Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Pomalé PC + nejde spustit žádný soubor

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Ryan33
Návštěvník
Návštěvník
Příspěvky: 19
Registrován: 20 čer 2014 10:10

Pomalé PC + nejde spustit žádný soubor

#1 Příspěvek od Ryan33 »

Zdravim,

mam problem v notebooku s nejakou haveti. Zacalo to tak, ze se mi do vsech prohlizecu nainstaloval addon, ktery mi vsude hazel bannery. V kazdem prohlizeci se jmenoval trochu jinak a i kdyz jsem ho nasel a smazal, nainstaloval se sam znova. V chrome se jmenoval tusim, ze "save on!" nebo nejak podobne. Uz v minulosti jsem mel problem s podobnymi aplikacemi, ale vzdycky pomohlo odinstalovani.

Reklama ale nebyla jedina vec. Po chvili se zacalo zpomalovat nacitani stranek, potom cely pocitac a nakonec uz neslo vubec nic spustit. V pocitaci muzu prochazet vicemene vse, ale kdyz chci spustit prohlizec, nebo jakykoliv program, tak mam smulu. Vse se jakoby dlouho nacita ale nic se nespusti, takze pocitac pak musim restartovat. Nemuzu tedy spustit antivir, ani combofix, nic podobneho. Nejde ani odinstalovat zadnou aplikaci.

Spustil jsem notebook v nouzovem rezimu, zalohoval data a zkousel nainstalovat ruzne antiviry. Vetsina z nich chtela ale pripojeni k internetu. V nouzovem rezimu to neslo a v normalni rezimu sem zase nemohl spustit zadnou aplikaci.

Podarilo se mi spustit v nouzovem rezimu zakladni verzi od AVG, ktery par haveti nasel a odstranil, ale problem pretrvava.

Jeste jsem si vzpomnel, ze mi driv v podobnych situacich pomohlo vratit system o par dni zpatky, nez se problemy objevily. To bohuzel take nejde, i kdyz jsem se k tomu proklikal, tak zadny z bodu obnoveni nefungoval.

Ma nekdo napad co s tim, nebo pomuze jenom reinstal windows?
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Pomalé PC + nejde spustit žádný soubor

#2 Příspěvek od vyosek »

Zdravim :)

:arrow: Zkuste FRST dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=24&t=130783
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Ryan33
Návštěvník
Návštěvník
Příspěvky: 19
Registrován: 20 čer 2014 10:10

Re: Pomalé PC + nejde spustit žádný soubor

#3 Příspěvek od Ryan33 »

Díky za rychlou odpověď. Postupoval jsem podle návodu a šlo to. Níže posílám log ze souboru FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-06-2014
Ran by Jarka (administrator) on RYAN on 20-06-2014 17:29:43
Running from G:\
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Safe Mode (minimal)

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint\Apoint.exe [212480 2010-09-15] (Alps Electric Co., Ltd.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10775584 2010-09-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2040352 2010-09-28] (Realtek Semiconductor)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [102400 2010-09-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-03] (Intel Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [1601856 2014-05-23] (IObit)
HKU\S-1-5-21-3004848830-2071332093-2801358294-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3004848830-2071332093-2801358294-1000\...\MountPoints2: {65cc19af-c88f-11e3-8874-c0cb38fa1b86} - F:\PlayDiskStart.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Startup: C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

SearchScopes: HKCU - {F562D96D-088C-441D-80D3-6F3F892640E2} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: No Name - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - No File
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Ads Removal - {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} - C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll (Adblock)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Ads Removal - C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default\Extensions\adremoveext@adremoveext.net [2014-06-20]
FF Extension: savee on - C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default\Extensions\dg-eaiue@laluyaaiuyy.com [2014-06-17]
FF Extension: sAve on - C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default\Extensions\kbgua3e@umqjk-rpc.co.uk [2014-06-17]

Chrome:
=======
CHR HomePage: hxxp://www.google.cz/
CHR Extension: (Disk Google) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-01]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-05-14]
CHR Extension: (YouTube) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-01]
CHR Extension: (Vyhledávání Google) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-01]
CHR Extension: (Session Buddy) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2014-05-14]
CHR Extension: (ANNO Online) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\edlfafigoeaoafhcodgjgagjpibckpmk [2014-05-14]
CHR Extension: (Wunderlist - To-do and Task list) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjliknjliaohjgjajlgolhijphojjdkc [2014-05-14]
CHR Extension: (Ads Removal) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fopdddcinljmpmioaklghcalngfhbaen [2014-06-19]
CHR Extension: (Vzdálená plocha Chrome) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2014-06-03]
CHR Extension: (Google Keep) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2014-05-14]
CHR Extension: (savee on) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm [2014-06-16]
CHR Extension: (Peněženka Google) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-01]
CHR Extension: (Neat Bookmarks) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnancliccjabjjmipbpjkfbijifaainp [2014-05-14]
CHR Extension: (sAve on) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee [2014-06-16]
CHR Extension: (Weather Underground) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjejbgheonogbpfkkjigbmahaljipoej [2014-05-14]
CHR Extension: (Gmail) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-01]
CHR Extension: (RSS Feed Reader) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2014-03-19]
CHR Extension: (savee on) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm\2.14 [2014-06-16]
CHR Extension: (sAve on) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee\2.14 [2014-06-16]
CHR HKLM-x32\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Users\Jarka\AppData\Local\Torch\Plugins\TorchPlugin.crx [2014-06-16]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

S2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\35.0.1916.52\remoting_host.exe [51016 2014-04-17] (Google Inc.)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [342336 2014-05-15] (IObit)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
S2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [259192 2011-01-29] (Sony Corporation)
S2 SpyHunter 4 Service; C:\Program Files (x86)\Enigma Software Group\SpyHunter\SH4Service.exe [770432 2013-06-27] (Enigma Software Group USA, LLC.)
S2 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [836608 2010-06-08] (Sony Corporation) [File not signed]
S3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1286784 2012-10-26] (Sony Corporation)
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-04-18] ()
S3 Axtmvflt; C:\Windows\System32\DRIVERS\Axtmvflt.sys [6144 2007-03-26] (Axesstel)
S3 Axtmvmdm; C:\Windows\System32\DRIVERS\Axtmvmdm.sys [54272 2007-03-26] (Axesstel)
S3 Axtmvprt; C:\Windows\System32\Drivers\Axtmvprt.sys [52224 2007-03-26] (Axesstel)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-04-20] (Disc Soft Ltd)
S3 esgiguard; C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys [13088 2011-03-02] ()
S3 EsgScanner; C:\Windows\SysWOW64\DRIVERS\EsgScanner.sys [19984 2012-06-22] ()
S3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-04-18] ()
S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
S2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
S0 prohlp02; C:\Windows\SysWOW64\drivers\prohlp02.sys [62720 2003-10-10] (Protection Technology) [File not signed]
S0 prosync1; C:\Windows\SysWOW64\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology) [File not signed]
S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2013-11-19] (IObit.com)
S3 SaiK0621; C:\Windows\System32\DRIVERS\SaiK0621.sys [131584 2008-10-22] (Saitek)
S0 sfhlp01; C:\Windows\SysWOW64\drivers\sfhlp01.sys [4832 2003-09-06] (Protection Technology) [File not signed]
S3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-11-19] (IObit.com)
S1 prodrv06; \SystemRoot\System32\drivers\prodrv06.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-20 17:29 - 2014-06-20 17:29 - 00000000 ____D () C:\FRST
2014-06-19 23:40 - 2014-06-19 23:47 - 00000000 ____D () C:\Qoobox
2014-06-19 23:39 - 2014-06-19 23:39 - 00000000 ____D () C:\Windows\erdnt
2014-06-19 15:33 - 2014-06-19 17:33 - 00097324 _____ () C:\Users\Jarka\Desktop\avgrep.txt
2014-06-19 15:25 - 2014-06-19 15:25 - 00000010 _____ () C:\Users\Jarka\Desktop\brambory.txt
2014-06-19 15:23 - 2014-06-19 15:23 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\TuneUp Software
2014-06-19 15:21 - 2014-06-19 23:49 - 00000000 ____D () C:\ProgramData\MFAData
2014-06-19 15:21 - 2014-06-19 15:21 - 00000000 ____D () C:\Users\Jarka\AppData\Local\MFAData
2014-06-19 14:49 - 2014-06-19 14:49 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\optlhzur.sys
2014-06-19 14:36 - 2014-06-19 14:36 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\vrncxqjj.sys
2014-06-19 14:36 - 2014-06-19 14:36 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\ururcgmo.sys
2014-06-19 14:35 - 2014-06-19 14:35 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-19 12:55 - 2014-06-19 12:55 - 00003408 ____N () C:\bootsqm.dat
2014-06-19 02:38 - 2014-06-19 02:39 - 00000000 ____D () C:\ProgramData\IObit
2014-06-19 02:38 - 2014-06-19 02:38 - 00001177 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2014-06-19 02:38 - 2014-06-19 02:38 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\IObit
2014-06-19 02:38 - 2014-06-19 02:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2014-06-19 02:38 - 2014-06-19 02:38 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-06-19 01:58 - 2014-06-19 02:41 - 00002914 _____ () C:\Users\Jarka\Desktop\score-hry cz.txt
2014-06-19 00:46 - 2014-06-19 00:46 - 00929416 _____ (CNET Download.com) C:\Users\Jarka\Downloads\cbsidlm-cbsi188-Lark_AntiSpyware-ORG-10969376.exe
2014-06-19 00:40 - 2014-06-19 00:41 - 27053144 _____ (IObit ) C:\Users\Jarka\Downloads\IObit-Malware-Figher-Setup.exe
2014-06-19 00:03 - 2014-06-19 00:33 - 00001180 _____ () C:\Users\Jarka\Desktop\rgerge.txt
2014-06-18 22:30 - 2014-06-19 00:03 - 00000725 _____ () C:\Users\Jarka\Desktop\clanky.txt
2014-06-18 22:30 - 2014-06-18 22:30 - 00000000 _____ () C:\autoexec.bat
2014-06-18 22:29 - 2014-06-18 22:29 - 00003330 _____ () C:\Windows\System32\Tasks\SpyHunter4Startup
2014-06-18 22:29 - 2014-06-18 22:29 - 00002288 _____ () C:\Users\Jarka\Desktop\SpyHunter.lnk
2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\sh4ldr
2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\Program Files (x86)\Enigma Software Group
2014-06-18 22:27 - 2014-06-18 22:29 - 00000000 ____D () C:\Windows\027B5748C40941FE949B7B81A8304EF4.TMP
2014-06-18 22:25 - 2014-06-18 22:25 - 00000000 ____D () C:\Users\Jarka\Desktop\pen tricks
2014-06-18 21:25 - 2014-06-18 21:27 - 00000000 ____D () C:\Users\Jarka\Desktop\angličtina
2014-06-18 20:56 - 2014-06-18 20:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-18 20:32 - 2014-06-18 20:32 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SaiK0621_01005.Wdf
2014-06-18 20:31 - 2008-10-22 15:08 - 01919968 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01005.dll
2014-06-18 20:20 - 2014-06-18 20:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike Source
2014-06-18 20:02 - 2014-06-18 20:27 - 00000000 ____D () C:\Program Files (x86)\Counter-Strike Source
2014-06-18 15:29 - 2014-06-18 15:29 - 00001527 _____ () C:\Users\Public\Desktop\Red Alert 2.lnk
2014-06-18 15:29 - 2014-06-18 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood
2014-06-18 15:23 - 2014-06-18 15:23 - 00000000 ____D () C:\Westwood
2014-06-18 03:17 - 2014-06-18 03:18 - 00000000 ____D () C:\Users\Jarka\Desktop\sk8
2014-06-18 03:17 - 2014-06-18 03:17 - 00000269 _____ () C:\Users\Jarka\Desktop\egerge.txt
2014-06-17 23:42 - 2014-06-17 23:42 - 00000000 ____D () C:\Users\Public\Documents\EA Games
2014-06-17 23:42 - 2014-06-17 23:42 - 00000000 ____D () C:\Users\Jarka\Documents\EA Games
2014-06-17 20:47 - 2014-06-17 20:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2014-06-17 20:46 - 2014-06-17 20:46 - 00002053 _____ () C:\Users\Public\Desktop\Tony Hawks Pro Skater 4.lnk
2014-06-17 20:42 - 2014-06-17 20:42 - 00000000 ____D () C:\Tony Hawk´s Pro Skater 4
2014-06-17 19:30 - 2014-06-17 19:51 - 00000000 ____D () C:\Users\Jarka\Documents\SpellForce
2014-06-17 18:54 - 2014-06-17 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aspyr
2014-06-17 18:54 - 2014-06-17 18:54 - 00002006 _____ () C:\Users\Public\Desktop\MTX MotoTrax Demo.lnk
2014-06-17 18:53 - 2014-06-17 20:44 - 00000000 ____D () C:\Program Files (x86)\Aspyr
2014-06-17 18:51 - 2014-06-17 18:51 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-06-17 18:50 - 2014-06-17 18:50 - 00001198 _____ () C:\Users\postgres\Desktop\SpellForce - The Order of Dawn.lnk
2014-06-17 18:50 - 2014-06-17 18:50 - 00001198 _____ () C:\Users\Jarka\Desktop\SpellForce - The Order of Dawn.lnk
2014-06-17 18:49 - 2014-06-17 18:49 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-06-17 18:49 - 2014-06-17 18:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-06-17 18:45 - 2014-06-17 18:45 - 00000000 ____D () C:\Program Files (x86)\JoWooD
2014-06-17 18:12 - 2014-06-17 18:17 - 00000000 ____D () C:\Users\Jarka\Downloads\Gimp files
2014-06-17 18:03 - 2014-06-17 18:03 - 00040119 _____ () C:\Users\Jarka\AppData\Local\recently-used.xbel
2014-06-17 14:33 - 2014-06-17 14:39 - 00000000 ____D () C:\Program Files (x86)\Scorpions WinCheater
2014-06-17 14:33 - 2014-06-17 14:33 - 00001107 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scorpion's WinCheater 2.lnk
2014-06-17 14:33 - 2014-06-17 14:33 - 00001095 _____ () C:\Users\postgres\Desktop\Scorpion's WinCheater 2.lnk
2014-06-17 14:33 - 2014-06-17 14:33 - 00001095 _____ () C:\Users\Jarka\Desktop\Scorpion's WinCheater 2.lnk
2014-06-17 14:33 - 2014-06-17 14:33 - 00000000 ____D () C:\Users\Jarka\Documents\z Health
2014-06-17 13:03 - 2014-06-18 21:27 - 00000000 ____D () C:\Users\Jarka\Desktop\data
2014-06-17 03:39 - 2014-06-17 03:39 - 00001471 _____ () C:\Users\Jarka\Desktop\tarer.txt
2014-06-17 01:39 - 2014-06-17 01:39 - 00000000 ____D () C:\Users\Jarka\AppData\Local\webkit
2014-06-16 23:16 - 2014-06-16 23:16 - 00001015 _____ () C:\Users\Jarka\Desktop\Vector Magic.lnk
2014-06-16 23:16 - 2014-06-16 23:16 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vector Magic
2014-06-16 23:16 - 2014-06-16 23:16 - 00000000 ____D () C:\Program Files (x86)\Vector Magic
2014-06-16 22:28 - 2014-06-19 01:16 - 00000000 ____D () C:\Users\Jarka\Desktop\mapka
2014-06-16 22:27 - 2014-06-16 22:27 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\VitySoft
2014-06-16 22:27 - 2014-06-16 22:27 - 00000000 ____D () C:\Users\Jarka\.objectdb
2014-06-16 22:17 - 2014-06-19 00:35 - 00000000 ____D () C:\ProgramData\sAve on
2014-06-16 22:17 - 2014-06-18 17:30 - 00000000 ____D () C:\Program Files (x86)\sAve on
2014-06-16 22:17 - 2014-06-16 22:17 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Packages
2014-06-16 22:13 - 2014-06-16 22:13 - 00000965 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD.lnk
2014-06-16 22:13 - 2014-06-16 22:13 - 00000953 _____ () C:\Users\postgres\Desktop\YTD.lnk
2014-06-16 22:00 - 2014-06-16 22:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GetASFStream
2014-06-16 22:00 - 2014-06-16 22:05 - 00000000 ____D () C:\Program Files\GetASFStream
2014-06-16 20:19 - 2014-06-16 20:19 - 00044738 _____ () C:\Users\Jarka\Downloads\x-games.zip
2014-06-16 20:17 - 2014-06-16 22:17 - 00002718 _____ () C:\Windows\System32\Tasks\SO_Booster-S-1792361332
2014-06-16 20:17 - 2014-06-16 20:17 - 00000000 ____D () C:\ProgramData\Appday software
2014-06-16 20:16 - 2014-06-18 17:30 - 00000000 ____D () C:\ProgramData\e5cdbb6c10b97acb
2014-06-16 20:16 - 2014-06-16 22:17 - 00000270 __RSH () C:\ProgramData\ntuser.pol
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\postgres\AppData\Local\Torch
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\postgres\AppData\Local\Chromatic Browser
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\postgres\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\postgres\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Chromatic Browser
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest\AppData\Local\Torch
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest\AppData\Local\Chromatic Browser
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Torch
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Chromatic Browser
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator
2014-06-16 20:15 - 2014-06-16 22:24 - 00000000 ____D () C:\ProgramData\InstallMate
2014-06-16 03:38 - 2014-06-16 03:38 - 00003146 _____ () C:\Users\Jarka\Desktop\hodina pravdy.txt
2014-06-15 18:53 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-15 18:53 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-15 18:53 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-15 18:53 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-15 18:53 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-15 18:53 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-15 18:53 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-15 18:53 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-15 18:53 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-15 18:53 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-15 18:53 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-15 18:53 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-15 18:52 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-15 18:52 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-15 18:52 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-15 18:52 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-15 18:52 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-15 18:52 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-15 18:52 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-15 18:52 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-15 18:52 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-15 18:52 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-15 18:52 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-15 18:52 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-15 18:52 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-15 18:52 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-15 18:52 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-15 18:52 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-15 18:52 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-15 18:52 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-15 18:52 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-15 18:52 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-15 18:52 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-15 18:52 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-15 18:52 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-15 18:52 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-15 18:52 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-15 18:52 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-15 18:52 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-15 18:52 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-15 18:52 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-15 18:52 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-15 18:52 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-15 18:52 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-15 18:52 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-15 18:52 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-15 18:52 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-15 18:52 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-15 18:52 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-15 18:52 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-15 18:52 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-15 18:52 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-15 18:52 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-15 18:52 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-15 18:52 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-15 18:52 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-15 18:52 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-15 18:52 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-15 18:52 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-06-15 18:51 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-15 18:51 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-15 18:51 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-15 18:51 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-15 18:51 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-15 18:51 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-15 18:51 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-15 18:49 - 2014-06-08 11:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-15 18:49 - 2014-06-08 11:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-13 16:29 - 2014-06-13 16:29 - 00001351 _____ () C:\Users\Jarka\Desktop\Play Loren The Amazon Princess!.lnk
2014-06-13 16:29 - 2014-06-13 16:29 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\RenPy
2014-06-13 16:29 - 2014-06-13 16:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winter Wolves
2014-06-13 16:28 - 2014-06-13 16:28 - 00000000 ____D () C:\Program Files (x86)\Winter Wolves
2014-06-13 14:55 - 2014-06-13 14:55 - 00000000 ____D () C:\Program Files (x86)\1C
2014-06-13 02:47 - 2014-06-13 02:47 - 00001892 _____ () C:\Users\Public\Desktop\Dawn Of Magic 2.lnk
2014-06-13 02:47 - 2014-06-13 02:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kalypso
2014-06-13 02:47 - 2014-06-13 02:47 - 00000000 ____D () C:\Program Files (x86)\Kalypso
2014-06-13 02:43 - 2014-06-13 02:43 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\ScummVM
2014-06-13 02:42 - 2014-06-13 02:42 - 00002011 _____ () C:\Users\Public\Desktop\Broken Sword II CZ.lnk
2014-06-13 02:42 - 2014-06-13 02:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Broken Sword II CZ
2014-06-13 02:41 - 2014-06-13 02:42 - 00000000 ____D () C:\Program Files (x86)\Broken Sword 2 CZ
2014-06-13 02:30 - 2014-06-15 03:23 - 00127081 _____ () C:\Users\Jarka\Desktop\hadanka.xlsx
2014-06-07 01:08 - 2014-05-01 17:03 - 00000000 ____D () C:\Users\Jarka\Downloads\ctyrlistek 473
2014-06-06 21:57 - 2014-06-07 03:24 - 00000000 ____D () C:\Users\Jarka\Desktop\pages
2014-06-06 01:02 - 2014-06-06 01:02 - 00000000 ____D () C:\Users\Jarka\Desktop\astronomie
2014-06-05 03:17 - 2014-06-13 02:50 - 00001105 _____ () C:\Users\Jarka\Desktop\tod.txt
2014-06-03 13:23 - 2014-06-03 13:23 - 00000000 ____D () C:\ProgramData\Google
2014-06-02 02:48 - 2014-06-02 02:49 - 00000000 ____D () C:\Users\Jarka\Downloads\doc
2014-05-29 16:30 - 2014-05-29 16:30 - 00001412 _____ () C:\Windows\system32\warcraft cinematic videos .lnk
2014-05-29 13:11 - 2014-06-02 02:48 - 00000000 ____D () C:\Users\Jarka\Downloads\gimp tutorialy
2014-05-29 12:57 - 2014-05-29 12:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-29 12:56 - 2014-05-29 12:57 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-29 12:56 - 2014-05-29 12:57 - 00000000 ____D () C:\Program Files\iTunes
2014-05-29 12:56 - 2014-05-29 12:56 - 00000000 ____D () C:\Program Files\iPod
2014-05-29 12:56 - 2014-05-29 12:56 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-28 15:23 - 2014-05-28 15:23 - 00002122 _____ () C:\Users\Public\Desktop\Medieval II Total War.lnk
2014-05-28 15:14 - 2014-05-28 15:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA
2014-05-28 15:14 - 2014-05-28 15:14 - 00000000 ____D () C:\ProgramData\InstallShield
2014-05-28 15:14 - 2014-05-28 15:14 - 00000000 ____D () C:\Program Files (x86)\SEGA
2014-05-27 23:40 - 2014-06-16 17:54 - 00011039 _____ () C:\Users\Jarka\Desktop\DX.xlsx
2014-05-27 22:27 - 2014-05-27 22:27 - 00000000 ____D () C:\Users\Jarka\AppData\Local\DOSBox
2014-05-26 12:03 - 2014-05-26 12:03 - 00002599 _____ () C:\Users\Public\Desktop\Hidden & Dangerous 2.lnk
2014-05-26 12:03 - 2014-05-26 12:03 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Illusion Softworks
2014-05-26 12:03 - 2014-05-26 12:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Illusion Softworks
2014-05-24 22:28 - 2014-06-17 14:33 - 00000000 ____D () C:\Users\Jarka\Documents\others
2014-05-24 13:20 - 2014-06-16 20:07 - 00000000 ____D () C:\Users\Jarka\Desktop\DIY kutil
2014-05-23 16:48 - 2014-05-23 16:48 - 00000000 ____D () C:\Program Files (x86)\Illusion Softworks
2014-05-23 00:58 - 2014-06-19 00:29 - 00000000 ____D () C:\Users\Jarka\Documents\Polda III
2014-05-23 00:58 - 2014-05-23 18:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Polda 3
2014-05-23 00:58 - 2014-05-23 00:58 - 00001026 _____ () C:\Users\Jarka\Desktop\Polda 3.lnk
2014-05-23 00:58 - 2014-05-23 00:58 - 00000000 ____D () C:\Program Files (x86)\Polda 3
2014-05-22 04:06 - 2014-06-11 03:18 - 00005684 _____ () C:\Users\Jarka\Desktop\watch it.txt
2014-05-22 02:01 - 2014-05-22 02:01 - 00027479 _____ () C:\Users\Jarka\Downloads\cantaragotica.zip
2014-05-22 01:58 - 2014-05-22 01:58 - 00020359 _____ () C:\Users\Jarka\Downloads\por_siempre_gotica.zip

