﻿Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-12-2013
Ran by Uživatel (administrator) on HP_8530W on 25-12-2013 20:54:52
Running from C:\Users\Uživatel\Desktop
Windows Vista (TM) Business Service Pack 2 (X64) OS Language: Czech
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Agere Systems) C:\Program Files\LSI SoftModem\agr64svc.exe
(Bluetooth Application Lab) C:\Windows\System32\bpsvc.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\AMT\LMS.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Intel Corporation) C:\Program Files (x86)\Common Files\Intel\Privacy Icon\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Intel Corporation) C:\Program Files (x86)\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuSchd2.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1584184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [nwiz] - C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1694016 2012-05-18] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2174760 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [picon] - C:\Program Files (x86)\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe [367128 2008-06-02] (Intel Corporation)
HKLM\...\Run: [Bluetooth Passport Standard] - C:\Program Files\Bluetooth Passport Standard\bpsc.exe [1656832 2008-05-28] (Bluetooth Application Lab)
HKLM\...\Run: [VideoDownloadConverter Home Page Guard 64 bit] - "C:\PROGRA~2\VIDEOD~2\bar\1.bin\AppIntegrator64.exe"
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\hpwuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [QlbCtrl.exe] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe [287800 2009-11-11] ( Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-01-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\Setup\emupdate\964b53ca-d6c7-4747-9509-5e82a3225709.exe [180184 2013-11-23] (AVAST Software)
HKLM-x32\...\Run: [SoundMAXPnP] - C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [1310720 2008-10-16] (Analog Devices, Inc.)
Winlogon\Notify\ScCertProp: C:\Windows\SysWOW64\explorer.exe (Microsoft Corporation)
HKCU\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2289664 2008-03-17] (Hewlett-Packard Company)
MountPoints2: {951fc825-af03-11e1-a04d-e2c2145bd2e0} - E:\setup.exe
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default User\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Winsock: Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Společnost Microsoft)
Winsock: Catalog5-x64 02 %SystemRoot%\system32\napinsp.dll [62976] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\8oegby0q.default
FF Homepage: hxxp://www.seznam.cz/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Seznam lištička - C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\8oegby0q.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Google Docs) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1

