7935768 2015-09-23] (SUPERAntiSpyware)
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1092448 2014-11-19] (Nokia)
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\...\MountPoints2: {bc5d7cbd-d9c6-11e4-8309-3010b38b91a7} - "E:\AutoRun.exe"
HKU\S-1-5-18\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [1769312 2015-07-27] ()
HKU\S-1-5-18\...\Run: [KSS] => "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe" autorun
IFEO\DBUnpacker.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\gate32.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\gate64.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\StrongholdAntiMalware.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\StrongholdAntiMalwareInstaller.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\StrongholdAntiMalwareService.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\ToolbarRemover.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
IFEO\UpdateAntiMalware.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\AutoReactivator.exe
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-09-14]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Restriction - Chrome <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{D18363F6-0C08-4218-97C1-4CCB5B6F57F6}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{F22F1FC6-50F6-4270-9665-67DB837932F7}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com/?pc=ACJB
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1933510014-705603268-1897034679-1001 -> DefaultScope {F8631339-1A73-4B1D-AF65-705DDC88C6E3} URL =
SearchScopes: HKU\S-1-5-21-1933510014-705603268-1897034679-1001 -> {F8631339-1A73-4B1D-AF65-705DDC88C6E3} URL =
SearchScopes: HKU\S-1-5-21-1933510014-705603268-1897034679-1002 -> {F8631339-1A73-4B1D-AF65-705DDC88C6E3} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-09-11] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-10] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-10] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Toolbar: HKU\S-1-5-21-1933510014-705603268-1897034679-1002 -> No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-24] ()
FF Plugin: @eleco.com/o2cplayer -> C:\Program Files (x86)\Eleco\o2c Player\npO2CPlayer64.DLL [2015-02-17] (ELECO Software GmbH)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-24] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1220162.dll [2015-08-31] (Adobe Systems, Inc.)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @eleco.com/o2cplayer -> C:\Program Files (x86)\Eleco\o2c Player\npO2CPlayer.DLL [2015-02-17] (ELECO Software GmbH)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-10] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-03] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2015-01-08] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\wmp.dll [2015-01-21] (Microsoft Corporation)
FF Extension: Ant Video Downloader - C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\anttoolbar@ant.com [2015-10-06]
FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\artur.dubovoy@gmail.com [2015-09-24]
FF Extension: Easy media download - C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\jid1-ach2kaGSshPJCg@jetpack.xpi [2015-05-31]
FF Extension: Google™ Translator Lite - C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\jid1-f3mYMbCpz2AZYl@jetpack.xpi [2015-09-07]
FF Extension: Fire Media Player - C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\musicplayer@firemediaplayer.com.xpi [2015-05-31]
FF Extension: Adblock Plus - C:\Users\Franta\AppData\Roaming\Mozilla\Firefox\Profiles\mxjh7lxt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-24]

Chrome:
=======
CHR StartupUrls: Profile 2 -> "hxxp://hugo.generali.cz/"
CHR Profile: C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Disk Google) - C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-26]
CHR Extension: (YouTube) - C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-26]
CHR Extension: (Vyhledávání Google) - C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-26]
CHR Extension: (Gmail) - C:\Users\Franta\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-26]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCService.exe [911648 2014-11-22] (IObit)
R2 ASCAntivirusSrv; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ascavsvc.exe [660768 2015-06-11] (IOBit)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2013-11-14] (Broadcom Corporation.)
R2 BotkindSyncService; C:\Program Files (x86)\Allway Sync\Bin\SyncService.exe [182784 2015-04-13] () [File not signed]
S3 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2858336 2015-07-23] (Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2774104 2015-09-11] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1353720 2015-07-08] (ESET)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-06-12] (Acer Incorporated)
S4 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [347200 2015-01-08] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282096 2014-03-18] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-31] (IObit)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [455912 2014-12-30] (Acer Incorporate)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-05-29] ()
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2014-11-17] (Hewlett-Packard) [File not signed]
R2 nsmService; C:\Program Files (x86)\NetSetMan\nsmservice.exe [1278632 2015-02-06] (Ilja Herlein)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2014-11-17] (Hewlett-Packard) [File not signed]
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-06-26] (Acer Incorporate)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-08-25] ()
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-06-26] (Acer Incorporate)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240 2014-07-15] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3816176 2014-05-29] (Intel® Corporation)
S4 SpyHunter 4 Service; no ImagePath

