Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-01-2014
Ran by Petr (administrator) on PETRMALENKA on 03-01-2014 19:19:49
Running from C:\Users\Petr\Desktop
Windows 8.1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (All) =========================
(Microsoft Corporation) C:\Windows\System32\wininit.exe
(Microsoft Corporation) C:\Windows\System32\winlogon.exe
(Microsoft Corporation) C:\Windows\System32\lsass.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\dwm.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\spoolsv.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\WUDFHost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\explorer.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\taskhostex.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\conhost.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnetwk.exe
(FreeDownloadManager.ORG) C:\Program Files (x86)\Free Download Manager\fdm.exe
(Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe
(Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WmiPrvSE.exe
(Farbar) C:\Users\Petr\Desktop\FRST64.exe
==================== Registry (All) ===========================
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM-x32\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5123216 2012-06-08] (VIA)
HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [NWEReboot] - [x]
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2013-12-29] (AVAST Software)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [NPSStartup] - [x]
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe, [25088 2013-08-22] (Microsoft Corporation)
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [21504 2013-08-22] (Microsoft Corporation)
HKLM\...\Winlogon: [Shell] explorer.exe [2328872 2013-10-22] (Microsoft Corporation)
HKLM-x32\...\Winlogon: [Shell] explorer.exe [2065448 2013-10-22] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] 0
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKCU\...\Policies\system: [DisableRegistryTools] 0
HKCU\...\Policies\system: [DisableTaskMgr] 0
AppInit_DLLs: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL [ ] ()
Lsa: [Authentication Packages] msv1_0
Lsa: [Notification Packages] scecli
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File
SSODL-x32: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File
BootExecute: autocheck autochk *
AlternateShell: cmd.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://localoem.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.tsbohemia.cz
SearchScopes: HKLM - {7F1D083F-FE91-4349-BE3A-6D69541B9366} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASBJS
SearchScopes: HKLM-x32 - {7F1D083F-FE91-4349-BE3A-6D69541B9366} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASBJS
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 192.168.0.1
Chrome:
=======
CHR HomePage: hxxp://www.seznam.cz/
CHR RestoreOnStartup: "hxxp://www.seznam.cz/"
CHR DefaultSearchKeyword: seznam.cz
CHR DefaultSearchProvider: Seznam
CHR DefaultSearchURL: http://search.seznam.cz/?q={searchTerms}
CHR DefaultNewTabURL:
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Extension: (Google Docs) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (avast! Online Security) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0
CHR Extension: (Gladiatus Crazy Add On) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\jggbidmjnmplnobkkjiinjmbnhccpkbj\3.0.5_0
CHR Extension: (SparkChess 6) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\khgabmflimjjbclkmljlpmgaleanedem\6.1.0.1_0
CHR Extension: (Google Mail Checker) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Bungalow) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogkdmggpdfpodahejeckklcncacambmo\1_0
