prosim o kontrolu logu

Zpráva

Lestatos · #1 Příspěvek od **Lestatos** » 18 kvě 2014 12:08

Nieci sa mi urcite dostalo do PC, prikladam log. Neda sa spusit skype, ani otvarat vacsina suborov. chrom odmieta pracovat.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-05-2014
Ran by Administrator (administrator) on ROBERT-MSI on 18-05-2014 13:05:16
Running from C:\Users\Administrator\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\S-Bar\MSIService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Spotify Ltd) C:\Users\Administrator\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(IAC Search and Media) C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\BrowserTabSearch\msbloader.exe
(IAC Search and Media) C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\BrowserTabSearch\msbloader64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(ESET) C:\ESET\ESET Online Scanner\OnlineScannerApp.exe
() C:\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [THXCfg64] => C:\windows\system32\THXCfg64.dll [17920 2009-10-15] (Creative Technology Ltd.)
HKLM-x32\...\Winlogon: [Userinit] [X]
HKLM-x32\...\Winlogon: [Shell] [0 ] () <=== ATTENTION
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [Wisdom-soft ScreenHunter 6.0 Free] => 0
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [Spotify Web Helper] => C:\Users\Administrator\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171000 2014-04-18] (Spotify Ltd)
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [uTorrent] => C:\Users\Administrator\AppData\Roaming\uTorrent\uTorrent.exe [1272400 2014-05-18] (BitTorrent Inc.)
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [Browser Tab Search by Ask] => C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\BrowserTabSearch\msbloader.exe [95136 2014-02-06] (IAC Search and Media)
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [Browser Tab Search by Askx64] => C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\BrowserTabSearch\msbloader64.exe [114592 2014-02-06] (IAC Search and Media)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\safetycrt.dll [489992 2014-04-27] ()
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\x64\safetycrt.dll [664584 2014-04-27] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {7CB8BC52-F028-4934-BC35-A2A6C39EC832} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKCU - {7CB8BC52-F028-4934-BC35-A2A6C39EC832} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKCU - {BC94F6B6-C94C-42D6-87C6-BA30478B1C4E} URL = http://search.conduit.com/ResultsExt.as ... 25531&UM=1
SearchScopes: HKCU - {E3E8E998-43FB-420E-8E6E-7A2DD2F4072C} URL =
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\fz360ikf.default
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: FTdownloader - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\profiles\extensions\ftdownloader@ftdownloader.com.xpi [2012-11-29]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-05-15]

Chrome:
=======
CHR HomePage: hxxp://www.search.ask.com/?o=APN11459&gct=hp&d ... 21-351&t=4
CHR StartupUrls: "hxxp://www.search.ask.com/?o=APN11459&gct=hp&d ... 21-351&t=4", "hxxp://google.sk/"
CHR DefaultSearchProvider: Ask.com
CHR DefaultSearchURL: http://dts.search.ask.com/sr?src=crb&gc ... earchTerms}
CHR Extension: (Dokumenty Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-02]
CHR Extension: (Disk Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-02]
CHR Extension: (Web Developer) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2014-05-03]
CHR Extension: (YouTube) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-02]
CHR Extension: (Adblock Plus) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-04-09]
CHR Extension: (Online TV From UK) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmimnpfphpmminhlhfijocolgmmhmibo [2014-04-09]
CHR Extension: (Hľadať v Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-02]
CHR Extension: (New XCommander) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dppefdlohekfhjenppnpjekkjjgndhdf [2014-04-09]
CHR Extension: (TweetDeck by Twitter) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl [2014-05-02]
CHR Extension: (Mapy Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2014-04-09]
CHR Extension: (Peňaženka Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-02]
CHR Extension: (Gmail) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-02]

==================== Services (Whitelisted) =================

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
R2 Micro Star SCM; C:\Program Files (x86)\S-Bar\MSIService.exe [160768 2011-06-24] (Micro-Star International Co., Ltd.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-05-02] ()
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [76888 2012-03-10] ()
S2 SafetyNutManager; C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\SafetyNutManager.exe [3544072 2014-04-27] (SafetyNut Inc)
R2 postgresql-8.4; C:/Program Files (x86)/PostgreSQL/8.4/bin/pg_ctl.exe runservice -N "postgresql-8.4" -D "C:/Program Files (x86)/PostgreSQL/8.4/data" -w [X]

