problém po půlroční odstávce PC - patrně malware

Zpráva

JanPospisil · #1 Příspěvek od **JanPospisil** » 08 lis 2013 12:40

situace:
v únoru jsem odstavil stolní PC a s netbookem jsem cestoval do zahraničí; na netbooku s Win7 jsem začal používat Glary Utilities; po návratu domů koncem října jsem aktivoval PC s WinXP, to se pak na pomalém připojení k netu po dobu 2 dní a 2 nocí aktualizovalo (jen 151 aktualizací pro XP), systém, java, MS office, Spybot-Search&Destroy, NVIDIA, Avast Antivirus, atd.

problém:
na WinXP jsem si přidal osvědčený Glary Utilities a zjistil jsem, že se zobrazuje zdeformovaně, jakoby nebyly v systému nějaké služby k dispozici - tedy domívám se, že než si systém natáhl všechny aktualizace, mohl se mi tam dostat nějaký malware, který způsobuje (možná) nějaké disfunkce systému

postup:
stahnul jsem si podle návodu FRST.exe a FRSTLauncher.exe
spustil FRSTLauncher.exe, výsledek přikládám podle návodu
přikládám 3x jpg

a prosím o pomoc, co s tím

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-10-2013
Ran by XX (administrator) on XX-DB3684BA31DA on 08-11-2013 12:28:16
Running from C:\Documents and Settings\XX\Plocha
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 7
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(B2C2, Inc.) C:\Program Files\TechniSat DVB\bin\Server4PC.exe
(TuneUp Software) C:\WINDOWS\System32\TUProgSt.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(Gemfor s.r.o.) C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows NT\Accessories\WORDPAD.EXE
(forum.viry.cz) C:\Documents and Settings\XX\Plocha\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-03] (AVAST Software)
HKLM\...\Run: [nwiz] - C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [1634112 2012-09-23] ()
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2012-04-18] (Apple Inc.)
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-07-14] (Google Inc.)
HKCU\...\Policies\system: [HideLegacyLogonScripts] 0
HKCU\...\Policies\system: [HideLogoffScripts] 0
HKCU\...\Policies\system: [HideStartupScripts] 0
HKCU\...\Policies\system: [RunLogonScriptSync] 1
HKCU\...\Policies\system: [RunStartupScriptSync] 0
HKU\Default User\...\Run: [T-Mobile CManager] - C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe [ 2013-10-15] (Gemfor s.r.o.)
HKU\Guest\...\Run: [T-Mobile CManager] - C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe [ 2013-10-15] (Gemfor s.r.o.)
HKU\UpdatusUser\...\Run: [T-Mobile CManager] - C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe [ 2013-10-15] (Gemfor s.r.o.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Server4PC.lnk
ShortcutTarget: Server4PC.lnk -> C:\Program Files\TechniSat DVB\bin\Server4PC.exe (B2C2, Inc.)
BootExecute: autocheck autochk *

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://www.icq.com/search/results.php?q ... &ch_id=osd
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.glarysoft.com/?src=iehome
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.glarysoft.com/?src=iehome
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.glarysoft.com/?src=iehome
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKLM - {c1d89ae7-449d-4929-b24b-fded04adbe06} URL = http://isearch.glarysoft.com/?q={search ... c=iesearch
SearchScopes: HKCU - {837CC356-411E-4654-B2A2-ECA1F037979F} URL = http://search.igeared.com/dispatcher.as ... earchTerms}
SearchScopes: HKCU - {C04B7D22-5AEC-4561-8F49-27F6269208F6} URL = http://www2.inbox.com/search/dispatcher ... 120&lng=cs
SearchScopes: HKCU - {c1d89ae7-449d-4929-b24b-fded04adbe06} URL = http://isearch.glarysoft.com/?q={search ... c=iesearch
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/ ... ontrol.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper.dll
DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} http://www3.ca.com/securityadvisor/viru ... ebscan.cab
DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/s ... wflash.cab
DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} http://download.mcafee.com/molbin/iss-l ... cfscan.cab
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - No File [ ]
Tcpip\..\Interfaces\{8AFBF308-ADF2-4BC9-BB15-FC497C05BC9E}: [NameServer]93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{C171B3CD-E62B-4C37-BA54-67581EE694A6}: [NameServer]10.0.0.138

FireFox:
========
FF ProfilePath: C:\Documents and Settings\XX\Data aplikací\Mozilla\Firefox\Profiles\htjgpf6f.default
FF user.js: detected! => C:\Documents and Settings\XX\Data aplikací\Mozilla\Firefox\Profiles\htjgpf6f.default\user.js
FF SearchEngineOrder.1: Ask.com
FF Homepage: https://www.google.cz/
FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?SSPV=FFOB10&ctid=CT2737658&SearchSource=2&q=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_265.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=12.0.1.647 - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=12.0.1.647 - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.169\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.169\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=1.1.11 - C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Documents and Settings\XX\Data aplikací\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Documents and Settings\XX\Data aplikací\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Documents and Settings\XX\Local Settings\Data aplikací\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=8 - C:\Documents and Settings\XX\Local Settings\Data aplikací\Google\Update\1.2.183.29\npGoogleOneClick8.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Documents and Settings\XX\Local Settings\Data aplikací\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Documents and Settings\XX\Data aplikací\Mozilla\Firefox\Profiles\htjgpf6f.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\avg_igeared.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\emclient_igeared.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\glarysearch.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\MyHeritage.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Deutsches Wörterbuch - C:\Documents and Settings\XX\Data aplikací\Mozilla\Firefox\Profiles\htjgpf6f.default\Extensions\de-DE@dictionaries.addons.mozilla.org
FF Extension: DownloadHelper - C:\Documents and Settings\XX\Data aplikací\Mozilla\Firefox\Profiles\htjgpf6f.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: Flash and Video Download - C:\Documents and Settings\XX\Data aplikací\Mozilla\Firefox\Profiles\htjgpf6f.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
FF Extension: FoxClocks - C:\Documents and Settings\XX\Data aplikací\Mozilla\Firefox\Profiles\htjgpf6f.default\Extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1}
FF Extension: FreeOnlineRadioPlayerRecorder Community Toolbar - C:\Documents and Settings\XX\Data aplikací\Mozilla\Firefox\Profiles\htjgpf6f.default\Extensions\{f999a48b-1950-4d81-9971-79018f807b4b}
FF Extension: elemhidehelper - C:\Documents and Settings\XX\Data aplikací\Mozilla\Firefox\Profiles\htjgpf6f.default\Extensions\elemhidehelper@adblockplus.org.xpi
FF Extension: No Name - C:\Documents and Settings\XX\Data aplikací\Mozilla\Firefox\Profiles\htjgpf6f.default\Extensions\{15a7ef52-8a77-426e-9e17-e21af257d7c8}.xpi
FF Extension: Adblock Plus - C:\Documents and Settings\XX\Data aplikací\Mozilla\Firefox\Profiles\htjgpf6f.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

========================== Services (Whitelisted) =================

S3 Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [132424 2009-03-26] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-03] (AVAST Software)
R2 MbnExt; C:\Program Files\T-Mobile\Web'n'walk Manager\MbnExt.dll [417128 2013-10-16] (Gemfor s.r.o.)
S3 TuneUp.Defrag; C:\Windows\System32\TuneUpDefragService.exe [361288 2010-01-27] (TuneUp Software)
R2 TuneUp.ProgramStatisticsSvc; C:\Windows\System32\TUProgSt.exe [604488 2010-01-27] (TuneUp Software)
R2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [x]

==================== Drivers (Whitelisted) ====================

R3 ALCXWDM; C:\Windows\System32\drivers\ALCXWDM.SYS [3964736 2006-05-10] (Realtek Semiconductor Corp.)
R1 AmdK8; C:\Windows\System32\DRIVERS\AmdK8.sys [36352 2005-03-09] (Advanced Micro Devices)
R2 aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [35656 2013-11-03] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [70384 2013-11-03] (AVAST Software)
R1 AswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2013-11-03] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49944 2013-11-03] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [774392 2013-11-03] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [403440 2013-11-06] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2013-11-03] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [178304 2013-11-03] ()
R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [13056 2013-10-24] (<Glarysoft Ltd>)
R1 Cinemsup; C:\Windows\System32\Drivers\Cinemsup.sys [6656 2002-07-19] (Sonic Solutions)
S3 CrystalSysInfo; C:\Program Files\MediaCoder\SysInfo.sys [15152 2007-09-25] ()
R3 huawei_cdcacm; C:\Windows\System32\DRIVERS\ew_jucdcacm.sys [95616 2012-04-23] (Huawei Technologies Co., Ltd.)
S3 huawei_cdcecm; C:\Windows\System32\DRIVERS\ew_jucdcecm.sys [70016 2012-04-23] (Huawei Technologies Co., Ltd.)
R3 huawei_ext_ctrl; C:\Windows\System32\DRIVERS\ew_juextctrl.sys [27520 2012-04-23] (Huawei Technologies Co., Ltd.)
R1 incdrm; C:\Windows\System32\Drivers\incdrm.sys [33536 2006-03-23] (Nero AG)
S3 nm; C:\Windows\System32\DRIVERS\NMnt.sys [40320 2008-04-13] (Microsoft Corporation)
R0 nvata; C:\Windows\System32\DRIVERS\nvata.sys [93568 2005-08-18] (NVIDIA Corporation)
R3 NVENETFD; C:\Windows\System32\DRIVERS\NVENETFD.sys [33536 2005-04-05] (NVIDIA Corporation)
R3 nvnetbus; C:\Windows\System32\DRIVERS\nvnetbus.sys [12928 2005-04-05] (NVIDIA Corporation)
R3 pfc; C:\Windows\System32\drivers\pfc.sys [10368 2003-12-05] (Padus, Inc.)
R3 ProcObsrv; C:\Program Files\Glary Utilities 3\ProcObsrv.sys [11552 2013-10-28] (Glarysoft Ltd)
S3 rtl8139; C:\Windows\System32\DRIVERS\RTL8139.SYS [20992 2008-04-13] (Realtek Semiconductor Corporation)
R3 SKYNET; C:\Windows\System32\DRIVERS\SkyNET.SYS [343040 2005-09-29] (B2C2, Inc.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [639224 2007-01-20] ()
S3 Usbnic; C:\Windows\System32\DRIVERS\Usbnic.sys [19472 2013-11-02] (Oti.)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [249472 2012-04-20] (Huawei Technologies Co., Ltd.)
U5 FontCache3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [46104 2008-07-29] (Microsoft Corporation)
S4 IntelIde; No ImagePath
U5 NPF; C:\Windows\System32\drivers\npf.sys [34064 2007-11-06] (CACE Technologies)
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-11-08 12:27 - 2013-11-08 12:27 - 00000000 ____D C:\FRST
2013-11-08 12:16 - 2013-11-08 12:16 - 00112128 _____ (forum.viry.cz) C:\Documents and Settings\XX\Plocha\FRSTLauncher.exe
2013-11-08 12:11 - 2013-11-08 12:14 - 01089445 _____ (Farbar) C:\Documents and Settings\XX\Plocha\FRST.exe
2013-11-08 12:06 - 2013-11-08 12:27 - 00005214 _____ C:\Documents and Settings\XX\Plocha\viry.cz Aktivace 8.11.2013.txt
2013-11-08 11:48 - 2013-11-08 11:49 - 00000000 ____D C:\Documents and Settings\XX\Plocha\viry.cz Glary Utilities na XP
2013-11-08 06:11 - 2013-11-08 06:27 - 00008408 _____ C:\Documents and Settings\XX\Plocha\homilio 3.11.2013.txt
2013-11-08 04:47 - 2013-11-08 05:40 - 00014464 _____ C:\Documents and Settings\XX\Plocha\diagnosis.txt
2013-11-08 04:40 - 2013-11-08 04:40 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\{CC71B1CB-A2E4-4CF7-8EDB-A0E290BA1604}
2013-11-07 09:10 - 2013-11-07 09:33 - 00006428 _____ C:\Documents and Settings\XX\Plocha\Wiki Dobývání Aztécké.txt
2013-11-06 23:53 - 2013-11-06 23:55 - 00000000 ____D C:\Documents and Settings\XX\Plocha\Církev Věda Omyly
2013-11-06 22:40 - 2013-11-06 23:40 - 00000000 ____D C:\Documents and Settings\XX\Plocha\PEREX články
2013-11-06 22:25 - 2013-11-06 22:48 - 00013760 _____ C:\Documents and Settings\XX\Plocha\PEREX.txt
2013-11-06 21:55 - 2013-11-06 21:55 - 00000000 ____D C:\Documents and Settings\XX\Plocha\eStránky statistiky
2013-11-06 09:03 - 2013-11-06 10:11 - 00348586 _____ C:\Documents and Settings\XX\Plocha\farní kronika Nebušice LIBER MEMORABILIUM PAROCHIAE NEBUŠIC.txt
2013-11-05 10:23 - 2013-11-05 10:23 - 00000073 _____ C:\Documents and Settings\XX\Plocha\DeAn08-xander.part01.rar Ulož.to.URL
2013-11-04 17:33 - 2013-11-04 17:33 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\TechniSat PVR
2013-11-04 17:33 - 2013-11-04 17:33 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\TechniSat DVB
2013-11-04 17:33 - 2005-09-29 12:28 - 00212992 _____ (B2C2, Inc.) C:\WINDOWS\system32\Sky2PCUI.dll
2013-11-04 17:33 - 2005-09-29 12:28 - 00069632 _____ (B2C2, Inc.) C:\WINDOWS\system32\SkyDll.dll
2013-11-04 17:33 - 2005-06-29 16:45 - 00131072 _____ C:\WINDOWS\system32\libbz2.dll
2013-11-04 15:44 - 2013-11-04 15:44 - 00000386 _____ C:\Documents and Settings\XX\Plocha\foto ŠÁRKA říjen 2013.lnk
2013-11-04 15:40 - 2013-11-04 18:08 - 00000000 ____D C:\Documents and Settings\XX\Plocha\Readers Digest 4.11.2013
2013-11-04 10:03 - 2013-11-04 10:03 - 00000084 _____ C:\Documents and Settings\XX\Plocha\Gmail - Doručená pošta POMALÉ PŘIPOJENÍ.URL
2013-11-04 10:02 - 2013-11-04 10:02 - 00000059 _____ C:\Documents and Settings\XX\Plocha\Gmail pro pomalé připojení.URL
2013-11-03 20:12 - 2013-11-03 20:12 - 00000563 _____ C:\Documents and Settings\XX\Plocha\Zednáři ve Vatikánu.pdf.lnk
2013-11-03 17:12 - 2013-11-03 17:12 - 00000891 _____ C:\Documents and Settings\XX\Plocha\scanner msert(1).exe.lnk
2013-11-03 17:12 - 2013-11-03 17:12 - 00000082 _____ C:\Documents and Settings\XX\Plocha\Download Free Glary Utilities - Free System Utilities to Clean Registry, Fix PC Errors, Protect Privacy Glarysoft (2).URL
2013-11-03 16:12 - 2013-11-03 16:37 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Auslogics
2013-11-03 16:10 - 2013-11-08 11:43 - 00000310 _____ C:\WINDOWS\Tasks\GlaryInitialize 3.job
2013-11-03 16:10 - 2013-10-28 09:38 - 00101664 _____ (Glarysoft Ltd) C:\WINDOWS\system32\BootDefrag.exe
2013-11-03 16:10 - 2013-10-24 03:30 - 00013056 _____ (<Glarysoft Ltd>) C:\WINDOWS\system32\Drivers\BootDefragDriver.sys
2013-11-03 16:09 - 2013-11-08 11:28 - 00000000 ____D C:\Program Files\Glary Utilities 3
2013-11-03 16:09 - 2013-11-03 21:49 - 00000811 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Glary Utilities 3.lnk
2013-11-03 16:09 - 2013-11-03 16:10 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Glary Utilities 3
2013-11-03 15:28 - 2013-11-03 15:28 - 00000074 _____ C:\Documents and Settings\XX\Plocha\Microsoft Safety Scanner - Bezplatný online nástroj pro zajištění dobrého stavu a zabezpečení počítače.URL
2013-11-03 14:15 - 2013-11-03 14:15 - 00000000 ____D C:\Documents and Settings\XX\Plocha\Island Revoluce pod vedením bankéřů
2013-11-03 13:55 - 2013-11-03 13:55 - 00000082 _____ C:\Documents and Settings\XX\Plocha\Download Free Glary Utilities - Free System Utilities to Clean Registry, Fix PC Errors, Protect Privacy Glarysoft.URL
2013-11-03 13:54 - 2013-11-03 13:54 - 00000067 _____ C:\Documents and Settings\XX\Plocha\Verify Java Version.URL
2013-11-03 13:53 - 2013-11-03 13:53 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-11-03 13:53 - 2013-11-03 13:53 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-11-03 13:53 - 2013-11-03 13:53 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-11-03 13:53 - 2013-11-03 13:53 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2013-11-03 13:53 - 2013-11-03 13:53 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-11-03 13:53 - 2013-11-03 13:53 - 00000000 ____D C:\Program Files\Common Files\Java
2013-11-03 13:53 - 2013-11-03 13:53 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Java
2013-11-03 13:42 - 2013-11-03 13:42 - 00000058 _____ C:\Documents and Settings\XX\Plocha\Drivers GeForce.URL
2013-11-03 12:38 - 2013-11-03 14:41 - 00000961 _____ C:\Documents and Settings\XX\Plocha\Glary_Utilities_v3.9.4.exe.lnk
2013-11-03 12:37 - 2013-11-03 12:37 - 00000906 _____ C:\Documents and Settings\XX\Plocha\jxpiinstall.exe.lnk
2013-11-03 12:32 - 2013-11-03 14:44 - 00001858 _____ C:\Documents and Settings\XX\Plocha\GeForce 3.11.2013.txt
2013-11-03 10:32 - 2013-11-03 10:32 - 50063360 _____ C:\Program Files\GUT6.tmp
2013-11-03 10:32 - 2013-11-03 10:32 - 00000000 ____D C:\Program Files\GUM5.tmp
2013-11-03 10:31 - 2013-11-03 10:31 - 00000000 ____D C:\Documents and Settings\XX\Data aplikací\AVAST Software
2013-11-03 09:57 - 2013-11-03 09:57 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2013-11-03 09:07 - 2013-11-03 09:07 - 00000956 _____ C:\Documents and Settings\XX\Plocha\Windows-KB890830-V5.5.exe.lnk
2013-11-03 08:25 - 2013-11-03 09:57 - 00178304 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2013-11-03 08:25 - 2013-11-03 09:57 - 00070384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2013-11-03 08:25 - 2013-11-03 09:57 - 00049944 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2013-11-03 04:25 - 2013-11-03 04:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2808679$
2013-11-03 04:22 - 2013-11-03 04:22 - 00000078 _____ C:\Documents and Settings\XX\Plocha\Microsoft Download Center.URL
2013-11-03 04:19 - 2013-11-03 15:24 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-11-03 04:19 - 2013-11-03 12:15 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Silverlight
2013-11-02 12:54 - 2013-11-02 12:58 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-11-02 12:09 - 2013-11-04 17:33 - 00000000 ____D C:\Program Files\DVBViewerTE
2013-11-02 12:02 - 2013-11-02 12:02 - 00000840 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\T-Mobile Internet Manager.lnk
2013-11-02 12:02 - 2013-11-02 12:02 - 00000834 _____ C:\Documents and Settings\UpdatusUser.XX-DB3684BA31DA\Plocha\T-Mobile Internet Manager.lnk
2013-11-02 12:02 - 2013-11-02 12:02 - 00000834 _____ C:\Documents and Settings\Guest\Plocha\T-Mobile Internet Manager.lnk
2013-11-02 12:02 - 2013-11-02 12:02 - 00000834 _____ C:\Documents and Settings\Default User\Plocha\T-Mobile Internet Manager.lnk
2013-11-02 11:52 - 2013-11-02 11:52 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834886$
2013-11-02 11:49 - 2013-11-02 11:49 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2847311$
2013-11-02 11:45 - 2013-11-02 11:45 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862335$
2013-11-02 11:45 - 2013-11-02 11:45 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2802968$
2013-11-02 11:44 - 2013-11-02 11:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876217$
2013-11-02 11:44 - 2013-11-02 11:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2845187$
2013-11-02 11:44 - 2013-11-02 11:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-11-02 11:44 - 2013-11-02 11:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2780091$
2013-11-02 11:43 - 2013-11-02 11:43 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2864063$
2013-11-02 11:43 - 2013-11-02 11:43 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2845142_WM64$
2013-11-02 11:42 - 2013-11-02 11:42 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2850869$
2013-11-02 11:39 - 2013-11-02 11:39 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2868038$
2013-11-02 11:39 - 2013-11-02 11:39 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2859537$
2013-11-02 11:39 - 2013-11-02 11:39 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2807986$
2013-11-02 11:38 - 2013-11-02 11:38 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2863058$
2013-11-02 11:38 - 2013-11-02 11:38 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2820917$
2013-11-02 11:38 - 2013-11-02 11:38 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2820197$
2013-11-02 11:38 - 2013-11-02 11:38 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2757638$
2013-11-02 11:37 - 2013-11-02 11:37 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2883150$
2013-11-02 11:37 - 2013-11-02 11:37 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2849470$
2013-11-02 11:36 - 2013-11-02 11:36 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862330$
2013-11-02 11:36 - 2013-11-02 11:36 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2813345$
2013-11-02 10:32 - 2013-11-02 10:32 - 00000000 ____D C:\Program Files\T-Mobile
2013-11-02 10:32 - 2013-11-02 10:32 - 00000000 ____D C:\Documents and Settings\XX\Data aplikací\T-Mobile
2013-11-02 10:26 - 2013-11-07 14:27 - 00000000 ____D C:\Documents and Settings\XX\Plocha\z Netbooku na XP 3.11.2013
2013-11-02 08:29 - 2013-11-02 08:29 - 00000410 _____ C:\Documents and Settings\XX\Plocha\KNIHA Pojď si sáhnout na Boha.lnk
2013-11-02 08:25 - 2013-11-02 08:25 - 00000608 _____ C:\Documents and Settings\XX\Plocha\22 Španělština_13_6_MB_21_dvojstan.pdf.lnk
2013-11-02 05:11 - 2013-07-03 03:12 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2013-11-02 04:26 - 2013-02-12 01:32 - 00012928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023x.sys
2013-11-02 04:26 - 2013-02-12 01:32 - 00012928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023.sys
2013-11-02 04:24 - 2013-07-17 01:58 - 00123008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
2013-11-02 04:24 - 2013-07-17 01:58 - 00060160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbaudio.sys
2013-11-01 23:51 - 2013-08-09 01:55 - 00144128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbport.sys
2013-11-01 23:51 - 2013-08-09 01:55 - 00032384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbccgp.sys
2013-11-01 23:51 - 2013-08-09 01:55 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2013-11-01 23:51 - 2009-03-18 12:02 - 00030336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbehci.sys
2013-11-01 19:00 - 2013-11-01 19:30 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-01 12:35 - 2013-11-01 12:36 - 00000399 _____ C:\Documents and Settings\XX\Plocha\PLOCHA 1.11.2013 poledne.lnk
2013-11-01 11:55 - 2013-11-01 11:55 - 00000000 ____D C:\Documents and Settings\UpdatusUser.XX-DB3684BA31DA\Local Settings\Data aplikací\Gemfor
2013-11-01 09:36 - 2013-11-08 11:23 - 00033730 _____ C:\Documents and Settings\XX\Plocha\estr STATISTIKY.txt
2013-11-01 09:36 - 2013-11-01 09:36 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Gemfor
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallWdf01007$
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_juextctrl_01007.Wdf
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_jucdcecm_01007.Wdf
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Gemfor
2013-11-01 09:35 - 2008-03-21 13:57 - 00014640 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsgXP_2k3.dll
2013-11-01 09:34 - 2013-11-01 09:34 - 00000000 ____D C:\Program Files\Huawei
2013-11-01 09:34 - 2012-04-23 08:53 - 00095616 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_jucdcacm.sys
2013-11-01 09:34 - 2012-04-23 08:53 - 00076544 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_jubusenum.sys
2013-11-01 09:34 - 2012-04-23 08:53 - 00070016 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_jucdcecm.sys
2013-11-01 09:34 - 2012-04-23 08:53 - 00027520 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_juextctrl.sys
2013-11-01 09:34 - 2012-04-20 13:14 - 00249472 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ewusbnet.sys
2013-11-01 09:34 - 2011-12-31 08:20 - 00199168 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ewusbmdm.sys
2013-11-01 09:34 - 2011-08-16 15:40 - 01112288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdfcoinstaller01007.dll
2013-11-01 09:34 - 2011-08-16 15:40 - 01112288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfCoInstaller01007.dll
2013-11-01 09:34 - 2010-10-08 15:55 - 00025856 _____ (Huawei Tech. Co., Ltd.) C:\WINDOWS\system32\Drivers\ewdcsc.sys
2013-11-01 09:34 - 2010-09-26 17:09 - 00019200 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_hwupgrade.sys
2013-11-01 09:34 - 2010-08-06 06:42 - 00861696 _____ (DiBcom SA) C:\WINDOWS\system32\Drivers\mod7700.sys
2013-11-01 09:34 - 2010-07-27 08:52 - 00102784 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_hwusbdev.sys
2013-11-01 09:34 - 2010-03-20 11:06 - 00011136 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_usbenumfilter.sys
2013-11-01 09:34 - 2005-05-13 15:27 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccid.sys

==================== One Month Modified Files and Folders =======

2013-11-08 12:27 - 2013-11-08 12:27 - 00000000 ____D C:\FRST
2013-11-08 12:27 - 2013-11-08 12:06 - 00005214 _____ C:\Documents and Settings\XX\Plocha\viry.cz Aktivace 8.11.2013.txt
2013-11-08 12:27 - 2006-11-16 16:03 - 00000000 ___HD C:\Documents and Settings\XX\Local Settings\Data aplikací
2013-11-08 12:27 - 2006-11-16 16:03 - 00000000 ____D C:\Documents and Settings\XX\Plocha
2013-11-08 12:16 - 2013-11-08 12:16 - 00112128 _____ (forum.viry.cz) C:\Documents and Settings\XX\Plocha\FRSTLauncher.exe
2013-11-08 12:16 - 2011-01-26 09:28 - 00000000 ____D C:\Documents and Settings\XX\Dokumenty\Stažené soubory
2013-11-08 12:14 - 2013-11-08 12:11 - 01089445 _____ (Farbar) C:\Documents and Settings\XX\Plocha\FRST.exe
2013-11-08 11:49 - 2013-11-08 11:48 - 00000000 ____D C:\Documents and Settings\XX\Plocha\viry.cz Glary Utilities na XP
2013-11-08 11:46 - 2006-11-16 16:04 - 01177032 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-08 11:44 - 2006-11-16 16:03 - 00000000 ___HD C:\Documents and Settings\XX\Šablony
2013-11-08 11:43 - 2013-11-03 16:10 - 00000310 _____ C:\WINDOWS\Tasks\GlaryInitialize 3.job
2013-11-08 11:43 - 2012-06-30 20:33 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2013-11-08 11:43 - 2006-11-16 15:57 - 01446903 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-08 11:42 - 2012-10-13 16:36 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-08 11:42 - 2012-06-16 08:14 - 00000302 _____ C:\WINDOWS\Tasks\GlaryInitialize.job
2013-11-08 11:42 - 2006-12-29 16:04 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-11-08 11:42 - 2006-12-29 16:04 - 00000049 _____ C:\WINDOWS\wiaservc.log
2013-11-08 11:42 - 2006-11-16 16:02 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-11-08 11:42 - 2006-03-02 13:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2013-11-08 11:30 - 2009-01-21 20:09 - 00131072 _____ C:\WINDOWS\system32\config\TuneUp.evt
2013-11-08 11:30 - 2006-11-16 16:03 - 00000272 ___SH C:\Documents and Settings\XX\ntuser.ini
2013-11-08 11:30 - 2006-11-16 16:02 - 00032456 _____ C:\WINDOWS\SchedLgU.Txt
2013-11-08 11:28 - 2013-11-03 16:09 - 00000000 ____D C:\Program Files\Glary Utilities 3
2013-11-08 11:23 - 2013-11-01 09:36 - 00033730 _____ C:\Documents and Settings\XX\Plocha\estr STATISTIKY.txt
2013-11-08 10:37 - 2012-10-13 16:36 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-08 09:23 - 2009-08-02 20:40 - 00000069 _____ C:\WINDOWS\NeroDigital.ini
2013-11-08 06:27 - 2013-11-08 06:11 - 00008408 _____ C:\Documents and Settings\XX\Plocha\homilio 3.11.2013.txt
2013-11-08 05:40 - 2013-11-08 04:47 - 00014464 _____ C:\Documents and Settings\XX\Plocha\diagnosis.txt
2013-11-08 04:40 - 2013-11-08 04:40 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\{CC71B1CB-A2E4-4CF7-8EDB-A0E290BA1604}
2013-11-08 04:40 - 2006-11-16 16:03 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2013-11-07 14:27 - 2013-11-02 10:26 - 00000000 ____D C:\Documents and Settings\XX\Plocha\z Netbooku na XP 3.11.2013
2013-11-07 09:33 - 2013-11-07 09:10 - 00006428 _____ C:\Documents and Settings\XX\Plocha\Wiki Dobývání Aztécké.txt
2013-11-07 00:25 - 2006-11-16 16:03 - 00000000 ____D C:\Documents and Settings\XX
2013-11-06 23:55 - 2013-11-06 23:53 - 00000000 ____D C:\Documents and Settings\XX\Plocha\Církev Věda Omyly
2013-11-06 23:40 - 2013-11-06 22:40 - 00000000 ____D C:\Documents and Settings\XX\Plocha\PEREX články
2013-11-06 22:48 - 2013-11-06 22:25 - 00013760 _____ C:\Documents and Settings\XX\Plocha\PEREX.txt
2013-11-06 21:57 - 2012-02-26 19:27 - 00403440 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2013-11-06 21:55 - 2013-11-06 21:55 - 00000000 ____D C:\Documents and Settings\XX\Plocha\eStránky statistiky
2013-11-06 10:50 - 2006-12-08 03:12 - 00000754 ____C C:\WINDOWS\WORDPAD.INI
2013-11-06 10:11 - 2013-11-06 09:03 - 00348586 _____ C:\Documents and Settings\XX\Plocha\farní kronika Nebušice LIBER MEMORABILIUM PAROCHIAE NEBUŠIC.txt
2013-11-05 16:46 - 2006-11-16 16:03 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2013-11-05 10:23 - 2013-11-05 10:23 - 00000073 _____ C:\Documents and Settings\XX\Plocha\DeAn08-xander.part01.rar Ulož.to.URL
2013-11-04 18:08 - 2013-11-04 15:40 - 00000000 ____D C:\Documents and Settings\XX\Plocha\Readers Digest 4.11.2013
2013-11-04 17:33 - 2013-11-04 17:33 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\TechniSat PVR
2013-11-04 17:33 - 2013-11-04 17:33 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\TechniSat DVB
2013-11-04 17:33 - 2013-11-02 12:09 - 00000000 ____D C:\Program Files\DVBViewerTE
2013-11-04 17:33 - 2006-11-30 17:06 - 00000000 ____D C:\Program Files\TechniSat DVB
2013-11-04 17:33 - 2006-11-16 16:08 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-11-04 17:33 - 2006-11-16 16:03 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2013-11-04 15:44 - 2013-11-04 15:44 - 00000386 _____ C:\Documents and Settings\XX\Plocha\foto ŠÁRKA říjen 2013.lnk
2013-11-04 10:03 - 2013-11-04 10:03 - 00000084 _____ C:\Documents and Settings\XX\Plocha\Gmail - Doručená pošta POMALÉ PŘIPOJENÍ.URL
2013-11-04 10:02 - 2013-11-04 10:02 - 00000059 _____ C:\Documents and Settings\XX\Plocha\Gmail pro pomalé připojení.URL
2013-11-03 21:49 - 2013-11-03 16:09 - 00000811 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Glary Utilities 3.lnk
2013-11-03 20:53 - 2010-02-22 12:31 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\MEMORARY
2013-11-03 20:27 - 2011-09-15 16:53 - 00002347 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Reader X.lnk
2013-11-03 20:12 - 2013-11-03 20:12 - 00000563 _____ C:\Documents and Settings\XX\Plocha\Zednáři ve Vatikánu.pdf.lnk
2013-11-03 17:12 - 2013-11-03 17:12 - 00000891 _____ C:\Documents and Settings\XX\Plocha\scanner msert(1).exe.lnk
2013-11-03 17:12 - 2013-11-03 17:12 - 00000082 _____ C:\Documents and Settings\XX\Plocha\Download Free Glary Utilities - Free System Utilities to Clean Registry, Fix PC Errors, Protect Privacy Glarysoft (2).URL
2013-11-03 16:37 - 2013-11-03 16:12 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Auslogics
2013-11-03 16:37 - 2010-12-30 08:29 - 00000000 ____D C:\Program Files\Auslogics
2013-11-03 16:37 - 2010-12-30 08:29 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Auslogics
2013-11-03 16:10 - 2013-11-03 16:09 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Glary Utilities 3
2013-11-03 16:10 - 2011-01-22 08:03 - 00000000 ____D C:\Documents and Settings\XX\Data aplikací\GlarySoft
2013-11-03 15:28 - 2013-11-03 15:28 - 00000074 _____ C:\Documents and Settings\XX\Plocha\Microsoft Safety Scanner - Bezplatný online nástroj pro zajištění dobrého stavu a zabezpečení počítače.URL
2013-11-03 15:24 - 2013-11-03 04:19 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-11-03 14:44 - 2013-11-03 12:32 - 00001858 _____ C:\Documents and Settings\XX\Plocha\GeForce 3.11.2013.txt
2013-11-03 14:42 - 2012-07-30 19:02 - 00000453 _____ C:\Documents and Settings\XX\Plocha\Stažené soubory.lnk
2013-11-03 14:41 - 2013-11-03 12:38 - 00000961 _____ C:\Documents and Settings\XX\Plocha\Glary_Utilities_v3.9.4.exe.lnk
2013-11-03 14:15 - 2013-11-03 14:15 - 00000000 ____D C:\Documents and Settings\XX\Plocha\Island Revoluce pod vedením bankéřů
2013-11-03 13:55 - 2013-11-03 13:55 - 00000082 _____ C:\Documents and Settings\XX\Plocha\Download Free Glary Utilities - Free System Utilities to Clean Registry, Fix PC Errors, Protect Privacy Glarysoft.URL
2013-11-03 13:54 - 2013-11-03 13:54 - 00000067 _____ C:\Documents and Settings\XX\Plocha\Verify Java Version.URL
2013-11-03 13:53 - 2013-11-03 13:53 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-11-03 13:53 - 2013-11-03 13:53 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-11-03 13:53 - 2013-11-03 13:53 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-11-03 13:53 - 2013-11-03 13:53 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2013-11-03 13:53 - 2013-11-03 13:53 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-11-03 13:53 - 2013-11-03 13:53 - 00000000 ____D C:\Program Files\Common Files\Java
2013-11-03 13:53 - 2013-11-03 13:53 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Java
2013-11-03 13:42 - 2013-11-03 13:42 - 00000058 _____ C:\Documents and Settings\XX\Plocha\Drivers GeForce.URL
2013-11-03 12:37 - 2013-11-03 12:37 - 00000906 _____ C:\Documents and Settings\XX\Plocha\jxpiinstall.exe.lnk
2013-11-03 12:15 - 2013-11-03 04:19 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Silverlight
2013-11-03 11:27 - 2010-08-14 18:03 - 01073092 ____C C:\WINDOWS\system32\nvdrsdb1.bin
2013-11-03 11:27 - 2010-08-14 18:03 - 01073092 _____ C:\WINDOWS\system32\nvdrsdb0.bin
2013-11-03 11:27 - 2010-08-14 18:03 - 00000001 _____ C:\WINDOWS\system32\nvdrssel.bin
2013-11-03 11:27 - 2006-11-16 16:05 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups
2013-11-03 11:26 - 2009-07-27 12:09 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-11-03 10:32 - 2013-11-03 10:32 - 50063360 _____ C:\Program Files\GUT6.tmp
2013-11-03 10:32 - 2013-11-03 10:32 - 00000000 ____D C:\Program Files\GUM5.tmp
2013-11-03 10:31 - 2013-11-03 10:31 - 00000000 ____D C:\Documents and Settings\XX\Data aplikací\AVAST Software
2013-11-03 10:31 - 2006-11-16 16:03 - 00000000 __RHD C:\Documents and Settings\XX\Data aplikací
2013-11-03 09:57 - 2013-11-03 09:57 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2013-11-03 09:57 - 2013-11-03 08:25 - 00178304 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2013-11-03 09:57 - 2013-11-03 08:25 - 00070384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2013-11-03 09:57 - 2013-11-03 08:25 - 00049944 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2013-11-03 09:57 - 2012-02-26 19:27 - 00774392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2013-11-03 09:57 - 2012-02-26 19:27 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2013-11-03 09:57 - 2012-02-26 19:27 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2013-11-03 09:57 - 2012-02-26 19:27 - 00035656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswFsBlk.sys
2013-11-03 09:57 - 2012-02-26 19:26 - 00269216 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2013-11-03 09:57 - 2012-02-26 19:26 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2013-11-03 09:07 - 2013-11-03 09:07 - 00000956 _____ C:\Documents and Settings\XX\Plocha\Windows-KB890830-V5.5.exe.lnk
2013-11-03 08:37 - 2012-02-26 19:26 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2013-11-03 08:25 - 2006-11-16 15:58 - 00002504 ____C C:\WINDOWS\system32\CONFIG.NT
2013-11-03 04:49 - 2006-11-21 23:36 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-11-03 04:25 - 2013-11-03 04:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2808679$
2013-11-03 04:22 - 2013-11-03 04:22 - 00000078 _____ C:\Documents and Settings\XX\Plocha\Microsoft Download Center.URL
2013-11-03 04:20 - 2008-11-17 21:56 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-11-02 15:37 - 2006-11-16 16:03 - 00000000 ___RD C:\Documents and Settings\XX\Dokumenty\Obrázky
2013-11-02 12:58 - 2013-11-02 12:54 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-11-02 12:46 - 2008-11-19 14:32 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2013-11-02 12:37 - 2006-11-21 23:46 - 00000000 ____D C:\Documents and Settings\XX\Local Settings\Data aplikací\Google
2013-11-02 12:09 - 2006-11-16 16:03 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2013-11-02 12:02 - 2013-11-02 12:02 - 00000840 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\T-Mobile Internet Manager.lnk
2013-11-02 12:02 - 2013-11-02 12:02 - 00000834 _____ C:\Documents and Settings\UpdatusUser.XX-DB3684BA31DA\Plocha\T-Mobile Internet Manager.lnk
2013-11-02 12:02 - 2013-11-02 12:02 - 00000834 _____ C:\Documents and Settings\Guest\Plocha\T-Mobile Internet Manager.lnk
2013-11-02 12:02 - 2013-11-02 12:02 - 00000834 _____ C:\Documents and Settings\Default User\Plocha\T-Mobile Internet Manager.lnk
2013-11-02 12:02 - 2012-10-14 17:00 - 00000000 ____D C:\Documents and Settings\UpdatusUser.XX-DB3684BA31DA\Plocha
2013-11-02 12:02 - 2006-11-25 14:10 - 00000000 ____D C:\Documents and Settings\Guest\Plocha
2013-11-02 12:02 - 2006-11-16 16:03 - 00000000 ____D C:\Documents and Settings\Default User\Plocha
2013-11-02 12:00 - 2012-04-27 04:40 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-02 12:00 - 2006-11-16 16:03 - 00201736 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-11-02 11:52 - 2013-11-02 11:52 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834886$
2013-11-02 11:49 - 2013-11-02 11:49 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2847311$
2013-11-02 11:45 - 2013-11-02 11:45 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862335$
2013-11-02 11:45 - 2013-11-02 11:45 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2802968$
2013-11-02 11:44 - 2013-11-02 11:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876217$
2013-11-02 11:44 - 2013-11-02 11:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2845187$
2013-11-02 11:44 - 2013-11-02 11:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-11-02 11:44 - 2013-11-02 11:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2780091$
2013-11-02 11:43 - 2013-11-02 11:43 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2864063$
2013-11-02 11:43 - 2013-11-02 11:43 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2845142_WM64$
2013-11-02 11:42 - 2013-11-02 11:42 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2850869$
2013-11-02 11:40 - 2007-01-12 22:50 - 00000000 ____D C:\WINDOWS\ie7updates
2013-11-02 11:39 - 2013-11-02 11:39 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2868038$
2013-11-02 11:39 - 2013-11-02 11:39 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2859537$
2013-11-02 11:39 - 2013-11-02 11:39 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2807986$
2013-11-02 11:39 - 2006-11-16 15:58 - 00000000 ___HD C:\WINDOWS\$hf_mig$
2013-11-02 11:38 - 2013-11-02 11:38 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2863058$
2013-11-02 11:38 - 2013-11-02 11:38 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2820917$
2013-11-02 11:38 - 2013-11-02 11:38 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2820197$
2013-11-02 11:38 - 2013-11-02 11:38 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2757638$
2013-11-02 11:38 - 2007-02-15 18:02 - 00888030 ____C C:\WINDOWS\system32\TZLog.log
2013-11-02 11:37 - 2013-11-02 11:37 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2883150$
2013-11-02 11:37 - 2013-11-02 11:37 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2849470$
2013-11-02 11:36 - 2013-11-02 11:36 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862330$
2013-11-02 11:36 - 2013-11-02 11:36 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2813345$
2013-11-02 10:32 - 2013-11-02 10:32 - 00000000 ____D C:\Program Files\T-Mobile
2013-11-02 10:32 - 2013-11-02 10:32 - 00000000 ____D C:\Documents and Settings\XX\Data aplikací\T-Mobile
2013-11-02 10:25 - 2011-09-05 08:49 - 00000000 ____D C:\Documents and Settings\XX\Local Settings\Data aplikací\GSMiscDownload
2013-11-02 10:13 - 2009-01-10 17:38 - 00000436 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2013-11-02 10:10 - 2012-12-02 13:23 - 00019472 _____ (Oti.) C:\WINDOWS\system32\Drivers\Usbnic.sys
2013-11-02 08:29 - 2013-11-02 08:29 - 00000410 _____ C:\Documents and Settings\XX\Plocha\KNIHA Pojď si sáhnout na Boha.lnk
2013-11-02 08:25 - 2013-11-02 08:25 - 00000608 _____ C:\Documents and Settings\XX\Plocha\22 Španělština_13_6_MB_21_dvojstan.pdf.lnk
2013-11-01 19:30 - 2013-11-01 19:00 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-01 12:36 - 2013-11-01 12:35 - 00000399 _____ C:\Documents and Settings\XX\Plocha\PLOCHA 1.11.2013 poledne.lnk
2013-11-01 11:55 - 2013-11-01 11:55 - 00000000 ____D C:\Documents and Settings\UpdatusUser.XX-DB3684BA31DA\Local Settings\Data aplikací\Gemfor
2013-11-01 11:55 - 2012-10-14 17:00 - 00000000 ___HD C:\Documents and Settings\UpdatusUser.XX-DB3684BA31DA\Local Settings\Data aplikací
2013-11-01 09:36 - 2013-11-01 09:36 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Gemfor
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallWdf01007$
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_juextctrl_01007.Wdf
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_jucdcecm_01007.Wdf
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2013-11-01 09:35 - 2013-11-01 09:35 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Gemfor
2013-11-01 09:35 - 2006-11-16 16:02 - 00000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikací
2013-11-01 09:34 - 2013-11-01 09:34 - 00000000 ____D C:\Program Files\Huawei
2013-10-28 09:38 - 2013-11-03 16:10 - 00101664 _____ (Glarysoft Ltd) C:\WINDOWS\system32\BootDefrag.exe
2013-10-24 03:30 - 2013-11-03 16:10 - 00013056 _____ (<Glarysoft Ltd>) C:\WINDOWS\system32\Drivers\BootDefragDriver.sys

Files to move or delete:
====================
C:\Documents and Settings\XX\2ping.bat

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2006-03-02 13:00] - [2008-04-14 07:52] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1

C:\Windows\System32\winlogon.exe
[2006-03-02 13:00] - [2008-04-14 07:52] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea

C:\Windows\System32\svchost.exe
[2006-03-02 13:00] - [2008-04-14 07:52] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93

C:\Windows\System32\services.exe
[2006-03-02 13:00] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7

C:\Windows\System32\User32.dll
[2006-03-02 13:00] - [2008-04-14 07:52] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53

C:\Windows\System32\userinit.exe
[2006-03-02 13:00] - [2008-04-14 07:52] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239

C:\Windows\System32\Drivers\volsnap.sys
[2006-03-02 13:00] - [2008-04-14 06:42] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:29.29 GB) (Free:4.11 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive e: () (Fixed) (Total:45.23 GB) (Free:9.47 GB) NTFS
Drive f: (HUAWEI) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS
Drive h: (USB13_3_11) (Removable) (Total:0.94 GB) (Free:0.48 GB) FAT

Available physical RAM: 2347.28 MB
Total physical RAM: 3071.48 MB
Percentage of memory in use: 23%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 75 GB) (Disk ID: CF0ECF0E)
Partition 1: (Active) - (Size=29 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=45 GB) - (Type=OF Extended)
Disk: 2 (Size: 964 MB) (Disk ID: 91F72D24)
Partition 1: (Active) - (Size=964 MB) - (Type=06)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GlaryInitialize 3.job => C:\Program Files\Glary Utilities 3\Initialize.exe
Task: C:\WINDOWS\Tasks\GlaryInitialize.job => C:\Program Files\Glary Utilities\initialize.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 28_09_2013 (06)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\XX\Plocha" je 90 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services
WSearch REG_DWORD 0x2
Browser REG_DWORD 0x2
wuauserv REG_DWORD 0x2
MsMpSvc REG_DWORD 0x2
JavaQuickStarterService REG_DWORD 0x2

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\DVBViewerTE\\ts_winlirc.exe"="C:\\Program Files\\DVBViewerTE\\ts_winlirc.exe:*:Enabled:ts_winlirc"
"C:\\Program Files\\Software602\\602Pro PC SUITE\\602Album\\602Album.exe"="C:\\Program Files\\Software602\\602Pro PC SUITE\\602Album\\602Album.exe:192.168.1.28/255.255.255.255:Enabled:602Album"
"C:\\WINDOWS\\system32\\sessmgr.exe"="C:\\WINDOWS\\system32\\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Mozilla Firefox\\plugin-container.exe"="C:\\Program Files\\Mozilla Firefox\\plugin-container.exe:*:Enabled:Plugin Container for Firefox"
"C:\\Documents and Settings\\XX\\Local Settings\\Data aplikac\\Google\\Google Talk Plugin\\googletalkplugin.exe"="C:\\Documents and Settings\\XX\\Local Settings\\Data aplikac\\Google\\Google Talk Plugin\\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"C:\\Program Files\\VSO\\VSO Downloader\\2\\VsoDownloader.exe"="C:\\Program Files\\VSO\\VSO Downloader\\2\\VsoDownloader.exe:*:Enabled:VSO Downloader"
"C:\\Program Files\\VideoLAN\\VLC\\vlc.exe"="C:\\Program Files\\VideoLAN\\VLC\\vlc.exe:*:Enabled:VLC media player"
"C:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"="C:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\\Documents and Settings\\XX\\Data aplikac\\ASUS\\Cross Link\\FunctModules\\{AA58F999-6D97-42c2-A69F-8CC04D18D944}\\Remote Share.exe"="C:\\Documents and Settings\\XX\\Data aplikac\\ASUS\\Cross Link\\FunctModules\\{AA58F999-6D97-42c2-A69F-8CC04D18D944}\\Remote Share.exe:*:Enabled:Remote Share Application Module"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:10.51.70.159/255.255.255.255:Enabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"5985:TCP"="5985:TCP:*:Disabled:Vzdlen sprva systmu Windows "
"80:TCP"="80:TCP:*:Disabled:Vzdlen sprva systmu Windows reim kompatibility (HTTP-In) "
"1:TCP"="1:TCP:192.168.1.28/255.255.255.255:Enabled:Zdisk"
"137:TCP"="137:TCP:*:Enabled:TCP_137"
"58687:TCP"="58687:TCP:*:Enabled:NET_TCP_LISTEN"
"58686:UDP"="58686:UDP:*:Enabled:NET_UDP_LISTEN"

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

==================== End Of Log ==============================

Addition.rar: (7.1 KiB) Staženo 33 x

JanPospisil · #2 Příspěvek od **JanPospisil** » 08 lis 2013 12:43

správné zobrazení na Win7

: Glary Utilities spravne zobrazeni.jpg (90.46 KiB) Zobrazeno 569 x

JanPospisil · #3 Příspěvek od **JanPospisil** » 08 lis 2013 12:44

chybné zobrazení na XP

: Glary Utilities zdeformovane zobrazeni.JPG (61.84 KiB) Zobrazeno 569 x

JanPospisil · #4 Příspěvek od **JanPospisil** » 08 lis 2013 12:45

chybová hláška na XP

: Glary Utilities chybova hlaska.JPG (8.94 KiB) Zobrazeno 567 x

VIRY.CZ

problém po půlroční odstávce PC - patrně malware

problém po půlroční odstávce PC - patrně malware

Re: problém po půlroční odstávce PC - patrně malware

Re: problém po půlroční odstávce PC - patrně malware

Re: problém po půlroční odstávce PC - patrně malware