porad se mi nedari udelat log z programu FRST, pri skenovani to spadne a vyhodi chybovou hlasku,co stim aby to slo oskenovat??? verzi mam v poradku,overeno pres vasi utilitu na zjisteni OS tak nevi mco delam spatne
EDIT: i kdyz to porad pada pri skenovani nejaky txt log to napsalo jestli to bude dostacujici nevim,snad je celej
LOG:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-01-2014
Ran by Pavlik (administrator) on DOMA-A8CA6F655C on 12-01-2014 17:36:03
Running from C:\Documents and Settings\Pavlik\Plocha
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Skype Technologies S.A.) C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
() C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Alcor Micro Corp.) C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
(Acronis) C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis) C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
(Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Nokia) C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
(BitTorrent, Inc.) C:\Documents and Settings\Pavlik\Data aplikací\uTorrent\utorrent.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2012-11-29] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [ATICustomerCare] - C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [311296 2010-05-04] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [NeroFilterCheck] - C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [153136 2007-03-01] (Nero AG)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2013-12-29] (AVAST Software)
HKLM\...\Run: [RTHDCPL] - C:\Windows\RTHDCPL.EXE [20145368 2013-10-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AmIcoSinglun] - C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe [279320 2013-07-12] (Alcor Micro Corp.)
HKLM\...\Run: [TrueImageMonitor.exe] - C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [2615688 2008-03-06] (Acronis)
HKLM\...\Run: [AcronisTimounterMonitor] - C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe [910744 2008-03-06] (Acronis)
HKLM\...\Run: [Acronis Scheduler2 Service] - C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [140568 2008-03-06] (Acronis)
HKLM\...\Run: [OSSelectorReinstall] - C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe [2225208 2007-03-15] ()
Winlogon\Notify\AtiExtEvent: C:\Windows\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKCU\...\Run: [AlcoholAutomount] - C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [33120 2010-08-20] (Alcohol Soft Development Team)
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-02-19] (Google Inc.)
HKCU\...\Run: [NokiaSuite.exe] - C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [1090912 2013-10-02] (Nokia)
HKCU\...\Run: [uTorrent] - C:\Documents and Settings\Pavlik\Data aplikací\uTorrent\utorrent.exe [393728 2013-10-10] (BitTorrent, Inc.)
HKCU\...\Run: [Zoner Photo Studio Autoupdate] - C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [774168 2013-02-18] (ZONER software)
HKCU\...\Run: [GUDelayStartup] - C:\Program Files\Glary Utilities 4\StartupManager.exe [37152 2014-01-06] (Glarysoft Ltd)
HKCU\...\Policies\Explorer: [NoInstrumentation] 1
HKU\Honza\...\Run: [NokiaSuite.exe] - C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [ 2013-10-02] (Nokia)
Lsa: [Authentication Packages] msv1_0 relog_ap
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://www.google.com/ie
BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\Windows\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {233C1507-6A77-46A4-9443-F871F945D258}
http://download.macromedia.com/pub/shoc ... tor/sw.cab
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3}
http://update.microsoft.com/microsoftup ... 1039521859
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SuperAdBlocker.com)
Tcpip\Parameters: [DhcpNameServer] 10.157.255.1 10.157.255.2
Chrome:
=======
CHR HomePage: hxxp://
www.seznam.cz/
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Pavlik\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\PepperFlash\11.6.602.167\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Skype Click to Call) - C:\Documents and Settings\Pavlik\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.6.0.11664_0\npSkypeChromePlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U13) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Nokia Suite Enabler Plugin) - C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\WINDOWS\system32\Adobe\Director\np32dsw_1200112.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_6_602_168.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.130.20) - C:\WINDOWS\system32\npDeployJava1.dll No File
CHR Extension: (Candy) - C:\Documents and Settings\Pavlik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\fiejadjmcgacmocgeegodfhligbpecdg\1.0_0 [2013-02-20]
CHR Extension: (avast! Online Security) - C:\Documents and Settings\Pavlik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2011.70_0 [2014-01-07]
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\Pavlik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.13.0.13771_0 [2013-10-18]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Pavlik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0 [2013-12-29]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
========================== Services (Whitelisted) =================
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [119056 2013-05-23] (SUPERAntiSpyware.com)
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [427288 2008-03-06] (Acronis)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-29] (AVAST Software)
S3 DfSdkS; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 9\DfsdkS.exe [406016 2009-08-24] (mst software GmbH, Germany)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2013-10-08] (Oracle Corporation)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
S2 StarWindServiceAE; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software)
R2 TryAndDecideService; C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe [495936 2008-03-06] ()
==================== Drivers (Whitelisted) ====================
S3 Ambfilt; C:\Windows\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
S3 asusgsb; C:\Windows\System32\drivers\asusgsb.sys [12416 2009-02-17] (ASUSTeK Computer Inc.)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2013-12-29] (AVAST Software)
R1 AswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2013-12-29] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49944 2013-10-31] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [775952 2013-12-29] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [410528 2013-12-29] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2013-12-29] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [180248 2013-12-29] ()
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdXP3.sys [103040 2012-05-14] (Advanced Micro Devices)
R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [13504 2014-01-06] (Glarysoft Ltd)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-02-20] (DT Soft Ltd)
R2 EIO_XP; C:\WINDOWS\system32\drivers\EIO_XP.sys [14336 2009-07-30] (ASUSTeK Computer Inc.)