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [aaaaimdcedbpbcjjbbnfcbbjcngmomic] - C:\Users\Petr\AppData\Local\somotomoviestoolbar1\GC\toolbar.crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-29] (AVAST Software)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [759192 2013-09-03] (Tunngle.net GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-05-04] (VIA Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [78648 2013-12-29] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [92544 2013-10-26] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-26] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1034464 2013-12-29] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [422216 2013-12-29] (AVAST Software)
R3 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [79672 2013-12-29] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-29] ()
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-03 19:19 - 2014-01-03 19:20 - 00014627 _____ C:\Users\Petr\Desktop\FRST.txt
2014-01-03 19:19 - 2014-01-03 19:19 - 00000000 ____D C:\FRST
2014-01-03 19:18 - 2014-01-03 19:18 - 01931750 _____ (Farbar) C:\Users\Petr\Desktop\FRST64.exe
2014-01-03 13:56 - 2014-01-03 13:56 - 05160282 _____ (Swearware) C:\Users\Petr\Desktop\ComboFix.exe
2014-01-02 21:53 - 2014-01-02 21:53 - 00000000 ____D C:\ProgramData\SystemRequirementsLab
2014-01-02 21:53 - 2014-01-02 21:53 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab
2014-01-02 21:33 - 2014-01-02 21:35 - 108956980 _____ C:\Users\Petr\Downloads\LOTDRP(metalarea.org).rar
2014-01-02 18:19 - 2014-01-02 18:19 - 00000000 ____D C:\Users\Petr\AppData\Local\Apple
2014-01-02 18:08 - 2013-02-11 18:51 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Petr\Desktop\TDSSKiller.exe
2014-01-02 18:07 - 2014-01-02 18:08 - 04745728 _____ (AVAST Software) C:\Users\Petr\Desktop\aswmbr.exe
2014-01-02 18:07 - 2014-01-02 18:07 - 00001115 _____ C:\Users\Petr\Desktop\AdwCleaner[S0].txt
2014-01-02 18:04 - 2014-01-02 18:04 - 00000810 _____ C:\WINDOWS\PFRO.log
2014-01-02 15:43 - 2014-01-02 15:43 - 00001344 _____ C:\Users\Petr\Desktop\JRT.txt
2014-01-02 15:38 - 2014-01-02 15:38 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-02 15:36 - 2014-01-02 15:36 - 00001721 _____ C:\Users\Petr\Desktop\AdwCleaner[R0].txt
2014-01-02 14:03 - 2014-01-02 18:03 - 00000000 ____D C:\AdwCleaner
2014-01-02 13:56 - 2014-01-02 13:56 - 00001139 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-02 13:56 - 2014-01-02 13:56 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Malwarebytes
2014-01-02 13:56 - 2014-01-02 13:56 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-02 13:56 - 2014-01-02 13:56 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-02 13:56 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-01-02 13:54 - 2014-01-02 13:54 - 01233962 _____ C:\Users\Petr\Desktop\adwcleaner.exe
2014-01-02 13:54 - 2014-01-02 13:54 - 01036305 _____ (Thisisu) C:\Users\Petr\Desktop\JRT.exe
2014-01-02 13:38 - 2014-01-03 19:17 - 00000000 ____D C:\Users\Petr\AppData\Roaming\TS3Client
2014-01-02 13:38 - 2014-01-02 13:38 - 00001190 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-01-02 13:38 - 2014-01-02 13:38 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2014-01-02 08:46 - 2014-01-03 14:16 - 00083209 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-01 19:34 - 2014-01-01 19:34 - 00001311 _____ C:\Users\Public\Desktop\Záhadné město Zlatá Praha.lnk
2014-01-01 19:34 - 2014-01-01 19:34 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Gold Casual Games
2014-01-01 19:34 - 2014-01-01 19:34 - 00000000 ____D C:\Program Files (x86)\Záhadné město Zlatá Praha
2014-01-01 19:31 - 2014-01-01 19:31 - 00001206 _____ C:\Users\Public\Desktop\Motýlí víla.lnk
2014-01-01 19:31 - 2014-01-01 19:31 - 00000000 ____D C:\Program Files (x86)\Spidla
2014-01-01 16:45 - 2014-01-01 16:45 - 00001183 _____ C:\Users\Petr\Desktop\Ztracené štěňátko.lnk
2014-01-01 16:45 - 2014-01-01 16:45 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ztracené štěňátko
2014-01-01 16:45 - 2014-01-01 16:45 - 00000000 ____D C:\Program Files (x86)\Ztracené štěňátko
2014-01-01 12:24 - 2014-01-01 12:24 - 00000789 _____ C:\Users\Public\Desktop\World of Tanks.lnk
2014-01-01 12:13 - 2014-01-01 12:15 - 16360267 _____ C:\Users\Petr\Downloads\8.10_Crabtr33_XVM_CZ_modpack_v0.81.7z
2013-12-31 11:21 - 2013-12-31 12:02 - 294243724 _____ C:\Users\Petr\Downloads\Aspire-1.4-pro-0.8.10-zvuky.rar