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 01611921; C:\Windows\system32\DRIVERS\01611921.sys [157712 2013-10-18] (Kaspersky Lab)
R0 01611922; C:\Windows\system32\DRIVERS\01611922.sys [40464 2013-10-18] (Kaspersky Lab)
R0 62012566; C:\Windows\system32\DRIVERS\62012566.sys [460888 2011-07-21] (Kaspersky Lab ZAO)
R1 adgnetworkwfpdrv; C:\Windows\System32\drivers\adgnetworkwfpdrv.sys [55800 2015-06-02] ()
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-11-14] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7593176 2015-07-09] (Broadcom Corporation)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2014-03-26] (Motorola Solutions, Inc.)
S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [54072 2007-12-12] (Samsung Electronics)
S2 DgiVecp; C:\Windows\SysWOW64\Drivers\DgiVecp.sys [41984 2007-12-11] (Samsung Electronics Co., Ltd.) [File not signed]
S3 DrvAgent64; C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [13824 2015-02-18] (Phoenix Technologies) [File not signed]
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [255240 2015-07-14] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [251632 2015-07-14] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [178520 2015-07-14] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [231520 2015-07-14] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [53360 2015-07-14] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [72400 2015-07-14] (ESET)
S3 ESETCleanersDriver; C:\Windows\system32\Drivers\ESETCleanersDriver.sys [170280 2014-12-27] (ESET)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-07-29] ()
R3 ETDI2C; C:\Windows\system32\DRIVERS\ETDI2C.sys [173384 2014-04-09] (ELAN Microelectronic Corp.)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [243200 2009-12-15] (Huawei Technologies Co., Ltd.)
S3 Huawei; C:\Windows\system32\DRIVERS\ewdcsc.sys [32768 2015-04-07] (Huawei Tech. Co., Ltd.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2014-12-27] (REALiX(tm))
S3 hwusbdev; C:\Windows\system32\DRIVERS\ewusbdev.sys [114304 2009-12-15] (Huawei Technologies Co., Ltd.)
R3 iaLPSS_I2C; C:\Windows\System32\drivers\iaLPSS_I2C.sys [120312 2014-06-03] (Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2015-07-09] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated)
R1 RrNetCapFilterDriver; C:\Windows\system32\DRIVERS\RrNetCapFilterDriver.sys [25256 2015-09-02] (Audials AG)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [752856 2015-09-16] (Realsil Semiconductor Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
S3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33448 2015-07-09] (Synaptics Incorporated)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 WIMMount; C:\Program Files (x86)\Windows Kits\8.0\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wimmount.sys [40392 2012-07-25] (Microsoft Corporation)
S3 keycrypt; system32\DRIVERS\KeyCrypt64.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S2 sbapifs; system32\DRIVERS\sbapifs.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-06 19:50 - 2015-10-06 19:51 - 00065733 _____ C:\Users\Franta\Downloads\Addition.txt
2015-10-06 19:48 - 2015-10-06 19:52 - 00029719 _____ C:\Users\Franta\Downloads\FRST.txt
2015-10-06 19:47 - 2015-10-06 19:52 - 00000000 ____D C:\FRST
2015-10-06 19:46 - 2015-10-06 19:46 - 02193920 _____ (Farbar) C:\Users\Franta\Downloads\FRST64 (1).exe
2015-10-06 17:35 - 2015-10-06 17:37 - 00000304 _____ C:\Windows\Tasks\Uninstaller_SkipUac_Franta.job
2015-10-06 17:35 - 2015-10-06 17:35 - 00002406 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_Franta
2015-10-06 14:19 - 2015-10-06 14:20 - 00023662 _____ C:\Users\Franta\Desktop\D00000.DAV
2015-10-06 08:51 - 2015-10-06 17:00 - 00002419 _____ C:\Windows\setupact.log
2015-10-06 08:51 - 2015-10-06 08:51 - 00000000 _____ C:\Windows\setuperr.log
2015-10-06 08:44 - 2015-10-06 17:14 - 00157717 _____ C:\Windows\WindowsUpdate.log
2015-10-06 00:24 - 2015-10-06 14:32 - 00000000 ___RD C:\scan
2015-10-05 23:51 - 2015-10-06 15:51 - 00000536 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task aa2c357f-5d30-423e-81ae-dc6e101b3d36.job
2015-10-05 23:51 - 2015-10-06 13:59 - 00000536 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ad1f359c-a95b-488b-a93f-9376579be6d2.job
2015-10-05 23:51 - 2015-10-05 23:51 - 00003598 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task ad1f359c-a95b-488b-a93f-9376579be6d2
2015-10-05 23:51 - 2015-10-05 23:51 - 00003516 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task aa2c357f-5d30-423e-81ae-dc6e101b3d36
2015-10-05 23:51 - 2015-10-05 23:51 - 00001840 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2015-10-05 23:51 - 2015-10-05 23:51 - 00001840 _____ C:\ProgramData\Desktop\SUPERAntiSpyware Free Edition.lnk
2015-10-05 23:51 - 2015-10-05 23:51 - 00000000 ____D C:\Users\Franta\AppData\Roaming\SUPERAntiSpyware.com
2015-10-05 23:51 - 2015-10-05 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2015-10-05 23:50 - 2015-10-05 23:51 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2015-10-05 23:50 - 2015-10-05 23:50 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2015-10-05 23:22 - 2015-10-05 23:23 - 00000000 ____D C:\AdwCleaner
2015-10-05 21:57 - 2015-10-05 21:57 - 00000810 _____ C:\DelFix.txt
2015-10-05 21:49 - 2015-10-05 23:08 - 00000000 ____D C:\Program Files (x86)\Security Task Manager
2015-10-05 21:49 - 2015-10-05 21:49 - 00001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Protector.lnk
2015-10-05 21:49 - 2015-10-05 21:49 - 00001175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager.lnk
2015-10-05 21:49 - 2015-10-05 21:49 - 00001163 _____ C:\Users\Public\Desktop\Security Task Manager.lnk
2015-10-05 21:49 - 2015-10-05 21:49 - 00001163 _____ C:\ProgramData\Desktop\Security Task Manager.lnk
2015-10-05 21:33 - 2015-10-05 21:33 - 02193920 _____ (Farbar) C:\Users\Franta\Downloads\FRST64.exe
2015-10-05 19:55 - 2015-10-05 19:56 - 92763288 _____ (Kaspersky Lab ZAO) C:\Users\Franta\Downloads\KVRT.exe
2015-10-05 19:36 - 2015-10-05 23:19 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-10-05 19:35 - 2015-10-05 23:08 - 00000000 ____D C:\Users\Franta\Desktop\Virus Removal Tool
2015-10-05 19:35 - 2013-10-18 16:26 - 00157712 _____ (Kaspersky Lab) C:\Windows\system32\Drivers\01611921.sys
2015-10-05 19:35 - 2013-10-18 16:26 - 00040464 _____ (Kaspersky Lab) C:\Windows\system32\Drivers\01611922.sys
2015-10-05 11:10 - 2015-10-05 11:10 - 00000000 ____D C:\Users\Franta\Documents\Nová složka
2015-10-05 09:41 - 2015-10-05 23:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-10-03 18:43 - 2015-10-05 23:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-03 17:10 - 2015-10-03 18:49 - 00000000 ____D C:\Users\Franta\Documents\homecast staelit
2015-09-29 21:03 - 2015-10-05 23:08 - 00000000 ____D C:\Users\Franta\AppData\Roaming\ProductData
2015-09-29 10:33 - 2015-09-29 10:33 - 00000000 ____D C:\Users\Franta\Downloads\backups
2015-09-29 09:29 - 2015-10-06 00:06 - 00000000 ____D C:\Program Files\CCleaner
2015-09-29 09:29 - 2015-10-05 23:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-09-29 09:29 - 2015-09-29 09:29 - 00002798 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-09-29 09:29 - 2015-09-29 09:29 - 00000840 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-09-29 09:29 - 2015-09-29 09:29 - 00000840 _____ C:\ProgramData\Desktop\CCleaner.lnk