==================== Services (Whitelisted) =================

R2 AEADIFilters; C:\Windows\system32\AEADISRV.EXE [109056 2008-05-28] (Andrea Electronics Corporation)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agr64svc.exe [16896 2008-08-26] (Agere Systems)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 Bluetooth Passport; C:\Windows\system32\bpsvc.exe [167936 2008-05-28] (Bluetooth Application Lab)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2012-06-08] (Nero AG)
R2 LMS; C:\Program Files (x86)\Intel\AMT\LMS.exe [174616 2008-06-02] (Intel Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [88576 2012-04-13] ()
R2 UNS; C:\Program Files (x86)\Common Files\Intel\Privacy Icon\UNS\UNS.exe [2058776 2008-06-02] (Intel Corporation)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-08-30] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software)
R1 AswRdr; C:\Windows\System32\Drivers\AswRdr.sys [59144 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] ()
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-11-20] (AVG Technologies)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [275432 2009-04-10] (Společnost Microsoft)
R3 HBtnKey; C:\Windows\System32\DRIVERS\cpqbttn.sys [18360 2010-02-25] (Hewlett-Packard Company)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [1513320 2013-03-03] (Společnost Microsoft)
S3 RICOH SmartCard Reader; C:\Windows\System32\DRIVERS\rismcx64.sys [79872 2006-12-20] (RICOH Company, Ltd.)
R3 rismcx64; C:\Windows\System32\DRIVERS\rismcx64.sys [79872 2006-12-20] (RICOH Company, Ltd.)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1875760 2009-03-27] ()
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-25 20:54 - 2013-12-25 20:55 - 00013844 _____ C:\Users\Uživatel\Desktop\FRST.txt
2013-12-25 20:54 - 2013-12-25 20:54 - 00000000 ____D C:\FRST
2013-12-25 20:53 - 2013-12-25 20:53 - 01928716 _____ (Farbar) C:\Users\Uživatel\Desktop\FRST64.exe
2013-12-25 20:04 - 2013-12-25 20:06 - 00000000 ____D C:\AdwCleaner
2013-12-25 20:03 - 2013-12-25 20:03 - 01233962 _____ C:\Users\Uživatel\Downloads\adwcleaner.exe
2013-12-25 20:00 - 2013-12-25 20:00 - 00008586 _____ C:\Users\Uživatel\Desktop\JRT.txt
2013-12-25 19:51 - 2013-12-25 19:51 - 00000000 ____D C:\Windows\ERUNT
2013-12-25 19:50 - 2013-12-25 19:50 - 01034531 _____ (Thisisu) C:\Users\Uživatel\Downloads\JRT.exe
2013-12-25 19:34 - 2013-12-25 19:35 - 00000000 ____D C:\rsit
2013-12-25 19:34 - 2013-12-25 19:35 - 00000000 ____D C:\Program Files\trend micro
2013-12-25 19:33 - 2013-12-25 19:34 - 00935175 _____ C:\Users\Uživatel\Downloads\RSITx64.exe
2013-12-24 12:17 - 2013-12-24 12:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-24 11:46 - 2013-12-24 11:46 - 00000596 _____ C:\Windows\PFRO.log
2013-12-24 11:29 - 2013-12-24 11:29 - 00002778 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-12-24 11:29 - 2013-12-24 11:29 - 00000770 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-24 11:29 - 2013-12-24 11:29 - 00000000 ____D C:\Program Files\CCleaner
2013-12-24 11:24 - 2013-12-24 11:25 - 11036554 _____ C:\Users\Uživatel\Downloads\cc-setup(1).exe
2013-12-24 11:23 - 2013-12-24 11:24 - 10482892 _____ C:\Users\Uživatel\Downloads\cc-setup.exe.part
2013-12-24 11:23 - 2013-12-24 11:23 - 00000000 _____ C:\Users\Uživatel\Downloads\cc-setup.exe
2013-12-13 19:44 - 2013-11-15 03:09 - 17847296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-13 19:44 - 2013-11-15 02:42 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-13 19:44 - 2013-11-15 02:37 - 02334720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-13 19:44 - 2013-11-15 02:29 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-13 19:44 - 2013-11-15 02:29 - 01347072 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-13 19:44 - 2013-11-15 02:28 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-13 19:44 - 2013-11-15 02:28 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-13 19:44 - 2013-11-15 02:25 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-13 19:44 - 2013-11-15 02:22 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-13 19:44 - 2013-11-15 02:20 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-13 19:44 - 2013-11-15 02:20 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-13 19:44 - 2013-11-15 02:19 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-13 19:44 - 2013-11-15 02:19 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-13 19:44 - 2013-11-15 02:18 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-13 19:44 - 2013-11-15 02:18 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-13 19:44 - 2013-11-15 02:12 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-13 19:44 - 2013-11-15 00:13 - 12344320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-13 19:44 - 2013-11-14 23:50 - 09739264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-13 19:44 - 2013-11-14 23:50 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-13 19:44 - 2013-11-14 23:43 - 01105408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-13 19:44 - 2013-11-14 23:42 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-13 19:44 - 2013-11-14 23:42 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-13 19:44 - 2013-11-14 23:41 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-13 19:44 - 2013-11-14 23:40 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-13 19:44 - 2013-11-14 23:38 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-13 19:44 - 2013-11-14 23:38 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-13 19:44 - 2013-11-14 23:38 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-13 19:44 - 2013-11-14 23:37 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-13 19:44 - 2013-11-14 23:36 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-13 19:44 - 2013-11-14 23:36 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-13 19:44 - 2013-11-14 23:35 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-13 19:44 - 2013-11-14 23:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-12 21:05 - 2013-10-30 04:55 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-12 21:05 - 2013-10-30 03:33 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-12 21:05 - 2013-10-30 03:10 - 02776064 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-12 21:05 - 2013-10-22 10:31 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-12 21:05 - 2013-10-22 08:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-12 21:05 - 2013-10-11 05:27 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-12 21:05 - 2013-10-11 05:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-12 21:05 - 2013-10-11 03:19 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-12 21:05 - 2013-10-11 03:19 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-12 21:05 - 2013-10-11 03:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-12 21:05 - 2013-10-11 03:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-12 21:05 - 2013-10-11 03:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshcon.dll
2013-12-12 21:05 - 2013-10-11 01:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-12 21:05 - 2013-10-11 01:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-01 19:25 - 2013-12-01 19:26 - 00000000 ____D C:\Users\Uživatel\Desktop\OBEDY

