Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23.09.2018
Ran by Honzik (administrator) on SEABEES (24-09-2018 20:30:49)
Running from C:\Documents and Settings\Honzik\Plocha
Loaded Profiles: Honzik (Available Profiles: Honzik)
Platform: Microsoft Windows XP Home Edition Service Pack 2 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Creative Technology Ltd) C:\WINDOWS\system32\CTSVCCDA.EXE
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Mobile Leader Co.,Ltd.) C:\WINDOWS\system32\LGScsiCommandService.exe
() C:\WINDOWS\system32\PnkBstrA.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Microsoft Corporation) C:\WINDOWS\system32\MsPMSPSv.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Creative Technology Ltd) C:\WINDOWS\system32\CTHELPER.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Documents and Settings\All Users\Data aplikací\Boxtools\Toolbox.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2012-10-20] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5ServiceManager] => C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [UpdReg] => C:\WINDOWS\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM\...\Run: [CTHelper] => C:\WINDOWS\system32\CTHELPER.EXE [28672 2003-06-09] (Creative Technology Ltd)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [Cmaudio] => RunDll32 cmicnfg.cpl,CMICtrlWnd
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7408312 2016-09-26] (AVAST Software)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2009-07-15] (ATI Technologies Inc.)
HKU\S-1-5-21-789336058-1202660629-725345543-1004\...\Run: [GSplay.exe] => C:\Documents%20and%20Settings\Honzik\Local%20Settings\temp\Rar$EX00.891\GSplay.exe <==== ATTENTION
HKU\S-1-5-21-789336058-1202660629-725345543-1004\...\Run: [Boxoft Tools] => C:\Documents and Settings\All Users\Data aplikací\Boxtools\Boxofttoolbox.exe [514048 2010-12-15] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{DC9D07EE-EE15-4449-85E0-D5ADC5598EDE}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{DC9D07EE-EE15-4449-85E0-D5ADC5598EDE}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-789336058-1202660629-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-789336058-1202660629-725345543-1004\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
URLSearchHook: HKLM -> Default = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKLM - (No Name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} -  No File
BHO: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-09-26] (AVAST Software)
BHO: No Name -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> No File
BHO: No Name -> {A5366673-E8CA-11D3-9CD9-0090271D075B} -> No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO: No Name -> {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} -> No File
Toolbar: HKLM - No Name - {E0E899AB-F487-11D5-8D29-0050BA6940E3} -  No File
Toolbar: HKLM - No Name - {B71B15CF-3093-459C-B764-AEB2486F2273} -  No File
Toolbar: HKLM - No Name - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} -  No File
Toolbar: HKLM - No Name - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -  No File
Toolbar: HKU\S-1-5-21-789336058-1202660629-725345543-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\System32\browseui.dll [2006-09-23] (Společnost Microsoft)
Toolbar: HKU\S-1-5-21-789336058-1202660629-725345543-1004 -> No Name - {B71B15CF-3093-459C-B764-AEB2486F2273} -  No File
Toolbar: HKU\S-1-5-21-789336058-1202660629-725345543-1004 -> No Name - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} -  No File
Toolbar: HKU\S-1-5-21-789336058-1202660629-725345543-1004 -> No Name - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} -  No File
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

FireFox:
========
FF DefaultProfile: 7v7asugf.default
FF ProfilePath: C:\Documents and Settings\Honzik\Data aplikací\Mozilla\Firefox\Profiles\7v7asugf.default [2018-08-12]
FF Homepage: C:\Documents and Settings\Honzik\Data aplikací\Mozilla\Firefox\Profiles\7v7asugf.default -> hxxps://www.seznam.cz/
about:preferences
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-11-21] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-26] [Legacy]
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @java.com/DTPlugin,version=10.21.2 -> C:\WINDOWS\system32\npDeployJava1.dll [2013-05-17] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-05-17] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll [No File]
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://seznam.cz/"
CHR Profile: C:\Documents and Settings\Honzik\Local Settings\Data aplikací\Google\Chrome\User Data\Default [2018-09-24]
CHR Extension: (Dokumenty) - C:\Documents and Settings\Honzik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (Disk Google) - C:\Documents and Settings\Honzik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-19]
CHR Extension: (YouTube) - C:\Documents and Settings\Honzik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-19]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\Honzik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-19]
CHR Extension: (Dokumenty Google offline) - C:\Documents and Settings\Honzik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Honzik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-06]
CHR Extension: (Gmail) - C:\Documents and Settings\Honzik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31]
CHR HKLM\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files\Common Files\Spigot\GC\coupons_2.3.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [269504 2016-05-16] (Adobe Systems Incorporated) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-09-26] (AVAST Software)
R2 Creative Service for CDROM Access; C:\WINDOWS\System32\CTsvcCDA.exe [44032 1999-12-13] (Creative Technology Ltd) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [181664 2013-05-17] (Oracle Corporation)
R2 LGScsiCommandService; C:\WINDOWS\system32\LGScsiCommandService.exe [47616 2010-04-12] (Mobile Leader Co.,Ltd.) [File not signed]
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [66872 2010-01-02] ()
S2 SkypeUpdate; C:\Program Files\Skype\Updater\Updater.exe [317400 2017-04-05] (Skype Technologies) [File not signed]
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 WMDM PMSP Service; C:\WINDOWS\System32\MsPMSPSv.exe [53520 2000-06-26] (Microsoft Corporation) [File not signed]
U4 aswUpdSv; "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [32792 2016-09-26] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [35096 2016-09-26] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [91168 2016-09-26] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [64272 2016-09-26] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [58776 2016-09-26] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [815792 2016-09-26] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [449640 2016-09-26] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [187208 2016-09-26] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [67216 2016-09-26] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [224616 2016-09-26] (AVAST Software)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2004-08-04] (Microsoft Corporation)
S3 cmuda; C:\WINDOWS\System32\drivers\cmuda.sys [1373120 2006-06-09] (C-Media Inc)
R3 ctac32k; C:\WINDOWS\System32\drivers\ctac32k.sys [186068 2003-06-09] (Creative Technology Ltd) [File not signed]
S3 ctljystk; C:\WINDOWS\System32\DRIVERS\ctljystk.sys [3712 2001-08-17] (Creative Technology Ltd.)