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R1 avgtp; C:\windows\system32\drivers\avgtpx64.sys [49952 2014-03-20] (AVG Technologies)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-03-09] (DT Soft Ltd)
R1 F06DEFF2-5B9C-490D-910F-35D3A9119622; C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\x64\configmgrc1.cfg [36224 2014-04-27] (SafetyNut Inc)
S3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2012-03-25] ()
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S1 F06DEFF2-5B9C-490D-910F-35D3A91196222; \??\C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\configmgrc1.cfg [X]
S3 MGHwCtrl; \??\C:\Program Files\MSI\MSI Software Install\MGHwCtrl.sys [X]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-05-18 13:06 - 2014-05-18 13:06 - 00112640 _____ (forum.viry.cz) C:\Users\Administrator\Downloads\FRSTLauncher.exe
2014-05-18 13:05 - 2014-05-18 13:05 - 00013069 _____ () C:\Users\Administrator\Downloads\FRST.txt
2014-05-18 13:04 - 2014-05-18 13:05 - 02067456 _____ (Farbar) C:\Users\Administrator\Downloads\FRST64.exe
2014-05-18 12:50 - 2014-05-18 12:50 - 00000000 ____D () C:\ESET
2014-05-18 12:49 - 2014-05-18 12:49 - 02347384 _____ (ESET) C:\Users\Administrator\Downloads\esetsmartinstaller_sky.exe
2014-05-18 12:31 - 2014-05-18 12:31 - 00003162 _____ () C:\windows\System32\Tasks\{7BD4EE62-8243-4787-A26A-08FF95D897D8}
2014-05-18 12:31 - 2014-05-18 12:31 - 00003158 _____ () C:\windows\System32\Tasks\{43E7D271-312B-4B86-9C93-ACA602DF700C}
2014-05-18 12:26 - 2014-05-18 12:26 - 00003196 _____ () C:\windows\System32\Tasks\{EAA02971-9D6D-4C53-A6F2-01084E0A0953}
2014-05-18 12:26 - 2014-05-18 12:26 - 00003158 _____ () C:\windows\System32\Tasks\{F70E506D-F812-4F44-BDA5-5FF2647584E5}
2014-05-18 12:25 - 2014-05-18 12:25 - 00003158 _____ () C:\windows\System32\Tasks\{39048F63-A5D7-420F-B232-5C29DDD9987B}
2014-05-18 12:24 - 2014-05-18 12:24 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Administrator\Downloads\SkypeSetup(2).exe
2014-05-18 12:21 - 2014-05-18 12:21 - 00003196 _____ () C:\windows\System32\Tasks\{BED2C939-E733-49B5-9D64-60C217BE7142}
2014-05-18 12:21 - 2014-05-18 12:21 - 00003158 _____ () C:\windows\System32\Tasks\{993EC428-92F7-4B31-A9D9-4B6A02C0DD7E}
2014-05-18 12:20 - 2014-05-18 12:20 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Administrator\Downloads\SkypeSetup(1).exe
2014-05-18 12:19 - 2014-05-18 12:19 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Administrator\Downloads\SkypeSetup.exe
2014-05-18 12:19 - 2014-05-18 12:19 - 00000000 ____D () C:\Mozilla
2014-05-18 11:55 - 2014-05-18 11:55 - 00001774 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_115544.txt
2014-05-18 11:35 - 2014-05-18 11:35 - 00031775 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113511.txt
2014-05-18 11:33 - 2014-05-18 11:33 - 00016586 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113333.txt
2014-05-18 11:32 - 2014-05-18 11:32 - 00018343 _____ () C:\Users\Administrator\Desktop\RKreport[0]_D_05182014_113218.txt
2014-05-18 11:32 - 2014-05-18 11:32 - 00018310 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113210.txt
2014-05-18 11:16 - 2014-05-18 11:16 - 00000000 ____D () C:\SafetyNut
2014-05-18 11:15 - 2014-05-18 11:15 - 00003536 ____N () C:\bootsqm.dat
2014-05-18 11:00 - 2014-05-18 11:01 - 00000000 ____D () C:\ProgramData\SafetyNut
2014-05-18 11:00 - 2014-05-18 11:00 - 00000873 _____ () C:\Users\Administrator\Desktop\µTorrent.lnk
2014-05-18 11:00 - 2014-05-18 11:00 - 00000000 ____D () C:\Program Files (x86)\Browser Tab Search by Ask
2014-05-18 07:03 - 2014-05-18 07:03 - 00058936 _____ () C:\Users\Administrator\Desktop\Bn2OYJACAAAIlj1.jpg-large
2014-05-17 09:15 - 2014-05-17 09:15 - 00061628 _____ () C:\Users\Administrator\Desktop\BnyTRbUCIAEF4qS (1).jpg-large
2014-05-17 09:01 - 2014-05-17 09:01 - 00061628 _____ () C:\Users\Administrator\Desktop\BnyTRbUCIAEF4qS.jpg-large
2014-05-16 22:10 - 2014-05-16 22:17 - 20184042 _____ () C:\Users\Administrator\Desktop\Kika.avi
2014-05-16 12:08 - 2014-05-16 12:08 - 00038562 _____ () C:\Users\Administrator\Desktop\BnvCykECAAAOYyi.jpg-large
2014-05-15 18:23 - 2014-05-15 18:23 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Macromedia
2014-05-15 12:29 - 2014-05-15 12:29 - 00000000 ____D () C:\Users\Administrator\Documents\ipbox
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\UpdatusUser\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\robert\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\postgres\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\Administrator\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Relook PCEditor 1.2
2014-05-15 12:26 - 2014-05-15 12:26 - 00000000 ____D () C:\Program Files (x86)\Relook PCEditor
2014-05-15 12:10 - 2014-05-15 12:10 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-14 03:51 - 2014-05-14 03:55 - 00000000 ____D () C:\windows\rescache
2014-05-14 03:07 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-05-14 03:07 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-05-14 03:07 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-05-14 03:07 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-05-14 03:07 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-05-14 03:07 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-05-14 01:41 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-05-14 01:40 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-05-14 01:40 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-05-14 01:40 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-05-14 01:39 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-05-14 01:39 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-05-14 01:39 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-05-14 01:39 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-05-14 01:39 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-05-14 01:39 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-05-14 01:39 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-05-14 01:39 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-05-14 01:39 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-05-14 01:39 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-05-14 01:39 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\windows\system32\objsel.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\wincredprovider.dll
2014-05-14 01:39 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2014-05-14 01:39 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\cngprovider.dll
2014-05-14 01:39 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\adprovider.dll
2014-05-14 01:39 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\capiprovider.dll
2014-05-14 01:39 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\dpapiprovider.dll
2014-05-14 01:39 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\dimsroam.dll
2014-05-14 01:39 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-05-14 01:39 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2014-05-14 01:39 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2014-05-14 01:39 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\windows\SysWOW64\objsel.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\cngprovider.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\windows\SysWOW64\adprovider.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\windows\SysWOW64\capiprovider.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpapiprovider.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dimsroam.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wincredprovider.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-05-14 01:39 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2014-05-13 16:38 - 2014-05-13 16:38 - 00001072 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-05-13 16:38 - 2014-05-13 16:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-05-13 16:28 - 2014-05-18 11:16 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-13 16:28 - 2014-05-13 16:28 - 00001165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-13 16:28 - 2014-05-13 16:28 - 00001153 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-07 08:32 - 2014-05-07 08:32 - 00124304 _____ () C:\Users\Administrator\Desktop\Bm-T_uTCIAA5ntq.jpg-large
2014-05-07 03:01 - 2014-05-14 03:24 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-05-05 21:08 - 2014-05-05 21:08 - 00339259 _____ () C:\Users\Administrator\Desktop\Twitter Hledání - slavyansk.htm
2014-05-05 21:08 - 2014-05-05 21:08 - 00000000 ____D () C:\Users\Administrator\Desktop\Twitter Hledání - slavyansk_files
2014-04-30 08:18 - 2014-04-30 08:18 - 00000000 __SHD () C:\Users\Administrator\AppData\Local\EmieUserList
2014-04-30 08:18 - 2014-04-30 08:18 - 00000000 __SHD () C:\Users\Administrator\AppData\Local\EmieSiteList
2014-04-30 03:01 - 2014-03-06 11:31 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-04-30 03:01 - 2014-03-06 10:59 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-04-30 03:01 - 2014-03-06 10:57 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-04-30 03:01 - 2014-03-06 10:57 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-04-30 03:01 - 2014-03-06 10:53 - 02767360 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-04-30 03:01 - 2014-03-06 10:40 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-04-30 03:01 - 2014-03-06 10:39 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-04-30 03:01 - 2014-03-06 10:32 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-04-30 03:01 - 2014-03-06 10:29 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-04-30 03:01 - 2014-03-06 10:29 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-04-30 03:01 - 2014-03-06 10:28 - 00752640 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-04-30 03:01 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-04-30 03:01 - 2014-03-06 10:11 - 05784064 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-04-30 03:01 - 2014-03-06 10:09 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-04-30 03:01 - 2014-03-06 10:03 - 00586240 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-04-30 03:01 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-04-30 03:01 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-04-30 03:01 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-04-30 03:01 - 2014-03-06 09:56 - 00038400 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-04-30 03:01 - 2014-03-06 09:48 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-04-30 03:01 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-04-30 03:01 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-04-30 03:01 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-04-30 03:01 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-04-30 03:01 - 2014-03-06 09:42 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-04-30 03:01 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-04-30 03:01 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-04-30 03:01 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-04-30 03:01 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-04-30 03:01 - 2014-03-06 09:21 - 00628736 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-04-30 03:01 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-30 03:01 - 2014-03-06 09:11 - 02043904 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-04-30 03:01 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-04-30 03:01 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-04-30 03:01 - 2014-03-06 08:53 - 13551104 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-04-30 03:01 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-04-30 03:01 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-04-30 03:01 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-04-30 03:01 - 2014-03-06 08:22 - 02260480 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-04-30 03:01 - 2014-03-06 07:58 - 01400832 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-04-30 03:01 - 2014-03-06 07:50 - 00846336 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-04-30 03:01 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-04-30 03:01 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-04-30 03:01 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00002130 _____ () C:\Users\Public\Desktop\Popcorn-Time.lnk
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ____D () C:\Program Files (x86)\Time4Popcorn
2014-04-27 00:52 - 2014-04-27 00:53 - 00000000 ____D () C:\Users\Administrator\AppData\Local\{0DEAFC47-3D2A-4B02-89C5-70FAA7C88FB4}
2014-04-26 11:35 - 2014-04-26 11:35 - 00000117 _____ () C:\Users\Administrator\Downloads\rozhlas_audio (1).pls
2014-04-26 11:28 - 2014-04-26 11:28 - 00000048 _____ () C:\Users\Administrator\Downloads\listen.m3u
2014-04-26 10:11 - 2014-04-26 10:11 - 00017599 _____ () C:\Users\Administrator\Downloads\The_Beatles_-_Abbey_Road.Mp3.torrent
2014-04-26 08:32 - 2014-04-26 08:32 - 00036047 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.catalogue.se.2006.2cd.6vids.cov.192kbps (1).torrent
2014-04-26 08:31 - 2014-04-26 08:31 - 00036047 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.catalogue.se.2006.2cd.6vids.cov.192kbps.torrent
2014-04-26 08:14 - 2014-04-26 08:14 - 00005273 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.things.to.make.and.do.torrent
2014-04-26 08:12 - 2014-04-26 08:12 - 00003611 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.statues.torrent
2014-04-26 07:55 - 2014-04-26 07:55 - 00027513 _____ () C:\Users\Administrator\Downloads\[kickass.to]john.mayer.trio.try.torrent
2014-04-26 07:49 - 2014-04-26 07:49 - 00009317 _____ () C:\Users\Administrator\Downloads\[kickass.to]john.mayer.paradise.valley.chattchitto.rg.torrent
2014-04-26 07:34 - 2014-04-26 07:34 - 00028948 _____ () C:\Users\Administrator\Downloads\[kickass.to]tom.petty.wildflowers.192kbps.1994.torrent
2014-04-26 05:52 - 2014-04-26 05:52 - 00019805 _____ () C:\Users\Administrator\Downloads\[kickass.to]the.economist.april.25.2014.pdf.torrent
2014-04-25 16:15 - 2014-04-25 16:15 - 00014626 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e11.hdtv.xvid.asap.eztv.torrent
2014-04-25 16:11 - 2014-04-25 16:11 - 00014607 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e09.hdtv.xvid.fever.eztv.torrent
2014-04-25 16:11 - 2014-04-25 16:11 - 00014589 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e10.hdtv.xvid.asap.eztv.torrent
2014-04-25 16:10 - 2014-04-25 16:10 - 00014607 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e08.hdtv.xvid.fever.eztv.torrent
2014-04-25 16:09 - 2014-04-25 16:09 - 00053603 _____ () C:\Users\Administrator\Downloads\[kickass.to]joe.satriani.flac.discography (1).torrent
2014-04-25 15:43 - 2014-04-25 15:43 - 00006138 _____ () C:\Users\Administrator\Downloads\[kickass.to]the.big.bang.theory.s07e21.hdtv.x264.lol.eztv.torrent
2014-04-25 14:56 - 2014-04-25 14:56 - 00025765 _____ () C:\Users\Administrator\Downloads\[kickass.to]jazz.rosenberg.trio.6.cd.torrent
2014-04-25 14:43 - 2014-04-25 14:43 - 00000000 ____D () C:\Program Files\Bonjour
2014-04-25 14:43 - 2014-04-25 14:43 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-04-25 14:42 - 2014-04-25 14:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-04-25 14:37 - 2014-04-25 14:37 - 00017080 _____ () C:\Users\Administrator\Downloads\[CzT]Paul_McCartney_New_Deluxe_Ed_2013_ (1).torrent
2014-04-25 14:36 - 2014-04-25 14:36 - 00017081 _____ () C:\Users\Administrator\Downloads\[CzT]Paul_McCartney_New_Deluxe_Ed_2013_.torrent
2014-04-25 14:27 - 2014-04-25 14:27 - 00010138 _____ () C:\Users\Administrator\Downloads\[kickass.to]paul.mccartney.memory.almost.full.2007.cd.skidvid.cov.192kbps.torrent
2014-04-25 14:23 - 2014-04-25 14:23 - 00016378 _____ () C:\Users\Administrator\Downloads\[kickass.to]paul.mccartney.chaos.and.creation.in.the.backyard.2005.flac.torrent
2014-04-25 13:02 - 2014-04-25 13:02 - 00000000 ____D () C:\Users\Administrator\Downloads\Dežo-Ursiny-Pevnina-detstva
2014-04-25 12:58 - 2014-04-25 13:00 - 38013508 _____ () C:\Users\Administrator\Downloads\Dežo-Ursiny-Pevnina-detstva.rar
2014-04-24 11:07 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\windows\SysWOW64\sqlite3.dll
2014-04-22 12:55 - 2014-04-22 12:55 - 00179402 _____ () C:\Users\Administrator\Desktop\Edwin Hubble Mariner of the Nebulae - Gale E. Christianson - Google Knihy.htm
2014-04-22 12:55 - 2014-04-22 12:55 - 00000000 ____D () C:\Users\Administrator\Desktop\Edwin Hubble Mariner of the Nebulae - Gale E. Christianson - Google Knihy_files
2014-04-21 15:23 - 2014-04-21 15:23 - 00004129 _____ () C:\windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-21 15:23 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-21 15:23 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe
2014-04-21 15:23 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe
2014-04-21 15:23 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe
2014-04-20 17:58 - 2014-04-20 17:45 - 00000426 _____ () C:\AVScanner.ini
2014-04-18 17:45 - 2014-04-18 17:45 - 00000000 ____D () C:\ProgramData\McAfee
2014-04-18 10:19 - 2014-04-18 10:19 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Spotify
2014-04-18 10:18 - 2014-04-18 10:18 - 00001859 _____ () C:\Users\Administrator\Desktop\Spotify.lnk
2014-04-18 10:18 - 2014-04-18 10:18 - 00001845 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-04-18 10:17 - 2014-05-02 20:31 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Spotify
2014-04-18 09:28 - 2014-04-18 09:28 - 00016109 _____ () C:\Users\Administrator\Downloads\[kickass.to]everyone.says.i.love.you.woody.allen.1996.proper.xvid.dvdrip.torrent
2014-04-18 09:14 - 2014-04-18 09:14 - 00021468 _____ () C:\Users\Administrator\Downloads\[kickass.to]three.colours.trilogy.blue.white.red.torrent
2014-04-18 06:45 - 2014-04-18 06:45 - 00015872 _____ () C:\Users\Administrator\Downloads\[kickass.to]stealing.beauty.dvdrip.xvid.lkrg.torrent
2014-04-18 05:23 - 2014-04-18 05:23 - 00020864 _____ () C:\Users\Administrator\Downloads\[Limetorrents.com]_Everlast- Songs Of The Ungrateful Living- [2011]- Mp3ViLLe.torrent

