Po vypntutí antiviru to fungovalo, takže zde:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-12-2013 01
Ran by Vojta (administrator) on VOJTA-PC on 15-12-2013 19:50:38
Running from C:\Users\Vojta\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVerMedia) C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\System32\IgrsSvcs.exe
(Microsoft Corp.) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe
(CyberLink Corp.) C:\Program Files\Lenovo\YouCam\YouCamTray.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.bin
() C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe
(CyberLink Corp.) C:\Program Files\Lenovo\YouCam\YouCamTray.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.bin
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
(InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe
(MPC-HC Team) C:\Program Files\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 11\Program\Zps.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcfgex.exe
(forum.viry.cz) C:\Users\Vojta\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-03-03] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [cAudioFilterAgent] - C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe [496184 2010-03-10] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] - C:\Program Files\CONEXANT\SAII\SAIICpl.exe [307768 2009-11-19] ()
HKLM\...\Run: [UCam_Menu] - C:\Program Files\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [YouCam Mirror Tray icon] - C:\Program Files\Lenovo\YouCam\YouCamTray.exe [167008 2009-12-22] (CyberLink Corp.)
HKLM\...\Run: [UpdateP2GShortCut] - C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM\...\Run: [EnergyUtility] - C:\Program Files\Lenovo\Energy Management\utility.exe [4114368 2009-12-17] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] - C:\Program Files\Lenovo\Energy Management\Energy Management.exe [6223808 2009-12-17] (Lenovo (Beijing) Limited)
HKLM\...\Run: [ISUSScheduler] - C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-06-16] (InstallShield Software Corporation)
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2013\avgui.exe [4411952 2013-11-20] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\...\Run: [ISUSPM Startup] - C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2004-06-16] (InstallShield Software Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-10-23] (Google Inc.)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
Startup: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Landi 11.lnk
ShortcutTarget: Landi 11.lnk -> C:\Program Files\landi 11\Landi11.exe ( )
Startup: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk
ShortcutTarget: OpenOffice.org 3.0.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
Startup: C:\Users\Vojtík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk
ShortcutTarget: OpenOffice.org 3.0.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
==================== Internet (Whitelisted) ====================
ProxyServer: proxy.osz.cd.cz:80
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://lenovo.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages =
http://www.lenovo.com/
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {4DF9EE0F-0AD0-4662-BEF9-A1BE0D8A40D4} URL =
http://www.webhledani.cz/results.aspx?i ... earchTerms}
BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Toolbar: HKLM - &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Toolbar: HKCU - &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
FireFox:
========
FF ProfilePath: C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default
FF SearchEngineOrder.1: Ask Search
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\windows\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Vojta\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Vojta\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\avg_igeared.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Český slovník pro kontrolu pravopisu - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\
cs@dictionaries.addons.mozilla.org
FF Extension: Xmarks - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\
foxmarks@kei.com
FF Extension: AddThis - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{3e0e7d2a-070f-4a47-b019-91fe5385ba79}
FF Extension: Flash and Video Download - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
FF Extension: SearchPreview - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{EF522540-89F5-46b9-B6FE-1829E2B572C6}
FF Extension: flashgot - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi
FF Extension: Adblock Plus - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\11wayb55.default\Extensions\{ff356687-aa08-463d-a46c-11c451824939}.xpi
Chrome:
=======
CHR HomePage:
CHR RestoreOnStartup: "sync": {
"acknowledged_types": [ "Bookmarks", "Preferences", "Passwords", "Autofill Profiles", "Autofill", "Themes", "Typed URLs", "Extensions", "Encryption keys", "Search Engines", "Sessions", "Apps", "App settings", "Extension settings", "App Notifications" ],
"app_notifications": true,
"app_settings": true,
"apps": true,
"autofill": true,
"autofill_profile": true,
"bookmarks": true,
"extension_settings": true,
"extensions": true,
"keep_everything_synced": true,
"passwords": true,
"preferences": true,
"search_engines": true,
"session_sync_guid": "session_syncYUCaPf3Rd7bVUci5fKoa6g==",
"sessions": true,
"suppress_start": false,
"themes": true,
"typed_urls"
CHR DefaultSearchKeyword: google.cz
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL: {google:baseURL}_/chrome/newtab?{google:RLZ}{google:instantExtendedEnabledParameter}{google:ntpIsThemedParameter}ie={inputEncoding}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Vojta\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Vojta\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Vojta\AppData\Local\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Vojta\AppData\Local\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\3.0.40624.0\npctrl.dll No File
CHR Extension: (YouTube) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_1
CHR Extension: (Google Search) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1
CHR Extension: (Google Wallet) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2
========================== Services (Whitelisted) =================
R2 AVerRemote; C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe [344064 2009-04-08] (AVerMedia)
R2 AVerScheduleService; C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe [389120 2009-10-09] ()
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-11-20] (AVG Technologies CZ, s.r.o.)