R3 ctprxy2k; C:\WINDOWS\System32\drivers\ctprxy2k.sys [6144 2003-06-09] (Creative Technology Ltd) [File not signed]
R3 ctsfm2k; C:\WINDOWS\System32\drivers\ctsfm2k.sys [136448 2003-06-09] (Creative Technology Ltd) [File not signed]
R3 emupia; C:\WINDOWS\System32\drivers\emupia2k.sys [116416 2003-06-09] (Creative Technology Ltd) [File not signed]
R3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2004-08-04] (Microsoft Corporation)
R3 ha10kx2k; C:\WINDOWS\System32\drivers\ha10kx2k.sys [819984 2003-06-09] (Creative Technology Ltd)
S3 hap16v2k; C:\WINDOWS\System32\drivers\hap16v2k.sys [135696 2003-06-09] (Creative Technology Ltd) [File not signed]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2004-08-04] (Microsoft Corporation)
R2 PfModNT; C:\WINDOWS\system32\drivers\PfModNT.sys [15840 2003-03-05] (Creative Technology Ltd.) [File not signed]
R3 SiSGbeXP; C:\WINDOWS\System32\DRIVERS\SiSGbeXP.sys [124672 2005-04-20] (Silicon Integrated Systems Corp.)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [685816 2010-01-01] ()
S3 usbbus; C:\WINDOWS\System32\DRIVERS\lgusbbus.sys [13056 2010-01-21] (LG Electronics Inc.)
S3 UsbDiag; C:\WINDOWS\System32\DRIVERS\lgusbdiag.sys [20864 2010-01-21] (LG Electronics Inc.)
S3 USBModem; C:\WINDOWS\System32\DRIVERS\lgusbmodem.sys [24960 2010-01-21] (LG Electronics Inc.)
S3 USB_RNDIS; C:\WINDOWS\System32\DRIVERS\usb8023k.sys [11136 2002-08-12] (Microsoft Corporation)
S3 V1310VID; C:\WINDOWS\System32\DRIVERS\V1310vid.sys [434784 2002-08-05] (Unknown)
S3 ctdvda2k; System32\drivers\ctdvda2k.sys [X]
S4 IntelIde; no ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96256 2004-08-04] (Microsoft Corporation)
U3 TlntSvr; no ImagePath
U3 a03uapc9; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-24 20:30 - 2018-09-24 20:32 - 000015685 _____ C:\Documents and Settings\Honzik\Plocha\FRST.txt
2018-09-24 20:30 - 2018-09-24 20:30 - 000000000 ____D C:\FRST
2018-09-24 20:29 - 2018-09-24 20:29 - 001774080 _____ (Farbar) C:\Documents and Settings\Honzik\Plocha\FRST.exe
2018-08-30 10:43 - 2018-08-30 10:44 - 002702152 _____ C:\Documents and Settings\Honzik\Dokumenty\Bohemia Faktoring.pdf
2018-08-30 09:36 - 2018-08-30 09:36 - 000118784 _____ C:\WINDOWS\Minidump\Mini083018-01.dmp

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-24 20:32 - 2013-05-08 21:44 - 000000000 ____D C:\Documents and Settings\Honzik\Local Settings\temp
2018-09-24 20:30 - 2009-12-31 19:14 - 000000000 ____D C:\Documents and Settings\Honzik\Plocha
2018-09-24 20:21 - 2013-07-09 21:44 - 000000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2018-09-24 19:33 - 2013-05-17 14:32 - 000000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-09-24 16:57 - 2016-09-27 16:57 - 000000464 _____ C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1474988214.job
2018-09-24 15:49 - 2014-12-13 10:25 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Boxtools
2018-09-24 15:24 - 2013-05-15 15:32 - 000000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2018-09-24 15:23 - 2016-04-02 13:02 - 000000468 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{CE045FB7-2D9E-4766-AEC1-9818C6EACDD3}.job