==================== One Month Modified Files and Folders =======

2014-05-18 13:06 - 2014-05-18 13:06 - 00112640 _____ (forum.viry.cz) C:\Users\Administrator\Downloads\FRSTLauncher.exe
2014-05-18 13:05 - 2014-05-18 13:05 - 00013069 _____ () C:\Users\Administrator\Downloads\FRST.txt
2014-05-18 13:05 - 2014-05-18 13:04 - 02067456 _____ (Farbar) C:\Users\Administrator\Downloads\FRST64.exe
2014-05-18 13:05 - 2014-04-08 16:52 - 00000000 ____D () C:\FRST
2014-05-18 12:55 - 2013-01-13 19:40 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-05-18 12:50 - 2014-05-18 12:50 - 00000000 ____D () C:\ESET
2014-05-18 12:49 - 2014-05-18 12:49 - 02347384 _____ (ESET) C:\Users\Administrator\Downloads\esetsmartinstaller_sky.exe
2014-05-18 12:49 - 2009-07-14 06:45 - 00024656 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-18 12:49 - 2009-07-14 06:45 - 00024656 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-18 12:46 - 2009-07-14 07:13 - 00786514 _____ () C:\windows\system32\PerfStringBackup.INI
2014-05-18 12:45 - 2012-03-09 16:39 - 01941248 _____ () C:\windows\WindowsUpdate.log
2014-05-18 12:42 - 2013-01-14 11:08 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\uTorrent
2014-05-18 12:42 - 2012-03-25 20:49 - 00000946 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-18 12:41 - 2014-03-23 11:10 - 00017199 _____ () C:\windows\setupact.log
2014-05-18 12:41 - 2009-07-14 07:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-05-18 12:32 - 2012-03-10 17:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\CrashDumps
2014-05-18 12:31 - 2014-05-18 12:31 - 00003162 _____ () C:\windows\System32\Tasks\{7BD4EE62-8243-4787-A26A-08FF95D897D8}
2014-05-18 12:31 - 2014-05-18 12:31 - 00003158 _____ () C:\windows\System32\Tasks\{43E7D271-312B-4B86-9C93-ACA602DF700C}
2014-05-18 12:29 - 2012-03-25 20:49 - 00000950 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-18 12:26 - 2014-05-18 12:26 - 00003196 _____ () C:\windows\System32\Tasks\{EAA02971-9D6D-4C53-A6F2-01084E0A0953}
2014-05-18 12:26 - 2014-05-18 12:26 - 00003158 _____ () C:\windows\System32\Tasks\{F70E506D-F812-4F44-BDA5-5FF2647584E5}
2014-05-18 12:25 - 2014-05-18 12:25 - 00003158 _____ () C:\windows\System32\Tasks\{39048F63-A5D7-420F-B232-5C29DDD9987B}
2014-05-18 12:24 - 2014-05-18 12:24 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Administrator\Downloads\SkypeSetup(2).exe
2014-05-18 12:21 - 2014-05-18 12:21 - 00003196 _____ () C:\windows\System32\Tasks\{BED2C939-E733-49B5-9D64-60C217BE7142}
2014-05-18 12:21 - 2014-05-18 12:21 - 00003158 _____ () C:\windows\System32\Tasks\{993EC428-92F7-4B31-A9D9-4B6A02C0DD7E}
2014-05-18 12:20 - 2014-05-18 12:20 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Administrator\Downloads\SkypeSetup(1).exe
2014-05-18 12:19 - 2014-05-18 12:19 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Administrator\Downloads\SkypeSetup.exe
2014-05-18 12:19 - 2014-05-18 12:19 - 00000000 ____D () C:\Mozilla
2014-05-18 11:55 - 2014-05-18 11:55 - 00001774 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_115544.txt
2014-05-18 11:53 - 2014-02-25 15:27 - 00000000 ____D () C:\Users\Administrator\Desktop\RK_Quarantine
2014-05-18 11:36 - 2012-03-09 16:36 - 00000000 ____D () C:\Recovery
2014-05-18 11:35 - 2014-05-18 11:35 - 00031775 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113511.txt
2014-05-18 11:33 - 2014-05-18 11:33 - 00016586 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113333.txt
2014-05-18 11:32 - 2014-05-18 11:32 - 00018343 _____ () C:\Users\Administrator\Desktop\RKreport[0]_D_05182014_113218.txt
2014-05-18 11:32 - 2014-05-18 11:32 - 00018310 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113210.txt
2014-05-18 11:16 - 2014-05-18 11:16 - 00000000 ____D () C:\SafetyNut
2014-05-18 11:16 - 2014-05-13 16:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-18 11:15 - 2014-05-18 11:15 - 00003536 ____N () C:\bootsqm.dat
2014-05-18 11:01 - 2014-05-18 11:00 - 00000000 ____D () C:\ProgramData\SafetyNut
2014-05-18 11:00 - 2014-05-18 11:00 - 00000873 _____ () C:\Users\Administrator\Desktop\µTorrent.lnk
2014-05-18 11:00 - 2014-05-18 11:00 - 00000000 ____D () C:\Program Files (x86)\Browser Tab Search by Ask
2014-05-18 11:00 - 2013-12-21 18:29 - 00000853 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-05-18 10:45 - 2012-03-10 16:46 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Skype
2014-05-18 08:14 - 2014-03-30 15:27 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\vlc
2014-05-18 07:03 - 2014-05-18 07:03 - 00058936 _____ () C:\Users\Administrator\Desktop\Bn2OYJACAAAIlj1.jpg-large
2014-05-17 09:15 - 2014-05-17 09:15 - 00061628 _____ () C:\Users\Administrator\Desktop\BnyTRbUCIAEF4qS (1).jpg-large
2014-05-17 09:01 - 2014-05-17 09:01 - 00061628 _____ () C:\Users\Administrator\Desktop\BnyTRbUCIAEF4qS.jpg-large
2014-05-16 22:17 - 2014-05-16 22:10 - 20184042 _____ () C:\Users\Administrator\Desktop\Kika.avi
2014-05-16 21:57 - 2012-12-12 21:37 - 00000000 ____D () C:\Users\Administrator\AppData\Local\FullTiltPoker
2014-05-16 21:57 - 2012-12-12 21:37 - 00000000 ____D () C:\Program Files (x86)\Full Tilt Poker
2014-05-16 16:59 - 2014-02-08 00:23 - 00000000 ____D () C:\Users\Administrator\AppData\Local\AuxClient
2014-05-16 15:39 - 2012-02-07 10:23 - 00000000 ____D () C:\Users\Administrator\Desktop\moja hudba
2014-05-16 12:08 - 2014-05-16 12:08 - 00038562 _____ () C:\Users\Administrator\Desktop\BnvCykECAAAOYyi.jpg-large
2014-05-15 18:23 - 2014-05-15 18:23 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Macromedia
2014-05-15 18:15 - 2012-03-11 20:54 - 00000000 ____D () C:\Users\Administrator\AppData\Local\PokerStars
2014-05-15 12:29 - 2014-05-15 12:29 - 00000000 ____D () C:\Users\Administrator\Documents\ipbox
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\UpdatusUser\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\robert\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\postgres\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\Administrator\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Relook PCEditor 1.2
2014-05-15 12:26 - 2014-05-15 12:26 - 00000000 ____D () C:\Program Files (x86)\Relook PCEditor
2014-05-15 12:26 - 2013-03-04 07:10 - 02229974 _____ (Based on DGStation PCEditor 1.0 by JonDoe ) C:\Users\Administrator\Desktop\Setup_PCEditor_1.2.60.exe
2014-05-15 12:26 - 2012-03-09 14:11 - 00000000 ____D () C:\Users\Administrator
2014-05-15 12:20 - 2012-09-21 15:15 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\GHISLER
2014-05-15 12:10 - 2014-05-15 12:10 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-14 04:08 - 2012-03-09 14:11 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-14 04:08 - 2012-03-09 14:11 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-14 03:55 - 2014-05-14 03:51 - 00000000 ____D () C:\windows\rescache
2014-05-14 03:26 - 2014-04-08 16:08 - 00004552 _____ () C:\windows\PFRO.log
2014-05-14 03:26 - 2012-04-29 17:03 - 00000000 ____D () C:\Users\postgres
2014-05-14 03:24 - 2014-05-07 03:01 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-05-14 03:07 - 2012-03-25 17:42 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-14 03:06 - 2013-07-15 03:04 - 00000000 ____D () C:\windows\system32\MRT
2014-05-14 03:03 - 2012-03-13 08:32 - 93223848 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-05-13 21:55 - 2013-01-13 19:40 - 00692400 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-05-13 21:55 - 2013-01-13 19:40 - 00070832 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-13 21:55 - 2013-01-13 19:40 - 00003768 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2014-05-13 20:42 - 2014-03-28 10:29 - 00000000 ____D () C:\Users\Administrator\Desktop\Tibor
2014-05-13 16:38 - 2014-05-13 16:38 - 00001072 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-05-13 16:38 - 2014-05-13 16:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-05-13 16:28 - 2014-05-13 16:28 - 00001165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-13 16:28 - 2014-05-13 16:28 - 00001153 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-13 16:28 - 2012-05-21 16:43 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Mozilla
