Virus? Phishing

Zpráva

šárka009 · #1 Příspěvek od **šárka009** » 14 zář 2015 21:27

Ahoj,
potřebovala bych urgentní pomoc, přicházej mi na fb zprávy, který se tvářej jakože od mejch kamarádů a zobrazujou odkaz na stránku co se tváří jako přihlašovací stránka od Vintedu (obchod s onošeným oblečením) a v jednom tom odkazu je dokonce napsáno moje přihlašovací jméno, akorát místo charlotteb je tam charlotte.b a nevim, jestli by počítač takovou chybu udělal. Oba účty od fb a vintedu mám na jinej email. Holky co mi "poslaly" ty zprávy o ničem nevěděli, ta zpráva je vymazaná z konverzace a jedna z nich měla ztišený upozornění na můj chat. Chci se zeptat jestli tohle dokáže virus nebo jestli je to práce člověka, kterej se dostane přes jednoduchý hesla na fb a chce získat takhle moje údaje (měla bych tip).

ADW cleaner mi našel něco co se jmenovalo SPSDriver nebo tak nějak ale Defender mi nenašel v rychlý kontrole vůbec nic.

Jestli je to vir jak se ho mám zbavit?

Díky moc předem za jakoukoliv pomoc!

šárka009 · #2 Příspěvek od **šárka009** » 14 zář 2015 21:31

to bylo rozkouskovaný do několika zpráv

#3 Příspěvek od **Márty84** » 15 zář 2015 03:49

Zdravim

Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach

#4 Příspěvek od **Pavuk29** » 15 zář 2015 11:24

A podla textu si myslim, ze ho pisal clovek.

šárka009 · #5 Příspěvek od **šárka009** » 18 zář 2015 20:03

mě to furt nechce pustit na tu stránku s FRSTLauncherem i když vypnu defender, co mám dělat? pardon, asi jsem neschopná

#6 Příspěvek od **Márty84** » 19 zář 2015 01:39

Dejte log jen ze zamotneho FRST, bez pouziti Launcheru.

Pokud vam to nepujde, dejte aspon log z RSIT (pripadne RSITx64 - podle verze vaseho systemu) http://forum.viry.cz/viewtopic.php?f=30&t=130787

šárka009 · #7 Příspěvek od **šárka009** » 20 zář 2015 20:51

jestli z toho bude někdo moudrej? :/

#8 Příspěvek od **Márty84** » 21 zář 2015 03:35

šárka009 píše:jestli z toho bude někdo moudrej? :/

Takhle urcite ne

Potrebuji ty logy videt cele. Zkopirujte sem jen ten text, pripadne mi ty poznamkove bloky poslete jako prilohu na mail (adresu mam v podpisu)