S3 ETD; C:\Windows\System32\DRIVERS\ETD.sys [314632 2013-10-24] (ELAN Microelectronics Corp.)
R3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [56352 2013-10-24] (HP)
R3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [22928 2013-10-24] (HP)
R3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [28000 2013-10-24] (HP)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 Monfilt; C:\Windows\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SCDEmu; C:\Windows\System32\Drivers\SCDEmu.sys [113608 2013-04-15] (Power Software Ltd)
R0 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [368480 2013-12-07] (Acronis)
R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [44384 2013-12-07] (Acronis)
U3 a9uhkr9q; C:\Windows\System32\Drivers\a9uhkr9q.sys [0 ] (Microsoft Corporation)
U3 avbbr020; C:\Windows\System32\Drivers\avbbr020.sys [0 ] (Microsoft Corporation)
R1 AFD; \SystemRoot\System32\drivers\afd.sys [x]
S3 ApfiltrService; system32\DRIVERS\Apfiltr.sys [x]
R0 sptd; \SystemRoot\System32\Drivers\sptd.sys [x]
R1 VgaSave; \SystemRoot\System32\drivers\vga.sys [x]
S3 Video3D; System32\Drivers\Video3D32.sys [x]
U1 WS2IFSL;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-12 17:36 - 2014-01-12 17:36 - 00016652 _____ C:\Documents and Settings\Pavlik\Plocha\FRST.txt
2014-01-12 14:39 - 2014-01-12 14:57 - 00029696 _____ C:\Documents and Settings\Pavlik\Local Settings\Data aplikací\MSGBOX.EXE
2014-01-12 14:39 - 2014-01-12 14:39 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Pavlik\Plocha\FRSTLauncher.exe
2014-01-12 14:36 - 2014-01-12 14:36 - 00000000 ____D C:\FRST
2014-01-12 14:35 - 2014-01-12 14:35 - 01219584 _____ (Farbar) C:\Documents and Settings\Pavlik\Plocha\FRST.exe
2014-01-09 10:09 - 2014-01-09 10:09 - 00000794 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Glary Utilities 4.lnk
2014-01-09 10:09 - 2014-01-06 04:28 - 00013504 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\BootDefragDriver.sys
2014-01-06 20:16 - 2014-01-06 20:16 - 00165996 _____ C:\WINDOWS\system32\config\aswrc1389035791.rcr
2014-01-06 19:08 - 2014-01-06 19:08 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Adobe
2014-01-06 19:08 - 2014-01-06 19:08 - 00000000 ____D C:\Documents and Settings\Administrator\Data aplikací\Adobe
2014-01-04 22:42 - 2014-01-04 22:42 - 00000000 ____D C:\Documents and Settings\NetworkService\Data aplikací\Acronis
2013-12-29 22:01 - 2013-12-29 22:15 - 00001024 _____ C:\WINDOWS\system32\AutoPartNt.let
2013-12-29 21:52 - 2013-12-29 21:52 - 00000934 _____ C:\Documents and Settings\Pavlik\Plocha\AIDA64 Business Edition.lnk
2013-12-29 21:52 - 2013-12-29 21:52 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\FinalWire
2013-12-29 21:41 - 2013-12-29 21:52 - 00000000 ____D C:\Program Files\FinalWire
2013-12-29 21:36 - 2014-01-12 07:37 - 00000318 _____ C:\WINDOWS\Tasks\GlaryInitialize 4.job
2013-12-29 21:36 - 2014-01-09 10:09 - 00000788 _____ C:\Documents and Settings\All Users\Plocha\Glary Utilities 4.lnk
2013-12-29 21:36 - 2014-01-06 09:38 - 00101664 _____ (Glarysoft Ltd) C:\WINDOWS\system32\BootDefrag.exe
2013-12-29 21:36 - 2013-12-29 21:36 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Glary Utilities 4
2013-12-29 21:35 - 2014-01-09 10:09 - 00000000 ____D C:\Program Files\Glary Utilities 4
2013-12-29 21:34 - 2013-12-29 21:37 - 00000000 ____D C:\Program Files\Glary Utilities 3
2013-12-29 21:34 - 2013-12-29 21:34 - 00000126 _____ C:\Documents and Settings\Pavlik\Local Settings\Data aplikací\fusioncache.dat
2013-12-29 21:31 - 2013-12-29 21:31 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2808679$