2018-09-24 15:17 - 2013-07-09 21:44 - 000000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2018-09-24 15:15 - 2009-12-31 19:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-09-24 15:15 - 2002-09-23 14:00 - 000013646 _____ C:\WINDOWS\system32\wpa.dbl
2018-09-13 21:33 - 2009-12-31 19:13 - 000032412 _____ C:\WINDOWS\SchedLgU.Txt
2018-09-11 20:50 - 2013-12-15 00:45 - 000029004 _____ C:\WINDOWS\system32\BMXCtrlState-{00000000-00000000-0000000B-00001102-00000002-80671102}.rfx
2018-09-11 20:50 - 2013-12-15 00:45 - 000029004 _____ C:\WINDOWS\system32\BMXBkpCtrlState-{00000000-00000000-0000000B-00001102-00000002-80671102}.rfx
2018-09-11 20:50 - 2013-12-15 00:45 - 000017860 _____ C:\WINDOWS\system32\BMXStateBkp-{00000000-00000000-0000000B-00001102-00000002-80671102}.rfx
2018-09-11 20:50 - 2013-12-15 00:45 - 000017860 _____ C:\WINDOWS\system32\BMXState-{00000000-00000000-0000000B-00001102-00000002-80671102}.rfx
2018-09-11 20:50 - 2013-12-15 00:45 - 000000288 _____ C:\WINDOWS\system32\DVCStateBkp-{00000000-00000000-0000000B-00001102-00000002-80671102}.dat
2018-09-11 20:50 - 2013-12-15 00:45 - 000000288 _____ C:\WINDOWS\system32\DVCState-{00000000-00000000-0000000B-00001102-00000002-80671102}.dat
2018-09-11 20:50 - 2009-12-31 19:58 - 000001080 _____ C:\WINDOWS\system32\settingsbkup.sfm
2018-09-11 20:50 - 2009-12-31 19:58 - 000001080 _____ C:\WINDOWS\system32\settings.sfm
2018-09-11 20:49 - 2009-12-31 19:14 - 000000178 ___SH C:\Documents and Settings\Honzik\ntuser.ini
2018-09-11 20:48 - 2009-12-31 19:14 - 000000000 ____D C:\Documents and Settings\Honzik
2018-08-30 10:45 - 2009-12-31 19:14 - 000000000 ___RD C:\Documents and Settings\Honzik\Dokumenty
2018-08-30 09:36 - 2014-05-23 20:15 - 000000000 ____D C:\WINDOWS\Minidump
2018-08-25 00:17 - 2009-12-31 19:14 - 000000000 ___HD C:\Documents and Settings\Honzik\Local Settings\Data aplikací

==================== Files in the root of some directories =======

2010-01-10 17:27 - 2010-09-04 12:59 - 000000046 _____ () C:\Documents and Settings\Honzik\jagex_runescape_preferences.dat
2010-01-10 17:27 - 2010-09-04 12:59 - 000000099 _____ () C:\Documents and Settings\Honzik\jagex_runescape_preferences2.dat
2010-03-24 23:01 - 2010-03-24 23:01 - 000000000 _____ () C:\Documents and Settings\Honzik\jagex__preferences3.dat
2012-10-30 21:27 - 2012-11-01 18:14 - 000000132 _____ () C:\Documents and Settings\Honzik\Data aplikací\Adobe Formát BMP CS5 – předvolby
2014-12-13 10:25 - 2014-12-13 10:25 - 000000040 _____ () C:\Documents and Settings\Honzik\Data aplikací\cdr.ini
2010-01-02 15:19 - 2010-01-02 17:17 - 000022328 _____ () C:\Documents and Settings\Honzik\Data aplikací\PnkBstrK.sys
2013-05-27 21:26 - 2017-11-28 19:01 - 000107008 _____ () C:\Documents and Settings\Honzik\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Some files in TEMP:
====================
2013-05-17 20:50 - 2011-05-15 18:29 - 014538152 _____ (ICQ) C:\Documents and Settings\Honzik\Local Settings\temp\0a50e25a83046228c11dcaa7eeed09bb.exe
2013-04-05 16:44 - 2013-04-05 16:44 - 000904104 _____ (Oracle Corporation) C:\Documents and Settings\Honzik\Local Settings\temp\jre-7u21-windows-i586-iftw.exe
2014-10-01 21:23 - 2014-10-01 21:23 - 000685568 _____ () C:\Documents and Settings\Honzik\Local Settings\temp\sqlite-3.8.2-x86-sqlitejdbc.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================