2014-05-13 06:53 - 2012-03-23 10:06 - 00000000 ____D () C:\Users\Administrator\Desktop\kalypso
2014-05-09 08:14 - 2014-05-14 01:40 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-14 01:40 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-05-07 22:24 - 2012-03-25 20:49 - 00003946 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-07 22:24 - 2012-03-25 20:49 - 00003694 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-07 09:15 - 2013-04-28 11:50 - 00000000 ____D () C:\Users\Administrator\Desktop\Pokerove vyukove videa low stakes
2014-05-07 08:32 - 2014-05-07 08:32 - 00124304 _____ () C:\Users\Administrator\Desktop\Bm-T_uTCIAA5ntq.jpg-large
2014-05-07 07:40 - 2012-03-31 05:27 - 00000000 ____D () C:\Users\Administrator\Documents\My Kindle Content
2014-05-06 06:40 - 2014-05-14 03:07 - 23544320 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-05-06 06:17 - 2014-05-14 03:07 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-05-06 05:25 - 2014-05-14 03:07 - 17382912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-05-06 05:07 - 2014-05-14 03:07 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-05-06 05:00 - 2014-05-14 03:07 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-05-06 04:10 - 2014-05-14 03:07 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-05-05 21:08 - 2014-05-05 21:08 - 00339259 _____ () C:\Users\Administrator\Desktop\Twitter Hledání - slavyansk.htm
2014-05-05 21:08 - 2014-05-05 21:08 - 00000000 ____D () C:\Users\Administrator\Desktop\Twitter Hledání - slavyansk_files
2014-05-02 20:31 - 2014-04-18 10:17 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Spotify
2014-04-30 12:02 - 2012-03-09 17:24 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-04-30 08:18 - 2014-04-30 08:18 - 00000000 __SHD () C:\Users\Administrator\AppData\Local\EmieUserList
2014-04-30 08:18 - 2014-04-30 08:18 - 00000000 __SHD () C:\Users\Administrator\AppData\Local\EmieSiteList
2014-04-30 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\SysWOW64\sk-SK
2014-04-30 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\system32\sk-SK
2014-04-30 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\PolicyDefinitions
2014-04-28 12:21 - 2014-03-20 06:37 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Popcorn-Time
2014-04-28 11:58 - 2014-04-28 11:58 - 00002130 _____ () C:\Users\Public\Desktop\Popcorn-Time.lnk
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ____D () C:\Program Files (x86)\Time4Popcorn
2014-04-27 11:47 - 2012-05-03 12:11 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Apple Computer
2014-04-27 00:53 - 2014-04-27 00:52 - 00000000 ____D () C:\Users\Administrator\AppData\Local\{0DEAFC47-3D2A-4B02-89C5-70FAA7C88FB4}
2014-04-26 11:35 - 2014-04-26 11:35 - 00000117 _____ () C:\Users\Administrator\Downloads\rozhlas_audio (1).pls
2014-04-26 11:28 - 2014-04-26 11:28 - 00000048 _____ () C:\Users\Administrator\Downloads\listen.m3u
2014-04-26 10:11 - 2014-04-26 10:11 - 00017599 _____ () C:\Users\Administrator\Downloads\The_Beatles_-_Abbey_Road.Mp3.torrent
2014-04-26 08:32 - 2014-04-26 08:32 - 00036047 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.catalogue.se.2006.2cd.6vids.cov.192kbps (1).torrent
2014-04-26 08:31 - 2014-04-26 08:31 - 00036047 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.catalogue.se.2006.2cd.6vids.cov.192kbps.torrent
2014-04-26 08:14 - 2014-04-26 08:14 - 00005273 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.things.to.make.and.do.torrent
2014-04-26 08:12 - 2014-04-26 08:12 - 00003611 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.statues.torrent
2014-04-26 07:55 - 2014-04-26 07:55 - 00027513 _____ () C:\Users\Administrator\Downloads\[kickass.to]john.mayer.trio.try.torrent
2014-04-26 07:49 - 2014-04-26 07:49 - 00009317 _____ () C:\Users\Administrator\Downloads\[kickass.to]john.mayer.paradise.valley.chattchitto.rg.torrent
2014-04-26 07:34 - 2014-04-26 07:34 - 00028948 _____ () C:\Users\Administrator\Downloads\[kickass.to]tom.petty.wildflowers.192kbps.1994.torrent
2014-04-26 05:52 - 2014-04-26 05:52 - 00019805 _____ () C:\Users\Administrator\Downloads\[kickass.to]the.economist.april.25.2014.pdf.torrent
2014-04-25 16:15 - 2014-04-25 16:15 - 00014626 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e11.hdtv.xvid.asap.eztv.torrent
2014-04-25 16:11 - 2014-04-25 16:11 - 00014607 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e09.hdtv.xvid.fever.eztv.torrent
2014-04-25 16:11 - 2014-04-25 16:11 - 00014589 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e10.hdtv.xvid.asap.eztv.torrent
2014-04-25 16:10 - 2014-04-25 16:10 - 00014607 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e08.hdtv.xvid.fever.eztv.torrent
2014-04-25 16:09 - 2014-04-25 16:09 - 00053603 _____ () C:\Users\Administrator\Downloads\[kickass.to]joe.satriani.flac.discography (1).torrent
2014-04-25 15:43 - 2014-04-25 15:43 - 00006138 _____ () C:\Users\Administrator\Downloads\[kickass.to]the.big.bang.theory.s07e21.hdtv.x264.lol.eztv.torrent
2014-04-25 14:56 - 2014-04-25 14:56 - 00025765 _____ () C:\Users\Administrator\Downloads\[kickass.to]jazz.rosenberg.trio.6.cd.torrent
2014-04-25 14:43 - 2014-04-25 14:43 - 00000000 ____D () C:\Program Files\Bonjour
2014-04-25 14:43 - 2014-04-25 14:43 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-04-25 14:42 - 2014-04-25 14:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-04-25 14:37 - 2014-04-25 14:37 - 00017080 _____ () C:\Users\Administrator\Downloads\[CzT]Paul_McCartney_New_Deluxe_Ed_2013_ (1).torrent
2014-04-25 14:36 - 2014-04-25 14:36 - 00017081 _____ () C:\Users\Administrator\Downloads\[CzT]Paul_McCartney_New_Deluxe_Ed_2013_.torrent
2014-04-25 14:27 - 2014-04-25 14:27 - 00010138 _____ () C:\Users\Administrator\Downloads\[kickass.to]paul.mccartney.memory.almost.full.2007.cd.skidvid.cov.192kbps.torrent
2014-04-25 14:23 - 2014-04-25 14:23 - 00016378 _____ () C:\Users\Administrator\Downloads\[kickass.to]paul.mccartney.chaos.and.creation.in.the.backyard.2005.flac.torrent
2014-04-25 13:02 - 2014-04-25 13:02 - 00000000 ____D () C:\Users\Administrator\Downloads\Dežo-Ursiny-Pevnina-detstva
2014-04-25 13:00 - 2014-04-25 12:58 - 38013508 _____ () C:\Users\Administrator\Downloads\Dežo-Ursiny-Pevnina-detstva.rar
2014-04-24 11:07 - 2014-04-08 18:44 - 00000000 ____D () C:\AdwCleaner
2014-04-22 12:55 - 2014-04-22 12:55 - 00179402 _____ () C:\Users\Administrator\Desktop\Edwin Hubble Mariner of the Nebulae - Gale E. Christianson - Google Knihy.htm
2014-04-22 12:55 - 2014-04-22 12:55 - 00000000 ____D () C:\Users\Administrator\Desktop\Edwin Hubble Mariner of the Nebulae - Gale E. Christianson - Google Knihy_files
2014-04-21 15:24 - 2014-02-01 18:57 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-21 15:23 - 2014-04-21 15:23 - 00004129 _____ () C:\windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-21 15:23 - 2012-05-18 15:41 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-20 17:58 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-20 17:45 - 2014-04-20 17:58 - 00000426 _____ () C:\AVScanner.ini
2014-04-18 17:47 - 2012-03-10 19:09 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Adobe
2014-04-18 17:45 - 2014-04-18 17:45 - 00000000 ____D () C:\ProgramData\McAfee
2014-04-18 10:19 - 2014-04-18 10:19 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Spotify
2014-04-18 10:18 - 2014-04-18 10:18 - 00001859 _____ () C:\Users\Administrator\Desktop\Spotify.lnk
2014-04-18 10:18 - 2014-04-18 10:18 - 00001845 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-04-18 09:28 - 2014-04-18 09:28 - 00016109 _____ () C:\Users\Administrator\Downloads\[kickass.to]everyone.says.i.love.you.woody.allen.1996.proper.xvid.dvdrip.torrent
2014-04-18 09:14 - 2014-04-18 09:14 - 00021468 _____ () C:\Users\Administrator\Downloads\[kickass.to]three.colours.trilogy.blue.white.red.torrent
2014-04-18 06:45 - 2014-04-18 06:45 - 00015872 _____ () C:\Users\Administrator\Downloads\[kickass.to]stealing.beauty.dvdrip.xvid.lkrg.torrent
2014-04-18 06:28 - 2013-01-23 15:34 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-04-18 05:23 - 2014-04-18 05:23 - 00020864 _____ () C:\Users\Administrator\Downloads\[Limetorrents.com]_Everlast- Songs Of The Ungrateful Living- [2011]- Mp3ViLLe.torrent

Files to move or delete:
====================
C:\Users\robert\DTLite4453-0297.exe
C:\Users\robert\install_flash_player_64bit.exe
C:\Users\robert\SkypeSetup.exe

Some content of TEMP:
====================
C:\Users\Administrator\AppData\Local\Temp\7za.exe
C:\Users\Administrator\AppData\Local\Temp\hijackthis.exe
C:\Users\Administrator\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Administrator\AppData\Local\Temp\NirCmd.exe
C:\Users\Administrator\AppData\Local\Temp\ntdll_dump.dll
C:\Users\Administrator\AppData\Local\Temp\Quarantine.exe
C:\Users\Administrator\AppData\Local\Temp\remove.exe
C:\Users\Administrator\AppData\Local\Temp\sed.exe
C:\Users\Administrator\AppData\Local\Temp\shortcut.exe
C:\Users\Administrator\AppData\Local\Temp\swreg.exe
C:\Users\Administrator\AppData\Local\Temp\swxcacls.exe
C:\Users\Administrator\AppData\Local\Temp\utt81AF.tmp.exe
C:\Users\Administrator\AppData\Local\Temp\wget.exe
C:\Users\Administrator\AppData\Local\Temp\zael_cjj.dll
C:\Users\Administrator\AppData\Local\Temp\zoek-delete.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe
[2014-05-14 01:39] - [2014-03-04 11:43] - 0455168 ____A (Microsoft Corporation) 88AB9B72B4BF3963A0DE0820B4B0B06C

C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-05-09 00:14

==================== End Of Log ============================

#2 Příspěvek od **vyosek** » 18 kvě 2014 13:43

Zdravim

Tvorba fixlistu pro FRST

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

Start
HKLM-x32\...\Winlogon: [Userinit] [X]
HKLM-x32\...\Winlogon: [Shell] [0 ] () <=== ATTENTION
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [Wisdom-soft ScreenHunter 6.0 Free] => 0
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [Spotify Web Helper] => C:\Users\Administrator\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171000 2014-04-18] (Spotify Ltd)
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [uTorrent] => C:\Users\Administrator\AppData\Roaming\uTorrent\uTorrent.exe [1272400 2014-05-18] (BitTorrent Inc.)
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [Browser Tab Search by Ask] => C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\BrowserTabSearch\msbloader.exe [95136 2014-02-06] (IAC Search and Media)
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [Browser Tab Search by Askx64] => C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\BrowserTabSearch\msbloader64.exe [114592 2014-02-06] (IAC Search and Media)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\safetycrt.dll [489992 2014-04-27] ()
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\x64\safetycrt.dll [664584 2014-04-27] ()

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gc ... nrs=AG1&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {7CB8BC52-F028-4934-BC35-A2A6C39EC832} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gc ... nrs=AG1&q={searchTerms}
SearchScopes: HKCU - {7CB8BC52-F028-4934-BC35-A2A6C39EC832} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2} URL = http://dts.search.ask.com/sr?src=ieb&gc ... nrs=AG1&q={searchTerms}
SearchScopes: HKCU - {BC94F6B6-C94C-42D6-87C6-BA30478B1C4E} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3215747&CUI=UN17001188471025531&UM=1
SearchScopes: HKCU - {E3E8E998-43FB-420E-8E6E-7A2DD2F4072C} URL = 
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File

CHR HomePage: hxxp://www.search.ask.com/?o=APN11459&g ... 21-351&t=4
CHR StartupUrls: "hxxp://www.search.ask.com/?o=APN11459&gct=hp&d=488-210&v=n12521-351&t=4", "hxxp://google.sk/"
CHR DefaultSearchProvider: Ask.com
CHR DefaultSearchURL: http://dts.search.ask.com/sr?src=crb&gc ... nrs=AG1&q={searchTerms}

DisableService: c2cautoupdatesvc
DisableService: c2cpnrsvc

S2 SafetyNutManager; C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\SafetyNutManager.exe [3544072 2014-04-27] (SafetyNut Inc)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S1 F06DEFF2-5B9C-490D-910F-35D3A91196222; \??\C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\configmgrc1.cfg [X]
S3 MGHwCtrl; \??\C:\Program Files\MSI\MSI Software Install\MGHwCtrl.sys [X]
C:\Program Files (x86)\Browser Tab Search by Ask
2014-05-18 12:31 - 2014-05-18 12:31 - 00003162 _____ () C:\windows\System32\Tasks\{7BD4EE62-8243-4787-A26A-08FF95D897D8}
2014-05-18 12:31 - 2014-05-18 12:31 - 00003158 _____ () C:\windows\System32\Tasks\{43E7D271-312B-4B86-9C93-ACA602DF700C}
2014-05-18 12:26 - 2014-05-18 12:26 - 00003196 _____ () C:\windows\System32\Tasks\{EAA02971-9D6D-4C53-A6F2-01084E0A0953}
2014-05-18 12:26 - 2014-05-18 12:26 - 00003158 _____ () C:\windows\System32\Tasks\{F70E506D-F812-4F44-BDA5-5FF2647584E5}
2014-05-18 12:25 - 2014-05-18 12:25 - 00003158 _____ () C:\windows\System32\Tasks\{39048F63-A5D7-420F-B232-5C29DDD9987B}
2014-05-18 12:24 - 2014-05-18 12:24 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Administrator\Downloads\SkypeSetup(2).exe
2014-05-18 12:21 - 2014-05-18 12:21 - 00003196 _____ () C:\windows\System32\Tasks\{BED2C939-E733-49B5-9D64-60C217BE7142}
2014-05-18 12:21 - 2014-05-18 12:21 - 00003158 _____ () C:\windows\System32\Tasks\{993EC428-92F7-4B31-A9D9-4B6A02C0DD7E}
2014-05-18 12:20 - 2014-05-18 12:20 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Administrator\Downloads\SkypeSetup(1).exe
2014-05-18 12:19 - 2014-05-18 12:19 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Administrator\Downloads\SkypeSetup.exe
2014-05-18 11:55 - 2014-05-18 11:55 - 00001774 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_115544.txt
2014-05-18 11:35 - 2014-05-18 11:35 - 00031775 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113511.txt
2014-05-18 11:33 - 2014-05-18 11:33 - 00016586 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113333.txt
2014-05-18 11:32 - 2014-05-18 11:32 - 00018343 _____ () C:\Users\Administrator\Desktop\RKreport[0]_D_05182014_113218.txt
2014-05-18 11:32 - 2014-05-18 11:32 - 00018310 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113210.txt
2014-05-18 11:16 - 2014-05-18 11:16 - 00000000 ____D () C:\SafetyNut
2014-05-18 11:15 - 2014-05-18 11:15 - 00003536 ____N () C:\bootsqm.dat
2014-05-18 11:00 - 2014-05-18 11:01 - 00000000 ____D () C:\ProgramData\SafetyNut
2014-05-18 11:00 - 2014-05-18 11:00 - 00000000 ____D () C:\Program Files (x86)\Browser Tab Search by Ask
C:\Users\Administrator\AppData\Local\Temp\7za.exe
C:\Users\Administrator\AppData\Local\Temp\hijackthis.exe
C:\Users\Administrator\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Administrator\AppData\Local\Temp\NirCmd.exe
C:\Users\Administrator\AppData\Local\Temp\ntdll_dump.dll
C:\Users\Administrator\AppData\Local\Temp\Quarantine.exe
C:\Users\Administrator\AppData\Local\Temp\remove.exe
C:\Users\Administrator\AppData\Local\Temp\sed.exe
C:\Users\Administrator\AppData\Local\Temp\shortcut.exe
C:\Users\Administrator\AppData\Local\Temp\swreg.exe
C:\Users\Administrator\AppData\Local\Temp\swxcacls.exe
C:\Users\Administrator\AppData\Local\Temp\utt81AF.tmp.exe
C:\Users\Administrator\AppData\Local\Temp\wget.exe
C:\Users\Administrator\AppData\Local\Temp\zael_cjj.dll
C:\Users\Administrator\AppData\Local\Temp\zoek-delete.exe

Hosts:
End

Ulozte vytvoreny TXT jako fixlist.txt
Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

Kliknete na Fix
Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

Lestatos · #3 Příspěvek od **Lestatos** » 18 kvě 2014 14:05

asi mi to neuverite, ale neda sa mi kopirovat ani mysou ani ctrl +c a potom ctrl+v

Lestatos · #4 Příspěvek od **Lestatos** » 18 kvě 2014 14:58

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 17-05-2014
Ran by Administrator at 2014-05-18 15:50:24 Run:1
Running from C:\Users\Administrator\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Winlogon: [Userinit] [X]
HKLM-x32\...\Winlogon: [Shell] [0 ] () <=== ATTENTION
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [Wisdom-soft ScreenHunter 6.0 Free] => 0
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [Spotify Web Helper] => C:\Users\Administrator\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171000 2014-04-18] (Spotify Ltd)
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [uTorrent] => C:\Users\Administrator\AppData\Roaming\uTorrent\uTorrent.exe [1272400 2014-05-18] (BitTorrent Inc.)
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [Browser Tab Search by Ask] => C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\BrowserTabSearch\msbloader.exe [95136 2014-02-06] (IAC Search and Media)
HKU\S-1-5-21-649568267-640355484-1299417552-500\...\Run: [Browser Tab Search by Askx64] => C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\BrowserTabSearch\msbloader64.exe [114592 2014-02-06] (IAC Search and Media)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\safetycrt.dll [489992 2014-04-27] ()
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\x64\safetycrt.dll [664584 2014-04-27] ()

