kontrola logu

[lyky]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-02-2014
Ran by OV88 (administrator) on OV88-PC on 17-02-2014 14:54:35
Running from C:\Users\OV88\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(IBM Corp) C:\Program Files (x86)\IBM\Notes\nslsvice.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(IBM) C:\Program Files (x86)\IBM\Notes\nsd.exe
(IBM Corp) C:\Program Files (x86)\IBM\Notes\SUService.exe
(IBM Corp) C:\Program Files (x86)\IBM\Notes\ntmulti.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
() C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Gadwin Systems, Inc) C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe
() C:\Users\OV88\AppData\Local\Viber\Viber.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE
(IBM Corp) C:\Program Files (x86)\IBM\Notes\NLNOTES.EXE
(IBM) C:\Program Files (x86)\IBM\Notes\framework\rcp\eclipse\plugins\com.ibm.rcp.base_9.0.1.20131002-1404\win32\x86\notes2.exe
(IBM Corp) C:\Program Files (x86)\IBM\Notes\ntaskldr.EXE
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmplayer.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(SAP, Walldorf) C:\Program Files (x86)\SAP\FrontEnd\SAPgui\saplogon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google) C:\Users\OV88\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-unity-helper.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\x64\vmware-vmx.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vprintproxy.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\system32\taskmgr.exe
(forum.viry.cz) C:\Users\OV88\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [tvncontrol] - C:\Program Files\TightVNC\tvnserver.exe [2122224 2013-05-24] (GlavSoft LLC.)
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [74752 2012-06-28] (Nullsoft, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-01-20] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [!IBM Notes Browser Plugin IE Registration] - REG ADD "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults" /v notes /t REG_DWORD /d 2 /f
HKLM-x32\...\Run: [IBM NBP Disable IE Popup Blocker] - REG ADD "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2" /v 1809 /t REG_DWORD /d 3 /f
HKLM-x32\...\Run: [IBM NBP Disable IE Protected Mode] - REG ADD "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2" /v 2500 /t REG_DWORD /d 3 /f
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [vmware-tray.exe] - C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [105176 2013-11-05] (VMware, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] - C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1985824 2013-07-25] (Wondershare)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-01-20] (Apple Inc.)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2013-05-01] (Microsoft Corporation)
HKU\S-1-5-21-1953490357-188325354-735401152-1000\...\Run: [Gadwin PrintScreen] - C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe [1842384 2012-05-30] (Gadwin Systems, Inc)
HKU\S-1-5-21-1953490357-188325354-735401152-1000\...\Run: [Google Update] - C:\Users\OV88\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-03-20] (Google Inc.)
HKU\S-1-5-21-1953490357-188325354-735401152-1000\...\Run: [GoogleDriveSync] - "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
HKU\S-1-5-21-1953490357-188325354-735401152-1000\...\Run: [Viber] - C:\Users\OV88\AppData\Local\Viber\Viber.exe [912904 2013-07-31] ()
HKU\S-1-5-21-1953490357-188325354-735401152-1000\...\Run: [uTorrent] - C:\Users\OV88\AppData\Roaming\uTorrent\utorrent.exe [1141328 2013-10-06] (BitTorrent Inc.)
HKU\S-1-5-21-1953490357-188325354-735401152-1000\...\MountPoints2: {f2d94bef-9142-11e2-bc1b-806e6f6e6963} - E:\setup.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://gogle.com/
BHO: IBM Notes Browser Plug-in - {0E9EF4E6-4BF5-4350-95B6-EEB88E105783} - C:\Program Files (x86)\IBM\Notes\msie\nnotebho64.dll (IBM Corp)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: IBM Notes Browser Plug-in - {0E9EF4E6-4BF5-4350-95B6-EEB88E105783} - C:\Program Files (x86)\IBM\Notes\msie\nnotebho.dll (IBM Corp)
BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll (pdfforge GmbH)
DPF: HKLM-x32 {1ABA5FAC-1417-422B-BA82-45C35E2C908B} http://kitchenplanner.ikea.com/CZ/Core/ ... _Win32.cab
DPF: HKLM-x32 {75AA409D-05F9-4F27-BD53-C7339D4B1D0A} https://webmail.kofola.net/dwa85W.cab
DPF: HKLM-x32 {F680B28A-3AEE-4C88-93ED-45AE9215C128} https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab
Handler: notes - {D10B24B3-B653-4E94-ABAF-B4FA22F2E4EA} - C:\Program Files (x86)\IBM\Notes\msie\nnotebho64.dll (IBM Corp)
Handler: saphtmlp - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - No File
Handler: sapr3 - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - No File
Handler-x32: notes - {D10B24B3-B653-4E94-ABAF-B4FA22F2E4EA} - C:\Program Files (x86)\IBM\Notes\msie\nnotebho.dll (IBM Corp)
Handler-x32: saphtmlp - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - c:\program files (x86)\sap\frontend\sapgui\saphtmlp.dll (SAP, Walldorf)
Handler-x32: sapr3 - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - c:\program files (x86)\sap\frontend\sapgui\saphtmlp.dll (SAP, Walldorf)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.202.186 192.168.138.187

FireFox:
========
FF ProfilePath: C:\Users\OV88\AppData\Roaming\Mozilla\Firefox\Profiles\j5x0ii05.default
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\OV88\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\OV88\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\OV88\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\OV88\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\OV88\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\OV88\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\OV88\AppData\Roaming\mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin ProgramFiles/Appdata: C:\Users\OV88\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2013-05-06]
FF HKLM-x32\...\Firefox\Extensions: [IBMNotesBrowserExtension@ibm.com] - C:\Program Files (x86)\IBM\Notes\mozilla
FF Extension: IBM Notes Browser Plug-in Extension - C:\Program Files (x86)\IBM\Notes\mozilla [2013-11-06]

Chrome:
=======
CHR HomePage: hxxp://google.com/
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Extension: (Blackjack) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\amahogbojgleppliihjnmkbnnnfdbmck [2013-03-21]
CHR Extension: (Docs Offline Background Page) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-03-21]
CHR Extension: (IM+) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfdplllgoohfmnpnbplklnkegbffnheo [2013-03-21]
CHR Extension: (JAM s Chromem) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\bggjdpbfjakfkacljidachigalghbnpk [2013-03-21]
CHR Extension: (YouTube) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-03-21]
CHR Extension: (Rozšíření pro webové stránky - Webpage Screenshot) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckibcdccnfeookdmbahgiakhnjcddpki [2013-04-11]
CHR Extension: (Vyhledávání Google) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-03-21]
CHR Extension: (Search by Image (by Google)) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2013-03-21]
CHR Extension: (Google+) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdidnckmm [2013-04-30]
CHR Extension: (Penguin boj) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehoglceicemjdngkmfgpdamgglhediod [2013-03-21]
CHR Extension: (Gmail Offline) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2013-03-21]
CHR Extension: (Kalendář Google) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2013-04-30]
CHR Extension: (Push-up Tracker) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekelaofgpnoplomjfjabkfnakopkpbji [2013-03-21]
CHR Extension: (IE Tab Multi (Enhance)) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnfnbeppfinmnjnjhedifcfllpcfgeea [2013-04-19]
CHR Extension: (Stopky / časovač) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggnidjbcahhbnleinchgobfnabopeioh [2013-04-30]
CHR Extension: (AdBlock) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-03-21]
CHR Extension: (FlashBlock) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\gofhjkjmkpinhpoiabjplobcaignabnl [2013-03-21]
CHR Extension: (Feedly - Your News, RSS, Google Reader) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipbfijinpcgfogaopmgehiegacbhmob [2013-04-30]
CHR Extension: (Rozbít zeď) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\klhfgnobmdkblmbdahcnpajbjnfmknpn [2013-03-21]
CHR Extension: (Auto HD For YouTube) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\koiaokdomkpjdgniimnkhgbilbjgpeak [2013-04-08]
CHR Extension: (Numerics Calculator & Converter) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\liglcienpnkhdajdfmnpbgmpjglonipe [2013-03-21]
CHR Extension: (Ghostery) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2013-04-11]
CHR Extension: (Context Menu Search) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocpcmghnefmdhljkoiapafejjohldoga [2013-03-21]
CHR Extension: (Gmail) - C:\Users\OV88\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-03-21]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 IBM Notes Diagnostics; C:\Program Files (x86)\IBM\Notes\nsd.exe [5164136 2013-10-15] (IBM)
R2 IBM Notes Single Logon; C:\Program Files (x86)\IBM\Notes\nslsvice.exe [57448 2013-10-15] (IBM Corp)
R2 LNSUSvc; C:\Program Files (x86)\IBM\Notes\SUService.exe [1654376 2013-10-15] (IBM Corp)
R2 Multi-user Cleanup Service; C:\Program Files (x86)\IBM\Notes\ntmulti.exe [38504 2013-10-15] (IBM Corp)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [2122224 2013-05-24] (GlavSoft LLC.)
R2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [13243608 2013-11-05] ()

==================== Drivers (Whitelisted) ====================

R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [32472 2013-11-05] (VMware, Inc.)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [70296 2012-10-24] (VMware, Inc.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-17 14:54 - 2014-02-17 14:54 - 00019969 _____ () C:\Users\OV88\Desktop\FRST.txt
2014-02-17 14:53 - 2014-02-17 14:46 - 02152448 _____ (Farbar) C:\Users\OV88\Desktop\FRST64.exe
2014-02-17 14:52 - 2014-02-17 14:52 - 00112640 _____ (forum.viry.cz) C:\Users\OV88\Desktop\FRSTLauncher.exe
2014-02-17 14:51 - 2014-02-17 14:51 - 00112640 _____ (forum.viry.cz) C:\Users\OV88\Downloads\FRSTLauncher.exe
2014-02-17 14:46 - 2014-02-17 14:46 - 02152448 _____ (Farbar) C:\Users\OV88\Downloads\FRST64.exe
2014-02-17 14:46 - 2014-02-17 14:46 - 00018452 _____ () C:\Users\OV88\Downloads\FRST.txt
2014-02-17 14:46 - 2014-02-17 14:46 - 00000000 ____D () C:\FRST
2014-02-17 14:45 - 2014-02-17 14:45 - 00112640 _____ (forum.viry.cz) C:\Users\OV88\Downloads\Nepotvrzeno 680474.crdownload
2014-02-17 13:07 - 2014-02-17 13:07 - 00148747 _____ () C:\Users\OV88\Desktop\1
2014-02-17 12:52 - 2014-02-17 12:52 - 00039140 _____ () C:\Users\OV88\Desktop\1.txt
2014-02-17 09:11 - 2014-02-17 09:11 - 00001386 _____ () C:\Users\OV88\Downloads\xx.cer
2014-02-13 17:46 - 2014-02-13 17:46 - 00001389 _____ () C:\Users\OV88\Downloads\xx.cer
2014-02-12 15:10 - 2014-02-12 15:10 - 00001396 _____ () C:\Users\OV88\Downloads\xx.cer
2014-02-12 15:09 - 2014-02-12 15:09 - 00000000 ____D () C:\Users\OV88\AppData\Roaming\smkits
2014-02-12 15:00 - 2014-02-12 15:00 - 00307989 _____ () C:\Users\OV88\Downloads\Export_org_struktura_12-02-2014.csv
2014-02-12 08:51 - 2014-02-12 08:51 - 46019112 _____ (EdrawSoft ) C:\Users\OV88\Downloads\edrawmax.exe
2014-02-12 08:47 - 2014-02-12 08:47 - 00408064 _____ () C:\Users\OV88\Downloads\A140203_VEN_DANE_2013D1.XLS
2014-02-12 03:01 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-12 03:01 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-12 03:01 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-12 03:01 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-12 03:01 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-12 03:01 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-12 03:01 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-12 03:01 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-12 03:01 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-12 03:01 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-12 03:01 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-12 03:01 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-12 03:01 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 03:01 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-12 03:01 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-12 03:01 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-12 03:01 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-12 03:01 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 03:01 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-12 03:01 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-12 03:01 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-12 03:01 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-12 03:01 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-12 03:01 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 03:01 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-12 03:01 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-12 03:01 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-12 03:01 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-12 03:00 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-12 03:00 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-12 03:00 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-12 03:00 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-12 03:00 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-12 03:00 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 03:00 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-12 03:00 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-12 03:00 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-12 03:00 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-12 03:00 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-12 03:00 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-12 03:00 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-11 22:55 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-11 22:55 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-11 22:55 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-11 22:55 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-11 22:55 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-11 22:55 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-11 22:55 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-11 22:55 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-11 22:55 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-11 22:55 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-11 22:55 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-11 22:55 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-11 22:55 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-11 22:55 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-11 22:55 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-11 22:55 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-11 22:55 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-11 22:55 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-11 22:55 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-11 22:55 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-11 22:55 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-11 22:55 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-11 22:55 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-11 22:55 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-11 22:55 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-11 22:55 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-11 22:55 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-11 22:55 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-10 15:01 - 2014-02-12 08:47 - 00007667 _____ () C:\Users\OV88\AppData\Local\Resmon.ResmonCfg
2014-02-10 14:07 - 2014-02-12 09:38 - 00000000 ____D () C:\Users\OV88\Desktop\org
2014-02-10 13:11 - 2014-02-10 13:11 - 00000998 _____ () C:\Users\OV88\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartDraw 2013.lnk
2014-02-10 13:11 - 2014-02-10 13:11 - 00000968 _____ () C:\Users\OV88\Desktop\SmartDraw 2013.lnk
2014-02-10 13:11 - 2014-02-10 13:11 - 00000000 ____D () C:\Users\OV88\Documents\SmartDraw
2014-02-10 13:11 - 2014-02-10 13:11 - 00000000 ____D () C:\Users\OV88\AppData\System
2014-02-10 13:11 - 2014-02-10 13:11 - 00000000 ____D () C:\Users\OV88\AppData\Roaming\SmartDraw
2014-02-10 13:10 - 2014-02-12 13:22 - 00000000 ____D () C:\Program Files (x86)\SmartDraw 2013
2014-02-10 13:10 - 2014-02-10 13:10 - 00000000 ____D () C:\Users\OV88\Downloads\SmartDraw-2013---Enterprise-Edition
2014-02-10 13:09 - 2014-02-10 13:09 - 61149553 _____ () C:\Users\OV88\Downloads\SmartDraw-2013---Enterprise-Edition.rar
2014-02-10 13:06 - 2014-02-10 13:15 - 00096479 _____ () C:\Users\OV88\Desktop\dia2.txt
2014-02-10 13:05 - 2014-02-10 13:05 - 00013479 _____ () C:\Users\OV88\Desktop\dia.txt
2014-02-10 12:52 - 2014-02-10 12:52 - 00231430 _____ () C:\Users\OV88\Downloads\Seznam_zaměstnanců_07-02-2014 (1).xlsx
2014-02-10 12:50 - 2014-02-10 15:01 - 00000031 _____ () C:\Users\OV88\Documents\orgstruktura.csv
2014-02-10 12:46 - 2014-02-10 12:46 - 00222720 _____ () C:\Users\OV88\Downloads\org_chart.xls
2014-02-10 11:56 - 2014-02-10 11:56 - 00231430 _____ () C:\Users\OV88\Downloads\Seznam_zaměstnanců_07-02-2014.xlsx
2014-02-10 08:56 - 2014-02-10 15:03 - 00253334 _____ () C:\Users\OV88\Desktop\osobní vzorky - Lyko Pavel 1Q.xlsx
2014-02-10 08:49 - 2014-02-10 08:50 - 00257249 _____ () C:\Users\OV88\Downloads\osobní vzorky - formulář1.xlsx
2014-02-07 13:34 - 2014-02-07 13:34 - 00497116 _____ () C:\Users\OV88\Downloads\HAV Allianz.rar
2014-02-07 13:34 - 2014-02-07 13:34 - 00000000 ____D () C:\Users\OV88\Downloads\HAV Allianz
2014-02-07 09:31 - 2014-02-07 10:11 - 00000000 ____D () C:\Users\OV88\Documents\Virtual Machines
2014-02-07 09:29 - 2014-02-07 09:29 - 01729111 _____ (davehope.co.uk ) C:\Users\OV88\Downloads\CPP-ProductKeyFinder.exe
2014-02-07 09:29 - 2014-02-07 09:29 - 00397312 _____ (Gear Box Computers) C:\Users\OV88\Downloads\ProductKeyFinder (1).exe
2014-02-07 09:29 - 2014-02-07 09:29 - 00000000 ____D () C:\Program Files (x86)\Product Key Finder
2014-02-07 09:28 - 2014-02-07 09:28 - 00397312 _____ (Gear Box Computers) C:\Users\OV88\Downloads\ProductKeyFinder.exe
2014-02-07 09:25 - 2014-02-07 09:25 - 00029861 _____ () C:\Users\OV88\Documents\LotusInstall.log
2014-02-07 09:24 - 2014-02-07 09:24 - 00000000 ____D () C:\Users\OV88\Downloads\Notes704EN_all
2014-02-07 09:22 - 2014-02-07 09:23 - 185332328 _____ (Lotus Development ) C:\Users\OV88\Downloads\Notes704EN_all.exe
2014-02-07 09:08 - 2014-02-07 09:08 - 00001050 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-02-07 08:17 - 2013-04-12 13:22 - 00002895 _____ () C:\Windows\system32\Drivers\etc\saplogon.ini
2014-02-07 08:17 - 2008-10-13 08:34 - 00012557 _____ () C:\Windows\services
2014-02-07 08:15 - 2014-02-07 08:56 - 00000000 ____D () C:\Users\OV88\AppData\Roaming\SAP
2014-02-07 08:15 - 2014-02-07 08:15 - 00000000 ____D () C:\Users\OV88\Documents\SAP
2014-02-07 08:15 - 2013-04-12 13:22 - 00002895 _____ () C:\Windows\saplogon.ini
2014-02-07 08:10 - 2014-02-07 08:10 - 00001172 _____ () C:\Users\Public\Desktop\SAP Logon.lnk
2014-02-07 08:10 - 2013-04-15 05:36 - 05282304 _____ (SAP AG) C:\Windows\SysWOW64\librfc32u.dll
2014-02-07 08:09 - 2013-04-15 05:36 - 08847360 _____ (IBM Corporation and others) C:\Windows\SysWOW64\icudt34.dll
2014-02-07 08:09 - 2013-04-15 05:36 - 00946176 _____ (IBM Corporation and others) C:\Windows\SysWOW64\icuuc34.dll
2014-02-07 08:09 - 2013-04-15 05:36 - 00843776 _____ (IBM Corporation and others) C:\Windows\SysWOW64\icuin34.dll
2014-02-07 08:09 - 2013-01-16 15:49 - 00001818 _____ () C:\Windows\SysWOW64\icu_license.txt
2014-02-07 08:09 - 2011-11-23 03:23 - 01064960 _____ () C:\Windows\SysWOW64\h5krnl32.dll
2014-02-07 08:09 - 2011-11-23 03:23 - 00188928 _____ () C:\Windows\SysWOW64\h5icon32.dll
2014-02-07 08:09 - 2011-11-23 03:23 - 00175616 _____ () C:\Windows\SysWOW64\h5menu32.dll
2014-02-07 08:09 - 2011-11-23 03:23 - 00114688 _____ (heilerSoftware) C:\Windows\SysWOW64\h5dlg32.dll
2014-02-07 08:09 - 2011-11-23 03:23 - 00095744 _____ () C:\Windows\SysWOW64\h5rtf32.dll
2014-02-07 08:09 - 2011-11-23 03:23 - 00051200 _____ () C:\Windows\SysWOW64\h5tool32.dll
2014-02-07 08:09 - 2009-03-24 12:52 - 00614992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.ocx
2014-02-07 08:09 - 2009-03-24 12:52 - 00443488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshflxgd.ocx
2014-02-07 08:09 - 2009-03-24 12:52 - 00415552 _____ (Microsoft Corporation ) C:\Windows\SysWOW64\comct332.ocx
2014-02-07 08:09 - 2009-03-24 12:52 - 00278352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdatgrd.ocx
2014-02-07 08:09 - 2009-03-24 12:52 - 00258880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msflxgrd.ocx
2014-02-07 08:09 - 2009-03-24 12:52 - 00218432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\richtx32.ocx
2014-02-07 08:09 - 2009-03-24 12:52 - 00170080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comct232.ocx
2014-02-07 08:09 - 2004-02-23 16:31 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlbinf32.dll
2014-02-07 08:09 - 2003-03-18 22:20 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
2014-02-07 08:09 - 2003-03-18 21:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-02-07 08:09 - 2003-03-18 20:05 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ATL71.dll
2014-02-07 08:09 - 2003-02-21 05:42 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-02-07 08:09 - 1999-04-29 11:04 - 01355776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvbvm50.dll
2014-02-07 08:09 - 1998-06-26 19:22 - 00094744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\grid32.ocx
2014-02-07 08:09 - 1998-06-24 09:57 - 00067376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysinfo.ocx
2014-02-07 08:08 - 2014-02-07 08:08 - 00000000 ____D () C:\Users\OV88\AppData\Local\SAP
2014-02-07 08:08 - 2013-04-15 05:38 - 01722432 _____ (SAP, Walldorf) C:\Windows\SysWOW64\SAPbtmp.dll
2014-02-07 08:08 - 2013-04-15 05:36 - 04371968 _____ (SAP AG) C:\Windows\SysWOW64\librfc32.dll
2014-02-07 08:08 - 1995-05-19 07:15 - 00133904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcans32.dll
2014-02-07 08:06 - 2014-02-07 08:10 - 00000000 ____D () C:\Program Files (x86)\SAP
2014-02-05 16:10 - 2014-02-05 16:10 - 00001743 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-05 16:10 - 2014-02-05 16:10 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-05 16:10 - 2014-02-05 16:10 - 00000000 ____D () C:\Program Files\iTunes
2014-02-05 16:10 - 2014-02-05 16:10 - 00000000 ____D () C:\Program Files\iPod
2014-02-05 16:10 - 2014-02-05 16:10 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-05 15:08 - 2014-02-05 15:08 - 00008431 _____ () C:\Users\OV88\Desktop\lama.xlsx
2014-02-05 09:47 - 2014-02-05 09:47 - 00005459 _____ () C:\Users\OV88\Downloads\noname.eml
2014-02-05 08:22 - 2014-02-05 08:22 - 00005175 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-05 08:22 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-02-05 08:22 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-02-05 08:22 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-02-05 08:22 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-02-04 22:26 - 2014-02-04 22:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-04 10:25 - 2014-02-04 10:25 - 00003182 _____ () C:\Users\OV88\Desktop\xx.pfx
2014-02-04 10:16 - 2014-02-04 10:16 - 00003182 _____ () C:\Users\OV88\Desktop\xx.pfx
2014-02-04 09:35 - 2014-02-04 09:35 - 00001385 _____ () C:\Users\OV88\Downloads\xx (1).cer
2014-02-04 09:33 - 2014-02-04 09:33 - 00001385 _____ () C:\Users\OV88\Downloads\xx.cer
2014-02-04 09:31 - 2014-02-04 09:31 - 00001385 _____ () C:\Users\OV88\Downloads\xx.crt
2014-02-04 08:35 - 2014-02-04 08:35 - 00000947 _____ () C:\Users\OV88\Downloads\noname
2014-02-03 15:39 - 2014-02-03 15:39 - 00002293 _____ () C:\Users\OV88\Downloads\DNEDP4-8006075418-20140203-153813-pracovni.xml
2014-02-03 15:36 - 2014-02-03 15:36 - 00002293 _____ () C:\Users\OV88\Downloads\DNEDP4-8006075418-20140203-153620-pracovni.xml
2014-02-03 13:34 - 2014-02-03 13:34 - 00921000 _____ (Oracle Corporation) C:\Users\OV88\Downloads\chromeinstall-7u51.exe
2014-01-30 16:01 - 2014-01-30 16:01 - 00077312 _____ () C:\Users\OV88\Downloads\UserData-kofola.cz-20140130.xls
2014-01-30 15:56 - 2014-01-30 15:56 - 00069045 _____ () C:\Users\OV88\Downloads\UserData-kofola.cz-20140130.csv
2014-01-24 15:56 - 2014-01-24 15:56 - 00000000 ____D () C:\Users\OV88\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Codemasters
2014-01-24 15:54 - 2014-01-24 15:54 - 00000000 ____D () C:\Program Files\Codemasters
2014-01-24 15:50 - 2014-01-24 16:06 - 00000000 ____D () C:\Users\OV88\Downloads\Operace-Flashpoint---Resistance-(PLATINUM-EDICE)-(CZ)-(2CD)
2014-01-24 15:50 - 2014-01-24 15:50 - 00000000 ____D () C:\Users\OV88\Downloads\Operace-Flashpoint-Platinová-edice---Kolekce-klasiky
2014-01-24 15:47 - 2014-01-24 15:49 - 829520849 _____ () C:\Users\OV88\Downloads\Operace-Flashpoint---Resistance-(PLATINUM-EDICE)-(CZ)-(2CD).7z
2014-01-24 15:46 - 2014-01-24 15:49 - 1209749504 _____ () C:\Users\OV88\Downloads\Operace-Flashpoint-Platinová-edice---Kolekce-klasiky.iso
2014-01-24 13:57 - 2014-01-24 13:57 - 02119266 _____ () C:\Users\OV88\Downloads\Photos.zip
2014-01-23 09:59 - 2014-01-23 09:59 - 00000000 ____D () C:\Users\OV88\Downloads\Plastic_People-1986_Pulnocni_mys-iGalerie.cz
2014-01-23 09:58 - 2014-01-23 09:59 - 106887992 _____ () C:\Users\OV88\Downloads\Plastic_People-1986_Pulnocni_mys-iGalerie.cz.rar
2014-01-23 08:50 - 2014-01-23 08:50 - 02047701 _____ () C:\Users\OV88\Downloads\happybirthday.zip
2014-01-23 08:50 - 2014-01-23 08:50 - 00000000 ____D () C:\Users\OV88\Downloads\happybirthday
2014-01-23 07:19 - 2014-01-23 07:37 - 00012773 _____ () C:\Users\OV88\Downloads\Seznam SANTA - TRANS THP 2014.xlsx
2014-01-22 16:18 - 2014-02-05 08:14 - 00001757 _____ () C:\Users\OV88\Desktop\sp.txt
2014-01-22 09:40 - 2014-01-22 09:40 - 00001948 _____ () C:\Users\OV88\Downloads\xx.pem
2014-01-22 09:40 - 2014-01-22 09:40 - 00001935 _____ () C:\Users\OV88\Downloads\xx.pem
2014-01-22 09:39 - 2014-01-22 09:39 - 00001378 _____ () C:\Users\OV88\Downloads\xx.cer
2014-01-22 09:38 - 2014-01-22 09:38 - 00001407 _____ () C:\Users\OV88\Downloads\xx.cer
2014-01-22 09:37 - 2014-01-22 09:37 - 00001397 _____ () C:\Users\OV88\Downloads\xx.cer
2014-01-22 09:37 - 2014-01-22 09:37 - 00001389 _____ () C:\Users\OV88\Downloads\xx.cer
2014-01-20 15:06 - 2014-01-20 15:23 - 00000000 ____D () C:\Users\OV88\Downloads\tabulky-spotreby-energii
2014-01-20 15:06 - 2014-01-20 15:06 - 00157104 _____ () C:\Users\OV88\Downloads\tabulky-spotreby-energii.zip

==================== One Month Modified Files and Folders =======

2014-02-17 14:54 - 2014-02-17 14:54 - 00019969 _____ () C:\Users\OV88\Desktop\FRST.txt
2014-02-17 14:52 - 2014-02-17 14:52 - 00112640 _____ (forum.viry.cz) C:\Users\OV88\Desktop\FRSTLauncher.exe
2014-02-17 14:51 - 2014-02-17 14:51 - 00112640 _____ (forum.viry.cz) C:\Users\OV88\Downloads\FRSTLauncher.exe
2014-02-17 14:46 - 2014-02-17 14:53 - 02152448 _____ (Farbar) C:\Users\OV88\Desktop\FRST64.exe
2014-02-17 14:46 - 2014-02-17 14:46 - 02152448 _____ (Farbar) C:\Users\OV88\Downloads\FRST64.exe
2014-02-17 14:46 - 2014-02-17 14:46 - 00018452 _____ () C:\Users\OV88\Downloads\FRST.txt
2014-02-17 14:46 - 2014-02-17 14:46 - 00000000 ____D () C:\FRST
2014-02-17 14:45 - 2014-02-17 14:45 - 00112640 _____ (forum.viry.cz) C:\Users\OV88\Downloads\Nepotvrzeno 680474.crdownload
2014-02-17 14:35 - 2013-03-28 11:59 - 00000958 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1953490357-188325354-735401152-1000UA.job
2014-02-17 14:28 - 2013-03-20 10:48 - 01737616 _____ () C:\Windows\WindowsUpdate.log
2014-02-17 14:07 - 2013-05-06 16:01 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-17 14:04 - 2013-03-20 11:21 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-17 13:57 - 2013-03-20 14:56 - 00000000 ____D () C:\ProgramData\VMware
2014-02-17 13:31 - 2013-10-11 08:35 - 00000000 ____D () C:\Users\OV88\AppData\Local\Viber
2014-02-17 13:07 - 2014-02-17 13:07 - 00148747 _____ () C:\Users\OV88\Desktop\1
2014-02-17 12:52 - 2014-02-17 12:52 - 00039140 _____ () C:\Users\OV88\Desktop\1.txt
2014-02-17 10:04 - 2013-03-20 11:21 - 00000944 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-17 09:12 - 2013-03-20 15:07 - 00000000 ____D () C:\Users\OV88\AppData\Roaming\VMware
2014-02-17 09:11 - 2014-02-17 09:11 - 00001386 _____ () C:\Users\OV88\Downloads\xx.cer
2014-02-17 03:01 - 2013-08-15 02:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-17 03:00 - 2013-05-28 09:58 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-17 00:35 - 2013-03-28 11:59 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1953490357-188325354-735401152-1000Core.job
2014-02-17 00:30 - 2013-03-28 11:59 - 00003926 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1953490357-188325354-735401152-1000UA
2014-02-17 00:30 - 2013-03-28 11:59 - 00003530 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1953490357-188325354-735401152-1000Core
2014-02-14 09:59 - 2013-03-20 11:21 - 00003944 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-14 09:59 - 2013-03-20 11:21 - 00003692 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-13 17:46 - 2014-02-13 17:46 - 00001389 _____ () C:\Users\OV88\Downloads\xx.cer
2014-02-13 12:04 - 2009-07-14 05:51 - 00052188 _____ () C:\Windows\setupact.log
2014-02-12 16:33 - 2013-03-20 15:07 - 00000000 ____D () C:\Users\OV88\AppData\Local\VMware
2014-02-12 15:25 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-02-12 15:10 - 2014-02-12 15:10 - 00001396 _____ () C:\Users\OV88\Downloads\xx.cer
2014-02-12 15:09 - 2014-02-12 15:09 - 00000000 ____D () C:\Users\OV88\AppData\Roaming\smkits
2014-02-12 15:00 - 2014-02-12 15:00 - 00307989 _____ () C:\Users\OV88\Downloads\Export_org_struktura_12-02-2014.csv
2014-02-12 13:39 - 2009-07-14 16:18 - 00669128 _____ () C:\Windows\system32\perfh005.dat
2014-02-12 13:39 - 2009-07-14 16:18 - 00141350 _____ () C:\Windows\system32\perfc005.dat
2014-02-12 13:39 - 2009-07-14 06:13 - 01585752 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-12 13:37 - 2009-07-14 05:45 - 00014864 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-12 13:37 - 2009-07-14 05:45 - 00014864 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-12 13:31 - 2013-10-17 09:58 - 00000000 ____D () C:\Users\OV88\AppData\Roaming\uTorrent
2014-02-12 13:31 - 2013-10-11 08:35 - 00000000 ____D () C:\Users\OV88\AppData\Roaming\ViberPC
2014-02-12 13:30 - 2013-03-20 12:04 - 00018878 _____ () C:\SUService.log
2014-02-12 13:30 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-12 13:22 - 2014-02-10 13:10 - 00000000 ____D () C:\Program Files (x86)\SmartDraw 2013
2014-02-12 09:38 - 2014-02-10 14:07 - 00000000 ____D () C:\Users\OV88\Desktop\org
2014-02-12 08:51 - 2014-02-12 08:51 - 46019112 _____ (EdrawSoft ) C:\Users\OV88\Downloads\edrawmax.exe
2014-02-12 08:47 - 2014-02-12 08:47 - 00408064 _____ () C:\Users\OV88\Downloads\A140203_VEN_DANE_2013D1.XLS
2014-02-12 08:47 - 2014-02-10 15:01 - 00007667 _____ () C:\Users\OV88\AppData\Local\Resmon.ResmonCfg
2014-02-12 04:09 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-12 03:32 - 2009-07-14 05:45 - 00425200 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-12 03:10 - 2013-03-20 14:56 - 01564038 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-11 13:39 - 2013-04-16 13:36 - 00000600 _____ () C:\Users\OV88\AppData\Roaming\winscp.rnd
2014-02-10 15:03 - 2014-02-10 08:56 - 00253334 _____ () C:\Users\OV88\Desktop\osobní vzorky - Lyko Pavel 1Q.xlsx
2014-02-10 15:01 - 2014-02-10 12:50 - 00000031 _____ () C:\Users\OV88\Documents\orgstruktura.csv
2014-02-10 14:23 - 2013-03-21 09:10 - 00000000 ____D () C:\Users\OV88\Documents\PrintScreen Files
2014-02-10 13:15 - 2014-02-10 13:06 - 00096479 _____ () C:\Users\OV88\Desktop\dia2.txt
2014-02-10 13:11 - 2014-02-10 13:11 - 00000998 _____ () C:\Users\OV88\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartDraw 2013.lnk
2014-02-10 13:11 - 2014-02-10 13:11 - 00000968 _____ () C:\Users\OV88\Desktop\SmartDraw 2013.lnk
2014-02-10 13:11 - 2014-02-10 13:11 - 00000000 ____D () C:\Users\OV88\Documents\SmartDraw
2014-02-10 13:11 - 2014-02-10 13:11 - 00000000 ____D () C:\Users\OV88\AppData\System
2014-02-10 13:11 - 2014-02-10 13:11 - 00000000 ____D () C:\Users\OV88\AppData\Roaming\SmartDraw
2014-02-10 13:10 - 2014-02-10 13:10 - 00000000 ____D () C:\Users\OV88\Downloads\SmartDraw-2013---Enterprise-Edition
2014-02-10 13:09 - 2014-02-10 13:09 - 61149553 _____ () C:\Users\OV88\Downloads\SmartDraw-2013---Enterprise-Edition.rar
2014-02-10 13:05 - 2014-02-10 13:05 - 00013479 _____ () C:\Users\OV88\Desktop\dia.txt
2014-02-10 12:52 - 2014-02-10 12:52 - 00231430 _____ () C:\Users\OV88\Downloads\Seznam_zaměstnanců_07-02-2014 (1).xlsx
2014-02-10 12:46 - 2014-02-10 12:46 - 00222720 _____ () C:\Users\OV88\Downloads\org_chart.xls
2014-02-10 11:56 - 2014-02-10 11:56 - 00231430 _____ () C:\Users\OV88\Downloads\Seznam_zaměstnanců_07-02-2014.xlsx
2014-02-10 08:50 - 2014-02-10 08:49 - 00257249 _____ () C:\Users\OV88\Downloads\osobní vzorky - formulář1.xlsx
2014-02-08 09:30 - 2013-03-28 09:50 - 00000000 ____D () C:\Users\OV88\AppData\Roaming\Mozilla
2014-02-07 13:34 - 2014-02-07 13:34 - 00497116 _____ () C:\Users\OV88\Downloads\HAV Allianz.rar
2014-02-07 13:34 - 2014-02-07 13:34 - 00000000 ____D () C:\Users\OV88\Downloads\HAV Allianz
2014-02-07 10:11 - 2014-02-07 09:31 - 00000000 ____D () C:\Users\OV88\Documents\Virtual Machines
2014-02-07 10:11 - 2013-11-27 07:59 - 00000000 ____D () C:\Users\Public\Documents\Shared Virtual Machines
2014-02-07 09:29 - 2014-02-07 09:29 - 01729111 _____ (davehope.co.uk ) C:\Users\OV88\Downloads\CPP-ProductKeyFinder.exe
2014-02-07 09:29 - 2014-02-07 09:29 - 00397312 _____ (Gear Box Computers) C:\Users\OV88\Downloads\ProductKeyFinder (1).exe
2014-02-07 09:29 - 2014-02-07 09:29 - 00000000 ____D () C:\Program Files (x86)\Product Key Finder
2014-02-07 09:28 - 2014-02-07 09:28 - 00397312 _____ (Gear Box Computers) C:\Users\OV88\Downloads\ProductKeyFinder.exe
2014-02-07 09:25 - 2014-02-07 09:25 - 00029861 _____ () C:\Users\OV88\Documents\LotusInstall.log
2014-02-07 09:25 - 2013-03-20 11:06 - 00111328 _____ () C:\Users\OV88\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-07 09:24 - 2014-02-07 09:24 - 00000000 ____D () C:\Users\OV88\Downloads\Notes704EN_all
2014-02-07 09:23 - 2014-02-07 09:22 - 185332328 _____ (Lotus Development ) C:\Users\OV88\Downloads\Notes704EN_all.exe
2014-02-07 09:08 - 2014-02-07 09:08 - 00001050 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-02-07 09:08 - 2013-03-20 11:55 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-02-07 08:56 - 2014-02-07 08:15 - 00000000 ____D () C:\Users\OV88\AppData\Roaming\SAP
2014-02-07 08:15 - 2014-02-07 08:15 - 00000000 ____D () C:\Users\OV88\Documents\SAP
2014-02-07 08:10 - 2014-02-07 08:10 - 00001172 _____ () C:\Users\Public\Desktop\SAP Logon.lnk
2014-02-07 08:10 - 2014-02-07 08:06 - 00000000 ____D () C:\Program Files (x86)\SAP
2014-02-07 08:08 - 2014-02-07 08:08 - 00000000 ____D () C:\Users\OV88\AppData\Local\SAP
2014-02-06 13:16 - 2014-02-12 03:01 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-12 03:01 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-12 03:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-12 03:00 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-12 03:01 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-12 03:01 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-12 03:01 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-12 03:01 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-12 03:01 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-12 03:01 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-12 03:01 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-12 03:01 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-12 03:00 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-12 03:01 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-12 03:01 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-12 03:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-12 03:00 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-12 03:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-12 03:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-12 03:01 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:57 - 2014-02-12 03:00 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:52 - 2014-02-12 03:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-12 03:01 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-12 03:00 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-12 03:01 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-12 03:01 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-12 03:01 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-12 03:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:25 - 2014-02-12 03:00 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:24 - 2014-02-12 03:00 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-12 03:00 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-12 03:01 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-12 03:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-12 03:00 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-12 03:00 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-12 03:00 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-12 03:01 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-12 03:00 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-12 03:01 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-05 16:10 - 2014-02-05 16:10 - 00001743 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-05 16:10 - 2014-02-05 16:10 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-05 16:10 - 2014-02-05 16:10 - 00000000 ____D () C:\Program Files\iTunes
2014-02-05 16:10 - 2014-02-05 16:10 - 00000000 ____D () C:\Program Files\iPod
2014-02-05 16:10 - 2014-02-05 16:10 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-05 16:07 - 2013-05-22 13:19 - 00000000 ____D () C:\ProgramData\Apple
2014-02-05 15:08 - 2014-02-05 15:08 - 00008431 _____ () C:\Users\OV88\Desktop\lama.xlsx
2014-02-05 10:41 - 2013-03-20 11:21 - 00000000 ____D () C:\Program Files (x86)\Google
2014-02-05 10:41 - 2013-03-20 11:19 - 00000000 ____D () C:\Users\OV88\AppData\Local\Google
2014-02-05 10:37 - 2013-11-18 15:04 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-05 09:47 - 2014-02-05 09:47 - 00005459 _____ () C:\Users\OV88\Downloads\noname.eml
2014-02-05 08:22 - 2014-02-05 08:22 - 00005175 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-05 08:22 - 2013-11-14 09:04 - 00000000 ____D () C:\Program Files (x86)\Java
2014-02-05 08:22 - 2013-09-19 07:55 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-05 08:14 - 2014-01-22 16:18 - 00001757 _____ () C:\Users\OV88\Desktop\sp.txt
2014-02-05 01:07 - 2013-05-06 16:01 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-05 01:07 - 2013-05-06 16:01 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-05 01:07 - 2013-05-06 16:01 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-04 22:26 - 2014-02-04 22:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-04 10:25 - 2014-02-04 10:25 - 00003182 _____ () C:\Users\OV88\Desktop\vmaslo.pfx
2014-02-04 10:16 - 2014-02-04 10:16 - 00003182 _____ () C:\Users\OV88\Desktop\vmleko.pfx
2014-02-04 09:35 - 2014-02-04 09:35 - 00001385 _____ () C:\Users\OV88\Downloads\ViktorMleko (1).cer
2014-02-04 09:35 - 2013-11-18 15:47 - 00000000 ____D () C:\aaa
2014-02-04 09:33 - 2014-02-04 09:33 - 00001385 _____ () C:\Users\OV88\Downloads\ViktorMleko.cer
2014-02-04 09:31 - 2014-02-04 09:31 - 00001385 _____ () C:\Users\OV88\Downloads\vmleko.crt
2014-02-04 08:35 - 2014-02-04 08:35 - 00000947 _____ () C:\Users\OV88\Downloads\noname
2014-02-04 05:04 - 2013-03-20 11:22 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-03 18:24 - 2013-09-09 10:42 - 00253032 _____ () C:\Users\OV88\Desktop\osobní vzorky - formulář1.xlsx
2014-02-03 15:39 - 2014-02-03 15:39 - 00002293 _____ () C:\Users\OV88\Downloads\DNEDP4-8006075418-20140203-153813-pracovni.xml
2014-02-03 15:36 - 2014-02-03 15:36 - 00002293 _____ () C:\Users\OV88\Downloads\DNEDP4-8006075418-20140203-153620-pracovni.xml
2014-02-03 13:34 - 2014-02-03 13:34 - 00921000 _____ (Oracle Corporation) C:\Users\OV88\Downloads\chromeinstall-7u51.exe
2014-01-30 16:01 - 2014-01-30 16:01 - 00077312 _____ () C:\Users\OV88\Downloads\UserData-kofola.cz-20140130.xls
2014-01-30 15:56 - 2014-01-30 15:56 - 00069045 _____ () C:\Users\OV88\Downloads\UserData-kofola.cz-20140130.csv
2014-01-30 14:17 - 2013-03-20 11:05 - 00000000 ____D () C:\Files
2014-01-24 16:06 - 2014-01-24 15:50 - 00000000 ____D () C:\Users\OV88\Downloads\Operace-Flashpoint---Resistance-(PLATINUM-EDICE)-(CZ)-(2CD)
2014-01-24 16:00 - 2013-03-20 10:53 - 00000000 ____D () C:\Users\OV88\AppData\Local\VirtualStore
2014-01-24 15:56 - 2014-01-24 15:56 - 00000000 ____D () C:\Users\OV88\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Codemasters
2014-01-24 15:54 - 2014-01-24 15:54 - 00000000 ____D () C:\Program Files\Codemasters
2014-01-24 15:50 - 2014-01-24 15:50 - 00000000 ____D () C:\Users\OV88\Downloads\Operace-Flashpoint-Platinová-edice---Kolekce-klasiky
2014-01-24 15:49 - 2014-01-24 15:47 - 829520849 _____ () C:\Users\OV88\Downloads\Operace-Flashpoint---Resistance-(PLATINUM-EDICE)-(CZ)-(2CD).7z
2014-01-24 15:49 - 2014-01-24 15:46 - 1209749504 _____ () C:\Users\OV88\Downloads\Operace-Flashpoint-Platinová-edice---Kolekce-klasiky.iso
2014-01-24 13:57 - 2014-01-24 13:57 - 02119266 _____ () C:\Users\OV88\Downloads\Photos.zip
2014-01-23 09:59 - 2014-01-23 09:59 - 00000000 ____D () C:\Users\OV88\Downloads\Plastic_People-1986_Pulnocni_mys-iGalerie.cz
2014-01-23 09:59 - 2014-01-23 09:58 - 106887992 _____ () C:\Users\OV88\Downloads\Plastic_People-1986_Pulnocni_mys-iGalerie.cz.rar
2014-01-23 08:50 - 2014-01-23 08:50 - 02047701 _____ () C:\Users\OV88\Downloads\happybirthday.zip
2014-01-23 08:50 - 2014-01-23 08:50 - 00000000 ____D () C:\Users\OV88\Downloads\happybirthday
2014-01-23 07:37 - 2014-01-23 07:19 - 00012773 _____ () C:\Users\OV88\Downloads\Seznam SANTA - TRANS THP 2014.xlsx
2014-01-23 06:47 - 2013-03-20 11:05 - 00000000 ____D () C:\Users\OV88\AppData\Local\GHISLER
2014-01-22 09:40 - 2014-01-22 09:40 - 00001948 _____ () C:\Users\OV88\Downloads\xx.pem
2014-01-22 09:40 - 2014-01-22 09:40 - 00001935 _____ () C:\Users\OV88\Downloads\xx.pem
2014-01-22 09:39 - 2014-01-22 09:39 - 00001378 _____ () C:\Users\OV88\Downloads\xx.cer
2014-01-22 09:38 - 2014-01-22 09:38 - 00001407 _____ () C:\Users\OV88\Downloads\xx.cer
2014-01-22 09:37 - 2014-01-22 09:37 - 00001397 _____ () C:\Users\OV88\Downloads\xx.cer
2014-01-22 09:37 - 2014-01-22 09:37 - 00001389 _____ () C:\Users\OV88\Downloads\xx.cer
2014-01-20 15:23 - 2014-01-20 15:06 - 00000000 ____D () C:\Users\OV88\Downloads\tabulky-spotreby-energii
2014-01-20 15:06 - 2014-01-20 15:06 - 00157104 _____ () C:\Users\OV88\Downloads\tabulky-spotreby-energii.zip

Some content of TEMP:
====================
C:\Users\OV88\AppData\Local\Temp\doxillionsetup.exe
C:\Users\OV88\AppData\Local\Temp\DSETUP.dll
C:\Users\OV88\AppData\Local\Temp\dsetup32.dll
C:\Users\OV88\AppData\Local\Temp\DXSETUP.exe
C:\Users\OV88\AppData\Local\Temp\extension1580204274623970909.dll
C:\Users\OV88\AppData\Local\Temp\extension4073960898174962742.dll
C:\Users\OV88\AppData\Local\Temp\geek_x64.exe
C:\Users\OV88\AppData\Local\Temp\ginstall.dll
C:\Users\OV88\AppData\Local\Temp\icqsetup.exe
C:\Users\OV88\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\OV88\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\OV88\AppData\Local\Temp\jre-7u40-windows-i586-iftw.exe
C:\Users\OV88\AppData\Local\Temp\RegistryProxy_1374221794265.dll
C:\Users\OV88\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-12 04:02




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:698.54 GB) (Free:108.01 GB) NTFS
Drive e: (HP_OS_RESTORE) (CDROM) (Total:0.54 GB) (Free:0 GB) CDFS

Available physical RAM: 2412.02 MB
Total physical RAM: 8183.43 MB
Percentage of memory in use: 70%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: 97CE97CE)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=699 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1953490357-188325354-735401152-1000Core.job => C:\Users\OV88\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1953490357-188325354-735401152-1000UA.job => C:\Users\OV88\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\OV88\Downloads\noname.eml:OECustomProperty

==================== Security Center ==================

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\OV88\Desktop" je 876 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[vyosek]

Zdravim

Mala technicka, jedna se o domaci PC nebo nejaky pracovni\firemni???

[lyky]

tak napul...
ma to nejaky vliv na funkci rostlinare?

[vyosek]

Rostlinare nevim, ale ma to vliv na nas, jako pomocniky fora - nedelame praci za firemni IT ci management - pravidla froa hovori jasne

6. Fórum viry.cz se nezabývá odvirováním firemních PC - na toto jsou ve firmách placení (a někdy až hodně nadstandardně) IT technici, případně si je firma může najmout. My jsme tu zdarma a ve svém volném čase, nehodláme dělat práci za někoho jiného, kdo si pak jen slízne smetánku a plat. Taktéž ani neposkytujeme poradenství v oblasti zabezpečení firemních sítí či nastavení firemních sítí. Zkrátka a jednoduše, naše fórum poskytuje podporu pouze domácím uživatelům.

A na pul neni nic, bud je firemni nebo vase

[lyky]

aha...takove pravidlo jsem necetl...
tak to se omlouvam...

[vyosek]

OK, mejte se...


A na zaklade Pravidla o zamykani temat