šárka009 · #9 Příspěvek od **šárka009** » 21 zář 2015 13:17

email mi nešel poslat :/

FRST.txt

Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\SW Update\SWMAgent.exe
() C:\Genius\ioTablet\TabletService.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
() C:\Genius\ioTablet\gTabletTask.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
() C:\Genius\ioTablet\gTabTaskBar.exe
() C:\Genius\ioTablet\gIoTabletFunMgm.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Quick Start\HPQuickstart.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2804976 2013-10-30] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2014-02-26] (IDT, Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285832 2013-01-02] (Intel Corporation)
HKLM-x32\...\Run: [CLWCSM] => c:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe [249096 2013-02-20] (cyberlink)
HKLM-x32\...\Run: [File Sanitizer] => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [13685464 2013-03-06] (Hewlett-Packard)
HKLM-x32\...\Run: [YouCam Mirage] => c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2013-02-01] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [167488 2013-02-01] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111136 2012-11-21] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [493088 2012-11-21] (CyberLink Corp.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Users\Šárka\Kies\KiesTrayAgent.exe [311152 2013-04-23] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [77088 2013-10-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [336672 2014-05-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-09-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ioTablet] => C:\Genius\ioTablet\gTabTaskBar.exe [47104 2012-03-23] ()
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [39175960 2015-08-14] (Dropbox, Inc.)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [74752 2015-09-02] ()
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-2668706247-16778440-3606748346-1002\...\Run: [KiesPreload] => C:\Users\Šárka\Kies\Kies.exe [1561968 2013-04-23] (Samsung)
HKU\S-1-5-21-2668706247-16778440-3606748346-1002\...\Run: [] => C:\Users\Šárka\Kies\External\FirmwareUpdate\KiesPDLR.exe [844144 2013-04-23] (Samsung)
HKU\S-1-5-21-2668706247-16778440-3606748346-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-23] (Piriform Ltd)
HKU\S-1-5-21-2668706247-16778440-3606748346-1002\...\Run: [Facebook Update] => C:\Users\Šárka\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-11-17] (Facebook Inc.)
HKU\S-1-5-21-2668706247-16778440-3606748346-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53729824 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe [372400 2014-10-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{A96A42E2-9938-4758-9293-B80F5B7F9B8D}: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{B374ED45-6B1B-4D3F-A874-5AAA37C323CF}: [DhcpNameServer] 192.168.10.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\S-1-5-21-2668706247-16778440-3606748346-1002 -> DefaultScope {21200857-28D3-4FA1-A365-844ADDC8423F} URL = hxxps://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=501549&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2668706247-16778440-3606748346-1002 -> {21200857-28D3-4FA1-A365-844ADDC8423F} URL = hxxps://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=501549&p={searchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: HP File Sanitizer -> {3134413B-49B4-425C-98A5-893C1F195601} -> c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2013-03-06] (Hewlett-Packard)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-28] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-28] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2668706247-16778440-3606748346-1002: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Šárka\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "chrome://tukan/"
CHR Profile: C:\Users\Šárka\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Šárka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-30]
CHR Extension: (Dokumenty Google) - C:\Users\Šárka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-30]
CHR Extension: (Disk Google) - C:\Users\Šárka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-30]
CHR Extension: (YouTube) - C:\Users\Šárka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-30]
CHR Extension: (Vyhledávání Google) - C:\Users\Šárka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-30]
CHR Extension: (Tabulky Google) - C:\Users\Šárka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\Šárka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-08]
CHR Extension: (AdBlock) - C:\Users\Šárka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-30]
CHR Extension: (Adblock Super) - C:\Users\Šárka\AppData\Local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd [2015-05-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Šárka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-30]
CHR Extension: (Gmail) - C:\Users\Šárka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-30]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-21] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-21] (Dropbox, Inc.)
S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [556856 2013-03-04] (Hewlett-Packard Company)
S3 HotSpotSrv; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [372920 2013-09-18] (Hewlett-Packard Development Company, L.P.)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [683296 2014-05-16] (Hewlett-Packard Company)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [318568 2015-03-03] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [130592 2012-10-22] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166432 2012-10-22] (Intel Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-02-15] (Electronic Arts)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [340480 2014-02-26] (IDT, Inc.) [File not signed]
R2 SWUpdateService; C:\Program Files (x86)\Samsung\SW Update\SWMAgent.exe [2921520 2013-04-09] (Samsung Electronics CO., LTD.)
R2 TabletService; C:\Genius\ioTablet\TabletService.exe [25600 2012-02-06] () [File not signed]
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-04-18] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36608 2013-12-13] (Advanced Micro Devices, Inc.)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 clwcsm; C:\Windows\system32\DRIVERS\clwcsm.sys [42944 2013-02-19] (CyberLink Corporation)
S3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [65752 2013-02-18] (Hewlett-Packard Company)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 HpqKbFiltr; C:\Windows\System32\drivers\HpqKbFiltr64.sys [28376 2014-05-15] (Hewlett-Packard Company)
R3 ioFakDrv; C:\Windows\System32\drivers\ioFakDrv.sys [23936 2010-12-15] (KYE System Corp.)
R3 ioFakMap; C:\Windows\System32\drivers\ioFakMap.sys [12672 2010-12-15] (KYE System Corp.)
S3 ioTablet; C:\Windows\System32\drivers\ioTablet.sys [35328 2012-04-05] (KYE System Corp.)
S3 ioTblMap; C:\Windows\System32\drivers\ioTblMap.sys [13200 2011-08-25] (KYE System Corp.)
R0 PinFile; C:\Windows\System32\DRIVERS\PinFile.sys [49856 2013-03-18] (WinMagic, Inc.)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-23] (Realtek Semiconductor Corp.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1205872 2015-09-08] (Ralink Technology, Corp.)
S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [448072 2013-02-01] (RTS Corporation)
R0 SDDisk2K; C:\Windows\System32\DRIVERS\SDDisk2K.sys [212672 2013-03-27] (WinMagic Inc.)
R0 SDDToki; C:\Windows\System32\DRIVERS\SDDToki.sys [131928 2013-01-07] (WinMagic Inc.)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-01-11] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [32496 2013-01-11] (Synaptics Incorporated)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1446904 2013-02-22] (Sunplus)
S3 ssudobex; C:\Windows\system32\DRIVERS\ssudobex.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-02-08] (Hewlett-Packard Development Company, L.P.)
S3 BtAudioBusSrv; \SystemRoot\System32\Drivers\BtAudioBus.sys [X]
S3 BthL2caScoIfSrv; \SystemRoot\System32\Drivers\BtL2caScoIf.sys [X]
S3 btUrbFilterDrv; \SystemRoot\System32\Drivers\IvtUrbBtFlt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-20 21:38 - 2015-09-20 21:39 - 00023647 _____ C:\Users\Šárka\Desktop\FRST.txt
2015-09-20 21:38 - 2015-09-20 21:38 - 00000000 ____D C:\FRST
2015-09-18 20:57 - 2015-09-18 20:57 - 02191360 _____ (Farbar) C:\Users\Šárka\Desktop\FRST64.exe
2015-09-14 13:53 - 2015-09-14 13:53 - 01660416 _____ C:\Users\Šárka\Desktop\adwcleaner_5.007.exe
2015-09-13 21:11 - 2015-09-13 21:11 - 00000000 ____D C:\Users\Šárka\AppData\Local\{19CE6C67-1A21-48D2-BCD0-5C171F8FD1B9}
2015-09-11 16:47 - 2015-09-11 16:47 - 00000000 ____D C:\Users\Šárka\AppData\Local\{A23F7EC8-FFB8-47DF-951F-2C22403DFB4C}
2015-09-11 16:47 - 2015-09-11 16:47 - 00000000 ____D C:\Users\Šárka\AppData\Local\{0F328DDF-4BEB-46C9-BDC5-218F8CA17057}
2015-09-11 15:24 - 2015-09-11 15:24 - 00000000 ____D C:\Users\Šárka\AppData\Local\GWX
2015-09-11 01:12 - 2015-09-11 01:12 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-10 22:47 - 2015-09-10 22:56 - 00000000 ____D C:\Users\Šárka\Desktop\Nová složka
2015-09-09 23:37 - 2015-09-09 23:37 - 00000000 ____D C:\Users\Šárka\AppData\Local\{67A739BC-1063-4749-BB43-351E9FADA852}
2015-09-09 17:35 - 2015-09-03 04:18 - 02531400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-09-09 17:35 - 2015-09-03 04:17 - 01903848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-09-09 17:35 - 2015-09-02 20:48 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-09-09 17:35 - 2015-09-02 19:09 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-09-09 17:35 - 2015-08-27 04:48 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-09-09 17:35 - 2015-08-26 20:00 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-09-09 17:35 - 2015-08-26 20:00 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-09-09 17:35 - 2015-08-26 20:00 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-09-09 17:35 - 2015-08-26 20:00 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-09-09 17:35 - 2015-08-26 16:46 - 03705344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-09-09 17:35 - 2015-08-26 16:29 - 02240512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-09-09 17:35 - 2015-08-26 16:27 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-09-09 17:35 - 2015-08-26 16:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-09-09 17:35 - 2015-08-26 16:26 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-09-09 17:35 - 2015-08-26 16:26 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-09-09 17:35 - 2015-08-26 16:26 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-09-09 17:35 - 2015-08-22 20:19 - 25188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 17:35 - 2015-08-22 19:35 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 17:35 - 2015-08-22 19:22 - 19856384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-09 17:35 - 2015-08-22 19:20 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-09-09 17:35 - 2015-08-22 18:41 - 14451712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 17:35 - 2015-08-22 18:28 - 04520448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-09-09 17:35 - 2015-08-22 18:26 - 02427392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-09-09 17:35 - 2015-08-22 18:22 - 12857344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 17:35 - 2015-08-03 23:15 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2015-09-09 17:35 - 2015-08-03 23:15 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2015-09-09 17:35 - 2015-08-01 16:22 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2015-09-09 17:35 - 2015-08-01 05:47 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2015-09-09 17:35 - 2015-08-01 05:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2015-09-09 17:35 - 2015-08-01 05:38 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 17:35 - 2015-08-01 05:37 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2015-09-09 17:35 - 2015-08-01 05:37 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2015-09-09 17:35 - 2015-07-30 19:18 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2015-09-09 17:35 - 2015-07-30 18:22 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2015-09-09 17:35 - 2015-07-22 16:34 - 02775552 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 17:35 - 2015-07-22 16:33 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 17:35 - 2015-07-22 16:25 - 02461184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 17:35 - 2015-07-22 16:25 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 17:35 - 2015-07-22 16:19 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-09-09 17:35 - 2015-07-22 15:52 - 01633792 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-09-09 17:35 - 2015-07-18 20:31 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 17:35 - 2015-07-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 17:35 - 2015-07-18 20:29 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 17:35 - 2015-07-18 20:27 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 17:35 - 2015-07-17 16:15 - 00951296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2015-09-09 17:35 - 2015-07-17 16:10 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2015-09-09 17:35 - 2015-07-14 05:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2015-09-09 17:35 - 2015-07-13 21:10 - 00411455 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-09-09 17:35 - 2015-07-10 21:06 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2015-09-09 17:35 - 2015-07-09 18:14 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-09-09 17:35 - 2015-07-03 23:51 - 01380056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-09-09 17:35 - 2015-07-03 16:00 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-09-09 17:35 - 2015-06-27 13:47 - 00118616 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2015-09-09 17:35 - 2015-06-19 19:07 - 02819072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-09-09 17:34 - 2015-09-02 04:56 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-09-09 17:34 - 2015-09-02 04:55 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 17:34 - 2015-09-02 04:50 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 17:34 - 2015-09-02 04:17 - 00301568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 17:34 - 2015-09-02 04:13 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-09 17:34 - 2015-08-22 19:34 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 17:34 - 2015-08-22 19:21 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 17:34 - 2015-08-22 18:55 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 17:34 - 2015-08-22 18:50 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 17:34 - 2015-08-22 18:50 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-09-09 17:34 - 2015-08-22 18:45 - 00665600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 17:34 - 2015-08-22 18:44 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-09-09 17:34 - 2015-08-22 18:41 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-09-09 17:34 - 2015-08-22 18:41 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-09-09 17:34 - 2015-08-22 18:41 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-09-09 17:34 - 2015-08-22 18:39 - 02126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-09-09 17:34 - 2015-08-22 18:23 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-09-09 17:34 - 2015-08-22 18:20 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-09-09 17:34 - 2015-08-22 18:18 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-09-09 17:34 - 2015-08-22 18:18 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-09-09 17:34 - 2015-08-22 18:18 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-09-09 17:34 - 2015-08-22 18:14 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-09-09 17:34 - 2015-08-22 18:01 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-09-09 17:34 - 2015-08-22 18:00 - 01951232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-09-09 17:34 - 2015-08-22 17:56 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-09-09 17:34 - 2015-08-22 17:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-09-08 23:27 - 2015-09-08 23:27 - 00026624 _____ C:\Users\Šárka\Desktop\Seznam-20-lit.-děl-k-maturitě.xls