2015-09-28 23:37 - 2015-09-28 23:37 - 00000085 _____ C:\Windows\wininit.ini
2015-09-28 22:56 - 2015-09-28 22:56 - 00364404 _____ C:\Users\Franta\Downloads\i_isrc_czech.exe
2015-09-28 22:43 - 2015-09-29 15:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Instant Source
2015-09-28 22:24 - 2015-09-28 22:24 - 01594840 _____ (Kaspersky Lab) C:\Users\Franta\Downloads\kts15.0.2.361abccs_8421.exe
2015-09-28 22:08 - 2015-10-05 23:08 - 00000000 ____D C:\Users\Franta\AppData\Local\F-Secure
2015-09-28 22:08 - 2015-09-28 22:16 - 00000000 ____D C:\ProgramData\F-Secure
2015-09-28 22:08 - 2015-09-28 22:08 - 00572456 _____ (F-Secure Corporation) C:\Users\Franta\Downloads\F-SecureOnlineScanner.exe
2015-09-28 21:20 - 2015-09-28 21:20 - 00029140 _____ C:\Users\Franta\Desktop\report.txt
2015-09-24 22:22 - 2015-09-24 22:22 - 00029771 _____ C:\Users\Franta\Documents\výsledek testu anti malware.txt
2015-09-24 21:43 - 2015-10-05 23:08 - 00000000 ____D C:\Users\Public\Documents\Stronghold AntiMalware
2015-09-24 21:43 - 2015-10-05 23:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stronghold AntiMalware
2015-09-24 21:43 - 2015-10-05 23:08 - 00000000 ____D C:\ProgramData\Documents\Stronghold AntiMalware
2015-09-24 21:43 - 2015-10-05 23:08 - 00000000 ____D C:\Program Files (x86)\Stronghold AntiMalware
2015-09-24 21:43 - 2015-09-24 21:43 - 00001350 _____ C:\Users\Franta\Desktop\Stronghold AntiMalware.lnk
2015-09-24 21:18 - 2014-10-10 09:44 - 01122304 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Windows\SysWOW64\libeay32.dll
2015-09-24 21:18 - 2014-10-10 09:44 - 00274432 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Windows\SysWOW64\ssleay32.dll
2015-09-24 20:28 - 2015-09-24 20:28 - 00000000 ____D C:\Users\Franta\AppData\Local\AntiLogger Free
2015-09-24 20:00 - 2015-10-05 22:52 - 00000000 ____D C:\Program Files\Common Files\AV
2015-09-24 19:42 - 2015-09-24 19:42 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2015-09-24 00:32 - 2015-10-05 23:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2015-09-24 00:32 - 2015-10-05 22:51 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2015-09-23 09:08 - 2015-09-23 09:08 - 00073198 _____ C:\Users\Franta\Downloads\Kalkulačka kasko–změna pojistné částky (4).xlsx
2015-09-22 20:44 - 2015-09-28 23:42 - 00000000 ____D C:\Users\Franta\AppData\Roaming\JAM Software
2015-09-22 20:28 - 2015-09-22 20:39 - 18727080 _____ (JAM Software ) C:\Users\Franta\Downloads\TreeSizeProfessional-x64-Demo.exe
2015-09-22 19:39 - 2015-09-22 19:39 - 00000000 ____D C:\Users\Franta\AppData\Local\Microsoft Corporation
2015-09-22 19:36 - 2015-10-05 23:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Windows 7 Upgrade Advisor
2015-09-22 19:36 - 2015-09-22 19:36 - 00002181 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Poradce pro upgrade na systém Windows 7.lnk
2015-09-22 19:35 - 2015-09-22 19:35 - 08682272 _____ (Microsoft Corporation) C:\Users\Franta\Downloads\Windows7UpgradeAdvisorSetup.exe
2015-09-22 19:32 - 2015-09-22 19:32 - 00000000 ____D C:\Users\Franta\AppData\Roaming\NVIDIA
2015-09-22 19:26 - 2015-09-29 09:36 - 00003042 _____ C:\Windows\System32\Tasks\{407B9CC9-6072-4ABB-8FF8-FD22C43AFEF8}
2015-09-22 18:20 - 2015-09-14 00:09 - 06884984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-09-22 18:20 - 2015-09-14 00:09 - 03496056 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-09-22 18:20 - 2015-09-14 00:09 - 02558584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-09-22 18:20 - 2015-09-14 00:09 - 01062192 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2015-09-22 18:20 - 2015-09-14 00:09 - 00937776 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-09-22 18:20 - 2015-09-14 00:09 - 00385144 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-09-22 18:20 - 2015-09-14 00:09 - 00074872 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2015-09-22 18:20 - 2015-09-14 00:09 - 00062584 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-09-22 18:20 - 2015-09-11 14:17 - 05231082 _____ C:\Windows\system32\nvcoproc.bin
2015-09-22 18:17 - 2015-09-14 02:29 - 42840368 _____ C:\Windows\system32\nvcompiler.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 37819000 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 22525560 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 18543736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 17082928 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 16637528 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 15513208 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 14936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 14635600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 13660648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 12514824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 12185344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 11096696 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-09-22 18:17 - 2015-09-14 02:29 - 03530608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 03116160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 02940024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 02627192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 01898288 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435598.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 01558832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435598.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 01074808 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 01064056 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 00986232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 00944760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 00155792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-09-22 18:17 - 2015-09-14 02:29 - 00033079 _____ C:\Windows\system32\nvinfo.pb
2015-09-22 17:22 - 2015-09-10 13:01 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-09-22 15:50 - 2015-09-22 15:50 - 00000000 ____D C:\Users\Franta\Documents\Kotle děda
2015-09-22 09:33 - 2015-09-15 03:18 - 00812008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-09-22 09:33 - 2015-09-15 03:18 - 00178152 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-21 15:42 - 2015-09-21 15:42 - 00000000 ____D C:\Users\Franta\Documents\Drbohlav
2015-09-19 22:45 - 2015-09-19 22:45 - 00001404 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2015-09-19 18:13 - 2015-09-19 18:35 - 00000000 ____D C:\GEN Šnejderová
2015-09-18 10:21 - 2015-09-18 10:21 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PicosmosTools
2015-09-18 10:21 - 2015-09-18 10:21 - 00000000 ____D C:\Program Files (x86)\PicosmosTools
2015-09-18 08:13 - 2015-09-18 08:13 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2015-09-17 18:09 - 2015-09-17 18:09 - 00000000 ____D C:\Users\Franta\Documents\modem Comtrend doma
2015-09-17 17:36 - 2015-09-17 17:36 - 00000989 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-09-17 17:36 - 2015-09-17 17:36 - 00000977 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-09-17 17:36 - 2015-09-17 17:36 - 00000977 _____ C:\ProgramData\Desktop\TeamViewer 10.lnk
