Nefunkční aktualizace Win7, problém se spouštěním
Napsal: 07 úno 2014 21:53
Dobrý den,
prosím o kontrolu logu. Nejedou aktualizace Windows, stále provádí vyhledání aktualizací (klidně 3 hodiny) a nedokončí.
Jednou byl problém se spuštěním systému, proběhla oprava a nyní bez problému.
Před spuštěním FRST jsem spustil AdwCleaner. Oba logy posílám.
Děkuji.
# AdwCleaner v3.018 - Report created 07/02/2014 at 21:17:45
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Admin - HANA-PC
# Running from : D:\HANA\Desktop\AdwCleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16428
*************************
AdwCleaner[R0].txt - [688 octets] - [07/02/2014 21:16:46]
AdwCleaner[S0].txt - [614 octets] - [07/02/2014 21:17:45]
########## EOF - \AdwCleaner\AdwCleaner[S0].txt - [673 octets] ##########
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-02-2014
Ran by Admin (administrator) on HANA-PC on 07-02-2014 21:44:54
Running from D:\HANA\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.FENIX2008\MSSQL\Binn\sqlservr.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_12_0_0_44_ActiveX.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10920552 2010-06-22] (Realtek Semiconductor)
HKLM\...\Run: [ETDWare] - C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [860040 2011-01-05] (Acer Incorporated)
HKLM\...\Run: [COMODO Internet Security] - C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [9569096 2012-03-11] (COMODO)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [266496 2011-06-17] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252296 2012-01-17] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-02-07] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Runonce: [MSPCLOCK] - rundll32.exe streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D0-A5D6-28DB04C10000},{53172480-4791-11D0-A5D6-28DB04C10000}
HKLM\...\Runonce: [MSPQM] - rundll32.exe streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196}
HKLM\...\Runonce: [MSKSSRV] - rundll32.exe streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196}
HKLM\...\Runonce: [MSTEE.CxTransform] - rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install
HKLM\...\Runonce: [MSTEE.Splitter] - rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install
HKLM\...\RunOnce: [*WerKernelReporting] - %SYSTEMROOT%\SYSTEM32\WerFault.exe -k -rq [415232 2009-07-14] (Microsoft Corporation)
HKLM\...\Runonce: [WDM_DRMKAUD] - rundll32.exe streamci,StreamingDeviceSetup {EEC12DB6-AD9C-4168-8658-B03DAEF417FE},{ABD61E00-9350-47e2-A632-4438B90C6641},{FFBB6E3F-CCFE-4D84-90D9-421418B03A8E},C:\Windows\inf\WDMAUDIO.inf,WDM_DRMKAUD.Interface.Install
HKLM-x32\...\Runonce: [aswAhAScr.dll] - "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\AhAScr.dll" [X]
HKLM-x32\...\Runonce: [aswasOutExt.dll] - "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\asOutExt.dll" [X]
HKLM-x32\...\Runonce: [aswasOutExt64.dll] - "C:\Program Files\AVAST Software\Avast\aswRegSvr64.exe" "C:\Program Files\AVAST Software\Avast\asOutExt64.dll" [X]
HKLM-x32\...\RunOnce: [20131224] - C:\Program Files\AVAST Software\Avast\setup\emupdate\5e7b6c35-d0e9-4e50-823b-c0720dd8a0b6.exe /check [181136 2014-01-25] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-19\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-20\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-21-2383568669-190221110-2438871736-1004\...\RunOnce: [Report] - \AdwCleaner\AdwCleaner[S0].txt [750 2014-02-07] ()
AppInit_DLLs: C:\Windows\system32\guard64.dll => C:\Windows\system32\guard64.dll [389840 2012-03-11] (COMODO)
AppInit_DLLs-x32: C:\Windows\SysWOW64\guard32.dll => C:\Windows\SysWOW64\guard32.dll [301224 2012-03-11] (COMODO)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Tcpip\Parameters: [DhcpNameServer] 10.93.0.1
Tcpip\..\Interfaces\{70D8D754-C273-4A6C-93E9-091BAC19818F}: [NameServer]8.26.56.26,156.154.70.22
Tcpip\..\Interfaces\{B215D795-439A-49B2-83E6-15AF360D2A71}: [NameServer]8.26.56.26,156.154.70.22
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-07] (AVAST Software)
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2815496 2012-03-11] (COMODO)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 MSSQL$FENIX2008; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.FENIX2008\MSSQL\Binn\sqlservr.exe [40999448 2009-09-07] (Microsoft Corporation)
S4 SQLAgent$FENIX2008; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.FENIX2008\MSSQL\Binn\SQLAGENT.EXE [369688 2009-09-07] (Microsoft Corporation)
S2 McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [X]
==================== Drivers (Whitelisted) ====================
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-07] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-29] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-29] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-07] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-07] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-07] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-02-07] ()
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [577824 2012-03-11] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [43248 2012-03-11] (COMODO)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [93200 2012-02-03] (COMODO)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-07 21:44 - 2014-02-07 21:44 - 00000000 ____D () C:\FRST
2014-02-07 21:41 - 2014-02-07 21:42 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2014-02-07 21:03 - 2014-02-07 21:03 - 00000000 ____D () C:\Users\Public\Documents\sun
2014-02-07 20:19 - 2014-02-07 20:19 - 00001468 _____ () C:\Users\Public\Desktop\LibreOffice 4.2.lnk
2014-02-07 20:17 - 2014-02-07 20:19 - 00000000 ____D () C:\Program Files (x86)\LibreOffice 4
2014-02-07 18:05 - 2014-02-07 18:05 - 00002772 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-02-07 18:05 - 2014-02-07 18:05 - 00000786 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-07 18:04 - 2014-02-07 18:05 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-07 13:24 - 2014-02-07 13:23 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-02-07 13:21 - 2014-02-07 14:22 - 00001844 _____ () C:\Users\Public\Desktop\HELIOS Fenix - Spouštěč úloh.lnk
2014-02-07 12:59 - 2014-02-07 14:31 - 00000000 ____D () C:\Inst730.001
2014-01-28 16:31 - 2014-01-28 16:31 - 00773968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100.dll
2014-01-28 16:31 - 2014-01-28 16:31 - 00421200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp100.dll
==================== One Month Modified Files and Folders =======
2014-02-07 21:44 - 2014-02-07 21:44 - 00000000 ____D () C:\FRST
2014-02-07 21:44 - 2011-10-11 22:56 - 01989047 _____ () C:\Windows\WindowsUpdate.log
2014-02-07 21:43 - 2013-10-09 12:49 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-07 21:42 - 2014-02-07 21:41 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2014-02-07 21:26 - 2009-07-14 05:45 - 00016976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-07 21:26 - 2009-07-14 05:45 - 00016976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-07 21:21 - 2013-12-09 15:16 - 00000936 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2383568669-190221110-2438871736-1003UA.job
2014-02-07 21:19 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-07 21:19 - 2009-07-14 05:51 - 00092807 _____ () C:\Windows\setupact.log
2014-02-07 21:15 - 2012-07-13 14:34 - 00070808 _____ () C:\Users\HANA\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-07 21:07 - 2009-07-14 05:45 - 00325664 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-07 21:03 - 2014-02-07 21:03 - 00000000 ____D () C:\Users\Public\Documents\sun
2014-02-07 21:02 - 2012-07-13 16:24 - 00000000 ____D () C:\Users\HANA\AppData\Roaming\LibreOffice
2014-02-07 20:19 - 2014-02-07 20:19 - 00001468 _____ () C:\Users\Public\Desktop\LibreOffice 4.2.lnk
2014-02-07 20:19 - 2014-02-07 20:17 - 00000000 ____D () C:\Program Files (x86)\LibreOffice 4
2014-02-07 19:37 - 2012-07-13 16:10 - 00000000 ____D () C:\Program Files (x86)\LibreOffice 3.5
2014-02-07 19:36 - 2010-11-21 08:16 - 00000000 ____D () C:\Windows\ShellNew
2014-02-07 18:27 - 2013-12-30 20:39 - 00001983 _____ () C:\Users\Public\Desktop\Adobe Reader X.lnk
2014-02-07 18:22 - 2012-09-14 19:38 - 00000000 ____D () C:\Users\HANA\AppData\Roaming\Skype
2014-02-07 18:05 - 2014-02-07 18:05 - 00002772 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-02-07 18:05 - 2014-02-07 18:05 - 00000786 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-07 18:05 - 2014-02-07 18:04 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-07 17:58 - 2012-07-13 16:32 - 00000000 ____D () C:\Users\Amatéři
2014-02-07 15:35 - 2011-10-11 23:44 - 00732044 _____ () C:\Windows\system32\perfh005.dat
2014-02-07 15:35 - 2011-10-11 23:44 - 00164716 _____ () C:\Windows\system32\perfc005.dat
2014-02-07 15:35 - 2009-07-14 06:13 - 01760838 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-07 15:33 - 2012-07-13 16:00 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-02-07 15:30 - 2010-11-21 04:47 - 00108246 _____ () C:\Windows\PFRO.log
2014-02-07 14:36 - 2012-08-21 07:26 - 00000000 ____D () C:\JASU_VYKAZY_MŠII
2014-02-07 14:35 - 2012-08-21 07:26 - 00000000 ____D () C:\JASU_VYKAZY
2014-02-07 14:31 - 2014-02-07 12:59 - 00000000 ____D () C:\Inst730.001
2014-02-07 14:22 - 2014-02-07 13:21 - 00001844 _____ () C:\Users\Public\Desktop\HELIOS Fenix - Spouštěč úloh.lnk
2014-02-07 13:35 - 2012-08-21 07:25 - 00000000 ____D () C:\Inst710.003
2014-02-07 13:24 - 2013-10-29 18:35 - 00001930 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-02-07 13:23 - 2014-02-07 13:24 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-02-07 13:23 - 2013-07-10 17:29 - 00207904 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-02-07 13:23 - 2012-07-13 16:00 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-02-07 13:23 - 2012-07-13 16:00 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-02-07 13:23 - 2012-07-13 16:00 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-02-07 13:23 - 2012-07-13 16:00 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-02-07 13:23 - 2012-07-13 16:00 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-02-07 13:06 - 2012-08-21 07:39 - 00000000 ____D () C:\Program Files (x86)\Asseco
2014-02-06 22:09 - 2012-07-13 15:09 - 00000000 ____D () C:\Users\Admin
2014-02-06 22:09 - 2012-07-13 14:33 - 00000000 ____D () C:\Users\HANA
2014-02-06 22:09 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2014-02-06 22:08 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-02-06 21:44 - 2013-07-02 13:53 - 00001054 _____ () C:\Users\Public\Desktop\TeamViewer 8.lnk
2014-02-06 15:43 - 2013-10-09 12:49 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-06 15:43 - 2013-10-09 12:49 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-06 15:43 - 2011-09-08 12:56 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-06 15:21 - 2013-12-09 15:16 - 00000914 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2383568669-190221110-2438871736-1003Core.job
2014-02-02 13:08 - 2012-09-02 12:27 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-01-28 16:31 - 2014-01-28 16:31 - 00773968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100.dll
2014-01-28 16:31 - 2014-01-28 16:31 - 00421200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp100.dll
Some content of TEMP:
====================
C:\Users\Admin\AppData\Local\Temp\fx-runtime.exe
C:\Users\Admin\AppData\Local\Temp\MSETUP4.EXE
C:\Users\Admin\AppData\Local\Temp\Quarantine.exe
C:\Users\Admin\AppData\Local\Temp\_inst1.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-02 16:59
==================== End Of Log ============================
prosím o kontrolu logu. Nejedou aktualizace Windows, stále provádí vyhledání aktualizací (klidně 3 hodiny) a nedokončí.