2015-09-08 21:36 - 2015-09-13 21:16 - 00000000 ____D C:\Users\Šárka\Desktop\finální
2015-09-08 20:06 - 2015-09-08 20:07 - 00000000 ____D C:\Users\Šárka\AppData\Local\{764462DF-3B09-46AB-9232-E8C9070E050F}
2015-09-08 18:38 - 2015-09-08 18:38 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-09-08 18:38 - 2015-09-08 18:38 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-09-08 18:29 - 2015-09-08 18:29 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-09-08 18:29 - 2015-09-08 18:29 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-09-08 18:08 - 2015-09-08 18:08 - 00000000 ____D C:\Program Files (x86)\Ralink Corporation
2015-09-08 18:08 - 2015-09-08 18:03 - 00382288 _____ C:\WINDOWS\system32\Drivers\FW7650.bin
2015-09-08 18:03 - 2015-09-08 18:03 - 01205872 _____ (Ralink Technology, Corp.) C:\WINDOWS\system32\Drivers\rtbth.sys
2015-09-08 18:03 - 2015-09-08 18:03 - 00040958 _____ C:\WINDOWS\system32\Drivers\rt3298.bin
2015-09-07 19:50 - 2015-04-30 01:22 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2015-09-07 19:50 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2015-09-07 19:50 - 2015-03-20 05:08 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-09-07 19:50 - 2015-03-20 04:37 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-09-07 19:50 - 2015-03-20 04:07 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-09-07 19:50 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-09-07 19:50 - 2015-03-14 10:20 - 01385256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-09-07 19:50 - 2015-03-14 10:13 - 01124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-09-07 19:50 - 2015-03-02 03:43 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2015-09-07 19:50 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2015-09-07 19:50 - 2015-01-29 03:04 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-09-07 19:50 - 2015-01-23 09:17 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-09-07 19:50 - 2015-01-23 07:02 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-09-07 19:50 - 2014-11-14 08:58 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2015-09-07 19:49 - 2015-05-11 20:17 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-09-07 19:49 - 2015-05-07 19:50 - 22292672 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-09-07 19:49 - 2015-05-07 19:00 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-09-07 19:49 - 2015-05-07 18:53 - 19734960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-09-07 19:49 - 2015-05-07 18:12 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-09-07 19:49 - 2015-05-07 17:21 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-09-07 19:49 - 2015-05-07 17:05 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2015-09-07 19:49 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-09-07 19:49 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-09-07 19:49 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-09-07 19:49 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-09-07 19:49 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-09-07 19:49 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-09-07 19:49 - 2015-03-17 19:26 - 00467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-09-07 19:49 - 2015-03-09 04:02 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-09-07 19:49 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-09-07 19:49 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-09-07 19:49 - 2015-01-29 03:58 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-09-07 19:49 - 2015-01-29 03:29 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-09-07 19:49 - 2014-11-10 04:29 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2015-09-07 19:49 - 2014-11-10 03:51 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2015-09-07 19:48 - 2015-07-29 01:24 - 00025776 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-09-07 19:48 - 2015-07-28 16:24 - 01148416 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-09-07 19:48 - 2015-07-28 16:24 - 01116160 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-09-07 19:48 - 2015-07-28 16:24 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-09-07 19:48 - 2015-07-28 16:24 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-09-07 19:48 - 2015-07-28 16:24 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-09-07 19:48 - 2015-07-28 16:24 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-07 19:48 - 2015-07-14 23:59 - 01113944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-09-07 19:48 - 2015-07-14 23:59 - 00487256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2015-09-07 19:48 - 2015-07-14 23:59 - 00393560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2015-09-07 19:48 - 2015-06-27 01:21 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-09-07 19:48 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2015-09-07 19:48 - 2015-04-25 04:25 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2015-09-07 19:48 - 2015-04-16 08:17 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-09-07 19:48 - 2015-04-10 02:40 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-09-07 19:48 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-09-07 19:48 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-09-07 19:48 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-09-07 19:48 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-09-07 19:48 - 2015-01-27 05:44 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-09-07 19:48 - 2015-01-24 03:51 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-09-07 19:48 - 2014-12-19 10:57 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-09-07 19:48 - 2014-12-19 10:25 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-09-07 19:48 - 2014-11-04 21:25 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2015-09-07 19:48 - 2014-11-04 21:25 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2015-09-07 19:48 - 2014-11-04 08:55 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2015-09-07 19:48 - 2014-11-04 08:54 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2015-09-07 19:48 - 2014-11-04 08:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2015-09-07 19:48 - 2014-11-04 08:54 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2015-09-07 19:48 - 2014-10-31 01:39 - 01970432 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2015-09-07 19:48 - 2014-10-31 01:38 - 01612992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2015-09-07 19:48 - 2014-04-09 00:46 - 00086688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt_map.dll
2015-09-07 19:48 - 2014-04-09 00:46 - 00028320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt100.dll
2015-09-07 19:48 - 2014-04-08 20:54 - 00080032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt_map.dll
2015-09-07 19:48 - 2014-04-08 20:54 - 00026784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt100.dll
2015-09-07 19:47 - 2015-06-12 19:03 - 18823680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-09-07 19:47 - 2015-06-12 18:36 - 15159296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-09-07 19:47 - 2015-05-12 15:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-09-07 19:47 - 2015-05-03 17:09 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-09-07 19:47 - 2015-05-03 16:58 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-09-07 19:47 - 2015-05-03 16:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-09-07 19:47 - 2015-05-03 16:49 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-09-07 19:47 - 2015-04-28 15:13 - 00513480 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-09-07 19:47 - 2015-04-28 15:13 - 00513480 _____ C:\WINDOWS\system32\locale.nls
2015-09-07 19:47 - 2015-04-14 00:37 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2015-09-07 19:47 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2015-09-07 19:47 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2015-09-07 19:47 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-09-07 19:47 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-09-07 19:47 - 2015-04-01 05:17 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-09-07 19:47 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-09-07 19:47 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-09-07 19:47 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-09-07 19:47 - 2015-02-03 02:03 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-09-07 19:47 - 2015-02-03 02:02 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-09-07 19:47 - 2015-01-30 04:03 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2015-09-07 19:47 - 2015-01-30 04:03 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2015-09-07 19:47 - 2015-01-30 03:44 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2015-09-07 19:47 - 2015-01-30 03:42 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2015-09-07 19:47 - 2015-01-28 04:24 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2015-09-07 19:47 - 2015-01-28 03:47 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-09-07 19:47 - 2015-01-19 20:42 - 01487976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-09-07 19:46 - 2015-06-11 22:12 - 02476376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-09-07 19:46 - 2015-06-11 22:12 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-09-07 19:46 - 2015-05-11 18:34 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2015-09-07 19:46 - 2015-05-03 17:07 - 07784448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-09-07 19:46 - 2015-04-23 17:47 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-09-07 19:46 - 2015-04-23 17:16 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-09-07 19:46 - 2015-04-01 06:21 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-09-07 19:46 - 2015-04-01 06:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2015-09-07 19:46 - 2015-04-01 06:17 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2015-09-07 19:46 - 2015-04-01 06:08 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2015-09-07 19:46 - 2015-04-01 05:46 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-09-07 19:46 - 2015-04-01 05:17 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-09-07 19:46 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2015-09-07 19:46 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-09-07 19:46 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-09-07 19:46 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2015-09-07 19:46 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-09-07 19:46 - 2015-03-13 06:03 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-09-07 19:46 - 2015-03-13 06:03 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-09-07 19:46 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-09-07 19:46 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-09-07 19:46 - 2015-02-08 01:57 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-09-07 19:46 - 2015-02-08 01:49 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-09-07 19:46 - 2015-01-30 04:02 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-09-07 19:46 - 2015-01-30 03:40 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2015-09-07 19:46 - 2015-01-30 03:37 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-09-07 19:46 - 2015-01-30 03:24 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-09-07 19:46 - 2015-01-30 03:24 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-09-07 19:46 - 2015-01-30 03:16 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-09-07 19:46 - 2015-01-30 03:08 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-09-07 19:46 - 2015-01-30 03:06 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-09-07 19:46 - 2015-01-28 01:47 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-09-07 19:46 - 2015-01-28 01:41 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-09-07 19:46 - 2014-12-11 07:36 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2015-09-07 19:45 - 2015-05-03 16:57 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2015-09-07 16:04 - 2015-09-07 16:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-09-07 16:03 - 2015-09-07 16:03 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-09-07 16:03 - 2015-09-07 16:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-09-07 15:49 - 2015-09-07 15:54 - 403256404 _____ C:\Users\Šárka\Desktop\medialniprojekt.wmv
2015-09-07 15:37 - 2015-09-07 15:41 - 407280404 _____ C:\Users\Šárka\Desktop\say yes to gybot.wmv
2015-09-07 15:11 - 2015-09-11 17:13 - 00057971 _____ C:\Users\Šárka\Desktop\Můj film.wlmp
2015-09-07 14:54 - 2015-09-07 14:54 - 00000000 ____D C:\Users\Šárka\AppData\Local\{1FDD3550-09C9-4558-B36D-73F13DB6F1E7}
2015-09-07 14:53 - 2015-09-07 14:53 - 00000000 ____D C:\WINDOWS\cs
2015-09-07 14:52 - 2015-09-07 14:52 - 00001397 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
2015-09-07 14:52 - 2015-09-07 14:52 - 00001328 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
2015-09-07 14:52 - 2015-09-07 14:52 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-09-07 14:50 - 2015-09-11 16:47 - 00000000 ____D C:\Users\Šárka\AppData\Local\Windows Live
2015-09-07 14:50 - 2015-09-07 14:52 - 00000000 ____D C:\Program Files (x86)\Windows Live
2015-09-07 14:50 - 2015-09-07 14:50 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-09-07 14:50 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2015-09-07 14:50 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2015-09-07 14:50 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2015-09-07 14:50 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2015-09-07 14:50 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2015-09-07 14:50 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2015-09-07 14:46 - 2015-09-07 14:49 - 228461928 _____ (Microsoft Corporation) C:\Users\Šárka\Desktop\wlsetup-all.exe
2015-09-07 14:33 - 2015-09-07 14:33 - 00000000 ____D C:\Users\Šárka\AppData\Roaming\AVG
2015-09-07 14:31 - 2015-09-07 14:31 - 00000000 ____D C:\Users\Šárka\AppData\Local\Avg
2015-09-07 14:30 - 2015-09-07 14:31 - 00000000 ____D C:\Users\Šárka\Documents\Freemake
2015-09-07 14:30 - 2015-09-07 14:30 - 00000000 ____D C:\Users\Šárka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2015-09-07 14:29 - 2015-09-07 14:33 - 00000000 ____D C:\ProgramData\AVG
2015-09-07 14:29 - 2015-09-07 14:30 - 00001343 _____ C:\Users\Public\Desktop\Freemake Video Converter.lnk
2015-09-07 14:29 - 2015-09-07 14:30 - 00000000 ____D C:\ProgramData\Freemake
2015-09-07 14:29 - 2015-09-07 14:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2015-09-07 14:29 - 2015-09-07 14:29 - 00000000 ____D C:\Program Files (x86)\Freemake
2015-09-07 14:27 - 2015-09-07 14:28 - 01271864 _____ (Ellora Assets Corporation ) C:\Users\Šárka\Desktop\FreemakeVideoConverterSetup.exe
2015-09-05 05:36 - 2015-09-05 05:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-09-03 12:14 - 2015-09-08 20:45 - 00000000 ____D C:\Users\Šárka\Desktop\medialní projekt
2015-09-01 19:33 - 2015-09-01 19:33 - 00022335 _____ C:\Users\Šárka\AppData\Local\recently-used.xbel
2015-08-31 22:07 - 2015-08-31 22:09 - 00000000 ____D C:\Users\Šárka\Desktop\ještěd
2015-08-26 11:48 - 2015-08-26 11:48 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-26 11:48 - 2015-08-26 11:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-25 20:51 - 2015-08-25 21:45 - 517371952 _____ C:\Users\Šárka\Desktop\→Vikings-S01E05-TitCz.avi.crdownload
2015-08-24 21:25 - 2015-08-31 21:55 - 00000000 ____D C:\Users\Šárka\Desktop\londýn + sobotka