2015-09-17 16:54 - 2015-09-17 16:54 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-17 16:43 - 2015-09-17 16:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MovieCut
2015-09-17 16:42 - 2015-09-17 16:43 - 00000000 ____D C:\Program Files (x86)\MovieCut
2015-09-16 23:57 - 2015-09-16 23:59 - 37653017 _____ (PortableApps.com) C:\Users\Franta\Downloads\ASCPortable_8.3.0.807_Free.paf.exe
2015-09-16 23:49 - 2015-08-06 21:15 - 01658544 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-09-16 23:49 - 2015-08-06 21:15 - 01519592 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-09-16 23:49 - 2015-08-06 21:15 - 01487008 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-09-16 23:49 - 2015-08-06 21:15 - 01355848 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-09-16 23:48 - 2015-08-22 15:42 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-09-16 23:48 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-09-16 23:48 - 2015-08-10 20:15 - 01084928 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-09-16 23:48 - 2015-08-10 20:15 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-09-16 23:48 - 2015-08-10 20:06 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-09-16 23:48 - 2015-08-10 19:49 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-09-16 23:48 - 2015-08-10 18:56 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-09-16 23:48 - 2015-08-10 18:46 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-09-16 23:48 - 2015-08-07 23:41 - 07460168 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-09-16 23:48 - 2015-08-07 23:40 - 01736520 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-09-16 23:48 - 2015-08-07 23:40 - 01499920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-09-16 23:48 - 2015-08-07 23:40 - 01134752 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-09-16 23:48 - 2015-08-07 23:40 - 00686960 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-09-16 23:48 - 2015-08-07 23:40 - 00507176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-09-16 23:48 - 2015-08-07 16:13 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-09-16 23:48 - 2015-08-06 19:05 - 00669184 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2015-09-16 23:48 - 2015-08-06 18:47 - 04710400 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-09-16 23:48 - 2015-08-06 18:37 - 00536576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2015-09-16 23:48 - 2015-08-06 18:18 - 04068352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-09-16 23:48 - 2015-07-16 20:58 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\NcdAutoSetup.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 35222128 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-09-16 23:21 - 2015-09-16 23:21 - 06255888 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 05714880 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 04514008 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-09-16 23:21 - 2015-09-16 23:21 - 02930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 02702552 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-09-16 23:21 - 2015-09-16 23:21 - 02585816 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 02461528 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 02393432 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 01933584 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 01749208 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 01310936 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 00944984 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 00349968 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 00349528 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 00298768 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2015-09-16 23:21 - 2015-09-16 23:21 - 00184688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-09-16 23:03 - 2015-09-16 23:03 - 00003210 _____ C:\Windows\System32\Tasks\ASCU8_PerformanceMonitor
2015-09-16 22:58 - 2015-09-16 22:58 - 00752856 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsPer.sys
2015-09-16 22:58 - 2015-09-16 22:58 - 00083160 _____ (Realtek Semiconductor.) C:\Windows\system32\RtCRX64.dll
2015-09-16 22:53 - 2015-09-16 22:53 - 00464144 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2015-09-16 22:37 - 2015-10-06 17:42 - 00000286 _____ C:\Windows\Tasks\ASCU8_SkipUac_Franta.job
2015-09-16 22:37 - 2015-09-22 17:24 - 00002882 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Franta)
2015-09-16 22:37 - 2015-09-16 22:37 - 00003184 _____ C:\Windows\System32\Tasks\Driver Booster Update
2015-09-16 22:37 - 2015-09-16 22:37 - 00002388 _____ C:\Windows\System32\Tasks\ASCU8_SkipUac_Franta
2015-09-16 19:08 - 2015-10-06 19:13 - 00000982 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-16 19:08 - 2015-10-06 19:13 - 00000978 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d041411166f36.job
2015-09-14 20:01 - 2014-03-19 05:14 - 00229080 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2015-09-14 20:01 - 2014-03-19 05:14 - 00190168 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2015-09-14 20:01 - 2014-03-19 05:14 - 00038616 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2015-09-14 20:01 - 2012-07-27 01:48 - 00040248 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2015-09-14 19:49 - 2015-09-14 19:58 - 191052979 _____ C:\Users\Franta\Downloads\Wireless LAN_Broadcom_12.0.0.9590_W81x64_A.zip
2015-09-14 17:36 - 2015-09-14 17:36 - 00000000 ____D C:\Users\Franta\Documents\OK Písek
2015-09-14 13:51 - 2015-09-14 13:54 - 00000000 ____D C:\Users\Franta\Documents\Kubeš bonusy
2015-09-11 08:31 - 2015-09-11 08:31 - 00000000 ____D C:\Users\Franta\Documents\Luby reklama
2015-09-11 08:18 - 2015-09-11 08:21 - 00144384 _____ C:\Users\Franta\Desktop\Špatenková.xls
2015-09-10 12:54 - 2015-09-10 12:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-09-10 12:54 - 2015-09-10 12:54 - 00000000 ____D C:\ProgramData\ESET
2015-09-08 21:22 - 2015-09-08 21:22 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Sun
2015-09-08 21:22 - 2015-09-08 21:22 - 00000000 ____D C:\Users\Franta\.oracle_jre_usage
2015-09-08 21:20 - 2015-09-08 21:20 - 00584288 _____ (Oracle Corporation) C:\Users\Franta\Downloads\jre-8u60-windows-i586-iftw.exe
