Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-11-2013 01
Ran by Administrator (administrator) on NB on 10-11-2013 20:12:39
Running from C:\Documents and Settings\Administrator\Plocha
Microsoft Windows XP Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Safe Mode (with Networking)
==================== Could not list processes ===============
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ATIPTA] - C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064 2005-08-05] (ATI Technologies, Inc.)
HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.exe [15473664 2005-11-10] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\WINDOWS\Alcmtr.exe [69632 2005-05-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SynTPLpr] - C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [98394 2004-10-14] (Synaptics, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [688218 2004-10-14] (Synaptics, Inc.)
HKLM\...\Run: [AGRSMMSG] - C:\WINDOWS\agrsmmsg.exe [88203 2005-10-15] (Agere Systems)
HKLM\...\Run: [THotkey] - C:\Program Files\TOSHIBA\TOSHIBA Applet\THotkey.exe [352256 2005-12-08] (TOSHIBA)
HKLM\...\Run: [Tvs] - C:\Program Files\TOSHIBA\Tvs\TvsTray.exe [73728 2005-11-30] (TOSHIBA Corporation)
HKLM\...\Run: [TPSMain] - C:\WINDOWS\system32\TPSMain.exe [266240 2005-08-03] (TOSHIBA Corporation)
HKLM\...\Run: [NDSTray.exe] - NDSTray.exe
HKLM\...\Run: [SmoothView] - C:\Program Files\TOSHIBA\Nástroj TOSHIBA Zooming Utility\SmoothView.exe [118784 2005-05-12] (TOSHIBA Corporation)
HKLM\...\Run: [PadTouch] - C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe [1077327 2005-08-30] (TOSHIBA)
HKLM\...\Run: [DLA] - C:\WINDOWS\system32\DLA\DLACTRLW.EXE [122940 2005-08-01] (Sonic Solutions)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [GUI] - C:\D-Link\AirPlusG+\AIRPLUS.exe [1474560 2005-08-24] (D-Link)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [995176 2013-08-12] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [CFSServ.exe] - CFSServ.exe -NoClient
Winlogon\Notify\AtiExtEvent: C:\Windows\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKCU\...\Run: [TOSCDSPD] - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [65536 2005-04-12] (TOSHIBA)
HKU\Default User\...\Run: [TOSCDSPD] - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [ 2005-04-12] (TOSHIBA)
HKU\Jarda\...\Run: [TOSCDSPD] - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [ 2005-04-12] (TOSHIBA)
HKU\Jarda\...\Run: [cz.seznam.software.autoupdate] - C:\Documents and Settings\Jarda\Data aplikací\Seznam.cz\szninstall.exe [ 2013-05-16] ()
HKU\Jarda\...\Run: [cz.seznam.software.szndesktop] - C:\Documents and Settings\Jarda\Data aplikací\Seznam.cz\bin\wszndesktop.exe [ 2013-04-12] ()
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\D-Link AirPlus G+ Wireless Utility.lnk
ShortcutTarget: D-Link AirPlus G+ Wireless Utility.lnk -> C:\D-Link\AirPlusG+\AirPlus.exe (D-Link)
==================== Internet (Whitelisted) ====================
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\DLA\DLASHX_W.DLL (Sonic Solutions)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}
http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.95.33.3 10.95.33.2
Chrome:
=======
CHR Extension: (Google Docs) - C:\DOCUME~1\ADMINI~1\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\DOCUME~1\ADMINI~1\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\DOCUME~1\ADMINI~1\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\DOCUME~1\ADMINI~1\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google Wallet) - C:\DOCUME~1\ADMINI~1\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\DOCUME~1\ADMINI~1\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
========================== Services (Whitelisted) =================
S2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-08-12] (Microsoft Corporation)
S3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [71680 2008-04-14] ()
S2 TAPPSRV; C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe [35328 2005-08-10] (TOSHIBA Corp.)
S2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"
==================== Drivers (Whitelisted) ====================
S3 AR5211; C:\Windows\System32\DRIVERS\ar5211.sys [468736 2005-09-12] (Atheros Communications, Inc.)
