Tady je log z FRTS ... mimochodem, na žádnem souboru, právě že mi to pořád ukazuje "Našla se infiltrace" Objekt: ta stránka co sem postnul dříve ("
http://utils.cdneurope.com/js/mo.js") ... Ještě vám zde přikládám přílohu Addition.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Milan (administrator) on MILAN-PC on 01-04-2014 16:18:05
Running from C:\Users\Milan\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
() C:\Users\Milan\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Milan\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
(forum.viry.cz) C:\Users\Milan\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [5617432 2013-08-19] (ESET)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1808168 2009-06-18] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10134560 2010-03-23] (Realtek Semiconductor)
HKLM\...\Run: [mwlDaemon] - C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-02-01] (Egis Technology Inc.)
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [860192 2010-02-05] (Acer Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-02-26] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [337264 2010-02-01] (Egis Technology Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1300560 2010-03-03] (Dritek System Inc.)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2009-12-24] (Intel Corporation)
HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201512 2009-12-25] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [401192 2009-12-25] (Egis Technology Inc.)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [260608 2010-03-09] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-330137112-1029790119-1089304535-1001\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\S-1-5-21-330137112-1029790119-1089304535-1001\...\Run: [MKLOL] - C:\Program Files (x86)\MKJogo\MKLOL\MK.exe [754888 2014-02-17] (MK)
HKU\S-1-5-21-330137112-1029790119-1089304535-1001\...\Run: [cz.seznam.software.szndesktop] - C:\Users\Milan\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-330137112-1029790119-1089304535-1001\...\Run: [cz.seznam.software.autoupdate] - C:\Users\Milan\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-330137112-1029790119-1089304535-1001\...\MountPoints2: {c66f1350-caa9-11e2-b88c-88ae1d09f195} - E:\.autorun\autorun.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://homepage.acer.com/rdr.aspx?b=ACA ... 5t46k2m848
SearchScopes: HKLM-x32 - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
http://www.google.com/search?sourceid=i ... lz=1I7ACAW
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
http://www.google.com/search?sourceid=i ... lz=1I7ACAW
SearchScopes: HKCU - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
http://www.google.com/search?sourceid=i ... AW_csCZ528
SearchScopes: HKCU - {0DA46B73-2566-4128-B362-3E2F894814FB} URL =
http://www.mapy.cz/?query={searchTerms} ... arch_16194
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL =
http://www.delta-search.com/?q={searchT ... 9&tsp=5024
SearchScopes: HKCU - {39FF9B58-58FD-474D-A91F-6CA42364FC73} URL =
http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKCU - {3F3DD15F-DC17-4594-99CD-E3CDE05D5364} URL =
http://encyklopedie.seznam.cz/search?q= ... arch_16194
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
http://www.google.com/search?sourceid=i ... AW_csCZ528
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {71EB6956-D2F1-4869-B00E-E8547F0458A5} URL =
http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKCU - {8B7B2A1E-52FE-486F-AADF-A7889E50E002} URL =
http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKCU - {9B87AAD1-8DE6-496C-9F3D-EEC3E99CBDB9} URL =
http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
SearchScopes: HKCU - {BAE32332-AA41-4F44-A4AE-C002E9264824} URL =
http://search.seznam.cz/?q={searchTerms ... arch_16194
SearchScopes: HKCU - {C2F013F9-47D7-470E-9676-696D22ABABCA} URL =
http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKCU - {C84967D3-2668-470B-BA61-8C689EAC543A} URL =
http://www.novinky.cz/hledej?w={searchT ... arch_16194
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 178.72.193.142 178.72.195.195
FireFox:
========
FF ProfilePath: C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\uvng4vs6.default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameEU.dll (Nexon)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @t.garena.com/garenatalk - C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Milan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Extension: Site Finder - C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\uvng4vs6.default\Extensions\
sitefinder@sitefinder.com [2014-03-22]
FF Extension: Adblock Plus - C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\uvng4vs6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-18]
FF HKLM-x32\...\Firefox\Extensions: [
xz123@ya456.com] - C:\Program Files (x86)\BetterSurf\ff
FF HKLM-x32\...\Thunderbird\Extensions: [
msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF HKLM-x32\...\Thunderbird\Extensions: [
eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-03-28]
==================== Services (Whitelisted) =================
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2013-12-15] (BitRaider, LLC)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337240 2013-08-19] (ESET)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-26] (LogMeIn, Inc.)
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [62218696 2012-06-29] (Microsoft Corporation)
R2 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-02-01] (Egis Technology Inc.)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4573336 2013-04-07] (INCA Internet Co., Ltd.)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [441288 2012-06-29] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-08-25] ()
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2013-12-15] (BitRaider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-06-02] (DT Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-08-20] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-08-26] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-08-20] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-08-20] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-08-20] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-08-20] (ESET)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-08-25] ()
S4 RsFx0153; C:\Windows\System32\DRIVERS\RsFx0153.sys [321992 2012-06-29] (Microsoft Corporation)
S3 RSUSBSTOR; C:\Windows\SysWOW64\Drivers\RtsUStor.sys [225280 2009-09-02] (Realtek Semiconductor Corp.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 GGSAFERDriver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-04-01 16:18 - 2014-04-01 16:19 - 00016061 _____ () C:\Users\Milan\Desktop\FRST.txt
2014-04-01 16:15 - 2014-04-01 16:15 - 00112640 _____ (forum.viry.cz) C:\Users\Milan\Desktop\FRSTLauncher.exe
2014-04-01 16:14 - 2014-04-01 16:18 - 00000000 ____D () C:\FRST
2014-04-01 16:13 - 2014-04-01 16:14 - 02157056 _____ (Farbar) C:\Users\Milan\Desktop\FRST64.exe
2014-04-01 15:36 - 2014-04-01 15:36 - 00000056 _____ () C:\Windows\setupact.log
2014-04-01 15:36 - 2014-04-01 15:36 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-31 22:26 - 2014-03-31 22:27 - 00000079 _____ () C:\Users\Milan\Desktop\vir.txt
2014-03-31 21:11 - 2014-03-31 21:11 - 00000000 ____D () C:\ProgramData\Age of Empires 3
2014-03-31 19:34 - 2014-03-31 19:34 - 00012735 _____ () C:\Users\Milan\Desktop\[CzT]Age_Of_Empires_3_Kompletni_edice_CZ.torrent
2014-03-31 19:07 - 2014-03-31 19:07 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\My The Lord of the Rings, The Rise of the Witch-king Files
2014-03-31 19:05 - 2014-03-31 19:05 - 00001629 _____ () C:\Users\Public\Desktop\The Lord of the Rings, The Rise of the Witch-king.lnk
2014-03-31 18:45 - 2014-03-31 18:45 - 00003184 _____ () C:\Windows\System32\Tasks\{079F848D-34FD-4080-8ADE-D4751E09C646}
2014-03-31 18:38 - 2014-03-31 19:23 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\My Battle for Middle-earth(tm) II Files
2014-03-31 18:35 - 2014-03-31 18:35 - 00001511 _____ () C:\Users\Public\Desktop\The Battle for Middle-earth (tm) II.lnk
2014-03-30 20:55 - 2014-03-30 20:55 - 00003316 _____ () C:\Windows\System32\Tasks\{324E37C0-776D-40BB-B5D1-593BF0D298C3}
2014-03-30 19:34 - 2014-03-30 19:34 - 00000000 ____D () C:\Users\Milan\AppData\Local\Electronic Arts
2014-03-28 23:09 - 2014-03-28 23:09 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\ESET
2014-03-28 23:09 - 2014-03-28 23:09 - 00000000 ____D () C:\Users\Milan\AppData\Local\ESET
2014-03-28 22:55 - 2014-03-28 22:55 - 00000000 ____D () C:\ProgramData\ESET
2014-03-28 22:55 - 2014-03-28 22:55 - 00000000 ____D () C:\Program Files\ESET
2014-03-28 20:17 - 2014-03-31 22:32 - 00000000 ____D () C:\Users\Milan\Documents\TrackMania
2014-03-28 18:35 - 2014-03-28 18:35 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\Unity
2014-03-28 18:33 - 2014-03-28 18:33 - 00000000 ____D () C:\Users\Milan\AppData\Local\Unity
2014-03-26 18:21 - 2014-03-29 00:47 - 00000000 ____D () C:\Users\Milan\Desktop\$
2014-03-25 16:46 - 2014-03-25 16:46 - 00000700 _____ () C:\Users\Milan\Desktop\FlatOut2.lnk
2014-03-25 16:27 - 2014-03-25 16:27 - 00003050 _____ () C:\Windows\System32\Tasks\{1C555A98-377E-459A-8674-86DAA32156CD}
2014-03-24 21:12 - 2014-03-24 21:12 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-03-24 20:02 - 2014-03-24 20:02 - 00000000 ____D () C:\Users\Milan\AppData\Local\NFS Underground 2
2014-03-24 18:50 - 2014-03-24 18:50 - 00003226 _____ () C:\Windows\System32\Tasks\{18240EF2-B80A-43A1-8076-7B23461E57DC}
2014-03-23 21:58 - 2014-03-23 21:58 - 00003032 _____ () C:\Windows\System32\Tasks\{450DCDB0-471A-43F2-A9EF-15FD9E5B854C}
2014-03-23 20:11 - 2014-03-23 20:11 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-03-18 20:13 - 2014-03-18 20:27 - 00000000 ____D () C:\Users\Milan\AppData\Local\Temporary Projects
2014-03-17 21:37 - 2014-03-17 21:37 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-17 21:37 - 2014-03-17 21:37 - 00000000 ____D () C:\Users\Milan\AppData\Local\Skype
2014-03-16 18:01 - 2014-03-16 18:01 - 00000029 _____ () C:\Users\Milan\Desktop\Vše o wowku.txt
2014-03-15 17:26 - 2014-03-15 17:26 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\digipen
2014-03-15 17:26 - 2014-03-15 17:26 - 00000000 ____D () C:\Users\Milan\AppData\Local\digipen
2014-03-14 18:50 - 2014-03-14 18:50 - 00000000 ____D () C:\Users\Milan\AppData\Local\DOSBox
2014-03-14 18:48 - 2014-03-14 18:53 - 00001804 _____ () C:\Users\Milan\Desktop\Warcraft II.lnk
2014-03-14 18:47 - 2014-03-14 18:47 - 00001708 _____ () C:\Users\Public\Desktop\DOSBox 0.74.lnk
2014-03-13 23:39 - 2014-01-29 04:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-13 23:39 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-13 23:39 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-13 23:38 - 2014-03-01 08:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-13 23:38 - 2014-03-01 07:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-13 23:38 - 2014-03-01 07:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-13 23:38 - 2014-03-01 06:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-13 23:38 - 2014-03-01 06:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-13 23:38 - 2014-03-01 06:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-13 23:38 - 2014-03-01 06:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-13 23:38 - 2014-03-01 06:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-13 23:38 - 2014-03-01 06:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-13 23:38 - 2014-03-01 06:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-13 23:38 - 2014-03-01 06:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-13 23:38 - 2014-03-01 06:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-13 23:38 - 2014-03-01 06:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-13 23:38 - 2014-03-01 06:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-13 23:38 - 2014-03-01 06:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-13 23:38 - 2014-03-01 06:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-13 23:38 - 2014-03-01 06:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-13 23:38 - 2014-03-01 05:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-13 23:38 - 2014-03-01 05:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-13 23:38 - 2014-03-01 05:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-13 23:38 - 2014-03-01 05:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-13 23:38 - 2014-03-01 05:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-13 23:38 - 2014-03-01 05:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-13 23:38 - 2014-03-01 05:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-13 23:38 - 2014-03-01 05:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-13 23:38 - 2014-03-01 05:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-13 23:38 - 2014-03-01 05:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-13 23:38 - 2014-03-01 05:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-13 23:38 - 2014-03-01 05:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-13 23:38 - 2014-03-01 05:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-13 23:38 - 2014-03-01 05:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-13 23:38 - 2014-03-01 05:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-13 23:38 - 2014-03-01 05:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-13 23:38 - 2014-03-01 05:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-13 23:38 - 2014-03-01 04:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-13 23:38 - 2014-03-01 04:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-13 23:38 - 2014-03-01 04:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-13 23:38 - 2014-03-01 04:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-13 23:38 - 2014-03-01 04:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-13 23:38 - 2014-03-01 04:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-13 23:38 - 2014-02-07 03:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-13 23:36 - 2014-02-04 04:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-13 23:36 - 2014-02-04 04:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-13 23:36 - 2014-02-04 04:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-13 23:36 - 2014-02-04 04:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-09 12:41 - 2014-03-09 12:45 - 00103736 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-03-09 12:41 - 2014-03-09 12:41 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-03-09 12:41 - 2014-03-09 12:41 - 00000000 ____D () C:\Users\Milan\Documents\NFS ProStreet
2014-03-08 22:12 - 2014-03-08 22:12 - 00000000 ____D () C:\Program Files (x86)\SimilarSites
2014-03-08 22:11 - 2014-03-08 22:11 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\SimilarSites
2014-03-06 21:39 - 2014-03-06 21:39 - 00000040 _____ () C:\Users\Milan\Desktop\herci.txt
2014-03-02 23:48 - 2014-03-17 21:35 - 00000000 ____D () C:\Users\Milan\Desktop\hearthstone
==================== One Month Modified Files and Folders =======
2014-04-01 16:19 - 2014-04-01 16:18 - 00016061 _____ () C:\Users\Milan\Desktop\FRST.txt
2014-04-01 16:18 - 2014-04-01 16:14 - 00000000 ____D () C:\FRST
2014-04-01 16:17 - 2013-07-22 18:39 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-01 16:15 - 2014-04-01 16:15 - 00112640 _____ (forum.viry.cz) C:\Users\Milan\Desktop\FRSTLauncher.exe
2014-04-01 16:15 - 2013-03-17 22:11 - 00000000 ____D () C:\Users\Milan\Desktop\Stažené
2014-04-01 16:14 - 2014-04-01 16:13 - 02157056 _____ (Farbar) C:\Users\Milan\Desktop\FRST64.exe
2014-04-01 15:44 - 2009-07-14 06:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-01 15:44 - 2009-07-14 06:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-01 15:41 - 2013-09-01 01:58 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\Seznam.cz
2014-04-01 15:41 - 2013-03-18 02:27 - 00743660 _____ () C:\Windows\system32\perfh005.dat
2014-04-01 15:41 - 2013-03-18 02:27 - 00171616 _____ () C:\Windows\system32\perfc005.dat
2014-04-01 15:41 - 2009-07-14 07:13 - 01797238 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-01 15:39 - 2013-03-17 20:25 - 01492370 _____ () C:\Windows\WindowsUpdate.log
2014-04-01 15:37 - 2013-08-22 22:19 - 00000000 ____D () C:\Users\Milan\AppData\Local\LogMeIn Hamachi
2014-04-01 15:36 - 2014-04-01 15:36 - 00000056 _____ () C:\Windows\setupact.log
2014-04-01 15:36 - 2014-04-01 15:36 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-01 15:36 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-01 00:01 - 2013-03-19 01:30 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\uTorrent
2014-03-31 23:31 - 2013-11-11 20:46 - 00000000 ____D () C:\Hry
2014-03-31 23:13 - 2013-03-18 18:41 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\Skype
2014-03-31 22:37 - 2013-06-02 13:42 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\DAEMON Tools Lite
2014-03-31 22:32 - 2014-03-28 20:17 - 00000000 ____D () C:\Users\Milan\Documents\TrackMania
2014-03-31 22:29 - 2014-01-24 00:13 - 00000000 ____D () C:\Users\Milan\AppData\Local\Battle.net
2014-03-31 22:27 - 2014-03-31 22:26 - 00000079 _____ () C:\Users\Milan\Desktop\vir.txt
2014-03-31 21:41 - 2013-04-28 21:17 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\AIMP3
2014-03-31 21:40 - 2013-08-24 22:47 - 00000000 ____D () C:\ProgramData\TrackMania
2014-03-31 21:20 - 2013-07-20 12:49 - 00000000 ____D () C:\Users\Milan\Desktop\Games
2014-03-31 21:11 - 2014-03-31 21:11 - 00000000 ____D () C:\ProgramData\Age of Empires 3
2014-03-31 21:11 - 2014-02-17 18:18 - 00000000 ____D () C:\Users\Milan\Documents\My Games
2014-03-31 19:34 - 2014-03-31 19:34 - 00012735 _____ () C:\Users\Milan\Desktop\[CzT]Age_Of_Empires_3_Kompletni_edice_CZ.torrent
2014-03-31 19:23 - 2014-03-31 18:38 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\My Battle for Middle-earth(tm) II Files
2014-03-31 19:07 - 2014-03-31 19:07 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\My The Lord of the Rings, The Rise of the Witch-king Files
2014-03-31 19:05 - 2014-03-31 19:05 - 00001629 _____ () C:\Users\Public\Desktop\The Lord of the Rings, The Rise of the Witch-king.lnk
2014-03-31 18:45 - 2014-03-31 18:45 - 00003184 _____ () C:\Windows\System32\Tasks\{079F848D-34FD-4080-8ADE-D4751E09C646}
2014-03-31 18:38 - 2013-06-02 18:50 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-03-31 18:35 - 2014-03-31 18:35 - 00001511 _____ () C:\Users\Public\Desktop\The Battle for Middle-earth (tm) II.lnk
2014-03-31 03:01 - 2010-05-28 11:59 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-30 21:26 - 2013-10-03 18:46 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\File Scout
2014-03-30 20:55 - 2014-03-30 20:55 - 00003316 _____ () C:\Windows\System32\Tasks\{324E37C0-776D-40BB-B5D1-593BF0D298C3}
2014-03-30 20:17 - 2013-03-17 20:30 - 00000000 ____D () C:\Users\Milan
2014-03-30 19:54 - 2014-02-09 01:34 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\vlc
2014-03-30 19:34 - 2014-03-30 19:34 - 00000000 ____D () C:\Users\Milan\AppData\Local\Electronic Arts
2014-03-30 18:51 - 2013-07-20 13:01 - 00000000 ____D () C:\Program Files (x86)\Electronic Arts
2014-03-30 18:51 - 2010-05-28 11:45 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-30 13:30 - 2013-03-17 20:31 - 00088000 _____ () C:\Users\Milan\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-30 13:29 - 2009-07-14 06:45 - 00368248 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-30 13:27 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-03-29 01:19 - 2013-03-21 18:04 - 00000000 ____D () C:\Users\Milan\Desktop\Prezentace
2014-03-29 00:47 - 2014-03-26 18:21 - 00000000 ____D () C:\Users\Milan\Desktop\$
2014-03-28 23:46 - 2013-09-01 01:58 - 00000000 ____D () C:\Users\Milan\AppData\Local\SwvUpdater
2014-03-28 23:18 - 2013-07-22 18:39 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-28 23:18 - 2013-03-18 23:35 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-28 23:18 - 2013-03-18 23:35 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-28 23:12 - 2013-12-08 18:01 - 00000000 ____D () C:\Windows\pss
2014-03-28 23:09 - 2014-03-28 23:09 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\ESET
2014-03-28 23:09 - 2014-03-28 23:09 - 00000000 ____D () C:\Users\Milan\AppData\Local\ESET
2014-03-28 22:55 - 2014-03-28 22:55 - 00000000 ____D () C:\ProgramData\ESET
2014-03-28 22:55 - 2014-03-28 22:55 - 00000000 ____D () C:\Program Files\ESET
2014-03-28 22:35 - 2013-03-17 21:57 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-03-28 22:35 - 2013-03-17 21:57 - 00000000 ____D () C:\Program Files\AVAST Software
2014-03-28 22:34 - 2013-03-17 21:58 - 00000000 _____ () C:\Windows\SysWOW64\config.nt
2014-03-28 22:24 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-03-28 19:26 - 2013-03-17 21:58 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-03-28 18:35 - 2014-03-28 18:35 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\Unity
2014-03-28 18:33 - 2014-03-28 18:33 - 00000000 ____D () C:\Users\Milan\AppData\Local\Unity
2014-03-27 22:49 - 2013-03-17 21:53 - 00000000 ___RD () C:\Users\Milan\Desktop\Programy
2014-03-27 20:26 - 2013-11-17 14:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-26 23:11 - 2013-04-28 21:17 - 00000000 ____D () C:\Program Files (x86)\AIMP3
2014-03-25 16:46 - 2014-03-25 16:46 - 00000700 _____ () C:\Users\Milan\Desktop\FlatOut2.lnk
2014-03-25 16:27 - 2014-03-25 16:27 - 00003050 _____ () C:\Windows\System32\Tasks\{1C555A98-377E-459A-8674-86DAA32156CD}
2014-03-24 21:12 - 2014-03-24 21:12 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-03-24 20:02 - 2014-03-24 20:02 - 00000000 ____D () C:\Users\Milan\AppData\Local\NFS Underground 2
2014-03-24 18:50 - 2014-03-24 18:50 - 00003226 _____ () C:\Windows\System32\Tasks\{18240EF2-B80A-43A1-8076-7B23461E57DC}
2014-03-23 21:58 - 2014-03-23 21:58 - 00003032 _____ () C:\Windows\System32\Tasks\{450DCDB0-471A-43F2-A9EF-15FD9E5B854C}
2014-03-23 20:11 - 2014-03-23 20:11 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-03-23 13:10 - 2013-08-23 12:30 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2014-03-22 21:53 - 2013-08-17 15:49 - 00000291 _____ () C:\Windows\wininit.ini
2014-03-22 00:19 - 2014-01-24 00:13 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-03-20 17:26 - 2014-02-18 18:59 - 00000049 _____ () C:\Users\Milan\Desktop\wow učet twinstar.txt
2014-03-20 02:02 - 2013-07-22 19:05 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-20 01:58 - 2013-03-20 19:07 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-19 17:58 - 2013-08-17 15:49 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-03-18 21:02 - 2013-09-12 20:41 - 00000000 ____D () C:\Users\Milan\Documents\Visual Studio 2010
2014-03-18 20:27 - 2014-03-18 20:13 - 00000000 ____D () C:\Users\Milan\AppData\Local\Temporary Projects
2014-03-17 21:37 - 2014-03-17 21:37 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-17 21:37 - 2014-03-17 21:37 - 00000000 ____D () C:\Users\Milan\AppData\Local\Skype
2014-03-17 21:37 - 2013-03-18 18:40 - 00000000 ____D () C:\ProgramData\Skype
2014-03-17 21:35 - 2014-03-02 23:48 - 00000000 ____D () C:\Users\Milan\Desktop\hearthstone
2014-03-17 18:21 - 2014-01-24 00:19 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-03-17 03:58 - 2013-04-09 18:18 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-03-16 18:01 - 2014-03-16 18:01 - 00000029 _____ () C:\Users\Milan\Desktop\Vše o wowku.txt
2014-03-15 17:26 - 2014-03-15 17:26 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\digipen
2014-03-15 17:26 - 2014-03-15 17:26 - 00000000 ____D () C:\Users\Milan\AppData\Local\digipen
2014-03-14 21:39 - 2013-08-01 13:29 - 00000000 ____D () C:\Users\Milan\Documents\FIFA 13
2014-03-14 18:53 - 2014-03-14 18:48 - 00001804 _____ () C:\Users\Milan\Desktop\Warcraft II.lnk
2014-03-14 18:50 - 2014-03-14 18:50 - 00000000 ____D () C:\Users\Milan\AppData\Local\DOSBox
2014-03-14 18:47 - 2014-03-14 18:47 - 00001708 _____ () C:\Users\Public\Desktop\DOSBox 0.74.lnk
2014-03-14 18:07 - 2013-03-18 20:10 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-14 18:07 - 2013-03-18 20:10 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-03-13 21:00 - 2013-03-19 18:17 - 00000000 ____D () C:\Users\Milan\AppData\Local\Adobe
2014-03-12 22:17 - 2013-03-17 21:22 - 00000000 ____D () C:\Program Files (x86)\Directx
2014-03-09 12:45 - 2014-03-09 12:41 - 00103736 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-03-09 12:41 - 2014-03-09 12:41 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-03-09 12:41 - 2014-03-09 12:41 - 00000000 ____D () C:\Users\Milan\Documents\NFS ProStreet
2014-03-09 12:41 - 2013-04-14 12:36 - 00000000 ____D () C:\Users\Milan\AppData\Local\PunkBuster
2014-03-08 22:12 - 2014-03-08 22:12 - 00000000 ____D () C:\Program Files (x86)\SimilarSites
2014-03-08 22:11 - 2014-03-08 22:11 - 00000000 ____D () C:\Users\Milan\AppData\Roaming\SimilarSites
2014-03-08 00:50 - 2013-08-17 15:49 - 00000000 ____D () C:\ProgramData\Origin
2014-03-06 21:39 - 2014-03-06 21:39 - 00000040 _____ () C:\Users\Milan\Desktop\herci.txt
2014-03-05 16:49 - 2009-07-14 07:08 - 00032638 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-03 17:42 - 2013-08-01 22:31 - 00000000 ____D () C:\Users\Milan\Documents\i68Fifa13
Some content of TEMP:
====================
C:\Users\Milan\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Milan\AppData\Local\Temp\EAInstall.dll
C:\Users\Milan\AppData\Local\Temp\eauninstall.exe
C:\Users\Milan\AppData\Local\Temp\The Battle for Middle-earth_uninst.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
Image Resizer for Windows (64 bit) (Version: 3.0.4802.35565 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Milan\Desktop" je 139312 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
vůbec .. možná vám pomůže tohle ... v karanténě jsou zakázané dvě stránky, ale jen jedna z toho je pořád blokována: "http://untils.cdneurope.com/js/mo.js" ... Vůbec si nevím rady, google mi taky moc nepomohl.
, pro začátek udělejte log z tohoto programu a vložte zde
Spusťte combofix podle tohoto návodu
Přispějete na provoz fóra?