2015-09-08 20:35 - 2015-08-22 20:19 - 25188352 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-08 20:35 - 2015-08-22 19:22 - 19856384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-09-08 20:34 - 2015-09-03 04:18 - 02531400 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-08 20:34 - 2015-09-03 04:17 - 01903848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-09-08 20:34 - 2015-09-02 20:48 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-08 20:34 - 2015-09-02 19:09 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-09-08 20:34 - 2015-09-02 04:56 - 04175872 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-08 20:34 - 2015-09-02 04:55 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-08 20:34 - 2015-09-02 04:50 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-08 20:34 - 2015-09-02 04:17 - 00301568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-09-08 20:34 - 2015-09-02 04:13 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-09-08 20:34 - 2015-08-27 04:48 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-09-08 20:34 - 2015-08-26 20:00 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-09-08 20:34 - 2015-08-26 20:00 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-09-08 20:34 - 2015-08-26 20:00 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-09-08 20:34 - 2015-08-26 20:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-09-08 20:34 - 2015-08-26 16:46 - 03705344 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-09-08 20:34 - 2015-08-26 16:29 - 02240512 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-09-08 20:34 - 2015-08-26 16:27 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-09-08 20:34 - 2015-08-26 16:27 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-09-08 20:34 - 2015-08-26 16:26 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-09-08 20:34 - 2015-08-26 16:26 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-09-08 20:34 - 2015-08-26 16:26 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-09-08 20:34 - 2015-08-22 19:35 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-08 20:34 - 2015-08-22 19:34 - 00585216 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-08 20:34 - 2015-08-22 19:21 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-08 20:34 - 2015-08-22 19:20 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-08 20:34 - 2015-08-22 18:55 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-09-08 20:34 - 2015-08-22 18:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-09-08 20:34 - 2015-08-22 18:50 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-09-08 20:34 - 2015-08-22 18:45 - 00665600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-09-08 20:34 - 2015-08-22 18:44 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-09-08 20:34 - 2015-08-22 18:41 - 14451712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-08 20:34 - 2015-08-22 18:41 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-08 20:34 - 2015-08-22 18:41 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-09-08 20:34 - 2015-08-22 18:41 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-09-08 20:34 - 2015-08-22 18:39 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-08 20:34 - 2015-08-22 18:28 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-09-08 20:34 - 2015-08-22 18:26 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-08 20:34 - 2015-08-22 18:23 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-09-08 20:34 - 2015-08-22 18:22 - 12857344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-09-08 20:34 - 2015-08-22 18:20 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-09-08 20:34 - 2015-08-22 18:18 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-09-08 20:34 - 2015-08-22 18:18 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-09-08 20:34 - 2015-08-22 18:18 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-09-08 20:34 - 2015-08-22 18:14 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-08 20:34 - 2015-08-22 18:01 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-09-08 20:34 - 2015-08-22 18:00 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-09-08 20:34 - 2015-08-22 17:56 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-09-08 20:34 - 2015-08-22 17:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-09-08 20:34 - 2015-08-03 23:15 - 00074928 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-09-08 20:34 - 2015-08-03 23:15 - 00065600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-09-08 20:34 - 2015-08-01 16:22 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-09-08 20:34 - 2015-08-01 05:47 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2015-09-08 20:34 - 2015-08-01 05:45 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
2015-09-08 20:34 - 2015-08-01 05:38 - 01265152 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-08 20:34 - 2015-08-01 05:37 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2015-09-08 20:34 - 2015-08-01 05:37 - 00359936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2015-09-08 20:34 - 2015-07-30 19:18 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-09-08 20:34 - 2015-07-30 18:22 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-09-08 20:34 - 2015-07-22 16:34 - 02775552 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-09-08 20:34 - 2015-07-22 16:33 - 01728000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2015-09-08 20:34 - 2015-07-22 16:25 - 02461184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-09-08 20:34 - 2015-07-22 16:25 - 01546752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2015-09-08 20:34 - 2015-07-18 20:31 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2015-09-08 20:34 - 2015-07-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2015-09-08 20:34 - 2015-07-18 20:29 - 00148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2015-09-08 20:34 - 2015-07-18 20:27 - 00520192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2015-09-08 17:06 - 2015-09-08 17:06 - 00183222 _____ C:\Users\Franta\Downloads\Kalkulačka_aktualizace_PČ_HAV_SMART_2014.xlsx
2015-09-07 22:04 - 2015-09-28 22:54 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2015-09-07 21:40 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2015-09-07 20:08 - 2015-09-07 20:08 - 00000000 ____D C:\Users\Franta\AppData\Roaming\AudioCD
2015-09-07 19:51 - 2015-09-07 19:51 - 00000270 __RSH C:\ProgramData\ntuser.pol
2015-09-07 19:49 - 2012-05-02 12:17 - 01070152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX
2015-09-07 19:49 - 2009-03-24 13:52 - 00129872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSSTDFMT.DLL
2015-09-07 19:40 - 2015-09-07 19:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 12
2015-09-07 19:37 - 2015-09-07 19:40 - 00000000 ____D C:\Program Files\CyberLink
2015-09-07 19:36 - 2015-09-07 19:40 - 00000000 ____D C:\ProgramData\install_clap
2015-09-07 19:34 - 2015-09-07 19:34 - 00000262 _____ C:\Windows\SysWOW64\Drivers\vwifikerneldrv.sys
2015-09-07 19:34 - 2015-09-07 19:34 - 00000262 _____ C:\Windows\SysWOW64\d3dx9_11.dll.tmp
2015-09-07 19:34 - 2015-09-07 19:34 - 00000262 _____ C:\ProgramData\fontcacheev1.dat
2015-09-07 19:34 - 2015-06-02 17:38 - 00055800 _____ () C:\Windows\system32\Drivers\adgnetworkwfpdrv.sys
2015-09-07 19:33 - 2015-09-07 19:33 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Performix LLC
2015-09-07 19:31 - 2015-09-07 19:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audials 12
2015-09-07 19:31 - 2015-09-07 19:31 - 00000000 ____D C:\ProgramData\RapidSolution
2015-09-07 19:31 - 2015-09-07 19:31 - 00000000 ____D C:\Program Files (x86)\Audials
2015-09-07 19:29 - 2015-09-07 19:29 - 00000000 ____D C:\Users\Franta\AppData\Local\RapidSolution
2015-09-07 11:20 - 2015-09-07 11:20 - 00007161 _____ C:\Users\Franta\Downloads\SPVAK20150101_20150331 (1).xlsx
2015-09-07 11:19 - 2015-09-07 11:19 - 00007018 _____ C:\Users\Franta\Downloads\SPVAK20150701_20150831.xlsx
2015-09-07 11:17 - 2015-09-07 11:17 - 00007210 _____ C:\Users\Franta\Downloads\SPVAK20150401_20150630.xlsx
2015-09-07 11:16 - 2015-09-07 11:16 - 00007161 _____ C:\Users\Franta\Downloads\SPVAK20150101_20150331.xlsx