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gc ... nrs=AG1&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {7CB8BC52-F028-4934-BC35-A2A6C39EC832} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gc ... nrs=AG1&q={searchTerms}
SearchScopes: HKCU - {7CB8BC52-F028-4934-BC35-A2A6C39EC832} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2} URL = http://dts.search.ask.com/sr?src=ieb&gc ... nrs=AG1&q={searchTerms}
SearchScopes: HKCU - {BC94F6B6-C94C-42D6-87C6-BA30478B1C4E} URL = http://search.conduit.com/ResultsExt.as ... 25531&UM=1
SearchScopes: HKCU - {E3E8E998-43FB-420E-8E6E-7A2DD2F4072C} URL =
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File

CHR HomePage: hxxp://www.search.ask.com/?o=APN11459&g ... 21-351&t=4
CHR StartupUrls: "hxxp://www.search.ask.com/?o=APN11459&gct=hp&d ... 21-351&t=4", "hxxp://google.sk/"
CHR DefaultSearchProvider: Ask.com
CHR DefaultSearchURL: http://dts.search.ask.com/sr?src=crb&gc ... nrs=AG1&q={searchTerms}

DisableService: c2cautoupdatesvc
DisableService: c2cpnrsvc

S2 SafetyNutManager; C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\SafetyNutManager.exe [3544072 2014-04-27] (SafetyNut Inc)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S1 F06DEFF2-5B9C-490D-910F-35D3A91196222; \??\C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\configmgrc1.cfg [X]
S3 MGHwCtrl; \??\C:\Program Files\MSI\MSI Software Install\MGHwCtrl.sys [X]
C:\Program Files (x86)\Browser Tab Search by Ask
2014-05-18 12:31 - 2014-05-18 12:31 - 00003162 _____ () C:\windows\System32\Tasks\{7BD4EE62-8243-4787-A26A-08FF95D897D8}
2014-05-18 12:31 - 2014-05-18 12:31 - 00003158 _____ () C:\windows\System32\Tasks\{43E7D271-312B-4B86-9C93-ACA602DF700C}
2014-05-18 12:26 - 2014-05-18 12:26 - 00003196 _____ () C:\windows\System32\Tasks\{EAA02971-9D6D-4C53-A6F2-01084E0A0953}
2014-05-18 12:26 - 2014-05-18 12:26 - 00003158 _____ () C:\windows\System32\Tasks\{F70E506D-F812-4F44-BDA5-5FF2647584E5}
2014-05-18 12:25 - 2014-05-18 12:25 - 00003158 _____ () C:\windows\System32\Tasks\{39048F63-A5D7-420F-B232-5C29DDD9987B}
2014-05-18 12:24 - 2014-05-18 12:24 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Administrator\Downloads\SkypeSetup(2).exe
2014-05-18 12:21 - 2014-05-18 12:21 - 00003196 _____ () C:\windows\System32\Tasks\{BED2C939-E733-49B5-9D64-60C217BE7142}
2014-05-18 12:21 - 2014-05-18 12:21 - 00003158 _____ () C:\windows\System32\Tasks\{993EC428-92F7-4B31-A9D9-4B6A02C0DD7E}
2014-05-18 12:20 - 2014-05-18 12:20 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Administrator\Downloads\SkypeSetup(1).exe
2014-05-18 12:19 - 2014-05-18 12:19 - 01677440 _____ (Skype Technologies S.A.) C:\Users\Administrator\Downloads\SkypeSetup.exe
2014-05-18 11:55 - 2014-05-18 11:55 - 00001774 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_115544.txt
2014-05-18 11:35 - 2014-05-18 11:35 - 00031775 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113511.txt
2014-05-18 11:33 - 2014-05-18 11:33 - 00016586 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113333.txt
2014-05-18 11:32 - 2014-05-18 11:32 - 00018343 _____ () C:\Users\Administrator\Desktop\RKreport[0]_D_05182014_113218.txt
2014-05-18 11:32 - 2014-05-18 11:32 - 00018310 _____ () C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113210.txt
2014-05-18 11:16 - 2014-05-18 11:16 - 00000000 ____D () C:\SafetyNut
2014-05-18 11:15 - 2014-05-18 11:15 - 00003536 ____N () C:\bootsqm.dat
2014-05-18 11:00 - 2014-05-18 11:01 - 00000000 ____D () C:\ProgramData\SafetyNut
2014-05-18 11:00 - 2014-05-18 11:00 - 00000000 ____D () C:\Program Files (x86)\Browser Tab Search by Ask
C:\Users\Administrator\AppData\Local\Temp\7za.exe
C:\Users\Administrator\AppData\Local\Temp\hijackthis.exe
C:\Users\Administrator\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Administrator\AppData\Local\Temp\NirCmd.exe
C:\Users\Administrator\AppData\Local\Temp\ntdll_dump.dll
C:\Users\Administrator\AppData\Local\Temp\Quarantine.exe
C:\Users\Administrator\AppData\Local\Temp\remove.exe
C:\Users\Administrator\AppData\Local\Temp\sed.exe
C:\Users\Administrator\AppData\Local\Temp\shortcut.exe
C:\Users\Administrator\AppData\Local\Temp\swreg.exe
C:\Users\Administrator\AppData\Local\Temp\swxcacls.exe
C:\Users\Administrator\AppData\Local\Temp\utt81AF.tmp.exe
C:\Users\Administrator\AppData\Local\Temp\wget.exe
C:\Users\Administrator\AppData\Local\Temp\zael_cjj.dll
C:\Users\Administrator\AppData\Local\Temp\zoek-delete.exe

Hosts:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\\Userinit => Value was restored successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value was restored successfully.
HKU\S-1-5-21-649568267-640355484-1299417552-500\Software\Microsoft\Windows\CurrentVersion\Run\\Wisdom-soft ScreenHunter 6.0 Free => Value deleted successfully.
HKU\S-1-5-21-649568267-640355484-1299417552-500\Software\Microsoft\Windows\CurrentVersion\Run\\Spotify Web Helper => Value deleted successfully.
HKU\S-1-5-21-649568267-640355484-1299417552-500\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent => Value deleted successfully.
HKU\S-1-5-21-649568267-640355484-1299417552-500\Software\Microsoft\Windows\CurrentVersion\Run\\Browser Tab Search by Ask => Value deleted successfully.
HKU\S-1-5-21-649568267-640355484-1299417552-500\Software\Microsoft\Windows\CurrentVersion\Run\\Browser Tab Search by Askx64 => Value deleted successfully.
HKLM\System\CurrentControlSet\Control\Session Manager\AppCertDlls\\x86 => Value deleted successfully.
HKLM\System\CurrentControlSet\Control\Session Manager\AppCertDlls\\x64 => Value deleted successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473} => Key deleted successfully.
HKCR\CLSID\{52db1893-8a90-4192-aede-08e00b8f8473} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473} => Key deleted successfully.
HKCR\CLSID\{52db1893-8a90-4192-aede-08e00b8f8473} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7CB8BC52-F028-4934-BC35-A2A6C39EC832} => Key deleted successfully.
HKCR\CLSID\{7CB8BC52-F028-4934-BC35-A2A6C39EC832} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2} => Key deleted successfully.
HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BC94F6B6-C94C-42D6-87C6-BA30478B1C4E} => Key deleted successfully.
HKCR\CLSID\{BC94F6B6-C94C-42D6-87C6-BA30478B1C4E} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E3E8E998-43FB-420E-8E6E-7A2DD2F4072C} => Key deleted successfully.
HKCR\CLSID\{E3E8E998-43FB-420E-8E6E-7A2DD2F4072C} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => Value deleted successfully.
HKCR\CLSID\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => Key not found.
CHR HomePage: hxxp://www.search.ask.com/?o=APN11459&g ... 21-351&t=4 ==> The Chrome "Settings" can be used to fix the entry.
CHR StartupUrls: "hxxp://www.search.ask.com/?o=APN11459&gct=hp&d ... 21-351&t=4", "hxxp://google.sk/" ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchProvider: Ask.com ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchURL: http://dts.search.ask.com/sr?src=crb&gc ... nrs=AG1&q={searchTerms} ==> The Chrome "Settings" can be used to fix the entry.
c2cautoupdatesvc service was disabled
c2cpnrsvc service was disabled
SafetyNutManager => Service deleted successfully.
catchme => Service deleted successfully.
F06DEFF2-5B9C-490D-910F-35D3A91196222 => Service deleted successfully.
MGHwCtrl => Service deleted successfully.
C:\Program Files (x86)\Browser Tab Search by Ask => Moved successfully.
C:\windows\System32\Tasks\{7BD4EE62-8243-4787-A26A-08FF95D897D8} => Moved successfully.
C:\windows\System32\Tasks\{43E7D271-312B-4B86-9C93-ACA602DF700C} => Moved successfully.
C:\windows\System32\Tasks\{EAA02971-9D6D-4C53-A6F2-01084E0A0953} => Moved successfully.
C:\windows\System32\Tasks\{F70E506D-F812-4F44-BDA5-5FF2647584E5} => Moved successfully.
C:\windows\System32\Tasks\{39048F63-A5D7-420F-B232-5C29DDD9987B} => Moved successfully.
C:\Users\Administrator\Downloads\SkypeSetup(2).exe => Moved successfully.
C:\windows\System32\Tasks\{BED2C939-E733-49B5-9D64-60C217BE7142} => Moved successfully.
C:\windows\System32\Tasks\{993EC428-92F7-4B31-A9D9-4B6A02C0DD7E} => Moved successfully.
C:\Users\Administrator\Downloads\SkypeSetup(1).exe => Moved successfully.
C:\Users\Administrator\Downloads\SkypeSetup.exe => Moved successfully.
C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_115544.txt => Moved successfully.
C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113511.txt => Moved successfully.
C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113333.txt => Moved successfully.
C:\Users\Administrator\Desktop\RKreport[0]_D_05182014_113218.txt => Moved successfully.
C:\Users\Administrator\Desktop\RKreport[0]_S_05182014_113210.txt => Moved successfully.
C:\SafetyNut => Moved successfully.
C:\bootsqm.dat => Moved successfully.
C:\ProgramData\SafetyNut => Moved successfully.
"C:\Program Files (x86)\Browser Tab Search by Ask" => File/Directory not found.
C:\Users\Administrator\AppData\Local\Temp\7za.exe => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\hijackthis.exe => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\NirCmd.exe => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\ntdll_dump.dll => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\remove.exe => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\sed.exe => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\shortcut.exe => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\swreg.exe => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\swxcacls.exe => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\utt81AF.tmp.exe => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\wget.exe => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\zael_cjj.dll => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp\zoek-delete.exe => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

==== End of Fixlog ====

#5 Příspěvek od **vyosek** » 18 kvě 2014 16:16

Stahnete RKill http://download.bleepingcomputer.com/grinler/rkill.com

Pokud ho havet blokuje, pouzijte jeden z nasledujicich - i ty prejmenovane
Rkill EXE:
http://download.bleepingcomputer.com/grinler/rkill.exe

Rkill iExplore.exe:
http://download.bleepingcomputer.com/gr ... xplore.exe

Rkill uSeRiNiT.exe:
http://download.bleepingcomputer.com/gr ... eRiNiT.exe

Rkill WiNlOgOn.exe:
http://download.bleepingcomputer.com/gr ... NlOgOn.exe
Ulozte nejlepena plochu a ukoncete vsechny aplikace (jinak to udela RKill za Vas)
Spustte tradicne dvojklikem - program probehne do par sekund a ukonci i svou cinnost
RKill ukonci vsechny ne-systemove procesy - tedy i procesy, pod kterymi bezi havet
Na plose vznikne log Rkill.txt ten mi sem vlozte
Ted nerestartujte PC - prisli byste o ucinek RKillu

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK

Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
Pokud mate Win XP spustte pod uctem Spravce\Administratora
Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

Lestatos · #6 Příspěvek od **Lestatos** » 18 kvě 2014 16:28

Rkill 2.6.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 05/18/2014 05:26:29 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 05/18/2014 05:27:57 PM
Execution time: 0 hours(s), 1 minute(s), and 27 seconds(s)

#7 Příspěvek od **vyosek** » 18 kvě 2014 16:29

Pokracujte ComboFixem...

Lestatos · #8 Příspěvek od **Lestatos** » 18 kvě 2014 17:01

log combofixu je moc velky, posielam na vyosek(@)forum.viry.cz

Lestatos · #9 Příspěvek od **Lestatos** » 19 kvě 2014 08:18

Podarilo sa mi zozipovat log z combofixu a prilozit . Dakuje,

#10 Příspěvek od **vyosek** » 19 kvě 2014 08:25

V pohode, ja jsem si ho prohlidl i na mailu, ale uz nebyl vcera cas napsat

Pokud nemate, tak presunte Combofix na plochu

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

KillAll::

File::
c:\windows\Tasks\Adobe Flash Player Updater.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

RegLock::
[HKEY_USERS\S-1-5-21-649568267-640355484-1299417552-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts

ClearJavaCache::

Reboot::

Ulozte vytvoreny TXT jako CFScript.txt
Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Pokud vyskoci hlaska "Pokus pouzit neplatnou operaci na klic registru, ktery je oznacen pro odstraneni", tak jen restartujte PC - registr se da do kupy - jedna se o vnitrni chybu, kterou zpusobuje CF a autor ji zatim neumi bohuzel opravit

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

Lestatos · #11 Příspěvek od **Lestatos** » 19 kvě 2014 09:27

posielam combofix log

#12 Příspěvek od **vyosek** » 19 kvě 2014 09:31

Odinstalujte Combofix

Prejmenujte ComboFix na Uninstall
Spustte jej
Tohle smaze Combofix a jeho slozky

Nejak tam nevidim zabezpeceni, doporucuji nainstalovat Avast Free

Stahnete SecurityCheck http://screen317.spywareinfoforum.org/SecurityCheck.exe

Ulozte nejlepe na Plochu
Spustte tradicne dvouklikem a postupujte dle pokynu utility
Po dokonceni skenu se vytvori a otevre log, ten mi sem vlozte

Dejte log z FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

Napis jak je na tom PC, uz by se mu melo darit lepe...

Lestatos · #13 Příspěvek od **Lestatos** » 19 kvě 2014 09:47

obavam sa , že to este nie je v poriadku. Neda sa sustit Skype, Chrom tiez nefunguje tak ako by mal. Ked sa pozriem cez panel nastrojov tak chrom ani nevidim v programoch aby som ho mohol odinstalovat a znova nainstalovat. Nieco tam este je. Dakujem pridavam log :

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-05-2014
Ran by Administrator (administrator) on ROBERT-MSI on 19-05-2014 10:42:49
Running from C:\Users\Administrator\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\S-Bar\MSIService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [THXCfg64] => C:\windows\system32\THXCfg64.dll [17920 2009-10-15] (Creative Technology Ltd.)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\fz360ikf.default
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: FTdownloader - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\profiles\extensions\ftdownloader@ftdownloader.com.xpi [2012-11-29]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-05-15]

Chrome:
=======
CHR HomePage: hxxp://www.search.ask.com/?o=APN11459&gct=hp&d ... 21-351&t=4
CHR StartupUrls: "hxxp://www.search.ask.com/?o=APN11459&gct=hp&d ... 21-351&t=4", "hxxp://google.sk/"
CHR DefaultSearchProvider: Ask.com
CHR DefaultSearchURL: http://dts.search.ask.com/sr?src=crb&gc ... earchTerms}
CHR Extension: (Dokumenty Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-02]
CHR Extension: (Disk Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-02]
CHR Extension: (Web Developer) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2014-05-03]
CHR Extension: (YouTube) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-02]
CHR Extension: (Adblock Plus) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-04-09]
CHR Extension: (Online TV From UK) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmimnpfphpmminhlhfijocolgmmhmibo [2014-04-09]
CHR Extension: (Hľadať v Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-02]
CHR Extension: (New XCommander) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dppefdlohekfhjenppnpjekkjjgndhdf [2014-04-09]
CHR Extension: (TweetDeck by Twitter) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl [2014-05-02]
CHR Extension: (Mapy Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2014-04-09]
CHR Extension: (Peňaženka Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-02]
CHR Extension: (Gmail) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-02]

==================== Services (Whitelisted) =================

S4 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
S4 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
R2 Micro Star SCM; C:\Program Files (x86)\S-Bar\MSIService.exe [160768 2011-06-24] (Micro-Star International Co., Ltd.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-05-02] ()
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [76888 2012-03-10] ()
R2 postgresql-8.4; C:/Program Files (x86)/PostgreSQL/8.4/bin/pg_ctl.exe runservice -N "postgresql-8.4" -D "C:/Program Files (x86)/PostgreSQL/8.4/data" -w [X]

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R1 avgtp; C:\windows\system32\drivers\avgtpx64.sys [49952 2014-03-20] (AVG Technologies)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-03-09] (DT Soft Ltd)
S3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2012-03-25] ()
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S1 F06DEFF2-5B9C-490D-910F-35D3A9119622; \??\C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\x64\configmgrc1.cfg [X]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-05-19 10:42 - 2014-05-19 10:42 - 00000000 ____D () C:\Users\Administrator\Desktop\FRST-OlderVersion
2014-05-19 10:24 - 2014-05-19 10:24 - 00023848 _____ () C:\Users\Administrator\Downloads\cobofix.zip
2014-05-19 10:12 - 2014-05-19 10:12 - 00101800 _____ () C:\cobofix.txt
2014-05-19 10:09 - 2014-05-19 10:09 - 00101800 _____ () C:\ComboFix.txt
2014-05-19 09:09 - 2014-05-19 09:09 - 00026203 _____ () C:\Users\Administrator\Downloads\ComboFix.zip
2014-05-18 17:56 - 2014-05-18 17:56 - 00192875 _____ () C:\Users\Administrator\Desktop\ComboFix.log
2014-05-18 17:26 - 2014-05-18 17:27 - 00002040 _____ () C:\Users\Administrator\Desktop\Rkill.txt
2014-05-18 17:23 - 2014-05-18 17:23 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Administrator\Downloads\rkill.com
2014-05-18 15:32 - 2014-05-18 15:32 - 00000000 _____ () C:\Users\Administrator\Desktop\Nový textový dokument.txt
2014-05-18 13:06 - 2014-05-18 13:06 - 00112640 _____ (forum.viry.cz) C:\Users\Administrator\Downloads\FRSTLauncher.exe
2014-05-18 13:05 - 2014-05-18 13:07 - 00055766 _____ () C:\Users\Administrator\Downloads\FRST.txt
2014-05-18 13:04 - 2014-05-18 13:05 - 02067456 _____ (Farbar) C:\Users\Administrator\Downloads\FRST64.exe
2014-05-18 12:49 - 2014-05-18 12:49 - 02347384 _____ (ESET) C:\Users\Administrator\Downloads\esetsmartinstaller_sky.exe
2014-05-18 12:19 - 2014-05-18 12:19 - 00000000 ____D () C:\Mozilla
2014-05-18 11:00 - 2014-05-18 11:00 - 00000873 _____ () C:\Users\Administrator\Desktop\µTorrent.lnk
2014-05-18 07:03 - 2014-05-18 07:03 - 00058936 _____ () C:\Users\Administrator\Desktop\Bn2OYJACAAAIlj1.jpg-large
2014-05-17 09:15 - 2014-05-17 09:15 - 00061628 _____ () C:\Users\Administrator\Desktop\BnyTRbUCIAEF4qS (1).jpg-large
2014-05-17 09:01 - 2014-05-17 09:01 - 00061628 _____ () C:\Users\Administrator\Desktop\BnyTRbUCIAEF4qS.jpg-large
2014-05-16 22:10 - 2014-05-16 22:17 - 20184042 _____ () C:\Users\Administrator\Desktop\Kika.avi
2014-05-16 12:08 - 2014-05-16 12:08 - 00038562 _____ () C:\Users\Administrator\Desktop\BnvCykECAAAOYyi.jpg-large
2014-05-15 18:23 - 2014-05-15 18:23 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Macromedia
2014-05-15 12:29 - 2014-05-15 12:29 - 00000000 ____D () C:\Users\Administrator\Documents\ipbox
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\UpdatusUser\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\robert\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\postgres\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\Administrator\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Relook PCEditor 1.2
2014-05-15 12:26 - 2014-05-15 12:26 - 00000000 ____D () C:\Program Files (x86)\Relook PCEditor
2014-05-15 12:10 - 2014-05-15 12:10 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-14 03:51 - 2014-05-14 03:55 - 00000000 ____D () C:\windows\rescache
2014-05-14 03:07 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-05-14 03:07 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-05-14 03:07 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-05-14 03:07 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-05-14 03:07 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-05-14 03:07 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-05-14 01:41 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-05-14 01:40 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-05-14 01:40 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-05-14 01:40 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-05-14 01:39 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-05-14 01:39 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-05-14 01:39 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-05-14 01:39 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-05-14 01:39 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-05-14 01:39 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-05-14 01:39 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-05-14 01:39 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-05-14 01:39 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-05-14 01:39 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-05-14 01:39 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\windows\system32\objsel.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-05-14 01:39 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\wincredprovider.dll
2014-05-14 01:39 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2014-05-14 01:39 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\cngprovider.dll
2014-05-14 01:39 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\adprovider.dll
2014-05-14 01:39 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\capiprovider.dll
2014-05-14 01:39 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\dpapiprovider.dll
2014-05-14 01:39 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\dimsroam.dll
2014-05-14 01:39 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-05-14 01:39 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2014-05-14 01:39 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2014-05-14 01:39 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\windows\SysWOW64\objsel.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\cngprovider.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\windows\SysWOW64\adprovider.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\windows\SysWOW64\capiprovider.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpapiprovider.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dimsroam.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wincredprovider.dll
2014-05-14 01:39 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-05-14 01:39 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2014-05-13 16:38 - 2014-05-13 16:38 - 00001072 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-05-13 16:38 - 2014-05-13 16:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-05-13 16:28 - 2014-05-18 11:16 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-13 16:28 - 2014-05-13 16:28 - 00001165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-13 16:28 - 2014-05-13 16:28 - 00001153 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-07 08:32 - 2014-05-07 08:32 - 00124304 _____ () C:\Users\Administrator\Desktop\Bm-T_uTCIAA5ntq.jpg-large
2014-05-07 03:01 - 2014-05-14 03:24 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-05-05 21:08 - 2014-05-05 21:08 - 00339259 _____ () C:\Users\Administrator\Desktop\Twitter Hledání - slavyansk.htm
2014-05-05 21:08 - 2014-05-05 21:08 - 00000000 ____D () C:\Users\Administrator\Desktop\Twitter Hledání - slavyansk_files
2014-04-30 08:18 - 2014-04-30 08:18 - 00000000 __SHD () C:\Users\Administrator\AppData\Local\EmieUserList
2014-04-30 08:18 - 2014-04-30 08:18 - 00000000 __SHD () C:\Users\Administrator\AppData\Local\EmieSiteList
2014-04-30 03:01 - 2014-03-06 11:31 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-04-30 03:01 - 2014-03-06 10:59 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-04-30 03:01 - 2014-03-06 10:57 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-04-30 03:01 - 2014-03-06 10:57 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-04-30 03:01 - 2014-03-06 10:53 - 02767360 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-04-30 03:01 - 2014-03-06 10:40 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-04-30 03:01 - 2014-03-06 10:39 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-04-30 03:01 - 2014-03-06 10:32 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-04-30 03:01 - 2014-03-06 10:29 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-04-30 03:01 - 2014-03-06 10:29 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-04-30 03:01 - 2014-03-06 10:28 - 00752640 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-04-30 03:01 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-04-30 03:01 - 2014-03-06 10:11 - 05784064 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-04-30 03:01 - 2014-03-06 10:09 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-04-30 03:01 - 2014-03-06 10:03 - 00586240 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-04-30 03:01 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-04-30 03:01 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-04-30 03:01 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-04-30 03:01 - 2014-03-06 09:56 - 00038400 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-04-30 03:01 - 2014-03-06 09:48 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-04-30 03:01 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-04-30 03:01 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-04-30 03:01 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-04-30 03:01 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-04-30 03:01 - 2014-03-06 09:42 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-04-30 03:01 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-04-30 03:01 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-04-30 03:01 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-04-30 03:01 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-04-30 03:01 - 2014-03-06 09:21 - 00628736 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-04-30 03:01 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-30 03:01 - 2014-03-06 09:11 - 02043904 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-04-30 03:01 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-04-30 03:01 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-04-30 03:01 - 2014-03-06 08:53 - 13551104 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-04-30 03:01 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-04-30 03:01 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-04-30 03:01 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-04-30 03:01 - 2014-03-06 08:22 - 02260480 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-04-30 03:01 - 2014-03-06 07:58 - 01400832 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-04-30 03:01 - 2014-03-06 07:50 - 00846336 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-04-30 03:01 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-04-30 03:01 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-04-30 03:01 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-04-28 11:58 - 2014-04-28 11:58 - 00002130 _____ () C:\Users\Public\Desktop\Popcorn-Time.lnk
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ____D () C:\Program Files (x86)\Time4Popcorn
2014-04-27 00:52 - 2014-04-27 00:53 - 00000000 ____D () C:\Users\Administrator\AppData\Local\{0DEAFC47-3D2A-4B02-89C5-70FAA7C88FB4}
2014-04-26 11:35 - 2014-04-26 11:35 - 00000117 _____ () C:\Users\Administrator\Downloads\rozhlas_audio (1).pls
2014-04-26 11:28 - 2014-04-26 11:28 - 00000048 _____ () C:\Users\Administrator\Downloads\listen.m3u
2014-04-26 10:11 - 2014-04-26 10:11 - 00017599 _____ () C:\Users\Administrator\Downloads\The_Beatles_-_Abbey_Road.Mp3.torrent
2014-04-26 08:32 - 2014-04-26 08:32 - 00036047 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.catalogue.se.2006.2cd.6vids.cov.192kbps (1).torrent
2014-04-26 08:31 - 2014-04-26 08:31 - 00036047 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.catalogue.se.2006.2cd.6vids.cov.192kbps.torrent
2014-04-26 08:14 - 2014-04-26 08:14 - 00005273 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.things.to.make.and.do.torrent
2014-04-26 08:12 - 2014-04-26 08:12 - 00003611 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.statues.torrent
2014-04-26 07:55 - 2014-04-26 07:55 - 00027513 _____ () C:\Users\Administrator\Downloads\[kickass.to]john.mayer.trio.try.torrent
2014-04-26 07:49 - 2014-04-26 07:49 - 00009317 _____ () C:\Users\Administrator\Downloads\[kickass.to]john.mayer.paradise.valley.chattchitto.rg.torrent
2014-04-26 07:34 - 2014-04-26 07:34 - 00028948 _____ () C:\Users\Administrator\Downloads\[kickass.to]tom.petty.wildflowers.192kbps.1994.torrent
2014-04-26 05:52 - 2014-04-26 05:52 - 00019805 _____ () C:\Users\Administrator\Downloads\[kickass.to]the.economist.april.25.2014.pdf.torrent
2014-04-25 16:15 - 2014-04-25 16:15 - 00014626 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e11.hdtv.xvid.asap.eztv.torrent
2014-04-25 16:11 - 2014-04-25 16:11 - 00014607 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e09.hdtv.xvid.fever.eztv.torrent
2014-04-25 16:11 - 2014-04-25 16:11 - 00014589 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e10.hdtv.xvid.asap.eztv.torrent
2014-04-25 16:10 - 2014-04-25 16:10 - 00014607 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e08.hdtv.xvid.fever.eztv.torrent
2014-04-25 16:09 - 2014-04-25 16:09 - 00053603 _____ () C:\Users\Administrator\Downloads\[kickass.to]joe.satriani.flac.discography (1).torrent
2014-04-25 15:43 - 2014-04-25 15:43 - 00006138 _____ () C:\Users\Administrator\Downloads\[kickass.to]the.big.bang.theory.s07e21.hdtv.x264.lol.eztv.torrent
2014-04-25 14:56 - 2014-04-25 14:56 - 00025765 _____ () C:\Users\Administrator\Downloads\[kickass.to]jazz.rosenberg.trio.6.cd.torrent
2014-04-25 14:43 - 2014-04-25 14:43 - 00000000 ____D () C:\Program Files\Bonjour
2014-04-25 14:43 - 2014-04-25 14:43 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-04-25 14:42 - 2014-04-25 14:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-04-25 14:37 - 2014-04-25 14:37 - 00017080 _____ () C:\Users\Administrator\Downloads\[CzT]Paul_McCartney_New_Deluxe_Ed_2013_ (1).torrent
2014-04-25 14:36 - 2014-04-25 14:36 - 00017081 _____ () C:\Users\Administrator\Downloads\[CzT]Paul_McCartney_New_Deluxe_Ed_2013_.torrent
2014-04-25 14:27 - 2014-04-25 14:27 - 00010138 _____ () C:\Users\Administrator\Downloads\[kickass.to]paul.mccartney.memory.almost.full.2007.cd.skidvid.cov.192kbps.torrent
2014-04-25 14:23 - 2014-04-25 14:23 - 00016378 _____ () C:\Users\Administrator\Downloads\[kickass.to]paul.mccartney.chaos.and.creation.in.the.backyard.2005.flac.torrent
2014-04-25 13:02 - 2014-04-25 13:02 - 00000000 ____D () C:\Users\Administrator\Downloads\Dežo-Ursiny-Pevnina-detstva
2014-04-25 12:58 - 2014-04-25 13:00 - 38013508 _____ () C:\Users\Administrator\Downloads\Dežo-Ursiny-Pevnina-detstva.rar
2014-04-24 11:07 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\windows\SysWOW64\sqlite3.dll
2014-04-22 12:55 - 2014-04-22 12:55 - 00179402 _____ () C:\Users\Administrator\Desktop\Edwin Hubble Mariner of the Nebulae - Gale E. Christianson - Google Knihy.htm
2014-04-22 12:55 - 2014-04-22 12:55 - 00000000 ____D () C:\Users\Administrator\Desktop\Edwin Hubble Mariner of the Nebulae - Gale E. Christianson - Google Knihy_files
2014-04-21 15:23 - 2014-04-21 15:23 - 00004129 _____ () C:\windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-21 15:23 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-21 15:23 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe
2014-04-21 15:23 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe
2014-04-21 15:23 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe
2014-04-20 17:58 - 2014-04-20 17:45 - 00000426 _____ () C:\AVScanner.ini

==================== One Month Modified Files and Folders =======

2014-05-19 10:42 - 2014-05-19 10:42 - 00000000 ____D () C:\Users\Administrator\Desktop\FRST-OlderVersion
2014-05-19 10:42 - 2014-04-08 16:52 - 00009586 _____ () C:\Users\Administrator\Desktop\FRST.txt
2014-05-19 10:42 - 2014-04-08 16:52 - 00000000 ____D () C:\FRST
2014-05-19 10:42 - 2014-04-08 16:49 - 02067456 _____ (Farbar) C:\Users\Administrator\Desktop\FRST64.exe
2014-05-19 10:41 - 2009-07-14 07:13 - 00786514 _____ () C:\windows\system32\PerfStringBackup.INI
2014-05-19 10:40 - 2012-04-29 17:03 - 00000000 ____D () C:\Users\postgres
2014-05-19 10:40 - 2009-07-14 07:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-05-19 10:39 - 2014-03-23 11:10 - 00017759 _____ () C:\windows\setupact.log
2014-05-19 10:39 - 2012-03-09 16:39 - 02005536 _____ () C:\windows\WindowsUpdate.log
2014-05-19 10:38 - 2012-07-15 11:32 - 00000000 ____D () C:\windows\erdnt
2014-05-19 10:24 - 2014-05-19 10:24 - 00023848 _____ () C:\Users\Administrator\Downloads\cobofix.zip
2014-05-19 10:22 - 2009-07-14 06:45 - 00024656 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-19 10:22 - 2009-07-14 06:45 - 00024656 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-19 10:12 - 2014-05-19 10:12 - 00101800 _____ () C:\cobofix.txt
2014-05-19 10:09 - 2014-05-19 10:09 - 00101800 _____ () C:\ComboFix.txt
2014-05-19 10:00 - 2014-04-08 16:08 - 00006786 _____ () C:\windows\PFRO.log
2014-05-19 10:00 - 2009-07-14 04:34 - 00000215 _____ () C:\windows\system.ini
2014-05-19 09:09 - 2014-05-19 09:09 - 00026203 _____ () C:\Users\Administrator\Downloads\ComboFix.zip
2014-05-18 20:31 - 2012-03-11 20:54 - 00000000 ____D () C:\Program Files (x86)\PokerStars
2014-05-18 18:22 - 2012-03-10 17:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\CrashDumps
2014-05-18 17:56 - 2014-05-18 17:56 - 00192875 _____ () C:\Users\Administrator\Desktop\ComboFix.log
2014-05-18 17:29 - 2012-07-15 11:26 - 05200990 _____ (Swearware) C:\Users\Administrator\Downloads\ComboFix.exe
2014-05-18 17:27 - 2014-05-18 17:26 - 00002040 _____ () C:\Users\Administrator\Desktop\Rkill.txt
2014-05-18 17:23 - 2014-05-18 17:23 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Administrator\Downloads\rkill.com
2014-05-18 15:51 - 2013-01-14 11:08 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\uTorrent
2014-05-18 15:32 - 2014-05-18 15:32 - 00000000 _____ () C:\Users\Administrator\Desktop\Nový textový dokument.txt
2014-05-18 13:07 - 2014-05-18 13:05 - 00055766 _____ () C:\Users\Administrator\Downloads\FRST.txt
2014-05-18 13:06 - 2014-05-18 13:06 - 00112640 _____ (forum.viry.cz) C:\Users\Administrator\Downloads\FRSTLauncher.exe
2014-05-18 13:05 - 2014-05-18 13:04 - 02067456 _____ (Farbar) C:\Users\Administrator\Downloads\FRST64.exe
2014-05-18 12:49 - 2014-05-18 12:49 - 02347384 _____ (ESET) C:\Users\Administrator\Downloads\esetsmartinstaller_sky.exe
2014-05-18 12:19 - 2014-05-18 12:19 - 00000000 ____D () C:\Mozilla
2014-05-18 11:53 - 2014-02-25 15:27 - 00000000 ____D () C:\Users\Administrator\Desktop\RK_Quarantine
2014-05-18 11:36 - 2012-03-09 16:36 - 00000000 ____D () C:\Recovery
2014-05-18 11:16 - 2014-05-13 16:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-18 11:00 - 2014-05-18 11:00 - 00000873 _____ () C:\Users\Administrator\Desktop\µTorrent.lnk
2014-05-18 11:00 - 2013-12-21 18:29 - 00000853 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-05-18 10:45 - 2012-03-10 16:46 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Skype
2014-05-18 08:14 - 2014-03-30 15:27 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\vlc
2014-05-18 07:03 - 2014-05-18 07:03 - 00058936 _____ () C:\Users\Administrator\Desktop\Bn2OYJACAAAIlj1.jpg-large
2014-05-17 09:15 - 2014-05-17 09:15 - 00061628 _____ () C:\Users\Administrator\Desktop\BnyTRbUCIAEF4qS (1).jpg-large
2014-05-17 09:01 - 2014-05-17 09:01 - 00061628 _____ () C:\Users\Administrator\Desktop\BnyTRbUCIAEF4qS.jpg-large
2014-05-16 22:17 - 2014-05-16 22:10 - 20184042 _____ () C:\Users\Administrator\Desktop\Kika.avi
2014-05-16 21:57 - 2012-12-12 21:37 - 00000000 ____D () C:\Users\Administrator\AppData\Local\FullTiltPoker
2014-05-16 21:57 - 2012-12-12 21:37 - 00000000 ____D () C:\Program Files (x86)\Full Tilt Poker
2014-05-16 16:59 - 2014-02-08 00:23 - 00000000 ____D () C:\Users\Administrator\AppData\Local\AuxClient
2014-05-16 15:39 - 2012-02-07 10:23 - 00000000 ____D () C:\Users\Administrator\Desktop\moja hudba
2014-05-16 12:08 - 2014-05-16 12:08 - 00038562 _____ () C:\Users\Administrator\Desktop\BnvCykECAAAOYyi.jpg-large
2014-05-15 18:23 - 2014-05-15 18:23 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Macromedia
2014-05-15 18:15 - 2012-03-11 20:54 - 00000000 ____D () C:\Users\Administrator\AppData\Local\PokerStars
2014-05-15 12:29 - 2014-05-15 12:29 - 00000000 ____D () C:\Users\Administrator\Documents\ipbox
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\UpdatusUser\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\robert\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\postgres\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000984 _____ () C:\Users\Administrator\Desktop\Relook PCEditor.lnk
2014-05-15 12:26 - 2014-05-15 12:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Relook PCEditor 1.2
2014-05-15 12:26 - 2014-05-15 12:26 - 00000000 ____D () C:\Program Files (x86)\Relook PCEditor
2014-05-15 12:26 - 2013-03-04 07:10 - 02229974 _____ (Based on DGStation PCEditor 1.0 by JonDoe ) C:\Users\Administrator\Desktop\Setup_PCEditor_1.2.60.exe
2014-05-15 12:26 - 2012-03-09 14:11 - 00000000 ____D () C:\Users\Administrator
2014-05-15 12:20 - 2012-09-21 15:15 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\GHISLER
2014-05-15 12:10 - 2014-05-15 12:10 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-14 04:08 - 2012-03-09 14:11 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-14 04:08 - 2012-03-09 14:11 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-14 03:55 - 2014-05-14 03:51 - 00000000 ____D () C:\windows\rescache
2014-05-14 03:24 - 2014-05-07 03:01 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-05-14 03:07 - 2012-03-25 17:42 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-14 03:06 - 2013-07-15 03:04 - 00000000 ____D () C:\windows\system32\MRT
2014-05-14 03:03 - 2012-03-13 08:32 - 93223848 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-05-13 21:55 - 2013-01-13 19:40 - 00692400 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-05-13 21:55 - 2013-01-13 19:40 - 00070832 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-13 21:55 - 2013-01-13 19:40 - 00003768 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2014-05-13 20:42 - 2014-03-28 10:29 - 00000000 ____D () C:\Users\Administrator\Desktop\Tibor
2014-05-13 16:38 - 2014-05-13 16:38 - 00001072 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-05-13 16:38 - 2014-05-13 16:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-05-13 16:28 - 2014-05-13 16:28 - 00001165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-13 16:28 - 2014-05-13 16:28 - 00001153 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-13 16:28 - 2012-05-21 16:43 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Mozilla
2014-05-13 06:53 - 2012-03-23 10:06 - 00000000 ____D () C:\Users\Administrator\Desktop\kalypso
2014-05-09 08:14 - 2014-05-14 01:40 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-14 01:40 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-05-07 22:24 - 2012-03-25 20:49 - 00003946 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-07 22:24 - 2012-03-25 20:49 - 00003694 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-07 09:15 - 2013-04-28 11:50 - 00000000 ____D () C:\Users\Administrator\Desktop\Pokerove vyukove videa low stakes
2014-05-07 08:32 - 2014-05-07 08:32 - 00124304 _____ () C:\Users\Administrator\Desktop\Bm-T_uTCIAA5ntq.jpg-large
2014-05-07 07:40 - 2012-03-31 05:27 - 00000000 ____D () C:\Users\Administrator\Documents\My Kindle Content
2014-05-06 06:40 - 2014-05-14 03:07 - 23544320 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-05-06 06:17 - 2014-05-14 03:07 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-05-06 05:25 - 2014-05-14 03:07 - 17382912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-05-06 05:07 - 2014-05-14 03:07 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-05-06 05:00 - 2014-05-14 03:07 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-05-06 04:10 - 2014-05-14 03:07 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-05-05 21:08 - 2014-05-05 21:08 - 00339259 _____ () C:\Users\Administrator\Desktop\Twitter Hledání - slavyansk.htm
2014-05-05 21:08 - 2014-05-05 21:08 - 00000000 ____D () C:\Users\Administrator\Desktop\Twitter Hledání - slavyansk_files
2014-05-02 20:31 - 2014-04-18 10:17 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Spotify
2014-04-30 12:02 - 2012-03-09 17:24 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-04-30 08:18 - 2014-04-30 08:18 - 00000000 __SHD () C:\Users\Administrator\AppData\Local\EmieUserList
2014-04-30 08:18 - 2014-04-30 08:18 - 00000000 __SHD () C:\Users\Administrator\AppData\Local\EmieSiteList
2014-04-30 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\SysWOW64\sk-SK
2014-04-30 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\system32\sk-SK
2014-04-30 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\PolicyDefinitions
2014-04-28 12:21 - 2014-03-20 06:37 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Popcorn-Time
2014-04-28 11:58 - 2014-04-28 11:58 - 00002130 _____ () C:\Users\Public\Desktop\Popcorn-Time.lnk
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2014-04-28 11:58 - 2014-04-28 11:58 - 00000000 ____D () C:\Program Files (x86)\Time4Popcorn
2014-04-27 11:47 - 2012-05-03 12:11 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Apple Computer
2014-04-27 00:53 - 2014-04-27 00:52 - 00000000 ____D () C:\Users\Administrator\AppData\Local\{0DEAFC47-3D2A-4B02-89C5-70FAA7C88FB4}
2014-04-26 11:35 - 2014-04-26 11:35 - 00000117 _____ () C:\Users\Administrator\Downloads\rozhlas_audio (1).pls
2014-04-26 11:28 - 2014-04-26 11:28 - 00000048 _____ () C:\Users\Administrator\Downloads\listen.m3u
2014-04-26 10:11 - 2014-04-26 10:11 - 00017599 _____ () C:\Users\Administrator\Downloads\The_Beatles_-_Abbey_Road.Mp3.torrent
2014-04-26 08:32 - 2014-04-26 08:32 - 00036047 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.catalogue.se.2006.2cd.6vids.cov.192kbps (1).torrent
2014-04-26 08:31 - 2014-04-26 08:31 - 00036047 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.catalogue.se.2006.2cd.6vids.cov.192kbps.torrent
2014-04-26 08:14 - 2014-04-26 08:14 - 00005273 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.things.to.make.and.do.torrent
2014-04-26 08:12 - 2014-04-26 08:12 - 00003611 _____ () C:\Users\Administrator\Downloads\[kickass.to]moloko.statues.torrent
2014-04-26 07:55 - 2014-04-26 07:55 - 00027513 _____ () C:\Users\Administrator\Downloads\[kickass.to]john.mayer.trio.try.torrent
2014-04-26 07:49 - 2014-04-26 07:49 - 00009317 _____ () C:\Users\Administrator\Downloads\[kickass.to]john.mayer.paradise.valley.chattchitto.rg.torrent
2014-04-26 07:34 - 2014-04-26 07:34 - 00028948 _____ () C:\Users\Administrator\Downloads\[kickass.to]tom.petty.wildflowers.192kbps.1994.torrent
2014-04-26 05:52 - 2014-04-26 05:52 - 00019805 _____ () C:\Users\Administrator\Downloads\[kickass.to]the.economist.april.25.2014.pdf.torrent
2014-04-25 16:15 - 2014-04-25 16:15 - 00014626 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e11.hdtv.xvid.asap.eztv.torrent
2014-04-25 16:11 - 2014-04-25 16:11 - 00014607 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e09.hdtv.xvid.fever.eztv.torrent
2014-04-25 16:11 - 2014-04-25 16:11 - 00014589 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e10.hdtv.xvid.asap.eztv.torrent
2014-04-25 16:10 - 2014-04-25 16:10 - 00014607 _____ () C:\Users\Administrator\Downloads\[kickass.to]lights.out.2011.s01e08.hdtv.xvid.fever.eztv.torrent
2014-04-25 16:09 - 2014-04-25 16:09 - 00053603 _____ () C:\Users\Administrator\Downloads\[kickass.to]joe.satriani.flac.discography (1).torrent
2014-04-25 15:43 - 2014-04-25 15:43 - 00006138 _____ () C:\Users\Administrator\Downloads\[kickass.to]the.big.bang.theory.s07e21.hdtv.x264.lol.eztv.torrent
2014-04-25 14:56 - 2014-04-25 14:56 - 00025765 _____ () C:\Users\Administrator\Downloads\[kickass.to]jazz.rosenberg.trio.6.cd.torrent
2014-04-25 14:43 - 2014-04-25 14:43 - 00000000 ____D () C:\Program Files\Bonjour
2014-04-25 14:43 - 2014-04-25 14:43 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-04-25 14:42 - 2014-04-25 14:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-04-25 14:37 - 2014-04-25 14:37 - 00017080 _____ () C:\Users\Administrator\Downloads\[CzT]Paul_McCartney_New_Deluxe_Ed_2013_ (1).torrent
2014-04-25 14:36 - 2014-04-25 14:36 - 00017081 _____ () C:\Users\Administrator\Downloads\[CzT]Paul_McCartney_New_Deluxe_Ed_2013_.torrent
2014-04-25 14:27 - 2014-04-25 14:27 - 00010138 _____ () C:\Users\Administrator\Downloads\[kickass.to]paul.mccartney.memory.almost.full.2007.cd.skidvid.cov.192kbps.torrent
2014-04-25 14:23 - 2014-04-25 14:23 - 00016378 _____ () C:\Users\Administrator\Downloads\[kickass.to]paul.mccartney.chaos.and.creation.in.the.backyard.2005.flac.torrent
2014-04-25 13:02 - 2014-04-25 13:02 - 00000000 ____D () C:\Users\Administrator\Downloads\Dežo-Ursiny-Pevnina-detstva
2014-04-25 13:00 - 2014-04-25 12:58 - 38013508 _____ () C:\Users\Administrator\Downloads\Dežo-Ursiny-Pevnina-detstva.rar
2014-04-24 11:07 - 2014-04-08 18:44 - 00000000 ____D () C:\AdwCleaner
2014-04-22 12:55 - 2014-04-22 12:55 - 00179402 _____ () C:\Users\Administrator\Desktop\Edwin Hubble Mariner of the Nebulae - Gale E. Christianson - Google Knihy.htm
2014-04-22 12:55 - 2014-04-22 12:55 - 00000000 ____D () C:\Users\Administrator\Desktop\Edwin Hubble Mariner of the Nebulae - Gale E. Christianson - Google Knihy_files
2014-04-21 15:24 - 2014-02-01 18:57 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-21 15:23 - 2014-04-21 15:23 - 00004129 _____ () C:\windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-21 15:23 - 2012-05-18 15:41 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-20 17:58 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-20 17:45 - 2014-04-20 17:58 - 00000426 _____ () C:\AVScanner.ini

Files to move or delete:
====================
C:\Users\robert\DTLite4453-0297.exe
C:\Users\robert\install_flash_player_64bit.exe
C:\Users\robert\SkypeSetup.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe
[2014-05-14 01:39] - [2014-03-04 11:43] - 0455168 ____A (Microsoft Corporation) 88AB9B72B4BF3963A0DE0820B4B0B06C

C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-05-19 02:47

==================== End Of Log ============================

#14 Příspěvek od **vyosek** » 19 kvě 2014 13:36

Zkuste tedy chrome nainstalovat znovu a totez se skypem

Lestatos · #15 Příspěvek od **Lestatos** » 19 kvě 2014 14:53

ani chrom ani skype sa mi nedari naisntalovat, pri skype my napriklad vypisuje hlasku " Antivírusový softvér pri skenovaní tohto súboru neočakávane zlyhal." nehcápem vobec aky antivirus zlyhal. Pri pokuse stiahnut chrome mi vypisuje hlasku "ze ku skutocnym strankama google.com sa neda pripojit. Som uplne bezradny.

VIRY.CZ

prosim o kontrolu logu

prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu