policejní vir 2000Kč

[pavani]

Dobrý den,
objevil se mi policejní vir, mám Windows 8, na netu jsem našel že mbam pomůže, spustil jsem, mezitím skočila hláška od Windows defenderu......
po restartu PC běží, ale mohu přecejenom poprosit o kontrolu?

can result of Farbar Recovery Scan Tool (FRST) (x86) Version: 05-01-2014
Ran by vasudeva (administrator) on VND on 08-01-2014 00:33:00
Running from C:\Users\vasudeva\Desktop
Microsoft Windows 8 Pro (X86) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\sppsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(BitTorrent Inc.) C:\Users\vasudeva\AppData\Roaming\uTorrent\uTorrent.exe
(forum.viry.cz) C:\Users\vasudeva\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKCU\...\Run: [OEXPRESS] - [x]
HKCU\...\Run: [ShowDesktopAsRun] - C:\Users\vasudeva\AppData\Roaming\StartMenu\desktop.scf [81 2014-01-06] ()
HKCU\...\Run: [uTorrent] - C:\Users\vasudeva\AppData\Roaming\uTorrent\uTorrent.exe [1142864 2014-01-06] (BitTorrent Inc.)
MountPoints2: {59cb1ce9-7491-11e3-afa0-001d72cd4584} - "G:\SETUP.EXE"

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xCFB01A443A08CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US,en;q=0.7,cs;q=0.3
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\vasudeva\AppData\Roaming\Mozilla\Firefox\Profiles\5c9pjj07.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @videolan.org/vlc,version=2.1.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: uTorrentControl_v6 - C:\Users\vasudeva\AppData\Roaming\Mozilla\Firefox\Profiles\5c9pjj07.default\Extensions\{96f454ea-9d38-474f-b504-56193e00c1a5}

Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\vasudeva\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\vasudeva\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\vasudeva\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\vasudeva\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google Wallet) - C:\Users\vasudeva\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Gmail) - C:\Users\vasudeva\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1

========================== Services (Whitelisted) =================

R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 SLSvc; C:\Windows\sppsvc.exe [10240 2012-08-25] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [13864 2012-07-25] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [24576 2012-07-25] (Microsoft Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R3 netwlv32; C:\Windows\system32\DRIVERS\netwlv32.sys [6637056 2012-06-02] (Intel Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-08 00:33 - 2014-01-08 00:33 - 00005034 _____ C:\Users\vasudeva\Desktop\FRST.txt
2014-01-08 00:17 - 2014-01-08 00:17 - 00000117 _____ C:\Windows\system32\netcfg-33150.txt
2014-01-08 00:16 - 2014-01-08 00:16 - 00000117 _____ C:\Windows\system32\netcfg-26277011.txt
2014-01-08 00:05 - 2014-01-08 00:05 - 00000000 ____D C:\FRST
2014-01-08 00:00 - 2014-01-08 00:00 - 00112640 _____ (forum.viry.cz) C:\Users\vasudeva\Desktop\FRSTLauncher.exe
2014-01-07 23:57 - 2014-01-07 23:57 - 01064805 _____ (Farbar) C:\Users\vasudeva\Desktop\FRST.exe
2014-01-07 23:56 - 2014-01-07 23:56 - 00112107 _____ (forum.viry.cz) C:\Users\vasudeva\Downloads\VerzeOS.exe
2014-01-07 23:40 - 2014-01-07 23:40 - 00001067 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-07 23:40 - 2014-01-07 23:40 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Malwarebytes
2014-01-07 23:39 - 2014-01-07 23:40 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2014-01-07 23:39 - 2014-01-07 23:39 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-07 23:39 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-07 23:38 - 2014-01-07 23:38 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\vasudeva\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-07 22:52 - 2014-01-07 23:14 - 802157865 _____ C:\Users\vasudeva\Downloads\Nymfomanka - Část 1 (Nymphomaniac Volume 1) SUPER KVALITA 2013 CZ TITULKY.mp4
2014-01-07 19:15 - 2014-01-07 20:11 - 1468483584 _____ C:\Users\vasudeva\Downloads\Jeníček a Mařenka Lovci čarodějnic (2013) 5.1 CZ dabing.avi
2014-01-07 15:55 - 2014-01-07 15:55 - 00000117 _____ C:\Windows\system32\netcfg-33805307.txt
2014-01-07 15:55 - 2014-01-07 15:55 - 00000117 _____ C:\Windows\system32\netcfg-33770581.txt
2014-01-07 15:54 - 2014-01-07 15:54 - 00000117 _____ C:\Windows\system32\netcfg-33718726.txt
2014-01-07 15:54 - 2014-01-07 15:54 - 00000117 _____ C:\Windows\system32\netcfg-33713188.txt
2014-01-07 14:46 - 2014-01-07 14:46 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\WinRAR
2014-01-07 14:45 - 2014-01-07 14:45 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-07 14:44 - 2014-01-07 14:45 - 00000000 ____D C:\Program Files\WinRAR
2014-01-07 14:44 - 2014-01-07 14:44 - 08147729 _____ C:\Users\vasudeva\Downloads\wrarcz-setup.exe
2014-01-07 06:34 - 2014-01-07 06:34 - 00000117 _____ C:\Windows\system32\netcfg-128607.txt
2014-01-06 23:39 - 2014-01-06 23:39 - 00000117 _____ C:\Windows\system32\netcfg-37158658.txt
2014-01-06 22:27 - 2014-01-06 22:28 - 00000009 _____ C:\END
2014-01-06 22:26 - 2014-01-06 22:26 - 00000816 _____ C:\Users\vasudeva\Desktop\µTorrent.lnk
2014-01-06 22:26 - 2014-01-06 22:26 - 00000796 _____ C:\Users\vasudeva\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-01-06 22:24 - 2014-01-06 22:25 - 01142864 _____ (BitTorrent Inc.) C:\Users\vasudeva\Downloads\utorrent.exe
2014-01-06 18:54 - 2014-01-06 22:21 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\.Torrent Swapper
2014-01-06 18:54 - 2014-01-06 18:54 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Swapper
2014-01-06 18:54 - 2014-01-06 18:54 - 00000000 ____D C:\Program Files\Swapper
2014-01-06 18:53 - 2014-01-06 18:54 - 05042129 _____ C:\Users\vasudeva\Downloads\Swapper_1.0.exe
2014-01-06 18:42 - 2014-01-06 18:42 - 00000000 ____D C:\Users\vasudeva\Downloads\BitTorrent-Jet-Life-Free
2014-01-06 18:35 - 2014-01-08 00:30 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\uTorrent
2014-01-06 18:34 - 2014-01-06 18:35 - 09654339 _____ C:\Users\vasudeva\Downloads\uTorrent-setup.exe
2014-01-06 17:22 - 2014-01-06 17:22 - 00000117 _____ C:\Windows\system32\netcfg-14499918.txt
2014-01-06 17:22 - 2014-01-06 17:22 - 00000117 _____ C:\Windows\system32\netcfg-14499840.txt
2014-01-06 16:25 - 2014-01-06 16:25 - 00000117 _____ C:\Windows\system32\netcfg-11091031.txt
2014-01-06 16:25 - 2014-01-06 16:25 - 00000117 _____ C:\Windows\system32\netcfg-11083309.txt
2014-01-06 16:07 - 2014-01-06 16:07 - 00000117 _____ C:\Windows\system32\netcfg-10042642.txt
2014-01-06 16:07 - 2014-01-06 16:07 - 00000117 _____ C:\Windows\system32\netcfg-10037353.txt
2014-01-06 15:36 - 2014-01-06 15:36 - 00000117 _____ C:\Windows\system32\netcfg-8150272.txt
2014-01-06 15:35 - 2014-01-06 15:35 - 00000117 _____ C:\Windows\system32\netcfg-8084127.txt
2014-01-06 13:46 - 2014-01-06 18:41 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\StartMenu
2014-01-06 13:43 - 2014-01-06 13:43 - 08473000 _____ (PS Media s.r.o. ) C:\Users\vasudeva\Downloads\setup.exe
2014-01-06 13:41 - 2014-01-06 13:41 - 00000117 _____ C:\Windows\system32\netcfg-1283077.txt
2014-01-06 13:41 - 2014-01-06 13:41 - 00000117 _____ C:\Windows\system32\netcfg-1259146.txt
2014-01-06 13:36 - 2014-01-06 13:36 - 00000117 _____ C:\Windows\system32\netcfg-956239.txt
2014-01-06 13:36 - 2014-01-06 13:36 - 00000117 _____ C:\Windows\system32\netcfg-950576.txt
2014-01-06 13:22 - 2014-01-06 13:22 - 00000117 _____ C:\Windows\system32\netcfg-126438.txt
2014-01-06 13:21 - 2014-01-06 13:21 - 00000117 _____ C:\Windows\system32\netcfg-42089.txt
2014-01-06 10:26 - 2014-01-06 10:26 - 00000117 _____ C:\Windows\system32\netcfg-51177407.txt
2014-01-06 10:26 - 2014-01-06 10:26 - 00000117 _____ C:\Windows\system32\netcfg-51174318.txt
2014-01-06 10:26 - 2014-01-06 10:26 - 00000117 _____ C:\Windows\system32\netcfg-51160590.txt
2014-01-05 21:29 - 2014-01-05 21:29 - 00000117 _____ C:\Windows\system32\netcfg-4549098.txt
2014-01-05 20:42 - 2014-01-05 20:42 - 00000117 _____ C:\Windows\system32\netcfg-1738943.txt
2014-01-05 20:42 - 2014-01-05 20:42 - 00000117 _____ C:\Windows\system32\netcfg-1732749.txt
2014-01-05 20:42 - 2014-01-05 20:42 - 00000117 _____ C:\Windows\system32\netcfg-1694904.txt
2014-01-05 20:41 - 2014-01-05 20:41 - 00000117 _____ C:\Windows\system32\netcfg-1687182.txt
2014-01-05 14:05 - 2014-01-05 14:05 - 00000000 ____D C:\Users\vasudeva\AppData\Local\Macromedia
2014-01-05 13:38 - 2014-01-05 13:38 - 00000117 _____ C:\Windows\system32\netcfg-188856978.txt
2014-01-04 21:38 - 2014-01-04 21:38 - 00000117 _____ C:\Windows\system32\netcfg-131263000.txt
2014-01-04 21:12 - 2014-01-04 21:13 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Mozilla
2014-01-04 21:12 - 2014-01-04 21:13 - 00000000 ____D C:\Users\vasudeva\AppData\Local\Mozilla
2014-01-04 21:12 - 2014-01-04 21:12 - 00001105 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-04 21:12 - 2014-01-04 21:12 - 00000000 ____D C:\ProgramData\Mozilla
2014-01-04 21:12 - 2014-01-04 21:12 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2014-01-04 21:12 - 2014-01-04 21:12 - 00000000 ____D C:\Program Files\Mozilla Firefox
2014-01-04 21:09 - 2014-01-04 21:11 - 23882680 _____ (Mozilla) C:\Users\vasudeva\Downloads\FirefoxSetup26.0cz.exe
2014-01-04 20:28 - 2014-01-04 20:28 - 00000117 _____ C:\Windows\system32\netcfg-127016232.txt
2014-01-04 20:26 - 2014-01-04 20:26 - 00000117 _____ C:\Windows\system32\netcfg-126941819.txt
2014-01-03 20:49 - 2014-01-03 20:49 - 00000117 _____ C:\Windows\system32\netcfg-41924582.txt
2014-01-03 20:49 - 2014-01-03 20:49 - 00000117 _____ C:\Windows\system32\netcfg-41924457.txt
2014-01-03 11:04 - 2014-01-08 00:28 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\vlc
2014-01-03 11:02 - 2014-01-03 11:02 - 00001024 _____ C:\Users\Public\Desktop\VLC media player.lnk
2014-01-03 11:02 - 2014-01-03 11:02 - 00000000 ____D C:\Program Files\VideoLAN
2014-01-03 11:00 - 2014-01-03 11:00 - 24097311 _____ C:\Users\vasudeva\Downloads\vlc-2.1.2-win32.exe
2014-01-03 10:59 - 2014-01-03 10:59 - 00000117 _____ C:\Windows\system32\netcfg-6512136.txt
2014-01-03 10:59 - 2014-01-03 10:59 - 00000117 _____ C:\Windows\system32\netcfg-6509360.txt
2014-01-03 09:11 - 2014-01-03 09:11 - 00000117 _____ C:\Windows\system32\netcfg-44943.txt
2014-01-03 09:10 - 2014-01-03 09:10 - 00000117 _____ C:\Windows\system32\netcfg-3708845.txt
2014-01-03 08:52 - 2014-01-04 21:38 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Skype
2014-01-03 08:52 - 2014-01-03 08:52 - 00002719 _____ C:\Users\Public\Desktop\Skype.lnk
2014-01-03 08:52 - 2014-01-03 08:52 - 00000000 ___RD C:\Program Files\Skype
2014-01-03 08:52 - 2014-01-03 08:52 - 00000000 ____D C:\ProgramData\Skype
2014-01-03 08:52 - 2014-01-03 08:52 - 00000000 ____D C:\Program Files\Common Files\Skype
2014-01-03 08:51 - 2014-01-03 08:51 - 01551008 _____ (Skype Technologies S.A.) C:\Users\vasudeva\Downloads\SkypeSetup.exe
2014-01-03 08:45 - 2014-01-03 08:45 - 00516096 _____ () C:\Windows\UN32.EXE
2014-01-03 08:45 - 2014-01-03 08:45 - 00003839 _____ C:\Windows\UN32P.INI
2014-01-03 08:42 - 2014-01-03 08:42 - 00001989 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-01-03 08:42 - 2014-01-03 08:42 - 00000000 ____D C:\ProgramData\Adobe
2014-01-03 08:42 - 2014-01-03 08:42 - 00000000 ____D C:\Program Files\Common Files\Adobe
2014-01-03 08:42 - 2014-01-03 08:42 - 00000000 ____D C:\Program Files\Adobe
2014-01-03 08:41 - 2014-01-05 14:04 - 00000000 ____D C:\Users\vasudeva\AppData\Local\Adobe
2014-01-03 08:32 - 2014-01-03 08:32 - 00000384 _____ C:\Windows\ODBC.INI
2014-01-03 08:32 - 2014-01-03 08:32 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2014-01-03 08:32 - 2003-06-19 01:31 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\mdimon.dll
2014-01-03 08:31 - 2014-01-03 08:31 - 00000000 ____D C:\Windows\PCHEALTH
2014-01-03 08:31 - 2014-01-03 08:31 - 00000000 ____D C:\Program Files\Microsoft Office
2014-01-03 08:29 - 2014-01-03 08:29 - 00000000 __RHD C:\MSOCache
2014-01-03 08:23 - 2014-01-03 08:29 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\DAEMON Tools Lite
2014-01-03 08:22 - 2014-01-03 08:29 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2014-01-03 08:09 - 2014-01-03 08:09 - 00000117 _____ C:\Windows\system32\netcfg-32869.txt
2014-01-02 20:45 - 2014-01-02 20:45 - 00000117 _____ C:\Windows\system32\netcfg-193332.txt
2014-01-02 20:42 - 2014-01-02 20:42 - 00000117 _____ C:\Windows\system32\netcfg-34289.txt
2014-01-02 20:41 - 2014-01-02 20:41 - 00000117 _____ C:\Windows\system32\netcfg-593349.txt
2014-01-02 20:38 - 2014-01-02 20:38 - 00000000 _RSHD C:\Windows Activation Technologies
2014-01-02 20:38 - 2012-10-21 15:48 - 00092160 _____ (KJ inside) C:\Windows\system32\SLCHook.dll
2014-01-02 20:32 - 2014-01-02 20:32 - 00000117 _____ C:\Windows\system32\netcfg-37377.txt
2014-01-02 20:27 - 2014-01-02 20:27 - 00000117 _____ C:\Windows\system32\netcfg-1439951.txt
2014-01-02 20:26 - 2013-11-19 02:21 - 00230048 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-02 20:20 - 2014-01-02 20:20 - 00000000 ____D C:\Windows\system32\cs
2014-01-02 20:15 - 2014-01-04 21:14 - 00000000 ____D C:\Program Files\Google
2014-01-02 20:15 - 2014-01-02 20:17 - 00000000 ____D C:\Users\vasudeva\AppData\Local\Google
2014-01-02 20:15 - 2014-01-02 20:15 - 00819184 _____ (Google Inc.) C:\Users\vasudeva\Downloads\ChromeSetup.exe
2014-01-02 20:14 - 2014-01-02 20:14 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Macromedia
2014-01-02 20:11 - 2014-01-02 20:11 - 00001165 _____ C:\Windows\system32\netcfg-453557.txt
2014-01-02 20:05 - 2014-01-07 23:31 - 00542111 _____ C:\Windows\WindowsUpdate.log
2014-01-02 20:05 - 2014-01-02 20:05 - 00000117 _____ C:\Windows\system32\netcfg-95753.txt
2014-01-02 20:05 - 2014-01-02 20:05 - 00000117 _____ C:\Windows\system32\netcfg-92539.txt
2014-01-02 20:02 - 2014-01-02 20:02 - 00000000 ____D C:\Windows\system32\tokens
2014-01-02 20:02 - 2012-08-25 00:19 - 00010240 _____ (Microsoft Corporation) C:\Windows\slsvc.exe
2014-01-02 20:02 - 2012-08-25 00:12 - 00010240 _____ (Microsoft Corporation) C:\Windows\sppsvc.exe
2014-01-02 19:57 - 2014-01-02 19:57 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-01-02 19:52 - 2014-01-08 00:23 - 01626896 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-02 19:51 - 2014-01-02 19:51 - 00001430 _____ C:\Users\vasudeva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-02 19:51 - 2014-01-02 19:51 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Adobe
2014-01-02 19:50 - 2014-01-05 22:00 - 00000000 ____D C:\Users\vasudeva\AppData\Local\VirtualStore
2014-01-02 19:50 - 2014-01-02 19:51 - 00000000 ____D C:\Users\vasudeva
2014-01-02 19:50 - 2014-01-02 19:51 - 00000000 ____D C:\ProgramData\PRICache
2014-01-02 19:50 - 2014-01-02 19:50 - 00000020 ___SH C:\Users\vasudeva\ntuser.ini
2014-01-02 19:50 - 2014-01-02 19:50 - 00000000 ____D C:\Windows\CSC
2014-01-02 19:50 - 2012-07-25 22:53 - 00000000 ___RD C:\Users\vasudeva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-02 19:50 - 2012-07-25 22:53 - 00000000 ___RD C:\Users\vasudeva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-02 19:50 - 2012-07-25 22:53 - 00000000 ___RD C:\Users\vasudeva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-02 19:50 - 2012-07-25 22:53 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-02 19:43 - 2014-01-02 19:43 - 00001128 _____ C:\Windows\system32\netcfg-134972.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00001128 _____ C:\Windows\system32\netcfg-126844.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000177 _____ C:\Windows\system32\netcfg-126080.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000156 _____ C:\Windows\system32\netcfg-119418.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000153 _____ C:\Windows\system32\netcfg-124254.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000152 _____ C:\Windows\system32\netcfg-123693.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000152 _____ C:\Windows\system32\netcfg-122647.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000152 _____ C:\Windows\system32\netcfg-119013.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000151 _____ C:\Windows\system32\netcfg-121867.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000149 _____ C:\Windows\system32\netcfg-123365.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000149 _____ C:\Windows\system32\netcfg-119980.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000142 _____ C:\Windows\system32\netcfg-122148.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000000 _____ C:\Windows\system32\atiicdxx.dat
2014-01-02 19:43 - 2014-01-02 19:43 - 00000000 _____ C:\Windows\ativpsrm.bin
2014-01-02 19:41 - 2014-01-08 00:17 - 00009218 _____ C:\Windows\PFRO.log
2014-01-02 19:40 - 2014-01-02 19:44 - 00000000 ____D C:\Windows\Panther

==================== One Month Modified Files and Folders =======

2014-01-08 00:33 - 2014-01-08 00:33 - 00005034 _____ C:\Users\vasudeva\Desktop\FRST.txt
2014-01-08 00:30 - 2014-01-06 18:35 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\uTorrent
2014-01-08 00:28 - 2014-01-03 11:04 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\vlc
2014-01-08 00:23 - 2014-01-02 19:52 - 01626896 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-08 00:17 - 2014-01-08 00:17 - 00000117 _____ C:\Windows\system32\netcfg-33150.txt
2014-01-08 00:17 - 2014-01-02 19:41 - 00009218 _____ C:\Windows\PFRO.log
2014-01-08 00:17 - 2012-07-25 22:47 - 00000000 ____D C:\Windows\DigitalLocker
2014-01-08 00:17 - 2012-07-25 22:04 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-08 00:16 - 2014-01-08 00:16 - 00000117 _____ C:\Windows\system32\netcfg-26277011.txt
2014-01-08 00:05 - 2014-01-08 00:05 - 00000000 ____D C:\FRST
2014-01-08 00:00 - 2014-01-08 00:00 - 00112640 _____ (forum.viry.cz) C:\Users\vasudeva\Desktop\FRSTLauncher.exe
2014-01-08 00:00 - 2012-07-25 22:53 - 00000000 ____D C:\Windows\system32\sru
2014-01-07 23:57 - 2014-01-07 23:57 - 01064805 _____ (Farbar) C:\Users\vasudeva\Desktop\FRST.exe
2014-01-07 23:56 - 2014-01-07 23:56 - 00112107 _____ (forum.viry.cz) C:\Users\vasudeva\Downloads\VerzeOS.exe
2014-01-07 23:40 - 2014-01-07 23:40 - 00001067 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-07 23:40 - 2014-01-07 23:40 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Malwarebytes
2014-01-07 23:40 - 2014-01-07 23:39 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2014-01-07 23:39 - 2014-01-07 23:39 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-07 23:38 - 2014-01-07 23:38 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\vasudeva\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-07 23:31 - 2014-01-02 20:05 - 00542111 _____ C:\Windows\WindowsUpdate.log
2014-01-07 23:16 - 2012-07-25 22:53 - 00000000 ____D C:\Windows\AUInstallAgent
2014-01-07 23:14 - 2014-01-07 22:52 - 802157865 _____ C:\Users\vasudeva\Downloads\Nymfomanka - Část 1 (Nymphomaniac Volume 1) SUPER KVALITA 2013 CZ TITULKY.mp4
2014-01-07 20:11 - 2014-01-07 19:15 - 1468483584 _____ C:\Users\vasudeva\Downloads\Jeníček a Mařenka Lovci čarodějnic (2013) 5.1 CZ dabing.avi
2014-01-07 15:55 - 2014-01-07 15:55 - 00000117 _____ C:\Windows\system32\netcfg-33805307.txt
2014-01-07 15:55 - 2014-01-07 15:55 - 00000117 _____ C:\Windows\system32\netcfg-33770581.txt
2014-01-07 15:54 - 2014-01-07 15:54 - 00000117 _____ C:\Windows\system32\netcfg-33718726.txt
2014-01-07 15:54 - 2014-01-07 15:54 - 00000117 _____ C:\Windows\system32\netcfg-33713188.txt
2014-01-07 14:46 - 2014-01-07 14:46 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\WinRAR
2014-01-07 14:45 - 2014-01-07 14:45 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-07 14:45 - 2014-01-07 14:44 - 00000000 ____D C:\Program Files\WinRAR
2014-01-07 14:44 - 2014-01-07 14:44 - 08147729 _____ C:\Users\vasudeva\Downloads\wrarcz-setup.exe
2014-01-07 06:59 - 2012-07-25 22:53 - 00000000 ____D C:\Windows\Microsoft.NET
2014-01-07 06:34 - 2014-01-07 06:34 - 00000117 _____ C:\Windows\system32\netcfg-128607.txt
2014-01-06 23:39 - 2014-01-06 23:39 - 00000117 _____ C:\Windows\system32\netcfg-37158658.txt
2014-01-06 22:28 - 2014-01-06 22:27 - 00000009 _____ C:\END
2014-01-06 22:26 - 2014-01-06 22:26 - 00000816 _____ C:\Users\vasudeva\Desktop\µTorrent.lnk
2014-01-06 22:26 - 2014-01-06 22:26 - 00000796 _____ C:\Users\vasudeva\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-01-06 22:25 - 2014-01-06 22:24 - 01142864 _____ (BitTorrent Inc.) C:\Users\vasudeva\Downloads\utorrent.exe
2014-01-06 22:21 - 2014-01-06 18:54 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\.Torrent Swapper
2014-01-06 18:54 - 2014-01-06 18:54 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Swapper
2014-01-06 18:54 - 2014-01-06 18:54 - 00000000 ____D C:\Program Files\Swapper
2014-01-06 18:54 - 2014-01-06 18:53 - 05042129 _____ C:\Users\vasudeva\Downloads\Swapper_1.0.exe
2014-01-06 18:42 - 2014-01-06 18:42 - 00000000 ____D C:\Users\vasudeva\Downloads\BitTorrent-Jet-Life-Free
2014-01-06 18:41 - 2014-01-06 13:46 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\StartMenu
2014-01-06 18:35 - 2014-01-06 18:34 - 09654339 _____ C:\Users\vasudeva\Downloads\uTorrent-setup.exe
2014-01-06 17:22 - 2014-01-06 17:22 - 00000117 _____ C:\Windows\system32\netcfg-14499918.txt
2014-01-06 17:22 - 2014-01-06 17:22 - 00000117 _____ C:\Windows\system32\netcfg-14499840.txt
2014-01-06 16:25 - 2014-01-06 16:25 - 00000117 _____ C:\Windows\system32\netcfg-11091031.txt
2014-01-06 16:25 - 2014-01-06 16:25 - 00000117 _____ C:\Windows\system32\netcfg-11083309.txt
2014-01-06 16:07 - 2014-01-06 16:07 - 00000117 _____ C:\Windows\system32\netcfg-10042642.txt
2014-01-06 16:07 - 2014-01-06 16:07 - 00000117 _____ C:\Windows\system32\netcfg-10037353.txt
2014-01-06 15:36 - 2014-01-06 15:36 - 00000117 _____ C:\Windows\system32\netcfg-8150272.txt
2014-01-06 15:35 - 2014-01-06 15:35 - 00000117 _____ C:\Windows\system32\netcfg-8084127.txt
2014-01-06 15:34 - 2012-07-25 22:53 - 00000000 ____D C:\Windows\system32\NDF
2014-01-06 13:43 - 2014-01-06 13:43 - 08473000 _____ (PS Media s.r.o. ) C:\Users\vasudeva\Downloads\setup.exe
2014-01-06 13:41 - 2014-01-06 13:41 - 00000117 _____ C:\Windows\system32\netcfg-1283077.txt
2014-01-06 13:41 - 2014-01-06 13:41 - 00000117 _____ C:\Windows\system32\netcfg-1259146.txt
2014-01-06 13:36 - 2014-01-06 13:36 - 00000117 _____ C:\Windows\system32\netcfg-956239.txt
2014-01-06 13:36 - 2014-01-06 13:36 - 00000117 _____ C:\Windows\system32\netcfg-950576.txt
2014-01-06 13:22 - 2014-01-06 13:22 - 00000117 _____ C:\Windows\system32\netcfg-126438.txt
2014-01-06 13:21 - 2014-01-06 13:21 - 00000117 _____ C:\Windows\system32\netcfg-42089.txt
2014-01-06 10:26 - 2014-01-06 10:26 - 00000117 _____ C:\Windows\system32\netcfg-51177407.txt
2014-01-06 10:26 - 2014-01-06 10:26 - 00000117 _____ C:\Windows\system32\netcfg-51174318.txt
2014-01-06 10:26 - 2014-01-06 10:26 - 00000117 _____ C:\Windows\system32\netcfg-51160590.txt
2014-01-05 22:00 - 2014-01-02 19:50 - 00000000 ____D C:\Users\vasudeva\AppData\Local\VirtualStore
2014-01-05 21:29 - 2014-01-05 21:29 - 00000117 _____ C:\Windows\system32\netcfg-4549098.txt
2014-01-05 20:42 - 2014-01-05 20:42 - 00000117 _____ C:\Windows\system32\netcfg-1738943.txt
2014-01-05 20:42 - 2014-01-05 20:42 - 00000117 _____ C:\Windows\system32\netcfg-1732749.txt
2014-01-05 20:42 - 2014-01-05 20:42 - 00000117 _____ C:\Windows\system32\netcfg-1694904.txt
2014-01-05 20:41 - 2014-01-05 20:41 - 00000117 _____ C:\Windows\system32\netcfg-1687182.txt
2014-01-05 14:05 - 2014-01-05 14:05 - 00000000 ____D C:\Users\vasudeva\AppData\Local\Macromedia
2014-01-05 14:04 - 2014-01-03 08:41 - 00000000 ____D C:\Users\vasudeva\AppData\Local\Adobe
2014-01-05 13:38 - 2014-01-05 13:38 - 00000117 _____ C:\Windows\system32\netcfg-188856978.txt
2014-01-04 21:38 - 2014-01-04 21:38 - 00000117 _____ C:\Windows\system32\netcfg-131263000.txt
2014-01-04 21:38 - 2014-01-03 08:52 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Skype
2014-01-04 21:14 - 2014-01-02 20:15 - 00000000 ____D C:\Program Files\Google
2014-01-04 21:13 - 2014-01-04 21:12 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Mozilla
2014-01-04 21:13 - 2014-01-04 21:12 - 00000000 ____D C:\Users\vasudeva\AppData\Local\Mozilla
2014-01-04 21:12 - 2014-01-04 21:12 - 00001105 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-04 21:12 - 2014-01-04 21:12 - 00000000 ____D C:\ProgramData\Mozilla
2014-01-04 21:12 - 2014-01-04 21:12 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2014-01-04 21:12 - 2014-01-04 21:12 - 00000000 ____D C:\Program Files\Mozilla Firefox
2014-01-04 21:11 - 2014-01-04 21:09 - 23882680 _____ (Mozilla) C:\Users\vasudeva\Downloads\FirefoxSetup26.0cz.exe
2014-01-04 20:28 - 2014-01-04 20:28 - 00000117 _____ C:\Windows\system32\netcfg-127016232.txt
2014-01-04 20:26 - 2014-01-04 20:26 - 00000117 _____ C:\Windows\system32\netcfg-126941819.txt
2014-01-03 20:49 - 2014-01-03 20:49 - 00000117 _____ C:\Windows\system32\netcfg-41924582.txt
2014-01-03 20:49 - 2014-01-03 20:49 - 00000117 _____ C:\Windows\system32\netcfg-41924457.txt
2014-01-03 11:02 - 2014-01-03 11:02 - 00001024 _____ C:\Users\Public\Desktop\VLC media player.lnk
2014-01-03 11:02 - 2014-01-03 11:02 - 00000000 ____D C:\Program Files\VideoLAN
2014-01-03 11:00 - 2014-01-03 11:00 - 24097311 _____ C:\Users\vasudeva\Downloads\vlc-2.1.2-win32.exe
2014-01-03 10:59 - 2014-01-03 10:59 - 00000117 _____ C:\Windows\system32\netcfg-6512136.txt
2014-01-03 10:59 - 2014-01-03 10:59 - 00000117 _____ C:\Windows\system32\netcfg-6509360.txt
2014-01-03 09:11 - 2014-01-03 09:11 - 00000117 _____ C:\Windows\system32\netcfg-44943.txt
2014-01-03 09:11 - 2012-07-25 22:00 - 00301536 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-03 09:10 - 2014-01-03 09:10 - 00000117 _____ C:\Windows\system32\netcfg-3708845.txt
2014-01-03 09:07 - 2012-07-25 22:53 - 00000000 ____D C:\Windows\rescache
2014-01-03 08:52 - 2014-01-03 08:52 - 00002719 _____ C:\Users\Public\Desktop\Skype.lnk
2014-01-03 08:52 - 2014-01-03 08:52 - 00000000 ___RD C:\Program Files\Skype
2014-01-03 08:52 - 2014-01-03 08:52 - 00000000 ____D C:\ProgramData\Skype
2014-01-03 08:52 - 2014-01-03 08:52 - 00000000 ____D C:\Program Files\Common Files\Skype
2014-01-03 08:51 - 2014-01-03 08:51 - 01551008 _____ (Skype Technologies S.A.) C:\Users\vasudeva\Downloads\SkypeSetup.exe
2014-01-03 08:45 - 2014-01-03 08:45 - 00516096 _____ () C:\Windows\UN32.EXE
2014-01-03 08:45 - 2014-01-03 08:45 - 00003839 _____ C:\Windows\UN32P.INI
2014-01-03 08:42 - 2014-01-03 08:42 - 00001989 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-01-03 08:42 - 2014-01-03 08:42 - 00000000 ____D C:\ProgramData\Adobe
2014-01-03 08:42 - 2014-01-03 08:42 - 00000000 ____D C:\Program Files\Common Files\Adobe
2014-01-03 08:42 - 2014-01-03 08:42 - 00000000 ____D C:\Program Files\Adobe
2014-01-03 08:32 - 2014-01-03 08:32 - 00000384 _____ C:\Windows\ODBC.INI
2014-01-03 08:32 - 2014-01-03 08:32 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2014-01-03 08:32 - 2012-07-25 22:53 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2014-01-03 08:32 - 2012-07-25 22:50 - 00000000 ____D C:\Windows\ShellNew
2014-01-03 08:31 - 2014-01-03 08:31 - 00000000 ____D C:\Windows\PCHEALTH
2014-01-03 08:31 - 2014-01-03 08:31 - 00000000 ____D C:\Program Files\Microsoft Office
2014-01-03 08:31 - 2012-07-25 22:53 - 00000000 ____D C:\Program Files\Microsoft.NET
2014-01-03 08:30 - 2012-07-25 22:53 - 00000000 ____D C:\Windows\System
2014-01-03 08:29 - 2014-01-03 08:29 - 00000000 __RHD C:\MSOCache
2014-01-03 08:29 - 2014-01-03 08:23 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\DAEMON Tools Lite
2014-01-03 08:29 - 2014-01-03 08:22 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2014-01-03 08:20 - 2012-07-25 22:03 - 00014141 _____ C:\Windows\setupact.log
2014-01-03 08:09 - 2014-01-03 08:09 - 00000117 _____ C:\Windows\system32\netcfg-32869.txt
2014-01-02 20:45 - 2014-01-02 20:45 - 00000117 _____ C:\Windows\system32\netcfg-193332.txt
2014-01-02 20:42 - 2014-01-02 20:42 - 00000117 _____ C:\Windows\system32\netcfg-34289.txt
2014-01-02 20:41 - 2014-01-02 20:41 - 00000117 _____ C:\Windows\system32\netcfg-593349.txt
2014-01-02 20:38 - 2014-01-02 20:38 - 00000000 _RSHD C:\Windows Activation Technologies
2014-01-02 20:32 - 2014-01-02 20:32 - 00000117 _____ C:\Windows\system32\netcfg-37377.txt
2014-01-02 20:27 - 2014-01-02 20:27 - 00000117 _____ C:\Windows\system32\netcfg-1439951.txt
2014-01-02 20:27 - 2012-07-25 20:17 - 00262144 ___SH C:\Windows\system32\config\BBI
2014-01-02 20:20 - 2014-01-02 20:20 - 00000000 ____D C:\Windows\system32\cs
2014-01-02 20:20 - 2012-07-25 22:53 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2014-01-02 20:20 - 2012-07-25 22:53 - 00000000 ____D C:\Windows\WinStore
2014-01-02 20:20 - 2012-07-25 22:53 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2014-01-02 20:20 - 2012-07-25 22:53 - 00000000 ____D C:\Program Files\Windows Defender
2014-01-02 20:20 - 2012-07-25 22:53 - 00000000 ____D C:\Program Files\Common Files\System
2014-01-02 20:20 - 2012-07-25 22:50 - 00000000 ____D C:\Program Files\Windows Journal
2014-01-02 20:20 - 2012-07-25 22:47 - 00000000 ____D C:\Windows\system32\winrm
2014-01-02 20:20 - 2012-07-25 22:47 - 00000000 ____D C:\Windows\system32\slmgr
2014-01-02 20:19 - 2012-07-25 22:53 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2014-01-02 20:19 - 2012-07-25 22:53 - 00000000 ____D C:\Windows\system32\Com
2014-01-02 20:19 - 2012-07-25 22:47 - 00000000 ____D C:\Windows\system32\WCN
2014-01-02 20:19 - 2012-07-25 22:47 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2014-01-02 20:17 - 2014-01-02 20:15 - 00000000 ____D C:\Users\vasudeva\AppData\Local\Google
2014-01-02 20:15 - 2014-01-02 20:15 - 00819184 _____ (Google Inc.) C:\Users\vasudeva\Downloads\ChromeSetup.exe
2014-01-02 20:14 - 2014-01-02 20:14 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Macromedia
2014-01-02 20:12 - 2012-07-25 22:53 - 00000000 ____D C:\Windows\system32\restore
2014-01-02 20:11 - 2014-01-02 20:11 - 00001165 _____ C:\Windows\system32\netcfg-453557.txt
2014-01-02 20:05 - 2014-01-02 20:05 - 00000117 _____ C:\Windows\system32\netcfg-95753.txt
2014-01-02 20:05 - 2014-01-02 20:05 - 00000117 _____ C:\Windows\system32\netcfg-92539.txt
2014-01-02 20:02 - 2014-01-02 20:02 - 00000000 ____D C:\Windows\system32\tokens
2014-01-02 19:57 - 2014-01-02 19:57 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-01-02 19:51 - 2014-01-02 19:51 - 00001430 _____ C:\Users\vasudeva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-02 19:51 - 2014-01-02 19:51 - 00000000 ____D C:\Users\vasudeva\AppData\Roaming\Adobe
2014-01-02 19:51 - 2014-01-02 19:50 - 00000000 ____D C:\Users\vasudeva
2014-01-02 19:51 - 2014-01-02 19:50 - 00000000 ____D C:\ProgramData\PRICache
2014-01-02 19:50 - 2014-01-02 19:50 - 00000020 ___SH C:\Users\vasudeva\ntuser.ini
2014-01-02 19:50 - 2014-01-02 19:50 - 00000000 ____D C:\Windows\CSC
2014-01-02 19:48 - 2012-07-25 22:53 - 00000000 ____D C:\Windows\system32\Recovery
2014-01-02 19:44 - 2014-01-02 19:40 - 00000000 ____D C:\Windows\Panther
2014-01-02 19:43 - 2014-01-02 19:43 - 00001128 _____ C:\Windows\system32\netcfg-134972.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00001128 _____ C:\Windows\system32\netcfg-126844.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000177 _____ C:\Windows\system32\netcfg-126080.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000156 _____ C:\Windows\system32\netcfg-119418.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000153 _____ C:\Windows\system32\netcfg-124254.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000152 _____ C:\Windows\system32\netcfg-123693.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000152 _____ C:\Windows\system32\netcfg-122647.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000152 _____ C:\Windows\system32\netcfg-119013.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000151 _____ C:\Windows\system32\netcfg-121867.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000149 _____ C:\Windows\system32\netcfg-123365.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000149 _____ C:\Windows\system32\netcfg-119980.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000142 _____ C:\Windows\system32\netcfg-122148.txt
2014-01-02 19:43 - 2014-01-02 19:43 - 00000000 _____ C:\Windows\system32\atiicdxx.dat
2014-01-02 19:43 - 2014-01-02 19:43 - 00000000 _____ C:\Windows\ativpsrm.bin
2014-01-02 19:42 - 2012-07-25 22:54 - 00001720 _____ C:\Windows\DtcInstall.log
2014-01-02 19:40 - 2012-07-25 22:53 - 00262144 _____ C:\Windows\system32\config\BCD-Template

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2012-07-25 15:11] - [2012-07-25 19:50] - 2114936 ____A (Microsoft Corporation) 5B6ED1B57DBFF18D405A0260559B571E

C:\Windows\System32\winlogon.exe
[2012-07-25 15:55] - [2012-07-25 19:21] - 0411648 ____A (Microsoft Corporation) C06BA1F360CEF6AB51F41B3D0D5FE92D

C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe
[2012-07-25 16:01] - [2012-07-25 19:20] - 0023040 ____A (Microsoft Corporation) 0A175AF8B65797BD22C11903A8BFEB2D

C:\Windows\System32\services.exe
[2012-07-25 20:17] - [2012-07-25 20:17] - 0333312 ____A (Microsoft Corporation) 575FB4211BB07DB7D2179B1B05FE7EFD

C:\Windows\System32\User32.dll
[2012-07-25 16:03] - [2012-07-25 19:20] - 1171968 ____A (Microsoft Corporation) 4A18E559ECE09C7A1021CEFEC22F0BE6

C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-02 19:41




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:148.7 GB) (Free:133.42 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:149.04 GB) (Free:14.39 GB) NTFS

Available physical RAM: 1505.71 MB
Total physical RAM: 2046.43 MB
Percentage of memory in use: 26%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 0F550F54)
Partition 1: (Not Active) - (Size=149 GB) - (Type=OF Extended)
Partition 2: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================


==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\vasudeva\Desktop" je 1 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[vyosek]

Zdravim

Udelejte ten MBAM a uvidime

[pavani]

tak tady je
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.01.08.03

Windows 8 x86 NTFS
Internet Explorer 10.0.9200.16384
vasudeva :: VND [administrátor]

Ochrana: Povolena

8. 1. 2014 16:34:00
mbam-log-2014-01-08 (16-34-00).txt

Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 281528
Uplynulý čas: 37 minut, 46 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

prosím a rsit nic nevidel?

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
  HKCU\...\Run: [OEXPRESS] - [x]
  HKCU\...\Run: [uTorrent] - C:\Users\vasudeva\AppData\Roaming\uTorrent\uTorrent.exe [1142864 2014-01-06] (BitTorrent Inc.)
  MountPoints2: {59cb1ce9-7491-11e3-afa0-001d72cd4584} - "G:\SETUP.EXE"
  
  HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.msn.com/
  HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xCFB01A443A08CF01
  HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US,en;q=0.7,cs;q=0.3
  
  FF Extension: uTorrentControl_v6 - C:\Users\vasudeva\AppData\Roaming\Mozilla\Firefox\Profiles\5c9pjj07.default\Extensions\{96f454ea-9d38-474f-b504-56193e00c1a5}
  
  2014-01-08 00:00 - 2014-01-08 00:00 - 00112640 _____ (forum.viry.cz) C:\Users\vasudeva\Desktop\FRSTLauncher.exe
  2014-01-07 23:56 - 2014-01-07 23:56 - 00112107 _____ (forum.viry.cz) C:\Users\vasudeva\Downloads\VerzeOS.exe
  
  CMD: del "C:\Windows\system32\netcfg*.txt /a /f /q
  
  Hosts:
  CMD: shutdown /r /f /t 2
  
  End

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[pavani]

tady je fixlog

ix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 08-01-2014
Ran by vasudeva at 2014-01-08 18:54:14 Run:1
Running from C:\Users\vasudeva\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKCU\...\Run: [OEXPRESS] - [x]
HKCU\...\Run: [uTorrent] - C:\Users\vasudeva\AppData\Roaming\uTorrent\uTorrent.exe [1142864 2014-01-06] (BitTorrent Inc.)
MountPoints2: {59cb1ce9-7491-11e3-afa0-001d72cd4584} - "G:\SETUP.EXE"

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xCFB01A443A08CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US,en;q=0.7,cs;q=0.3

FF Extension: uTorrentControl_v6 - C:\Users\vasudeva\AppData\Roaming\Mozilla\Firefox\Profiles\5c9pjj07.default\Extensions\{96f454ea-9d38-474f-b504-56193e00c1a5}

2014-01-08 00:00 - 2014-01-08 00:00 - 00112640 _____ (forum.viry.cz) C:\Users\vasudeva\Desktop\FRSTLauncher.exe
2014-01-07 23:56 - 2014-01-07 23:56 - 00112107 _____ (forum.viry.cz) C:\Users\vasudeva\Downloads\VerzeOS.exe

CMD: del "C:\Windows\system32\netcfg*.txt /a /f /q

Hosts:
CMD: shutdown /r /f /t 2

End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\OEXPRESS => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent => Value not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{59cb1ce9-7491-11e3-afa0-001d72cd4584} => Key deleted successfully.
HKCR\CLSID\{59cb1ce9-7491-11e3-afa0-001d72cd4584} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache AcceptLangs => Value deleted successfully.
C:\Users\vasudeva\AppData\Roaming\Mozilla\Firefox\Profiles\5c9pjj07.default\Extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} => Moved successfully.
"C:\Users\vasudeva\Desktop\FRSTLauncher.exe" => File/Directory not found.
C:\Users\vasudeva\Downloads\VerzeOS.exe => Moved successfully.

========= del "C:\Windows\system32\netcfg*.txt /a /f /q =========


========= End of CMD: =========

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========

[vyosek]

Jak se chova PC???

[pavani]

ntb zdá být bez problémů, jen rychlost inet hrozně kolísá... často trvá dlouho než skočí stránka a jindy je normal rychlý.
mám 8-ky asi týden, tak nevím zatím co je normální.
..... nemůžu si zatím zvyknout bez START menu..... nemám dotyk monitor... jsou prosím lepší 7-ky?
Ještě jednu otázku mám.....jsem připojen na viry.cz přes manželky log... mám i svůj, ale zapoměl jsem heslo... a nejsem si jistý ani jménem...můžete mi pomoct vy, nebo mně odkážete?
Děkuji

[vyosek]

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Zkuste kontaktovat poskytovatele jestli je u nej vse OK

Poslete mi na mail uz.jmeno, ktere si myslite ze mate a pripadne i registracni mail a ja zusim pohledat v administraci

[pavani]

Díky moc
bohužel W8 říká, že T-Cleaner nejde spustit v tomto ntb
vše ostatní ok
myslím že uživatelské jméno bylo "vava" popřípadě s nějakým číslem a email: silhanekv(zavinac)gmail.com

díky

[vyosek]

Prihlasovaci udaje pro vava8 zaslany na registracni mail