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-06 19:50 - 2014-11-29 01:25 - 00000000 ____D C:\Users\Franta\AppData\Roaming\ClassicShell
2015-10-06 19:18 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2015-10-06 19:01 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-10-06 17:51 - 2015-08-06 14:51 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1933510014-705603268-1897034679-1002
2015-10-06 17:08 - 2014-11-28 09:03 - 00000000 ____D C:\Users\Franta\AppData\Local\Packages
2015-10-06 17:05 - 2014-12-20 21:52 - 00000000 ____D C:\Users\Franta\Documents\foto vozidel
2015-10-06 15:15 - 2014-11-28 10:34 - 00003842 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{EDF3D146-1DF7-49B7-A925-313BC664BFDD}
2015-10-06 13:59 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-06 09:06 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-10-06 09:04 - 2015-04-07 21:38 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-10-06 09:04 - 2015-04-07 21:38 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-06 00:30 - 2014-12-27 16:07 - 00000000 ____D C:\Users\Franta\AppData\Roaming\MPC-HC
2015-10-06 00:25 - 2015-07-03 12:49 - 00000000 ____D C:\Windows\Minidump
2015-10-06 00:25 - 2014-11-28 09:07 - 00000000 ____D C:\Users\Franta\AppData\Local\CrashDumps
2015-10-05 23:19 - 2014-12-20 15:39 - 00000000 ____D C:\ProgramData\ProductData
2015-10-05 23:17 - 2014-11-28 09:02 - 00000000 ____D C:\Users\Franta
2015-10-05 23:08 - 2015-07-23 17:26 - 00000000 ____D C:\ProgramData\Norton
2015-10-05 23:08 - 2015-06-24 21:46 - 00000000 ____D C:\Users\rxbaapidwp
2015-10-05 23:08 - 2015-06-22 22:10 - 00000000 ____D C:\Users\Franta\AppData\Roaming\IObit
2015-10-05 23:08 - 2015-02-25 19:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare Ultimate 8
2015-10-05 23:08 - 2015-01-07 21:26 - 00000000 ___HD C:\ProgramData\CanonIJScan
2015-10-05 23:08 - 2015-01-05 23:19 - 00000000 ____D C:\Program Files (x86)\NetSetMan
2015-10-05 23:08 - 2014-12-23 16:19 - 00000000 ___RD C:\Users\Franta\Desktop\aplikace
2015-10-05 23:08 - 2014-12-21 00:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-05 23:08 - 2014-12-20 15:39 - 00000000 ____D C:\Users\Franta\AppData\LocalLow\IObit
2015-10-05 23:08 - 2014-11-28 10:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-05 23:08 - 2014-11-28 09:03 - 00000000 ____D C:\Users\Franta\AppData\Local\VirtualStore
2015-10-05 23:08 - 2014-09-15 15:26 - 00000000 ____D C:\Users\Public\CyberLink
2015-10-05 23:08 - 2014-07-25 23:21 - 00000000 ____D C:\ProgramData\Package Cache
2015-10-05 23:08 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Sysprep
2015-10-05 23:07 - 2014-11-27 20:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-05 22:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\registration
2015-10-05 22:55 - 2015-08-07 14:38 - 00000000 ____D C:\Users\Franta\Documents\Facebook
2015-10-05 22:54 - 2015-06-24 21:51 - 00000000 ____D C:\Users\Default\AppData\Roaming\IObit
2015-10-05 22:54 - 2015-06-24 21:51 - 00000000 ____D C:\Users\Default User\AppData\Roaming\IObit
2015-10-05 22:52 - 2014-11-28 23:26 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-10-05 22:51 - 2015-01-01 20:56 - 00000000 __RHD C:\MSOCache
2015-10-05 22:30 - 2015-07-22 17:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aplikace společnosti Lotus
2015-10-05 11:18 - 2014-12-20 19:59 - 00000000 ____D C:\Users\Franta\Documents\AUTO NEJDL
2015-10-05 11:10 - 2014-12-20 19:58 - 00000000 ____D C:\Users\Franta\Documents\AEROXON
2015-10-05 08:59 - 2014-12-20 21:59 - 00000000 ____D C:\Users\Franta\Documents\Majerová Přeštice
2015-10-03 18:44 - 2014-09-15 15:15 - 00739924 _____ C:\Windows\system32\perfh005.dat
2015-10-03 18:44 - 2014-09-15 15:15 - 00151610 _____ C:\Windows\system32\perfc005.dat
2015-10-03 18:44 - 2014-03-18 12:03 - 01745984 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-03 17:07 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-09-29 21:17 - 2013-08-22 15:25 - 00000219 _____ C:\Windows\system.ini
2015-09-29 18:20 - 2014-12-20 21:59 - 00000000 ____D C:\Users\Franta\Documents\kucharky
2015-09-29 14:01 - 2014-12-20 22:44 - 00000000 ____D C:\Users\Franta\Documents\záloha foták Rybníčky
2015-09-28 23:26 - 2013-08-22 17:36 - 00000000 ___HD C:\Windows\ELAMBKUP
2015-09-28 23:25 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-09-28 21:26 - 2015-07-20 16:24 - 00000000 ____D C:\Program Files\PDFCreator
2015-09-28 19:46 - 2015-01-07 21:24 - 00000000 ____D C:\ProgramData\CanonIJPLM