==================== One Month Modified Files and Folders =======

2014-06-20 17:29 - 2014-06-20 17:29 - 00000000 ____D () C:\FRST
2014-06-20 15:53 - 2014-01-29 14:25 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-20 15:53 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-20 15:52 - 2014-01-31 22:25 - 00069334 _____ () C:\Windows\setupact.log
2014-06-20 12:47 - 2013-04-23 14:56 - 00000000 ____D () C:\Users\postgres
2014-06-20 12:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-06-20 12:06 - 2012-11-25 11:19 - 01991149 _____ () C:\Windows\WindowsUpdate.log
2014-06-20 12:03 - 2011-04-12 10:34 - 00681390 _____ () C:\Windows\system32\perfh005.dat
2014-06-20 12:03 - 2011-04-12 10:34 - 00148224 _____ () C:\Windows\system32\perfc005.dat
2014-06-20 12:03 - 2009-07-14 07:13 - 01622716 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-20 11:55 - 2012-11-25 11:24 - 00000000 ____D () C:\Users\Jarka
2014-06-20 11:52 - 2014-01-29 14:25 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-19 23:49 - 2014-06-19 15:21 - 00000000 ____D () C:\ProgramData\MFAData
2014-06-19 23:49 - 2014-02-01 17:11 - 00192566 _____ () C:\Windows\PFRO.log
2014-06-19 23:47 - 2014-06-19 23:40 - 00000000 ____D () C:\Qoobox
2014-06-19 23:39 - 2014-06-19 23:39 - 00000000 ____D () C:\Windows\erdnt
2014-06-19 21:34 - 2009-07-14 06:45 - 00022560 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-19 21:34 - 2009-07-14 06:45 - 00022560 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-19 17:33 - 2014-06-19 15:33 - 00097324 _____ () C:\Users\Jarka\Desktop\avgrep.txt
2014-06-19 15:40 - 2014-02-11 23:08 - 00000000 ____D () C:\Program Files (x86)\Alo RM Converter
2014-06-19 15:25 - 2014-06-19 15:25 - 00000010 _____ () C:\Users\Jarka\Desktop\brambory.txt
2014-06-19 15:23 - 2014-06-19 15:23 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\TuneUp Software
2014-06-19 15:21 - 2014-06-19 15:21 - 00000000 ____D () C:\Users\Jarka\AppData\Local\MFAData
2014-06-19 14:56 - 2012-11-25 20:11 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-19 14:54 - 2014-01-11 15:22 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Torch
2014-06-19 14:49 - 2014-06-19 14:49 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\optlhzur.sys
2014-06-19 14:36 - 2014-06-19 14:36 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\vrncxqjj.sys
2014-06-19 14:36 - 2014-06-19 14:36 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\ururcgmo.sys
2014-06-19 14:35 - 2014-06-19 14:35 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-19 12:55 - 2014-06-19 12:55 - 00003408 ____N () C:\bootsqm.dat
2014-06-19 02:41 - 2014-06-19 01:58 - 00002914 _____ () C:\Users\Jarka\Desktop\score-hry cz.txt
2014-06-19 02:39 - 2014-06-19 02:38 - 00000000 ____D () C:\ProgramData\IObit
2014-06-19 02:38 - 2014-06-19 02:38 - 00001177 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2014-06-19 02:38 - 2014-06-19 02:38 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\IObit
2014-06-19 02:38 - 2014-06-19 02:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2014-06-19 02:38 - 2014-06-19 02:38 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-06-19 01:16 - 2014-06-16 22:28 - 00000000 ____D () C:\Users\Jarka\Desktop\mapka
2014-06-19 01:08 - 2012-11-25 14:46 - 00000000 ____D () C:\Program Files (x86)\totalcmd
2014-06-19 00:46 - 2014-06-19 00:46 - 00929416 _____ (CNET Download.com) C:\Users\Jarka\Downloads\cbsidlm-cbsi188-Lark_AntiSpyware-ORG-10969376.exe
2014-06-19 00:41 - 2014-06-19 00:40 - 27053144 _____ (IObit ) C:\Users\Jarka\Downloads\IObit-Malware-Figher-Setup.exe
2014-06-19 00:35 - 2014-06-16 22:17 - 00000000 ____D () C:\ProgramData\sAve on
2014-06-19 00:35 - 2012-11-25 13:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-19 00:33 - 2014-06-19 00:03 - 00001180 _____ () C:\Users\Jarka\Desktop\rgerge.txt
2014-06-19 00:29 - 2014-05-23 00:58 - 00000000 ____D () C:\Users\Jarka\Documents\Polda III
2014-06-19 00:03 - 2014-06-18 22:30 - 00000725 _____ () C:\Users\Jarka\Desktop\clanky.txt
2014-06-18 22:30 - 2014-06-18 22:30 - 00000000 _____ () C:\autoexec.bat
2014-06-18 22:29 - 2014-06-18 22:29 - 00003330 _____ () C:\Windows\System32\Tasks\SpyHunter4Startup
2014-06-18 22:29 - 2014-06-18 22:29 - 00002288 _____ () C:\Users\Jarka\Desktop\SpyHunter.lnk
2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\sh4ldr
2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\Program Files (x86)\Enigma Software Group
2014-06-18 22:29 - 2014-06-18 22:27 - 00000000 ____D () C:\Windows\027B5748C40941FE949B7B81A8304EF4.TMP
2014-06-18 22:25 - 2014-06-18 22:25 - 00000000 ____D () C:\Users\Jarka\Desktop\pen tricks
2014-06-18 21:27 - 2014-06-18 21:25 - 00000000 ____D () C:\Users\Jarka\Desktop\angličtina
2014-06-18 21:27 - 2014-06-17 13:03 - 00000000 ____D () C:\Users\Jarka\Desktop\data
2014-06-18 20:57 - 2014-06-18 20:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-18 20:32 - 2014-06-18 20:32 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SaiK0621_01005.Wdf
2014-06-18 20:27 - 2014-06-18 20:02 - 00000000 ____D () C:\Program Files (x86)\Counter-Strike Source
2014-06-18 20:21 - 2014-01-17 15:51 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-06-18 20:20 - 2014-06-18 20:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike Source
2014-06-18 17:30 - 2014-06-16 22:17 - 00000000 ____D () C:\Program Files (x86)\sAve on
2014-06-18 17:30 - 2014-06-16 20:16 - 00000000 ____D () C:\ProgramData\e5cdbb6c10b97acb
2014-06-18 15:29 - 2014-06-18 15:29 - 00001527 _____ () C:\Users\Public\Desktop\Red Alert 2.lnk
2014-06-18 15:29 - 2014-06-18 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood
2014-06-18 15:23 - 2014-06-18 15:23 - 00000000 ____D () C:\Westwood
2014-06-18 13:31 - 2012-11-25 20:11 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-18 13:31 - 2012-11-25 20:11 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-18 13:31 - 2012-11-25 20:11 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-18 13:23 - 2009-07-14 06:45 - 00459368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-18 03:18 - 2014-06-18 03:17 - 00000000 ____D () C:\Users\Jarka\Desktop\sk8
2014-06-18 03:17 - 2014-06-18 03:17 - 00000269 _____ () C:\Users\Jarka\Desktop\egerge.txt
2014-06-18 02:32 - 2012-11-25 11:39 - 00128440 _____ () C:\Users\Jarka\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-18 01:21 - 2013-05-25 19:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
2014-06-18 01:21 - 2013-05-25 19:19 - 00000000 ____D () C:\Program Files (x86)\EA Games
2014-06-17 23:43 - 2013-05-25 20:16 - 00000000 ____D () C:\Games
2014-06-17 23:42 - 2014-06-17 23:42 - 00000000 ____D () C:\Users\Public\Documents\EA Games
2014-06-17 23:42 - 2014-06-17 23:42 - 00000000 ____D () C:\Users\Jarka\Documents\EA Games
2014-06-17 20:47 - 2014-06-17 20:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2014-06-17 20:46 - 2014-06-17 20:46 - 00002053 _____ () C:\Users\Public\Desktop\Tony Hawks Pro Skater 4.lnk
2014-06-17 20:46 - 2014-06-17 18:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aspyr
2014-06-17 20:44 - 2014-06-17 18:53 - 00000000 ____D () C:\Program Files (x86)\Aspyr
2014-06-17 20:42 - 2014-06-17 20:42 - 00000000 ____D () C:\Tony Hawk´s Pro Skater 4
2014-06-17 19:51 - 2014-06-17 19:30 - 00000000 ____D () C:\Users\Jarka\Documents\SpellForce
2014-06-17 19:30 - 2014-01-17 22:19 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\uTorrent
2014-06-17 18:54 - 2014-06-17 18:54 - 00002006 _____ () C:\Users\Public\Desktop\MTX MotoTrax Demo.lnk
2014-06-17 18:51 - 2014-06-17 18:51 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-06-17 18:50 - 2014-06-17 18:50 - 00001198 _____ () C:\Users\postgres\Desktop\SpellForce - The Order of Dawn.lnk
2014-06-17 18:50 - 2014-06-17 18:50 - 00001198 _____ () C:\Users\Jarka\Desktop\SpellForce - The Order of Dawn.lnk
2014-06-17 18:50 - 2014-04-18 20:17 - 00265784 _____ () C:\Windows\DirectX.log
2014-06-17 18:49 - 2014-06-17 18:49 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-06-17 18:49 - 2014-06-17 18:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-06-17 18:45 - 2014-06-17 18:45 - 00000000 ____D () C:\Program Files (x86)\JoWooD
2014-06-17 18:17 - 2014-06-17 18:12 - 00000000 ____D () C:\Users\Jarka\Downloads\Gimp files
2014-06-17 18:12 - 2013-03-23 17:34 - 00000000 ____D () C:\Users\Jarka\.gimp-2.8
2014-06-17 18:03 - 2014-06-17 18:03 - 00040119 _____ () C:\Users\Jarka\AppData\Local\recently-used.xbel
2014-06-17 14:39 - 2014-06-17 14:33 - 00000000 ____D () C:\Program Files (x86)\Scorpions WinCheater
2014-06-17 14:37 - 2014-02-26 03:32 - 00000000 ____D () C:\Users\Jarka\Desktop\učení
2014-06-17 14:33 - 2014-06-17 14:33 - 00001107 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scorpion's WinCheater 2.lnk
2014-06-17 14:33 - 2014-06-17 14:33 - 00001095 _____ () C:\Users\postgres\Desktop\Scorpion's WinCheater 2.lnk
2014-06-17 14:33 - 2014-06-17 14:33 - 00001095 _____ () C:\Users\Jarka\Desktop\Scorpion's WinCheater 2.lnk
2014-06-17 14:33 - 2014-06-17 14:33 - 00000000 ____D () C:\Users\Jarka\Documents\z Health
2014-06-17 14:33 - 2014-05-24 22:28 - 00000000 ____D () C:\Users\Jarka\Documents\others
2014-06-17 14:27 - 2012-12-19 18:22 - 00000000 ____D () C:\Tomas
2014-06-17 14:27 - 2012-11-25 11:52 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-17 14:26 - 2014-02-25 19:30 - 00000000 ____D () C:\Program Files\CyberLink
2014-06-17 14:17 - 2014-01-29 04:37 - 00000000 ____D () C:\Users\Jarka\Documents\5 gimp
2014-06-17 03:39 - 2014-06-17 03:39 - 00001471 _____ () C:\Users\Jarka\Desktop\tarer.txt
2014-06-17 01:39 - 2014-06-17 01:39 - 00000000 ____D () C:\Users\Jarka\AppData\Local\webkit
2014-06-16 23:20 - 2013-05-26 19:42 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\vlc
2014-06-16 23:16 - 2014-06-16 23:16 - 00001015 _____ () C:\Users\Jarka\Desktop\Vector Magic.lnk
2014-06-16 23:16 - 2014-06-16 23:16 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vector Magic
2014-06-16 23:16 - 2014-06-16 23:16 - 00000000 ____D () C:\Program Files (x86)\Vector Magic
2014-06-16 22:27 - 2014-06-16 22:27 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\VitySoft
2014-06-16 22:27 - 2014-06-16 22:27 - 00000000 ____D () C:\Users\Jarka\.objectdb
2014-06-16 22:26 - 2014-05-03 17:15 - 00000000 ____D () C:\Users\Jarka\Downloads\Subs
2014-06-16 22:24 - 2014-06-16 20:15 - 00000000 ____D () C:\ProgramData\InstallMate
2014-06-16 22:17 - 2014-06-16 22:17 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Packages
2014-06-16 22:17 - 2014-06-16 20:17 - 00002718 _____ () C:\Windows\System32\Tasks\SO_Booster-S-1792361332
2014-06-16 22:17 - 2014-06-16 20:16 - 00000270 __RSH () C:\ProgramData\ntuser.pol
2014-06-16 22:13 - 2014-06-16 22:13 - 00000965 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD.lnk
2014-06-16 22:13 - 2014-06-16 22:13 - 00000953 _____ () C:\Users\postgres\Desktop\YTD.lnk
2014-06-16 22:05 - 2014-06-16 22:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GetASFStream
2014-06-16 22:05 - 2014-06-16 22:00 - 00000000 ____D () C:\Program Files\GetASFStream
2014-06-16 20:19 - 2014-06-16 20:19 - 00044738 _____ () C:\Users\Jarka\Downloads\x-games.zip
2014-06-16 20:17 - 2014-06-16 20:17 - 00000000 ____D () C:\ProgramData\Appday software
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\postgres\AppData\Local\Torch
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\postgres\AppData\Local\Chromatic Browser
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\postgres\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\postgres\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Chromatic Browser
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest\AppData\Local\Torch
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest\AppData\Local\Chromatic Browser
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Torch
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Chromatic Browser
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator
2014-06-16 20:16 - 2014-01-29 14:25 - 00000000 ____D () C:\Program Files (x86)\Google
2014-06-16 20:16 - 2012-11-25 13:26 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Google
2014-06-16 20:16 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-06-16 20:07 - 2014-05-24 13:20 - 00000000 ____D () C:\Users\Jarka\Desktop\DIY kutil
2014-06-16 17:54 - 2014-05-27 23:40 - 00011039 _____ () C:\Users\Jarka\Desktop\DX.xlsx
2014-06-16 15:45 - 2013-05-31 00:01 - 00000000 ____D () C:\Users\Jarka\Downloads\3x
2014-06-16 14:54 - 2014-01-30 15:53 - 00000000 ____D () C:\Users\Jarka\Documents\2 fotky fotak
2014-06-16 13:56 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-06-16 03:47 - 2014-05-20 21:56 - 00000000 ____D () C:\Users\Jarka\Desktop\angry
2014-06-16 03:38 - 2014-06-16 03:38 - 00003146 _____ () C:\Users\Jarka\Desktop\hodina pravdy.txt
2014-06-16 03:09 - 2013-08-14 16:24 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-16 03:06 - 2012-11-25 13:00 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-16 03:05 - 2012-11-25 13:41 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-16 03:03 - 2014-04-30 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-15 18:55 - 2014-02-01 04:48 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-15 15:48 - 2014-05-07 03:22 - 00017631 _____ () C:\Users\Jarka\Desktop\overview.xlsx
2014-06-15 03:23 - 2014-06-13 02:30 - 00127081 _____ () C:\Users\Jarka\Desktop\hadanka.xlsx
2014-06-13 16:29 - 2014-06-13 16:29 - 00001351 _____ () C:\Users\Jarka\Desktop\Play Loren The Amazon Princess!.lnk
2014-06-13 16:29 - 2014-06-13 16:29 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\RenPy
2014-06-13 16:29 - 2014-06-13 16:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winter Wolves
2014-06-13 16:28 - 2014-06-13 16:28 - 00000000 ____D () C:\Program Files (x86)\Winter Wolves
2014-06-13 14:55 - 2014-06-13 14:55 - 00000000 ____D () C:\Program Files (x86)\1C
2014-06-13 02:50 - 2014-06-05 03:17 - 00001105 _____ () C:\Users\Jarka\Desktop\tod.txt
2014-06-13 02:49 - 2014-05-10 02:28 - 00000000 ____D () C:\Users\Jarka\Desktop\obrazky
2014-06-13 02:47 - 2014-06-13 02:47 - 00001892 _____ () C:\Users\Public\Desktop\Dawn Of Magic 2.lnk
2014-06-13 02:47 - 2014-06-13 02:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kalypso
2014-06-13 02:47 - 2014-06-13 02:47 - 00000000 ____D () C:\Program Files (x86)\Kalypso
2014-06-13 02:43 - 2014-06-13 02:43 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\ScummVM
2014-06-13 02:42 - 2014-06-13 02:42 - 00002011 _____ () C:\Users\Public\Desktop\Broken Sword II CZ.lnk
2014-06-13 02:42 - 2014-06-13 02:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Broken Sword II CZ
2014-06-13 02:42 - 2014-06-13 02:41 - 00000000 ____D () C:\Program Files (x86)\Broken Sword 2 CZ
2014-06-13 02:30 - 2014-01-12 19:01 - 00000688 _____ () C:\Users\Jarka\Desktop\fun.lnk
2014-06-11 03:18 - 2014-05-22 04:06 - 00005684 _____ () C:\Users\Jarka\Desktop\watch it.txt
2014-06-08 14:22 - 2011-04-12 10:45 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-06-08 11:13 - 2014-06-15 18:49 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 11:08 - 2014-06-15 18:49 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-07 03:24 - 2014-06-06 21:57 - 00000000 ____D () C:\Users\Jarka\Desktop\pages
2014-06-06 20:45 - 2012-11-25 14:05 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Skype
2014-06-06 20:31 - 2014-02-27 11:34 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-06 20:31 - 2012-11-25 14:04 - 00000000 ____D () C:\ProgramData\Skype
2014-06-06 13:45 - 2014-04-03 16:57 - 00141644 _____ () C:\Users\Jarka\Desktop\keepas.kdb
2014-06-06 01:25 - 2013-04-23 14:59 - 01640616 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-06-06 01:02 - 2014-06-06 01:02 - 00000000 ____D () C:\Users\Jarka\Desktop\astronomie
2014-06-05 02:20 - 2014-04-18 15:31 - 00000000 ____D () C:\Users\Jarka\Desktop\NEW MP3
2014-06-05 02:01 - 2014-05-12 18:57 - 00000000 ____D () C:\Users\Jarka\Desktop\zboziznalstvi
2014-06-03 13:23 - 2014-06-03 13:23 - 00000000 ____D () C:\ProgramData\Google
2014-06-03 12:00 - 2013-03-19 12:41 - 00343129 _____ () C:\test.xml
2014-06-02 02:49 - 2014-06-02 02:48 - 00000000 ____D () C:\Users\Jarka\Downloads\doc
2014-06-02 02:48 - 2014-05-29 13:11 - 00000000 ____D () C:\Users\Jarka\Downloads\gimp tutorialy
2014-06-02 02:48 - 2014-02-23 01:48 - 00000000 ____D () C:\Users\Jarka\Downloads\Z fonty - wp theme - zalohy db
2014-06-01 20:02 - 2013-03-23 17:34 - 00001118 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2014-05-30 15:09 - 2014-01-18 14:47 - 00000000 ___RD () C:\Users\Jarka\Documents\0 ikony z plochy
2014-05-30 12:21 - 2014-06-15 18:51 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 12:02 - 2014-06-15 18:52 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 12:02 - 2014-06-15 18:52 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 11:45 - 2014-06-15 18:52 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 11:39 - 2014-06-15 18:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 11:39 - 2014-06-15 18:51 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 11:38 - 2014-06-15 18:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 11:28 - 2014-06-15 18:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 11:27 - 2014-06-15 18:52 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 11:24 - 2014-06-15 18:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 11:21 - 2014-06-15 18:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 11:21 - 2014-06-15 18:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 11:20 - 2014-06-15 18:52 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 11:18 - 2014-06-15 18:52 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 11:11 - 2014-06-15 18:51 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 11:08 - 2014-06-15 18:51 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 11:06 - 2014-06-15 18:52 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 11:02 - 2014-06-15 18:52 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 10:55 - 2014-06-15 18:52 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 10:49 - 2014-06-15 18:51 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 10:46 - 2014-06-15 18:52 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 10:44 - 2014-06-15 18:52 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 10:44 - 2014-06-15 18:52 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 10:43 - 2014-06-15 18:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 10:42 - 2014-06-15 18:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 10:38 - 2014-06-15 18:52 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 10:35 - 2014-06-15 18:52 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 10:34 - 2014-06-15 18:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 10:33 - 2014-06-15 18:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 10:30 - 2014-06-15 18:52 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 10:29 - 2014-06-15 18:52 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 10:28 - 2014-06-15 18:52 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 10:27 - 2014-06-15 18:52 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 10:24 - 2014-06-15 18:52 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 10:23 - 2014-06-15 18:52 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 10:16 - 2014-06-15 18:52 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 10:10 - 2014-06-15 18:52 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 10:06 - 2014-06-15 18:52 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 10:04 - 2014-06-15 18:52 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 10:02 - 2014-06-15 18:52 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 09:56 - 2014-06-15 18:52 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 09:56 - 2014-06-15 18:51 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 09:54 - 2014-06-15 18:52 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 09:50 - 2014-06-15 18:52 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 09:49 - 2014-06-15 18:52 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 09:43 - 2014-06-15 18:52 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 09:40 - 2014-06-15 18:52 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 09:30 - 2014-06-15 18:52 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 09:21 - 2014-06-15 18:52 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 09:15 - 2014-06-15 18:52 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 09:13 - 2014-06-15 18:52 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-30 09:13 - 2014-06-15 18:51 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-29 16:30 - 2014-05-29 16:30 - 00001412 _____ () C:\Windows\system32\warcraft cinematic videos .lnk
2014-05-29 13:05 - 2014-01-18 03:29 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\DVDVideoSoft
2014-05-29 13:05 - 2014-01-18 03:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-05-29 13:05 - 2014-01-18 03:28 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-05-29 12:57 - 2014-05-29 12:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-29 12:57 - 2014-05-29 12:56 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-29 12:57 - 2014-05-29 12:56 - 00000000 ____D () C:\Program Files\iTunes
2014-05-29 12:56 - 2014-05-29 12:56 - 00000000 ____D () C:\Program Files\iPod
2014-05-29 12:56 - 2014-05-29 12:56 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-28 15:23 - 2014-05-28 15:23 - 00002122 _____ () C:\Users\Public\Desktop\Medieval II Total War.lnk
2014-05-28 15:14 - 2014-05-28 15:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA
2014-05-28 15:14 - 2014-05-28 15:14 - 00000000 ____D () C:\ProgramData\InstallShield
2014-05-28 15:14 - 2014-05-28 15:14 - 00000000 ____D () C:\Program Files (x86)\SEGA
2014-05-27 22:27 - 2014-05-27 22:27 - 00000000 ____D () C:\Users\Jarka\AppData\Local\DOSBox
2014-05-26 12:03 - 2014-05-26 12:03 - 00002599 _____ () C:\Users\Public\Desktop\Hidden & Dangerous 2.lnk
2014-05-26 12:03 - 2014-05-26 12:03 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Illusion Softworks
2014-05-26 12:03 - 2014-05-26 12:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Illusion Softworks
2014-05-26 11:48 - 2014-01-20 00:31 - 00000000 ____D () C:\Users\Jarka\Documents\7 PROJEKTY
2014-05-25 14:44 - 2014-05-03 03:17 - 00000000 ____D () C:\Users\Jarka\Desktop\Dobra Voda
2014-05-24 12:55 - 2013-05-26 14:19 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Axure
2014-05-23 18:20 - 2014-05-23 00:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Polda 3
2014-05-23 16:48 - 2014-05-23 16:48 - 00000000 ____D () C:\Program Files (x86)\Illusion Softworks
2014-05-23 00:58 - 2014-05-23 00:58 - 00001026 _____ () C:\Users\Jarka\Desktop\Polda 3.lnk
2014-05-23 00:58 - 2014-05-23 00:58 - 00000000 ____D () C:\Program Files (x86)\Polda 3
2014-05-22 03:43 - 2014-05-09 20:02 - 00000000 ____D () C:\Users\Jarka\Desktop\life hacks
2014-05-22 02:01 - 2014-05-22 02:01 - 00027479 _____ () C:\Users\Jarka\Downloads\cantaragotica.zip
2014-05-22 01:58 - 2014-05-22 01:58 - 00020359 _____ () C:\Users\Jarka\Downloads\por_siempre_gotica.zip

Some content of TEMP:
====================
C:\Users\Jarka\AppData\Local\Temp\cabex.dll
C:\Users\Jarka\AppData\Local\Temp\comver.dll
C:\Users\Jarka\AppData\Local\Temp\DSETUP.dll
C:\Users\Jarka\AppData\Local\Temp\dsetup32.dll
C:\Users\Jarka\AppData\Local\Temp\DXSETUP.exe
C:\Users\Jarka\AppData\Local\Temp\eauninstall.exe
C:\Users\Jarka\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\Jarka\AppData\Local\Temp\ljo_amz7.dll
C:\Users\Jarka\AppData\Local\Temp\SIInvoker.exe
C:\Users\Jarka\AppData\Local\Temp\tmp266A.exe
C:\Users\Jarka\AppData\Local\Temp\tmp5833.exe
C:\Users\Jarka\AppData\Local\Temp\tmp5BEB.exe
C:\Users\Jarka\AppData\Local\Temp\tmp6BEB.exe
C:\Users\Jarka\AppData\Local\Temp\tmpBD67.exe
C:\Users\Jarka\AppData\Local\Temp\tmpEA60.exe
C:\Users\Jarka\AppData\Local\Temp\tu17p84.exe
C:\Users\Jarka\AppData\Local\Temp\unelevate.exe
C:\Users\Jarka\AppData\Local\Temp\ytai_ytareg_setup.exe
C:\Users\Jarka\AppData\Local\Temp\_is4318.exe
C:\Users\Jarka\AppData\Local\Temp\_unps.exe
C:\Users\Jarka\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-18 14:52

==================== End Of Log ============================
Naposledy upravil(a) vyosek dne 20 čer 2014 18:16, celkem upraveno 1 x.
Důvod: log odstranen z code
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Pomalé PC + nejde spustit žádný soubor

#4 Příspěvek od vyosek »

:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [1601856 2014-05-23] (IObit)
HKU\S-1-5-21-3004848830-2071332093-2801358294-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3004848830-2071332093-2801358294-1000\...\MountPoints2: {65cc19af-c88f-11e3-8874-c0cb38fa1b86} - F:\PlayDiskStart.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

SearchScopes: HKCU - {F562D96D-088C-441D-80D3-6F3F892640E2} URL = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
BHO: No Name - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - No File
BHO-x32: Ads Removal - {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} - C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll (Adblock)

FF Extension: Ads Removal - C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default\Extensions\adremoveext@adremoveext.net [2014-06-20]
FF Extension: savee on - C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default\Extensions\dg-eaiue@laluyaaiuyy.com [2014-06-17]
FF Extension: sAve on - C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default\Extensions\kbgua3e@umqjk-rpc.co.uk [2014-06-17]

CHR Extension: (Ads Removal) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fopdddcinljmpmioaklghcalngfhbaen [2014-06-19]
CHR Extension: (savee on) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm [2014-06-16]
CHR Extension: (sAve on) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee [2014-06-16]
CHR Extension: (savee on) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm\2.14 [2014-06-16]
CHR Extension: (sAve on) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee\2.14 [2014-06-16]
CHR HKLM-x32\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Users\Jarka\AppData\Local\Torch\Plugins\TorchPlugin.crx [2014-06-16]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [342336 2014-05-15] (IObit)
S2 SpyHunter 4 Service; C:\Program Files (x86)\Enigma Software Group\SpyHunter\SH4Service.exe [770432 2013-06-27] (Enigma Software Group USA, LLC.)

S3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2013-11-19] (IObit.com)
S3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-11-19] (IObit.com)
S1 prodrv06; \SystemRoot\System32\drivers\prodrv06.sys [X]

2014-06-19 14:49 - 2014-06-19 14:49 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\optlhzur.sys
2014-06-19 14:36 - 2014-06-19 14:36 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\vrncxqjj.sys
2014-06-19 14:36 - 2014-06-19 14:36 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\ururcgmo.sys
2014-06-19 02:38 - 2014-06-19 02:39 - 00000000 ____D () C:\ProgramData\IObit
2014-06-19 02:38 - 2014-06-19 02:38 - 00001177 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2014-06-19 02:38 - 2014-06-19 02:38 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\IObit
2014-06-19 02:38 - 2014-06-19 02:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2014-06-19 02:38 - 2014-06-19 02:38 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-06-19 00:46 - 2014-06-19 00:46 - 00929416 _____ (CNET Download.com) C:\Users\Jarka\Downloads\cbsidlm-cbsi188-Lark_AntiSpyware-ORG-10969376.exe
2014-06-19 00:40 - 2014-06-19 00:41 - 27053144 _____ (IObit ) C:\Users\Jarka\Downloads\IObit-Malware-Figher-Setup.exe
2014-06-18 22:29 - 2014-06-18 22:29 - 00003330 _____ () C:\Windows\System32\Tasks\SpyHunter4Startup
2014-06-18 22:29 - 2014-06-18 22:29 - 00002288 _____ () C:\Users\Jarka\Desktop\SpyHunter.lnk
2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\sh4ldr
2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\Program Files (x86)\Enigma Software Group
2014-06-16 22:17 - 2014-06-19 00:35 - 00000000 ____D () C:\ProgramData\sAve on
2014-06-16 22:17 - 2014-06-18 17:30 - 00000000 ____D () C:\Program Files (x86)\sAve on
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
C:\Users\Jarka\AppData\Local\Temp\cabex.dll
C:\Users\Jarka\AppData\Local\Temp\comver.dll
C:\Users\Jarka\AppData\Local\Temp\DSETUP.dll
C:\Users\Jarka\AppData\Local\Temp\dsetup32.dll
C:\Users\Jarka\AppData\Local\Temp\DXSETUP.exe
C:\Users\Jarka\AppData\Local\Temp\eauninstall.exe
C:\Users\Jarka\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\Jarka\AppData\Local\Temp\ljo_amz7.dll
C:\Users\Jarka\AppData\Local\Temp\SIInvoker.exe
C:\Users\Jarka\AppData\Local\Temp\tmp266A.exe
C:\Users\Jarka\AppData\Local\Temp\tmp5833.exe
C:\Users\Jarka\AppData\Local\Temp\tmp5BEB.exe
C:\Users\Jarka\AppData\Local\Temp\tmp6BEB.exe
C:\Users\Jarka\AppData\Local\Temp\tmpBD67.exe
C:\Users\Jarka\AppData\Local\Temp\tmpEA60.exe
C:\Users\Jarka\AppData\Local\Temp\tu17p84.exe
C:\Users\Jarka\AppData\Local\Temp\unelevate.exe
C:\Users\Jarka\AppData\Local\Temp\ytai_ytareg_setup.exe
C:\Users\Jarka\AppData\Local\Temp\_is4318.exe
C:\Users\Jarka\AppData\Local\Temp\_unps.exe
C:\Users\Jarka\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
C:\Program Files (x86)\Enigma Software Group
C:\Program Files (x86)\IObit

Hosts:
End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC do normalniho rezimu a dejte mi sem fixlog.txt
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Ryan33
Návštěvník
Návštěvník
Příspěvky: 19
Registrován: 20 čer 2014 10:10

Re: Pomalé PC + nejde spustit žádný soubor

#5 Příspěvek od Ryan33 »

Zatím jsem to testoval jen velmi rychle, ale vypadá to, že počítač zase funguje jak má! Mockrát děkuji. Chci se jenom zeptat, ty soubory které se přes ten script smazaly jste vyhledával "od oka" že tam nepatří?

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-06-2014
Ran by Jarka at 2014-06-20 20:04:13 Run:1
Running from G:\
Boot Mode: Safe Mode (minimal)
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [1601856 2014-05-23] (IObit)
HKU\S-1-5-21-3004848830-2071332093-2801358294-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3004848830-2071332093-2801358294-1000\...\MountPoints2: {65cc19af-c88f-11e3-8874-c0cb38fa1b86} - F:\PlayDiskStart.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

SearchScopes: HKCU - {F562D96D-088C-441D-80D3-6F3F892640E2} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
BHO: No Name - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - No File
BHO-x32: Ads Removal - {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} - C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll (Adblock)

FF Extension: Ads Removal - C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default\Extensions\adremoveext@adremoveext.net [2014-06-20]
FF Extension: savee on - C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default\Extensions\dg-eaiue@laluyaaiuyy.com [2014-06-17]
FF Extension: sAve on - C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default\Extensions\kbgua3e@umqjk-rpc.co.uk [2014-06-17]

CHR Extension: (Ads Removal) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fopdddcinljmpmioaklghcalngfhbaen [2014-06-19]
CHR Extension: (savee on) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm [2014-06-16]
CHR Extension: (sAve on) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee [2014-06-16]
CHR Extension: (savee on) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm\2.14 [2014-06-16]
CHR Extension: (sAve on) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee\2.14 [2014-06-16]
CHR HKLM-x32\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Users\Jarka\AppData\Local\Torch\Plugins\TorchPlugin.crx [2014-06-16]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [342336 2014-05-15] (IObit)
S2 SpyHunter 4 Service; C:\Program Files (x86)\Enigma Software Group\SpyHunter\SH4Service.exe [770432 2013-06-27] (Enigma Software Group USA, LLC.)

S3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2013-11-19] (IObit.com)
S3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-11-19] (IObit.com)
S1 prodrv06; \SystemRoot\System32\drivers\prodrv06.sys [X]

2014-06-19 14:49 - 2014-06-19 14:49 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\optlhzur.sys
2014-06-19 14:36 - 2014-06-19 14:36 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\vrncxqjj.sys
2014-06-19 14:36 - 2014-06-19 14:36 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\ururcgmo.sys
2014-06-19 02:38 - 2014-06-19 02:39 - 00000000 ____D () C:\ProgramData\IObit
2014-06-19 02:38 - 2014-06-19 02:38 - 00001177 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2014-06-19 02:38 - 2014-06-19 02:38 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\IObit
2014-06-19 02:38 - 2014-06-19 02:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2014-06-19 02:38 - 2014-06-19 02:38 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-06-19 00:46 - 2014-06-19 00:46 - 00929416 _____ (CNET Download.com) C:\Users\Jarka\Downloads\cbsidlm-cbsi188-Lark_AntiSpyware-ORG-10969376.exe
2014-06-19 00:40 - 2014-06-19 00:41 - 27053144 _____ (IObit ) C:\Users\Jarka\Downloads\IObit-Malware-Figher-Setup.exe
2014-06-18 22:29 - 2014-06-18 22:29 - 00003330 _____ () C:\Windows\System32\Tasks\SpyHunter4Startup
2014-06-18 22:29 - 2014-06-18 22:29 - 00002288 _____ () C:\Users\Jarka\Desktop\SpyHunter.lnk
2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\sh4ldr
2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\Program Files (x86)\Enigma Software Group
2014-06-16 22:17 - 2014-06-19 00:35 - 00000000 ____D () C:\ProgramData\sAve on
2014-06-16 22:17 - 2014-06-18 17:30 - 00000000 ____D () C:\Program Files (x86)\sAve on
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
C:\Users\Jarka\AppData\Local\Temp\cabex.dll
C:\Users\Jarka\AppData\Local\Temp\comver.dll
C:\Users\Jarka\AppData\Local\Temp\DSETUP.dll
C:\Users\Jarka\AppData\Local\Temp\dsetup32.dll
C:\Users\Jarka\AppData\Local\Temp\DXSETUP.exe
C:\Users\Jarka\AppData\Local\Temp\eauninstall.exe
C:\Users\Jarka\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\Jarka\AppData\Local\Temp\ljo_amz7.dll
C:\Users\Jarka\AppData\Local\Temp\SIInvoker.exe
C:\Users\Jarka\AppData\Local\Temp\tmp266A.exe
C:\Users\Jarka\AppData\Local\Temp\tmp5833.exe
C:\Users\Jarka\AppData\Local\Temp\tmp5BEB.exe
C:\Users\Jarka\AppData\Local\Temp\tmp6BEB.exe
C:\Users\Jarka\AppData\Local\Temp\tmpBD67.exe
C:\Users\Jarka\AppData\Local\Temp\tmpEA60.exe
C:\Users\Jarka\AppData\Local\Temp\tu17p84.exe
C:\Users\Jarka\AppData\Local\Temp\unelevate.exe
C:\Users\Jarka\AppData\Local\Temp\ytai_ytareg_setup.exe
C:\Users\Jarka\AppData\Local\Temp\_is4318.exe
C:\Users\Jarka\AppData\Local\Temp\_unps.exe
C:\Users\Jarka\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
C:\Program Files (x86)\Enigma Software Group
C:\Program Files (x86)\IObit