2013-12-29 21:16 - 2013-12-29 21:16 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2013-12-29 21:16 - 2013-12-29 21:16 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2013-12-29 21:06 - 2013-12-29 21:06 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2013-12-29 21:06 - 2013-12-29 21:06 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2013-12-29 21:06 - 2013-12-29 21:06 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2013-12-29 17:26 - 2014-01-06 20:12 - 00000000 ____D C:\Documents and Settings\Pavlik
==================== One Month Modified Files and Folders =======
2014-01-12 17:36 - 2014-01-12 17:36 - 00016652 _____ C:\Documents and Settings\Pavlik\Plocha\FRST.txt
2014-01-12 17:36 - 2013-02-17 11:07 - 00000000 ____D C:\Documents and Settings\Pavlik\Data aplikací\uTorrent
2014-01-12 17:36 - 2013-02-16 16:15 - 00000466 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{E5DBF983-2779-4738-B623-6ECECF873FF2}.job
2014-01-12 17:36 - 2013-02-16 15:22 - 00000000 ____D C:\Documents and Settings\Pavlik\Plocha
2014-01-12 17:34 - 2013-02-19 15:39 - 00000000 ____D C:\Documents and Settings\Pavlik\Plocha\OPRAVA COMPU
2014-01-12 17:24 - 2013-02-16 16:00 - 00000468 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{715B3559-FF94-4902-AD0E-10C89802A9EA}.job
2014-01-12 17:19 - 2013-11-18 10:34 - 00000000 ____D C:\Program Files\ScreenshotCaptor
2014-01-12 16:50 - 2013-02-17 11:48 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-12 16:39 - 2013-02-16 16:01 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-12 14:59 - 2013-02-20 09:52 - 00000262 _____ C:\WINDOWS\wiadebug.log
2014-01-12 14:57 - 2014-01-12 14:39 - 00029696 _____ C:\Documents and Settings\Pavlik\Local Settings\Data aplikací\MSGBOX.EXE
2014-01-12 14:57 - 2013-02-16 15:22 - 00000000 ___HD C:\Documents and Settings\Pavlik\Local Settings\Data aplikací
2014-01-12 14:39 - 2014-01-12 14:39 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Pavlik\Plocha\FRSTLauncher.exe
2014-01-12 14:39 - 2013-02-16 16:02 - 00001324 _____ C:\WINDOWS\system32\d3d9caps.dat
2014-01-12 14:39 - 2013-02-16 15:21 - 00032532 _____ C:\WINDOWS\SchedLgU.Txt
2014-01-12 14:36 - 2014-01-12 14:36 - 00000000 ____D C:\FRST
2014-01-12 14:35 - 2014-01-12 14:35 - 01219584 _____ (Farbar) C:\Documents and Settings\Pavlik\Plocha\FRST.exe
2014-01-12 14:21 - 2013-02-20 09:50 - 01334119 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-12 07:52 - 2013-02-16 16:25 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-01-12 07:41 - 2013-02-16 14:53 - 00759006 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-12 07:37 - 2013-12-29 21:36 - 00000318 _____ C:\WINDOWS\Tasks\GlaryInitialize 4.job
2014-01-12 07:36 - 2013-04-17 09:02 - 00000274 _____ C:\WINDOWS\Tasks\RMAutoUpdate.job
2014-01-12 07:36 - 2013-02-20 09:52 - 00000049 _____ C:\WINDOWS\wiaservc.log
2014-01-12 07:36 - 2013-02-16 16:01 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-12 07:36 - 2013-02-16 15:22 - 00000000 ___HD C:\Documents and Settings\Pavlik\Šablony
2014-01-12 07:36 - 2013-02-16 15:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-12 07:36 - 2006-03-02 13:00 - 00012598 _____ C:\WINDOWS\system32\wpa.dbl
2014-01-11 22:26 - 2013-02-16 19:26 - 00131072 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2014-01-11 22:26 - 2013-02-16 15:22 - 00000178 ___SH C:\Documents and Settings\Pavlik\ntuser.ini
2014-01-11 19:52 - 2013-04-17 09:02 - 00000274 _____ C:\WINDOWS\Tasks\RMSchedule.job
2014-01-11 17:49 - 2013-05-06 18:57 - 00000000 ____D C:\Documents and Settings\Pavlik\Data aplikací\vlc
2014-01-10 20:02 - 2013-02-20 07:59 - 00000000 ____D C:\Documents and Settings\Pavlik\Data aplikací\Media Player Classic
2014-01-09 10:09 - 2014-01-09 10:09 - 00000794 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Glary Utilities 4.lnk
2014-01-09 10:09 - 2013-12-29 21:36 - 00000788 _____ C:\Documents and Settings\All Users\Plocha\Glary Utilities 4.lnk