S3 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-15] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [509192 2009-08-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [575304 2009-11-17] (Lenovo Group Limited)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-15] (Lenovo Group Limited)
==================== Drivers (Whitelisted) ====================
R3 ACPIVPC; C:\Windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atipmdag.sys [5340160 2010-03-03] (ATI Technologies Inc.)
S3 AVerAF35; C:\Windows\System32\Drivers\AVerAF35.sys [474880 2009-10-19] (AVerMedia TECHNOLOGIES, Inc.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208184 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [60216 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22328 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [171320 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [96568 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [39224 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [182072 2013-03-21] (AVG Technologies CZ, s.r.o.)
S3 Bridge0; C:\Windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2009-09-19] (MCCI)
S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14848 2009-09-19] (MCCI Corporation)
S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [123648 2009-09-19] (MCCI Corporation)
R3 usbsmi; C:\Windows\System32\DRIVERS\SMIksdrv.sys [171776 2009-10-16] (SMI)
R3 wdmirror; C:\Windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\Windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-15 16:26 - 2013-12-15 16:26 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Desktop\FRSTLauncher.exe
2013-12-15 16:25 - 2013-12-15 19:51 - 00019036 _____ C:\Users\Vojta\Desktop\FRST.txt
2013-12-15 16:23 - 2013-12-15 16:23 - 01060897 _____ (Farbar) C:\Users\Vojta\Downloads\FRST.exe
2013-12-15 15:56 - 2013-12-15 15:56 - 00530752 _____ C:\Users\Vojta\Documents\fayz.xps
2013-12-15 09:56 - 2013-12-15 16:36 - 00003516 _____ C:\Users\Vojta\Desktop\SystemLook.txt
2013-12-15 09:54 - 2013-12-15 09:54 - 00139264 _____ C:\Users\Vojta\Desktop\SystemLook.exe
2013-12-13 06:36 - 2013-12-13 06:36 - 00000000 ____D C:\5ef537401ab905c018a404348dfa9f
2013-12-13 06:36 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2013-12-13 06:36 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2013-12-12 15:12 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2013-12-12 15:12 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2013-12-12 15:12 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2013-12-12 15:12 - 2013-10-30 02:27 - 02349056 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2013-12-12 15:12 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2013-12-12 15:12 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2013-12-12 15:12 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2013-12-12 15:12 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2013-12-12 15:12 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2013-12-12 15:12 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2013-12-12 15:12 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2013-12-10 18:45 - 2013-12-10 18:45 - 00956604 _____ C:\Users\Vojtík\Documents\armenie.odp
2013-12-09 19:31 - 2013-12-09 19:31 - 00104448 _____ C:\Users\Vojtík\Documents\armenieup.ppt
2013-12-09 18:57 - 2013-12-09 18:57 - 01060641 _____ (Farbar) C:\Users\Vojta\Downloads\FRST(1).exe