S2 DLABOIOM; C:\Windows\System32\DLA\DLABOIOM.SYS [25628 2005-08-01] (Sonic Solutions)
R1 DLACDBHM; C:\Windows\System32\Drivers\DLACDBHM.SYS [5628 2005-07-07] (Sonic Solutions)
S2 DLADResN; C:\Windows\System32\DLA\DLADResN.SYS [2496 2005-08-01] (Sonic Solutions)
S2 DLAIFS_M; C:\Windows\System32\DLA\DLAIFS_M.SYS [86524 2005-08-01] (Sonic Solutions)
S2 DLAOPIOM; C:\Windows\System32\DLA\DLAOPIOM.SYS [14684 2005-08-01] (Sonic Solutions)
S2 DLAPoolM; C:\Windows\System32\DLA\DLAPoolM.SYS [6364 2005-08-01] (Sonic Solutions)
R1 DLARTL_N; C:\Windows\System32\Drivers\DLARTL_N.SYS [22684 2005-07-07] (Sonic Solutions)
S2 DLAUDFAM; C:\Windows\System32\DLA\DLAUDFAM.SYS [92700 2005-08-01] (Sonic Solutions)
S2 DLAUDF_M; C:\Windows\System32\DLA\DLAUDF_M.SYS [87004 2005-08-01] (Sonic Solutions)
S2 DRVNDDM; C:\Windows\System32\Drivers\DRVNDDM.SYS [40544 2005-07-07] (Sonic Solutions)
R3 Iviaspi; C:\Windows\System32\drivers\iviaspi.sys [21060 2003-09-10] (InterVideo, Inc.)
S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [211560 2013-06-18] (Microsoft Corporation)
S2 Netdevio; C:\Windows\System32\DRIVERS\netdevio.sys [12032 2003-01-29] (TOSHIBA Corporation.)
S3 PCANDIS5; C:\D-Link\AIRPLU~1\PCANDIS5.SYS [16292 2001-04-18] (Printing Communications Assoc., Inc. (PCAUSA))
R3 Pfc; C:\Windows\System32\drivers\pfc.sys [10368 2003-09-19] (Padus, Inc.)
R3 RTL8023xp; C:\Windows\System32\DRIVERS\Rtlnicxp.sys [74496 2005-03-04] (Realtek Semiconductor Corporation )
S3 rtl8139; C:\Windows\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
S3 TNET1130; C:\Windows\System32\DRIVERS\GPLUS_XP.sys [439296 2004-10-25] (Texas Instruments)
S3 TVALD; C:\Windows\System32\DRIVERS\NBSMI.sys [6144 2005-10-20] (Toshiba Corporation)
S3 Tvs; C:\Windows\System32\DRIVERS\Tvs.sys [43392 2005-11-30] (TOSHIBA Corporation)
S4 IntelIde; No ImagePath
S1 MpKsld8900add; \??\c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{091F811B-6F6A-4F71-A671-09EF93D8454F}\MpKsld8900add.sys [x]
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-10 20:12 - 2013-11-10 20:12 - 00000000 ____D C:\FRST
2013-11-10 20:10 - 2013-11-10 20:10 - 00112128 _____ (forum.viry.cz) C:\Documents and Settings\Administrator\Plocha\FRSTLauncher.exe
2013-11-10 20:09 - 2013-11-10 20:09 - 01090275 _____ (Farbar) C:\Documents and Settings\Administrator\Plocha\FRST.exe
2013-11-10 19:21 - 2013-11-10 19:21 - 00069232 _____ C:\Documents and Settings\Administrator\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2013-11-10 19:21 - 2013-11-10 19:21 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Garmin
2013-11-10 19:21 - 2013-11-10 19:21 - 00000000 ____D C:\Documents and Settings\Administrator\Data aplikací\Garmin
2013-11-10 19:10 - 2013-11-10 19:17 - 00000000 ____D C:\Documents and Settings\Administrator\Data aplikací\vlc
2013-11-10 10:09 - 2013-11-10 20:07 - 00000396 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2013-11-10 10:09 - 2013-11-10 20:07 - 00000366 ____H C:\WINDOWS\Tasks\MpIdleTask.job
2013-11-09 23:05 - 2013-11-09 23:05 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\PCHealth
2013-11-09 07:31 - 2013-11-09 07:31 - 00000060 _____ C:\WINDOWS\setupact.log
2013-11-09 07:31 - 2013-11-09 07:31 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-11-09 07:08 - 2013-11-09 07:08 - 00000682 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2013-11-09 07:08 - 2013-11-09 07:08 - 00000000 ____D C:\Program Files\CCleaner
2013-11-09 07:08 - 2013-11-09 07:08 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
2013-11-08 07:26 - 2013-11-08 07:26 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2847311$
2013-11-08 07:24 - 2013-11-08 07:24 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862335$
2013-11-08 07:01 - 2013-11-08 07:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2868038$
2013-11-08 06:53 - 2013-11-08 06:53 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2883150$
2013-11-08 06:53 - 2013-11-08 06:53 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862330$
2013-11-07 19:30 - 2013-07-03 03:12 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2013-11-07 19:30 - 2013-07-03 02:59 - 00014976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbscan.sys
2013-11-07 19:29 - 2013-07-17 01:58 - 00123008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
2013-11-07 19:29 - 2013-07-17 01:58 - 00060160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbaudio.sys
2013-11-07 19:28 - 2013-08-09 01:55 - 00144128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbport.sys
2013-11-07 19:28 - 2013-08-09 01:55 - 00032384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbccgp.sys
2013-11-07 19:28 - 2013-08-09 01:55 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2013-11-07 19:28 - 2009-03-18 12:02 - 00030336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbehci.sys
2013-11-04 20:02 - 2013-11-04 20:02 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-11-04 20:01 - 2013-11-04 20:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876315$
2013-11-04 20:01 - 2013-11-04 20:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876217$
2013-11-04 20:01 - 2013-11-04 20:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2864063$
2013-11-04 19:14 - 2013-11-08 07:23 - 00000000 ____D C:\WINDOWS\system32\MRT
==================== One Month Modified Files and Folders =======
2013-11-10 20:12 - 2013-11-10 20:12 - 00000000 ____D C:\FRST
2013-11-10 20:11 - 2013-08-19 20:30 - 00000000 ___HD C:\Documents and Settings\Administrator\Local Settings\Data aplikací
2013-11-10 20:11 - 2013-08-19 20:30 - 00000000 ____D C:\Documents and Settings\Administrator\Plocha
2013-11-10 20:10 - 2013-11-10 20:10 - 00112128 _____ (forum.viry.cz) C:\Documents and Settings\Administrator\Plocha\FRSTLauncher.exe
2013-11-10 20:09 - 2013-11-10 20:09 - 01090275 _____ (Farbar) C:\Documents and Settings\Administrator\Plocha\FRST.exe
2013-11-10 20:07 - 2013-11-10 10:09 - 00000396 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2013-11-10 20:07 - 2013-11-10 10:09 - 00000366 ____H C:\WINDOWS\Tasks\MpIdleTask.job
2013-11-10 20:07 - 2013-08-19 20:30 - 00000000 ___RD C:\Documents and Settings\Administrator\Dokumenty
2013-11-10 19:35 - 2013-08-19 20:30 - 00000178 ___SH C:\Documents and Settings\Administrator\ntuser.ini
2013-11-10 19:35 - 2005-12-19 14:19 - 01923752 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-10 19:21 - 2013-11-10 19:21 - 00069232 _____ C:\Documents and Settings\Administrator\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2013-11-10 19:21 - 2013-11-10 19:21 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Garmin
2013-11-10 19:21 - 2013-11-10 19:21 - 00000000 ____D C:\Documents and Settings\Administrator\Data aplikací\Garmin
2013-11-10 19:21 - 2013-08-19 20:30 - 00000000 __RHD C:\Documents and Settings\Administrator\Data aplikací
2013-11-10 19:17 - 2013-11-10 19:10 - 00000000 ____D C:\Documents and Settings\Administrator\Data aplikací\vlc
2013-11-10 19:14 - 2013-05-18 06:00 - 00000000 ____D C:\Documents and Settings\Jarda\Dokumenty\cviky
2013-11-10 17:41 - 2013-05-08 12:36 - 00000938 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-10 17:40 - 2013-05-08 15:30 - 00000364 _____ C:\WINDOWS\Tasks\Symantec NetDetect.job
2013-11-10 17:24 - 2013-05-08 12:39 - 00000000 ____D C:\Documents and Settings\Jarda\Data aplikací\Seznam.cz
2013-11-10 17:17 - 2005-12-20 08:11 - 00000000 ____D C:\WINDOWS\system32\Lang
2013-11-10 17:15 - 2013-05-08 12:36 - 00000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-10 17:15 - 2005-12-19 14:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-11-10 09:40 - 2005-12-19 14:23 - 00032430 _____ C:\WINDOWS\SchedLgU.Txt
2013-11-10 09:05 - 2005-12-19 15:13 - 01048430 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-09 23:48 - 2013-05-08 14:21 - 00000178 ___SH C:\Documents and Settings\Jarda\ntuser.ini
2013-11-09 23:46 - 2013-05-08 16:37 - 00000000 ____D C:\Documents and Settings\Jarda\Data aplikací\vlc
2013-11-09 23:05 - 2013-11-09 23:05 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\PCHealth
2013-11-09 23:05 - 2005-12-19 14:23 - 00000000 ___HD C:\Documents and Settings\NetworkService\Local Settings\Data aplikací
2013-11-09 20:48 - 2013-06-16 17:34 - 00000364 _____ C:\Documents and Settings\Jarda\Dokumenty\spider.sav
2013-11-09 07:31 - 2013-11-09 07:31 - 00000060 _____ C:\WINDOWS\setupact.log
2013-11-09 07:31 - 2013-11-09 07:31 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-11-09 07:19 - 2013-05-08 14:21 - 00000000 ____D C:\Documents and Settings\Jarda
2013-11-09 07:08 - 2013-11-09 07:08 - 00000682 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2013-11-09 07:08 - 2013-11-09 07:08 - 00000000 ____D C:\Program Files\CCleaner
2013-11-09 07:08 - 2013-11-09 07:08 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
2013-11-09 07:08 - 2005-12-19 15:13 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2013-11-09 07:08 - 2005-12-19 15:13 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2013-11-08 16:05 - 2013-05-08 14:21 - 00000000 ____D C:\Documents and Settings\Jarda\Plocha
2013-11-08 09:29 - 2005-12-19 14:26 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-11-08 08:06 - 2005-12-19 15:12 - 00270984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-11-08 07:34 - 2013-05-08 14:52 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-11-08 07:26 - 2013-11-08 07:26 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2847311$
2013-11-08 07:24 - 2013-11-08 07:24 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862335$
2013-11-08 07:23 - 2013-11-04 19:14 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-11-08 07:07 - 2013-05-18 14:32 - 78106760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-11-08 07:01 - 2013-11-08 07:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2868038$
2013-11-08 06:54 - 2013-05-18 05:41 - 00000000 ____D C:\WINDOWS\ie8updates
2013-11-08 06:53 - 2013-11-08 06:53 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2883150$
2013-11-08 06:53 - 2013-11-08 06:53 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862330$
2013-11-08 06:49 - 2013-05-08 16:14 - 00001917 _____ C:\WINDOWS\epplauncher.mif
2013-11-08 06:49 - 2013-05-08 16:14 - 00001698 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Security Essentials.lnk
2013-11-08 06:48 - 2013-05-08 16:13 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-11-07 18:12 - 2005-12-19 14:06 - 00001158 _____ C:\WINDOWS\system32\wpa.dbl
2013-11-04 20:16 - 2013-05-08 12:37 - 00001813 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2013-11-04 20:02 - 2013-11-04 20:02 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-11-04 20:01 - 2013-11-04 20:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876315$
2013-11-04 20:01 - 2013-11-04 20:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876217$
2013-11-04 20:01 - 2013-11-04 20:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2864063$
Some content of TEMP:
====================
C:\Documents and Settings\NetworkService\Local Settings\Temp\mpam-a6fb797a.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2005-12-19 14:06] - [2008-04-14 07:52] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1
C:\Windows\System32\winlogon.exe
[2005-12-19 14:06] - [2008-04-14 07:52] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea
C:\Windows\System32\svchost.exe
[2005-12-19 14:06] - [2008-04-14 07:52] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\Windows\System32\services.exe
[2005-12-19 14:06] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\Windows\System32\User32.dll
[2005-12-19 14:06] - [2008-04-14 07:52] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53
C:\Windows\System32\userinit.exe
[2005-12-19 14:06] - [2008-04-14 07:52] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\Windows\System32\Drivers\volsnap.sys
[2005-12-19 14:06] - [2008-04-14 06:42] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:55.89 GB) (Free:41.6 GB) NTFS ==>[Drive with boot components (Windows XP)]
Available physical RAM: 642.69 MB
Total physical RAM: 958.17 MB
Percentage of memory in use: 32%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows XP) (Size: 56 GB) (Disk ID: 82E1870F)
Partition 1: (Active) - (Size=56 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: C:\WINDOWS\Tasks\MpIdleTask.job => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: C:\WINDOWS\Tasks\Připomenutí registrace 1.job => C:\WINDOWS\system32\OOBE\oobebaln.exe
Task: C:\WINDOWS\Tasks\Připomenutí registrace 3.job => C:\WINDOWS\system32\OOBE\oobebaln.exe
Task: C:\WINDOWS\Tasks\Symantec NetDetect.job => C:\Program Files\Symantec\LiveUpdate\NDetect.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Microsoft Security Essentials (Disabled - Up to date) {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 28_09_2013 (06)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Documents and Settings\Administrator\Plocha" je 1 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Common Files\\soft602\\langserv.exe"="C:\\Program Files\\Common Files\\soft602\\langserv.exe:*:Enabled:Software602 Spell Checker"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================