2013-12-31 08:12 - 2013-12-31 08:19 - 94121127 _____ C:\Users\Petr\Downloads\Beyond Creation-The Aura-2011 by Metadeat.rar
2013-12-31 08:03 - 2013-12-31 08:12 - 130955759 _____ C:\Users\Petr\Downloads\Waldschrat - 2013 - Nostalgie.Resonanz.rar
2013-12-31 07:54 - 2013-12-31 07:55 - 62761986 _____ C:\Users\Petr\Downloads\Azaghal - Rehearsal-Demo I (1998).rar
2013-12-31 07:52 - 2013-12-31 07:53 - 62265466 _____ C:\Users\Petr\Downloads\Sanitys Dawn & Fetus Eaters - 2002 - Split CD [192 by izuver666].zip
2013-12-31 07:44 - 2013-12-31 07:44 - 41245247 _____ C:\Users\Petr\Downloads\Arkona - 2013 - Chaos.Ice.Fire.rar
2013-12-31 07:24 - 2013-12-31 07:36 - 113020531 _____ C:\Users\Petr\Downloads\Freitod-Nebel Der Erinnerungen.rar
2013-12-31 07:22 - 2013-12-31 07:25 - 124765500 _____ C:\Users\Petr\Downloads\2012 - Regenjahre.zip
2013-12-31 07:16 - 2013-12-31 07:20 - 28634788 _____ C:\Users\Petr\Downloads\Menegroth & Freitod - Split - 2008.rar
2013-12-30 11:53 - 2013-12-30 12:03 - 84743208 _____ C:\Users\Petr\Downloads\VHS-2013.zip
2013-12-29 08:50 - 2013-12-29 10:18 - 1499352734 _____ C:\Users\Petr\Downloads\BrunuhVille---Discography-(5CD-=-2011---2012)-Flac.rar
2013-12-29 08:49 - 2013-12-29 08:49 - 00079672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
2013-12-29 08:49 - 2013-12-29 08:49 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2013-12-29 08:49 - 2013-12-29 08:49 - 00003924 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2013-12-29 08:48 - 2013-12-29 08:50 - 104558430 _____ C:\Users\Petr\Downloads\BrunuhVille - Fantasy Journey (Compilation) [2014].rar
2013-12-28 14:37 - 2013-12-28 15:39 - 405041075 _____ C:\Users\Petr\Downloads\audio-pro-8.10.rar
2013-12-28 14:21 - 2013-12-28 14:25 - 25639160 _____ C:\Users\Petr\Downloads\Aspire-v-1.3-pro-8.10.rar
2013-12-28 09:44 - 2013-12-28 09:59 - 272420152 _____ C:\Users\Petr\Downloads\Aspire-v-1.3-pro-8.10-se-zvuky.rar
2013-12-28 08:52 - 2013-12-31 09:45 - 00000000 ____D C:\Users\Petr\Desktop\Novinky
2013-12-27 10:59 - 2013-12-10 03:13 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2013-12-27 10:59 - 2013-12-10 03:13 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2013-12-27 10:58 - 2013-12-27 10:58 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2013-12-27 10:58 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2013-12-27 10:58 - 2013-12-05 09:42 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2013-12-27 10:58 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2013-12-23 15:34 - 2013-12-23 15:34 - 00000000 ____D C:\Users\Petr\AppData\Roaming\URSE Games
2013-12-23 15:33 - 2013-12-23 15:33 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2013-12-23 15:33 - 2013-12-23 15:33 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2013-12-23 15:33 - 2013-12-23 15:33 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2013-12-23 15:33 - 2013-12-23 15:33 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2013-12-23 15:32 - 2014-01-01 18:58 - 00000000 ____D C:\Program Files (x86)\Ledova kralovna
2013-12-22 16:35 - 2014-01-01 19:31 - 00000000 ____D C:\Users\Petr\AppData\Roaming\EleFun Games
2013-12-22 16:35 - 2014-01-01 18:58 - 00000000 ____D C:\Program Files (x86)\Puzzle Deluxe
2013-12-21 07:48 - 2013-12-21 07:48 - 00000000 ____D C:\ProgramData\InstallMate
2013-12-18 18:01 - 2013-12-28 13:08 - 00000000 ____D C:\Program Files (x86)\Kájovy Vánoce - velké dobrodružství pračlověka Káji Hřibojeda
2013-12-18 18:01 - 2013-12-18 18:01 - 00001544 _____ C:\Users\Petr\Desktop\Kájovy Vánoce - velké dobrodružství pračlověka Káji Hřibojeda.lnk
2013-12-18 18:01 - 2013-12-18 18:01 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kájovy Vánoce - velké dobrodružství pračlověka Káji Hřibojeda
2013-12-18 17:56 - 2013-12-27 10:56 - 00000000 ____D C:\Program Files (x86)\Bambulky
2013-12-18 17:56 - 2013-12-18 17:56 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Artogon