2014-01-09 10:09 - 2013-12-29 21:35 - 00000000 ____D C:\Program Files\Glary Utilities 4
2014-01-09 10:09 - 2013-02-16 14:53 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-01-07 14:20 - 2013-02-16 16:01 - 00000000 ____D C:\Documents and Settings\Pavlik\Local Settings\Data aplikací\Google
2014-01-06 20:16 - 2014-01-06 20:16 - 00165996 _____ C:\WINDOWS\system32\config\aswrc1389035791.rcr
2014-01-06 20:12 - 2013-12-29 17:26 - 00000000 ____D C:\Documents and Settings\Pavlik
2014-01-06 20:12 - 2013-02-20 09:45 - 00000000 ____D C:\Documents and Settings\Administrator
2014-01-06 20:12 - 2013-02-16 16:11 - 00000000 ____D C:\Documents and Settings\Honza
2014-01-06 20:12 - 2013-02-16 15:21 - 00000000 __SHD C:\Documents and Settings\LocalService
2014-01-06 20:12 - 2013-02-16 14:44 - 00000000 __SHD C:\Documents and Settings\NetworkService
2014-01-06 19:09 - 2013-02-20 09:45 - 00000178 ___SH C:\Documents and Settings\Administrator\ntuser.ini
2014-01-06 19:08 - 2014-01-06 19:08 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Adobe
2014-01-06 19:08 - 2014-01-06 19:08 - 00000000 ____D C:\Documents and Settings\Administrator\Data aplikací\Adobe
2014-01-06 19:08 - 2013-02-20 09:45 - 00000000 __RHD C:\Documents and Settings\Administrator\Data aplikací
2014-01-06 19:08 - 2013-02-20 09:45 - 00000000 ___HD C:\Documents and Settings\Administrator\Local Settings\Data aplikací
2014-01-06 09:38 - 2013-12-29 21:36 - 00101664 _____ (Glarysoft Ltd) C:\WINDOWS\system32\BootDefrag.exe
2014-01-06 04:28 - 2014-01-09 10:09 - 00013504 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\BootDefragDriver.sys
2014-01-04 22:42 - 2014-01-04 22:42 - 00000000 ____D C:\Documents and Settings\NetworkService\Data aplikací\Acronis
2014-01-04 22:42 - 2013-02-16 14:44 - 00000000 ____D C:\Documents and Settings\NetworkService\Data aplikací
2014-01-04 17:37 - 2013-07-11 06:21 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2850851$
2014-01-04 17:07 - 2013-02-16 14:46 - 00000000 ____D C:\WINDOWS\Driver Cache
2014-01-04 12:21 - 2013-02-16 16:31 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\DriverGenius
2014-01-04 12:11 - 2013-02-20 10:10 - 00000000 ____D C:\Program Files\CCleaner
2014-01-04 10:37 - 2013-05-26 07:21 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-12-29 22:29 - 2013-02-16 19:20 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-12-29 22:15 - 2013-12-29 22:01 - 00001024 _____ C:\WINDOWS\system32\AutoPartNt.let
2013-12-29 22:14 - 2013-12-06 04:24 - 01390730 _____ (Acronis) C:\WINDOWS\system32\AutoPartNt.exe
2013-12-29 22:01 - 2013-10-24 07:55 - 00380991 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-1935655697-606747145-1801674531-1004-0.dat
2013-12-29 22:01 - 2013-02-19 23:31 - 00230734 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2013-12-29 21:52 - 2013-12-29 21:52 - 00000934 _____ C:\Documents and Settings\Pavlik\Plocha\AIDA64 Business Edition.lnk
2013-12-29 21:52 - 2013-12-29 21:52 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\FinalWire
2013-12-29 21:52 - 2013-12-29 21:41 - 00000000 ____D C:\Program Files\FinalWire
2013-12-29 21:47 - 2013-02-19 13:57 - 00000000 ____D C:\Documents and Settings\Pavlik\Nabídka Start\Programy\PC Translator
2013-12-29 21:37 - 2013-12-29 21:34 - 00000000 ____D C:\Program Files\Glary Utilities 3
2013-12-29 21:37 - 2013-08-07 06:31 - 00000075 _____ C:\DiskDefrag.log
2013-12-29 21:37 - 2013-02-20 09:27 - 00000000 ____D C:\Documents and Settings\Pavlik\Data aplikací\GlarySoft
2013-12-29 21:36 - 2013-12-29 21:36 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Glary Utilities 4
2013-12-29 21:36 - 2013-02-16 14:53 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2013-12-29 21:34 - 2013-12-29 21:34 - 00000126 _____ C:\Documents and Settings\Pavlik\Local Settings\Data aplikací\fusioncache.dat