Hosts:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\IObit Malware Fighter => value deleted successfully.
HKU\S-1-5-21-3004848830-2071332093-2801358294-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value deleted successfully.
'HKU\S-1-5-21-3004848830-2071332093-2801358294-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{65cc19af-c88f-11e3-8874-c0cb38fa1b86}' => Key deleted successfully.
'HKCR\CLSID\{65cc19af-c88f-11e3-8874-c0cb38fa1b86}'=> Key not found.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F562D96D-088C-441D-80D3-6F3F892640E2}' => Key deleted successfully.
'HKCR\CLSID\{F562D96D-088C-441D-80D3-6F3F892640E2}'=> Key not found.
'HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}' => Key deleted successfully.
'HKCR\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}'=> Key not found.
'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F}' => Key deleted successfully.
C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default\Extensions\adremoveext@adremoveext.net => Moved successfully.
C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default\Extensions\dg-eaiue@laluyaaiuyy.com => Moved successfully.
C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default\Extensions\kbgua3e@umqjk-rpc.co.uk => Moved successfully.
C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fopdddcinljmpmioaklghcalngfhbaen => Moved successfully.
C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm => Moved successfully.
C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee => Moved successfully.
C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm\2.14 directory not found.
C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee\2.14 directory not found.
'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof' => Key deleted successfully.
"C:\Users\Jarka\AppData\Local\Torch\Plugins\TorchPlugin.crx" => File/Directory not found.
'HKLM\SOFTWARE\Policies\Google' => Key deleted successfully.
IMFservice => Service stopped successfully.
IMFservice => Service deleted successfully.
SpyHunter 4 Service => Service deleted successfully.
FileMonitor => Service deleted successfully.
RegFilter => Service deleted successfully.
UrlFilter => Service deleted successfully.
prodrv06 => Service deleted successfully.
C:\Windows\system32\Drivers\optlhzur.sys => Moved successfully.
C:\Windows\system32\Drivers\vrncxqjj.sys => Moved successfully.
C:\Windows\system32\Drivers\ururcgmo.sys => Moved successfully.
C:\ProgramData\IObit => Moved successfully.
C:\Users\Public\Desktop\IObit Malware Fighter.lnk => Moved successfully.
C:\Users\Jarka\AppData\Roaming\IObit => Moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter => Moved successfully.
C:\Program Files (x86)\IObit => Moved successfully.
C:\Users\Jarka\Downloads\cbsidlm-cbsi188-Lark_AntiSpyware-ORG-10969376.exe => Moved successfully.
C:\Users\Jarka\Downloads\IObit-Malware-Figher-Setup.exe => Moved successfully.
C:\Windows\System32\Tasks\SpyHunter4Startup => Moved successfully.
C:\Users\Jarka\Desktop\SpyHunter.lnk => Moved successfully.
C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter => Moved successfully.
C:\sh4ldr => Moved successfully.
C:\Program Files (x86)\Enigma Software Group => Moved successfully.
C:\ProgramData\sAve on => Moved successfully.
C:\Program Files (x86)\sAve on => Moved successfully.
C:\Users\HomeGroupUser$\AppData\Local\Torch => Moved successfully.
C:\Users\Administrator\AppData\Local\Torch => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\cabex.dll => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\comver.dll => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\DSETUP.dll => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\dsetup32.dll => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\DXSETUP.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\eauninstall.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\ljo_amz7.dll => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\SIInvoker.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\tmp266A.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\tmp5833.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\tmp5BEB.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\tmp6BEB.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\tmpBD67.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\tmpEA60.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\tu17p84.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\unelevate.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\ytai_ytareg_setup.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\_is4318.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\_unps.exe => Moved successfully.
C:\Users\Jarka\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe => Moved successfully.
"C:\Program Files (x86)\Enigma Software Group" => File/Directory not found.
"C:\Program Files (x86)\IObit" => File/Directory not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.


The system needed a reboot.

==== End of Fixlog ====
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Pomalé PC + nejde spustit žádný soubor

#6 Příspěvek od vyosek »

:arrow: Jeste budeme pokracovat, je tam toho jeste hodne. ten prvni fix byl jen abychom PC zprovoznily

:arrow: Zadne od oka, neco uz je zkusenost co tam byt nema, zbytek jsem si dohledal na google

:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
:arrow: Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do okna vlozte skript nize

  • Kód: Vybrat vše

    autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;
  • Nasledne kliknete na Run Script
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Ryan33
Návštěvník
Návštěvník
Příspěvky: 19
Registrován: 20 čer 2014 10:10

Re: Pomalé PC + nejde spustit žádný soubor

#7 Příspěvek od Ryan33 »

První log:

# AdwCleaner v3.212 - Report created 20/06/2014 at 20:38:01
# Updated 05/06/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Jarka - RYAN
# Running from : C:\Users\Jarka\Desktop\adwcleaner_3.212.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Administrator\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\ASPNET\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\ASPNET\AppData\Local\torch
Folder Deleted : C:\Users\Guest\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Guest\AppData\Local\torch
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Jarka\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Jarka\AppData\Local\PackageAware
Folder Deleted : C:\Users\Jarka\AppData\Local\torch
Folder Deleted : C:\Users\postgres\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\postgres\AppData\Local\torch
Folder Deleted : C:\Users\Public\Documents\Goobzo
File Deleted : C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Deleted : C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_inst.shoppingate.info_0.localstorage
File Deleted : C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_inst.shoppingate.info_0.localstorage-journal

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCompress3.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioFile3.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioFileWMA3.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioFormatSettings3.DLL
Key Deleted : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\S-1792361332
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5E50AE1D-BC76-418B-94C4-EFEAC0CEF80C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{69E54DE2-C4ED-4BEC-8046-E3F9AC74B4B0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F14321-8FED-4CBC-B01A-4B57FC199062}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{23BDC78C-B7BB-42E5-B970-54B292592D72}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2C6F7E96-73BC-47A5-9F51-B67F0BAFE24D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4C58EB04-7B72-4D3D-A36E-66167A99BC31}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4EE0B011-604C-47F3-8F2B-39F79640B85E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD5175E2-7CC1-418C-B66C-0AB95DAD4103}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D8BFC514-1135-4393-B09A-193D2AAC5037}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{43B4B831-F41F-4F73-8F14-4FFF0BA75B1B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{85672EDB-2CC8-40B9-A9E8-77D3478F2EFB}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Goobzo
Key Deleted : HKCU\Software\torch
Key Deleted : HKCU\Software\UpdateStar
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKLM\Software\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Goobzo
Key Deleted : HKLM\Software\torch

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17126


-\\ Mozilla Firefox v30.0 (cs)

[ File : C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default\prefs.js ]

Line Deleted : user_pref("extensions.11hER.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumorobo.n[...]
Line Deleted : user_pref("extensions.1bZv0.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumorobo.n[...]
Line Deleted : user_pref("extensions.crossrider.bic", "14580c6edca9299b9c2c8915831acdfe");

-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://www.eribo.cz/inshop/scripts/shop.aspx?a ... earchTerms}
Deleted [Search Provider] : hxxp://wordpress.org/search/do-search.php?search={searchTerms}
Deleted [Extension] : gkcefkcdkepgkpbgncjchhbjgoanleod

*************************

AdwCleaner[R0].txt - [6003 octets] - [20/06/2014 20:24:19]
AdwCleaner[S0].txt - [5799 octets] - [20/06/2014 20:38:01]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5859 octets] ##########


Druhý log:

Zoek.exe v5.0.0.0 Updated 20-06-2014
Tool run by Jarka on p 20.06.2014 at 20:44:48,98.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Jarka\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

20.6.2014 20:51:57 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3004848830-2071332093-2801358294-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} deleted successfully
HKEY_USERS\S-1-5-21-3004848830-2071332093-2801358294-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3004848830-2071332093-2801358294-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} deleted successfully

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\Mozilla Firefox\defaults\preferences\pref.js deleted
C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted
C:\PROGRA~3\InstallMate deleted
C:\Users\Jarka\AppData\Local\cache deleted
C:\Users\Jarka\Searches deleted
C:\Users\Jarka\AppData\LocalLow\ADSRemoval deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
"C:\ProgramData\.811261211181235583101118113995" deleted
"C:\PROGRA~3\e5cdbb6c10b97acb\{993EA8F6-6E55-7E4E-39DE-5796E3226DB9}.20140616201656" deleted
"C:\PROGRA~3\e5cdbb6c10b97acb\{993EA8F6-6E55-7E4E-39DE-5796E3226DB9}.20140616221718" deleted
"C:\PROGRA~3\e5cdbb6c10b97acb\{993EA8F6-6E55-7E4E-39DE-5796E3226DB9}.20140618173007" deleted
"C:\PROGRA~3\e5cdbb6c10b97acb" deleted

==== Chrome Look ======================

savee on - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - Jarka\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - Jarka\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
Seznam Lištička - Slovník - Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd
Session Buddy - Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\edacconmaakjimmfgnblocblbcdcpbko
Wunderlist - To-do and Task list - Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjliknjliaohjgjajlgolhijphojjdkc
Neat Bookmarks - Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnancliccjabjjmipbpjkfbijifaainp
RSS Feed Reader - Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp
savee on - Jarka\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - Jarka\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - postgres\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - postgres\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - postgres\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - postgres\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee
savee on - postgres\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm
sAve on - postgres\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee

==== Chrome Fix ======================

C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully
C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\Jarka\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\Jarka\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\postgres\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\postgres\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\postgres\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ilfdgmkdidlkjamjnlknoaiflimddcbm deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\Jarka\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\Jarka\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\postgres\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\postgres\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully
C:\Users\postgres\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pchclmnnaaehlhkmejaljhgbglkbdjee deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... {startPage}"

==== Reset Google Chrome ======================

C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully
C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\2add044e-e625-4022-8be9-699aaa25e1f7 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ff795b30-1ad4-4ee4-86f5-2371f2e98bb5 deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\googletalk deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jarka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jarka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Jarka\AppData\Local\Mozilla\Firefox\Profiles\6zw07bmg.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=381 folders=122 28232083 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Jarka\AppData\Local\Temp will be emptied at reboot
C:\Users\postgres\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Jarka\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on p 20.06.2014 at 21:11:14,17 ======================
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Pomalé PC + nejde spustit žádný soubor

#8 Příspěvek od vyosek »

:arrow: Dejte log z FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100 a docistime zbytky
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Ryan33
Návštěvník
Návštěvník
Příspěvky: 19
Registrován: 20 čer 2014 10:10

Re: Pomalé PC + nejde spustit žádný soubor

#9 Příspěvek od Ryan33 »

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-06-2014
Ran by Jarka (administrator) on RYAN on 20-06-2014 22:42:26
Running from C:\Users\Jarka\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\Apoint.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApMsgFwd.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApntEx.exe
(ALPS) C:\Program Files\Apoint\Apvfb.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\35.0.1916.52\remoting_host.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\35.0.1916.52\remoting_host.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Sony of America Corporation) C:\Program Files\Sony\VAIO Care\listener.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCsystray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\Admload.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint\Apoint.exe [212480 2010-09-15] (Alps Electric Co., Ltd.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10775584 2010-09-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2040352 2010-09-28] (Realtek Semiconductor)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [102400 2010-09-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-03] (Intel Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Startup: C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\Jarka\AppData\Roaming\Mozilla\Firefox\Profiles\6zw07bmg.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml

Chrome:
=======
CHR HomePage: hxxp://www.google.cz/
CHR Extension: (Dokumenty Google) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-20]
CHR Extension: (Disk Google) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-01]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-06-20]
CHR Extension: (YouTube) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-01]
CHR Extension: (Vyhledávání Google) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-01]
CHR Extension: (Session Buddy) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2014-06-20]
CHR Extension: (ANNO Online) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\edlfafigoeaoafhcodgjgagjpibckpmk [2014-06-20]
CHR Extension: (Wunderlist - To-do and Task list) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjliknjliaohjgjajlgolhijphojjdkc [2014-06-20]
CHR Extension: (Vzdálená plocha Chrome) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2014-06-20]
CHR Extension: (Google Keep) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2014-06-20]
CHR Extension: (Peněženka Google) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-01]
CHR Extension: (Neat Bookmarks) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnancliccjabjjmipbpjkfbijifaainp [2014-06-20]
CHR Extension: (Weather Underground) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjejbgheonogbpfkkjigbmahaljipoej [2014-06-20]
CHR Extension: (Gmail) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-01]
CHR Extension: (RSS Feed Reader) - C:\Users\Jarka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2014-06-20]

==================== Services (Whitelisted) =================

R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\35.0.1916.52\remoting_host.exe [51016 2014-04-17] (Google Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [259192 2011-01-29] (Sony Corporation)
R2 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [836608 2010-06-08] (Sony Corporation) [File not signed]
R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1286784 2012-10-26] (Sony Corporation)
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-04-18] ()
S3 Axtmvflt; C:\Windows\System32\DRIVERS\Axtmvflt.sys [6144 2007-03-26] (Axesstel)
S3 Axtmvmdm; C:\Windows\System32\DRIVERS\Axtmvmdm.sys [54272 2007-03-26] (Axesstel)
S3 Axtmvprt; C:\Windows\System32\Drivers\Axtmvprt.sys [52224 2007-03-26] (Axesstel)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-04-20] (Disc Soft Ltd)
S3 EsgScanner; C:\Windows\SysWOW64\DRIVERS\EsgScanner.sys [19984 2012-06-22] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-04-18] ()
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
S0 prohlp02; C:\Windows\SysWOW64\drivers\prohlp02.sys [62720 2003-10-10] (Protection Technology) [File not signed]
S0 prosync1; C:\Windows\SysWOW64\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology) [File not signed]
S3 SaiK0621; C:\Windows\System32\DRIVERS\SaiK0621.sys [131584 2008-10-22] (Saitek)
S0 sfhlp01; C:\Windows\SysWOW64\drivers\sfhlp01.sys [4832 2003-09-06] (Protection Technology) [File not signed]
S3 esgiguard; \??\C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-20 22:42 - 2014-06-20 22:43 - 00018310 _____ () C:\Users\Jarka\Downloads\FRST.txt
2014-06-20 22:40 - 2014-06-20 22:40 - 00112640 _____ (forum.viry.cz) C:\Users\Jarka\Downloads\Nepotvrzeno 757536.crdownload
2014-06-20 22:38 - 2014-06-20 22:39 - 02083328 _____ (Farbar) C:\Users\Jarka\Downloads\FRST64.exe
2014-06-20 21:12 - 2014-06-20 21:12 - 00016250 _____ () C:\Users\Jarka\Desktop\zoek-results.txt
2014-06-20 21:09 - 2014-06-20 20:43 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-06-20 20:51 - 2014-06-20 21:11 - 00016250 _____ () C:\zoek-results.log
2014-06-20 20:46 - 2014-06-20 20:46 - 00002920 _____ () C:\Windows\System32\Tasks\{BF61FC62-E9D7-4BEB-88FA-615CE7BD812A}
2014-06-20 20:46 - 2014-06-20 20:46 - 00002920 _____ () C:\Windows\System32\Tasks\{12237C73-A2AB-45E6-A2E6-BC59E0AEC1E4}
2014-06-20 20:43 - 2014-06-20 21:07 - 00000000 ____D () C:\zoek_backup
2014-06-20 20:43 - 2014-06-20 20:43 - 00005947 _____ () C:\Users\Jarka\Desktop\AdwCleaner[S0].txt
2014-06-20 20:24 - 2014-06-20 20:38 - 00000000 ____D () C:\AdwCleaner
2014-06-20 20:24 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-20 20:23 - 2014-06-20 20:23 - 01285120 _____ () C:\Users\Jarka\Desktop\zoek.exe
2014-06-20 20:22 - 2014-06-20 20:22 - 01333465 _____ () C:\Users\Jarka\Desktop\adwcleaner_3.212.exe
2014-06-20 17:29 - 2014-06-20 22:42 - 00000000 ____D () C:\FRST
2014-06-19 23:40 - 2014-06-19 23:47 - 00000000 ____D () C:\Qoobox
2014-06-19 23:39 - 2014-06-19 23:39 - 00000000 ____D () C:\Windows\erdnt
2014-06-19 15:33 - 2014-06-19 17:33 - 00097324 _____ () C:\Users\Jarka\Desktop\avgrep.txt
2014-06-19 15:25 - 2014-06-19 15:25 - 00000010 _____ () C:\Users\Jarka\Desktop\brambory.txt
2014-06-19 15:23 - 2014-06-19 15:23 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\TuneUp Software
2014-06-19 15:21 - 2014-06-19 23:49 - 00000000 ____D () C:\ProgramData\MFAData
2014-06-19 15:21 - 2014-06-19 15:21 - 00000000 ____D () C:\Users\Jarka\AppData\Local\MFAData
2014-06-19 14:35 - 2014-06-19 14:35 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-19 01:58 - 2014-06-19 02:41 - 00002914 _____ () C:\Users\Jarka\Desktop\score-hry cz.txt
2014-06-19 00:03 - 2014-06-19 00:33 - 00001180 _____ () C:\Users\Jarka\Desktop\rgerge.txt
2014-06-18 22:30 - 2014-06-19 00:03 - 00000725 _____ () C:\Users\Jarka\Desktop\clanky.txt
2014-06-18 22:30 - 2014-06-18 22:30 - 00000000 _____ () C:\autoexec.bat
2014-06-18 22:27 - 2014-06-18 22:29 - 00000000 ____D () C:\Windows\027B5748C40941FE949B7B81A8304EF4.TMP
2014-06-18 22:25 - 2014-06-18 22:25 - 00000000 ____D () C:\Users\Jarka\Desktop\pen tricks
2014-06-18 21:25 - 2014-06-18 21:27 - 00000000 ____D () C:\Users\Jarka\Desktop\angličtina
2014-06-18 20:56 - 2014-06-18 20:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-18 20:32 - 2014-06-18 20:32 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SaiK0621_01005.Wdf
2014-06-18 20:31 - 2008-10-22 15:08 - 01919968 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01005.dll
2014-06-18 20:20 - 2014-06-18 20:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike Source
2014-06-18 20:02 - 2014-06-18 20:27 - 00000000 ____D () C:\Program Files (x86)\Counter-Strike Source
2014-06-18 15:29 - 2014-06-18 15:29 - 00001527 _____ () C:\Users\Public\Desktop\Red Alert 2.lnk
2014-06-18 15:29 - 2014-06-18 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood
2014-06-18 15:23 - 2014-06-18 15:23 - 00000000 ____D () C:\Westwood
2014-06-18 03:17 - 2014-06-18 03:18 - 00000000 ____D () C:\Users\Jarka\Desktop\sk8
2014-06-18 03:17 - 2014-06-18 03:17 - 00000269 _____ () C:\Users\Jarka\Desktop\egerge.txt
2014-06-17 23:42 - 2014-06-17 23:42 - 00000000 ____D () C:\Users\Public\Documents\EA Games
2014-06-17 23:42 - 2014-06-17 23:42 - 00000000 ____D () C:\Users\Jarka\Documents\EA Games
2014-06-17 20:47 - 2014-06-17 20:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2014-06-17 20:46 - 2014-06-17 20:46 - 00002053 _____ () C:\Users\Public\Desktop\Tony Hawks Pro Skater 4.lnk
2014-06-17 20:42 - 2014-06-17 20:42 - 00000000 ____D () C:\Tony Hawk´s Pro Skater 4
2014-06-17 19:30 - 2014-06-17 19:51 - 00000000 ____D () C:\Users\Jarka\Documents\SpellForce
2014-06-17 18:54 - 2014-06-17 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aspyr
2014-06-17 18:54 - 2014-06-17 18:54 - 00002006 _____ () C:\Users\Public\Desktop\MTX MotoTrax Demo.lnk
2014-06-17 18:53 - 2014-06-17 20:44 - 00000000 ____D () C:\Program Files (x86)\Aspyr
2014-06-17 18:51 - 2014-06-17 18:51 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-06-17 18:50 - 2014-06-17 18:50 - 00001198 _____ () C:\Users\postgres\Desktop\SpellForce - The Order of Dawn.lnk
2014-06-17 18:50 - 2014-06-17 18:50 - 00001198 _____ () C:\Users\Jarka\Desktop\SpellForce - The Order of Dawn.lnk
2014-06-17 18:49 - 2014-06-17 18:49 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-06-17 18:49 - 2014-06-17 18:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-06-17 18:45 - 2014-06-17 18:45 - 00000000 ____D () C:\Program Files (x86)\JoWooD
2014-06-17 18:12 - 2014-06-17 18:17 - 00000000 ____D () C:\Users\Jarka\Downloads\Gimp files
2014-06-17 18:03 - 2014-06-17 18:03 - 00040119 _____ () C:\Users\Jarka\AppData\Local\recently-used.xbel
2014-06-17 14:33 - 2014-06-17 14:39 - 00000000 ____D () C:\Program Files (x86)\Scorpions WinCheater
2014-06-17 14:33 - 2014-06-17 14:33 - 00001107 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scorpion's WinCheater 2.lnk
2014-06-17 14:33 - 2014-06-17 14:33 - 00001095 _____ () C:\Users\postgres\Desktop\Scorpion's WinCheater 2.lnk
2014-06-17 14:33 - 2014-06-17 14:33 - 00001095 _____ () C:\Users\Jarka\Desktop\Scorpion's WinCheater 2.lnk
2014-06-17 14:33 - 2014-06-17 14:33 - 00000000 ____D () C:\Users\Jarka\Documents\z Health
2014-06-17 13:03 - 2014-06-18 21:27 - 00000000 ____D () C:\Users\Jarka\Desktop\data
2014-06-17 03:39 - 2014-06-17 03:39 - 00001471 _____ () C:\Users\Jarka\Desktop\tarer.txt
2014-06-17 01:39 - 2014-06-17 01:39 - 00000000 ____D () C:\Users\Jarka\AppData\Local\webkit
2014-06-16 23:16 - 2014-06-16 23:16 - 00001015 _____ () C:\Users\Jarka\Desktop\Vector Magic.lnk
2014-06-16 23:16 - 2014-06-16 23:16 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vector Magic
2014-06-16 23:16 - 2014-06-16 23:16 - 00000000 ____D () C:\Program Files (x86)\Vector Magic
2014-06-16 22:28 - 2014-06-19 01:16 - 00000000 ____D () C:\Users\Jarka\Desktop\mapka
2014-06-16 22:27 - 2014-06-16 22:27 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\VitySoft
2014-06-16 22:27 - 2014-06-16 22:27 - 00000000 ____D () C:\Users\Jarka\.objectdb
2014-06-16 22:17 - 2014-06-16 22:17 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Packages
2014-06-16 22:13 - 2014-06-16 22:13 - 00000965 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD.lnk
2014-06-16 22:13 - 2014-06-16 22:13 - 00000953 _____ () C:\Users\postgres\Desktop\YTD.lnk
2014-06-16 22:00 - 2014-06-16 22:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GetASFStream
2014-06-16 22:00 - 2014-06-16 22:05 - 00000000 ____D () C:\Program Files\GetASFStream
2014-06-16 20:19 - 2014-06-16 20:19 - 00044738 _____ () C:\Users\Jarka\Downloads\x-games.zip
2014-06-16 20:17 - 2014-06-16 22:17 - 00002718 _____ () C:\Windows\System32\Tasks\SO_Booster-S-1792361332
2014-06-16 20:17 - 2014-06-16 20:17 - 00000000 ____D () C:\ProgramData\Appday software
2014-06-16 20:16 - 2014-06-20 20:05 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\postgres\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\postgres\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator
2014-06-16 03:38 - 2014-06-16 03:38 - 00003146 _____ () C:\Users\Jarka\Desktop\hodina pravdy.txt
2014-06-15 18:53 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-15 18:53 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-15 18:53 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-15 18:53 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-15 18:53 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-15 18:53 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-15 18:53 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-15 18:53 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-15 18:53 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-15 18:53 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-15 18:53 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-15 18:53 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-15 18:52 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-15 18:52 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-15 18:52 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-15 18:52 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-15 18:52 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-15 18:52 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-15 18:52 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-15 18:52 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-15 18:52 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-15 18:52 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-15 18:52 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-15 18:52 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-15 18:52 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-15 18:52 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-15 18:52 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-15 18:52 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-15 18:52 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-15 18:52 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-15 18:52 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-15 18:52 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-15 18:52 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-15 18:52 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-15 18:52 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-15 18:52 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-15 18:52 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-15 18:52 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-15 18:52 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-15 18:52 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-15 18:52 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-15 18:52 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-15 18:52 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-15 18:52 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-15 18:52 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-15 18:52 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-15 18:52 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-15 18:52 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-15 18:52 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-15 18:52 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-15 18:52 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-15 18:52 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-15 18:52 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-15 18:52 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-15 18:52 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-15 18:52 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-15 18:52 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-15 18:52 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-15 18:52 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-06-15 18:51 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-15 18:51 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-15 18:51 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-15 18:51 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-15 18:51 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-15 18:51 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-15 18:51 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-15 18:49 - 2014-06-08 11:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-15 18:49 - 2014-06-08 11:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-13 16:29 - 2014-06-13 16:29 - 00001351 _____ () C:\Users\Jarka\Desktop\Play Loren The Amazon Princess!.lnk
2014-06-13 16:29 - 2014-06-13 16:29 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\RenPy
2014-06-13 16:29 - 2014-06-13 16:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winter Wolves
2014-06-13 16:28 - 2014-06-13 16:28 - 00000000 ____D () C:\Program Files (x86)\Winter Wolves
2014-06-13 14:55 - 2014-06-13 14:55 - 00000000 ____D () C:\Program Files (x86)\1C
2014-06-13 02:47 - 2014-06-13 02:47 - 00001892 _____ () C:\Users\Public\Desktop\Dawn Of Magic 2.lnk
2014-06-13 02:47 - 2014-06-13 02:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kalypso
2014-06-13 02:47 - 2014-06-13 02:47 - 00000000 ____D () C:\Program Files (x86)\Kalypso
2014-06-13 02:43 - 2014-06-13 02:43 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\ScummVM
2014-06-13 02:42 - 2014-06-13 02:42 - 00002011 _____ () C:\Users\Public\Desktop\Broken Sword II CZ.lnk
2014-06-13 02:42 - 2014-06-13 02:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Broken Sword II CZ
2014-06-13 02:41 - 2014-06-13 02:42 - 00000000 ____D () C:\Program Files (x86)\Broken Sword 2 CZ
2014-06-13 02:30 - 2014-06-15 03:23 - 00127081 _____ () C:\Users\Jarka\Desktop\hadanka.xlsx
2014-06-07 01:08 - 2014-05-01 17:03 - 00000000 ____D () C:\Users\Jarka\Downloads\ctyrlistek 473
2014-06-06 21:57 - 2014-06-07 03:24 - 00000000 ____D () C:\Users\Jarka\Desktop\pages
2014-06-06 01:02 - 2014-06-06 01:02 - 00000000 ____D () C:\Users\Jarka\Desktop\astronomie
2014-06-05 03:17 - 2014-06-13 02:50 - 00001105 _____ () C:\Users\Jarka\Desktop\tod.txt
2014-06-03 13:23 - 2014-06-03 13:23 - 00000000 ____D () C:\ProgramData\Google
2014-06-02 02:48 - 2014-06-02 02:49 - 00000000 ____D () C:\Users\Jarka\Downloads\doc
2014-05-29 16:30 - 2014-05-29 16:30 - 00001412 _____ () C:\Windows\system32\warcraft cinematic videos .lnk
2014-05-29 13:11 - 2014-06-02 02:48 - 00000000 ____D () C:\Users\Jarka\Downloads\gimp tutorialy
2014-05-29 12:57 - 2014-05-29 12:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-29 12:56 - 2014-05-29 12:57 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-29 12:56 - 2014-05-29 12:57 - 00000000 ____D () C:\Program Files\iTunes
2014-05-29 12:56 - 2014-05-29 12:56 - 00000000 ____D () C:\Program Files\iPod
2014-05-29 12:56 - 2014-05-29 12:56 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-28 15:23 - 2014-05-28 15:23 - 00002122 _____ () C:\Users\Public\Desktop\Medieval II Total War.lnk
2014-05-28 15:14 - 2014-05-28 15:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA
2014-05-28 15:14 - 2014-05-28 15:14 - 00000000 ____D () C:\ProgramData\InstallShield
2014-05-28 15:14 - 2014-05-28 15:14 - 00000000 ____D () C:\Program Files (x86)\SEGA
2014-05-27 23:40 - 2014-06-16 17:54 - 00011039 _____ () C:\Users\Jarka\Desktop\DX.xlsx
2014-05-27 22:27 - 2014-05-27 22:27 - 00000000 ____D () C:\Users\Jarka\AppData\Local\DOSBox
2014-05-26 12:03 - 2014-05-26 12:03 - 00002599 _____ () C:\Users\Public\Desktop\Hidden & Dangerous 2.lnk
2014-05-26 12:03 - 2014-05-26 12:03 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Illusion Softworks
2014-05-26 12:03 - 2014-05-26 12:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Illusion Softworks
2014-05-24 22:28 - 2014-06-17 14:33 - 00000000 ____D () C:\Users\Jarka\Documents\others
2014-05-24 13:20 - 2014-06-16 20:07 - 00000000 ____D () C:\Users\Jarka\Desktop\DIY kutil
2014-05-23 16:48 - 2014-05-23 16:48 - 00000000 ____D () C:\Program Files (x86)\Illusion Softworks
2014-05-23 00:58 - 2014-06-20 20:07 - 00000000 ____D () C:\Users\Jarka\Documents\Polda III
2014-05-23 00:58 - 2014-05-23 18:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Polda 3
2014-05-23 00:58 - 2014-05-23 00:58 - 00001026 _____ () C:\Users\Jarka\Desktop\Polda 3.lnk
2014-05-23 00:58 - 2014-05-23 00:58 - 00000000 ____D () C:\Program Files (x86)\Polda 3
2014-05-22 04:06 - 2014-06-11 03:18 - 00005684 _____ () C:\Users\Jarka\Desktop\watch it.txt
2014-05-22 02:01 - 2014-05-22 02:01 - 00027479 _____ () C:\Users\Jarka\Downloads\cantaragotica.zip
2014-05-22 01:58 - 2014-05-22 01:58 - 00020359 _____ () C:\Users\Jarka\Downloads\por_siempre_gotica.zip