2013-12-15 08:02 - 2013-11-12 00:41 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-15 08:02 - 2013-11-12 00:40 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-15 08:02 - 2013-11-12 00:27 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-12-15 08:02 - 2013-11-12 00:24 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-12-15 08:02 - 2013-11-11 03:48 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-12-15 08:02 - 2013-11-09 12:55 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-12-15 08:02 - 2013-11-09 07:37 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2013-12-15 08:02 - 2013-11-09 06:56 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2013-12-15 08:02 - 2013-11-08 11:26 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-12-15 08:02 - 2013-11-08 05:43 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-12-15 08:02 - 2013-11-08 05:28 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-12-15 08:02 - 2013-11-08 05:26 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-12-15 08:02 - 2013-11-08 05:16 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2013-12-15 08:02 - 2013-11-08 05:15 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2013-12-15 08:02 - 2013-11-08 05:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2013-12-15 08:02 - 2013-11-08 04:41 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-12-15 08:02 - 2013-11-08 04:14 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-12-15 08:02 - 2013-11-05 15:19 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-12-15 08:02 - 2013-11-05 15:03 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2013-12-15 08:02 - 2013-11-05 14:57 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2013-12-15 08:02 - 2013-11-05 14:33 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2013-12-15 08:02 - 2013-11-05 14:32 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2013-12-15 08:02 - 2013-11-04 18:13 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-12-15 08:02 - 2013-11-04 18:13 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-12-15 08:02 - 2013-11-04 14:07 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-12-15 08:02 - 2013-11-04 12:50 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-12-15 08:02 - 2013-11-04 11:32 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-12-15 08:02 - 2013-11-04 03:28 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-12-15 08:02 - 2013-11-04 02:30 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-12-15 08:02 - 2013-11-01 12:39 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-12-15 08:02 - 2013-11-01 07:08 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2013-12-15 08:02 - 2013-11-01 06:57 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2013-12-15 08:02 - 2013-10-31 01:58 - 00372568 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-12-15 08:02 - 2013-10-31 01:42 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-12-15 08:02 - 2013-10-31 01:33 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-12-15 08:02 - 2013-10-31 01:33 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-12-15 08:02 - 2013-10-31 01:33 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-12-15 08:02 - 2013-10-31 01:33 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-12-15 08:02 - 2013-10-26 02:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2013-12-15 08:02 - 2013-10-24 10:31 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-12-15 08:02 - 2013-10-24 10:12 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2013-12-15 08:02 - 2013-10-17 12:21 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2013-12-15 08:02 - 2013-10-17 11:36 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2013-12-15 08:02 - 2013-10-05 15:21 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-12-15 08:02 - 2013-10-05 15:21 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-12-15 08:02 - 2013-10-05 13:05 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-12-15 08:02 - 2013-10-05 13:05 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-12-13 19:15 - 2013-12-13 19:15 - 00000000 ____D C:\ProgramData\Samsung
2013-12-13 19:14 - 2013-12-13 19:32 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Samsung
2013-12-13 19:14 - 2013-12-13 19:14 - 00000000 ____D C:\Users\Petr\Documents\My NPS Files
2013-12-13 19:14 - 2013-12-13 19:14 - 00000000 ____D C:\Program Files (x86)\Samsung