2013-12-09 12:18 - 2013-12-09 12:18 - 00001389 _____ C:\Users\Vojta\Downloads\RSIT – zástupce.lnk
2013-12-09 06:36 - 2013-12-09 06:37 - 00024235 _____ C:\Users\Vojta\Downloads\Addition.txt
2013-12-09 06:34 - 2013-12-09 19:02 - 00000000 ____D C:\FRST
2013-12-09 06:33 - 2013-12-15 16:23 - 01060897 _____ (Farbar) C:\Users\Vojta\Desktop\FRST.exe
2013-12-08 17:10 - 2013-12-08 17:10 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT(2).exe
2013-12-08 17:09 - 2013-12-08 17:09 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT(1).exe
2013-12-08 16:57 - 2013-12-09 12:19 - 00000000 ____D C:\Program Files\trend micro
2013-12-08 16:57 - 2013-12-08 16:57 - 00000000 ____D C:\rsit
2013-12-08 16:56 - 2013-12-08 16:57 - 00781383 _____ C:\Users\Vojta\Desktop\RSIT.exe
2013-12-08 16:17 - 2013-12-08 16:17 - 00001067 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Malwarebytes
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-08 16:17 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2013-12-08 16:16 - 2013-12-08 16:16 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Vojta\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-08 13:36 - 2013-12-08 13:36 - 00003020 _____ C:\Users\Vojta\Desktop\AdwCleaner[S0].txt
2013-12-08 13:29 - 2013-12-08 13:31 - 00000000 ____D C:\AdwCleaner
2013-12-08 13:29 - 2013-12-08 13:29 - 01110034 _____ C:\Users\Vojta\Downloads\adwcleaner.exe
2013-12-08 12:44 - 2013-12-13 14:36 - 00000560 _____ C:\windows\setupact.log
2013-12-08 12:44 - 2013-12-08 12:44 - 00000000 _____ C:\windows\setuperr.log
2013-12-08 12:43 - 2013-12-08 20:51 - 00003590 _____ C:\windows\PFRO.log
2013-12-08 12:37 - 2013-12-08 12:37 - 00003299 _____ C:\Users\Vojta\Desktop\JRT.txt
2013-12-08 12:31 - 2013-12-08 12:31 - 01034531 _____ (Thisisu) C:\Users\Vojta\Downloads\JRT.exe
2013-12-08 12:31 - 2013-12-08 12:31 - 00000000 ____D C:\windows\ERUNT
2013-12-08 12:19 - 2013-12-08 12:19 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\AdobeUM
2013-12-08 11:54 - 2013-12-08 11:54 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-08 11:54 - 2013-12-08 11:54 - 00000000 ____D C:\Program Files\CCleaner
2013-12-08 11:53 - 2013-12-08 11:53 - 11036554 _____ C:\Users\Vojta\Downloads\cc-setup.exe
2013-12-08 11:26 - 2013-12-08 11:26 - 00000000 ____D C:\ProgramData\Macrovision
2013-12-08 11:25 - 2013-12-08 11:25 - 02395904 _____ (Macrovision ) C:\Users\Vojta\Downloads\setup(1).exe
2013-12-08 11:24 - 2013-12-08 11:24 - 02395904 _____ (Macrovision ) C:\Users\Vojta\Downloads\setup.exe
2013-12-08 11:03 - 2013-12-07 12:12 - 00000000 ____D C:\Users\Vojtík\Documents\RAKOUSKO - ÖBB
2013-12-08 11:02 - 2013-12-08 11:02 - 00000000 ____D C:\Users\Vojtík\Documents\RAKOUSKO_ÖBB_2014
2013-11-27 19:24 - 2013-11-27 19:25 - 00107520 _____ C:\Users\Vojtík\Documents\armenie.ppt
2013-11-25 19:29 - 2013-12-10 18:37 - 00031723 _____ C:\Users\Vojtík\Documents\armenie text.odt
2013-11-25 19:29 - 2013-11-03 11:21 - 00510102 _____ C:\Users\Vojtík\Documents\vv.zoo
2013-11-25 19:29 - 2013-10-19 09:18 - 00012497 _____ C:\Users\Vojtík\Documents\Vydaje a příjmy.ods
2013-11-25 19:29 - 2013-10-02 18:17 - 00016948 _____ C:\Users\Vojtík\Documents\Svycarsko.odt
2013-11-25 19:29 - 2013-08-05 10:59 - 00408576 _____ C:\Users\Vojtík\Documents\swiss projekt.MSWMM
2013-11-25 19:29 - 2013-04-21 19:56 - 00006495 _____ C:\Users\Vojtík\Documents\sk 2013 pop.txt
2013-11-25 19:29 - 2013-04-21 17:51 - 00022528 _____ C:\Users\Vojtík\Documents\sk 2013.odt
2013-11-25 19:29 - 2013-02-18 15:27 - 00504610 _____ C:\Users\Vojtík\Documents\aj holywwo.odp
2013-11-25 19:29 - 2012-05-09 14:44 - 00014173 _____ C:\Users\Vojtík\Documents\untitled_1.odp
2013-11-25 19:29 - 2012-03-05 10:17 - 00230400 _____ C:\Users\Vojtík\Documents\vask.xls
2013-11-25 01:48 - 2013-11-25 01:48 - 00208184 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgidsdriverx.sys
2013-11-17 20:12 - 2013-11-17 20:12 - 00000000 ____D C:\Program Files\Mozilla Firefox
==================== One Month Modified Files and Folders =======
2013-12-15 19:51 - 2013-12-15 16:25 - 00019036 _____ C:\Users\Vojta\Desktop\FRST.txt
2013-12-15 19:36 - 2012-01-26 18:53 - 00000966 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1006UA.job
2013-12-15 19:32 - 2010-05-16 14:06 - 02022173 _____ C:\windows\WindowsUpdate.log
2013-12-15 19:20 - 2013-10-23 12:33 - 00000962 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1004UA.job
2013-12-15 19:20 - 2010-05-16 14:14 - 00006466 _____ C:\windows\system32\PerfStringBackup.INI
2013-12-15 18:49 - 2012-10-29 18:27 - 00000000 ____D C:\ProgramData\MFAData
2013-12-15 17:30 - 2010-10-06 18:00 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Media Player Classic
2013-12-15 16:36 - 2013-12-15 09:56 - 00003516 _____ C:\Users\Vojta\Desktop\SystemLook.txt
2013-12-15 16:36 - 2012-01-26 18:53 - 00000914 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1006Core.job
2013-12-15 16:26 - 2013-12-15 16:26 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Desktop\FRSTLauncher.exe
2013-12-15 16:23 - 2013-12-15 16:23 - 01060897 _____ (Farbar) C:\Users\Vojta\Downloads\FRST.exe
2013-12-15 16:23 - 2013-12-09 06:33 - 01060897 _____ (Farbar) C:\Users\Vojta\Desktop\FRST.exe
2013-12-15 15:56 - 2013-12-15 15:56 - 00530752 _____ C:\Users\Vojta\Documents\fayz.xps
2013-12-15 11:20 - 2013-10-23 12:33 - 00000910 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1004Core.job
2013-12-15 09:54 - 2013-12-15 09:54 - 00139264 _____ C:\Users\Vojta\Desktop\SystemLook.exe
2013-12-13 15:17 - 2010-09-07 20:16 - 00000000 ____D C:\Users\Vojta\AppData\Local\Adobe
2013-12-13 14:56 - 2012-06-14 19:47 - 00012994 _____ C:\Users\Vojta\Documents\landierror.log
2013-12-13 14:44 - 2009-07-14 05:34 - 00009920 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-13 14:44 - 2009-07-14 05:34 - 00009920 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-13 14:36 - 2013-12-08 12:44 - 00000560 _____ C:\windows\setupact.log
2013-12-13 14:36 - 2009-07-14 05:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-12-13 14:30 - 2010-05-16 14:26 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-13 14:22 - 2009-07-14 05:33 - 00444400 _____ C:\windows\system32\FNTCACHE.DAT
2013-12-13 12:50 - 2010-09-02 17:08 - 00000000 ____D C:\Users\Vojta
2013-12-13 06:36 - 2013-12-13 06:36 - 00000000 ____D C:\5ef537401ab905c018a404348dfa9f
2013-12-13 06:36 - 2013-08-06 21:12 - 00000000 ____D C:\windows\system32\MRT
2013-12-13 06:36 - 2010-09-10 16:11 - 88123800 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-12-12 17:43 - 2011-12-25 15:45 - 00025182 _____ C:\Users\Vojtík\Documents\landierror.log
2013-12-12 17:43 - 2011-12-25 15:27 - 00000000 ____D C:\ProgramData\Landi11-original
2013-12-10 18:45 - 2013-12-10 18:45 - 00956604 _____ C:\Users\Vojtík\Documents\armenie.odp
2013-12-10 18:37 - 2013-11-25 19:29 - 00031723 _____ C:\Users\Vojtík\Documents\armenie text.odt
2013-12-10 14:07 - 2013-05-15 18:18 - 00000947 _____ C:\Users\Public\Desktop\AVG 2013.lnk
2013-12-09 19:31 - 2013-12-09 19:31 - 00104448 _____ C:\Users\Vojtík\Documents\armenieup.ppt
2013-12-09 19:02 - 2013-12-09 06:34 - 00000000 ____D C:\FRST
2013-12-09 18:57 - 2013-12-09 18:57 - 01060641 _____ (Farbar) C:\Users\Vojta\Downloads\FRST(1).exe
2013-12-09 12:19 - 2013-12-08 16:57 - 00000000 ____D C:\Program Files\trend micro
2013-12-09 12:18 - 2013-12-09 12:18 - 00001389 _____ C:\Users\Vojta\Downloads\RSIT – zástupce.lnk
2013-12-09 06:37 - 2013-12-09 06:36 - 00024235 _____ C:\Users\Vojta\Downloads\Addition.txt
2013-12-08 20:51 - 2013-12-08 12:43 - 00003590 _____ C:\windows\PFRO.log
2013-12-08 17:10 - 2013-12-08 17:10 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT(2).exe
2013-12-08 17:09 - 2013-12-08 17:09 - 00781383 _____ C:\Users\Vojta\Downloads\RSIT(1).exe
2013-12-08 16:57 - 2013-12-08 16:57 - 00000000 ____D C:\rsit
2013-12-08 16:57 - 2013-12-08 16:56 - 00781383 _____ C:\Users\Vojta\Desktop\RSIT.exe
2013-12-08 16:17 - 2013-12-08 16:17 - 00001067 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Malwarebytes
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-08 16:17 - 2013-12-08 16:17 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-08 16:16 - 2013-12-08 16:16 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Vojta\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-08 15:54 - 2011-09-04 09:50 - 00007597 _____ C:\Users\Vojta\AppData\Local\Resmon.ResmonCfg
2013-12-08 13:36 - 2013-12-08 13:36 - 00003020 _____ C:\Users\Vojta\Desktop\AdwCleaner[S0].txt
2013-12-08 13:31 - 2013-12-08 13:29 - 00000000 ____D C:\AdwCleaner
2013-12-08 13:29 - 2013-12-08 13:29 - 01110034 _____ C:\Users\Vojta\Downloads\adwcleaner.exe
2013-12-08 13:05 - 2012-10-29 18:27 - 00000000 ____D C:\Users\Vojta\AppData\Local\Avg2013
2013-12-08 13:00 - 2010-05-16 14:19 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-12-08 12:44 - 2013-12-08 12:44 - 00000000 _____ C:\windows\setuperr.log
2013-12-08 12:37 - 2013-12-08 12:37 - 00003299 _____ C:\Users\Vojta\Desktop\JRT.txt
2013-12-08 12:31 - 2013-12-08 12:31 - 01034531 _____ (Thisisu) C:\Users\Vojta\Downloads\JRT.exe
2013-12-08 12:31 - 2013-12-08 12:31 - 00000000 ____D C:\windows\ERUNT
2013-12-08 12:27 - 2010-12-28 14:16 - 00000000 ___RD C:\Program Files\Skype
2013-12-08 12:25 - 2010-05-16 14:25 - 00000000 ____D C:\ProgramData\Adobe
2013-12-08 12:25 - 2010-05-16 14:25 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-12-08 12:25 - 2010-05-16 14:25 - 00000000 ____D C:\Program Files\Adobe
2013-12-08 12:19 - 2013-12-08 12:19 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\AdobeUM
2013-12-08 12:16 - 2010-12-28 14:16 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Skype
2013-12-08 12:15 - 2009-07-29 11:27 - 00000000 ____D C:\windows\Panther
2013-12-08 11:54 - 2013-12-08 11:54 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-08 11:54 - 2013-12-08 11:54 - 00000000 ____D C:\Program Files\CCleaner
2013-12-08 11:53 - 2013-12-08 11:53 - 11036554 _____ C:\Users\Vojta\Downloads\cc-setup.exe
2013-12-08 11:26 - 2013-12-08 11:26 - 00000000 ____D C:\ProgramData\Macrovision
2013-12-08 11:25 - 2013-12-08 11:25 - 02395904 _____ (Macrovision ) C:\Users\Vojta\Downloads\setup(1).exe
2013-12-08 11:24 - 2013-12-08 11:24 - 02395904 _____ (Macrovision ) C:\Users\Vojta\Downloads\setup.exe
2013-12-08 11:12 - 2013-11-07 17:18 - 00000000 ____D C:\ProgramData\Origin
2013-12-08 11:12 - 2013-11-07 17:18 - 00000000 ____D C:\Program Files\Origin
2013-12-08 11:12 - 2012-10-21 15:44 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-12-08 11:02 - 2013-12-08 11:02 - 00000000 ____D C:\Users\Vojtík\Documents\RAKOUSKO_ÖBB_2014
2013-12-07 12:12 - 2013-12-08 11:03 - 00000000 ____D C:\Users\Vojtík\Documents\RAKOUSKO - ÖBB
2013-12-06 15:43 - 2012-01-26 18:55 - 00002369 _____ C:\Users\Vojtík\Desktop\Google Chrome.lnk
2013-12-05 20:25 - 2012-06-04 07:39 - 00002364 _____ C:\Users\Vojta\Desktop\Google Chrome.lnk
2013-11-30 06:35 - 2011-12-07 15:57 - 00000000 ____D C:\Users\Vojtík\Documents\AVerTV
2013-11-27 19:25 - 2013-11-27 19:24 - 00107520 _____ C:\Users\Vojtík\Documents\armenie.ppt
2013-11-25 19:34 - 2011-01-22 19:24 - 00000000 ____D C:\Users\Vojtík\Documents\ICQ
2013-11-25 01:48 - 2013-11-25 01:48 - 00208184 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgidsdriverx.sys
2013-11-23 19:26 - 2013-12-12 15:12 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2013-11-20 20:22 - 2012-05-12 06:47 - 00000000 ____D C:\Users\Vojtík\Documents\New Star Soccer 5
2013-11-20 07:37 - 2012-08-16 20:51 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-19 20:47 - 2010-09-02 17:08 - 00002239 _____ C:\Users\Vojta\Desktop\OneKey Recovery.lnk
2013-11-18 12:06 - 2009-07-14 03:37 - 00000000 ____D C:\windows\rescache
2013-11-17 20:12 - 2013-11-17 20:12 - 00000000 ____D C:\Program Files\Mozilla Firefox
Some content of TEMP:
====================
C:\Users\Vojta\AppData\Local\Temp\install_flashplayer11x32au_mssd_aaa_aih_1.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_1.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_10.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_11.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_2.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_3.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_4.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_5.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_6.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_7.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_8.exe
C:\Users\Vojta\AppData\Local\Temp\install_reader11_cz_mssd_aaa_aih_9.exe
C:\Users\Vojta\AppData\Local\Temp\Quarantine.exe
C:\Users\Vojtík\AppData\Local\Temp\drm_dyndata_7380015.dll
C:\Users\Vojtík\AppData\Local\Temp\install_flashplayer11x32_aih.exe
C:\Users\Vojtík\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Vojtík\AppData\Local\Temp\SRLDetectionLibrary3667438820236396372.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1004Core.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1004UA.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1006Core.job => C:\Users\Vojtík\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3345722164-824032065-3570544302-1006UA.job => C:\Users\Vojtík\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: AVG AntiVirus Free Edition 2013 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2013 (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Vojta\Desktop" je 2 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Co je sloziteho na stazeni dvou souboru a spusteni jednoho z nich 
od 1. února 2011.
Přispějete na provoz fóra?