==================== One Month Modified Files and Folders =======

2014-06-20 22:43 - 2014-06-20 22:42 - 00018310 _____ () C:\Users\Jarka\Downloads\FRST.txt
2014-06-20 22:42 - 2014-06-20 17:29 - 00000000 ____D () C:\FRST
2014-06-20 22:40 - 2014-06-20 22:40 - 00112640 _____ (forum.viry.cz) C:\Users\Jarka\Downloads\Nepotvrzeno 757536.crdownload
2014-06-20 22:39 - 2014-06-20 22:38 - 02083328 _____ (Farbar) C:\Users\Jarka\Downloads\FRST64.exe
2014-06-20 22:08 - 2012-11-25 20:11 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-20 21:52 - 2014-01-29 14:25 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-20 21:41 - 2012-11-25 11:19 - 02050690 _____ () C:\Windows\WindowsUpdate.log
2014-06-20 21:18 - 2009-07-14 06:45 - 00022560 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-20 21:18 - 2009-07-14 06:45 - 00022560 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-20 21:12 - 2014-06-20 21:12 - 00016250 _____ () C:\Users\Jarka\Desktop\zoek-results.txt
2014-06-20 21:11 - 2014-06-20 20:51 - 00016250 _____ () C:\zoek-results.log
2014-06-20 21:10 - 2014-02-01 17:11 - 00193444 _____ () C:\Windows\PFRO.log
2014-06-20 21:10 - 2014-01-31 22:25 - 00069614 _____ () C:\Windows\setupact.log
2014-06-20 21:10 - 2014-01-29 14:25 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-20 21:10 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-20 21:07 - 2014-06-20 20:43 - 00000000 ____D () C:\zoek_backup
2014-06-20 21:05 - 2012-11-25 11:24 - 00000000 ____D () C:\Users\Jarka
2014-06-20 20:46 - 2014-06-20 20:46 - 00002920 _____ () C:\Windows\System32\Tasks\{BF61FC62-E9D7-4BEB-88FA-615CE7BD812A}
2014-06-20 20:46 - 2014-06-20 20:46 - 00002920 _____ () C:\Windows\System32\Tasks\{12237C73-A2AB-45E6-A2E6-BC59E0AEC1E4}
2014-06-20 20:43 - 2014-06-20 21:09 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-06-20 20:43 - 2014-06-20 20:43 - 00005947 _____ () C:\Users\Jarka\Desktop\AdwCleaner[S0].txt
2014-06-20 20:38 - 2014-06-20 20:24 - 00000000 ____D () C:\AdwCleaner
2014-06-20 20:23 - 2014-06-20 20:23 - 01285120 _____ () C:\Users\Jarka\Desktop\zoek.exe
2014-06-20 20:22 - 2014-06-20 20:22 - 01333465 _____ () C:\Users\Jarka\Desktop\adwcleaner_3.212.exe
2014-06-20 20:11 - 2011-04-12 10:34 - 00681640 _____ () C:\Windows\system32\perfh005.dat
2014-06-20 20:11 - 2011-04-12 10:34 - 00148442 _____ () C:\Windows\system32\perfc005.dat
2014-06-20 20:11 - 2009-07-14 07:13 - 01622716 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-20 20:07 - 2014-05-23 00:58 - 00000000 ____D () C:\Users\Jarka\Documents\Polda III
2014-06-20 20:05 - 2014-06-16 20:16 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-06-20 20:04 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-06-20 12:47 - 2013-04-23 14:56 - 00000000 ____D () C:\Users\postgres
2014-06-20 12:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-06-19 23:49 - 2014-06-19 15:21 - 00000000 ____D () C:\ProgramData\MFAData
2014-06-19 23:47 - 2014-06-19 23:40 - 00000000 ____D () C:\Qoobox
2014-06-19 23:39 - 2014-06-19 23:39 - 00000000 ____D () C:\Windows\erdnt
2014-06-19 17:33 - 2014-06-19 15:33 - 00097324 _____ () C:\Users\Jarka\Desktop\avgrep.txt
2014-06-19 15:40 - 2014-02-11 23:08 - 00000000 ____D () C:\Program Files (x86)\Alo RM Converter
2014-06-19 15:25 - 2014-06-19 15:25 - 00000010 _____ () C:\Users\Jarka\Desktop\brambory.txt
2014-06-19 15:23 - 2014-06-19 15:23 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\TuneUp Software
2014-06-19 15:21 - 2014-06-19 15:21 - 00000000 ____D () C:\Users\Jarka\AppData\Local\MFAData
2014-06-19 14:35 - 2014-06-19 14:35 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-19 02:41 - 2014-06-19 01:58 - 00002914 _____ () C:\Users\Jarka\Desktop\geo-hry cz.txt
2014-06-19 01:16 - 2014-06-16 22:28 - 00000000 ____D () C:\Users\Jarka\Desktop\mapka
2014-06-19 01:08 - 2012-11-25 14:46 - 00000000 ____D () C:\Program Files (x86)\totalcmd
2014-06-19 00:35 - 2012-11-25 13:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-19 00:33 - 2014-06-19 00:03 - 00001180 _____ () C:\Users\Jarka\Desktop\rgerge.txt
2014-06-19 00:03 - 2014-06-18 22:30 - 00000725 _____ () C:\Users\Jarka\Desktop\clanky.txt
2014-06-18 22:30 - 2014-06-18 22:30 - 00000000 _____ () C:\autoexec.bat
2014-06-18 22:29 - 2014-06-18 22:27 - 00000000 ____D () C:\Windows\027B5748C40941FE949B7B81A8304EF4.TMP
2014-06-18 22:25 - 2014-06-18 22:25 - 00000000 ____D () C:\Users\Jarka\Desktop\pen tricks
2014-06-18 21:27 - 2014-06-18 21:25 - 00000000 ____D () C:\Users\Jarka\Desktop\angličtina
2014-06-18 21:27 - 2014-06-17 13:03 - 00000000 ____D () C:\Users\Jarka\Desktop\data
2014-06-18 20:57 - 2014-06-18 20:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-18 20:32 - 2014-06-18 20:32 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SaiK0621_01005.Wdf
2014-06-18 20:27 - 2014-06-18 20:02 - 00000000 ____D () C:\Program Files (x86)\Counter-Strike Source
2014-06-18 20:21 - 2014-01-17 15:51 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-06-18 20:20 - 2014-06-18 20:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike Source
2014-06-18 15:29 - 2014-06-18 15:29 - 00001527 _____ () C:\Users\Public\Desktop\Red Alert 2.lnk
2014-06-18 15:29 - 2014-06-18 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood
2014-06-18 15:23 - 2014-06-18 15:23 - 00000000 ____D () C:\Westwood
2014-06-18 13:31 - 2012-11-25 20:11 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-18 13:31 - 2012-11-25 20:11 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-18 13:31 - 2012-11-25 20:11 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-18 13:23 - 2009-07-14 06:45 - 00459368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-18 03:18 - 2014-06-18 03:17 - 00000000 ____D () C:\Users\Jarka\Desktop\sk8
2014-06-18 03:17 - 2014-06-18 03:17 - 00000269 _____ () C:\Users\Jarka\Desktop\egerge.txt
2014-06-18 02:32 - 2012-11-25 11:39 - 00128440 _____ () C:\Users\Jarka\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-18 01:21 - 2013-05-25 19:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
2014-06-18 01:21 - 2013-05-25 19:19 - 00000000 ____D () C:\Program Files (x86)\EA Games
2014-06-17 23:43 - 2013-05-25 20:16 - 00000000 ____D () C:\Games
2014-06-17 23:42 - 2014-06-17 23:42 - 00000000 ____D () C:\Users\Public\Documents\EA Games
2014-06-17 23:42 - 2014-06-17 23:42 - 00000000 ____D () C:\Users\Jarka\Documents\EA Games
2014-06-17 20:47 - 2014-06-17 20:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2014-06-17 20:46 - 2014-06-17 20:46 - 00002053 _____ () C:\Users\Public\Desktop\Tony Hawks Pro Skater 4.lnk
2014-06-17 20:46 - 2014-06-17 18:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aspyr
2014-06-17 20:44 - 2014-06-17 18:53 - 00000000 ____D () C:\Program Files (x86)\Aspyr
2014-06-17 20:42 - 2014-06-17 20:42 - 00000000 ____D () C:\Tony Hawk´s Pro Skater 4
2014-06-17 19:51 - 2014-06-17 19:30 - 00000000 ____D () C:\Users\Jarka\Documents\SpellForce
2014-06-17 19:30 - 2014-01-17 22:19 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\uTorrent
2014-06-17 18:54 - 2014-06-17 18:54 - 00002006 _____ () C:\Users\Public\Desktop\MTX MotoTrax Demo.lnk
2014-06-17 18:51 - 2014-06-17 18:51 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-06-17 18:50 - 2014-06-17 18:50 - 00001198 _____ () C:\Users\postgres\Desktop\SpellForce - The Order of Dawn.lnk
2014-06-17 18:50 - 2014-06-17 18:50 - 00001198 _____ () C:\Users\Jarka\Desktop\SpellForce - The Order of Dawn.lnk
2014-06-17 18:50 - 2014-04-18 20:17 - 00265784 _____ () C:\Windows\DirectX.log
2014-06-17 18:49 - 2014-06-17 18:49 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-06-17 18:49 - 2014-06-17 18:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-06-17 18:45 - 2014-06-17 18:45 - 00000000 ____D () C:\Program Files (x86)\JoWooD
2014-06-17 18:17 - 2014-06-17 18:12 - 00000000 ____D () C:\Users\Jarka\Downloads\Gimp files
2014-06-17 18:12 - 2013-03-23 17:34 - 00000000 ____D () C:\Users\Jarka\.gimp-2.8
2014-06-17 18:03 - 2014-06-17 18:03 - 00040119 _____ () C:\Users\Jarka\AppData\Local\recently-used.xbel
2014-06-17 14:39 - 2014-06-17 14:33 - 00000000 ____D () C:\Program Files (x86)\Scorpions WinCheater
2014-06-17 14:37 - 2014-02-26 03:32 - 00000000 ____D () C:\Users\Jarka\Desktop\učení
2014-06-17 14:33 - 2014-06-17 14:33 - 00001107 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scorpion's WinCheater 2.lnk
2014-06-17 14:33 - 2014-06-17 14:33 - 00001095 _____ () C:\Users\postgres\Desktop\Scorpion's WinCheater 2.lnk
2014-06-17 14:33 - 2014-06-17 14:33 - 00001095 _____ () C:\Users\Jarka\Desktop\Scorpion's WinCheater 2.lnk
2014-06-17 14:33 - 2014-06-17 14:33 - 00000000 ____D () C:\Users\Jarka\Documents\z Health
2014-06-17 14:33 - 2014-05-24 22:28 - 00000000 ____D () C:\Users\Jarka\Documents\others
2014-06-17 14:27 - 2012-12-19 18:22 - 00000000 ____D () C:\Tomas
2014-06-17 14:27 - 2012-11-25 11:52 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-17 14:26 - 2014-02-25 19:30 - 00000000 ____D () C:\Program Files\CyberLink
2014-06-17 14:17 - 2014-01-29 04:37 - 00000000 ____D () C:\Users\Jarka\Documents\5 gimp
2014-06-17 03:39 - 2014-06-17 03:39 - 00001471 _____ () C:\Users\Jarka\Desktop\tarer.txt
2014-06-17 01:39 - 2014-06-17 01:39 - 00000000 ____D () C:\Users\Jarka\AppData\Local\webkit
2014-06-16 23:20 - 2013-05-26 19:42 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\vlc
2014-06-16 23:16 - 2014-06-16 23:16 - 00001015 _____ () C:\Users\Jarka\Desktop\Vector Magic.lnk
2014-06-16 23:16 - 2014-06-16 23:16 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vector Magic
2014-06-16 23:16 - 2014-06-16 23:16 - 00000000 ____D () C:\Program Files (x86)\Vector Magic
2014-06-16 22:27 - 2014-06-16 22:27 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\VitySoft
2014-06-16 22:27 - 2014-06-16 22:27 - 00000000 ____D () C:\Users\Jarka\.objectdb
2014-06-16 22:26 - 2014-05-03 17:15 - 00000000 ____D () C:\Users\Jarka\Downloads\Subs
2014-06-16 22:17 - 2014-06-16 22:17 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Packages
2014-06-16 22:17 - 2014-06-16 20:17 - 00002718 _____ () C:\Windows\System32\Tasks\SO_Booster-S-1792361332
2014-06-16 22:13 - 2014-06-16 22:13 - 00000965 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD.lnk
2014-06-16 22:13 - 2014-06-16 22:13 - 00000953 _____ () C:\Users\postgres\Desktop\YTD.lnk
2014-06-16 22:05 - 2014-06-16 22:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GetASFStream
2014-06-16 22:05 - 2014-06-16 22:00 - 00000000 ____D () C:\Program Files\GetASFStream
2014-06-16 20:19 - 2014-06-16 20:19 - 00044738 _____ () C:\Users\Jarka\Downloads\x-games.zip
2014-06-16 20:17 - 2014-06-16 20:17 - 00000000 ____D () C:\ProgramData\Appday software
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\postgres\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\postgres\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Guest
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\ASPNET
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-06-16 20:16 - 2014-06-16 20:16 - 00000000 ____D () C:\Users\Administrator
2014-06-16 20:16 - 2014-01-29 14:25 - 00000000 ____D () C:\Program Files (x86)\Google
2014-06-16 20:16 - 2012-11-25 13:26 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Google
2014-06-16 20:07 - 2014-05-24 13:20 - 00000000 ____D () C:\Users\Jarka\Desktop\DIY kutil
2014-06-16 17:54 - 2014-05-27 23:40 - 00011039 _____ () C:\Users\Jarka\Desktop\DX.xlsx
2014-06-16 15:45 - 2013-05-31 00:01 - 00000000 ____D () C:\Users\Jarka\Downloads\3x
2014-06-16 14:54 - 2014-01-30 15:53 - 00000000 ____D () C:\Users\Jarka\Documents\2 fotky fotak
2014-06-16 13:56 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-06-16 03:47 - 2014-05-20 21:56 - 00000000 ____D () C:\Users\Jarka\Desktop\angry
2014-06-16 03:38 - 2014-06-16 03:38 - 00003146 _____ () C:\Users\Jarka\Desktop\hodina pravdy.txt
2014-06-16 03:09 - 2013-08-14 16:24 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-16 03:06 - 2012-11-25 13:00 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-16 03:05 - 2012-11-25 13:41 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-16 03:03 - 2014-04-30 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-15 18:55 - 2014-02-01 04:48 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-15 15:48 - 2014-05-07 03:22 - 00017631 _____ () C:\Users\Jarka\Desktop\overview.xlsx
2014-06-15 03:23 - 2014-06-13 02:30 - 00127081 _____ () C:\Users\Jarka\Desktop\hadanka.xlsx
2014-06-13 16:29 - 2014-06-13 16:29 - 00001351 _____ () C:\Users\Jarka\Desktop\Play Loren The Amazon Princess!.lnk
2014-06-13 16:29 - 2014-06-13 16:29 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\RenPy
2014-06-13 16:29 - 2014-06-13 16:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winter Wolves
2014-06-13 16:28 - 2014-06-13 16:28 - 00000000 ____D () C:\Program Files (x86)\Winter Wolves
2014-06-13 14:55 - 2014-06-13 14:55 - 00000000 ____D () C:\Program Files (x86)\1C
2014-06-13 02:50 - 2014-06-05 03:17 - 00001105 _____ () C:\Users\Jarka\Desktop\tod.txt
2014-06-13 02:49 - 2014-05-10 02:28 - 00000000 ____D () C:\Users\Jarka\Desktop\obrazky
2014-06-13 02:47 - 2014-06-13 02:47 - 00001892 _____ () C:\Users\Public\Desktop\Dawn Of Magic 2.lnk
2014-06-13 02:47 - 2014-06-13 02:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kalypso
2014-06-13 02:47 - 2014-06-13 02:47 - 00000000 ____D () C:\Program Files (x86)\Kalypso
2014-06-13 02:43 - 2014-06-13 02:43 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\ScummVM
2014-06-13 02:42 - 2014-06-13 02:42 - 00002011 _____ () C:\Users\Public\Desktop\Broken Sword II CZ.lnk
2014-06-13 02:42 - 2014-06-13 02:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Broken Sword II CZ
2014-06-13 02:42 - 2014-06-13 02:41 - 00000000 ____D () C:\Program Files (x86)\Broken Sword 2 CZ
2014-06-13 02:30 - 2014-01-12 19:01 - 00000688 _____ () C:\Users\Jarka\Desktop\fun.lnk
2014-06-11 03:18 - 2014-05-22 04:06 - 00005684 _____ () C:\Users\Jarka\Desktop\watch it.txt
2014-06-08 14:22 - 2011-04-12 10:45 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-06-08 11:13 - 2014-06-15 18:49 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 11:08 - 2014-06-15 18:49 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-07 03:24 - 2014-06-06 21:57 - 00000000 ____D () C:\Users\Jarka\Desktop\pages
2014-06-06 20:45 - 2012-11-25 14:05 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Skype
2014-06-06 20:31 - 2014-02-27 11:34 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-06 20:31 - 2012-11-25 14:04 - 00000000 ____D () C:\ProgramData\Skype
2014-06-06 13:45 - 2014-04-03 16:57 - 00141644 _____ () C:\Users\Jarka\Desktop\keepas.kdb
2014-06-06 01:25 - 2013-04-23 14:59 - 01640616 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-06-06 01:02 - 2014-06-06 01:02 - 00000000 ____D () C:\Users\Jarka\Desktop\astronomie
2014-06-05 02:20 - 2014-04-18 15:31 - 00000000 ____D () C:\Users\Jarka\Desktop\NEW MP3
2014-06-05 02:01 - 2014-05-12 18:57 - 00000000 ____D () C:\Users\Jarka\Desktop\zboziznalstvi
2014-06-03 13:23 - 2014-06-03 13:23 - 00000000 ____D () C:\ProgramData\Google
2014-06-03 12:00 - 2013-03-19 12:41 - 00343129 _____ () C:\test.xml
2014-06-02 02:49 - 2014-06-02 02:48 - 00000000 ____D () C:\Users\Jarka\Downloads\doc
2014-06-02 02:48 - 2014-05-29 13:11 - 00000000 ____D () C:\Users\Jarka\Downloads\gimp tutorialy
2014-06-02 02:48 - 2014-02-23 01:48 - 00000000 ____D () C:\Users\Jarka\Downloads\Z fonty - wp theme - zalohy db
2014-06-01 20:02 - 2013-03-23 17:34 - 00001118 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2014-05-30 15:09 - 2014-01-18 14:47 - 00000000 ___RD () C:\Users\Jarka\Documents\0 ikony z plochy
2014-05-30 12:21 - 2014-06-15 18:51 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 12:02 - 2014-06-15 18:52 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 12:02 - 2014-06-15 18:52 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 11:45 - 2014-06-15 18:52 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 11:39 - 2014-06-15 18:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 11:39 - 2014-06-15 18:51 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 11:38 - 2014-06-15 18:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 11:28 - 2014-06-15 18:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 11:27 - 2014-06-15 18:52 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 11:24 - 2014-06-15 18:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 11:21 - 2014-06-15 18:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 11:21 - 2014-06-15 18:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 11:20 - 2014-06-15 18:52 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 11:18 - 2014-06-15 18:52 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 11:11 - 2014-06-15 18:51 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 11:08 - 2014-06-15 18:51 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 11:06 - 2014-06-15 18:52 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 11:02 - 2014-06-15 18:52 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 10:55 - 2014-06-15 18:52 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 10:49 - 2014-06-15 18:51 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 10:46 - 2014-06-15 18:52 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 10:44 - 2014-06-15 18:52 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 10:44 - 2014-06-15 18:52 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 10:43 - 2014-06-15 18:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 10:42 - 2014-06-15 18:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 10:38 - 2014-06-15 18:52 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 10:35 - 2014-06-15 18:52 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 10:34 - 2014-06-15 18:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 10:33 - 2014-06-15 18:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 10:30 - 2014-06-15 18:52 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 10:29 - 2014-06-15 18:52 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 10:28 - 2014-06-15 18:52 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 10:27 - 2014-06-15 18:52 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 10:24 - 2014-06-15 18:52 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 10:23 - 2014-06-15 18:52 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 10:16 - 2014-06-15 18:52 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 10:10 - 2014-06-15 18:52 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 10:06 - 2014-06-15 18:52 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 10:04 - 2014-06-15 18:52 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 10:02 - 2014-06-15 18:52 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 09:56 - 2014-06-15 18:52 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 09:56 - 2014-06-15 18:51 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 09:54 - 2014-06-15 18:52 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 09:50 - 2014-06-15 18:52 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 09:49 - 2014-06-15 18:52 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 09:43 - 2014-06-15 18:52 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 09:40 - 2014-06-15 18:52 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 09:30 - 2014-06-15 18:52 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 09:21 - 2014-06-15 18:52 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 09:15 - 2014-06-15 18:52 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 09:13 - 2014-06-15 18:52 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-30 09:13 - 2014-06-15 18:51 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-29 16:30 - 2014-05-29 16:30 - 00001412 _____ () C:\Windows\system32\warcraft cinematic videos .lnk
2014-05-29 13:05 - 2014-01-18 03:29 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\DVDVideoSoft
2014-05-29 13:05 - 2014-01-18 03:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-05-29 13:05 - 2014-01-18 03:28 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-05-29 12:57 - 2014-05-29 12:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-29 12:57 - 2014-05-29 12:56 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-29 12:57 - 2014-05-29 12:56 - 00000000 ____D () C:\Program Files\iTunes
2014-05-29 12:56 - 2014-05-29 12:56 - 00000000 ____D () C:\Program Files\iPod
2014-05-29 12:56 - 2014-05-29 12:56 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-28 15:23 - 2014-05-28 15:23 - 00002122 _____ () C:\Users\Public\Desktop\Medieval II Total War.lnk
2014-05-28 15:14 - 2014-05-28 15:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA
2014-05-28 15:14 - 2014-05-28 15:14 - 00000000 ____D () C:\ProgramData\InstallShield
2014-05-28 15:14 - 2014-05-28 15:14 - 00000000 ____D () C:\Program Files (x86)\SEGA
2014-05-27 22:27 - 2014-05-27 22:27 - 00000000 ____D () C:\Users\Jarka\AppData\Local\DOSBox
2014-05-26 12:03 - 2014-05-26 12:03 - 00002599 _____ () C:\Users\Public\Desktop\Hidden & Dangerous 2.lnk
2014-05-26 12:03 - 2014-05-26 12:03 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Illusion Softworks
2014-05-26 12:03 - 2014-05-26 12:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Illusion Softworks
2014-05-26 11:48 - 2014-01-20 00:31 - 00000000 ____D () C:\Users\Jarka\Documents\7 PROJEKTY
2014-05-25 14:44 - 2014-05-03 03:17 - 00000000 ____D () C:\Users\Jarka\Desktop\Dobra Voda
2014-05-24 12:55 - 2013-05-26 14:19 - 00000000 ____D () C:\Users\Jarka\AppData\Local\Axure
2014-05-23 18:20 - 2014-05-23 00:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Polda 3
2014-05-23 16:48 - 2014-05-23 16:48 - 00000000 ____D () C:\Program Files (x86)\Illusion Softworks
2014-05-23 00:58 - 2014-05-23 00:58 - 00001026 _____ () C:\Users\Jarka\Desktop\Polda 3.lnk
2014-05-23 00:58 - 2014-05-23 00:58 - 00000000 ____D () C:\Program Files (x86)\Polda 3
2014-05-22 03:43 - 2014-05-09 20:02 - 00000000 ____D () C:\Users\Jarka\Desktop\life hacks
2014-05-22 02:01 - 2014-05-22 02:01 - 00027479 _____ () C:\Users\Jarka\Downloads\cantaragotica.zip
2014-05-22 01:58 - 2014-05-22 01:58 - 00020359 _____ () C:\Users\Jarka\Downloads\por_siempre_gotica.zip

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-18 14:52

==================== End Of Log ============================
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Pomalé PC + nejde spustit žádný soubor

#10 Příspěvek od vyosek »

:arrow: Omlouvam se, vecer uz jsem odpadl

:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File

SearchScopes: HKLM-x32 - DefaultScope value is missing.

S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]

S3 esgiguard; \??\C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 EsgScanner; C:\Windows\SysWOW64\DRIVERS\EsgScanner.sys [19984 2012-06-22] ()

2014-06-20 22:40 - 2014-06-20 22:40 - 00112640 _____ (forum.viry.cz) C:\Users\Jarka\Downloads\Nepotvrzeno 757536.crdownload
2014-06-20 21:12 - 2014-06-20 21:12 - 00016250 _____ () C:\Users\Jarka\Desktop\zoek-results.txt
2014-06-20 21:09 - 2014-06-20 20:43 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-06-20 20:51 - 2014-06-20 21:11 - 00016250 _____ () C:\zoek-results.log
2014-06-20 20:46 - 2014-06-20 20:46 - 00002920 _____ () C:\Windows\System32\Tasks\{BF61FC62-E9D7-4BEB-88FA-615CE7BD812A}
2014-06-20 20:46 - 2014-06-20 20:46 - 00002920 _____ () C:\Windows\System32\Tasks\{12237C73-A2AB-45E6-A2E6-BC59E0AEC1E4}
2014-06-20 20:43 - 2014-06-20 21:07 - 00000000 ____D () C:\zoek_backup
2014-06-20 20:43 - 2014-06-20 20:43 - 00005947 _____ () C:\Users\Jarka\Desktop\AdwCleaner[S0].txt
2014-06-20 20:24 - 2014-06-20 20:38 - 00000000 ____D () C:\AdwCleaner
2014-06-20 20:24 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-20 20:23 - 2014-06-20 20:23 - 01285120 _____ () C:\Users\Jarka\Desktop\zoek.exe
2014-06-20 20:22 - 2014-06-20 20:22 - 01333465 _____ () C:\Users\Jarka\Desktop\adwcleaner_3.212.exe
2014-06-20 17:29 - 2014-06-20 22:42 - 00000000 ____D () C:\FRST
2014-06-19 23:40 - 2014-06-19 23:47 - 00000000 ____D () C:\Qoobox
2014-06-19 23:39 - 2014-06-19 23:39 - 00000000 ____D () C:\Windows\erdnt
2014-06-19 15:23 - 2014-06-19 15:23 - 00000000 ____D () C:\Users\Jarka\AppData\Roaming\TuneUp Software
2014-06-19 15:21 - 2014-06-19 23:49 - 00000000 ____D () C:\ProgramData\MFAData
2014-06-19 15:21 - 2014-06-19 15:21 - 00000000 ____D () C:\Users\Jarka\AppData\Local\MFAData

Hosts:
End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Ryan33
Návštěvník
Návštěvník
Příspěvky: 19
Registrován: 20 čer 2014 10:10

Re: Pomalé PC + nejde spustit žádný soubor

#11 Příspěvek od Ryan33 »

Omlouvám se, ale budu ode dneška na týden bez internetu, takže to budu muset dořešit až koncem příštího týdne. Hned potom sem log pošlu.
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Pomalé PC + nejde spustit žádný soubor

#12 Příspěvek od vyosek »

Ou Kej :wink:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Ryan33
Návštěvník
Návštěvník
Příspěvky: 19
Registrován: 20 čer 2014 10:10

Re: Pomalé PC + nejde spustit žádný soubor

#13 Příspěvek od Ryan33 »

Zdravím,
tak jsem zpět. Nevím, jestli jsem to náhodou nespustil 2x, protože možná jsem to udělal už minulý týden než jsem odjížděl, nejsem si teď jistý. Možná to nakonec budu muset čistit ještě jednou na druhém notebooku. Tenhle je totiž sestry a v době kdy jsem byl pryč jsem ji půjčil svůj a šikovně ho dokázala zavirovat úplně stejným způsobem. Alespoň jsem už přišel na to čím. Pokud to k něčemu pomůže, nebo to není proti pravidlům fora, tak to sem rád napíšu.

Jinak mi nešlo odeslat log, kvůli počtu znaků v příspěvku, odkaz na stažení je zde.
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Pomalé PC + nejde spustit žádný soubor

#14 Příspěvek od vyosek »

Zdravicko :)

:arrow: Duvod zavirovani mi hodte do mailu, ja to tu pak pripadne zverejnim :)

:arrow: Na druhy ntb zalozte nove tema, at se nam to tu neplete, a do predmetu dejte "pro vyosek"

:arrow: Tento ntb je jiz tedy OK, muzem uklidit?
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Ryan33
Návštěvník
Návštěvník
Příspěvky: 19
Registrován: 20 čer 2014 10:10

Re: Pomalé PC + nejde spustit žádný soubor

#15 Příspěvek od Ryan33 »

Ok. Děkuji moc. Notebook už funguje v pořádku, můžeme uklidit.
Naposledy upravil(a) Ryan33 dne 01 črc 2014 21:10, celkem upraveno 1 x.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“