2013-12-13 19:14 - 2010-07-04 19:11 - 00025960 _____ (Teruten Inc) C:\WINDOWS\system32\FsExService64.exe
2013-12-13 19:14 - 2010-06-14 09:32 - 00016448 _____ (Teruten Inc) C:\WINDOWS\system32\Drivers\TFsExDisk.sys
2013-12-11 13:22 - 2013-12-04 01:05 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-12-11 13:22 - 2013-12-04 01:05 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 13:11 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-12-11 13:11 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-12-11 13:11 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-12-11 13:11 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-12-11 13:11 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-12-11 13:11 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-12-11 13:11 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-12-11 13:11 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-12-11 13:11 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-12-11 13:11 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-12-11 13:11 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-12-11 13:11 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-12-11 13:11 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-12-11 13:11 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2013-12-11 13:11 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2013-12-11 13:11 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-12-11 13:11 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-12-11 13:11 - 2013-11-23 05:34 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-12-11 13:11 - 2013-11-23 05:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-12-11 13:11 - 2013-11-23 04:32 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-12-11 13:11 - 2013-11-23 04:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-12-11 13:11 - 2013-11-09 07:34 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2013-12-11 13:11 - 2013-11-09 07:34 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2013-12-11 13:11 - 2013-11-09 06:52 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2013-12-11 13:11 - 2013-11-08 08:21 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-12-11 13:11 - 2013-10-19 09:53 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2013-12-11 13:11 - 2013-10-19 08:14 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2013-12-11 13:11 - 2013-10-15 09:54 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2013-12-11 13:11 - 2013-10-15 09:03 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2013-12-09 16:54 - 2008-01-29 05:52 - 510725040 _____ C:\Users\Petr\Desktop\barbie labutie jazero.mds
2013-12-05 15:31 - 2013-12-05 15:41 - 00000000 ____D C:\Users\Petr\AppData\Roaming\spidla
2013-12-05 15:31 - 2013-12-05 15:31 - 00000000 ____D C:\Users\Petr\AppData\Roaming\ERS G-Studio
2013-12-05 15:29 - 2013-12-05 15:29 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Špidla Data Processing, s.r.o
2013-12-05 15:29 - 2013-12-05 15:29 - 00000000 ____D C:\ProgramData\Špidla Data Processing, s.r.o
==================== One Month Modified Files and Folders =======
2014-01-03 19:20 - 2014-01-03 19:19 - 00014627 _____ C:\Users\Petr\Desktop\FRST.txt
2014-01-03 19:19 - 2014-01-03 19:19 - 00000000 ____D C:\FRST
2014-01-03 19:18 - 2014-01-03 19:18 - 01931750 _____ (Farbar) C:\Users\Petr\Desktop\FRST64.exe
2014-01-03 19:17 - 2014-01-02 13:38 - 00000000 ____D C:\Users\Petr\AppData\Roaming\TS3Client
2014-01-03 19:11 - 2013-11-09 00:00 - 00003978 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{DD82B7AD-59C8-4333-BEDC-F1BACBC50966}
2014-01-03 19:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-03 18:35 - 2013-05-28 12:10 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-03 16:40 - 2013-05-28 12:08 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3832753693-3646972138-179110667-1004
2014-01-03 16:35 - 2013-05-28 12:10 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-03 16:35 - 2013-05-28 12:10 - 00000968 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-03 14:16 - 2014-01-02 08:46 - 00083209 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-03 14:01 - 2013-10-25 09:49 - 00000000 __RDO C:\Users\Petr\SkyDrive
2014-01-03 14:00 - 2013-10-25 09:27 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-03 14:00 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-03 14:00 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-03 13:58 - 2013-05-28 15:12 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Free Download Manager
2014-01-03 13:56 - 2014-01-03 13:56 - 05160282 _____ (Swearware) C:\Users\Petr\Desktop\ComboFix.exe
2014-01-02 21:53 - 2014-01-02 21:53 - 00000000 ____D C:\ProgramData\SystemRequirementsLab
2014-01-02 21:53 - 2014-01-02 21:53 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab
2014-01-02 21:53 - 2013-10-18 21:46 - 00000000 ____D C:\Program Files (x86)\Rayman Legends
2014-01-02 21:35 - 2014-01-02 21:33 - 108956980 _____ C:\Users\Petr\Downloads\LOTDRP(metalarea.org).rar
2014-01-02 18:19 - 2014-01-02 18:19 - 00000000 ____D C:\Users\Petr\AppData\Local\Apple
2014-01-02 18:08 - 2014-01-02 18:07 - 04745728 _____ (AVAST Software) C:\Users\Petr\Desktop\aswmbr.exe
2014-01-02 18:08 - 2013-11-26 12:04 - 00003701 _____ C:\Users\Petr\Desktop\Nový textový dokument.txt
2014-01-02 18:07 - 2014-01-02 18:07 - 00001115 _____ C:\Users\Petr\Desktop\AdwCleaner[S0].txt
2014-01-02 18:04 - 2014-01-02 18:04 - 00000810 _____ C:\WINDOWS\PFRO.log
2014-01-02 18:03 - 2014-01-02 14:03 - 00000000 ____D C:\AdwCleaner
2014-01-02 15:43 - 2014-01-02 15:43 - 00001344 _____ C:\Users\Petr\Desktop\JRT.txt
2014-01-02 15:38 - 2014-01-02 15:38 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-02 15:36 - 2014-01-02 15:36 - 00001721 _____ C:\Users\Petr\Desktop\AdwCleaner[R0].txt
2014-01-02 13:56 - 2014-01-02 13:56 - 00001139 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-02 13:56 - 2014-01-02 13:56 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Malwarebytes
2014-01-02 13:56 - 2014-01-02 13:56 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-02 13:56 - 2014-01-02 13:56 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-02 13:54 - 2014-01-02 13:54 - 01233962 _____ C:\Users\Petr\Desktop\adwcleaner.exe
2014-01-02 13:54 - 2014-01-02 13:54 - 01036305 _____ (Thisisu) C:\Users\Petr\Desktop\JRT.exe
2014-01-02 13:47 - 2013-05-28 12:00 - 00000000 ____D C:\Users\Petr\AppData\Local\VirtualStore
2014-01-02 13:38 - 2014-01-02 13:38 - 00001190 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-01-02 13:38 - 2014-01-02 13:38 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2014-01-01 19:34 - 2014-01-01 19:34 - 00001311 _____ C:\Users\Public\Desktop\Záhadné město Zlatá Praha.lnk
2014-01-01 19:34 - 2014-01-01 19:34 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Gold Casual Games
2014-01-01 19:34 - 2014-01-01 19:34 - 00000000 ____D C:\Program Files (x86)\Záhadné město Zlatá Praha
2014-01-01 19:31 - 2014-01-01 19:31 - 00001206 _____ C:\Users\Public\Desktop\Motýlí víla.lnk
2014-01-01 19:31 - 2014-01-01 19:31 - 00000000 ____D C:\Program Files (x86)\Spidla
2014-01-01 19:31 - 2013-12-22 16:35 - 00000000 ____D C:\Users\Petr\AppData\Roaming\EleFun Games
2014-01-01 18:58 - 2013-12-23 15:32 - 00000000 ____D C:\Program Files (x86)\Ledova kralovna
2014-01-01 18:58 - 2013-12-22 16:35 - 00000000 ____D C:\Program Files (x86)\Puzzle Deluxe
2014-01-01 18:57 - 2013-12-01 09:55 - 00000017 _____ C:\WINDOWS\KA.ini
2014-01-01 18:57 - 2013-12-01 09:43 - 00000000 ____D C:\Program Files (x86)\Barbie(TM)
2014-01-01 18:57 - 2012-10-16 10:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-01 17:23 - 2013-09-08 08:53 - 00000000 ____D C:\Users\Petr\AppData\Roaming\AIMP3
2014-01-01 16:46 - 2013-06-14 11:17 - 00000000 ____D C:\Users\Petr\Documents\My Games
2014-01-01 16:45 - 2014-01-01 16:45 - 00001183 _____ C:\Users\Petr\Desktop\Ztracené štěňátko.lnk
2014-01-01 16:45 - 2014-01-01 16:45 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ztracené štěňátko
2014-01-01 16:45 - 2014-01-01 16:45 - 00000000 ____D C:\Program Files (x86)\Ztracené štěňátko
2014-01-01 12:25 - 2013-10-25 11:30 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2014-01-01 12:24 - 2014-01-01 12:24 - 00000789 _____ C:\Users\Public\Desktop\World of Tanks.lnk
2014-01-01 12:24 - 2013-05-28 15:24 - 00000000 ____D C:\Games
2014-01-01 12:15 - 2014-01-01 12:13 - 16360267 _____ C:\Users\Petr\Downloads\8.10_Crabtr33_XVM_CZ_modpack_v0.81.7z
2013-12-31 12:02 - 2013-12-31 11:21 - 294243724 _____ C:\Users\Petr\Downloads\Aspire-1.4-pro-0.8.10-zvuky.rar
2013-12-31 10:07 - 2013-05-30 14:49 - 00000000 ____D C:\Users\Petr\AppData\Local\Last.fm
2013-12-31 09:45 - 2013-12-28 08:52 - 00000000 ____D C:\Users\Petr\Desktop\Novinky
2013-12-31 08:19 - 2013-12-31 08:12 - 94121127 _____ C:\Users\Petr\Downloads\Beyond Creation-The Aura-2011 by Metadeat.rar
2013-12-31 08:12 - 2013-12-31 08:03 - 130955759 _____ C:\Users\Petr\Downloads\Waldschrat - 2013 - Nostalgie.Resonanz.rar
2013-12-31 07:55 - 2013-12-31 07:54 - 62761986 _____ C:\Users\Petr\Downloads\Azaghal - Rehearsal-Demo I (1998).rar
2013-12-31 07:53 - 2013-12-31 07:52 - 62265466 _____ C:\Users\Petr\Downloads\Sanitys Dawn & Fetus Eaters - 2002 - Split CD [192 by izuver666].zip
2013-12-31 07:44 - 2013-12-31 07:44 - 41245247 _____ C:\Users\Petr\Downloads\Arkona - 2013 - Chaos.Ice.Fire.rar
2013-12-31 07:36 - 2013-12-31 07:24 - 113020531 _____ C:\Users\Petr\Downloads\Freitod-Nebel Der Erinnerungen.rar
2013-12-31 07:25 - 2013-12-31 07:22 - 124765500 _____ C:\Users\Petr\Downloads\2012 - Regenjahre.zip
2013-12-31 07:20 - 2013-12-31 07:16 - 28634788 _____ C:\Users\Petr\Downloads\Menegroth & Freitod - Split - 2008.rar
2013-12-30 12:03 - 2013-12-30 11:53 - 84743208 _____ C:\Users\Petr\Downloads\VHS-2013.zip
2013-12-29 14:18 - 2013-10-25 09:44 - 01771646 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-12-29 14:18 - 2013-09-30 04:56 - 00746994 _____ C:\WINDOWS\system32\perfh005.dat
2013-12-29 14:18 - 2013-09-30 04:56 - 00155994 _____ C:\WINDOWS\system32\perfc005.dat
2013-12-29 10:18 - 2013-12-29 08:50 - 1499352734 _____ C:\Users\Petr\Downloads\BrunuhVille---Discography-(5CD-=-2011---2012)-Flac.rar
2013-12-29 08:56 - 2013-09-28 08:34 - 00000000 ____D C:\Users\Petr\AppData\Roaming\vlc
2013-12-29 08:50 - 2013-12-29 08:48 - 104558430 _____ C:\Users\Petr\Downloads\BrunuhVille - Fantasy Journey (Compilation) [2014].rar
2013-12-29 08:49 - 2013-12-29 08:49 - 00079672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
2013-12-29 08:49 - 2013-12-29 08:49 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2013-12-29 08:49 - 2013-12-29 08:49 - 00003924 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2013-12-29 08:49 - 2013-11-08 20:43 - 00422216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2013-12-29 08:49 - 2013-10-26 13:21 - 01034464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2013-12-29 08:49 - 2013-10-26 13:21 - 00334136 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2013-12-29 08:49 - 2013-10-26 13:21 - 00207904 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2013-12-29 08:49 - 2013-10-26 13:21 - 00078648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2013-12-29 08:49 - 2013-10-26 13:21 - 00001988 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-28 15:39 - 2013-12-28 14:37 - 405041075 _____ C:\Users\Petr\Downloads\audio-pro-8.10.rar
2013-12-28 14:25 - 2013-12-28 14:21 - 25639160 _____ C:\Users\Petr\Downloads\Aspire-v-1.3-pro-8.10.rar
2013-12-28 13:08 - 2013-12-18 18:01 - 00000000 ____D C:\Program Files (x86)\Kájovy Vánoce - velké dobrodružství pračlověka Káji Hřibojeda
2013-12-28 09:59 - 2013-12-28 09:44 - 272420152 _____ C:\Users\Petr\Downloads\Aspire-v-1.3-pro-8.10-se-zvuky.rar
2013-12-27 12:40 - 2013-05-28 14:11 - 00000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-27 12:40 - 2013-05-28 14:11 - 00000000 ____D C:\Program Files\CCleaner
2013-12-27 10:58 - 2013-12-27 10:58 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2013-12-27 10:56 - 2013-12-18 17:56 - 00000000 ____D C:\Program Files (x86)\Bambulky
2013-12-27 10:18 - 2013-07-04 10:21 - 00190464 ___SH C:\Users\Petr\Desktop\Thumbs.db
2013-12-27 08:57 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-12-24 13:28 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-12-24 08:46 - 2013-11-21 19:02 - 00000000 ____D C:\Users\Petr\Desktop\Bigbít
