Nemůže to nějak souviset s tím předchozím nálezem adwaru, že by ten soubor byl např. nějak poškozen a při skenu detekován?
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-12-2014
Ran by Admin (administrator) on ADMIN on 09-12-2014 20:02:31
Running from C:\Documents and Settings\Admin\Plocha
Loaded Profile: Admin (Available profiles: Admin)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avscan.exe
(Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(forum.viry.cz) C:\Documents and Settings\Admin\Plocha\FRSTLauncher.exe
(Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
() C:\DOCUME~1\Admin\LOCALS~1\DATAAP~1\MSGBOX.EXE
(Microsoft Corporation) C:\WINDOWS\system32\ping.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20065936 2012-06-06] (Realtek Semiconductor Corp.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2012-04-05] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [703736 2014-11-06] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-507921405-484061587-725345543-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-507921405-484061587-725345543-1004\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-507921405-484061587-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKU\S-1-5-21-507921405-484061587-725345543-1004 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL =
http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-507921405-484061587-725345543-1004 -> {012E1000-F331-11DB-8314-0800200C9A66} URL =
http://www.google.com/search?q={searchTerms}
Tcpip\..\Interfaces\{04FE91B6-1F6F-496E-A9C0-EBABAC64204D}: [NameServer] 192.168.1.254
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\f3tyufdp.default
FF Homepage: hxxp://
www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_239.dll ()
FF Plugin: @cuminas.jp/DjVuPlugin -> C:\Program Files\Cuminas\Document Express DjVu Plug-in\npdjvu.dll (Cuminas Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Extension: Avira Browser Safety - C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\f3tyufdp.default\Extensions\
abs@avira.com [2014-11-19]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-05-11]
Chrome:
=======
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [432888 2014-11-06] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [432888 2014-11-06] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [993584 2014-11-06] (Avira Operations GmbH & Co. KG)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [98160 2014-10-14] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [136216 2014-10-14] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2013-12-09] (Avira Operations GmbH & Co. KG)
R3 L1c; C:\WINDOWS\System32\DRIVERS\l1c51x86.sys [82032 2012-04-25] (Atheros Communications, Inc.)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R1 prodrv06; C:\WINDOWS\System32\drivers\prodrv06.sys [54368 2004-09-03] (Protection Technology) [File not signed]
R0 prohlp02; C:\WINDOWS\System32\drivers\prohlp02.sys [115680 2004-09-03] (Protection Technology) [File not signed]
R0 prosync1; C:\WINDOWS\System32\drivers\prosync1.sys [7040 2004-07-19] (Protection Technology) [File not signed]
R3 RTHDMIAzAudService; C:\WINDOWS\System32\drivers\RtKHDMI.sys [4125352 2011-12-02] (Realtek Semiconductor Corp.)
R0 sfdrv01; C:\WINDOWS\System32\drivers\sfdrv01.sys [51200 2006-03-26] (Protection Technology (StarForce)) [File not signed]
R0 sfhlp01; C:\WINDOWS\System32\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology) [File not signed]
R0 sfhlp02; C:\WINDOWS\System32\drivers\sfhlp02.sys [6656 2006-03-13] (Protection Technology (StarForce)) [File not signed]
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2013-12-09] (Avira GmbH)
R2 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [13120 2013-08-25] ()
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 TlntSvr; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-09 20:02 - 2014-12-09 20:02 - 00008016 _____ () C:\Documents and Settings\Admin\Plocha\FRST.txt
2014-12-09 20:02 - 2014-12-09 20:02 - 00000000 ____D () C:\FRST
2014-12-09 20:01 - 2014-12-09 20:01 - 00029696 _____ () C:\Documents and Settings\Admin\Local Settings\Data aplikací\MSGBOX.EXE
2014-12-09 20:01 - 2014-12-09 20:01 - 00015327 _____ () C:\Documents and Settings\Admin\Plocha\LM.bat
2014-12-09 19:59 - 2014-12-09 19:59 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Admin\Plocha\FRSTLauncher.exe
2014-12-09 19:58 - 2014-12-09 19:58 - 01111040 _____ (Farbar) C:\Documents and Settings\Admin\Plocha\FRST.exe
2014-12-09 18:05 - 2014-12-09 18:08 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-12-09 18:03 - 2014-12-09 18:03 - 00000403 _____ () C:\WINDOWS\wmsetup.log
2014-12-08 19:35 - 2014-12-08 21:01 - 00001436 _____ () C:\WINDOWS\setupapi.log
2014-12-07 21:01 - 2014-12-07 21:09 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Malwarebytes' Anti-Malware (portable)
2014-12-07 21:01 - 2014-12-07 21:01 - 00119000 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-12-07 21:00 - 2014-12-07 21:08 - 00000000 ____D () C:\Documents and Settings\Admin\Plocha\mbar
2014-12-07 21:00 - 2014-12-07 21:00 - 00055000 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-12-07 20:58 - 2014-12-07 21:00 - 16448208 _____ (Malwarebytes Corp.) C:\Documents and Settings\Admin\Plocha\mbar-1.08.2.1001.exe
2014-12-07 18:08 - 2014-12-07 18:08 - 00009138 _____ () C:\Documents and Settings\Admin\Plocha\cc_20141207_180840.reg
2014-12-07 17:39 - 2014-12-09 20:02 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\temp
2014-12-07 17:39 - 2014-12-09 18:02 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\temp
2014-12-07 17:39 - 2014-12-07 17:39 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\temp
2014-12-07 17:39 - 2014-12-07 17:39 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\temp
2014-12-07 09:52 - 2014-12-07 11:18 - 00000110 _____ () C:\AdwCleanerDebug.txt
2014-12-03 17:38 - 2014-12-03 17:38 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Data aplikací\Activision
2014-12-03 17:35 - 2014-12-03 17:35 - 00001675 _____ () C:\Documents and Settings\All Users\Plocha\Call of Duty(R) - World at War(TM) Multiplayer.lnk
2014-12-03 17:35 - 2014-12-03 17:35 - 00001665 _____ () C:\Documents and Settings\All Users\Plocha\Call of Duty(R) - World at War(TM) Solo - Co-op.lnk
2014-12-03 17:35 - 2014-12-03 17:35 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Activision
2014-12-03 17:20 - 2014-12-03 17:20 - 00000000 ____D () C:\Program Files\Activision
2014-11-29 17:47 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2014-11-29 17:47 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2014-11-29 17:47 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2014-11-29 17:47 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2014-11-29 17:47 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2014-11-29 17:47 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2014-11-29 17:47 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2014-11-29 17:47 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2014-11-29 17:47 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2014-11-29 17:47 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2014-11-29 17:47 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2014-11-29 17:47 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2014-11-29 17:47 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2014-11-29 17:47 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2014-11-29 17:47 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2014-11-29 17:47 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2014-11-29 17:47 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2014-11-29 17:47 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2014-11-29 17:47 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2014-11-29 17:47 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2014-11-29 17:47 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2014-11-29 17:47 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2014-11-29 17:47 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2014-11-29 17:47 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2014-11-29 17:47 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2014-11-29 17:47 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2014-11-29 17:47 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2014-11-29 17:47 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2014-11-29 17:47 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2014-11-29 17:47 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2014-11-29 17:47 - 2008-10-10 04:52 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2014-11-29 17:47 - 2008-10-10 04:52 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2014-11-29 17:47 - 2008-10-10 04:52 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2014-11-29 17:47 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2014-11-29 17:47 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2014-11-29 17:47 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2014-11-29 17:47 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2014-11-29 17:47 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2014-11-29 17:47 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2014-11-29 17:47 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2014-11-29 17:47 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2014-11-29 17:47 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2014-11-29 17:47 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2014-11-29 17:47 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2014-11-29 17:47 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2014-11-29 17:47 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2014-11-29 17:47 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2014-11-29 17:47 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2014-11-29 17:47 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2014-11-29 17:47 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2014-11-29 17:47 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2014-11-29 17:47 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2014-11-29 17:47 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2014-11-29 17:47 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2014-11-29 17:47 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2014-11-29 17:47 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-09 20:02 - 2013-05-11 22:36 - 00000000 ____D () C:\Documents and Settings\Admin\Plocha
2014-12-09 20:01 - 2013-05-11 22:36 - 00000000 ___HD () C:\Documents and Settings\Admin\Local Settings\Data aplikací
2014-12-09 19:59 - 2013-05-16 14:09 - 00000000 ____D () C:\Documents and Settings\Admin\Dokumenty\Stažené soubory
2014-12-09 19:58 - 2014-04-04 22:16 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-12-09 19:38 - 2013-05-11 22:31 - 00000000 ____D () C:\WINDOWS\Registration
2014-12-09 18:03 - 2013-05-11 22:32 - 01830285 _____ () C:\WINDOWS\WindowsUpdate.log
2014-12-09 17:40 - 2013-05-11 22:36 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-12-09 17:40 - 2013-05-11 17:18 - 00196608 _____ () C:\WINDOWS\system32\config\ACEEvent.evt
2014-12-09 07:12 - 2013-05-11 22:36 - 00032604 _____ () C:\WINDOWS\SchedLgU.Txt
2014-12-09 07:12 - 2013-05-11 22:36 - 00000178 ___SH () C:\Documents and Settings\Admin\ntuser.ini
2014-12-09 07:12 - 2013-05-11 22:36 - 00000000 ____D () C:\Documents and Settings\Admin
2014-12-08 19:22 - 2013-05-12 00:25 - 01023836 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-07 21:01 - 2013-05-12 00:24 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-12-07 18:05 - 2013-05-11 22:31 - 00000000 ____D () C:\WINDOWS\system32\Restore
2014-12-07 18:05 - 2013-05-11 16:52 - 00075032 _____ () C:\Documents and Settings\Admin\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-12-07 18:04 - 2013-05-12 00:23 - 00300440 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-12-07 18:02 - 2013-09-27 05:54 - 00000000 ____D () C:\Program Files\trend micro
2014-12-07 17:36 - 2006-03-02 13:00 - 00000227 _____ () C:\WINDOWS\system.ini
2014-12-07 17:33 - 2013-05-11 22:36 - 00000000 __RHD () C:\Documents and Settings\Admin\Data aplikací
2014-12-07 17:30 - 2013-05-12 00:24 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-12-07 17:30 - 2013-05-12 00:24 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-12-07 17:05 - 2013-05-11 22:35 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2014-12-06 20:52 - 2013-05-11 22:36 - 00000000 ___RD () C:\Documents and Settings\Admin\Dokumenty
2014-12-04 19:32 - 2006-03-02 13:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl
2014-12-03 19:22 - 2013-05-12 10:46 - 00000000 ____D () C:\WINDOWS\system32\LogFiles
2014-12-03 17:36 - 2013-05-11 22:32 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-12-03 17:35 - 2013-05-11 22:42 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-12-02 17:21 - 2013-05-11 22:36 - 00000000 ___RD () C:\Documents and Settings\Admin\Dokumenty\Hudba
2014-12-01 16:47 - 2013-12-26 17:53 - 00701104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-12-01 16:47 - 2013-10-05 19:42 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-12-01 16:43 - 2014-09-13 14:58 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Data aplikací\Adobe
Some content of TEMP:
====================
C:\Documents and Settings\Admin\Local Settings\temp\avgnt.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End Of Log ============================
Postupujte podle navodu kolegy
Zadny sken nic nehlasi, dokonce ani sama Avira v nouzaku. Rekl bych, ze je to falesny poplach. Ale nemam to jak overit na 100% 