2015-09-28 19:42 - 2014-12-20 19:59 - 00000000 ____D C:\Users\Franta\Documents\Canon sceny
2015-09-24 23:59 - 2015-06-22 22:03 - 00000000 ____D C:\ProgramData\Smarty Uninstaller 4
2015-09-24 23:59 - 2014-12-20 22:06 - 00000000 ____D C:\Users\Franta\Documents\Stažené soubory
2015-09-24 23:06 - 2014-11-27 20:35 - 00000000 ____D C:\Users\Franta\AppData\Local\Adobe
2015-09-23 13:38 - 2014-12-20 22:08 - 00000000 ____D C:\Users\Franta\Documents\škody
2015-09-22 21:28 - 2015-01-07 20:35 - 00002562 _____ C:\Windows\diagwrn.xml
2015-09-22 21:28 - 2015-01-07 20:35 - 00001908 _____ C:\Windows\diagerr.xml
2015-09-22 18:20 - 2015-02-18 22:24 - 00000000 ____D C:\Temp
2015-09-22 18:20 - 2014-09-15 15:00 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-22 18:20 - 2014-09-15 15:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-09-22 18:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Help
2015-09-22 18:19 - 2014-09-15 15:00 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-22 17:43 - 2015-01-09 16:14 - 00000000 ____D C:\Users\Franta\AppData\Roaming\TeamViewer
2015-09-22 17:41 - 2015-07-22 17:29 - 00228456 _____ C:\Users\Franta\Documents\LotusInstall.log
2015-09-22 17:22 - 2014-12-21 00:22 - 00000000 ____D C:\Program Files (x86)\Java
2015-09-22 17:21 - 2015-01-20 19:10 - 00000000 ____D C:\Program Files (x86)\Secunia
2015-09-22 17:20 - 2015-05-11 21:50 - 00000000 ____D C:\Users\Franta\AppData\Roaming\GlarySoft
2015-09-22 17:20 - 2015-05-11 21:49 - 00000000 ____D C:\Program Files (x86)\Glarysoft
2015-09-22 17:20 - 2014-07-25 23:21 - 00000000 ____D C:\ProgramData\Temp
2015-09-22 11:39 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-09-22 11:18 - 2015-07-07 10:42 - 00000099 _____ C:\Users\Public\LMDebug.log
2015-09-22 10:57 - 2014-12-20 21:59 - 00000000 ____D C:\Users\Franta\Documents\Kontaktní místo Klatovy
2015-09-21 09:56 - 2014-12-20 22:02 - 00000000 ____D C:\Users\Franta\Documents\Nový Hugo
2015-09-21 07:52 - 2014-11-27 21:16 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-09-19 22:47 - 2015-08-18 08:58 - 00003336 _____ C:\Windows\System32\Tasks\AcerCloud
2015-09-19 18:35 - 2014-12-20 16:19 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Generali pojišťovna
2015-09-18 10:47 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-09-17 16:43 - 2015-02-01 20:34 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Abelssoft
2015-09-17 16:43 - 2015-02-01 20:34 - 00000000 ____D C:\Users\Franta\AppData\Local\Abelssoft
2015-09-17 09:25 - 2015-01-05 23:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetSetMan
2015-09-16 23:22 - 2015-07-09 17:42 - 00000000 ____D C:\Windows\system32\DAX2
2015-09-16 23:22 - 2014-09-15 15:07 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-09-16 22:58 - 2014-09-15 15:05 - 00000000 ____D C:\Windows\SysWOW64\sda
2015-09-16 22:48 - 2015-06-24 21:49 - 00000000 ____D C:\Windows\Panther
2015-09-16 19:08 - 2015-02-05 14:41 - 00003718 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d041411166f36
2015-09-16 19:08 - 2014-11-28 10:35 - 00003954 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-14 08:58 - 2014-11-28 10:35 - 00000000 ____D C:\Users\Franta\AppData\Local\Google
2015-09-10 17:26 - 2014-12-20 21:59 - 00000000 ____D C:\Users\Franta\Documents\nabídky
2015-09-10 13:23 - 2014-11-28 00:12 - 00000000 ____D C:\ProgramData\Oracle
2015-09-10 09:09 - 2014-12-20 22:00 - 00000000 ____D C:\Users\Franta\Documents\náklady
2015-09-09 11:07 - 2015-02-05 23:14 - 00000000 ____D C:\Users\Franta\AppData\Roaming\Foxit Software
2015-09-08 21:36 - 2013-08-22 16:44 - 00606056 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-08 21:33 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-09-08 20:46 - 2014-03-18 11:45 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-08 20:43 - 2014-11-28 09:53 - 00000000 ____D C:\Windows\system32\MRT
2015-09-08 10:54 - 2014-12-20 21:52 - 00000000 ____D C:\Users\Franta\Documents\foto škody
2015-09-07 22:03 - 2014-07-25 23:24 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-09-07 22:03 - 2014-07-25 23:24 - 00000000 ____D C:\Program Files (x86)\WildGames
2015-09-07 19:49 - 2015-07-23 17:40 - 00000000 ____D C:\ProgramData\Licenses
2015-09-07 19:41 - 2014-07-25 23:22 - 00000000 ____D C:\ProgramData\CyberLink
2015-09-07 19:36 - 2014-07-25 23:21 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-07 19:34 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore
2015-09-07 16:12 - 2014-12-20 22:53 - 00000000 ____D C:\Users\Franta\Documents\životní pojištění firmy