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-20 21:34 - 2015-06-21 23:24 - 00000918 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2015-09-20 21:31 - 2014-01-22 13:28 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-20 21:30 - 2015-04-07 08:40 - 01894275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-20 21:30 - 2014-01-22 13:28 - 00000968 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-20 21:12 - 2014-04-01 15:03 - 00000000 ____D C:\Users\Šárka\AppData\Roaming\Skype
2015-09-20 21:12 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-19 00:52 - 2014-11-17 13:47 - 00000940 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2668706247-16778440-3606748346-1002UA.job
2015-09-18 21:51 - 2014-01-20 17:30 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2668706247-16778440-3606748346-1002
2015-09-18 21:32 - 2015-05-30 13:50 - 00002210 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-09-18 21:26 - 2014-01-22 13:28 - 00003944 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-18 21:25 - 2014-01-22 13:28 - 00003708 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-18 20:47 - 2015-06-21 23:24 - 00000914 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2015-09-18 20:47 - 2014-01-22 13:28 - 00000000 ____D C:\Users\Šárka\AppData\Local\Google
2015-09-18 20:46 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-14 22:12 - 2014-02-01 01:48 - 00000000 ___HD C:\Users\Šárka\Desktop\.picasaoriginals
2015-09-14 19:25 - 2014-03-18 17:33 - 01938474 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-14 19:25 - 2014-03-18 16:54 - 00803244 _____ C:\WINDOWS\system32\perfh005.dat
2015-09-14 19:25 - 2014-03-18 16:54 - 00184236 _____ C:\WINDOWS\system32\perfc005.dat
2015-09-14 14:00 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-14 13:59 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-09-14 13:56 - 2014-10-26 03:36 - 00000000 ____D C:\AdwCleaner
2015-09-14 12:52 - 2014-11-17 13:47 - 00000918 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2668706247-16778440-3606748346-1002Core.job
2015-09-12 00:30 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppCompat
2015-09-11 15:29 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-09-11 07:40 - 2013-08-22 16:44 - 00554048 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-11 01:13 - 2014-03-18 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-11 01:13 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-09-11 01:12 - 2015-04-29 20:05 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-09-11 01:12 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-09-11 01:12 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-09-11 01:12 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-11 01:12 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\WinStore
2015-09-11 01:12 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-09-11 01:12 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-09-11 00:11 - 2014-01-22 15:27 - 00000000 ____D C:\Users\Šárka\AppData\Roaming\vlc
2015-09-10 23:24 - 2014-09-19 20:39 - 00000000 ___RD C:\Users\Šárka\Desktop\serials
2015-09-09 21:15 - 2014-02-08 17:58 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-09 21:02 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-09 19:36 - 2014-01-26 13:44 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-09 18:38 - 2012-07-26 07:26 - 00000269 _____ C:\WINDOWS\win.ini
2015-09-08 18:36 - 2014-02-08 18:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2015-09-08 18:09 - 2013-08-21 06:44 - 00000032 _____ C:\WINDOWS\0
2015-09-08 18:08 - 2014-01-22 03:01 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2015-09-08 18:03 - 2012-10-12 05:24 - 00000000 ____D C:\SWSETUP
2015-09-07 21:49 - 2014-01-21 18:57 - 00000000 ____D C:\Users\Šárka\Desktop\Moje škola
2015-09-07 16:01 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-09-07 14:50 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-09-07 14:38 - 2014-02-13 17:37 - 00028160 _____ C:\Users\Šárka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-09-06 23:40 - 2014-02-10 23:42 - 00146176 _____ C:\Users\Šárka\AppData\Local\GDIPFONTCACHEV1.DAT
2015-09-05 05:36 - 2015-06-21 23:24 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-09-03 22:49 - 2014-02-13 17:36 - 00000000 ____D C:\Users\Šárka\AppData\Local\WMTools Downloaded Files
2015-09-03 20:50 - 2015-07-22 08:49 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-01 19:34 - 2014-02-21 00:52 - 00000000 ____D C:\Users\Šárka\AppData\Local\gtk-2.0
2015-09-01 19:34 - 2014-02-21 00:50 - 00000000 ____D C:\Users\Šárka\.gimp-2.8
2015-08-27 20:03 - 2014-03-06 20:08 - 00003158 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForŠárka
2015-08-27 20:03 - 2014-03-06 20:08 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForŠárka.job
2015-08-26 18:37 - 2014-01-26 13:44 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-26 11:48 - 2014-04-01 15:03 - 00000000 ____D C:\ProgramData\Skype
2015-08-23 00:00 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-23 00:00 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-23 00:00 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-08-23 00:00 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender

==================== Files in the root of some directories =======

2014-02-13 17:37 - 2015-09-07 14:38 - 0028160 _____ () C:\Users\Šárka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-09-01 19:33 - 2015-09-01 19:33 - 0022335 _____ () C:\Users\Šárka\AppData\Local\recently-used.xbel

Some files in TEMP:
====================
C:\Users\Šárka\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpoztvdo.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-09-11 08:01

==================== End of FRST.txt ============================

šárka009 · #10 Příspěvek od **šárka009** » 21 zář 2015 13:18

Addition.txt

Windows 8.1 (X64) (2014-04-18 06:25:54)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2668706247-16778440-3606748346-500 - Administrator - Disabled)
Guest (S-1-5-21-2668706247-16778440-3606748346-501 - Limited - Disabled)
Šárka (S-1-5-21-2668706247-16778440-3606748346-1002 - Administrator - Enabled) => C:\Users\Šárka

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ACD/Labs Software in C:\ACDFREE12\ (HKLM-x32\...\ACDLabs in C__ACDFREE12_) (Version: v12.00, FREE - ACD/Labs)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_PROPLUS_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_PROPLUS_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_PROPLUS_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
AMD Catalyst Install Manager (HKLM\...\{C2956908-53A3-88FC-B795-B16508296FC4}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
Convert MOV to AVI 1.0 (HKLM-x32\...\{A39EA3C8-7BF3-4FA7-9A67-3D3611BAE59E}_is1) (Version: - convertmovtoavi.com)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.2106 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.3703 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.2.2321 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.2.2531 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.1.2627 - CyberLink Corp.)
CyberLink Webcam Sharing Manager 4 (HKLM-x32\...\InstallShield_{296F7F3B-C75A-45e9-AD22-CC19DF86E9D3}) (Version: 4.2.1.1419 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.2.1.3801 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.33 - Dropbox, Inc.) Hidden
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 4.6 (HKLM-x32\...\{A23AADDA-3DBF-11E2-A6F2-984BE15F174E}) (Version: 4.6.0.7670 - Evernote Corp.)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Free PDF to Word Converter 1.5 (HKLM-x32\...\Free PDF to Word Converter_is1) (Version: - Free-PDF-to-Word.com)
Freemake Video Converter verze 4.1.7 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.7 - Ellora Assets Corporation)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.93 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM-x32\...\{84663FDA-1374-4048-9869-DD4A8784785A}) (Version: 6.0.16.1 - Hewlett-Packard Company)
HP Device Access Manager (HKLM\...\{274A948D-DD41-4B8F-B66F-0F4AD233200F}) (Version: 8.0.0.4 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{F3F74675-3700-4C55-A9AC-924D4E36DC40}) (Version: 1.1.2.0 - Hewlett-Packard)
HP Drive Encryption (HKLM\...\HPDriveEncryption) (Version: 8.5.1.138 - Hewlett-Packard Company)
HP ESU for Microsoft Windows 8 (HKLM-x32\...\{482FF7A0-EA03-487A-9112-862D3341B76C}) (Version: 1.2.1 - Hewlett-Packard Company)
HP File Sanitizer (HKLM-x32\...\{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}) (Version: 8.1.1.1 - Hewlett-Packard Company)
HP HD Webcam Driver (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.4.8.25 - SunplusIT)
HP Hotkey Support (HKLM-x32\...\{57FA60DA-585F-456A-B80E-17D1CDD22A30}) (Version: 5.0.27.1 - Hewlett-Packard Company)
HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6317.4309 - Hewlett-Packard)
HP SoftPaq Download Manager (HKLM-x32\...\{3F728815-C7E8-40EA-8D1A-F7B8E2382325}) (Version: 3.4.10.0 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{D1E7D876-6B86-4B35-A93D-15B0D6C43EAF}) (Version: 8.5.4.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP System Default Settings (HKLM-x32\...\{987210BB-D707-48FC-88FA-4374765D108D}) (Version: 2.0.1 - Hewlett-Packard Company)
HP Theft Recovery (HKLM-x32\...\InstallShield_{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 8.0.0.6 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
HP Wireless Hotspot (HKLM-x32\...\{A161E705-44B9-4B5F-A5F8-8E5847AEA86B}) (Version: 1.0.24.1 - Hewlett-Packard Company)
ChemToolBox version 1.1.0 (HKLM-x32\...\ChemToolBox_is1) (Version: - )
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6496.0 - IDT)
Inkscape 0.48.4 (HKLM-x32\...\Inkscape) (Version: 0.48.4 - )
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.20.1337 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3993 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.5.1006 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
ioTablet (HKLM-x32\...\{896A285E-2DC4-4C73-BEDA-964244FD658A}) (Version: 1.02.00.02 - KYE)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
LibreOffice 4.2.1.1 (HKLM-x32\...\{C83C3B4C-1AFF-4CEA-8078-74E7A3FE8F03}) (Version: 4.2.1.1 - The Document Foundation)
Mediatek Bluetooth (HKLM\...\{904C579C-9366-D3B7-7F31-4879401DBD4A}) (Version: 11.0.756.0 - Mediatek)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Model ChemLab - Evaluation Version (HKLM-x32\...\Model ChemLab - Evaluation Version2.5.1) (Version: 2.5.1 - Model Science Software Inc)
Mp3 Knife 3.4 (HKLM-x32\...\Mp3 Knife_is1) (Version: - Vicky's Cool Softwares)
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pinnacle VideoSpin (HKLM-x32\...\{FEB15887-0932-4D2D-BB85-6AC03FBF1AA8}) (Version: 2.0.0.669 - Pinnacle Systems)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Ralink RT2860 Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}) (Version: 1.2.0.41 - Ralink)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.11.201.2013 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{BCDA54F6-C4B6-4519-A09E-FA064A6B4098}) (Version: 1.1.9200.7 - Realtek Semiconductor Corp.)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.29.0 - SAMSUNG Electronics Co., Ltd.)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
SW Update (HKLM-x32\...\{43C711D9-67C9-4793-80D4-E957D638D531}) (Version: 2.1.14 - Samsung Electronics CO., LTD.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.8 - Synaptics Incorporated)
The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.0 - Electronic Arts)
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
The Sims™ 3 Luxusní bydlení – Kolekce (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
The Sims™ 3 Po setmění (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.51 - Ghisler Software GmbH)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Validity Fingerprint Sensor Driver (HKLM\...\{ADAA7361-54B8-4FC8-804E-94EC6C11ED68}) (Version: 4.5.133.0 - Validity Sensors, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2668706247-16778440-3606748346-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points =========================

23-08-2015 01:26:53 Windows Update
01-09-2015 16:31:21 Naplánovaný kontrolní bod
07-09-2015 14:36:38 Odebráno: AVG PC TuneUp 2015
08-09-2015 17:52:34 HPSF Applying updates

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {105BBBA6-AF48-4020-AA5E-2B8E82CA6A90} - System32\Tasks\HPCeeScheduleForŠárka => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {2EAB773D-11E4-425F-861E-C8E5148C07A7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {32BE8C8C-0904-41B8-939E-03054A200782} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-21] (Dropbox, Inc.)
Task: {6A8C405C-D5B5-419D-9233-3413ED2FC192} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2668706247-16778440-3606748346-1002Core => C:\Users\Šárka\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-11-17] (Facebook Inc.)
Task: {6C15D44E-38D6-4867-B593-DC47728BF4DB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {7500B1E4-ABB7-49A7-892E-AD6B78130816} - System32\Tasks\{F7198FA0-EF38-4FEF-8CBB-1B230366048A} => Chrome.exe http://ui.skype.com/ui/0/6.14.0.104/cs/ ... age=tsBing
Task: {81258202-FCF9-4CEC-8B8D-D178028CE324} - System32\Tasks\{38D33BF4-DFBB-440A-B530-5E996ACC6F50} => pcalua.exe -a "C:\ProgramData\PDF Architect 2\Installation\PDFArchitect2Installer.exe" -c /uninstall
Task: {90CE3B50-061D-4832-8CDC-0CE34E21AA11} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {9E56B809-7E35-471E-AA5C-12D59C8CCA24} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {A623B20D-ACC4-4FAE-AD9D-5E2F8FCEC42B} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-21] (Dropbox, Inc.)
Task: {B0102BE0-12A1-4380-A23E-CB48B63424F6} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {DD8C4EE1-1531-4B24-B560-6F0B25CEF416} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-30] (Synaptics Incorporated)
Task: {E401D1BC-9E18-435C-B963-74B1C4AD6664} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {F0FBFE67-2B1C-4D7D-B38A-6AAEACBACDFB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2668706247-16778440-3606748346-1002UA => C:\Users\Šárka\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-11-17] (Facebook Inc.)
Task: {F979BFB3-5EEB-4AA2-B7F5-6E81D4E4553F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-23] (Piriform Ltd)
Task: {FD3E0EA4-F1F4-477A-9EFA-7B83C5C8EFE1} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2668706247-16778440-3606748346-1002Core.job => C:\Users\Šárka\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2668706247-16778440-3606748346-1002UA.job => C:\Users\Šárka\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForŠárka.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Loaded Modules (Whitelisted) ==============

2015-04-07 00:00 - 2012-02-06 10:03 - 00025600 _____ () C:\Genius\ioTablet\TabletService.exe
2015-04-07 00:00 - 2012-02-06 10:14 - 00009728 _____ () C:\Genius\ioTablet\gTabletTaskDll.dll
2015-04-07 00:00 - 2012-06-18 14:28 - 00227840 _____ () C:\Genius\ioTablet\gTabletTask.exe
2015-04-07 00:00 - 2012-02-06 10:14 - 00020992 _____ () C:\Genius\ioTablet\gTabletDevMgm.dll
2015-04-07 00:00 - 2012-02-06 10:12 - 00051712 _____ () C:\Genius\ioTablet\gfMedia.dll
2015-04-07 00:00 - 2012-04-16 18:02 - 00035840 _____ () C:\Genius\ioTablet\gfBrowser.dll
2015-04-07 00:00 - 2012-02-06 10:11 - 00022528 _____ () C:\Genius\ioTablet\gfOffice.dll
2015-04-07 00:00 - 2012-02-06 10:11 - 00039936 _____ () C:\Genius\ioTablet\gfSystem.dll
2015-04-07 00:00 - 2012-02-06 10:04 - 00022016 _____ () C:\Genius\ioTablet\gfPainter.dll
2014-10-23 21:19 - 2014-10-23 21:19 - 00043520 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2015-04-07 00:00 - 2012-03-23 12:29 - 00047104 _____ () C:\Genius\ioTablet\gTabTaskBar.exe
2015-04-07 00:00 - 2012-04-03 16:00 - 00171008 _____ () C:\Genius\ioTablet\gTabletXml.dll
2015-04-07 00:00 - 2012-02-06 10:06 - 00045056 _____ () C:\Genius\ioTablet\gIoTabletFunMgm.exe
2015-04-07 00:00 - 2012-02-06 10:10 - 00069120 _____ () C:\Genius\ioTablet\gAutoScroll.dll
2015-04-07 00:00 - 2012-02-06 10:11 - 00047104 _____ () C:\Genius\ioTablet\gAutoPan.dll
2015-04-07 00:00 - 2012-07-30 18:39 - 00062976 _____ () C:\Genius\ioTablet\gZoom.dll
2015-04-07 00:00 - 2012-02-06 10:07 - 00023040 _____ () C:\Genius\ioTablet\gTabletHook.dll
2015-04-07 00:00 - 2012-04-18 15:03 - 00067584 _____ () C:\Genius\ioTablet\gDeskMgm.dll
2015-04-07 00:00 - 2012-02-06 10:09 - 00045056 _____ () C:\Genius\ioTablet\gTaskSwitch.dll
2015-04-07 00:00 - 2012-05-18 17:00 - 00055296 _____ () C:\Genius\ioTablet\gSmartSearch.dll
2015-04-07 00:00 - 2012-02-06 10:10 - 00047616 _____ () C:\Genius\ioTablet\gTabSwitch.dll
2015-04-07 00:00 - 2012-02-06 10:09 - 00049152 _____ () C:\Genius\ioTablet\gVirtualDeviceSimulate.dll
2015-04-07 00:00 - 2012-02-06 10:04 - 00025088 _____ () C:\Genius\ioTablet\gPenMoveFunc.dll
2015-04-07 00:00 - 2012-02-06 10:04 - 00048128 _____ () C:\Genius\ioTablet\gVolumnCtrl.dll
2015-04-07 00:00 - 2012-07-31 17:02 - 00030720 _____ () C:\Genius\ioTablet\gPainterFunc.dll
2015-09-07 14:29 - 2015-09-02 00:23 - 00074752 _____ () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
2014-10-11 14:06 - 2014-10-11 14:06 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 14:05 - 2014-10-11 14:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-10-18 23:42 - 2014-10-18 23:42 - 00016384 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PSIClient\17dba063399ab5aa34a2a7495c1aa038\PSIClient.ni.dll
2013-08-21 06:46 - 2012-10-22 10:22 - 01199648 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2015-09-05 05:26 - 2015-08-28 02:17 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libglesv2.dll
2015-09-05 05:26 - 2015-08-28 02:17 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2668706247-16778440-3606748346-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Šárka\Desktop\vombat-5.jpg
DNS Servers: 192.168.10.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "CLWCSM"
HKLM\...\StartupApproved\Run32: => "YouCam Mirage"
HKLM\...\StartupApproved\Run32: => "YouCam Tray"
HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "KiesTrayAgent"
HKU\S-1-5-21-2668706247-16778440-3606748346-1002\...\StartupApproved\Run: => ""
HKU\S-1-5-21-2668706247-16778440-3606748346-1002\...\StartupApproved\Run: => "KiesPreload"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{3E744EB0-DB1B-4A09-B71A-5339EF6E732C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{A0CAB814-624C-45DD-8A5F-EE82E715B104}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{FFD1E8D1-75D2-4840-A0E1-EE20306A88AE}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{55007310-4DD2-40B3-9E09-61973FC3FE25}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{8D38CA1E-51AB-467B-A8B2-66D70D26FF28}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{08A2B33D-165F-4AF5-A860-6222643D3495}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{73F51D13-F384-44B6-BE1C-58C3AFDC7810}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{D64B153A-AB49-4275-9FB3-D32773059136}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A27FBB67-8505-4ED5-A1C0-1D41BCD5DD40}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{C64C1338-9409-42C7-AD15-AE0B6479E2A4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{25F73D2D-C907-436F-AE5B-4A0FB06D7293}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{83CF04A5-E4B0-47C9-B95E-EA9911F27280}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{2A29020F-B7E9-4691-BCBC-3D77B4F019BF}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{B2298956-D465-409D-96A5-C42C8B4122CD}] => (Allow) C:\Users\Šárka\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{04E49A6A-C4B4-482F-A6A7-49CAB3157D04}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
FirewallRules: [{B4F88F6C-9FB1-4C49-BADB-813DC982E841}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
FirewallRules: [TCP Query User{685E3E67-1873-4F0E-9761-B41AD67CFE97}C:\users\šárka\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\šárka\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{84297732-BC70-4C97-9E3F-D532C9D2A946}C:\users\šárka\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\šárka\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{5591A9D3-5618-42DE-BF5C-BC9C9B0F6179}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin
FirewallRules: [UDP Query User{94EFD337-5B9E-47AE-ACDD-2A574F12B50A}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin
FirewallRules: [{D87C02D5-C7C9-4D18-968A-AAE6684BB51A}] => (Allow) C:\Program Files (x86)\Pinnacle\VideoSpin\Programs\RM.exe
FirewallRules: [{EFD8D7C4-DE99-4214-8829-C4849BCBE64A}] => (Allow) C:\Program Files (x86)\Pinnacle\VideoSpin\Programs\RM.exe
FirewallRules: [{2B6F535A-7D4F-495B-832D-4E3B9884D9DB}] => (Allow) C:\Program Files (x86)\Pinnacle\VideoSpin\Programs\umi.exe
FirewallRules: [{E6DE7236-ED2B-4123-91F8-BC26C21AF1C0}] => (Allow) C:\Program Files (x86)\Pinnacle\VideoSpin\Programs\umi.exe
FirewallRules: [{432E7597-1A8F-4A1D-81F5-76F16C7A0A84}] => (Allow) C:\Program Files (x86)\Pinnacle\VideoSpin\Programs\VideoSpin.exe
FirewallRules: [{4F3DD0A3-ED36-4AD5-9D57-B3D7306F3B9F}] => (Allow) C:\Program Files (x86)\Pinnacle\VideoSpin\Programs\VideoSpin.exe
FirewallRules: [{83FE8FCC-5071-4B86-882E-6499F3E4EAC8}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{1C7D3462-1B7F-4222-98EC-F9E687522C55}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{D4ECFFB1-1386-4E1F-BDC5-C3D9911D8D60}] => (Allow) LPort=2869
FirewallRules: [{9021F786-5B51-4DF0-955B-91B08CA7F5EA}] => (Allow) LPort=1900
FirewallRules: [{5843C2EB-CB66-4BE9-B143-C170453C9DBA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (09/19/2015 06:02:52 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1047

Error: (09/19/2015 06:02:52 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1047

Error: (09/19/2015 06:02:52 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/19/2015 05:49:17 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 16024844

Error: (09/19/2015 05:49:17 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 16024844

Error: (09/19/2015 05:49:17 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/19/2015 01:22:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1062

Error: (09/19/2015 01:22:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1062

Error: (09/19/2015 01:22:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/15/2015 09:05:35 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13828

System errors:
=============
Error: (09/20/2015 09:12:52 PM) (Source: DCOM) (EventID: 10010) (User: Sarka)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (09/20/2015 09:12:22 PM) (Source: DCOM) (EventID: 10010) (User: Sarka)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (09/19/2015 06:02:53 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (09/19/2015 01:22:13 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (09/18/2015 09:52:45 PM) (Source: DCOM) (EventID: 10010) (User: Sarka)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (09/18/2015 09:52:15 PM) (Source: DCOM) (EventID: 10010) (User: Sarka)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (09/15/2015 01:11:26 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (09/14/2015 10:53:04 PM) (Source: DCOM) (EventID: 10010) (User: Sarka)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (09/14/2015 10:52:34 PM) (Source: DCOM) (EventID: 10010) (User: Sarka)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (09/14/2015 09:58:51 PM) (Source: DCOM) (EventID: 10010) (User: Sarka)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

CodeIntegrity:
===================================
Date: 2015-09-18 21:11:19.358
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-18 21:11:19.214
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-18 21:11:19.072
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-18 21:11:18.928
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-18 21:11:18.787
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-18 21:11:18.637
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-18 21:11:18.491
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-18 21:11:18.348
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-18 21:11:18.197
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-18 21:11:16.138
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 41%
Total physical RAM: 8042.57 MB
Available physical RAM: 4693.8 MB
Total Virtual: 9322.57 MB
Available Virtual: 4630.66 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:915.55 GB) (Free:654.18 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive d: (Recovery Image) (Fixed) (Total:14.04 GB) (Free:1.41 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D)

Partition: GPT.