2013-12-23 15:34 - 2013-12-23 15:34 - 00000000 ____D C:\Users\Petr\AppData\Roaming\URSE Games
2013-12-23 15:33 - 2013-12-23 15:33 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2013-12-23 15:33 - 2013-12-23 15:33 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2013-12-23 15:33 - 2013-12-23 15:33 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2013-12-23 15:33 - 2013-12-23 15:33 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2013-12-21 07:48 - 2013-12-21 07:48 - 00000000 ____D C:\ProgramData\InstallMate
2013-12-19 10:34 - 2013-10-25 09:32 - 00000000 ____D C:\Users\Petr
2013-12-18 18:01 - 2013-12-18 18:01 - 00001544 _____ C:\Users\Petr\Desktop\Kájovy Vánoce - velké dobrodružství pračlověka Káji Hřibojeda.lnk
2013-12-18 18:01 - 2013-12-18 18:01 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kájovy Vánoce - velké dobrodružství pračlověka Káji Hřibojeda
2013-12-18 17:56 - 2013-12-18 17:56 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Artogon
2013-12-18 16:59 - 2013-10-02 20:28 - 00000000 ____D C:\ProgramData\Tunngle
2013-12-18 16:59 - 2013-07-11 17:04 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Tunngle
2013-12-15 22:29 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2013-12-15 22:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2013-12-15 22:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2013-12-15 22:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager
2013-12-15 22:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2013-12-15 18:28 - 2013-11-24 08:55 - 00211968 ___SH C:\Users\Petr\Downloads\Thumbs.db
2013-12-15 09:12 - 2013-07-19 11:45 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-15 09:12 - 2013-05-29 06:02 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-13 19:32 - 2013-12-13 19:14 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Samsung
2013-12-13 19:15 - 2013-12-13 19:15 - 00000000 ____D C:\ProgramData\Samsung
2013-12-13 19:14 - 2013-12-13 19:14 - 00000000 ____D C:\Users\Petr\Documents\My NPS Files
2013-12-13 19:14 - 2013-12-13 19:14 - 00000000 ____D C:\Program Files (x86)\Samsung
2013-12-12 13:12 - 2013-10-29 12:44 - 00000000 ____D C:\Users\Petr\Desktop\Vanesska
2013-12-11 20:19 - 2013-08-22 15:44 - 00482816 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-10 03:13 - 2013-12-27 10:59 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2013-12-10 03:13 - 2013-12-27 10:59 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2013-12-06 16:30 - 2013-05-28 12:10 - 00003944 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-06 16:30 - 2013-05-28 12:10 - 00003708 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-05 15:41 - 2013-12-05 15:31 - 00000000 ____D C:\Users\Petr\AppData\Roaming\spidla
2013-12-05 15:31 - 2013-12-05 15:31 - 00000000 ____D C:\Users\Petr\AppData\Roaming\ERS G-Studio
2013-12-05 15:29 - 2013-12-05 15:29 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Špidla Data Processing, s.r.o
2013-12-05 15:29 - 2013-12-05 15:29 - 00000000 ____D C:\ProgramData\Špidla Data Processing, s.r.o
2013-12-05 09:42 - 2013-12-27 10:58 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2013-12-05 09:42 - 2013-12-27 10:58 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2013-12-05 09:42 - 2013-12-27 10:58 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2013-12-04 01:05 - 2013-12-11 13:22 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-12-04 01:05 - 2013-12-11 13:22 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
Some content of TEMP:
====================
C:\Users\Petr\AppData\Local\Temp\Quarantine.exe
C:\Users\Petr\AppData\Local\Temp\SRLDetectionLibrary2902100441050489676.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-02 20:56
==================== End Of Log ============================
prosím kontrolu logu Vyřešeno
-
Orcus
- člen Security týmu
-
Elite Level 10.5
- Příspěvky: 10645
- Registrován: duben 10
- Bydliště: Okolo rostou 3 růže =o)
- Pohlaví:
- Stav:
Offline
Re: prosím kontrolu logu
Jak to vypadá se zpomalením PC?
Láska hřeje, ale uhlí je uhlí. 
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 65 hostů