==================== Files in the root of some directories =======

2015-07-15 17:10 - 2015-07-15 17:10 - 0004608 _____ () C:\Users\Franta\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-09-15 15:07 - 2014-09-15 15:07 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-09-07 19:34 - 2015-09-07 19:34 - 0000262 _____ () C:\ProgramData\fontcacheev1.dat

Files to move or delete:
====================
C:\ProgramData\fontcacheev1.dat


Some files in TEMP:
====================
C:\Users\Franta\AppData\Local\Temp\NOSEventMessages.dll
C:\Users\Franta\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-10-05 13:29

==================== End of FRST.txt ============================

Re: podezření na sledování klávesnice - key logger

Napsal: 06 říj 2015 19:35
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\...\Run: [Pokki] => C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\...\MountPoints2: {bc5d7cbd-d9c6-11e4-8309-3010b38b91a7} - "E:\AutoRun.exe"
GroupPolicy: Restriction - Chrome <======= ATTENTION
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1933510014-705603268-1897034679-1001 -> DefaultScope {F8631339-1A73-4B1D-AF65-705DDC88C6E3} URL =
SearchScopes: HKU\S-1-5-21-1933510014-705603268-1897034679-1001 -> {F8631339-1A73-4B1D-AF65-705DDC88C6E3} URL =
SearchScopes: HKU\S-1-5-21-1933510014-705603268-1897034679-1002 -> {F8631339-1A73-4B1D-AF65-705DDC88C6E3} URL =
Toolbar: HKU\S-1-5-21-1933510014-705603268-1897034679-1002 -> No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
S3 keycrypt; system32\DRIVERS\KeyCrypt64.sys [X]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d041411166f36.job
C:\Users\rxbaapidwp
C:\ProgramData\DP45977C.lfl
C:\ProgramData\fontcacheev1.dat
C:\Users\Franta\AppData\Local\Temp
End
Uložte do C:\Users\Franta\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: podezření na sledování klávesnice - key logger

Napsal: 06 říj 2015 20:01
od fandaj
Fix result of Farbar Recovery Scan Tool (x64) Version:04-10-2015
Ran by Franta (2015-10-06 20:43:15) Run:1
Running from C:\Users\Franta\Downloads
Loaded Profiles: UpdatusUser & Franta (Available Profiles: UpdatusUser & Franta & rxbaapidwp)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\...\Run: [Pokki] => C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\...\MountPoints2: {bc5d7cbd-d9c6-11e4-8309-3010b38b91a7} - "E:\AutoRun.exe"
GroupPolicy: Restriction - Chrome <======= ATTENTION
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1933510014-705603268-1897034679-1001 -> DefaultScope {F8631339-1A73-4B1D-AF65-705DDC88C6E3} URL =
SearchScopes: HKU\S-1-5-21-1933510014-705603268-1897034679-1001 -> {F8631339-1A73-4B1D-AF65-705DDC88C6E3} URL =
SearchScopes: HKU\S-1-5-21-1933510014-705603268-1897034679-1002 -> {F8631339-1A73-4B1D-AF65-705DDC88C6E3} URL =
Toolbar: HKU\S-1-5-21-1933510014-705603268-1897034679-1002 -> No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
S3 keycrypt; system32\DRIVERS\KeyCrypt64.sys [X]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d041411166f36.job
C:\Users\rxbaapidwp
C:\ProgramData\DP45977C.lfl
C:\ProgramData\fontcacheev1.dat
C:\Users\Franta\AppData\Local\Temp
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Pokki => value removed successfully
"HKU\S-1-5-21-1933510014-705603268-1897034679-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bc5d7cbd-d9c6-11e4-8309-3010b38b91a7}" => key removed successfully
HKCR\CLSID\{bc5d7cbd-d9c6-11e4-8309-3010b38b91a7} => key not found.
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKU\S-1-5-21-1933510014-705603268-1897034679-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-1933510014-705603268-1897034679-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F8631339-1A73-4B1D-AF65-705DDC88C6E3}" => key removed successfully
HKCR\CLSID\{F8631339-1A73-4B1D-AF65-705DDC88C6E3} => key not found.
"HKU\S-1-5-21-1933510014-705603268-1897034679-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F8631339-1A73-4B1D-AF65-705DDC88C6E3}" => key removed successfully
HKCR\CLSID\{F8631339-1A73-4B1D-AF65-705DDC88C6E3} => key not found.
HKU\S-1-5-21-1933510014-705603268-1897034679-1002\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} => value removed successfully
HKCR\CLSID\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} => key not found.
keycrypt => service removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d041411166f36.job => moved successfully
C:\Users\rxbaapidwp => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
C:\ProgramData\fontcacheev1.dat => moved successfully

"C:\Users\Franta\AppData\Local\Temp" folder move:

Could not move "C:\Users\Franta\AppData\Local\Temp" => Scheduled to move on reboot.


Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-10-06 20:50:47)

C:\Users\Franta\AppData\Local\Temp => moved successfully

==== End of Fixlog 20:50:47 ====

Re: podezření na sledování klávesnice - key logger

Napsal: 06 říj 2015 20:13
od Rudy
Vše smazáno, vč. toho keyloggeru. PC by již měl být čistý.

Re: podezření na sledování klávesnice - key logger

Napsal: 06 říj 2015 20:21
od fandaj
Děkuji,
ještě otázku - v jakém záznamu byl ?
S3 keycrypt; system32\DRIVERS\KeyCrypt64.sys [X] ? to by měl být záznam Zemana anti keylloger

Re: podezření na sledování klávesnice - key logger

Napsal: 06 říj 2015 21:26
od Rudy
Toto by měl být on, nic jiného, co se podobá keyloggeru tam nebylo. Doporučuji přeheslovat vše, kam přistupujete pod heslem.

Re: podezření na sledování klávesnice - key logger

Napsal: 07 říj 2015 11:13
od fandaj
Děkuji za spolupráci. :thumbsup:

Doufal jsem dle popisu programu, že pomůže, zřejmě opak je pravdou:

Zemana AntiLogger je program pro ochranu vašeho systému před keyloggery a dalším software který zaznamenává vaše aktivity na počítači a snaží se získat vaše osobní údaje. K detekci potenciálního nebezpečí využívá analýzu chování jednotlivých programů.

Jeho použitím zíískáte následující ochranu a nástroje:
Anti-SSL Logger Module pro ochranu před SSL Loggery,
Anti-WebCam Logger proti WebCam Loggerům,
Anti-Key Logger Module pro ochranu před záznamem stisknutých kláves,
Anti-Screen Logger,
Anti-Clipboard Logger,
System Defence Module pro ochranu celého systému.


Za spolupráci zašlu příspěvek :arrow:

Re: podezření na sledování klávesnice - key logger

Napsal: 07 říj 2015 16:09
od Rudy
Tento program jsem nezkoušel a ani ho neznám. Zde likvidujeme Keyloggery stejným způsobem, jako jinou havěť. Nemáte zač a za příspěvek děkujeme! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz