VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosba o kontrolu logu

https://forum.viry.cz:443/viewtopic.php?t=140730

Stránka 1 z 1

Prosba o kontrolu logu

Napsal: 13 říj 2014 19:06
od Tomas80
PC se mi čas od času při nějakm úkolu na cca 10 vteřin zasekne a nic dlšího nezpracovává. Prosím o kontrolu logu, jestli ho něco neužírá. Díky

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-10-2014 01
Ran by T (administrator) on SELI-KANCELAR1 on 13-10-2014 20:01:03
Running from C:\Documents and Settings\T\Plocha
Loaded Profiles: Milan & T & UpdatusUser (Available profiles: Milan & T & UpdatusUser & MH & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
(Crawler.com) C:\Program Files\Spyware Terminator\sp_rsser.exe
() C:\Program Files\Synology Data Replicator 3\SynoDrService.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
() C:\WINDOWS\system32\spool\drivers\w32x86\3\spe__pi.exe
() C:\Ksoft\KOSYS\KOSYS.EXE
(Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
(Microsoft Corporation) C:\WINDOWS\system32\logonui.exe
(Microsoft Corporation) C:\WINDOWS\system32\logon.scr
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
() C:\Ksoft\KOSYS\KOSYS.EXE
(Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Synology Inc.) C:\Program Files\Synology Data Replicator 3\Backup.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432 2014-10-10] (AVAST Software)
HKU\S-1-5-21-1390067357-1454471165-725345543-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21650016 2014-07-24] (Skype Technologies S.A.)
HKU\S-1-5-21-1390067357-1454471165-725345543-1004\...\Run: [Data Replicator 3] => C:\Program Files\Synology Data Replicator 3\Backup.exe [11605576 2013-10-09] (Synology Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\VIA RAID TOOL.lnk
ShortcutTarget: VIA RAID TOOL.lnk -> C:\Program Files\VIA\RAID\raid_tool.exe (VIA Technologies)
Startup: C:\Documents and Settings\Milan \Nabídka Start\Programy\Po spuštění\start.lnk
ShortcutTarget: start.lnk -> C:\Documents and Settings\Milan \nwb65w2t16\92486.vbs (No File)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
URLSearchHook: HKCU - (No Name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - No File
SearchScopes: HKCU - {9701B515-5994-4A4E-9002-C253FA5D7AF5} URL = http://search.yahoo.com/search?fr=chr-g ... =302398&p={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
DPF: {336C9D79-263A-4D75-AA7C-60DAF945AE67} http://62.209.202.134:7001/classes/Ovis ... V_H264.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/v ... .2.5.7.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 7155813140
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} https://www.mojedatovaschranka.cz/stati ... ?3,16,13,0
DPF: {6BA530D8-94B2-49E0-AC55-70899582FE1F} http://192.168.1.225/AV718.cab
DPF: {79EE81BD-6194-4240-A04F-131A81513DCB} http://192.168.1.31/Media.CAB
DPF: {7A24CAC8-8549-4698-85A2-AFF61D4427F7} http://192.168.1.223/classes/AlfaCamV.cab
DPF: {87D48502-D1FF-4D25-B66C-9DA4F7CB2722} http://192.168.1.227/classes/CamV_H264.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {8FEED82A-42A6-4117-A803-7EC3EB9339E0} http://62.209.202.134:6001/plugin/client.cab
DPF: {A93B47FD-9BF6-4DA8-97FC-9270B9D64A6C} http://192.168.1.8/plugin/h263ctrl.cab
DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} https://snzr.ksrzis.cz/nsnzr/ozn/capicom.cab
DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {DB87A30F-4960-4247-9672-6A0D550EECE8} http://192.168.1.31/SVRFind.CAB
DPF: {FF3BA0DA-79B5-4110-8FAC-C402D85AAEDA} http://62.209.202.134:6000/view.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{A4B689E6-71A9-4A5E-9F1F-FA3868115F32}: [NameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\T\Data aplikací\Mozilla\Firefox\Profiles\u5h6kkxe.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin HKCU: @kb-ext.cz/PKIComponent -> C:\Documents and Settings\T\Data aplikací\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll (Komerční banka, a.s.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-11-03]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-05-23]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-10]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-10-10]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-10-10] (AVAST Software)
R2 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2009-11-03] (Sun Microsystems, Inc.)
R2 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504 2011-05-25] (NVIDIA Corporation)
S3 Samsung UPD Service; C:\WINDOWS\system32\SUPDSvc.exe [127656 2009-03-24] (Samsung Electronics CO., LTD.)
R2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.) [File not signed]
R2 sp_rssrv; C:\Program Files\Spyware Terminator\sp_rsser.exe [487936 2009-10-19] (Crawler.com) [File not signed]
R2 SynoDrService; c:\Program Files\Synology Data Replicator 3\SynoDrService.exe [251464 2013-10-09] ()
R3 TermService; C:\windows\System32\termsrv.dll [295936 2010-03-16] (Microsoft Corporation) [File not signed]
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\windows\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-10-10] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-10-10] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr.sys [55112 2014-10-10] (AVAST Software)
S0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-10-10] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [779536 2014-10-10] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [414520 2014-10-10] (AVAST Software)
R1 aswTdi; C:\windows\system32\drivers\aswTdi.sys [57800 2014-10-10] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [192352 2014-10-10] ()
R2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [41984 2006-09-18] (Samsung Electronics Co., Ltd.) [File not signed]
R1 Ext2fs; C:\windows\System32\DRIVERS\ext2fs.sys [181120 2008-09-25] (Stephan Schreiber) [File not signed]
S3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [25280 2008-11-19] (LogMeIn, Inc.)
S3 hipeer20; C:\windows\System32\DRIVERS\remobo32.sys [26112 2009-04-22] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 Huawei; C:\windows\System32\DRIVERS\ewdcsc.sys [24448 2009-08-18] (Huawei Tech. Co., Ltd.)
S3 hwusbfake; C:\windows\System32\DRIVERS\ewusbfake.sys [100736 2009-11-04] (Huawei Technologies Co., Ltd.)
R1 IfsMount; C:\windows\System32\DRIVERS\ifsmount.sys [51072 2008-08-28] (Stephan Schreiber) [File not signed]
R0 JRAID; C:\windows\System32\DRIVERS\jraid.sys [83296 2008-11-04] (JMicron Technology Corp.)
S3 Monfilt; C:\windows\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 rt2870; C:\windows\System32\DRIVERS\rt2870.sys [709248 2009-03-04] (Ralink Technology, Corp.) [File not signed]
S4 RTL8023xp; C:\windows\System32\DRIVERS\DLKRTXP.SYS [83456 2006-07-31] (D-Link Corp. )
S3 SONYPVU1; C:\windows\System32\DRIVERS\SONYPVU1.SYS [7552 2001-08-17] (Sony Corporation)
R1 sp_rsdrv2; C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [142592 2009-10-19] () [File not signed]
S4 viaagp1; C:\windows\System32\DRIVERS\viaagp1.sys [26880 2002-12-27] (VIA Technologies, Inc.)
R0 viamraid; C:\windows\System32\DRIVERS\viamraid.sys [104064 2007-03-19] (VIA Technologies inc,.ltd) [File not signed]
R0 viasraid; C:\windows\System32\drivers\viasraid.sys [77312 2003-11-01] (VIA Technologies inc,.ltd)
R0 videX32; C:\windows\System32\DRIVERS\videX32.sys [9216 2007-03-29] (VIA Technologies, Inc.)
S4 yukonwxp; C:\windows\System32\DRIVERS\yukonwxp.sys [174464 2003-11-28] (Marvell Semiconductor Inc.)
S3 ZDPSp50; C:\windows\System32\Drivers\ZDPSp50.sys [17664 2004-10-25] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 catchme; \??\C:\DOCUME~1\MILANL~1\LOCALS~1\Temp\catchme.sys [X]
S4 IntelIde; No ImagePath
S3 PCASp50; System32\Drivers\PCASp50.sys [X]
U5 ScsiPort; C:\windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 ZDCndis5; \??\C:\WINDOWS\system32\ZDCndis5.SYS [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-13 19:59 - 2014-10-13 20:01 - 00014721 _____ () C:\Documents and Settings\T\Plocha\FRST.txt
2014-10-13 19:59 - 2014-10-13 20:01 - 00000000 ____D () C:\FRST
2014-10-13 19:58 - 2014-10-13 19:58 - 01101824 _____ (Farbar) C:\Documents and Settings\T\Plocha\FRST.exe
2014-10-13 19:54 - 2014-10-13 19:54 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\Data aplikací\Temp
2014-10-13 19:53 - 2014-10-13 19:53 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\AVAST Software
2014-10-13 13:42 - 2014-10-13 13:43 - 00061440 _____ () C:\Documents and Settings\Milan \Plocha\ok - Podklady BNG 10-2014.xls
2014-10-12 20:02 - 2014-10-12 20:02 - 00000857 _____ () C:\Documents and Settings\All Users\Plocha\TeamViewer 9.lnk
2014-10-12 20:02 - 2014-10-12 20:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 9
2014-10-10 23:13 - 2014-10-10 23:13 - 00000000 ____D () C:\Documents and Settings\Milan \Local Settings\Data aplikací\Temp
2014-10-10 23:12 - 2014-10-10 23:12 - 00000000 ____D () C:\Documents and Settings\Milan \Data aplikací\AVAST Software
2014-10-10 23:11 - 2014-10-13 11:11 - 00000380 ____H () C:\windows\Tasks\avast! Emergency Update.job
2014-10-10 23:11 - 2014-10-10 23:11 - 00779536 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00414520 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00414392 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys.1412975509359
2014-10-10 23:11 - 2014-10-10 23:11 - 00276432 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-10-10 23:11 - 2014-10-10 23:11 - 00192352 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00067824 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00057800 _____ (AVAST Software) C:\windows\system32\Drivers\aswTdi.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00055112 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00049944 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-10-10 23:11 - 2014-10-10 23:11 - 00024184 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00001775 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\windows\jumpshot.com
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-10-10 23:10 - 2014-10-10 23:10 - 00000000 ____D () C:\Program Files\AVAST Software
2014-10-10 23:09 - 2014-10-10 23:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-10-10 23:06 - 2014-10-10 23:06 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SUPERAntiSpyware.com
2014-10-09 23:10 - 2014-10-09 23:10 - 00016384 _____ () C:\Documents and Settings\Milan \Plocha\Kopie - PACKAGING STOCK 20140929.xls
2014-10-03 12:37 - 2014-10-03 12:37 - 00013824 _____ () C:\Documents and Settings\Milan \Plocha\Piasten 400g Doulton počty.xls
2014-10-03 08:36 - 2014-10-03 08:56 - 00021504 _____ () C:\Documents and Settings\Milan \Plocha\Seli zahr platby.xls
2014-10-02 23:11 - 2014-10-03 10:22 - 00028672 _____ () C:\Documents and Settings\Milan \Plocha\Mili 02.10.2014.xls
2014-10-02 10:08 - 2014-10-10 23:05 - 00005386 _____ () C:\windows\setupapi.log
2014-09-29 01:38 - 2014-09-29 01:51 - 00022016 _____ () C:\Documents and Settings\Milan \Plocha\situace.xls
2014-09-26 12:24 - 2014-09-26 14:00 - 00013824 _____ () C:\Documents and Settings\Milan \Plocha\platby+zalohy.xls
2014-09-26 10:49 - 2014-09-19 08:00 - 00037376 ____R () C:\Documents and Settings\Milan \Plocha\OK zosit 19.xls
2014-09-26 09:19 - 2014-10-01 12:22 - 00014336 _____ () C:\Documents and Settings\Milan \Plocha\Penny 26.9..xls
2014-09-23 13:45 - 2014-09-23 13:46 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Wiebold fotky
2014-09-23 10:56 - 2014-09-23 10:56 - 00013824 _____ () C:\Documents and Settings\Milan \Plocha\plán.xls
2014-09-19 08:09 - 2014-09-29 09:59 - 00023552 _____ () C:\Documents and Settings\Milan \Plocha\NL 33x250g.xls
2014-09-16 08:13 - 2014-10-03 09:40 - 00060928 _____ () C:\Documents and Settings\Milan \Plocha\Seli Hauswirtz VIANOCE 2014.xls
2014-09-15 11:03 - 2014-09-15 14:03 - 00023040 _____ () C:\Documents and Settings\Milan \Plocha\upravy v byteSešit1.xls

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-13 20:01 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\temp
2014-10-13 20:01 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\Milan \Local Settings\temp
2014-10-13 20:01 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T\Plocha
2014-10-13 19:54 - 2010-03-18 18:03 - 00023296 _____ () C:\Documents and Settings\T\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-13 19:54 - 2007-07-02 21:30 - 00000000 ___HD () C:\Documents and Settings\T\Local Settings\Data aplikací
2014-10-13 19:53 - 2007-07-02 21:30 - 00000000 __RHD () C:\Documents and Settings\T\Data aplikací
2014-10-13 19:37 - 2007-11-05 21:20 - 00000000 ____D () C:\Documents and Settings\Milan \Data aplikací\Skype
2014-10-13 19:33 - 2012-08-09 16:12 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-10-13 19:33 - 2011-04-11 10:06 - 00000000 ____D () C:\Ksoft
2014-10-13 19:33 - 2008-06-02 07:43 - 00000121 _____ () C:\kosdat.mem
2014-10-13 19:25 - 2014-03-24 18:59 - 00000508 ____H () C:\windows\Tasks\User_Feed_Synchronization-{526B7424-400E-4A5F-A451-969C6C71A20B}.job
2014-10-13 19:11 - 2007-06-30 13:14 - 00006605 _____ () C:\windows\wincmd.ini
2014-10-13 19:07 - 2007-06-30 12:22 - 01379443 _____ () C:\windows\WindowsUpdate.log
2014-10-13 16:44 - 2014-02-12 08:38 - 00000072 _____ () C:\Autoconfig.ini
2014-10-13 16:24 - 2009-11-03 17:28 - 00000000 ____D () C:\Documents and Settings\Milan \Dokumenty\Stažené soubory
2014-10-13 15:33 - 2007-06-30 12:27 - 00032636 _____ () C:\windows\SchedLgU.Txt
2014-10-13 15:10 - 2007-11-14 11:48 - 00000684 _____ () C:\windows\wcx_ftp.ini
2014-10-13 14:31 - 2007-07-29 21:02 - 00002561 _____ () C:\Documents and Settings\Milan \Plocha\Microsoft Office Word 2003.lnk
2014-10-13 14:31 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha
2014-10-13 13:49 - 2007-10-26 18:06 - 00001846 ____H () C:\Documents and Settings\Milan \Dokumenty\Default.rdp
2014-10-13 13:40 - 2014-08-07 20:09 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Belgické bonboniery
2014-10-13 13:31 - 2014-08-07 09:33 - 00002259 _____ () C:\Documents and Settings\Milan \Plocha\Denní nakládka ok.lnk
2014-10-13 13:11 - 2007-06-30 14:17 - 00003223 _____ () C:\windows\wiadebug.log
2014-10-13 11:20 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan \Okolní síť
2014-10-12 23:24 - 2014-07-01 21:27 - 00000278 _____ () C:\windows\Tasks\Synology Data Replicator 3-SELI-KANCELAR1-T.job
2014-10-12 23:24 - 2007-07-02 21:30 - 00000272 ___SH () C:\Documents and Settings\T\ntuser.ini
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Program Files\TeamViewer
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Documents and Settings\Milan \Data aplikací\TeamViewer
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 4
2014-10-12 20:02 - 2007-06-30 14:15 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-10-12 20:02 - 2007-06-30 14:15 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-10-12 20:02 - 2007-06-30 12:29 - 00023296 _____ () C:\Documents and Settings\Milan \Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-12 14:01 - 2009-05-07 22:10 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\ML ostatní
2014-10-11 10:25 - 2013-12-23 23:50 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-10-10 23:13 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan \Local Settings\Data aplikací
2014-10-10 23:12 - 2007-06-30 12:28 - 00000000 __RHD () C:\Documents and Settings\Milan \Data aplikací
2014-10-10 23:09 - 2007-06-30 14:15 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-10-10 23:08 - 2010-01-06 04:00 - 00000260 _____ () C:\windows\Tasks\WGASetup.job
2014-10-10 23:08 - 2007-06-30 14:17 - 00000050 _____ () C:\windows\wiaservc.log
2014-10-10 23:08 - 2007-06-30 12:27 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-10-10 23:08 - 2001-10-25 16:00 - 00002206 _____ () C:\windows\system32\wpa.dbl
2014-10-10 23:07 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T
2014-10-10 23:07 - 2007-06-30 12:28 - 00000272 ___SH () C:\Documents and Settings\Milan \ntuser.ini
2014-10-10 23:06 - 2012-11-16 13:36 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SecuGuard6.0.3
2014-10-10 23:06 - 2009-11-02 17:18 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2014-10-10 23:06 - 2007-07-02 21:30 - 00000000 ___RD () C:\Documents and Settings\T\Nabídka Start\Programy
2014-10-10 23:05 - 2008-03-28 13:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\ESET
2014-10-10 23:04 - 2010-03-24 12:38 - 00000000 ____D () C:\Program Files\CesarFTP
2014-10-10 21:34 - 2013-01-30 21:18 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Meine Mappe
2014-10-10 09:58 - 2013-08-13 14:45 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\PEKARNA L I D I - R O Z P I S
2014-10-10 09:37 - 2007-07-11 14:50 - 00000000 ____D () C:\Program Files\=PRIKAZY=
2014-10-03 12:28 - 2007-09-30 13:03 - 00002517 _____ () C:\Documents and Settings\Milan \Plocha\Microsoft Office Excel 2003.lnk
2014-10-02 23:13 - 2007-08-30 09:06 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Ikony Filium
2014-09-29 02:02 - 2013-08-08 08:31 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\T O M A S
2014-09-29 01:58 - 2014-07-02 12:40 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Nysade foto
2014-09-28 22:39 - 2014-09-07 12:28 - 00000613 _____ () C:\Documents and Settings\Milan \Plocha\sdilena-slozka-pekarna.lnk
2014-09-26 09:49 - 2014-09-10 13:49 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Káva 60g
2014-09-26 07:33 - 2012-05-14 20:29 - 00701104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-09-26 07:33 - 2011-09-08 06:33 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-23 22:04 - 2007-07-07 19:20 - 00031232 _____ () C:\Documents and Settings\Milan \Plocha\Seli Kosys-fakturace.xls
2014-09-21 23:07 - 2009-11-04 21:14 - 00000664 _____ () C:\windows\system32\d3d9caps.dat
2014-09-19 07:42 - 2014-01-07 13:56 - 00035328 _____ () C:\Documents and Settings\Milan \Plocha\OK - WieboldOrder Form 2014.xls
2014-09-15 21:28 - 2007-09-24 12:00 - 00016380 _____ () C:\windows\system32\VFP9Rerr.log
2014-09-15 14:08 - 2014-08-18 08:36 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Byt pro prodej

Some content of TEMP:
====================
C:\Documents and Settings\Milan \Local Settings\temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

Re: Prosba o kontrolu logu

Napsal: 13 říj 2014 19:50
od Rudy
Zdravím!
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: Prosba o kontrolu logu

Napsal: 13 říj 2014 20:04
od Tomas80
# AdwCleaner v4.000 - Report created 13/10/2014 at 21:00:01
# DB v2014-10-13.5
# Updated 12/10/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : T - SELI-KANCELAR1
# Running from : C:\Documents and Settings\T\Local Settings\Temporary Internet Files\Content.IE5\Q5OB0SAK\adwcleaner_4.000[1].exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\Search Settings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B922D405-6D13-4A2B-AE89-08A030DA4402}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Common Files\soft602\langserv.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\TightVNC\tvnserver.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe]
Key Deleted : HKCU\Software\Search Settings

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v32.0.3 (x86 cs)


*************************

AdwCleaner[R0].txt - [2278 octets] - [13/10/2014 20:58:16]
AdwCleaner[S0].txt - [2214 octets] - [13/10/2014 21:00:01]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2274 octets] ##########

Re: Prosba o kontrolu logu

Napsal: 13 říj 2014 20:47
od Rudy
Dejte nový log FRST.

Re: Prosba o kontrolu logu

Napsal: 14 říj 2014 07:09
od Tomas80
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-10-2014 01
Ran by T (administrator) on SELI-KANCELAR1 on 14-10-2014 08:06:58
Running from C:\Documents and Settings\T\Plocha
Loaded Profiles: Milan Lipavský & T & UpdatusUser (Available profiles: Milan Lipavský & T & UpdatusUser & MH & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
(Crawler.com) C:\Program Files\Spyware Terminator\sp_rsser.exe
() C:\Program Files\Synology Data Replicator 3\SynoDrService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Synology Inc.) C:\Program Files\Synology Data Replicator 3\Backup.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\logonui.exe
(Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-10-10] (AVAST Software)
HKU\S-1-5-21-1390067357-1454471165-725345543-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21650016 2014-07-24] (Skype Technologies S.A.)
HKU\S-1-5-21-1390067357-1454471165-725345543-1004\...\Run: [Data Replicator 3] => C:\Program Files\Synology Data Replicator 3\Backup.exe [11605576 2013-10-09] (Synology Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\VIA RAID TOOL.lnk
ShortcutTarget: VIA RAID TOOL.lnk -> C:\Program Files\VIA\RAID\raid_tool.exe (VIA Technologies)
Startup: C:\Documents and Settings\Milan Lipavský\Nabídka Start\Programy\Po spuštění\start.lnk
ShortcutTarget: start.lnk -> C:\Documents and Settings\Milan Lipavský\nwb65w2t16\92486.vbs (No File)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKCU - {9701B515-5994-4A4E-9002-C253FA5D7AF5} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
DPF: {336C9D79-263A-4D75-AA7C-60DAF945AE67} http://62.209.202.134:7001/classes/Ovis ... V_H264.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/v ... .2.5.7.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 7155813140
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} https://www.mojedatovaschranka.cz/stati ... ?3,16,13,0
DPF: {6BA530D8-94B2-49E0-AC55-70899582FE1F} http://192.168.1.225/AV718.cab
DPF: {79EE81BD-6194-4240-A04F-131A81513DCB} http://192.168.1.31/Media.CAB
DPF: {7A24CAC8-8549-4698-85A2-AFF61D4427F7} http://192.168.1.223/classes/AlfaCamV.cab
DPF: {87D48502-D1FF-4D25-B66C-9DA4F7CB2722} http://192.168.1.227/classes/CamV_H264.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {8FEED82A-42A6-4117-A803-7EC3EB9339E0} http://62.209.202.134:6001/plugin/client.cab
DPF: {A93B47FD-9BF6-4DA8-97FC-9270B9D64A6C} http://192.168.1.8/plugin/h263ctrl.cab
DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} https://snzr.ksrzis.cz/nsnzr/ozn/capicom.cab
DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {DB87A30F-4960-4247-9672-6A0D550EECE8} http://192.168.1.31/SVRFind.CAB
DPF: {FF3BA0DA-79B5-4110-8FAC-C402D85AAEDA} http://62.209.202.134:6000/view.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{A4B689E6-71A9-4A5E-9F1F-FA3868115F32}: [NameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\T\Data aplikací\Mozilla\Firefox\Profiles\u5h6kkxe.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin HKCU: @kb-ext.cz/PKIComponent -> C:\Documents and Settings\T\Data aplikací\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll (Komerční banka, a.s.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-11-03]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-05-23]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-10]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-10-10]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-10-10] (AVAST Software)
R2 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2009-11-03] (Sun Microsystems, Inc.)
R2 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504 2011-05-25] (NVIDIA Corporation)
S3 Samsung UPD Service; C:\WINDOWS\system32\SUPDSvc.exe [127656 2009-03-24] (Samsung Electronics CO., LTD.)
R2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.) [File not signed]
R2 sp_rssrv; C:\Program Files\Spyware Terminator\sp_rsser.exe [487936 2009-10-19] (Crawler.com) [File not signed]
R2 SynoDrService; c:\Program Files\Synology Data Replicator 3\SynoDrService.exe [251464 2013-10-09] ()
R3 TermService; C:\windows\System32\termsrv.dll [295936 2010-03-16] (Microsoft Corporation) [File not signed]
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\windows\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-10-10] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-10-10] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr.sys [55112 2014-10-10] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-10-10] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [779536 2014-10-10] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [414520 2014-10-10] (AVAST Software)
R1 aswTdi; C:\windows\system32\drivers\aswTdi.sys [57800 2014-10-10] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [192352 2014-10-10] ()
R2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [41984 2006-09-18] (Samsung Electronics Co., Ltd.) [File not signed]
R1 Ext2fs; C:\windows\System32\DRIVERS\ext2fs.sys [181120 2008-09-25] (Stephan Schreiber) [File not signed]
S3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [25280 2008-11-19] (LogMeIn, Inc.)
S3 hipeer20; C:\windows\System32\DRIVERS\remobo32.sys [26112 2009-04-22] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 Huawei; C:\windows\System32\DRIVERS\ewdcsc.sys [24448 2009-08-18] (Huawei Tech. Co., Ltd.)
S3 hwusbfake; C:\windows\System32\DRIVERS\ewusbfake.sys [100736 2009-11-04] (Huawei Technologies Co., Ltd.)
R1 IfsMount; C:\windows\System32\DRIVERS\ifsmount.sys [51072 2008-08-28] (Stephan Schreiber) [File not signed]
R0 JRAID; C:\windows\System32\DRIVERS\jraid.sys [83296 2008-11-04] (JMicron Technology Corp.)
S3 Monfilt; C:\windows\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 rt2870; C:\windows\System32\DRIVERS\rt2870.sys [709248 2009-03-04] (Ralink Technology, Corp.) [File not signed]
S4 RTL8023xp; C:\windows\System32\DRIVERS\DLKRTXP.SYS [83456 2006-07-31] (D-Link Corp. )
S3 SONYPVU1; C:\windows\System32\DRIVERS\SONYPVU1.SYS [7552 2001-08-17] (Sony Corporation)
R1 sp_rsdrv2; C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [142592 2009-10-19] () [File not signed]
S4 viaagp1; C:\windows\System32\DRIVERS\viaagp1.sys [26880 2002-12-27] (VIA Technologies, Inc.)
R0 viamraid; C:\windows\System32\DRIVERS\viamraid.sys [104064 2007-03-19] (VIA Technologies inc,.ltd) [File not signed]
R0 viasraid; C:\windows\System32\drivers\viasraid.sys [77312 2003-11-01] (VIA Technologies inc,.ltd)
R0 videX32; C:\windows\System32\DRIVERS\videX32.sys [9216 2007-03-29] (VIA Technologies, Inc.)
S4 yukonwxp; C:\windows\System32\DRIVERS\yukonwxp.sys [174464 2003-11-28] (Marvell Semiconductor Inc.)
S3 ZDPSp50; C:\windows\System32\Drivers\ZDPSp50.sys [17664 2004-10-25] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 catchme; \??\C:\DOCUME~1\MILANL~1\LOCALS~1\Temp\catchme.sys [X]
S4 IntelIde; No ImagePath
S3 PCASp50; System32\Drivers\PCASp50.sys [X]
U5 ScsiPort; C:\windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 ZDCndis5; \??\C:\WINDOWS\system32\ZDCndis5.SYS [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-13 20:58 - 2014-10-13 21:00 - 00000000 ____D () C:\AdwCleaner
2014-10-13 19:59 - 2014-10-14 08:07 - 00014054 _____ () C:\Documents and Settings\T\Plocha\FRST.txt
2014-10-13 19:59 - 2014-10-14 08:06 - 00000000 ____D () C:\FRST
2014-10-13 19:58 - 2014-10-13 19:58 - 01101824 _____ (Farbar) C:\Documents and Settings\T\Plocha\FRST.exe
2014-10-13 19:54 - 2014-10-13 19:54 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\Data aplikací\Temp
2014-10-13 19:53 - 2014-10-13 19:53 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\AVAST Software
2014-10-13 13:42 - 2014-10-13 13:43 - 00061440 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\ok - Podklady BNG 10-2014.xls
2014-10-12 20:02 - 2014-10-12 20:02 - 00000857 _____ () C:\Documents and Settings\All Users\Plocha\TeamViewer 9.lnk
2014-10-12 20:02 - 2014-10-12 20:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 9
2014-10-10 23:13 - 2014-10-10 23:13 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací\Temp
2014-10-10 23:12 - 2014-10-10 23:12 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\AVAST Software
2014-10-10 23:11 - 2014-10-13 23:11 - 00000380 ____H () C:\windows\Tasks\avast! Emergency Update.job
2014-10-10 23:11 - 2014-10-10 23:11 - 00779536 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00414520 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00276432 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-10-10 23:11 - 2014-10-10 23:11 - 00192352 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00067824 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00057800 _____ (AVAST Software) C:\windows\system32\Drivers\aswTdi.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00055112 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00049944 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-10-10 23:11 - 2014-10-10 23:11 - 00024184 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00001775 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\windows\jumpshot.com
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-10-10 23:10 - 2014-10-10 23:10 - 00000000 ____D () C:\Program Files\AVAST Software
2014-10-10 23:09 - 2014-10-10 23:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-10-10 23:06 - 2014-10-10 23:06 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SUPERAntiSpyware.com
2014-10-09 23:10 - 2014-10-09 23:10 - 00016384 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Kopie - PACKAGING STOCK 20140929.xls
2014-10-03 12:37 - 2014-10-03 12:37 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Piasten 400g Doulton počty.xls
2014-10-03 08:36 - 2014-10-03 08:56 - 00021504 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli zahr platby.xls
2014-10-02 23:11 - 2014-10-03 10:22 - 00028672 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Mili 02.10.2014.xls
2014-10-02 10:08 - 2014-10-10 23:05 - 00005386 _____ () C:\windows\setupapi.log
2014-09-29 01:38 - 2014-09-29 01:51 - 00022016 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\situace.xls
2014-09-26 12:24 - 2014-09-26 14:00 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\platby+zalohy.xls
2014-09-26 10:49 - 2014-09-19 08:00 - 00037376 ____R () C:\Documents and Settings\Milan Lipavský\Plocha\OK zosit 19.xls
2014-09-26 09:19 - 2014-10-01 12:22 - 00014336 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Penny 26.9..xls
2014-09-23 13:45 - 2014-09-23 13:46 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Wiebold fotky
2014-09-23 10:56 - 2014-09-23 10:56 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\plán.xls
2014-09-19 08:09 - 2014-09-29 09:59 - 00023552 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\NL 33x250g.xls
2014-09-16 08:13 - 2014-10-03 09:40 - 00060928 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli Hauswirtz VIANOCE 2014.xls
2014-09-15 11:03 - 2014-09-15 14:03 - 00023040 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\upravy v byteSešit1.xls

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-14 08:07 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\temp
2014-10-14 08:06 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T\Plocha
2014-10-14 08:00 - 2007-11-05 21:20 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\Skype
2014-10-14 07:54 - 2011-04-11 10:06 - 00000000 ____D () C:\Ksoft
2014-10-14 07:46 - 2008-06-02 07:43 - 00000121 _____ () C:\kosdat.mem
2014-10-14 07:33 - 2012-08-09 16:12 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-10-14 07:32 - 2007-06-30 12:22 - 01419198 _____ () C:\windows\WindowsUpdate.log
2014-10-14 07:30 - 2014-02-12 08:38 - 00000072 _____ () C:\Autoconfig.ini
2014-10-14 01:11 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Local Settings\temp
2014-10-14 00:22 - 2014-03-24 18:59 - 00000508 ____H () C:\windows\Tasks\User_Feed_Synchronization-{526B7424-400E-4A5F-A451-969C6C71A20B}.job
2014-10-13 22:00 - 2009-11-04 21:14 - 00000664 _____ () C:\windows\system32\d3d9caps.dat
2014-10-13 21:30 - 2014-07-01 21:27 - 00000278 _____ () C:\windows\Tasks\Synology Data Replicator 3-SELI-KANCELAR1-T.job
2014-10-13 21:01 - 2007-06-30 14:17 - 00000159 _____ () C:\windows\wiadebug.log
2014-10-13 21:01 - 2007-06-30 14:17 - 00000050 _____ () C:\windows\wiaservc.log
2014-10-13 21:01 - 2007-06-30 12:27 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-10-13 21:01 - 2001-10-25 16:00 - 00002206 _____ () C:\windows\system32\wpa.dbl
2014-10-13 21:00 - 2012-07-01 08:49 - 00000178 ___SH () C:\Documents and Settings\UpdatusUser.SELI-KANCELAR1\ntuser.ini
2014-10-13 21:00 - 2007-07-02 21:30 - 00000272 ___SH () C:\Documents and Settings\T\ntuser.ini
2014-10-13 21:00 - 2007-06-30 14:15 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-10-13 21:00 - 2007-06-30 14:14 - 00140440 _____ () C:\windows\system32\FNTCACHE.DAT
2014-10-13 21:00 - 2007-06-30 12:28 - 00000272 ___SH () C:\Documents and Settings\Milan Lipavský\ntuser.ini
2014-10-13 21:00 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský
2014-10-13 21:00 - 2007-06-30 12:27 - 00032636 _____ () C:\windows\SchedLgU.Txt
2014-10-13 19:54 - 2010-03-18 18:03 - 00023296 _____ () C:\Documents and Settings\T\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-13 19:54 - 2007-07-02 21:30 - 00000000 ___HD () C:\Documents and Settings\T\Local Settings\Data aplikací
2014-10-13 19:53 - 2007-07-02 21:30 - 00000000 __RHD () C:\Documents and Settings\T\Data aplikací
2014-10-13 19:11 - 2007-06-30 13:14 - 00006605 _____ () C:\windows\wincmd.ini
2014-10-13 16:24 - 2009-11-03 17:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Dokumenty\Stažené soubory
2014-10-13 15:10 - 2007-11-14 11:48 - 00000684 _____ () C:\windows\wcx_ftp.ini
2014-10-13 14:31 - 2007-07-29 21:02 - 00002561 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Microsoft Office Word 2003.lnk
2014-10-13 14:31 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha
2014-10-13 13:49 - 2007-10-26 18:06 - 00001846 ____H () C:\Documents and Settings\Milan Lipavský\Dokumenty\Default.rdp
2014-10-13 13:40 - 2014-08-07 20:09 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Belgické bonboniery
2014-10-13 13:31 - 2014-08-07 09:33 - 00002259 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Denní nakládka ok.lnk
2014-10-13 11:20 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan Lipavský\Okolní síť
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Program Files\TeamViewer
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\TeamViewer
2014-10-12 20:02 - 2007-06-30 14:15 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-10-12 20:02 - 2007-06-30 12:29 - 00023296 _____ () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-12 14:01 - 2009-05-07 22:10 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\ML ostatní
2014-10-11 10:25 - 2013-12-23 23:50 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-10-10 23:13 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací
2014-10-10 23:12 - 2007-06-30 12:28 - 00000000 __RHD () C:\Documents and Settings\Milan Lipavský\Data aplikací
2014-10-10 23:09 - 2007-06-30 14:15 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-10-10 23:08 - 2010-01-06 04:00 - 00000260 _____ () C:\windows\Tasks\WGASetup.job
2014-10-10 23:07 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T
2014-10-10 23:06 - 2012-11-16 13:36 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SecuGuard6.0.3
2014-10-10 23:06 - 2009-11-02 17:18 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2014-10-10 23:06 - 2007-07-02 21:30 - 00000000 ___RD () C:\Documents and Settings\T\Nabídka Start\Programy
2014-10-10 23:05 - 2008-03-28 13:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\ESET
2014-10-10 23:04 - 2010-03-24 12:38 - 00000000 ____D () C:\Program Files\CesarFTP
2014-10-10 21:34 - 2013-01-30 21:18 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Meine Mappe
2014-10-10 09:58 - 2013-08-13 14:45 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\PEKARNA L I D I - R O Z P I S
2014-10-10 09:37 - 2007-07-11 14:50 - 00000000 ____D () C:\Program Files\=PRIKAZY=
2014-10-03 12:28 - 2007-09-30 13:03 - 00002517 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Microsoft Office Excel 2003.lnk
2014-10-02 23:13 - 2007-08-30 09:06 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Ikony Filium
2014-09-29 02:02 - 2013-08-08 08:31 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\T O M A S
2014-09-29 01:58 - 2014-07-02 12:40 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Nysade foto
2014-09-28 22:39 - 2014-09-07 12:28 - 00000613 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\sdilena-slozka-pekarna.lnk
2014-09-26 09:49 - 2014-09-10 13:49 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Káva 60g
2014-09-26 07:33 - 2012-05-14 20:29 - 00701104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-09-26 07:33 - 2011-09-08 06:33 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-23 22:04 - 2007-07-07 19:20 - 00031232 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli Kosys-fakturace.xls
2014-09-19 07:42 - 2014-01-07 13:56 - 00035328 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\OK - WieboldOrder Form 2014.xls
2014-09-15 21:28 - 2007-09-24 12:00 - 00016380 _____ () C:\windows\system32\VFP9Rerr.log
2014-09-15 14:08 - 2014-08-18 08:36 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Byt pro prodej

Some content of TEMP:
====================
C:\Documents and Settings\Milan Lipavský\Local Settings\temp\SkypeSetup.exe
C:\Documents and Settings\T\Local Settings\temp\Quarantine.exe
C:\Documents and Settings\T\Local Settings\temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

Re: Prosba o kontrolu logu

Napsal: 14 říj 2014 17:32
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start
ShortcutTarget: start.lnk -> C:\Documents and Settings\Milan Lipavský\nwb65w2t16\92486.vbs (No File)
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/v ... .2.5.7.cab
C:\Documents and Settings\Milan Lipavský\Local Settings\temp
C:\Documents and Settings\T\Local Settings\temp
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Prosba o kontrolu logu

Napsal: 14 říj 2014 18:29
od Tomas80
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-10-2014 01
Ran by T (administrator) on SELI-KANCELAR1 on 14-10-2014 19:27:35
Running from C:\Documents and Settings\T\Plocha
Loaded Profiles: Milan Lipavský & T & UpdatusUser (Available profiles: Milan Lipavský & T & UpdatusUser & MH & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
(Crawler.com) C:\Program Files\Spyware Terminator\sp_rsser.exe
() C:\Program Files\Synology Data Replicator 3\SynoDrService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Synology Inc.) C:\Program Files\Synology Data Replicator 3\Backup.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
() C:\WINDOWS\system32\spool\drivers\w32x86\3\spe__pi.exe
() C:\Ksoft\KOSYS\KOSYS.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
() C:\Ksoft\KOSYS\KOSYS.EXE
(C. Ghisler & Co.) C:\Program Files\totalcmd\TOTALCMD.EXE
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-10-10] (AVAST Software)
HKU\S-1-5-21-1390067357-1454471165-725345543-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21650016 2014-07-24] (Skype Technologies S.A.)
HKU\S-1-5-21-1390067357-1454471165-725345543-1004\...\Run: [Data Replicator 3] => C:\Program Files\Synology Data Replicator 3\Backup.exe [11605576 2013-10-09] (Synology Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\VIA RAID TOOL.lnk
ShortcutTarget: VIA RAID TOOL.lnk -> C:\Program Files\VIA\RAID\raid_tool.exe (VIA Technologies)
Startup: C:\Documents and Settings\Milan Lipavský\Nabídka Start\Programy\Po spuštění\start.lnk
ShortcutTarget: start.lnk -> C:\Documents and Settings\Milan Lipavský\nwb65w2t16\92486.vbs (No File)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKCU - {9701B515-5994-4A4E-9002-C253FA5D7AF5} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
DPF: {336C9D79-263A-4D75-AA7C-60DAF945AE67} http://62.209.202.134:7001/classes/Ovis ... V_H264.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 7155813140
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} https://www.mojedatovaschranka.cz/stati ... ?3,16,13,0
DPF: {6BA530D8-94B2-49E0-AC55-70899582FE1F} http://192.168.1.225/AV718.cab
DPF: {79EE81BD-6194-4240-A04F-131A81513DCB} http://192.168.1.31/Media.CAB
DPF: {7A24CAC8-8549-4698-85A2-AFF61D4427F7} http://192.168.1.223/classes/AlfaCamV.cab
DPF: {87D48502-D1FF-4D25-B66C-9DA4F7CB2722} http://192.168.1.227/classes/CamV_H264.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {8FEED82A-42A6-4117-A803-7EC3EB9339E0} http://62.209.202.134:6001/plugin/client.cab
DPF: {A93B47FD-9BF6-4DA8-97FC-9270B9D64A6C} http://192.168.1.8/plugin/h263ctrl.cab
DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} https://snzr.ksrzis.cz/nsnzr/ozn/capicom.cab
DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {DB87A30F-4960-4247-9672-6A0D550EECE8} http://192.168.1.31/SVRFind.CAB
DPF: {FF3BA0DA-79B5-4110-8FAC-C402D85AAEDA} http://62.209.202.134:6000/view.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{A4B689E6-71A9-4A5E-9F1F-FA3868115F32}: [NameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\T\Data aplikací\Mozilla\Firefox\Profiles\u5h6kkxe.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin HKCU: @kb-ext.cz/PKIComponent -> C:\Documents and Settings\T\Data aplikací\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll (Komerční banka, a.s.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-11-03]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-05-23]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-10]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-10-10]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-10-10] (AVAST Software)
R2 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2009-11-03] (Sun Microsystems, Inc.)
R2 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504 2011-05-25] (NVIDIA Corporation)
S3 Samsung UPD Service; C:\WINDOWS\system32\SUPDSvc.exe [127656 2009-03-24] (Samsung Electronics CO., LTD.)
R2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.) [File not signed]
R2 sp_rssrv; C:\Program Files\Spyware Terminator\sp_rsser.exe [487936 2009-10-19] (Crawler.com) [File not signed]
R2 SynoDrService; c:\Program Files\Synology Data Replicator 3\SynoDrService.exe [251464 2013-10-09] ()
R3 TermService; C:\windows\System32\termsrv.dll [295936 2010-03-16] (Microsoft Corporation) [File not signed]
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\windows\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-10-10] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-10-10] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr.sys [55112 2014-10-10] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-10-10] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [779536 2014-10-10] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [414520 2014-10-10] (AVAST Software)
R1 aswTdi; C:\windows\system32\drivers\aswTdi.sys [57800 2014-10-10] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [192352 2014-10-10] ()
R2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [41984 2006-09-18] (Samsung Electronics Co., Ltd.) [File not signed]
R1 Ext2fs; C:\windows\System32\DRIVERS\ext2fs.sys [181120 2008-09-25] (Stephan Schreiber) [File not signed]
S3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [25280 2008-11-19] (LogMeIn, Inc.)
S3 hipeer20; C:\windows\System32\DRIVERS\remobo32.sys [26112 2009-04-22] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 Huawei; C:\windows\System32\DRIVERS\ewdcsc.sys [24448 2009-08-18] (Huawei Tech. Co., Ltd.)
S3 hwusbfake; C:\windows\System32\DRIVERS\ewusbfake.sys [100736 2009-11-04] (Huawei Technologies Co., Ltd.)
R1 IfsMount; C:\windows\System32\DRIVERS\ifsmount.sys [51072 2008-08-28] (Stephan Schreiber) [File not signed]
R0 JRAID; C:\windows\System32\DRIVERS\jraid.sys [83296 2008-11-04] (JMicron Technology Corp.)
S3 Monfilt; C:\windows\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 rt2870; C:\windows\System32\DRIVERS\rt2870.sys [709248 2009-03-04] (Ralink Technology, Corp.) [File not signed]
S4 RTL8023xp; C:\windows\System32\DRIVERS\DLKRTXP.SYS [83456 2006-07-31] (D-Link Corp. )
S3 SONYPVU1; C:\windows\System32\DRIVERS\SONYPVU1.SYS [7552 2001-08-17] (Sony Corporation)
R1 sp_rsdrv2; C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [142592 2009-10-19] () [File not signed]
S4 viaagp1; C:\windows\System32\DRIVERS\viaagp1.sys [26880 2002-12-27] (VIA Technologies, Inc.)
R0 viamraid; C:\windows\System32\DRIVERS\viamraid.sys [104064 2007-03-19] (VIA Technologies inc,.ltd) [File not signed]
R0 viasraid; C:\windows\System32\drivers\viasraid.sys [77312 2003-11-01] (VIA Technologies inc,.ltd)
R0 videX32; C:\windows\System32\DRIVERS\videX32.sys [9216 2007-03-29] (VIA Technologies, Inc.)
S4 yukonwxp; C:\windows\System32\DRIVERS\yukonwxp.sys [174464 2003-11-28] (Marvell Semiconductor Inc.)
S3 ZDPSp50; C:\windows\System32\Drivers\ZDPSp50.sys [17664 2004-10-25] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 catchme; \??\C:\DOCUME~1\MILANL~1\LOCALS~1\Temp\catchme.sys [X]
S4 IntelIde; No ImagePath
S3 PCASp50; System32\Drivers\PCASp50.sys [X]
U5 ScsiPort; C:\windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 ZDCndis5; \??\C:\WINDOWS\system32\ZDCndis5.SYS [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-14 19:26 - 2014-10-14 19:26 - 00000328 _____ () C:\Documents and Settings\T\Plocha\fixlist.txt
2014-10-14 12:42 - 2014-10-14 12:48 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\rozdily v Aholdu.xls
2014-10-14 12:34 - 2014-10-14 14:08 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\BNG odměny
2014-10-14 12:34 - 2014-10-14 12:36 - 00043520 ___SH () C:\Thumbs.db
2014-10-14 12:19 - 2014-10-14 12:19 - 00050688 _____ () C:\skladacka.xls
2014-10-14 12:00 - 2014-10-14 12:00 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\knoflíky dill.xls
2014-10-13 20:58 - 2014-10-13 21:00 - 00000000 ____D () C:\AdwCleaner
2014-10-13 19:59 - 2014-10-14 19:27 - 00014106 _____ () C:\Documents and Settings\T\Plocha\FRST.txt
2014-10-13 19:59 - 2014-10-14 19:27 - 00000000 ____D () C:\FRST
2014-10-13 19:58 - 2014-10-13 19:58 - 01101824 _____ (Farbar) C:\Documents and Settings\T\Plocha\FRST.exe
2014-10-13 19:54 - 2014-10-13 19:54 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\Data aplikací\Temp
2014-10-13 19:53 - 2014-10-13 19:53 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\AVAST Software
2014-10-13 13:42 - 2014-10-13 13:43 - 00061440 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\ok - Podklady BNG 10-2014.xls
2014-10-12 20:02 - 2014-10-12 20:02 - 00000857 _____ () C:\Documents and Settings\All Users\Plocha\TeamViewer 9.lnk
2014-10-12 20:02 - 2014-10-12 20:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 9
2014-10-10 23:13 - 2014-10-10 23:13 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací\Temp
2014-10-10 23:12 - 2014-10-10 23:12 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\AVAST Software
2014-10-10 23:11 - 2014-10-14 11:11 - 00000380 ____H () C:\windows\Tasks\avast! Emergency Update.job
2014-10-10 23:11 - 2014-10-10 23:11 - 00779536 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00414520 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00276432 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-10-10 23:11 - 2014-10-10 23:11 - 00192352 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00067824 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00057800 _____ (AVAST Software) C:\windows\system32\Drivers\aswTdi.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00055112 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00049944 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-10-10 23:11 - 2014-10-10 23:11 - 00024184 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00001775 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\windows\jumpshot.com
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-10-10 23:10 - 2014-10-10 23:10 - 00000000 ____D () C:\Program Files\AVAST Software
2014-10-10 23:09 - 2014-10-10 23:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-10-10 23:06 - 2014-10-10 23:06 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SUPERAntiSpyware.com
2014-10-09 23:10 - 2014-10-09 23:10 - 00016384 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Kopie - PACKAGING STOCK 20140929.xls
2014-10-03 12:37 - 2014-10-03 12:37 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Piasten 400g Doulton počty.xls
2014-10-03 08:36 - 2014-10-03 08:56 - 00021504 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli zahr platby.xls
2014-10-02 23:11 - 2014-10-03 10:22 - 00028672 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Mili 02.10.2014.xls
2014-10-02 10:08 - 2014-10-14 13:59 - 00005595 _____ () C:\windows\setupapi.log
2014-09-29 01:38 - 2014-09-29 01:51 - 00022016 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\situace.xls
2014-09-26 12:24 - 2014-09-26 14:00 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\platby+zalohy.xls
2014-09-26 10:49 - 2014-09-19 08:00 - 00037376 ____R () C:\Documents and Settings\Milan Lipavský\Plocha\OK zosit 19.xls
2014-09-26 09:19 - 2014-10-01 12:22 - 00014336 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Penny 26.9..xls
2014-09-23 13:45 - 2014-09-23 13:46 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Wiebold fotky
2014-09-23 10:56 - 2014-09-23 10:56 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\plán.xls
2014-09-19 08:09 - 2014-09-29 09:59 - 00023552 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\NL 33x250g.xls
2014-09-16 08:13 - 2014-10-03 09:40 - 00060928 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli Hauswirtz VIANOCE 2014.xls
2014-09-15 11:03 - 2014-09-15 14:03 - 00023040 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\upravy v byteSešit1.xls

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-14 19:27 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\temp
2014-10-14 19:27 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T\Plocha
2014-10-14 19:13 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Local Settings\temp
2014-10-14 18:59 - 2007-11-05 21:20 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\Skype
2014-10-14 18:33 - 2012-08-09 16:12 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-10-14 18:32 - 2007-06-30 12:22 - 01422991 _____ () C:\windows\WindowsUpdate.log
2014-10-14 18:05 - 2014-02-12 08:38 - 00000072 _____ () C:\Autoconfig.ini
2014-10-14 15:57 - 2011-04-11 10:06 - 00000000 ____D () C:\Ksoft
2014-10-14 15:27 - 2007-07-11 14:50 - 00000000 ____D () C:\Program Files\=PRIKAZY=
2014-10-14 13:56 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha
2014-10-14 12:42 - 2007-09-30 13:03 - 00002517 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Microsoft Office Excel 2003.lnk
2014-10-14 11:54 - 2010-10-21 12:50 - 00000012 _____ () C:\Documents and Settings\T\intlname.ols
2014-10-14 11:54 - 2007-06-30 13:14 - 00006605 _____ () C:\windows\wincmd.ini
2014-10-14 11:45 - 2008-06-02 07:43 - 00000121 _____ () C:\kosdat.mem
2014-10-14 10:03 - 2007-06-30 14:17 - 00001691 _____ () C:\windows\wiadebug.log
2014-10-14 09:28 - 2014-09-07 12:28 - 00000613 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\sdilena-slozka-pekarna.lnk
2014-10-14 08:28 - 2007-07-29 21:02 - 00002561 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Microsoft Office Word 2003.lnk
2014-10-14 00:22 - 2014-03-24 18:59 - 00000508 ____H () C:\windows\Tasks\User_Feed_Synchronization-{526B7424-400E-4A5F-A451-969C6C71A20B}.job
2014-10-13 22:00 - 2009-11-04 21:14 - 00000664 _____ () C:\windows\system32\d3d9caps.dat
2014-10-13 21:30 - 2014-07-01 21:27 - 00000278 _____ () C:\windows\Tasks\Synology Data Replicator 3-SELI-KANCELAR1-T.job
2014-10-13 21:01 - 2007-06-30 14:17 - 00000050 _____ () C:\windows\wiaservc.log
2014-10-13 21:01 - 2007-06-30 12:27 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-10-13 21:01 - 2001-10-25 16:00 - 00002206 _____ () C:\windows\system32\wpa.dbl
2014-10-13 21:00 - 2012-07-01 08:49 - 00000178 ___SH () C:\Documents and Settings\UpdatusUser.SELI-KANCELAR1\ntuser.ini
2014-10-13 21:00 - 2007-07-02 21:30 - 00000272 ___SH () C:\Documents and Settings\T\ntuser.ini
2014-10-13 21:00 - 2007-06-30 14:15 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-10-13 21:00 - 2007-06-30 14:14 - 00140440 _____ () C:\windows\system32\FNTCACHE.DAT
2014-10-13 21:00 - 2007-06-30 12:28 - 00000272 ___SH () C:\Documents and Settings\Milan Lipavský\ntuser.ini
2014-10-13 21:00 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský
2014-10-13 21:00 - 2007-06-30 12:27 - 00032636 _____ () C:\windows\SchedLgU.Txt
2014-10-13 19:54 - 2010-03-18 18:03 - 00023296 _____ () C:\Documents and Settings\T\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-13 19:54 - 2007-07-02 21:30 - 00000000 ___HD () C:\Documents and Settings\T\Local Settings\Data aplikací
2014-10-13 19:53 - 2007-07-02 21:30 - 00000000 __RHD () C:\Documents and Settings\T\Data aplikací
2014-10-13 16:24 - 2009-11-03 17:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Dokumenty\Stažené soubory
2014-10-13 15:10 - 2007-11-14 11:48 - 00000684 _____ () C:\windows\wcx_ftp.ini
2014-10-13 13:49 - 2007-10-26 18:06 - 00001846 ____H () C:\Documents and Settings\Milan Lipavský\Dokumenty\Default.rdp
2014-10-13 13:40 - 2014-08-07 20:09 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Belgické bonboniery
2014-10-13 13:31 - 2014-08-07 09:33 - 00002259 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Denní nakládka ok.lnk
2014-10-13 11:20 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan Lipavský\Okolní síť
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Program Files\TeamViewer
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\TeamViewer
2014-10-12 20:02 - 2007-06-30 14:15 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-10-12 20:02 - 2007-06-30 12:29 - 00023296 _____ () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-12 14:01 - 2009-05-07 22:10 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\ML ostatní
2014-10-11 10:25 - 2013-12-23 23:50 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-10-10 23:13 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací
2014-10-10 23:12 - 2007-06-30 12:28 - 00000000 __RHD () C:\Documents and Settings\Milan Lipavský\Data aplikací
2014-10-10 23:09 - 2007-06-30 14:15 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-10-10 23:08 - 2010-01-06 04:00 - 00000260 _____ () C:\windows\Tasks\WGASetup.job
2014-10-10 23:07 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T
2014-10-10 23:06 - 2012-11-16 13:36 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SecuGuard6.0.3
2014-10-10 23:06 - 2009-11-02 17:18 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2014-10-10 23:06 - 2007-07-02 21:30 - 00000000 ___RD () C:\Documents and Settings\T\Nabídka Start\Programy
2014-10-10 23:05 - 2008-03-28 13:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\ESET
2014-10-10 23:04 - 2010-03-24 12:38 - 00000000 ____D () C:\Program Files\CesarFTP
2014-10-10 21:34 - 2013-01-30 21:18 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Meine Mappe
2014-10-10 09:58 - 2013-08-13 14:45 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\PEKARNA L I D I - R O Z P I S
2014-10-02 23:13 - 2007-08-30 09:06 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Ikony Filium
2014-09-29 02:02 - 2013-08-08 08:31 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\T O M A S
2014-09-29 01:58 - 2014-07-02 12:40 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Nysade foto
2014-09-26 09:49 - 2014-09-10 13:49 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Káva 60g
2014-09-26 07:33 - 2012-05-14 20:29 - 00701104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-09-26 07:33 - 2011-09-08 06:33 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-23 22:04 - 2007-07-07 19:20 - 00031232 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli Kosys-fakturace.xls
2014-09-19 07:42 - 2014-01-07 13:56 - 00035328 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\OK - WieboldOrder Form 2014.xls
2014-09-15 21:28 - 2007-09-24 12:00 - 00016380 _____ () C:\windows\system32\VFP9Rerr.log
2014-09-15 14:08 - 2014-08-18 08:36 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Byt pro prodej

Some content of TEMP:
====================
C:\Documents and Settings\Milan Lipavský\Local Settings\temp\SkypeSetup.exe
C:\Documents and Settings\T\Local Settings\temp\Quarantine.exe
C:\Documents and Settings\T\Local Settings\temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

Re: Prosba o kontrolu logu

Napsal: 14 říj 2014 18:41
od Rudy
Smazáno. Nastala nějaká změna?

Re: Prosba o kontrolu logu

Napsal: 14 říj 2014 18:51
od Tomas80
vypadá to dobře, zítra to otestujeme v běžném provozu

díky moc

Re: Prosba o kontrolu logu

Napsal: 14 říj 2014 20:05
od Rudy
Zatím není zač. Dejte vědět. :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz