Prosím o kontrolu logu (HDD mívá 100% vytížení)

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Odpovědět
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu (HDD mívá 100% vytížení)

Příspěvekod jaro3 » 03 dub 2014 09:58

Jo.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Reklama
Top
Rob564
nováček
Příspěvky: 13
Registrován: březen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu (HDD mívá 100% vytížení)

Příspěvekod Rob564 » 03 dub 2014 12:27

Při spuštění ComboFix mi to napsalo : ComboFix is not meant to run in 'Compatibility Mode'. The program shall now exit.
Skusil jsem se dostat do nouzového režimu podle návodu na internetu avšak neúspěšně. :huh:

Zde je report z RoggueKiller

RogueKiller V8.8.15 _x64_ [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Václav [Práva správce]
Mód : Odebrat -- Datum : 04/03/2014 11:32:18
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 1 ¤¤¤
[SUSP PATH] SWMAgent.exe -- C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [-] -> SMAZÁNO [TermProc]

¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
[Address] EAT @explorer.exe (CscNetApiGetInterface) : srchadmin.dll -> HOOKED (C:\WINDOWS\SYSTEM32\cscapi.dll @ 0x742C1530)
[Address] EAT @explorer.exe (CscSearchApiGetInterface) : srchadmin.dll -> HOOKED (C:\WINDOWS\SYSTEM32\cscapi.dll @ 0x742C3CB8)
[Address] EAT @explorer.exe (OfflineFilesEnable) : srchadmin.dll -> HOOKED (C:\WINDOWS\SYSTEM32\cscapi.dll @ 0x742C6FA0)
[Address] EAT @explorer.exe (OfflineFilesGetShareCachingMode) : srchadmin.dll -> HOOKED (C:\WINDOWS\SYSTEM32\cscapi.dll @ 0x742C7434)
[Address] EAT @explorer.exe (OfflineFilesQueryStatus) : srchadmin.dll -> HOOKED (C:\WINDOWS\SYSTEM32\cscapi.dll @ 0x742C2F50)
[Address] EAT @explorer.exe (OfflineFilesQueryStatusEx) : srchadmin.dll -> HOOKED (C:\WINDOWS\SYSTEM32\cscapi.dll @ 0x742C2D50)
[Address] EAT @explorer.exe (OfflineFilesStart) : srchadmin.dll -> HOOKED (C:\WINDOWS\SYSTEM32\cscapi.dll @ 0x742C74F0)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) HGST HTS545050A7E380 +++++
--- User ---
[MBR] 0c684d88326a0fa7254218cd48cd65f6
[BSP] 26f5eb36e3cf1588719b51f58a964bf7 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_04032014_113218.txt >>
RKreport[0]_S_04032014_113131.txt
Nahoru
Rob564
nováček
Příspěvky: 13
Registrován: březen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu (HDD mívá 100% vytížení)

Příspěvekod Rob564 » 03 dub 2014 13:20

Nakonec se mi povedlo dostat do toho nouzového režimu a tam mi to napsalo, že můj windows to nepodporuje (myslí si, že mám Windows 2000)
Přikládám obrázek
Obrázek

A když to spustím normálně tak to napíše tohle
Obrázek
Nahoru
Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10645
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu (HDD mívá 100% vytížení)

Příspěvekod Orcus » 03 dub 2014 18:24

Ne píše to jen, že W2K není podporován.

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

====================================================

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Láska hřeje, ale uhlí je uhlí. :fire:


Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.
Nahoru
Rob564
nováček
Příspěvky: 13
Registrován: březen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu (HDD mívá 100% vytížení)

Příspěvekod Rob564 » 03 dub 2014 19:09

FRST - První část

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Václav (administrator) on VASEK on 03-04-2014 18:51:36
Running from C:\Users\Václav\Desktop
Windows 8.1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(SODATSW spol. s .r.o.) C:\Program Files (x86)\StartW8\bin\StartW8Service.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
() C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(SODATSW spol. s r.o.) C:\Program Files (x86)\StartW8\bin\StartW8Button.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(SODATSW spol. s r. o.) C:\Program Files (x86)\StartW8\bin\StartW8Menu.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\sSettings.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Side Sync\SideSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Samsung Electronics CO., LTD.) C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Support Center\GuaranaAgent.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
(Adobe Systems, Inc.) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13263072 2012-12-12] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1260256 2013-01-04] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-06-16] (Adobe Systems Incorporated)
HKLM\...\Run: [Bitcasa] - C:\Program Files\Bitcasa\Bitcasa.exe [4365824 2012-12-27] (Bitcasa, Inc)
HKLM\...\Run: [Allin1Convert Home Page Guard 64 bit] - "C:\PROGRA~2\ALLIN1~2\bar\1.bin\APPINT~1.EXE"
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2917688 2012-10-16] (Synaptics Incorporated)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [97392 2012-08-15] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2013-12-18] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-13] (Intel Corporation)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [310640 2013-03-07] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [NtVdmSrv] - C:\windows\inf\ntvdm.vbe
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [StartW8Button] - C:\Program Files (x86)\StartW8\bin\StartW8Button.exe [59784 2014-03-12] (SODATSW spol. s r.o.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [131712 2013-01-24] ( (Qualcomm Atheros Commnucations))
HKU\S-1-5-21-3767287778-3100067175-2433139727-1001\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20472992 2013-10-02] (Skype Technologies S.A.)
HKU\S-1-5-21-3767287778-3100067175-2433139727-1001\...\Run: [NokiaSuite.exe] - C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1090912 2013-04-19] (Nokia)
HKU\S-1-5-21-3767287778-3100067175-2433139727-1001\...\Run: [KPeerNexonEU] - C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe [438272 2013-08-28] (NEXON Inc.)
HKU\S-1-5-21-3767287778-3100067175-2433139727-1001\...\Run: [Sony PC Companion] - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449760 2013-10-31] (Sony)
HKU\S-1-5-21-3767287778-3100067175-2433139727-1001\...\Run: [FixMyRegistry] - C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss
HKU\S-1-5-21-3767287778-3100067175-2433139727-1001\...\MountPoints2: {be341e42-af44-11e3-bee7-1867b067116a} - "D:\iLinker.exe"
SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\windows\system32\CbFsMntNtf3.dll (EldoS Corporation)
SSODL-x32: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\windows\SysWow64\CbFsMntNtf3.dll (EldoS Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung13.msn.com
URLSearchHook: HKCU - (No Name) - {5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} - C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\8hSrcAs.dll No File
SearchScopes: HKLM - DefaultScope {9D0718D4-D9A1-49B5-B646-855197130F75} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM - {9D0718D4-D9A1-49B5-B646-855197130F75} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM-x32 - {9D0718D4-D9A1-49B5-B646-855197130F75} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKCU - {1E4FDE46-9F24-4967-94AE-F5B7F3D44076} URL = http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKCU - {24514965-DFE1-466A-ABC2-A3FA9F19A71F} URL = http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKCU - {727EB0C8-5491-4B28-9C3E-1A5069183C44} URL = http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKCU - {73C3359D-C707-4C7B-A796-1EAA497C0C2F} URL = http://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKCU - {9D0718D4-D9A1-49B5-B646-855197130F75} URL =
SearchScopes: HKCU - {AC25815D-6255-462C-9097-A5DB9D0E0EC5} URL = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKCU - {B9176EF7-0056-49E1-81C7-DDC43ABBB0A1} URL = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_13415
SearchScopes: HKCU - {BF35EE54-F90D-4AC6-BB55-F8228C108F96} URL = http://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKCU - {D8F8321E-86B7-4DF6-9679-A62CEEC12F4E} URL = http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Václav\AppData\Roaming\Mozilla\Firefox\Profiles\c134y0re.default
FF SearchEngineOrder.3: Bing
FF Homepage: http://www.seznam.cz
FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameEU.dll (Nexon)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Václav\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Seznam lištička - C:\Users\Václav\AppData\Roaming\Mozilla\Firefox\Profiles\c134y0re.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-03-26]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-03-03]
FF HKLM-x32\...\Firefox\Extensions: [OKitSpace@Vittalia.es] - C:\Users\Václav\AppData\Roaming\okitspace\Firefox

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (MindSpark Toolbar Platform Plugin Stub) - C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\NP8hStub.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Nokia Suite Enabler Plugin) - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Nexon Game Controller) - C:\ProgramData\NexonEU\NGM\npNxGameEU.dll (Nexon)
CHR Plugin: (Unity Player) - C:\Users\V\u00E1clav\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Users\Václav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-27]
CHR Extension: (Google Drive) - C:\Users\Václav\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-27]
CHR Extension: (YouTube) - C:\Users\Václav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-27]
CHR Extension: (Google Search) - C:\Users\Václav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-27]
CHR Extension: (Norton Identity Protection) - C:\Users\Václav\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2013-09-27]
CHR Extension: (Chrome In-App Payments service) - C:\Users\Václav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-27]
CHR Extension: (Marc Ecko) - C:\Users\Václav\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk [2013-10-01]
CHR Extension: (Gmail) - C:\Users\Václav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-27]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 AdobeActiveFileMonitor11.0; C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [172104 2013-01-26] (Adobe Systems Incorporated)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227456 2013-01-24] (Qualcomm Atheros Commnucations)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363584 2014-03-03] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1748608 2014-03-03] (Microsoft Corporation)
R2 Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [1594416 2013-02-01] (Samsung Electronics CO., LTD.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2013-01-14] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2013-01-14] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-03-05] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [857912 2014-03-05] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
R2 StartW8Service; C:\Program Files (x86)\StartW8\bin\StartW8Service.exe [620424 2014-03-12] (SODATSW spol. s .r.o.)
R2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3018800 2013-10-21] (Samsung Electronics CO., LTD.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-01-24] (Atheros)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R3 BTATH_HID; C:\Windows\system32\DRIVERS\btath_hid.sys [222952 2013-01-24] (Qualcomm Atheros)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-24] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R1 cbfs3; C:\windows\system32\drivers\cbfs3.sys [352456 2012-08-06] (EldoS Corporation)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-03-05] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [119512 2014-04-03] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [63192 2014-03-05] (Malwarebytes Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-08-09] (Corel Corporation)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [23408 2012-07-27] (Windows (R) Win 7 DDK provider)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation)
R1 wStLibG64; C:\Windows\System32\drivers\wStLibG64.sys [61112 2014-03-27] (StdLib)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-04-03 18:51 - 2014-04-03 18:52 - 00022418 _____ () C:\Users\Václav\Desktop\FRST.txt
2014-04-03 18:51 - 2014-04-03 18:51 - 00000000 ____D () C:\FRST
2014-04-03 18:47 - 2014-04-03 18:47 - 02157056 _____ (Farbar) C:\Users\Václav\Desktop\FRST64.exe
2014-04-03 12:59 - 2014-04-03 12:59 - 00000000 ___RD () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-04-03 12:57 - 2014-04-03 12:57 - 00067584 _____ () C:\WINDOWS\system32\umstartup.etl
2014-04-03 12:15 - 2014-04-03 12:20 - 00000081 _____ () C:\Users\Václav\Desktop\ftzz.txt
2014-04-03 11:39 - 2014-04-03 11:39 - 05193944 _____ (Swearware) C:\Users\Václav\Desktop\ComboFix.exe
2014-04-03 11:34 - 2014-04-03 11:34 - 00002589 _____ () C:\Users\Václav\Desktop\spravny report rogue.txt
2014-04-03 11:32 - 2014-04-03 11:32 - 00002589 _____ () C:\Users\Václav\Desktop\RKreport[0]_D_04032014_113218.txt
2014-04-03 11:31 - 2014-04-03 11:31 - 00002547 _____ () C:\Users\Václav\Desktop\RKreport[0]_S_04032014_113131.txt
2014-04-02 18:57 - 2013-02-11 18:51 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Václav\Desktop\TDSSKiller.exe
2014-04-02 18:55 - 2014-04-02 18:55 - 02218636 _____ () C:\Users\Václav\Desktop\tdsskiller.zip
2014-04-02 14:57 - 2014-04-02 14:57 - 04527616 _____ () C:\Users\Václav\Desktop\RogueKillerX64.exe
2014-04-02 14:34 - 2014-04-02 14:34 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-04-02 14:33 - 2014-04-02 14:33 - 01038974 _____ (Thisisu) C:\Users\Václav\Desktop\JRT.exe
2014-04-01 18:42 - 2014-04-03 16:40 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-04-01 18:40 - 2014-04-01 18:40 - 00001118 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-01 18:40 - 2014-04-01 18:40 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-01 18:40 - 2014-03-05 09:26 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-04-01 18:40 - 2014-03-05 09:26 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-04-01 18:40 - 2014-03-05 09:26 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-04-01 18:21 - 2014-04-02 14:00 - 00000000 ____D () C:\AdwCleaner
2014-04-01 18:20 - 2014-04-01 18:20 - 01426178 _____ () C:\Users\Václav\Desktop\adwcleaner.exe
2014-04-01 18:14 - 2014-04-01 18:14 - 00000000 ____D () C:\Users\Václav\AppData\Local\Adobe
2014-04-01 18:01 - 2014-04-03 13:15 - 00000000 ____D () C:\1PC-help
2014-03-31 09:43 - 2014-03-31 10:22 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\XBMC
2014-03-31 09:32 - 2014-03-31 09:32 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
2014-03-31 09:30 - 2014-03-31 09:32 - 00000000 ____D () C:\Program Files (x86)\XBMC
2014-03-27 21:55 - 2014-03-27 21:56 - 00000000 ____D () C:\3tetsty
2014-03-27 10:59 - 2014-03-27 11:00 - 00768560 _____ () C:\WINDOWS\Minidump\032714-29843-01.dmp
2014-03-27 01:49 - 2014-03-27 09:02 - 00181605 _____ () C:\1Eset.pptx
2014-03-27 01:02 - 2014-03-27 01:02 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\wStLibG64.sys
2014-03-26 23:16 - 2014-03-31 09:09 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\Seznam.cz
2014-03-26 23:16 - 2014-03-26 23:16 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-03-26 23:01 - 2014-03-27 12:38 - 00495924 _____ () C:\1Arduino.pptx
2014-03-26 21:56 - 2014-03-26 21:57 - 00487472 _____ () C:\Users\Václav\Documents\OMRON_Rejthar.pptx
2014-03-26 14:36 - 2014-03-26 14:36 - 00012887 _____ () C:\Users\Václav\Desktop\pc-help.txt
2014-03-26 00:36 - 2014-03-26 00:29 - 00466059 _____ () C:\1Ampér 2014-ELG.pptx
2014-03-25 23:11 - 2014-03-26 00:29 - 00466059 _____ () C:\Users\Václav\Documents\Ampér 2014-ELG.pptx
2014-03-25 14:40 - 2014-04-01 18:40 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-25 14:40 - 2014-03-25 14:40 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\Malwarebytes
2014-03-25 11:42 - 2014-04-02 13:51 - 00000000 ____D () C:\WINDOWS\Minidump
2014-03-25 11:42 - 2014-03-25 11:42 - 00285920 _____ () C:\WINDOWS\Minidump\032514-23875-01.dmp
2014-03-25 11:41 - 2014-03-27 10:59 - 458322315 _____ () C:\WINDOWS\MEMORY.DMP
2014-03-25 00:05 - 2014-03-27 21:56 - 00000000 ____D () C:\2CNC-fotky
2014-03-24 23:53 - 2014-03-24 23:53 - 00000000 ____D () C:\Users\Václav\AppData\Local\Windows Live
2014-03-24 16:30 - 2014-03-24 16:53 - 00000115 _____ () C:\Users\Václav\Desktop\Poznamky k MAchu.txt
2014-03-24 01:17 - 2014-02-22 14:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-03-24 01:17 - 2014-02-22 13:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-03-21 17:51 - 2014-01-03 01:54 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2014-03-21 09:06 - 2014-03-05 00:53 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-03-21 09:06 - 2014-03-05 00:53 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-21 09:00 - 2014-03-21 09:07 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-03-20 22:44 - 2014-03-20 22:44 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\.mono
2014-03-20 19:03 - 2013-12-09 02:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-03-20 19:03 - 2013-12-09 01:55 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-03-20 19:02 - 2013-11-23 06:34 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-03-20 19:02 - 2013-11-23 06:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-03-20 19:01 - 2014-01-04 22:50 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-03-20 19:01 - 2014-01-04 21:22 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-03-20 19:01 - 2014-01-04 16:30 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-03-20 19:01 - 2014-01-04 16:23 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-03-20 19:01 - 2014-01-04 15:42 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-03-20 19:01 - 2014-01-04 15:40 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-03-20 19:01 - 2014-01-04 15:36 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-03-20 19:01 - 2014-01-04 15:28 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-03-20 19:01 - 2013-12-21 04:10 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-03-20 19:01 - 2013-12-21 04:10 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-03-20 19:01 - 2013-10-31 02:29 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-03-20 19:01 - 2013-10-31 02:29 - 00124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-03-20 19:01 - 2013-10-31 02:28 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-03-20 19:00 - 2014-01-07 09:03 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-03-20 19:00 - 2014-01-07 07:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-03-20 19:00 - 2013-12-20 12:10 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-03-20 19:00 - 2013-12-20 08:13 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-03-20 18:59 - 2013-11-09 08:34 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-03-20 18:59 - 2013-11-09 08:34 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-03-20 18:59 - 2013-11-09 07:52 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-03-20 18:58 - 2014-01-09 10:25 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-03-20 18:58 - 2014-01-09 09:59 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-03-20 18:58 - 2014-01-09 09:59 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-03-20 18:58 - 2014-01-09 09:49 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-03-20 18:58 - 2014-01-09 09:44 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-03-20 18:58 - 2014-01-09 09:43 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-03-20 18:58 - 2014-01-09 09:29 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-03-20 18:58 - 2014-01-09 09:28 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-03-20 18:58 - 2014-01-09 09:28 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-03-20 18:58 - 2014-01-09 09:18 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-03-20 18:58 - 2013-12-09 02:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-03-20 18:38 - 2013-11-27 17:34 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-03-20 18:38 - 2013-11-27 15:47 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-03-20 18:38 - 2013-11-27 10:58 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-03-20 18:38 - 2013-11-26 15:20 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-03-20 18:38 - 2013-11-23 05:19 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-03-20 18:38 - 2013-11-23 05:15 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-03-20 18:37 - 2013-12-09 02:34 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-03-20 18:37 - 2013-12-09 02:04 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-03-20 18:37 - 2013-11-27 17:27 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-03-20 18:37 - 2013-11-27 16:00 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-03-20 18:37 - 2013-11-27 14:02 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-03-20 18:37 - 2013-11-27 12:24 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-03-20 18:37 - 2013-11-27 11:46 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-03-20 18:37 - 2013-11-27 11:41 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-03-20 18:37 - 2013-11-27 11:17 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-03-20 18:37 - 2013-11-27 11:10 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-03-20 18:37 - 2013-11-27 10:56 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-03-20 18:37 - 2013-11-26 15:20 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-03-20 18:37 - 2013-11-26 13:44 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-03-20 18:37 - 2013-11-25 03:45 - 00142680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-03-20 18:37 - 2013-11-25 03:32 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-03-20 18:37 - 2013-11-25 01:30 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-03-20 18:37 - 2013-11-25 01:28 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-03-20 18:37 - 2013-11-23 14:47 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-03-20 18:37 - 2013-11-23 09:13 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-03-20 18:37 - 2013-11-23 09:13 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-03-20 18:37 - 2013-11-23 09:08 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-03-20 18:37 - 2013-11-23 06:50 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-03-20 18:37 - 2013-11-21 08:58 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-03-20 18:37 - 2013-11-21 08:26 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-03-20 18:37 - 2013-11-15 16:59 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-03-20 18:37 - 2013-11-15 16:25 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-03-20 18:37 - 2013-11-15 16:08 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-03-20 18:37 - 2013-11-15 15:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-03-20 18:37 - 2013-10-31 02:29 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-03-20 18:37 - 2013-10-31 01:41 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-03-20 18:35 - 2013-12-14 08:31 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-03-20 18:35 - 2013-12-14 08:19 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-03-20 18:35 - 2013-12-09 10:05 - 21199256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-03-20 18:34 - 2014-01-08 03:46 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-03-20 18:34 - 2014-01-08 03:41 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-03-20 18:34 - 2014-01-08 03:41 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-03-20 18:34 - 2014-01-04 17:54 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-03-20 18:34 - 2014-01-04 17:08 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-03-20 18:34 - 2014-01-04 16:08 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-03-20 18:34 - 2014-01-04 15:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-03-20 18:34 - 2014-01-03 01:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-03-20 18:34 - 2014-01-03 01:48 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-03-20 18:34 - 2014-01-01 03:55 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-03-20 18:34 - 2014-01-01 03:52 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-03-20 18:34 - 2014-01-01 02:56 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-03-20 18:34 - 2014-01-01 02:55 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-03-20 18:34 - 2014-01-01 01:59 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-03-20 18:34 - 2014-01-01 01:57 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-03-20 18:34 - 2014-01-01 01:56 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-03-20 18:34 - 2013-12-31 01:34 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
Naposledy upravil(a) Rob564 dne 03 dub 2014 19:15, celkem upraveno 1 x.
Nahoru
Rob564
nováček
Příspěvky: 13
Registrován: březen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu (HDD mívá 100% vytížení)

Příspěvekod Rob564 » 03 dub 2014 19:14

FRST - Druhá část

2014-03-20 18:34 - 2013-12-31 01:33 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-03-20 18:34 - 2013-12-31 01:32 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-03-20 18:34 - 2013-12-31 01:31 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-03-20 18:34 - 2013-12-31 01:31 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-03-20 18:34 - 2013-12-27 17:09 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-03-20 18:34 - 2013-12-27 10:57 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-03-20 18:34 - 2013-12-27 10:57 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-03-20 18:34 - 2013-12-27 10:23 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-03-20 18:34 - 2013-12-27 09:03 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-03-20 18:34 - 2013-12-27 09:03 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-03-20 18:34 - 2013-12-27 08:37 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-03-20 18:34 - 2013-12-21 09:21 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-03-20 18:34 - 2013-12-17 09:21 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-03-20 18:34 - 2013-12-13 12:54 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-03-20 18:34 - 2013-12-13 08:36 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-03-20 18:34 - 2013-12-13 07:32 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-03-20 18:34 - 2013-12-09 06:51 - 18643560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-03-20 18:34 - 2013-11-09 08:37 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-03-20 18:34 - 2013-11-08 12:26 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-03-20 18:34 - 2013-11-08 06:43 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-03-20 18:34 - 2013-11-08 06:15 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-03-20 18:34 - 2013-11-08 05:14 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-03-20 18:34 - 2013-11-04 13:50 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-03-20 18:34 - 2013-11-04 12:32 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-03-20 18:34 - 2013-11-04 03:30 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-03-20 18:34 - 2013-11-01 08:08 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-03-20 18:34 - 2013-10-31 02:58 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-03-20 18:34 - 2013-10-31 02:42 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-03-20 18:34 - 2013-10-17 13:21 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-03-20 18:34 - 2013-10-05 16:21 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-03-20 18:34 - 2013-10-05 16:21 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-03-20 18:34 - 2013-10-05 14:05 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-03-20 18:34 - 2013-10-05 14:05 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-03-20 18:33 - 2013-11-11 04:48 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-03-20 18:33 - 2013-11-09 07:56 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-03-20 18:33 - 2013-11-08 06:16 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-03-20 18:33 - 2013-11-08 05:41 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-03-20 18:33 - 2013-11-05 16:19 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-03-20 18:33 - 2013-11-04 15:07 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-03-20 18:33 - 2013-11-04 04:28 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-03-20 18:33 - 2013-11-01 13:39 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-03-20 18:33 - 2013-11-01 07:57 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-03-20 18:33 - 2013-10-31 02:33 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-03-20 18:33 - 2013-10-31 02:33 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-03-20 18:33 - 2013-10-26 03:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-03-20 18:33 - 2013-10-24 11:31 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-03-20 18:33 - 2013-10-24 11:12 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-03-20 18:33 - 2013-10-17 12:36 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-03-20 18:26 - 2013-12-20 12:18 - 01643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-03-20 18:26 - 2013-12-20 12:18 - 01507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-03-20 18:26 - 2013-10-19 10:53 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-03-20 18:26 - 2013-10-19 09:14 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-03-20 18:25 - 2014-03-01 08:05 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-03-20 18:25 - 2014-03-01 06:58 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-03-20 18:25 - 2014-03-01 06:30 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-03-20 18:25 - 2014-03-01 06:17 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-03-20 18:25 - 2014-03-01 05:54 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-03-20 18:25 - 2014-03-01 05:47 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-03-20 18:25 - 2014-03-01 05:42 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-03-20 18:25 - 2014-03-01 05:18 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-03-20 18:25 - 2014-03-01 05:14 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-03-20 18:25 - 2014-03-01 05:10 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-03-20 18:25 - 2014-03-01 05:03 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-03-20 18:25 - 2014-03-01 04:57 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-03-20 18:25 - 2014-03-01 04:38 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-03-20 18:25 - 2014-03-01 04:32 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-03-20 18:25 - 2014-03-01 04:27 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-03-20 18:25 - 2014-03-01 04:25 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-03-20 18:25 - 2014-03-01 04:25 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-03-20 18:25 - 2014-02-06 13:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-03-20 18:25 - 2014-02-06 13:30 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-03-20 18:25 - 2014-02-06 13:07 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-03-20 18:25 - 2014-02-06 13:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-03-20 18:25 - 2014-02-06 12:57 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-03-20 18:25 - 2014-02-06 12:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-03-20 18:25 - 2014-02-06 12:49 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-03-20 18:25 - 2014-02-06 12:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-03-20 18:25 - 2014-02-06 12:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-03-20 18:25 - 2014-02-06 12:20 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-03-20 18:25 - 2014-02-06 12:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-03-20 18:25 - 2014-02-06 12:01 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-03-20 18:25 - 2014-02-06 12:00 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-03-20 18:25 - 2014-02-06 11:52 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-03-20 18:25 - 2014-02-06 11:52 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-03-20 18:25 - 2014-02-06 11:50 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-03-20 18:25 - 2014-02-06 11:47 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-03-20 18:25 - 2014-02-06 11:46 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-03-20 18:25 - 2014-02-06 11:25 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-03-20 18:25 - 2014-02-06 11:09 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-03-20 18:25 - 2013-12-09 02:27 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-03-20 18:25 - 2013-12-09 01:54 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-03-20 18:23 - 2014-01-07 07:00 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-03-20 18:23 - 2014-01-07 06:30 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-03-20 18:23 - 2013-11-21 08:42 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-03-20 18:23 - 2013-11-21 07:44 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-03-20 18:22 - 2014-01-31 18:15 - 00311640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-03-20 18:22 - 2014-01-31 18:07 - 00233920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-03-20 18:22 - 2014-01-31 18:06 - 02133208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-03-20 18:22 - 2014-01-31 15:47 - 02143960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-03-20 18:22 - 2014-01-31 11:06 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-03-20 18:22 - 2014-01-29 11:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-03-20 18:22 - 2014-01-29 10:53 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-03-20 18:22 - 2014-01-29 10:53 - 00407024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2014-03-20 18:22 - 2014-01-29 10:49 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-03-20 18:22 - 2014-01-29 10:47 - 02543960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-03-20 18:22 - 2014-01-29 09:44 - 01371824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-03-20 18:22 - 2014-01-29 09:44 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-03-20 18:22 - 2014-01-29 09:44 - 00369280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2014-03-20 18:22 - 2014-01-29 08:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2014-03-20 18:22 - 2014-01-29 02:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2014-03-20 18:22 - 2014-01-27 21:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2014-03-20 18:22 - 2014-01-27 21:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-03-20 18:22 - 2014-01-27 21:04 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2014-03-20 18:22 - 2014-01-27 20:52 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-03-20 18:22 - 2014-01-27 20:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2014-03-20 18:22 - 2014-01-27 20:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-03-20 18:22 - 2014-01-27 20:20 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2014-03-20 18:22 - 2014-01-27 20:15 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-03-20 18:22 - 2014-01-27 19:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-03-20 18:22 - 2014-01-27 19:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2014-03-20 18:22 - 2014-01-27 19:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2014-03-20 18:22 - 2014-01-27 17:58 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-03-20 18:22 - 2014-01-27 17:50 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-03-20 18:22 - 2014-01-27 13:45 - 00386722 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-03-20 18:22 - 2014-01-18 01:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-03-20 18:22 - 2014-01-17 23:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-03-20 18:22 - 2013-12-21 16:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-03-20 18:22 - 2013-12-21 10:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2014-03-20 18:21 - 2013-11-27 17:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-03-20 18:21 - 2013-11-27 13:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-03-20 18:21 - 2013-11-27 10:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-03-20 18:21 - 2013-11-27 10:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-03-20 18:21 - 2013-11-27 10:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-03-20 18:21 - 2013-11-27 10:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-03-20 18:20 - 2013-12-09 04:57 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-03-20 18:20 - 2013-12-09 03:51 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-03-20 18:19 - 2014-02-11 04:43 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-03-20 18:19 - 2014-02-11 04:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-03-20 18:18 - 2014-02-11 05:04 - 04189184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-03-20 18:17 - 2013-10-15 10:54 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-03-20 18:17 - 2013-10-15 10:03 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-03-19 01:40 - 2014-04-03 18:09 - 00003962 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1171C08E-E54D-4911-996A-1517D2F289E7}
2014-03-19 00:25 - 2014-04-03 12:59 - 00000000 ___RD () C:\Users\Václav\SkyDrive
2014-03-19 00:20 - 2014-03-19 00:20 - 00001426 _____ () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-03-19 00:19 - 2014-03-19 00:19 - 00000020 ___SH () C:\Users\Václav\ntuser.ini
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Public\Documents\Obrázky
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Public\Documents\Hudba
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Public\Documents\Filmy
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Šablony
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Soubory cookie
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Poslední
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Okolní tiskárny
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Okolní síť
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Nabídka Start
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Dokumenty
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Documents\Obrázky
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Documents\Hudba
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Documents\Filmy
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Data aplikací
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Data aplikací
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default User\Documents\Obrázky
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default User\Documents\Hudba
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default User\Documents\Filmy
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Data aplikací
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\ProgramData\Šablony
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\ProgramData\Plocha
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\ProgramData\Nabídka Start
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\ProgramData\Dokumenty
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\ProgramData\Data aplikací
2014-03-19 00:13 - 2014-04-03 18:17 - 01056899 _____ () C:\WINDOWS\WindowsUpdate.log
2014-03-19 00:12 - 2014-03-19 00:12 - 00022924 _____ () C:\WINDOWS\system32\emptyregdb.dat
2014-03-18 23:47 - 2014-03-18 23:47 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate
2014-03-18 23:45 - 2014-03-27 12:43 - 00000000 ____D () C:\Users\Václav
2014-03-18 23:45 - 2014-03-19 00:13 - 00026673 _____ () C:\WINDOWS\diagwrn.xml
2014-03-18 23:45 - 2014-03-19 00:13 - 00026673 _____ () C:\WINDOWS\diagerr.xml
2014-03-18 23:45 - 2014-03-18 23:47 - 00000000 ___RD () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Šablony
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Soubory cookie
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Poslední
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Okolní tiskárny
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Okolní síť
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Nabídka Start
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Dokumenty
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Documents\Obrázky
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Documents\Hudba
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Documents\Filmy
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Data aplikací
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\AppData\Local\Data aplikací
2014-03-18 23:45 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-03-18 23:45 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-03-18 23:45 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-03-18 23:38 - 2014-03-18 23:38 - 00000264 _____ () C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2014-03-18 23:38 - 2014-03-18 23:38 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-03-18 23:37 - 2014-03-18 23:37 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-03-18 23:37 - 2014-03-18 23:37 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2014-03-18 23:37 - 2014-03-18 23:37 - 00000000 ____D () C:\WINDOWS\system32\SRSLabs
2014-03-18 23:37 - 2014-03-18 23:37 - 00000000 ____D () C:\Program Files\Synaptics
2014-03-18 23:37 - 2014-03-18 23:37 - 00000000 ____D () C:\Program Files\Realtek
2014-03-18 23:37 - 2014-01-25 03:23 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2014-03-18 23:37 - 2014-01-25 03:23 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2014-03-18 23:34 - 2014-03-20 16:39 - 00000000 ___DC () C:\WINDOWS\Panther
2014-03-18 23:34 - 2014-03-18 23:34 - 00000000 __SHD () C:\Recovery
2014-03-18 23:32 - 2014-03-18 23:32 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-03-18 23:30 - 2014-03-18 23:56 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-03-18 23:30 - 2014-03-18 23:30 - 00000000 ____D () C:\WINDOWS\SysWOW64\XPSViewer
2014-03-18 23:30 - 2014-03-18 23:30 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-03-18 23:30 - 2014-03-18 23:30 - 00000000 ____D () C:\Program Files\MSBuild
2014-03-18 23:30 - 2014-03-18 23:30 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-03-18 23:29 - 2013-08-03 06:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-03-18 23:29 - 2013-08-03 06:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-03-18 23:29 - 2013-08-03 06:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-03-18 23:29 - 2013-08-03 06:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-03-18 23:29 - 2013-08-03 06:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-03-18 23:29 - 2013-08-03 06:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-03-18 22:47 - 2014-03-19 00:13 - 00006680 _____ () C:\WINDOWS\comsetup.log
2014-03-18 19:54 - 2014-03-18 19:54 - 00000000 ____D () C:\Users\Václav\.android
2014-03-18 13:53 - 2014-03-18 13:54 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2014-03-18 13:53 - 2014-03-18 13:53 - 00001190 _____ () C:\Users\Václav\Desktop\CrystalDiskInfo.lnk
2014-03-18 11:02 - 2014-03-18 11:02 - 00001202 _____ () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\S Agent.lnk
2014-03-16 23:38 - 2014-03-20 21:57 - 00123560 _____ () C:\Users\Václav\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-16 22:02 - 2014-03-16 22:02 - 00000000 ____D () C:\Users\Václav\Prezi
2014-03-16 15:01 - 2014-04-01 18:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-16 15:01 - 2014-03-16 15:01 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-03-15 13:16 - 2014-03-15 13:16 - 00000000 ____D () C:\Users\Václav\Documents\TopStyle 5
2014-03-15 12:53 - 2014-03-15 12:56 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\PSpad
2014-03-15 12:49 - 2014-03-15 12:49 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\Bradsoft.com
2014-03-15 12:48 - 2014-03-15 12:48 - 00000000 ____D () C:\Program Files (x86)\TopStyle 5
2014-03-15 12:48 - 2012-08-06 18:39 - 01810432 _____ (Chilkat Software, Inc.) C:\WINDOWS\SysWOW64\ChilkatSsh.dll
2014-03-15 12:44 - 2014-03-15 12:44 - 00000000 ____D () C:\Program Files (x86)\PSPad editor
2014-03-15 11:02 - 2014-03-15 14:26 - 00000000 ____D () C:\zpenzion
2014-03-14 13:40 - 2014-03-16 22:13 - 00000000 ____D () C:\1prezentace
2014-03-13 22:10 - 2014-03-13 22:10 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-03-13 14:03 - 2014-03-13 14:04 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-03-13 13:56 - 2014-03-13 15:01 - 00000000 ____D () C:\Program Files (x86)\Adobe InDesign CS3
2014-03-13 12:27 - 2007-02-20 17:04 - 02463976 _____ () C:\WINDOWS\SysWOW64\NPSWF32.dll
2014-03-13 12:27 - 2007-02-20 17:04 - 00190696 _____ (Adobe Systems, Inc.) C:\WINDOWS\SysWOW64\NPSWF32_FlashUtil.exe
2014-03-13 12:26 - 2014-03-13 16:44 - 00000000 ____D () C:\Program Files (x86)\Acrobat 8.0
2014-03-13 12:17 - 2014-03-18 23:53 - 00000000 ____D () C:\WINDOWS\SysWOW64\spool
2014-03-13 11:47 - 2014-03-13 11:47 - 00000000 ____D () C:\Photoshop
2014-03-13 11:43 - 2014-03-21 23:09 - 00202240 ___SH () C:\Users\Václav\Desktop\Thumbs.db
2014-03-11 23:18 - 2014-04-03 11:15 - 00000000 ____D () C:\ProgramData\StartW8
2014-03-11 23:15 - 2014-03-11 23:15 - 00000000 ____D () C:\Program Files (x86)\StartW8
2014-03-10 22:34 - 2014-03-10 22:34 - 00001931 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-03-10 22:33 - 2014-03-10 22:33 - 00000000 ____D () C:\Program Files\McAfee Security Scan

==================== One Month Modified Files and Folders =======

2014-04-03 18:52 - 2014-04-03 18:51 - 00022418 _____ () C:\Users\Václav\Desktop\FRST.txt
2014-04-03 18:51 - 2014-04-03 18:51 - 00000000 ____D () C:\FRST
2014-04-03 18:47 - 2014-04-03 18:47 - 02157056 _____ (Farbar) C:\Users\Václav\Desktop\FRST64.exe
2014-04-03 18:28 - 2013-07-04 00:57 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-04-03 18:17 - 2014-03-19 00:13 - 01056899 _____ () C:\WINDOWS\WindowsUpdate.log
2014-04-03 18:09 - 2014-03-19 01:40 - 00003962 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1171C08E-E54D-4911-996A-1517D2F289E7}
2014-04-03 18:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-04-03 17:27 - 2013-11-08 17:38 - 00000000 ____D () C:\111Filmy
2014-04-03 16:40 - 2014-04-01 18:42 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-04-03 14:46 - 2013-07-03 20:01 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\Skype
2014-04-03 13:34 - 2013-07-03 12:08 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3767287778-3100067175-2433139727-1001
2014-04-03 13:26 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-04-03 13:15 - 2014-04-01 18:01 - 00000000 ____D () C:\1PC-help
2014-04-03 13:02 - 2013-03-11 14:43 - 00000000 ____D () C:\ProgramData\WinClon
2014-04-03 12:59 - 2014-04-03 12:59 - 00000000 ___RD () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-04-03 12:59 - 2014-03-19 00:25 - 00000000 ___RD () C:\Users\Václav\SkyDrive
2014-04-03 12:57 - 2014-04-03 12:57 - 00067584 _____ () C:\WINDOWS\system32\umstartup.etl
2014-04-03 12:57 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-04-03 12:20 - 2014-04-03 12:15 - 00000081 _____ () C:\Users\Václav\Desktop\ftzz.txt
2014-04-03 12:11 - 2013-08-22 15:25 - 01048576 ___SH () C:\WINDOWS\system32\config\BBI
2014-04-03 11:39 - 2014-04-03 11:39 - 05193944 _____ (Swearware) C:\Users\Václav\Desktop\ComboFix.exe
2014-04-03 11:34 - 2014-04-03 11:34 - 00002589 _____ () C:\Users\Václav\Desktop\spravny report rogue.txt
2014-04-03 11:32 - 2014-04-03 11:32 - 00002589 _____ () C:\Users\Václav\Desktop\RKreport[0]_D_04032014_113218.txt
2014-04-03 11:31 - 2014-04-03 11:31 - 00002547 _____ () C:\Users\Václav\Desktop\RKreport[0]_S_04032014_113131.txt
2014-04-03 11:15 - 2014-03-11 23:18 - 00000000 ____D () C:\ProgramData\StartW8
2014-04-02 19:08 - 2013-11-14 14:40 - 01745984 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-02 19:08 - 2013-11-14 14:24 - 00739924 _____ () C:\WINDOWS\system32\perfh005.dat
2014-04-02 19:08 - 2013-11-14 14:24 - 00151610 _____ () C:\WINDOWS\system32\perfc005.dat
2014-04-02 18:55 - 2014-04-02 18:55 - 02218636 _____ () C:\Users\Václav\Desktop\tdsskiller.zip
2014-04-02 14:57 - 2014-04-02 14:57 - 04527616 _____ () C:\Users\Václav\Desktop\RogueKillerX64.exe
2014-04-02 14:34 - 2014-04-02 14:34 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-04-02 14:33 - 2014-04-02 14:33 - 01038974 _____ (Thisisu) C:\Users\Václav\Desktop\JRT.exe
2014-04-02 14:01 - 2013-11-14 05:30 - 00010592 _____ () C:\WINDOWS\PFRO.log
2014-04-02 14:00 - 2014-04-01 18:21 - 00000000 ____D () C:\AdwCleaner
2014-04-02 13:51 - 2014-03-25 11:42 - 00000000 ____D () C:\WINDOWS\Minidump
2014-04-01 18:40 - 2014-04-01 18:40 - 00001118 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-01 18:40 - 2014-04-01 18:40 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-01 18:40 - 2014-03-25 14:40 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-01 18:32 - 2014-03-16 15:01 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-01 18:20 - 2014-04-01 18:20 - 01426178 _____ () C:\Users\Václav\Desktop\adwcleaner.exe
2014-04-01 18:14 - 2014-04-01 18:14 - 00000000 ____D () C:\Users\Václav\AppData\Local\Adobe
2014-03-31 10:22 - 2014-03-31 09:43 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\XBMC
2014-03-31 09:32 - 2014-03-31 09:32 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
2014-03-31 09:32 - 2014-03-31 09:30 - 00000000 ____D () C:\Program Files (x86)\XBMC
2014-03-31 09:09 - 2014-03-26 23:16 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\Seznam.cz
2014-03-30 21:58 - 2013-09-19 17:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-27 21:56 - 2014-03-27 21:55 - 00000000 ____D () C:\3tetsty
2014-03-27 21:56 - 2014-03-25 00:05 - 00000000 ____D () C:\2CNC-fotky
2014-03-27 12:43 - 2014-03-18 23:45 - 00000000 ____D () C:\Users\Václav
2014-03-27 12:39 - 2013-08-28 21:11 - 00000000 ____D () C:\Download
2014-03-27 12:38 - 2014-03-26 23:01 - 00495924 _____ () C:\1Arduino.pptx
2014-03-27 11:01 - 2013-07-03 12:01 - 00000000 ____D () C:\Users\Václav\Documents\Bluetooth Folder
2014-03-27 11:00 - 2014-03-27 10:59 - 00768560 _____ () C:\WINDOWS\Minidump\032714-29843-01.dmp
2014-03-27 10:59 - 2014-03-25 11:41 - 458322315 _____ () C:\WINDOWS\MEMORY.DMP
2014-03-27 09:02 - 2014-03-27 01:49 - 00181605 _____ () C:\1Eset.pptx
2014-03-27 01:03 - 2013-07-03 12:00 - 00000000 ___RD () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-27 01:02 - 2014-03-27 01:02 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\wStLibG64.sys
2014-03-26 23:16 - 2014-03-26 23:16 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-03-26 21:57 - 2014-03-26 21:56 - 00487472 _____ () C:\Users\Václav\Documents\OMRON_Rejthar.pptx
2014-03-26 14:36 - 2014-03-26 14:36 - 00012887 _____ () C:\Users\Václav\Desktop\pc-help.txt
2014-03-26 14:26 - 2013-07-03 11:57 - 00000000 ____D () C:\Users\Václav\AppData\Local\VirtualStore
2014-03-26 00:32 - 2013-10-05 17:32 - 00013312 ___SH () C:\Users\Václav\Documents\Thumbs.db
2014-03-26 00:29 - 2014-03-26 00:36 - 00466059 _____ () C:\1Ampér 2014-ELG.pptx
2014-03-26 00:29 - 2014-03-25 23:11 - 00466059 _____ () C:\Users\Václav\Documents\Ampér 2014-ELG.pptx
2014-03-25 22:43 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-03-25 16:21 - 2013-09-06 21:17 - 00002042 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-03-25 16:21 - 2013-03-26 02:42 - 00311896 _____ () C:\WINDOWS\DPINST.LOG
2014-03-25 16:21 - 2013-03-11 12:39 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-25 14:40 - 2014-03-25 14:40 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\Malwarebytes
2014-03-25 14:40 - 2013-08-22 16:46 - 00294785 _____ () C:\WINDOWS\setupact.log
2014-03-25 11:42 - 2014-03-25 11:42 - 00285920 _____ () C:\WINDOWS\Minidump\032514-23875-01.dmp
2014-03-24 23:53 - 2014-03-24 23:53 - 00000000 ____D () C:\Users\Václav\AppData\Local\Windows Live
2014-03-24 16:53 - 2014-03-24 16:30 - 00000115 _____ () C:\Users\Václav\Desktop\Poznamky k MAchu.txt
2014-03-21 23:09 - 2014-03-13 11:43 - 00202240 ___SH () C:\Users\Václav\Desktop\Thumbs.db
2014-03-21 09:07 - 2014-03-21 09:00 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-03-21 09:07 - 2013-07-03 12:00 - 00000000 ___RD () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-03-21 09:07 - 2013-07-03 11:57 - 00000000 ____D () C:\Users\Václav\AppData\Local\Packages
2014-03-21 09:04 - 2013-08-22 16:44 - 05184312 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-03-21 09:00 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-03-21 09:00 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-21 09:00 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-21 09:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-03-21 09:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-03-21 09:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-03-21 09:00 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-03-21 09:00 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-03-21 08:59 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-03-21 08:59 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-03-21 08:59 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-03-20 22:44 - 2014-03-20 22:44 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\.mono
2014-03-20 21:57 - 2014-03-16 23:38 - 00123560 _____ () C:\Users\Václav\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-20 20:59 - 2013-08-20 00:12 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-03-20 20:51 - 2013-07-08 23:52 - 90015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-03-20 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\restore
2014-03-20 16:39 - 2014-03-18 23:34 - 00000000 ___DC () C:\WINDOWS\Panther
2014-03-20 16:36 - 2013-12-25 13:02 - 00000000 ____D () C:\Fotky
2014-03-19 00:33 - 2013-03-11 12:38 - 00000000 ____D () C:\Program Files\Intel
2014-03-19 00:20 - 2014-03-19 00:20 - 00001426 _____ () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-03-19 00:19 - 2014-03-19 00:19 - 00000020 ___SH () C:\Users\Václav\ntuser.ini
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Public\Documents\Obrázky
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Public\Documents\Hudba
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Public\Documents\Filmy
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Šablony
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Soubory cookie
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Poslední
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Okolní tiskárny
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Okolní síť
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Nabídka Start
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Dokumenty
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Documents\Obrázky
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Documents\Hudba
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Documents\Filmy
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\Data aplikací
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Data aplikací
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default User\Documents\Obrázky
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default User\Documents\Hudba
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default User\Documents\Filmy
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Data aplikací
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\ProgramData\Šablony
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\ProgramData\Plocha
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\ProgramData\Nabídka Start
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\ProgramData\Dokumenty
2014-03-19 00:14 - 2014-03-19 00:14 - 00000000 _SHDL () C:\ProgramData\Data aplikací
2014-03-19 00:14 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows NT
2014-03-19 00:14 - 2013-08-22 15:36 - 00000000 __RHD () C:\Users\Default
2014-03-19 00:13 - 2014-03-18 23:45 - 00026673 _____ () C:\WINDOWS\diagwrn.xml
2014-03-19 00:13 - 2014-03-18 23:45 - 00026673 _____ () C:\WINDOWS\diagerr.xml
2014-03-19 00:13 - 2014-03-18 22:47 - 00006680 _____ () C:\WINDOWS\comsetup.log
2014-03-19 00:13 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Registration
2014-03-19 00:13 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-03-19 00:12 - 2014-03-19 00:12 - 00022924 _____ () C:\WINDOWS\system32\emptyregdb.dat
2014-03-19 00:02 - 2013-08-22 17:36 - 00000000 __RSD () C:\WINDOWS\Media
2014-03-19 00:02 - 2013-08-22 17:36 - 00000000 __RHD () C:\Users\Public\Libraries
2014-03-18 23:56 - 2014-03-18 23:30 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-03-18 23:56 - 2013-11-14 14:26 - 00000000 ____D () C:\WINDOWS\ShellNew
2014-03-18 23:56 - 2013-09-22 22:11 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-03-18 23:56 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2014-03-18 23:56 - 2013-03-12 04:41 - 00000000 ____D () C:\WINDOWS\en-GB
2014-03-18 23:56 - 2013-03-11 15:05 - 00000000 ____D () C:\WINDOWS\sl
2014-03-18 23:56 - 2013-03-11 15:05 - 00000000 ____D () C:\WINDOWS\cs
2014-03-18 23:56 - 2013-03-11 15:04 - 00000000 ____D () C:\WINDOWS\sk
2014-03-18 23:56 - 2013-03-11 15:04 - 00000000 ____D () C:\WINDOWS\hr
2014-03-18 23:56 - 2013-03-11 15:03 - 00000000 ____D () C:\WINDOWS\hu
2014-03-18 23:53 - 2014-03-13 12:17 - 00000000 ____D () C:\WINDOWS\SysWOW64\spool
2014-03-18 23:53 - 2013-11-14 14:23 - 00000000 ____D () C:\WINDOWS\SysWOW64\WCN
2014-03-18 23:53 - 2013-11-14 14:23 - 00000000 ____D () C:\WINDOWS\SysWOW64\sysprep
2014-03-18 23:53 - 2013-11-14 14:23 - 00000000 ____D () C:\WINDOWS\system32\WCN
2014-03-18 23:53 - 2013-08-22 17:37 - 00004893 _____ () C:\WINDOWS\DtcInstall.log
2014-03-18 23:53 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\MUI
2014-03-18 23:53 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\migwiz
2014-03-18 23:53 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\IME
2014-03-18 23:53 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\spool
2014-03-18 23:53 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-03-18 23:53 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\MUI
2014-03-18 23:53 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\IME
2014-03-18 23:53 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\SMI
2014-03-18 23:53 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2014-03-18 23:53 - 2012-07-26 07:37 - 00000000 ____D () C:\Users\Default.migrated
2014-03-18 23:51 - 2013-08-22 17:43 - 00000000 ____D () C:\WINDOWS\DigitalLocker
2014-03-18 23:51 - 2013-08-22 17:36 - 00000000 __SHD () C:\Program Files\Windows Sidebar
2014-03-18 23:51 - 2013-08-22 17:36 - 00000000 __SHD () C:\Program Files (x86)\Windows Sidebar
2014-03-18 23:51 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\IME
2014-03-18 23:51 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Help
2014-03-18 23:51 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-03-18 23:51 - 2012-08-05 23:11 - 00000000 ____D () C:\ProgramData\PRICache
2014-03-18 23:47 - 2014-03-18 23:47 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate
2014-03-18 23:47 - 2014-03-18 23:45 - 00000000 ___RD () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-18 23:47 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\Recovery
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Šablony
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Soubory cookie
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Poslední
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Okolní tiskárny
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Okolní síť
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Nabídka Start
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Dokumenty
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Documents\Obrázky
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Documents\Hudba
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Documents\Filmy
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\Data aplikací
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-03-18 23:45 - 2014-03-18 23:45 - 00000000 _SHDL () C:\Users\Václav\AppData\Local\Data aplikací
2014-03-18 23:38 - 2014-03-18 23:38 - 00000264 _____ () C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2014-03-18 23:38 - 2014-03-18 23:38 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-03-18 23:38 - 2013-08-22 16:46 - 00000435 _____ () C:\WINDOWS\setuperr.log
2014-03-18 23:37 - 2014-03-18 23:37 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-03-18 23:37 - 2014-03-18 23:37 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2014-03-18 23:37 - 2014-03-18 23:37 - 00000000 ____D () C:\WINDOWS\system32\SRSLabs
2014-03-18 23:37 - 2014-03-18 23:37 - 00000000 ____D () C:\Program Files\Synaptics
2014-03-18 23:37 - 2014-03-18 23:37 - 00000000 ____D () C:\Program Files\Realtek
2014-03-18 23:34 - 2014-03-18 23:34 - 00000000 __SHD () C:\Recovery
2014-03-18 23:33 - 2013-08-22 17:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2014-03-18 23:32 - 2014-03-18 23:32 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-03-18 23:30 - 2014-03-18 23:30 - 00000000 ____D () C:\WINDOWS\SysWOW64\XPSViewer
2014-03-18 23:30 - 2014-03-18 23:30 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-03-18 23:30 - 2014-03-18 23:30 - 00000000 ____D () C:\Program Files\MSBuild
2014-03-18 23:30 - 2014-03-18 23:30 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-03-18 23:18 - 2013-03-11 12:43 - 01328027 _____ () C:\WINDOWS\WindowsUpdate (1).log
2014-03-18 22:11 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent
2014-03-18 22:09 - 2013-07-10 20:29 - 00000000 ____D () C:\Users\Václav\AppData\Local\CrashDumps
2014-03-18 19:54 - 2014-03-18 19:54 - 00000000 ____D () C:\Users\Václav\.android
2014-03-18 13:54 - 2014-03-18 13:53 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2014-03-18 13:53 - 2014-03-18 13:53 - 00001190 _____ () C:\Users\Václav\Desktop\CrystalDiskInfo.lnk
2014-03-18 11:02 - 2014-03-18 11:02 - 00001202 _____ () C:\Users\Václav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\S Agent.lnk
2014-03-17 22:45 - 2013-03-11 14:46 - 00000000 ____D () C:\ProgramData\Samsung
2014-03-16 22:13 - 2014-03-14 13:40 - 00000000 ____D () C:\1prezentace
2014-03-16 22:02 - 2014-03-16 22:02 - 00000000 ____D () C:\Users\Václav\Prezi
2014-03-16 15:01 - 2014-03-16 15:01 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-03-15 14:26 - 2014-03-15 11:02 - 00000000 ____D () C:\zpenzion
2014-03-15 14:18 - 2013-07-03 11:59 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\Adobe
2014-03-15 13:16 - 2014-03-15 13:16 - 00000000 ____D () C:\Users\Václav\Documents\TopStyle 5
2014-03-15 12:56 - 2014-03-15 12:53 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\PSpad
2014-03-15 12:49 - 2014-03-15 12:49 - 00000000 ____D () C:\Users\Václav\AppData\Roaming\Bradsoft.com
2014-03-15 12:48 - 2014-03-15 12:48 - 00000000 ____D () C:\Program Files (x86)\TopStyle 5
2014-03-15 12:44 - 2014-03-15 12:44 - 00000000 ____D () C:\Program Files (x86)\PSPad editor
2014-03-13 22:22 - 2013-03-11 14:47 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-03-13 22:16 - 2013-03-11 14:47 - 00000000 ____D () C:\ProgramData\Adobe
2014-03-13 22:10 - 2014-03-13 22:10 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-03-13 16:44 - 2014-03-13 12:26 - 00000000 ____D () C:\Program Files (x86)\Acrobat 8.0
2014-03-13 15:01 - 2014-03-13 13:56 - 00000000 ____D () C:\Program Files (x86)\Adobe InDesign CS3
2014-03-13 14:04 - 2014-03-13 14:03 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-03-13 11:47 - 2014-03-13 11:47 - 00000000 ____D () C:\Photoshop
2014-03-13 10:06 - 2013-09-13 23:13 - 00000000 ____D () C:\Users\Václav\AppData\Local\Microsoft Help
2014-03-11 23:15 - 2014-03-11 23:15 - 00000000 ____D () C:\Program Files (x86)\StartW8
2014-03-11 22:28 - 2013-07-04 00:57 - 00003802 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-03-11 13:06 - 2013-07-03 20:01 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-10 23:34 - 2013-12-07 22:20 - 00000174 _____ () C:\Users\Václav\Desktop\Nový textový dokument.txt
2014-03-10 22:34 - 2014-03-10 22:34 - 00001931 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-03-10 22:33 - 2014-03-10 22:33 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-03-05 09:26 - 2014-04-01 18:40 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-03-05 09:26 - 2014-04-01 18:40 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-03-05 09:26 - 2014-04-01 18:40 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-03-05 00:53 - 2014-03-21 09:06 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-03-05 00:53 - 2014-03-21 09:06 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

Files to move or delete:
====================
C:\ProgramData\MakeMarkerFile.exe
C:\Users\EasySurvey\EasySurvey.exe


Some content of TEMP:
====================
C:\Users\Václav\AppData\Local\Temp\Quarantine.exe
C:\Users\Václav\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2014-03-20 18:22] - [2014-01-31 18:15] - 0311640 ____A (Microsoft Corporation) C85C075DE5B6D0FE116043054DE8EE02



LastRegBack: 2014-04-03 16:34

==================== End Of Log ============================
Nahoru
Rob564
nováček
Příspěvky: 13
Registrován: březen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu (HDD mívá 100% vytížení)

Příspěvekod Rob564 » 03 dub 2014 19:17

Addition

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Václav at 2014-04-03 18:53:37
Running from C:\Users\Václav\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Add or Remove Adobe Creative Suite 3 Master Collection (HKLM-x32\...\Adobe_4dcfd9b7e901b57f81f667144603236) (Version: 1.0 - Adobe Systems Incorporated)
Adobe After Effects CS3 Presets (x32 Version: 8 - Adobe Systems Incorporated) Hidden
Adobe Anchor Service CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Asset Services CS3 (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Bridge CS3 (x32 Version: 2 - Adobe Systems Incorporated) Hidden
Adobe Bridge Start Meeting (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe BridgeTalk Plugin CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Camera Raw 4.0 (x32 Version: 4.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color - Photoshop Specific (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color Common Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color EU Extra Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color JA Extra Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color NA Recommended Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 3 Master Collection (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Default Language CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Device Central CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe ExtendScript Toolkit 2 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Extension Manager CS3 (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 9 ActiveX (HKLM-x32\...\{BC4F8E84-5E29-49EC-B4E7-E6F9CB50986C}) (Version: 9.0.45.0 - Adobe Systems, Inc.)
Adobe Flash Player 9 Plugin (HKLM-x32\...\{88D422DB-E9C7-4E16-9D80-2999F4FD6AD9}) (Version: 9.0.45.0 - Adobe Systems, Inc.)
Adobe Fonts All (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Help Viewer CS3 (x32 Version: 1 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS3 Icon Handler (x32 Version: 5.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS3 (x32 Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe MotionPicture Color Files (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files (x32 Version: 8.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS3 (x32 Version: 10 - Adobe Systems Incorporated) Hidden
Adobe Photoshop Elements 11 (HKLM-x32\...\Adobe Photoshop Elements 11) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 11 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Reader X (10.1.9) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Adobe Setup (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe SING CS3 (x32 Version: 0.1 - Adobe Systems Incorporated) Hidden
Adobe Stock Photos CS3 (x32 Version: 1.5 - Adobe Systems Incorporated) Hidden
Adobe Type Support (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Update Manager CS3 (x32 Version: 5.1.0 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS3 Client (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Video Profiles (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe WAS CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe XMP DVA Panels CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe XMP Panels CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
AHV content for Acrobat and Flash (x32 Version: 1 - Adobe Systems Incorporated) Hidden
Arduino (HKLM-x32\...\Arduino) (Version: 1.5.5 - Arduino LLC)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Bitcasa version 0.9.20.4135 (HKLM\...\{EDA09459-AD7D-4434-BA0C-647F6703EA12}_is1) (Version: 0.9.20.4135 - Bitcasa Inc.)
CrystalDiskInfo 6.1.9a (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.1.9a - Crystal Dew World)
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4421.02 - CyberLink Corp.)
CyberLink PowerDVD 10 (x32 Version: 10.0.4421.02 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DownLite (HKLM-x32\...\DownLite) (Version: 1.0.0.1 - ) <==== ATTENTION
Easy File Share (HKLM-x32\...\{A7C37D4B-F37A-42E8-9B6A-B28C18AD4C12}) (Version: 1.3.6 - Samsung Electronics CO.,LTD.)
Elements 11 Organizer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
E-POP (HKLM-x32\...\{F06DD8D9-9DC8-430C-835C-C9BF21E05CC1}) (Version: 1.0.1 - Samsung Electronics CO., LTD.)
Fotogaléria (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.2.56.5183 - Gretech Corporation)
Help Desk (HKLM\...\{22B32087-797D-4A1B-AFA7-072C87580ADC}) (Version: 1.0.9 - Samsung Electronics CO., LTD.)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33070) (Version: 3.6.1.33070.11 - Intel)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36843 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.30.1349 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.0.1013 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.757.1 - Intel Corporation) Hidden
Java 7 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
Malwarebytes Anti-Malware verze 2.00.0.1000 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.00.0.1000 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.141.11 - McAfee, Inc.)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Mozilla Firefox 28.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 cs)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1108.0727 - Microsoft) Hidden
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.30.0 - Nokia)
Nokia Suite (x32 Version: 3.8.30.0 - Nokia) Hidden
okitspace (HKLM-x32\...\okitspace) (Version: - )
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PDF Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Phone Screen Sharing (HKLM-x32\...\{DF02C515-40B5-45AC-A601-5DC69D03885C}) (Version: 1.0.0.1 - RSUPPORT)
Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Plants vs. Zombies (HKLM-x32\...\Plants vs. Zombies) (Version: - PopCap Games)
PSE11 STI Installer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.5.7.2450 - Jan Fiala)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.4.907.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6818 - Realtek Semiconductor Corp.)
Recovery (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 6.0.9.5 - Samsung Electronics CO., LTD.)
S Agent (Version: 1.1.45 - Samsung Electronics CO., LTD.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.2.13021_11 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.2.13021_11 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.16.0 - SAMSUNG Electronics Co., Ltd.)
Settings (HKLM-x32\...\{8CB5C357-12E5-41B1-A024-D57D4E6F32D9}) (Version: 2.0.1 - Samsung Electronics CO., LTD.)
Seznam Software (HKCU\...\SeznamInstall) (Version: - Seznam.cz)
Side Sync (HKLM-x32\...\{34BEB782-66B1-4772-8E3E-71B758BA848B}) (Version: 1.0.2 - Samsung Electronics CO., LTD.)
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.1.15383.6004 - Microsoft Corporation)
Skype™ 6.9 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.9.106 - Skype Technologies S.A.)
Sony PC Companion 2.10.197 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.197 - Sony)
StartW8 1.2.44.0 (HKLM-x32\...\{A450BA76-BEA5-475B-9DD1-A1A0292B6F0B}) (Version: 1.2.44.0 - SODATSW spol. s r. o.)
Support Center (HKLM\...\{843A1BDC-0879-4E5B-83E1-B81CC0CF3580}) (Version: 2.1.1201 - Samsung Electronics CO., LTD.)
Support Center FAQ (x32 Version: 1.0.8 - Samsung Electronics CO., LTD.) Hidden
SW Update (HKLM-x32\...\{DA06101F-FD76-4BF0-88BD-B26A197005E3}) (Version: 2.1.21 - Samsung Electronics CO., LTD.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.14.2 - Synaptics Incorporated)
TmNationsForever (HKLM-x32\...\TmNationsForever_is1) (Version: - Nadeo)
TopStyle 5 (HKLM-x32\...\TopStyle5_is1) (Version: 5.0 - topstyle4.com)
TorrentForage 2.1 (HKLM-x32\...\TorrentForage) (Version: 2.1 - AppZilla Software Inc)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
User Guide (HKLM-x32\...\{A6C17C20-4464-4A2A-968D-684C083B9424}) (Version: 1.0.00 - Samsung Electronics CO., LTD.)
Windows Live Communications Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
WinRAR 4.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
winrar full cz 64bit version for Windows (HKLM-x32\...\{DA3ECA99-04E8-E068-026D-A8F51D657B6D}_is1) (Version: for Windows - )
XBMC (HKCU\...\XBMC) (Version: - Team XBMC)

==================== Restore Points =========================

25-03-2014 11:05:16 Naplánovaný kontrolní bod
31-03-2014 07:32:54 Nainstalováno rozhraní DirectX

==================== Hosts content: ==========================

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2836B45C-7939-4E84-969E-7B0A3E649438} - System32\Tasks\SideSyncAutoRun => C:\Program Files (x86)\Samsung\Side Sync\SideSync.exe [2013-03-09] (Samsung Electronics CO., LTD.)
Task: {29340214-B9AC-4740-912B-22546D0E97C2} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-09-13] (Intel Corporation)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {68DF8B34-FBE8-4C91-82B6-FED3D8324CBD} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [2013-10-16] (Samsung Electronics CO., LTD.)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {BD07B0F7-C9E9-4A37-9C77-AB27CA869B3A} - System32\Tasks\advRecovery => C:\Program Files\Samsung\Recovery\WCScheduler.exe [2013-02-13] (SEC)
Task: {C4E58C75-E1BB-442A-B088-1CF7DD5D2DEA} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-10-16] (Synaptics Incorporated)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D0DF55CF-B014-44F2-96B7-A59AF322EB76} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-11] (Adobe Systems Incorporated)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E3571FBC-834A-48CB-A60D-00311E77ECA5} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-09-13] (Intel Corporation)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {FC37B7FA-5DFD-4BC3-944A-8BEB48BFEE2A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-03-20] (Microsoft Corporation)
Task: {FE90029F-B5E3-4A2A-9215-6034F2ED6CB2} - System32\Tasks\Settings => C:\Program Files (x86)\Samsung\Settings\sSettings.exe [2013-02-01] (Samsung Electronics CO., LTD.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Loaded Modules (whitelisted) =============

2013-02-01 03:52 - 2013-02-01 03:52 - 00085040 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
2013-07-13 16:24 - 2012-02-17 20:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2013-01-24 17:09 - 2013-01-24 17:09 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-01-24 17:05 - 2013-01-24 17:05 - 00084992 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2012-12-20 08:18 - 2012-12-20 08:18 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-01-24 17:12 - 2013-01-24 17:12 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2013-10-16 20:15 - 2013-10-16 20:15 - 00088624 _____ () C:\Program Files\Samsung\S Agent\ToastX64.dll
2013-02-01 03:52 - 2013-02-01 03:52 - 00029232 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdWrapper.dll
2013-02-01 03:52 - 2013-02-01 03:52 - 01106480 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmd.dll
2013-02-01 03:52 - 2013-02-01 03:52 - 00111152 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsBase.dll
2013-02-01 03:52 - 2013-02-01 03:52 - 00056440 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\HookDllPS2.dll
2013-02-01 03:52 - 2013-02-01 03:52 - 00211064 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\WinCRT.dll
2013-02-01 03:52 - 2013-02-01 03:52 - 00027184 _____ () C:\Program Files (x86)\Samsung\Settings\EasySettingsAPI.dll
2013-02-01 03:52 - 2013-02-01 03:52 - 00111152 _____ () C:\Program Files (x86)\Samsung\Settings\EasySettingsBase.dll
2013-02-01 03:52 - 2013-02-01 03:52 - 00060976 _____ () C:\Program Files (x86)\Samsung\Settings\EasyMovieEnhancer.dll
2013-02-01 03:52 - 2013-02-01 03:52 - 00103472 _____ () C:\Program Files (x86)\Samsung\Settings\EasySettingsCmdClient.dll
2013-03-09 21:58 - 2013-03-09 21:58 - 00192048 _____ () C:\Program Files (x86)\Samsung\Side Sync\SideSyncNetworkFramework.dll
2013-03-11 12:38 - 2013-01-14 20:25 - 01200088 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-03-16 15:01 - 2014-03-30 21:57 - 03642480 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Václav\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/03/2014 06:31:57 PM) (Source: Application Hang) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20413 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 19f8

Čas spuštění: 01cf4f5984d8f1d3

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 7870dd08-bb4d-11e3-bf00-1867b067116a

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (04/03/2014 06:01:22 PM) (Source: Application Hang) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20413 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 19ac

Čas spuštění: 01cf4f553f53cac5

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 32e58704-bb49-11e3-bf00-1867b067116a

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (04/03/2014 05:36:02 PM) (Source: Application Hang) (User: )
Description: Program backgroundTaskHost.exe verze 6.3.9600.16384 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1ad0

Čas spuštění: 01cf4f512dac5b18

Čas ukončení: 4294967295

Cesta k aplikaci: C:\WINDOWS\system32\backgroundTaskHost.exe

ID hlášení: 764502df-bb45-11e3-bf00-1867b067116a

Úplný název chybujícího balíčku: Microsoft.BingTravel_3.0.2.243_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: AppexTravel

Error: (04/03/2014 05:34:42 PM) (Source: Application Hang) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20413 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1b0c

Čas spuštění: 01cf4f512dad6cb6

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 76c825e2-bb45-11e3-bf00-1867b067116a

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (04/03/2014 05:02:15 PM) (Source: Application Hang) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20413 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 3b8

Čas spuštění: 01cf4f4cfcbf6f2a

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: f085f97b-bb40-11e3-bf00-1867b067116a

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (04/03/2014 04:34:57 PM) (Source: Application Hang) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20413 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 17c8

Čas spuštění: 01cf4f48cbcdf420

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 18c994c8-bb3d-11e3-bf00-1867b067116a

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (04/03/2014 04:02:14 PM) (Source: Application Hang) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20413 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1604

Čas spuštění: 01cf4f449ae4cf25

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 8e76e4e7-bb38-11e3-bf00-1867b067116a

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (04/03/2014 03:31:21 PM) (Source: Application Hang) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20413 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 15a4

Čas spuštění: 01cf4f3cef540a01

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 3df3ca93-bb34-11e3-bf00-1867b067116a

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (04/03/2014 03:11:26 PM) (Source: Application Hang) (User: )
Description: Program Skype.exe verze 6.9.0.106 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 17d8

Čas spuštění: 01cf4f36e4a72f4b

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files (x86)\Skype\Phone\Skype.exe

ID hlášení: 747fc732-bb31-11e3-bf00-1867b067116a

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (04/03/2014 03:02:14 PM) (Source: Application Hang) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20413 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: b88

Čas spuštění: 01cf4f3c391c8010

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 2cae6443-bb30-11e3-bf00-1867b067116a

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1


System errors:
=============
Error: (04/03/2014 05:32:04 PM) (Source: Microsoft-Windows-Kernel-Power) (User: )
Description: 4

Error: (04/03/2014 00:54:39 PM) (Source: DCOM) (User: VASEK)
Description: 1084ShellHWDetectionNení k dispozici{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (04/03/2014 00:54:31 PM) (Source: DCOM) (User: VASEK)
Description: 1084ShellHWDetectionNení k dispozici{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (04/03/2014 00:54:15 PM) (Source: DCOM) (User: VASEK)
Description: 1084ShellHWDetectionNení k dispozici{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (04/03/2014 00:54:10 PM) (Source: DCOM) (User: VASEK)
Description: 1084WSearchNení k dispozici{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (04/03/2014 00:54:10 PM) (Source: DCOM) (User: VASEK)
Description: 1084WSearchNení k dispozici{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (04/03/2014 00:54:10 PM) (Source: DCOM) (User: VASEK)
Description: 1084WSearchNení k dispozici{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (04/03/2014 00:54:10 PM) (Source: DCOM) (User: VASEK)
Description: 1084WSearchNení k dispozici{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (04/03/2014 00:54:10 PM) (Source: DCOM) (User: VASEK)
Description: 1084WSearchNení k dispozici{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (04/03/2014 00:54:10 PM) (Source: DCOM) (User: VASEK)
Description: 1084WSearchNení k dispozici{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Percentage of memory in use: 43%
Total physical RAM: 3797.53 MB
Available physical RAM: 2131.85 MB
Total Pagefile: 7637.53 MB
Available Pagefile: 5253.49 MB
Total Virtual: 131072 MB
Available Virtual: 131071.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:441.28 GB) (Free:336.74 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: BF7269D8)

Partition: GPT Partition Type.

==================== End Of Log ============================
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu (HDD mívá 100% vytížení)

Příspěvekod jaro3 » 03 dub 2014 19:47

Odinstaluj:
FixMyRegistry
McAfee Security Scan
okitspace
MindSpark Toolbar Platform Plugin Stub

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

HKLM-x32\...\Run: [NtVdmSrv] - C:\windows\inf\ntvdm.vbe
HKU\S-1-5-21-3767287778-3100067175-2433139727-1001\...\MountPoints2: {be341e42-af44-11e3-bee7-1867b067116a} - "D:\iLinker.exe"
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung13.msn.com
URLSearchHook: HKCU - (No Name) - {5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} - C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\8hSrcAs.dll No File
SearchScopes: HKLM - DefaultScope {9D0718D4-D9A1-49B5-B646-855197130F75} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM - {9D0718D4-D9A1-49B5-B646-855197130F75} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM-x32 - {9D0718D4-D9A1-49B5-B646-855197130F75} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKCU - {1E4FDE46-9F24-4967-94AE-F5B7F3D44076} URL = http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKCU - {24514965-DFE1-466A-ABC2-A3FA9F19A71F} URL = http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKCU - {727EB0C8-5491-4B28-9C3E-1A5069183C44} URL = http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKCU - {73C3359D-C707-4C7B-A796-1EAA497C0C2F} URL = http://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKCU - {9D0718D4-D9A1-49B5-B646-855197130F75} URL =
SearchScopes: HKCU - {AC25815D-6255-462C-9097-A5DB9D0E0EC5} URL = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKCU - {B9176EF7-0056-49E1-81C7-DDC43ABBB0A1} URL = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_13415
SearchScopes: HKCU - {BF35EE54-F90D-4AC6-BB55-F8228C108F96} URL = http://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKCU - {D8F8321E-86B7-4DF6-9679-A62CEEC12F4E} URL = http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
FF HKLM-x32\...\Firefox\Extensions: [OKitSpace@Vittalia.es] - C:\Users\Václav\AppData\Roaming\okitspace\Firefox
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL No File
CHR Plugin: (MindSpark Toolbar Platform Plugin Stub) - C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\NP8hStub.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll No File
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
C:\windows\inf\ntvdm.vbe
C:\Users\Václav\Desktop\ComboFix.exe
C:\ProgramData\MakeMarkerFile.exe
C:\Users\EasySurvey\EasySurvey.exe
C:\Users\Václav\AppData\Local\Temp\Quarantine.exe
C:\Users\Václav\AppData\Local\Temp\SkypeSetup.exe


(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

C:\WINDOWS\system32\config\bbimigrate podívej se , co je v té složce.

Stáhni si a nainstaluj WhoCrashed
otevři ho a klikni na Analyze.
Program vytvoří zprávu , zkopíruj celou a vlož prosím sem.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Rob564
nováček
Příspěvky: 13
Registrován: březen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu (HDD mívá 100% vytížení)

Příspěvekod Rob564 » 04 dub 2014 17:32

Ve šlosžce C:....../ddimigrate není nic (je prázdná)
U reportu z WhoCrashed si nejsem jistý jestli jsem ho zkopíroval správně !!!

Fixlog

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-03-2014
Ran by Václav at 2014-04-04 16:49:03 Run:1
Running from C:\Users\Václav\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKLM-x32\...\Run: [NtVdmSrv] - C:\windows\inf\ntvdm.vbe
HKU\S-1-5-21-3767287778-3100067175-2433139727-1001\...\MountPoints2: {be341e42-af44-11e3-bee7-1867b067116a} - "D:\iLinker.exe"
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung13.msn.com
URLSearchHook: HKCU - (No Name) - {5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} - C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\8hSrcAs.dll No File
SearchScopes: HKLM - DefaultScope {9D0718D4-D9A1-49B5-B646-855197130F75} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM - {9D0718D4-D9A1-49B5-B646-855197130F75} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM-x32 - {9D0718D4-D9A1-49B5-B646-855197130F75} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKCU - {1E4FDE46-9F24-4967-94AE-F5B7F3D44076} URL = http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKCU - {24514965-DFE1-466A-ABC2-A3FA9F19A71F} URL = http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKCU - {727EB0C8-5491-4B28-9C3E-1A5069183C44} URL = http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKCU - {73C3359D-C707-4C7B-A796-1EAA497C0C2F} URL = http://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKCU - {9D0718D4-D9A1-49B5-B646-855197130F75} URL =
SearchScopes: HKCU - {AC25815D-6255-462C-9097-A5DB9D0E0EC5} URL = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKCU - {B9176EF7-0056-49E1-81C7-DDC43ABBB0A1} URL = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_13415
SearchScopes: HKCU - {BF35EE54-F90D-4AC6-BB55-F8228C108F96} URL = http://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKCU - {D8F8321E-86B7-4DF6-9679-A62CEEC12F4E} URL = http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
FF HKLM-x32\...\Firefox\Extensions: [OKitSpace@Vittalia.es] - C:\Users\Václav\AppData\Roaming\okitspace\Firefox
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL No File
CHR Plugin: (MindSpark Toolbar Platform Plugin Stub) - C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\NP8hStub.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll No File
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
C:\windows\inf\ntvdm.vbe
C:\Users\Václav\Desktop\ComboFix.exe
C:\ProgramData\MakeMarkerFile.exe
C:\Users\EasySurvey\EasySurvey.exe
C:\Users\Václav\AppData\Local\Temp\Quarantine.exe
C:\Users\Václav\AppData\Local\Temp\SkypeSetup.exe
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\NtVdmSrv => Value deleted successfully.
HKU\S-1-5-21-3767287778-3100067175-2433139727-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{be341e42-af44-11e3-bee7-1867b067116a} => Key deleted successfully.
HKCR\CLSID\{be341e42-af44-11e3-bee7-1867b067116a} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9D0718D4-D9A1-49B5-B646-855197130F75} => Key deleted successfully.
HKCR\CLSID\{9D0718D4-D9A1-49B5-B646-855197130F75} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9D0718D4-D9A1-49B5-B646-855197130F75} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{9D0718D4-D9A1-49B5-B646-855197130F75} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1E4FDE46-9F24-4967-94AE-F5B7F3D44076} => Key deleted successfully.
HKCR\CLSID\{1E4FDE46-9F24-4967-94AE-F5B7F3D44076} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{24514965-DFE1-466A-ABC2-A3FA9F19A71F} => Key deleted successfully.
HKCR\CLSID\{24514965-DFE1-466A-ABC2-A3FA9F19A71F} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{727EB0C8-5491-4B28-9C3E-1A5069183C44} => Key deleted successfully.
HKCR\CLSID\{727EB0C8-5491-4B28-9C3E-1A5069183C44} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{73C3359D-C707-4C7B-A796-1EAA497C0C2F} => Key deleted successfully.
HKCR\CLSID\{73C3359D-C707-4C7B-A796-1EAA497C0C2F} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9D0718D4-D9A1-49B5-B646-855197130F75} => Key deleted successfully.
HKCR\CLSID\{9D0718D4-D9A1-49B5-B646-855197130F75} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AC25815D-6255-462C-9097-A5DB9D0E0EC5} => Key deleted successfully.
HKCR\CLSID\{AC25815D-6255-462C-9097-A5DB9D0E0EC5} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B9176EF7-0056-49E1-81C7-DDC43ABBB0A1} => Key deleted successfully.
HKCR\CLSID\{B9176EF7-0056-49E1-81C7-DDC43ABBB0A1} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BF35EE54-F90D-4AC6-BB55-F8228C108F96} => Key deleted successfully.
HKCR\CLSID\{BF35EE54-F90D-4AC6-BB55-F8228C108F96} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D8F8321E-86B7-4DF6-9679-A62CEEC12F4E} => Key deleted successfully.
HKCR\CLSID\{D8F8321E-86B7-4DF6-9679-A62CEEC12F4E} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key not found.
HKCR\Wow6432Node\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => Value deleted successfully.
HKCR\CLSID\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => Key not found.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\OKitSpace@Vittalia.es => Value deleted successfully.
C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll not found.
C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll not found.
C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll not found.
C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL not found.
C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL not found.
C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin\NP8hStub.dll not found.
C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll not found.
C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll not found.
C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll not found.
HKLM\SOFTWARE\Policies\Google => Key deleted successfully.
"C:\windows\inf\ntvdm.vbe" => File/Directory not found.
C:\Users\Václav\Desktop\ComboFix.exe => Moved successfully.
C:\ProgramData\MakeMarkerFile.exe => Moved successfully.
C:\Users\EasySurvey\EasySurvey.exe => Moved successfully.
"C:\Users\Václav\AppData\Local\Temp\Quarantine.exe" => File/Directory not found.
C:\Users\Václav\AppData\Local\Temp\SkypeSetup.exe => Moved successfully.

==== End of Fixlog ====

========================================================================================================================


WhoCrashed
--------------------------------------------------------------------------------
Welcome to WhoCrashed (HOME EDITION) v 5.01
--------------------------------------------------------------------------------

This program checks for drivers which have been crashing your computer. If your computer has displayed a blue screen of death, suddenly rebooted or shut down then this program will help you find the root cause and possibly a solution.

Whenever a computer suddenly reboots without displaying any notice or blue screen of death, the first thing that is often thought about is a hardware failure. In reality, on Windows most crashes are caused by malfunctioning device drivers and kernel modules. In case of a kernel error, many computers do not show a blue screen unless they are configured for this. Instead these systems suddenly reboot without any notice.

This program will analyze your crash dumps with the single click of a button. It will tell you what drivers are likely to be responsible for crashing your computer. It will report a conclusion which offers suggestions on how to proceed in any situation while the analysis report will display internet links which will help you further troubleshoot any detected problems.

To obtain technical support visit http://www.resplendence.com/support

Click here to check if you have the latest version or if an update is available.

Just click the Analyze button for a comprehensible report ...



--------------------------------------------------------------------------------
Home Edition Notice
--------------------------------------------------------------------------------

This version of WhoCrashed is free for use at home only. If you would like to use this software at work or in a commercial environment you should get the professional edition of WhoCrashed which allows you to perform more thorough and detailed analysis. It also offers a range of additional features such as remote analysis on remote directories and remote computers on the network.

Click here for more information on the professional edition.
Click here to buy the the professional edition of WhoCrashed.


--------------------------------------------------------------------------------
System Information (local)
--------------------------------------------------------------------------------

computer name: VASEK
windows version: Windows 8.1 , 6.2, build: 9200
windows dir: C:\WINDOWS
Hardware: 300E5EV/300E4EV/270E5EV/270E4EV/2470EV, SAMSUNG ELECTRONICS CO., LTD., NP270E5E-K04CZ
CPU: GenuineIntel Intel(R) Pentium(R) CPU 2117U @ 1.80GHz Intel586, level: 6
2 logical processors, active mask: 3
RAM: 4162768896 total
VM: 2147352576, free: 1867833344




--------------------------------------------------------------------------------
Crash Dump Analysis
--------------------------------------------------------------------------------

Crash dump directory: C:\WINDOWS\Minidump

Crash dumps are enabled on your computer.

On Thu 27. 3. 2014 8:44:15 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\032714-29843-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DCA0)
Bugcheck code: 0x9F (0x3, 0xFFFFE000041E5060, 0xFFFFF800180DA940, 0xFFFFE000007C6AC0)
Error: DRIVER_POWER_STATE_FAILURE
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This bug check indicates that the driver is in an inconsistent or invalid power state.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.



On Thu 27. 3. 2014 8:44:15 GMT your computer crashed
crash dump file: C:\WINDOWS\memory.dmp
This was probably caused by the following module: ntkrnlmp.exe (nt!KeBugCheckEx+0x0)
Bugcheck code: 0x9F (0x3, 0xFFFFE000041E5060, 0xFFFFF800180DA940, 0xFFFFE000007C6AC0)
Error: DRIVER_POWER_STATE_FAILURE
Bug check description: This bug check indicates that the driver is in an inconsistent or invalid power state.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.



On Tue 25. 3. 2014 9:41:16 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\032514-23875-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DCA0)
Bugcheck code: 0xC000021A (0xFFFFC000026DE9E0, 0x0, 0x0, 0x0)
Error: STATUS_SYSTEM_PROCESS_TERMINATED
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This means that an error has occurred in a crucial user-mode subsystem.
There is a possibility this problem was caused by a virus or other malware.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.




--------------------------------------------------------------------------------
Conclusion
--------------------------------------------------------------------------------

3 crash dumps have been found and analyzed. No offending third party drivers have been found. Connsider using WhoCrashed Professional which offers more detailed analysis using symbol resolution. Also configuring your system to produce a full memory dump may help you.


Read the topic general suggestions for troubleshooting system crashes for more information.

Note that it's not always possible to state with certainty whether a reported driver is actually responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu (HDD mívá 100% vytížení)

Příspěvekod jaro3 » 05 dub 2014 09:55

WhoCrashed---je to ono , kontaqktuj uživatele- moderátora MiliNess , aby se na to podíval.

C:\WINDOWS\system32\config\bbimigrate tu složku smaž.

Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Odpovědět

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 104 hostů