2013-12-29 21:31 - 2013-12-29 21:31 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2808679$
2013-12-29 21:27 - 2013-02-16 14:39 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Nástroje pro správu
2013-12-29 21:26 - 2013-02-16 14:39 - 00000000 ____D C:\WINDOWS\Registration
2013-12-29 21:18 - 2013-02-16 14:52 - 00218448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-29 21:16 - 2013-12-29 21:16 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2013-12-29 21:16 - 2013-12-29 21:16 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2013-12-29 21:16 - 2013-02-16 15:56 - 00019306 _____ C:\WINDOWS\system32\TZLog.log
2013-12-29 21:16 - 2013-02-16 15:54 - 00000000 ____D C:\WINDOWS\ie8updates
2013-12-29 21:15 - 2013-07-15 12:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-29 21:10 - 2013-02-17 10:08 - 00000000 ____D C:\Documents and Settings\Pavlik\Nabídka Start\Programy
2013-12-29 21:06 - 2013-12-29 21:06 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2013-12-29 21:06 - 2013-12-29 21:06 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2013-12-29 21:06 - 2013-12-29 21:06 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2013-12-29 21:06 - 2013-02-16 15:52 - 88123800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-29 20:50 - 2013-02-17 11:48 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-29 20:50 - 2013-02-17 11:48 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-12-29 19:52 - 2013-03-24 08:38 - 00180248 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2013-12-29 19:52 - 2013-03-24 08:38 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2013-12-29 19:52 - 2013-02-16 16:25 - 00775952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2013-12-29 19:52 - 2013-02-16 16:25 - 00410528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2013-12-29 19:52 - 2013-02-16 16:25 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2013-12-29 19:52 - 2013-02-16 16:25 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2013-12-29 19:52 - 2013-02-16 16:25 - 00001762 _____ C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2013-12-29 19:52 - 2013-02-16 16:24 - 00270240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2013-12-29 19:52 - 2013-02-16 16:24 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2013-12-29 19:34 - 2013-02-16 15:33 - 00012540 _____ C:\WINDOWS\system32\wpa.bak
2013-12-29 19:32 - 2013-02-16 15:34 - 00005208 _____ C:\WINDOWS\system32\pid.PNF
2013-12-29 19:29 - 2013-05-24 05:14 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Drive
Some content of TEMP:
====================
C:\Documents and Settings\Honza\Local Settings\Temp\jre-7u45-windows-i586-iftw.exe
C:\Documents and Settings\Honza\Local Settings\Temp\NEventMessages.dll
C:\Documents and Settings\Honza\Local Settings\Temp\NOSEventMessages.dll
C:\Documents and Settings\Pavlik\Local Settings\Temp\NEventMessages.dll
C:\Documents and Settings\Pavlik\Local Settings\Temp\NOSEventMessages.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1
C:\Windows\System32\winlogon.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea
C:\Windows\System32\svchost.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\Windows\System32\services.exe
[2008-04-14 07:52] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\Windows\System32\User32.dll
[2008-04-14 07:52] - [2008-04-14 07:52] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53
C:\Windows\System32\userinit.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2008-04-14 06:42] - [2008-04-14 06:42] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
==================== End Of Log ============================
jako admin