==================== One Month Modified Files and Folders =======

2013-12-25 20:55 - 2013-12-25 20:54 - 00013844 _____ C:\Users\Uživatel\Desktop\FRST.txt
2013-12-25 20:54 - 2013-12-25 20:54 - 00000000 ____D C:\FRST
2013-12-25 20:53 - 2013-12-25 20:53 - 01928716 _____ (Farbar) C:\Users\Uživatel\Desktop\FRST64.exe
2013-12-25 20:52 - 2006-11-02 16:20 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-25 20:52 - 2006-11-02 16:20 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-25 20:39 - 2012-06-06 08:58 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-25 20:19 - 2013-09-25 14:46 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-25 20:13 - 2008-01-21 02:52 - 01192940 _____ C:\Windows\WindowsUpdate.log
2013-12-25 20:09 - 2013-08-04 09:36 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-25 20:08 - 2013-09-25 14:46 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-25 20:08 - 2013-08-04 12:36 - 00007720 _____ C:\Windows\system32\spsys.log
2013-12-25 20:08 - 2006-11-02 16:38 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-25 20:07 - 2012-06-30 09:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-25 20:07 - 2006-11-02 16:38 - 00032556 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-25 20:06 - 2013-12-25 20:04 - 00000000 ____D C:\AdwCleaner
2013-12-25 20:06 - 2012-06-06 07:19 - 00000012 _____ C:\Windows\bthservsdp.dat
2013-12-25 20:03 - 2013-12-25 20:03 - 01233962 _____ C:\Users\Uživatel\Downloads\adwcleaner.exe
2013-12-25 20:00 - 2013-12-25 20:00 - 00008586 _____ C:\Users\Uživatel\Desktop\JRT.txt
2013-12-25 19:51 - 2013-12-25 19:51 - 00000000 ____D C:\Windows\ERUNT
2013-12-25 19:50 - 2013-12-25 19:50 - 01034531 _____ (Thisisu) C:\Users\Uživatel\Downloads\JRT.exe
2013-12-25 19:35 - 2013-12-25 19:34 - 00000000 ____D C:\rsit
2013-12-25 19:35 - 2013-12-25 19:34 - 00000000 ____D C:\Program Files\trend micro
2013-12-25 19:34 - 2013-12-25 19:33 - 00935175 _____ C:\Users\Uživatel\Downloads\RSITx64.exe
2013-12-24 12:18 - 2013-12-24 12:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-24 12:07 - 2012-06-05 22:02 - 00607714 _____ C:\Windows\system32\perfh005.dat
2013-12-24 12:07 - 2012-06-05 22:02 - 00118346 _____ C:\Windows\system32\perfc005.dat
2013-12-24 12:07 - 2006-11-02 13:46 - 01418466 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-24 11:46 - 2013-12-24 11:46 - 00000596 _____ C:\Windows\PFRO.log
2013-12-24 11:43 - 2012-10-01 18:06 - 00000000 ____D C:\Users\Uživatel\.gimp-2.4
2013-12-24 11:43 - 2012-10-01 08:50 - 00000000 ____D C:\Windows\Minidump
2013-12-24 11:43 - 2012-06-05 22:03 - 00000000 ____D C:\Windows\Panther
2013-12-24 11:29 - 2013-12-24 11:29 - 00002778 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-12-24 11:29 - 2013-12-24 11:29 - 00000770 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-24 11:29 - 2013-12-24 11:29 - 00000000 ____D C:\Program Files\CCleaner
2013-12-24 11:25 - 2013-12-24 11:24 - 11036554 _____ C:\Users\Uživatel\Downloads\cc-setup(1).exe
2013-12-24 11:24 - 2013-12-24 11:23 - 10482892 _____ C:\Users\Uživatel\Downloads\cc-setup.exe.part
2013-12-24 11:23 - 2013-12-24 11:23 - 00000000 _____ C:\Users\Uživatel\Downloads\cc-setup.exe
2013-12-16 16:27 - 2013-08-16 11:31 - 00000000 ____D C:\Windows\system32\MRT
2013-12-16 16:24 - 2006-11-02 13:35 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-12-13 20:05 - 2006-11-02 16:20 - 00418872 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-13 19:47 - 2012-08-31 19:02 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-10 21:39 - 2012-06-06 08:58 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-10 21:39 - 2012-06-06 08:58 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-10 21:39 - 2012-06-06 08:58 - 00003766 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-09 17:19 - 2013-02-07 18:42 - 00000000 ____D C:\Users\Uživatel\Documents\Mamka
2013-12-07 22:57 - 2012-08-31 20:42 - 00000000 ____D C:\Users\Uživatel\Desktop\FILMY
2013-12-07 19:52 - 2012-12-29 17:55 - 00000000 ____D C:\Users\Uživatel\Desktop\TATAfoto
2013-12-06 21:21 - 2013-09-25 14:48 - 00002025 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-12-01 19:26 - 2013-12-01 19:25 - 00000000 ____D C:\Users\Uživatel\Desktop\OBEDY
2013-11-28 21:14 - 2013-09-25 14:46 - 00003952 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-28 21:14 - 2013-09-25 14:46 - 00003700 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-27 20:32 - 2012-08-31 19:11 - 00002699 _____ C:\Users\Uživatel\Desktop\Microsoft Office Word 2007.lnk

Some content of TEMP:
====================
C:\Users\Uživatel\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-25 20:14

==================== End Of Log ============================