Jednou byl problém se spuštěním systému, proběhla oprava a nyní bez problému.
Před spuštěním FRST jsem spustil AdwCleaner. Oba logy posílám.
Děkuji.
# AdwCleaner v3.018 - Report created 07/02/2014 at 21:17:45
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Admin - HANA-PC
# Running from : D:\HANA\Desktop\AdwCleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16428
*************************
AdwCleaner[R0].txt - [688 octets] - [07/02/2014 21:16:46]
AdwCleaner[S0].txt - [614 octets] - [07/02/2014 21:17:45]
########## EOF - \AdwCleaner\AdwCleaner[S0].txt - [673 octets] ##########
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-02-2014
Ran by Admin (administrator) on HANA-PC on 07-02-2014 21:44:54
Running from D:\HANA\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.FENIX2008\MSSQL\Binn\sqlservr.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_12_0_0_44_ActiveX.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10920552 2010-06-22] (Realtek Semiconductor)
HKLM\...\Run: [ETDWare] - C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [860040 2011-01-05] (Acer Incorporated)
HKLM\...\Run: [COMODO Internet Security] - C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [9569096 2012-03-11] (COMODO)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [266496 2011-06-17] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252296 2012-01-17] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-02-07] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Runonce: [MSPCLOCK] - rundll32.exe streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D0-A5D6-28DB04C10000},{53172480-4791-11D0-A5D6-28DB04C10000}
HKLM\...\Runonce: [MSPQM] - rundll32.exe streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196}
HKLM\...\Runonce: [MSKSSRV] - rundll32.exe streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196}
HKLM\...\Runonce: [MSTEE.CxTransform] - rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install
HKLM\...\Runonce: [MSTEE.Splitter] - rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install
HKLM\...\RunOnce: [*WerKernelReporting] - %SYSTEMROOT%\SYSTEM32\WerFault.exe -k -rq [415232 2009-07-14] (Microsoft Corporation)
HKLM\...\Runonce: [WDM_DRMKAUD] - rundll32.exe streamci,StreamingDeviceSetup {EEC12DB6-AD9C-4168-8658-B03DAEF417FE},{ABD61E00-9350-47e2-A632-4438B90C6641},{FFBB6E3F-CCFE-4D84-90D9-421418B03A8E},C:\Windows\inf\WDMAUDIO.inf,WDM_DRMKAUD.Interface.Install
HKLM-x32\...\Runonce: [aswAhAScr.dll] - "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\AhAScr.dll" [X]
HKLM-x32\...\Runonce: [aswasOutExt.dll] - "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\asOutExt.dll" [X]
HKLM-x32\...\Runonce: [aswasOutExt64.dll] - "C:\Program Files\AVAST Software\Avast\aswRegSvr64.exe" "C:\Program Files\AVAST Software\Avast\asOutExt64.dll" [X]
HKLM-x32\...\RunOnce: [20131224] - C:\Program Files\AVAST Software\Avast\setup\emupdate\5e7b6c35-d0e9-4e50-823b-c0720dd8a0b6.exe /check [181136 2014-01-25] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-19\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-20\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-21-2383568669-190221110-2438871736-1004\...\RunOnce: [Report] - \AdwCleaner\AdwCleaner[S0].txt [750 2014-02-07] ()
AppInit_DLLs: C:\Windows\system32\guard64.dll => C:\Windows\system32\guard64.dll [389840 2012-03-11] (COMODO)
AppInit_DLLs-x32: C:\Windows\SysWOW64\guard32.dll => C:\Windows\SysWOW64\guard32.dll [301224 2012-03-11] (COMODO)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Tcpip\Parameters: [DhcpNameServer] 10.93.0.1
Tcpip\..\Interfaces\{70D8D754-C273-4A6C-93E9-091BAC19818F}: [NameServer]8.26.56.26,156.154.70.22
Tcpip\..\Interfaces\{B215D795-439A-49B2-83E6-15AF360D2A71}: [NameServer]8.26.56.26,156.154.70.22
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-07] (AVAST Software)
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2815496 2012-03-11] (COMODO)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 MSSQL$FENIX2008; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.FENIX2008\MSSQL\Binn\sqlservr.exe [40999448 2009-09-07] (Microsoft Corporation)
S4 SQLAgent$FENIX2008; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.FENIX2008\MSSQL\Binn\SQLAGENT.EXE [369688 2009-09-07] (Microsoft Corporation)
S2 McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [X]
==================== Drivers (Whitelisted) ====================
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-07] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-29] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-29] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-07] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-07] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-07] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-02-07] ()
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [577824 2012-03-11] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [43248 2012-03-11] (COMODO)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [93200 2012-02-03] (COMODO)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-07 21:44 - 2014-02-07 21:44 - 00000000 ____D () C:\FRST
2014-02-07 21:41 - 2014-02-07 21:42 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2014-02-07 21:03 - 2014-02-07 21:03 - 00000000 ____D () C:\Users\Public\Documents\sun
2014-02-07 20:19 - 2014-02-07 20:19 - 00001468 _____ () C:\Users\Public\Desktop\LibreOffice 4.2.lnk
2014-02-07 20:17 - 2014-02-07 20:19 - 00000000 ____D () C:\Program Files (x86)\LibreOffice 4
2014-02-07 18:05 - 2014-02-07 18:05 - 00002772 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-02-07 18:05 - 2014-02-07 18:05 - 00000786 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-07 18:04 - 2014-02-07 18:05 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-07 13:24 - 2014-02-07 13:23 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-02-07 13:21 - 2014-02-07 14:22 - 00001844 _____ () C:\Users\Public\Desktop\HELIOS Fenix - Spouštěč úloh.lnk
2014-02-07 12:59 - 2014-02-07 14:31 - 00000000 ____D () C:\Inst730.001
2014-01-28 16:31 - 2014-01-28 16:31 - 00773968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100.dll
2014-01-28 16:31 - 2014-01-28 16:31 - 00421200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp100.dll
==================== One Month Modified Files and Folders =======
2014-02-07 21:44 - 2014-02-07 21:44 - 00000000 ____D () C:\FRST
2014-02-07 21:44 - 2011-10-11 22:56 - 01989047 _____ () C:\Windows\WindowsUpdate.log
2014-02-07 21:43 - 2013-10-09 12:49 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-07 21:42 - 2014-02-07 21:41 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2014-02-07 21:26 - 2009-07-14 05:45 - 00016976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-07 21:26 - 2009-07-14 05:45 - 00016976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-07 21:21 - 2013-12-09 15:16 - 00000936 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2383568669-190221110-2438871736-1003UA.job
2014-02-07 21:19 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-07 21:19 - 2009-07-14 05:51 - 00092807 _____ () C:\Windows\setupact.log
2014-02-07 21:15 - 2012-07-13 14:34 - 00070808 _____ () C:\Users\HANA\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-07 21:07 - 2009-07-14 05:45 - 00325664 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-07 21:03 - 2014-02-07 21:03 - 00000000 ____D () C:\Users\Public\Documents\sun
2014-02-07 21:02 - 2012-07-13 16:24 - 00000000 ____D () C:\Users\HANA\AppData\Roaming\LibreOffice
2014-02-07 20:19 - 2014-02-07 20:19 - 00001468 _____ () C:\Users\Public\Desktop\LibreOffice 4.2.lnk
2014-02-07 20:19 - 2014-02-07 20:17 - 00000000 ____D () C:\Program Files (x86)\LibreOffice 4
2014-02-07 19:37 - 2012-07-13 16:10 - 00000000 ____D () C:\Program Files (x86)\LibreOffice 3.5
2014-02-07 19:36 - 2010-11-21 08:16 - 00000000 ____D () C:\Windows\ShellNew
2014-02-07 18:27 - 2013-12-30 20:39 - 00001983 _____ () C:\Users\Public\Desktop\Adobe Reader X.lnk
2014-02-07 18:22 - 2012-09-14 19:38 - 00000000 ____D () C:\Users\HANA\AppData\Roaming\Skype
2014-02-07 18:05 - 2014-02-07 18:05 - 00002772 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-02-07 18:05 - 2014-02-07 18:05 - 00000786 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-07 18:05 - 2014-02-07 18:04 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-07 17:58 - 2012-07-13 16:32 - 00000000 ____D () C:\Users\Amatéři
2014-02-07 15:35 - 2011-10-11 23:44 - 00732044 _____ () C:\Windows\system32\perfh005.dat
2014-02-07 15:35 - 2011-10-11 23:44 - 00164716 _____ () C:\Windows\system32\perfc005.dat
2014-02-07 15:35 - 2009-07-14 06:13 - 01760838 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-07 15:33 - 2012-07-13 16:00 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-02-07 15:30 - 2010-11-21 04:47 - 00108246 _____ () C:\Windows\PFRO.log
2014-02-07 14:36 - 2012-08-21 07:26 - 00000000 ____D () C:\JASU_VYKAZY_MŠII
2014-02-07 14:35 - 2012-08-21 07:26 - 00000000 ____D () C:\JASU_VYKAZY
2014-02-07 14:31 - 2014-02-07 12:59 - 00000000 ____D () C:\Inst730.001
2014-02-07 14:22 - 2014-02-07 13:21 - 00001844 _____ () C:\Users\Public\Desktop\HELIOS Fenix - Spouštěč úloh.lnk
2014-02-07 13:35 - 2012-08-21 07:25 - 00000000 ____D () C:\Inst710.003
2014-02-07 13:24 - 2013-10-29 18:35 - 00001930 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-02-07 13:23 - 2014-02-07 13:24 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-02-07 13:23 - 2013-07-10 17:29 - 00207904 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-02-07 13:23 - 2012-07-13 16:00 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-02-07 13:23 - 2012-07-13 16:00 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-02-07 13:23 - 2012-07-13 16:00 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-02-07 13:23 - 2012-07-13 16:00 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-02-07 13:23 - 2012-07-13 16:00 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-02-07 13:06 - 2012-08-21 07:39 - 00000000 ____D () C:\Program Files (x86)\Asseco
2014-02-06 22:09 - 2012-07-13 15:09 - 00000000 ____D () C:\Users\Admin
2014-02-06 22:09 - 2012-07-13 14:33 - 00000000 ____D () C:\Users\HANA
2014-02-06 22:09 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2014-02-06 22:08 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-02-06 21:44 - 2013-07-02 13:53 - 00001054 _____ () C:\Users\Public\Desktop\TeamViewer 8.lnk
2014-02-06 15:43 - 2013-10-09 12:49 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-06 15:43 - 2013-10-09 12:49 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-06 15:43 - 2011-09-08 12:56 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-06 15:21 - 2013-12-09 15:16 - 00000914 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2383568669-190221110-2438871736-1003Core.job
2014-02-02 13:08 - 2012-09-02 12:27 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-01-28 16:31 - 2014-01-28 16:31 - 00773968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100.dll
2014-01-28 16:31 - 2014-01-28 16:31 - 00421200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp100.dll
Some content of TEMP:
====================
C:\Users\Admin\AppData\Local\Temp\fx-runtime.exe
C:\Users\Admin\AppData\Local\Temp\MSETUP4.EXE
C:\Users\Admin\AppData\Local\Temp\Quarantine.exe
C:\Users\Admin\AppData\Local\Temp\_inst1.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-02 16:59
==================== End Of Log ============================