==================== End of Addition.txt ============================

#11 Příspěvek od **Márty84** » 21 zář 2015 19:18

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

šárka009 · #12 Příspěvek od **šárka009** » 21 zář 2015 19:40

# AdwCleaner v5.008 - Logfile created 21/09/2015 at 20:25:56
# Updated 18/09/2015 by Xplode
# Database : 2015-09-20.1 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Šárka - SARKA
# Running from : C:\Users\Šárka\Desktop\adwcleaner_5.008.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

***** [ Files ] *****

***** [ Shortcuts ] *****

ADW:

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

***** [ Web browsers ] *****

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C8].txt - [599 bytes] ##########

šárka009 · #13 Příspěvek od **šárka009** » 22 zář 2015 06:58

ten druhej program, mezitim co to skenovalo tak mi defender detekoval několik malwarů

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 21. 9. 2015
Čas skenování: 20:45
Protokol: mal.txt
Správce: Ano

Verze: 2.1.8.1057
Databáze malwaru: v2015.09.21.06
Databáze rootkitů: v2015.09.18.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Šárka

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 684637
Uplynulý čas: 3 hod, 53 min, 30 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 13
PUP.Optional.GeForce, HKLM\SOFTWARE\WOW6432NODE\Ge-Force-nv, , [c4c699999bf07bbbda7a88140cf8b947],
PUP.Optional.GeForce, HKLM\SOFTWARE\WOW6432NODE\Ge-Force-nv-ie, , [afdb4ae837543ef8bd973369e321926e],
PUP.Optional.Sense, HKLM\SOFTWARE\WOW6432NODE\Sense-nv, , [d5b5cc66bfccf93d1a539f1a3aca4bb5],
PUP.Optional.Sense, HKLM\SOFTWARE\WOW6432NODE\Sense-nv-ie, , [e8a2250d91fa5cda660733862bd931cf],
PUP.Optional.GeForce, HKU\S-1-5-18\SOFTWARE\Ge-Force-nv, , [7812f33fd9b260d6b69a8f0db351cd33],
PUP.Optional.GeForce, HKU\S-1-5-18\SOFTWARE\Ge-Force-nv-ie, , [aae062d02f5c66d0c48cc8d414f0f40c],
PUP.Optional.Sense, HKU\S-1-5-18\SOFTWARE\Sense-nv, , [b4d63af8bccf979f06618a2fc440738d],
PUP.Optional.Sense, HKU\S-1-5-18\SOFTWARE\Sense-nv-ie, , [b9d1f63cf497c373392e83360400f808],
PUP.Optional.GeForce, HKU\S-1-5-21-2668706247-16778440-3606748346-1002\SOFTWARE\Ge-Force-nv, , [286253dfe1aae25466ea03990afa2dd3],
PUP.Optional.GeForce, HKU\S-1-5-21-2668706247-16778440-3606748346-1002\SOFTWARE\Ge-Force-nv-ie, , [cac03ef4a1ea072f3020c2da9371fa06],
PUP.Optional.Sense, HKU\S-1-5-21-2668706247-16778440-3606748346-1002\SOFTWARE\Sense-nv, , [7119c2700f7cf145afb82198f2128e72],
PUP.Optional.Sense, HKU\S-1-5-21-2668706247-16778440-3606748346-1002\SOFTWARE\Sense-nv-ie, , [4a40c66c75163bfb01667b3e1fe543bd],
PUP.Optional.Spigot, HKU\S-1-5-21-2668706247-16778440-3606748346-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{21200857-28D3-4FA1-A365-844ADDC8423F}, , [a5e51a185536a294a16ea31a0cf80af6],

Hodnoty registru: 1
PUP.Optional.Spigot, HKU\S-1-5-21-2668706247-16778440-3606748346-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{21200857-28D3-4FA1-A365-844ADDC8423F}|URL, https://search.yahoo.com/search?fr=chr- ... earchTerms}, , [a5e51a185536a294a16ea31a0cf80af6]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 65
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\AirGlobebho.dll.vir, , [7515a191aae1a1950b74abff35d05da3],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\AirGlobeUninstall.exe.vir, , [d6b4ee447a11f244aed14e5c43c2e61a],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\updateAirGlobe.exe.vir, , [6921d75be8a3e74f413e8e1c44c1ad53],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\AirGlobe.expext.exe.vir, , [f199f33fdbb064d28ff0baf01de8c23e],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\2bd159c5ea714e2788d2.dll.vir, , [0981ea48840747ef314e9e0cb550c23e],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\2bd159c5ea714e2788d21a2653bf93a0.dll.vir, , [7317fe34f19a77bfbbc4535758add22e],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\2bd159c5ea714e2788d21a2653bf93a064.dll.vir, , [ef9b280a7f0c7cba8df2d8d2d530a957],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\2bd159c5ea714e2788d264.dll.vir, , [9febd260335811251e61e5c5897ce719],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\AirGlobe.BrowserAdapter.exe.vir, , [ee9c50e2860562d4116e54564eb7e61a],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\AirGlobe.BrowserAdapter64.exe.vir, , [f793c072840781b5403fa901a16416ea],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\AirGlobe.expextdll.dll.vir, , [bbcf64ceeba0ad895b247b2f8a7b03fd],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\AirGlobe.PurBrowse64.exe.vir, , [5733d260f19ac76f512e713906ff5da3],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\utilAirGlobe.exe.vir, , [9ceed959bdce0531621d604aa85d6898],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\plugins\AirGlobe.CompatibilityChecker.dll.vir, , [33576ec4aedd31052659d5d5c63ff10f],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\plugins\AirGlobe.ExpExt.dll.vir, , [5f2bae8499f26cca1f6006a4ba4b4eb2],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\plugins\AirGlobe.FFUpdate.dll.vir, , [23678ca6177476c084fb4a601de8b34d],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\plugins\AirGlobe.GCUpdate.dll.vir, , [0189a38f5f2cd462e49b72380afbca36],
PUP.Optional.Sanbreel, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Air Globe\bin\plugins\AirGlobe.PurBrowseG.dll.vir, , [385273bf23682f07948ff1ce5ca51fe1],
PUP.Optional.Nova, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Ge-Force\10791224-4f3c-4a1e-b4a2-8821b8cc786e.dll.vir, , [2f5be2504f3cae8843f8ac120bf623dd],
PUP.Optional.GeForce, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Ge-Force\6eb7e4e7-637f-4aaf-9319-46b4213a0e3b-1-6.exe.vir, , [3159969c791248ee4b6ea8134cb540c0],
PUP.Optional.GeForce, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Ge-Force\6eb7e4e7-637f-4aaf-9319-46b4213a0e3b-1-7.exe.vir, , [8cfe4ce6414a181eb900a01b1fe2c739],
PUP.Optional.GeForce, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Ge-Force\6eb7e4e7-637f-4aaf-9319-46b4213a0e3b-10.exe.vir, , [206a5bd7503b68ce94254972d62b4db3],
PUP.Optional.GeForce, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Ge-Force\6eb7e4e7-637f-4aaf-9319-46b4213a0e3b-5.exe.vir, , [7d0d87ab2962ee483485f2c932cfe818],
PUP.Optional.GeForce, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Ge-Force\6eb7e4e7-637f-4aaf-9319-46b4213a0e3b-7.exe.vir, , [ee9c250d880358deaa0f1c9fb34e3ac6],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Ge-Force\988e31ef-6b6a-4293-b383-addd5761a59a.dll.vir, , [4f3b1b17bad150e629bbd4e242bfc040],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\globalupdate.exe.vir, , [d4b6c1713853e056d465284f38c9e020],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\globalupdate.exe.vir, , [e9a14ee43b50cd691128bcbb5ba6ac54],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\globalupdateBroker.exe.vir, , [0387131f9eed96a05bde3e3940c154ac],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\globalupdateCrashHandler.exe.vir, , [9af0131f503b44f259e0d3a4f60bfa06],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\globalupdateOnDemand.exe.vir, , [1a703101bbd048ee0f2adf98818023dd],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdate.dll.vir, , [b3d71f13b2d962d4da5f0275a9580000],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdateres_en.dll.vir, , [7c0e70c2711afa3c9e9bdd9ad92833cd],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll.vir, , [b1d911217a11a39310299bdc33ce0ff1],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psmachine.dll.vir, , [5d2d50e2b5d6fc3a78c179feb54c6d93],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psuser.dll.vir, , [94f65dd51f6ca5917abffe796a972cd4],
PUP.Optional.Sense, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\65a290d0-e287-4663-969d-797a2ca0867e-1-6.exe.vir, , [aedcf9392c5fe84e85ee06b9946d3dc3],
PUP.Optional.Sense, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\65a290d0-e287-4663-969d-797a2ca0867e-1-7.exe.vir, , [3555bd7528634beb4e25902fb849ce32],
PUP.Optional.Sense, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\65a290d0-e287-4663-969d-797a2ca0867e-5.exe.vir, , [0981979b8a01e84ecaa9f4cb3bc6f10f],
PUP.Optional.Sense, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\65a290d0-e287-4663-969d-797a2ca0867e-6.exe.vir, , [682272c07d0ee84ea4cf6a55a65bca36],
PUP.Optional.Sense, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\65a290d0-e287-4663-969d-797a2ca0867e-7.exe.vir, , [2d5d3bf7ccbf4de93f342c9306fb34cc],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\9b8a2221-1a86-4780-988a-bd843c5ac0a8.dll.vir, , [533770c299f2a19507dd70466899c43c],
PUP.Optional.Nova, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\f6a9a0b2-5b2c-423d-b712-efa18529642f.dll.vir, , [6a205bd76724c76f1f1c318d27da6997],
PUP.Optional.Sense, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\utils.exe.vir, , [3753f83a62291c1ab1c2ccf309f811ef],
PUP.Optional.ShopperPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\ShopperPro.dll.vir, , [701a151da1ea4de9ac2c9db7916f0af6],
PUP.Optional.ShopperPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\ShopperPro.exe.vir, , [5535b1811d6e40f6edf36f39d4319070],
PUP.Optional.ShopperPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\ShopperPro64.dll.vir, , [fc8ec072a6e59e98fbddfa5a27d99d63],
PUP.Optional.ShopperPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\SPRemove.exe.vir, , [8604e250eaa137ff6e22b10e08f98e72],
PUP.Optional.ShopperPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\Updater.exe.vir, , [19719e942962b581fde76ced5ca94eb2],
PUP.Optional.ShopperPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\JSDriver\jsdrv.sys.vir, , [1a70f73b305baa8c6f714e5a7590ff01],
PUP.Optional.ShopperPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\ShopperPro\JSDriver\1.42.1.1899\jsdrv.sys.vir, , [6228dd553f4c3df95f819c0cfa0b8f71],
PUP.Optional.ShopperPro, C:\AdwCleaner\Quarantine\C\ProgramData\ShopperPro\ShopperPro.dll.vir, , [63270929345786b0a92f57fd817f5ca4],
PUP.Optional.ShopperPro, C:\AdwCleaner\Quarantine\C\ProgramData\ShopperPro\ShopperPro64.dll.vir, , [c8c20f23c6c5a98d6474b89cdc24ed13],
PUP.Optional.WProtectManager, C:\AdwCleaner\Quarantine\C\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe.vir, , [7416b77bb5d63501d89d4b5fc83d1ae6],
PUP.Optional.APNToolBar, C:\AdwCleaner\Quarantine\C\ProgramData\ytd video downloader\ytd_installer.exe.vir, , [d6b4e9499af12016385715a4d42d8f71],
PUP.Optional.AirGlobe, C:\AdwCleaner\Quarantine\C\WINDOWS\System32\drivers\{2bd159c5-ea71-4e27-88d2-1a2653bf93a0}Gw64.sys.vir, , [1c6ec2708a01ad8916699a107d8855ab],
PUP.Optional.Nova, C:\Program Files (x86)\03b7601a-c680-46a9-9a85-ab94f6b9392c\bd63abcf-8abd-491c-bdce-f1afbb61bbf2.dll, , [4a4034fe1675ea4c8ab1368842bfe11f],
PUP.Optional.CrossRider, C:\Program Files (x86)\03b7601a-c680-46a9-9a85-ab94f6b9392c\e6c9709b-212e-48de-8f82-dba5aef00a3e.dll, , [305afc36246737ff44a05d59e71a956b],
PUP.Optional.CrossRider, C:\Program Files (x86)\14aca696-e811-441c-a0bb-adadd4641f40\14aca696-e811-441c-a0bb-adadd4641f40.dll, , [0f7bcb677516310513d1dbdb738e4fb1],
PUP.Optional.CrossRider, C:\Program Files (x86)\14aca696-e811-441c-a0bb-adadd4641f40\14fe33f9-2483-403b-8832-09a0d44fa5c9.dll, , [6f1b4fe3840749ed44a08e2804fdb848],
PUP.Optional.Nova, C:\Program Files (x86)\14aca696-e811-441c-a0bb-adadd4641f40\2d8750d8-4313-4bae-ab59-931541f99ce7.dll, , [0981ff33a5e653e339024b73d928d22e],
PUP.Optional.Nova, C:\Program Files (x86)\14aca696-e811-441c-a0bb-adadd4641f40\f343de8d-be36-46cf-ac45-a0fadfa25e12.dll, , [08826bc796f5a492ff3cd3ebab565fa1],
PUP.Optional.CrossRider, C:\Program Files (x86)\Aimersoft\03b7601a-c680-46a9-9a85-ab94f6b9392c.dll, , [3159052d9fec96a02bb9288e5aa7b64a],
PUP.Optional.Nova, C:\Program Files (x86)\Aimersoft\e2fa6b40-eecf-4de4-b88e-328a98f13c54.dll, , [cfbbd45e810a3501e05bc3fbde23fa06],
PUP.Optional.APNToolBar, C:\Users\Šárka\Desktop\směska\programy\YTDSetup.exe, , [48420929dcaf0432f09f685118e945bb],
PUP.Optional.APNToolBar, C:\Users\Šárka\Desktop\směska\programy\YTDSetup1.exe, , [51390e24c9c2cd693758b6039c65619f],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

(end)

#14 Příspěvek od **Márty84** » 22 zář 2015 13:40

šárka009 píše:ten druhej program, mezitim co to skenovalo tak mi defender detekoval několik malwarů

No to brzo, az kdyz mu je ukazal MBAM

Vsechny nalezy mBAM nechte odstranit. Po odstraneni a restartu pc test s MBAM zopakujte, at vime, jestli se to nevraci. Napiste vysledek testu a podle nej zvolim dalsi postup.

šárka009 · #15 Příspěvek od **šárka009** » 22 zář 2015 19:58

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 4
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\PCSUSpeedTest_RASAPI32, , [5e8e45ed8dfebf77ac865282b054b44c],
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\PCSUSpeedTest_RASMANCS, , [509ced45d7b431053df5af255aaa8d73],
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\SpeedCheckerService_RASAPI32, , [aa4256dcb7d463d33af9fcd813f14ab6],
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\SpeedCheckerService_RASMANCS, , [955761d192f9270f48eb9d37c341a45c],

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

(end)

VIRY.CZ

Virus? Phishing

Virus? Phishing

Re: Virus? Phishing

Re: Virus? Phishing

Re: Virus? Phishing

Re: Virus? Phishing

Re: Virus? Phishing

Re: Virus? Phishing

Re: Virus? Phishing

Re: Virus? Phishing

Re: Virus? Phishing

Re: Virus? Phishing

Re: Virus? Phishing

Re: Virus? Phishing

Re: Virus? Phishing

Re: Virus? Phishing