Kontrola logu - prosím

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Odpovědět
KeežlaB
Level 2.5
Level 2.5
Příspěvky: 319
Registrován: prosinec 13
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu - prosím

Příspěvekod KeežlaB » 07 led 2014 16:52

Ale mě právě ani jen ComboFit nejde spustit..
Nahoru
Reklama
Top
KeežlaB
Level 2.5
Level 2.5
Příspěvky: 319
Registrován: prosinec 13
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu - prosím

Příspěvekod KeežlaB » 07 led 2014 17:01

Kde je log::
Mohu se zeptat kam zmizel ten OTC.exe po restartu? :D


Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 05-01-2014
Ran by Martin at 2014-01-07 16:59:45 Run:1
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
() C:\Windows\System32\KMSServer.exe
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [686592 2013-11-12] ()
C:\Windows\system32\KMSServer.exe
C:\Program Files\KMSpico
C:\Windows\System32\Tasks\AutoPico Daily Restart
C:\Windows\system32\KMSServer.exe
C:\Windows\system32\FxsTmp
C:\Windows\System32\drivers\ADP80XX.SYS
*****************

C:\Windows\System32\KMSServer.exe => No running process found
Service KMSELDI => Service deleted successfully.
"C:\Windows\system32\KMSServer.exe" => File/Directory not found.
C:\Program Files\KMSpico => Moved successfully.
C:\Windows\System32\Tasks\AutoPico Daily Restart => Moved successfully.
"C:\Windows\system32\KMSServer.exe" => File/Directory not found.
C:\Windows\system32\FxsTmp => Moved successfully.
C:\Windows\System32\drivers\ADP80XX.SYS => Moved successfully.

==== End of Fixlog ====
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu - prosím

Příspěvekod jaro3 » 08 led 2014 10:50

OTC je čistič , uklidí po sobě , je to OK.

Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
KeežlaB
Level 2.5
Level 2.5
Příspěvky: 319
Registrován: prosinec 13
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu - prosím

Příspěvekod KeežlaB » 08 led 2014 12:02

Uvidime dneska co to bude delat :) Ale bohuzel jsem to udelal na mem druhem HDD, ktery nepouzivam a mel jsem ho na zkousku.. Budu muset tedy ty testy udelat znova na tem mem druhem HDD? A ten program (KMSpico) se odstranil tim ze jaem ho zapsal do toho . txt a nechal na plose?
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu - prosím

Příspěvekod jaro3 » 08 led 2014 17:04

Jo..
vše udělat i na tm druhém.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
KeežlaB
Level 2.5
Level 2.5
Příspěvky: 319
Registrován: prosinec 13
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu - prosím

Příspěvekod KeežlaB » 08 led 2014 17:43

Ale ten KMSpico stale v contol panel/programs stale mam, a spustit jde taky stale..
Nahoru
KeežlaB
Level 2.5
Level 2.5
Příspěvky: 319
Registrován: prosinec 13
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu - prosím

Příspěvekod KeežlaB » 08 led 2014 20:23


Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah tohoto scriptu níže.
KÓD: VYBRAT VŠE
() C:\Windows\System32\KMSServer.exe
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [686592 2013-11-12] ()
C:\Windows\system32\KMSServer.exe
C:\Program Files\KMSpico
C:\Windows\System32\Tasks\AutoPico Daily Restart
C:\Windows\system32\KMSServer.exe
C:\Windows\system32\FxsTmp
C:\Windows\System32\drivers\ADP80XX.SYS

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na flash disk (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

Když jsem si teď přendal HDD co a jaký odkazy mám hodit to .txt??
Děkuji..
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu - prosím

Příspěvekod jaro3 » 08 led 2014 22:24

Jen udělej sken , žádný script nedělej.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
KeežlaB
Level 2.5
Level 2.5
Příspěvky: 319
Registrován: prosinec 13
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu - prosím

Příspěvekod KeežlaB » 08 led 2014 23:02

Jaky presne sken mam udelat?? :O
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu - prosím

Příspěvekod jaro3 » 09 led 2014 09:56

Stáhni si Farbar Recovery Scan Tool

a ulož jej na plochu.
Poznámka: Je třeba spustit kompatibilní verze s vaším systémem. Zde si můžeš zkontrolovat, pokud si nejsi jistý, zda je váš počítač 32-bit nebo 64-bit:
http://windows.microsoft.com/en-us/wind ... -or-64-bit
Poklepáním jej spusť . Když se otevře nástroj klepni na tlačítko YES(Ano) disclaimer.
Stiskni tlačítko Scan (Skenovat).Log (FRST.txt) bude ve stejném adresáři jako nástroj . Prosím, zkopíruj a vlož jej sem.
Poprvé když je nástroj spuštěn, udělá další log (Addition.txt). Prosím, vlož ho sem také.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
KeežlaB
Level 2.5
Level 2.5
Příspěvky: 319
Registrován: prosinec 13
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu - prosím

Příspěvekod KeežlaB » 09 led 2014 15:03

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-01-2014
Ran by Martin (administrator) on MARTIN on 09-01-2014 15:01:14
Running from C:\Users\Martin\Desktop
Windows 8.1 Enterprise (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2174760 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5618456 2013-09-12] (ESET)

==================== Internet (Whitelisted) ====================

BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office Professional Plus 2013\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office Professional Plus 2013\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office Professional Plus 2013\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office Professional Plus 2013\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1337752 2013-09-12] (ESET)
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [686592 2013-11-12] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [157432 2013-09-17] (ESET)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-09-30] (Microsoft Corporation)
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-09-30] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146272 2013-08-22] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [56672 2013-08-22] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-09 15:01 - 2014-01-09 15:01 - 00005623 _____ C:\Users\Martin\Desktop\FRST.txt
2014-01-09 15:01 - 2014-01-09 15:01 - 00000000 ____D C:\FRST
2014-01-09 02:08 - 2014-01-08 17:37 - 00000000 ____D C:\Windows\Panther
2014-01-08 20:40 - 2014-01-08 20:40 - 00000000 ____D C:\Users\Martin\AppData\Roaming\HD Tune Pro
2014-01-08 20:40 - 2014-01-08 20:40 - 00000000 ____D C:\Program Files (x86)\HD Tune Pro
2014-01-08 20:38 - 2014-01-08 20:38 - 02195900 _____ (EFD Software ) C:\Users\Martin\Downloads\hdtunepro_550_trial.exe
2014-01-08 19:46 - 2014-01-09 14:40 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-08 19:46 - 2014-01-08 19:46 - 00003802 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-08 19:46 - 2014-01-08 19:46 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Macromedia
2014-01-08 19:45 - 2014-01-08 19:45 - 00000000 ____D C:\Users\Martin\AppData\Local\Adobe
2014-01-08 19:39 - 2014-01-09 15:00 - 00000000 ____D C:\Users\Martin\Desktop\pro kontrolu PC
2014-01-08 19:39 - 2014-01-07 16:59 - 01931762 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2014-01-08 18:54 - 2014-01-08 18:55 - 00006042 _____ C:\Windows\DPINST.LOG
2014-01-08 18:54 - 2014-01-08 18:55 - 00001474 _____ C:\Windows\Synaptics.log
2014-01-08 18:54 - 2014-01-08 18:54 - 00000000 ____D C:\Users\Martin\Downloads\Synaptics_v17_0_19_C_XP32_Vista32_Win7-32_XP64_Vista64_Win7-64_Acme_Inc
2014-01-08 18:45 - 2014-01-08 18:45 - 00000039 _____ C:\Windows\SynInst.log
2014-01-08 18:41 - 2014-01-08 18:41 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-08 18:39 - 2014-01-08 18:39 - 00000000 ____D C:\Users\Martin\AppData\Roaming\WinRAR
2014-01-08 18:33 - 2014-01-08 18:42 - 00000000 ____D C:\Users\Martin\.nbi
2014-01-08 18:33 - 2014-01-08 18:40 - 00000000 ____D C:\Program Files\NetBeans 7.4
2014-01-08 18:32 - 2014-01-08 18:32 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-08 18:32 - 2014-01-08 18:32 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-08 18:32 - 2014-01-08 18:32 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-08 18:32 - 2014-01-08 18:32 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-08 18:31 - 2014-01-08 18:32 - 00000000 ____D C:\Program Files\Java
2014-01-08 18:17 - 2014-01-08 18:17 - 00001328 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\opera.lnk
2014-01-08 18:16 - 2014-01-08 18:16 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-01-08 18:08 - 2014-01-08 18:08 - 00003706 _____ C:\Windows\System32\Tasks\AutoPico Daily Restart
2014-01-08 18:07 - 2014-01-08 18:14 - 00000000 ____D C:\Program Files\KMSpico
2014-01-08 18:04 - 2013-10-09 20:05 - 00014069 _____ C:\Users\Martin\Desktop\Cvičení na doma.xlsx
2014-01-08 18:02 - 2014-01-08 18:02 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2014-01-08 18:01 - 2014-01-08 18:26 - 00000198 _____ C:\Users\Martin\Documents\EMAILY.txt
2014-01-08 18:01 - 2014-01-08 18:01 - 00000000 ____D C:\Users\Martin\Documents\učebnice
2014-01-08 18:01 - 2014-01-08 18:01 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2014-01-08 18:01 - 2013-12-01 09:49 - 00001344 _____ C:\Users\Martin\Documents\Filmy.txt
2014-01-08 18:01 - 2013-10-28 09:20 - 00000132 _____ C:\Users\Martin\Documents\START programy.txt
2014-01-08 18:01 - 2013-08-22 19:56 - 00000176 _____ C:\Users\Martin\Documents\Game of thrones.txt
2014-01-08 18:01 - 2012-02-21 22:15 - 00000137 _____ C:\Users\Martin\Documents\AKTIVACE BLUETOOTH.txt
2014-01-08 18:00 - 2014-01-08 18:00 - 00000000 ___RD C:\Users\Martin\Documents\Divoké kmeny
2014-01-08 18:00 - 2014-01-08 18:00 - 00000000 ____D C:\Users\Martin\Documents\NetBeansProjects
2014-01-08 18:00 - 2014-01-08 18:00 - 00000000 ____D C:\Users\Martin\Documents\FreeFileSync
2014-01-08 18:00 - 2013-12-19 20:39 - 00000700 _____ C:\Users\Martin\Documents\Verifier.txt
2014-01-08 17:59 - 2014-01-08 18:01 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2014-01-08 17:59 - 2014-01-08 17:59 - 00000000 ____D C:\Windows\PCHEALTH
2014-01-08 17:59 - 2014-01-08 17:59 - 00000000 ____D C:\ProgramData\APN
2014-01-08 17:59 - 2014-01-08 17:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-08 17:58 - 2014-01-08 20:35 - 00000000 ____D C:\Users\Martin\Downloads\_______
2014-01-08 17:58 - 2014-01-08 17:58 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Opera Software
2014-01-08 17:58 - 2014-01-08 17:58 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2014-01-08 17:58 - 2014-01-08 17:58 - 00000000 ____D C:\Users\Martin\AppData\Local\Opera Software
2014-01-08 17:58 - 2014-01-08 17:58 - 00000000 ____D C:\Program Files (x86)\The KMPlayer
2014-01-08 17:58 - 2014-01-08 17:58 - 00000000 ____D C:\Program Files (x86)\Opera
2014-01-08 17:57 - 2014-01-08 19:35 - 00000000 ____D C:\Program Files\WinRAR
2014-01-08 17:56 - 2014-01-08 18:03 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-08 17:56 - 2014-01-08 17:59 - 00000000 ____D C:\Program Files\Microsoft Office Professional Plus 2013
2014-01-08 17:56 - 2014-01-08 17:56 - 00000000 __RHD C:\MSOCache
2014-01-08 17:56 - 2014-01-08 17:56 - 00000000 ____D C:\Users\Martin\AppData\Local\Microsoft Help
2014-01-08 17:56 - 2014-01-08 17:56 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2014-01-08 17:56 - 2014-01-08 17:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2014-01-08 17:56 - 2014-01-08 17:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2014-01-08 17:52 - 2014-01-08 17:52 - 00000720 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Putty.lnk
2014-01-08 17:52 - 2014-01-08 17:52 - 00000000 ____D C:\ProgramData\ESET
2014-01-08 17:52 - 2014-01-08 17:52 - 00000000 ____D C:\Program Files\ESET
2014-01-08 17:50 - 2014-01-09 14:35 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{054F10D9-20F5-4855-8190-FE9634D06A5F}
2014-01-08 17:49 - 2014-01-08 17:49 - 00000000 ____D C:\Users\Martin\AppData\Roaming\ATI
2014-01-08 17:49 - 2014-01-08 17:49 - 00000000 ____D C:\Users\Martin\AppData\Local\ATI
2014-01-08 17:49 - 2014-01-08 17:49 - 00000000 ____D C:\Users\Martin\AppData\Local\AMD
2014-01-08 17:49 - 2014-01-08 17:49 - 00000000 ____D C:\ProgramData\ATI
2014-01-08 17:48 - 2014-01-08 19:54 - 00705490 _____ C:\Windows\system32\perfh005.dat
2014-01-08 17:48 - 2014-01-08 19:54 - 00143834 _____ C:\Windows\system32\perfc005.dat
2014-01-08 17:48 - 2014-01-08 17:47 - 00296666 _____ C:\Windows\system32\perfi005.dat
2014-01-08 17:48 - 2014-01-08 17:47 - 00038682 _____ C:\Windows\system32\perfd005.dat
2014-01-08 17:47 - 2014-01-08 17:47 - 00000000 ____D C:\Windows\SysWOW64\cs
2014-01-08 17:47 - 2014-01-08 17:47 - 00000000 ____D C:\Windows\system32\cs
2014-01-08 17:42 - 2014-01-08 21:57 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3922118636-2724059933-2052731734-1001
2014-01-08 17:42 - 2014-01-08 17:42 - 00060601 _____ C:\Windows\SysWOW64\CCCInstall_201401081742387490.log
2014-01-08 17:42 - 2014-01-08 17:42 - 00000000 ____D C:\ProgramData\AMD
2014-01-08 17:42 - 2014-01-08 17:42 - 00000000 ____D C:\Program Files\ATI Technologies
2014-01-08 17:42 - 2014-01-08 17:42 - 00000000 ____D C:\Program Files (x86)\Advanced Micro Devices, Inc
2014-01-08 17:41 - 2014-01-08 17:42 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2014-01-08 17:41 - 2014-01-08 17:41 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-08 17:41 - 2014-01-08 17:41 - 00000000 ____D C:\ProgramData\Package Cache
2014-01-08 17:41 - 2014-01-08 17:41 - 00000000 ____D C:\Program Files\AMD
2014-01-08 17:41 - 2014-01-08 17:41 - 00000000 ____D C:\AMD
2014-01-08 17:41 - 2014-01-08 17:41 - 00000000 _____ C:\Windows\ativpsrm.bin
2014-01-08 17:39 - 2014-01-08 17:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-01-08 17:39 - 2014-01-08 17:39 - 00000000 ____D C:\Program Files\Synaptics
2014-01-08 17:38 - 2014-01-09 14:33 - 00000000 __RDO C:\Users\Martin\SkyDrive
2014-01-08 17:37 - 2014-01-08 17:53 - 00000000 ____D C:\Users\Martin\AppData\Local\Packages
2014-01-08 17:37 - 2014-01-08 17:37 - 00001446 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-08 17:37 - 2014-01-08 17:37 - 00000000 ___RD C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-08 17:37 - 2014-01-08 17:37 - 00000000 ___RD C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-08 17:37 - 2014-01-08 17:37 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2014-01-08 17:37 - 2014-01-08 17:37 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Adobe
2014-01-08 17:37 - 2014-01-08 17:37 - 00000000 ____D C:\Users\Martin\AppData\Local\VirtualStore
2014-01-08 17:35 - 2014-01-08 22:12 - 00000000 ____D C:\Users\Martin
2014-01-08 17:35 - 2014-01-08 17:35 - 00000020 ___SH C:\Users\Martin\ntuser.ini
2014-01-08 17:35 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-08 17:35 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-08 17:35 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-08 17:35 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-08 17:13 - 2013-09-29 05:08 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-08 17:13 - 2013-09-29 05:00 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-01-08 17:13 - 2013-09-29 04:50 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-08 17:13 - 2013-09-29 04:44 - 00621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-01-08 17:13 - 2013-09-29 04:37 - 00837120 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-01-08 17:13 - 2013-09-29 04:28 - 00698880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-01-08 17:12 - 2014-01-09 14:53 - 00393458 _____ C:\Windows\WindowsUpdate.log
2014-01-08 17:12 - 2014-01-08 17:12 - 00000000 ____D C:\Windows\CSC
2014-01-08 17:09 - 2014-01-08 17:09 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-12-13 10:24 - 2013-12-13 10:24 - 00230912 _____ C:\Windows\system32\clinfo.exe
2013-12-13 10:24 - 2013-12-13 10:24 - 00129536 _____ (AMD) C:\Windows\system32\coinst_13.251.dll
2013-12-13 10:24 - 2013-12-13 10:24 - 00099840 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2013-12-13 10:24 - 2013-12-13 10:24 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2013-12-13 10:24 - 2013-12-13 10:24 - 00083968 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2013-12-13 10:24 - 2013-12-13 10:24 - 00073728 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 29382144 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 26352128 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 24860160 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 22157824 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 13207552 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2013-12-13 10:23 - 2013-12-13 10:23 - 09753752 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 08927704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 08406024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 08287008 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 07751920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 06630232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 03461040 _____ C:\Windows\SysWOW64\atiumdva.cap
2013-12-13 10:23 - 2013-12-13 10:23 - 03426688 _____ C:\Windows\system32\atiumd6a.cap
2013-12-13 10:23 - 2013-12-13 10:23 - 01318552 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 01187342 _____ C:\Windows\system32\amdocl_as64.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 01144320 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 01100216 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 01061902 _____ C:\Windows\system32\amdocl_ld64.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00995342 _____ C:\Windows\SysWOW64\amdocl_as32.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00825344 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00798734 _____ C:\Windows\SysWOW64\amdocl_ld32.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00721296 _____ C:\Windows\system32\atiicdxx.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00626176 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2013-12-13 10:23 - 2013-12-13 10:23 - 00588288 _____ (AMD) C:\Windows\system32\atieclxx.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00550456 _____ C:\Windows\SysWOW64\atiapfxx.blb
2013-12-13 10:23 - 2013-12-13 10:23 - 00550456 _____ C:\Windows\system32\atiapfxx.blb
2013-12-13 10:23 - 2013-12-13 10:23 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00412672 _____ C:\Windows\system32\amdmiracast.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00332800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00234036 _____ C:\Windows\system32\ativvaxy_cik.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00233776 _____ C:\Windows\system32\ativvaxy_cik_nd.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00204952 _____ C:\Windows\SysWOW64\ativvsvl.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00157144 _____ C:\Windows\SysWOW64\ativvsva.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00134656 _____ C:\Windows\system32\amdhdl64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00123392 _____ C:\Windows\SysWOW64\amdhdl32.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00115512 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00100352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00098496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00096768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00083552 _____ C:\Windows\system32\ativce02.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00074752 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00063488 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00057344 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00051200 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00047887 _____ C:\Windows\atiogl.xml
2013-12-13 10:23 - 2013-12-13 10:23 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00003917 _____ C:\Windows\SysWOW64\atipblag.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00003917 _____ C:\Windows\system32\atipblag.dat

==================== One Month Modified Files and Folders =======

2014-01-09 15:01 - 2014-01-09 15:01 - 00005623 _____ C:\Users\Martin\Desktop\FRST.txt
2014-01-09 15:01 - 2014-01-09 15:01 - 00000000 ____D C:\FRST
2014-01-09 15:00 - 2014-01-08 19:39 - 00000000 ____D C:\Users\Martin\Desktop\pro kontrolu PC
2014-01-09 15:00 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sru
2014-01-09 14:53 - 2014-01-08 17:12 - 00393458 _____ C:\Windows\WindowsUpdate.log
2014-01-09 14:40 - 2014-01-08 19:46 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-09 14:35 - 2014-01-08 17:50 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{054F10D9-20F5-4855-8190-FE9634D06A5F}
2014-01-09 14:33 - 2014-01-08 17:38 - 00000000 __RDO C:\Users\Martin\SkyDrive
2014-01-09 02:08 - 2013-08-22 16:36 - 00262144 _____ C:\Windows\system32\config\BCD-Template
2014-01-08 22:12 - 2014-01-08 17:35 - 00000000 ____D C:\Users\Martin
2014-01-08 21:57 - 2014-01-08 17:42 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3922118636-2724059933-2052731734-1001
2014-01-08 20:40 - 2014-01-08 20:40 - 00000000 ____D C:\Users\Martin\AppData\Roaming\HD Tune Pro
2014-01-08 20:40 - 2014-01-08 20:40 - 00000000 ____D C:\Program Files (x86)\HD Tune Pro
2014-01-08 20:38 - 2014-01-08 20:38 - 02195900 _____ (EFD Software ) C:\Users\Martin\Downloads\hdtunepro_550_trial.exe
2014-01-08 20:35 - 2014-01-08 17:58 - 00000000 ____D C:\Users\Martin\Downloads\_______
2014-01-08 19:54 - 2014-01-08 17:48 - 00705490 _____ C:\Windows\system32\perfh005.dat
2014-01-08 19:54 - 2014-01-08 17:48 - 00143834 _____ C:\Windows\system32\perfc005.dat
2014-01-08 19:54 - 2013-09-30 05:14 - 01658450 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-08 19:48 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-08 19:46 - 2014-01-08 19:46 - 00003802 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-08 19:46 - 2014-01-08 19:46 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Macromedia
2014-01-08 19:45 - 2014-01-08 19:45 - 00000000 ____D C:\Users\Martin\AppData\Local\Adobe
2014-01-08 19:35 - 2014-01-08 17:57 - 00000000 ____D C:\Program Files\WinRAR
2014-01-08 19:35 - 2013-09-30 05:02 - 00004590 _____ C:\Windows\PFRO.log
2014-01-08 19:35 - 2013-08-22 15:44 - 00481432 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-08 18:57 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2014-01-08 18:55 - 2014-01-08 18:54 - 00006042 _____ C:\Windows\DPINST.LOG
2014-01-08 18:55 - 2014-01-08 18:54 - 00001474 _____ C:\Windows\Synaptics.log
2014-01-08 18:54 - 2014-01-08 18:54 - 00000000 ____D C:\Users\Martin\Downloads\Synaptics_v17_0_19_C_XP32_Vista32_Win7-32_XP64_Vista64_Win7-64_Acme_Inc
2014-01-08 18:45 - 2014-01-08 18:45 - 00000039 _____ C:\Windows\SynInst.log
2014-01-08 18:42 - 2014-01-08 18:33 - 00000000 ____D C:\Users\Martin\.nbi
2014-01-08 18:41 - 2014-01-08 18:41 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-08 18:40 - 2014-01-08 18:33 - 00000000 ____D C:\Program Files\NetBeans 7.4
2014-01-08 18:39 - 2014-01-08 18:39 - 00000000 ____D C:\Users\Martin\AppData\Roaming\WinRAR
2014-01-08 18:32 - 2014-01-08 18:32 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-08 18:32 - 2014-01-08 18:32 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-08 18:32 - 2014-01-08 18:32 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-08 18:32 - 2014-01-08 18:32 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-08 18:32 - 2014-01-08 18:31 - 00000000 ____D C:\Program Files\Java
2014-01-08 18:26 - 2014-01-08 18:01 - 00000198 _____ C:\Users\Martin\Documents\EMAILY.txt
2014-01-08 18:17 - 2014-01-08 18:17 - 00001328 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\opera.lnk
2014-01-08 18:16 - 2014-01-08 18:16 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-01-08 18:16 - 2013-08-22 15:46 - 00014567 _____ C:\Windows\setupact.log
2014-01-08 18:14 - 2014-01-08 18:07 - 00000000 ____D C:\Program Files\KMSpico
2014-01-08 18:08 - 2014-01-08 18:08 - 00003706 _____ C:\Windows\System32\Tasks\AutoPico Daily Restart
2014-01-08 18:03 - 2014-01-08 17:56 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-08 18:02 - 2014-01-08 18:02 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2014-01-08 18:02 - 2013-09-30 04:54 - 00000000 ____D C:\Windows\ShellNew
2014-01-08 18:02 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2014-01-08 18:01 - 2014-01-08 18:01 - 00000000 ____D C:\Users\Martin\Documents\učebnice
2014-01-08 18:01 - 2014-01-08 18:01 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2014-01-08 18:01 - 2014-01-08 17:59 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2014-01-08 18:00 - 2014-01-08 18:00 - 00000000 ___RD C:\Users\Martin\Documents\Divoké kmeny
2014-01-08 18:00 - 2014-01-08 18:00 - 00000000 ____D C:\Users\Martin\Documents\NetBeansProjects
2014-01-08 18:00 - 2014-01-08 18:00 - 00000000 ____D C:\Users\Martin\Documents\FreeFileSync
2014-01-08 17:59 - 2014-01-08 17:59 - 00000000 ____D C:\Windows\PCHEALTH
2014-01-08 17:59 - 2014-01-08 17:59 - 00000000 ____D C:\ProgramData\APN
2014-01-08 17:59 - 2014-01-08 17:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-08 17:59 - 2014-01-08 17:56 - 00000000 ____D C:\Program Files\Microsoft Office Professional Plus 2013
2014-01-08 17:58 - 2014-01-08 17:58 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Opera Software
2014-01-08 17:58 - 2014-01-08 17:58 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2014-01-08 17:58 - 2014-01-08 17:58 - 00000000 ____D C:\Users\Martin\AppData\Local\Opera Software
2014-01-08 17:58 - 2014-01-08 17:58 - 00000000 ____D C:\Program Files (x86)\The KMPlayer
2014-01-08 17:58 - 2014-01-08 17:58 - 00000000 ____D C:\Program Files (x86)\Opera
2014-01-08 17:57 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\System
2014-01-08 17:57 - 2013-08-22 14:25 - 00000167 _____ C:\Windows\win.ini
2014-01-08 17:56 - 2014-01-08 17:56 - 00000000 __RHD C:\MSOCache
2014-01-08 17:56 - 2014-01-08 17:56 - 00000000 ____D C:\Users\Martin\AppData\Local\Microsoft Help
2014-01-08 17:56 - 2014-01-08 17:56 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2014-01-08 17:56 - 2014-01-08 17:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2014-01-08 17:56 - 2014-01-08 17:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2014-01-08 17:53 - 2014-01-08 17:37 - 00000000 ____D C:\Users\Martin\AppData\Local\Packages
2014-01-08 17:53 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2014-01-08 17:52 - 2014-01-08 17:52 - 00000720 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Putty.lnk
2014-01-08 17:52 - 2014-01-08 17:52 - 00000000 ____D C:\ProgramData\ESET
2014-01-08 17:52 - 2014-01-08 17:52 - 00000000 ____D C:\Program Files\ESET
2014-01-08 17:49 - 2014-01-08 17:49 - 00000000 ____D C:\Users\Martin\AppData\Roaming\ATI
2014-01-08 17:49 - 2014-01-08 17:49 - 00000000 ____D C:\Users\Martin\AppData\Local\ATI
2014-01-08 17:49 - 2014-01-08 17:49 - 00000000 ____D C:\Users\Martin\AppData\Local\AMD
2014-01-08 17:49 - 2014-01-08 17:49 - 00000000 ____D C:\ProgramData\ATI
2014-01-08 17:47 - 2014-01-08 17:48 - 00296666 _____ C:\Windows\system32\perfi005.dat
2014-01-08 17:47 - 2014-01-08 17:48 - 00038682 _____ C:\Windows\system32\perfd005.dat
2014-01-08 17:47 - 2014-01-08 17:47 - 00000000 ____D C:\Windows\SysWOW64\cs
2014-01-08 17:47 - 2014-01-08 17:47 - 00000000 ____D C:\Windows\system32\cs
2014-01-08 17:47 - 2013-09-30 04:54 - 00000000 ____D C:\Program Files\Windows Journal
2014-01-08 17:47 - 2013-09-30 04:50 - 00000000 ____D C:\Windows\SysWOW64\winrm
2014-01-08 17:47 - 2013-09-30 04:50 - 00000000 ____D C:\Windows\SysWOW64\WCN
2014-01-08 17:47 - 2013-09-30 04:50 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2014-01-08 17:47 - 2013-09-30 04:50 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-01-08 17:47 - 2013-09-30 04:50 - 00000000 ____D C:\Windows\system32\winrm
2014-01-08 17:47 - 2013-09-30 04:50 - 00000000 ____D C:\Windows\system32\WCN
2014-01-08 17:47 - 2013-09-30 04:50 - 00000000 ____D C:\Windows\system32\slmgr
2014-01-08 17:47 - 2013-09-30 04:50 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\WinStore
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\migwiz
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\Com
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\IME
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\Help
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\FileManager
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2014-01-08 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2014-01-08 17:47 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2014-01-08 17:47 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2014-01-08 17:47 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\Sysprep
2014-01-08 17:47 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\oobe
2014-01-08 17:47 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\Dism
2014-01-08 17:47 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\servicing
2014-01-08 17:42 - 2014-01-08 17:42 - 00060601 _____ C:\Windows\SysWOW64\CCCInstall_201401081742387490.log
2014-01-08 17:42 - 2014-01-08 17:42 - 00000000 ____D C:\ProgramData\AMD
2014-01-08 17:42 - 2014-01-08 17:42 - 00000000 ____D C:\Program Files\ATI Technologies
2014-01-08 17:42 - 2014-01-08 17:42 - 00000000 ____D C:\Program Files (x86)\Advanced Micro Devices, Inc
2014-01-08 17:42 - 2014-01-08 17:41 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2014-01-08 17:41 - 2014-01-08 17:41 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-08 17:41 - 2014-01-08 17:41 - 00000000 ____D C:\ProgramData\Package Cache
2014-01-08 17:41 - 2014-01-08 17:41 - 00000000 ____D C:\Program Files\AMD
2014-01-08 17:41 - 2014-01-08 17:41 - 00000000 ____D C:\AMD
2014-01-08 17:41 - 2014-01-08 17:41 - 00000000 _____ C:\Windows\ativpsrm.bin
2014-01-08 17:39 - 2014-01-08 17:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-01-08 17:39 - 2014-01-08 17:39 - 00000000 ____D C:\Program Files\Synaptics
2014-01-08 17:37 - 2014-01-09 02:08 - 00000000 ____D C:\Windows\Panther
2014-01-08 17:37 - 2014-01-08 17:37 - 00001446 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-08 17:37 - 2014-01-08 17:37 - 00000000 ___RD C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-08 17:37 - 2014-01-08 17:37 - 00000000 ___RD C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-08 17:37 - 2014-01-08 17:37 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2014-01-08 17:37 - 2014-01-08 17:37 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Adobe
2014-01-08 17:37 - 2014-01-08 17:37 - 00000000 ____D C:\Users\Martin\AppData\Local\VirtualStore
2014-01-08 17:35 - 2014-01-08 17:35 - 00000020 ___SH C:\Users\Martin\ntuser.ini
2014-01-08 17:12 - 2014-01-08 17:12 - 00000000 ____D C:\Windows\CSC
2014-01-08 17:10 - 2013-08-22 16:37 - 00002664 _____ C:\Windows\DtcInstall.log
2014-01-08 17:10 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\Recovery
2014-01-08 17:09 - 2014-01-08 17:09 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-01-07 16:59 - 2014-01-08 19:39 - 01931762 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2013-12-19 20:39 - 2014-01-08 18:00 - 00000700 _____ C:\Users\Martin\Documents\Verifier.txt
2013-12-13 10:24 - 2013-12-13 10:24 - 00230912 _____ C:\Windows\system32\clinfo.exe
2013-12-13 10:24 - 2013-12-13 10:24 - 00129536 _____ (AMD) C:\Windows\system32\coinst_13.251.dll
2013-12-13 10:24 - 2013-12-13 10:24 - 00099840 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2013-12-13 10:24 - 2013-12-13 10:24 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2013-12-13 10:24 - 2013-12-13 10:24 - 00083968 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2013-12-13 10:24 - 2013-12-13 10:24 - 00073728 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 29382144 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 26352128 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 24860160 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 22157824 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 13207552 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2013-12-13 10:23 - 2013-12-13 10:23 - 09753752 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 08927704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 08406024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 08287008 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 07751920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 06630232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 03461040 _____ C:\Windows\SysWOW64\atiumdva.cap
2013-12-13 10:23 - 2013-12-13 10:23 - 03426688 _____ C:\Windows\system32\atiumd6a.cap
2013-12-13 10:23 - 2013-12-13 10:23 - 01318552 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 01187342 _____ C:\Windows\system32\amdocl_as64.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 01144320 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 01100216 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 01061902 _____ C:\Windows\system32\amdocl_ld64.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00995342 _____ C:\Windows\SysWOW64\amdocl_as32.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00825344 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00798734 _____ C:\Windows\SysWOW64\amdocl_ld32.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00721296 _____ C:\Windows\system32\atiicdxx.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00626176 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2013-12-13 10:23 - 2013-12-13 10:23 - 00588288 _____ (AMD) C:\Windows\system32\atieclxx.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00550456 _____ C:\Windows\SysWOW64\atiapfxx.blb
2013-12-13 10:23 - 2013-12-13 10:23 - 00550456 _____ C:\Windows\system32\atiapfxx.blb
2013-12-13 10:23 - 2013-12-13 10:23 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00412672 _____ C:\Windows\system32\amdmiracast.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00332800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00234036 _____ C:\Windows\system32\ativvaxy_cik.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00233776 _____ C:\Windows\system32\ativvaxy_cik_nd.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00204952 _____ C:\Windows\SysWOW64\ativvsvl.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00157144 _____ C:\Windows\SysWOW64\ativvsva.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00134656 _____ C:\Windows\system32\amdhdl64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00123392 _____ C:\Windows\SysWOW64\amdhdl32.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00115512 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00100352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00098496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00096768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00083552 _____ C:\Windows\system32\ativce02.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00074752 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00063488 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00057344 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00051200 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2013-12-13 10:23 - 2013-12-13 10:23 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00047887 _____ C:\Windows\atiogl.xml
2013-12-13 10:23 - 2013-12-13 10:23 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2013-12-13 10:23 - 2013-12-13 10:23 - 00003917 _____ C:\Windows\SysWOW64\atipblag.dat
2013-12-13 10:23 - 2013-12-13 10:23 - 00003917 _____ C:\Windows\system32\atipblag.dat

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-08 17:08

==================== End Of Log ============================
Nahoru
KeežlaB
Level 2.5
Level 2.5
Příspěvky: 319
Registrován: prosinec 13
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu - prosím

Příspěvekod KeežlaB » 09 led 2014 15:03

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-01-2014
Ran by Martin at 2014-01-09 15:02:04
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: ESET NOD32 Antivirus 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
AMD Fuel (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 1.00.0000 - )
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
ESET NOD32 Antivirus (Version: 7.0.302.26 - ESET, spol s r. o.)
HD Tune Pro 5.50 (x32 Version: - EFD Software)
Java 7 Update 45 (64-bit) (Version: 7.0.450 - Oracle)
Java SE Development Kit 7 Update 45 (64-bit) (Version: 1.7.0.450 - Oracle)
KMSpico v9.0.5.20131112 (Version: 9.0.5.20131112 - )
Microsoft Access MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft DCF MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft Excel MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft Groove MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft Lync MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Word MUI (Czech) 2013 (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
NetBeans IDE 7.4 (Version: 7.4 - NetBeans.org)
Opera Stable 18.0.1284.68 (x32 Version: 18.0.1284.68 - Opera Software ASA)
Synaptics Pointing Device Driver (Version: 15.0.24.0 - Synaptics Incorporated)
The KMPlayer (remove only) (x32 Version: - )
WinRAR 5.01 (64-bit) (Version: 5.01.0 - win.rar GmbH)

==================== Restore Points =========================

08-01-2014 16:13:54 Windows Modules Installer
08-01-2014 17:28:14 Základní programy

==================== Hosts content: ==========================

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {035792A1-D4EF-4A78-BF9A-AA9628C281A3} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\System32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {7446BB9B-4090-4E4C-AF06-C2DA1B69DB05} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office Professional Plus 2013\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {8E13E1C4-5892-47FA-BF0D-CCE56CDCE87B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office Professional Plus 2013\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A089676C-E028-4C52-9F5B-84ABEDC4A296} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\microsoft shared\OFFICE15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {BFDA4F1A-9148-4A9B-9CCA-C78B387C64E2} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2013-11-12] ()
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E5EF477F-8A6B-4E85-8698-FE55F1FAFFA4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-08] (Adobe Systems Incorporated)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============


==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Martin\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Generic Bluetooth Adapter
Description: Generic Bluetooth Adapter
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: GenericAdapter
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/08/2014 09:00:32 PM) (Source: Software Protection Platform Service) (User: )
Description: Získání lístku pravosti se u šablony s ID {99d92734-d682-4d71-983e-d6ec3f16059f} nezdařilo (hr=0xC004C4B3)

Error: (01/08/2014 07:58:50 PM) (Source: Software Protection Platform Service) (User: )
Description: Získání lístku pravosti se u šablony s ID {99d92734-d682-4d71-983e-d6ec3f16059f} nezdařilo (hr=0xC004C4B3)

Error: (01/08/2014 07:58:48 PM) (Source: Software Protection Platform Service) (User: )
Description: Získání lístku pravosti se u šablony s ID {99d92734-d682-4d71-983e-d6ec3f16059f} nezdařilo (hr=0xC004C4B3)

Error: (01/08/2014 07:58:45 PM) (Source: Software Protection Platform Service) (User: )
Description: Získání lístku pravosti se u šablony s ID {99d92734-d682-4d71-983e-d6ec3f16059f} nezdařilo (hr=0xC004C4B3)

Error: (01/08/2014 07:58:38 PM) (Source: Software Protection Platform Service) (User: )
Description: Získání lístku pravosti se u šablony s ID {99d92734-d682-4d71-983e-d6ec3f16059f} nezdařilo (hr=0xC004C4B3)

Error: (01/08/2014 07:51:35 PM) (Source: Software Protection Platform Service) (User: )
Description: Získání lístku pravosti se u šablony s ID {99d92734-d682-4d71-983e-d6ec3f16059f} nezdařilo (hr=0xC004C4B3)

Error: (01/08/2014 07:51:19 PM) (Source: Software Protection Platform Service) (User: )
Description: Získání lístku pravosti se u šablony s ID {99d92734-d682-4d71-983e-d6ec3f16059f} nezdařilo (hr=0xC004C4B3)

Error: (01/08/2014 07:51:17 PM) (Source: Software Protection Platform Service) (User: )
Description: Získání lístku pravosti se u šablony s ID {99d92734-d682-4d71-983e-d6ec3f16059f} nezdařilo (hr=0xC004C4B3)

Error: (01/08/2014 07:46:02 PM) (Source: Software Protection Platform Service) (User: )
Description: Získání lístku pravosti se u šablony s ID {99d92734-d682-4d71-983e-d6ec3f16059f} nezdařilo (hr=0xC004C4B3)

Error: (01/08/2014 07:45:59 PM) (Source: Software Protection Platform Service) (User: )
Description: Získání lístku pravosti se u šablony s ID {99d92734-d682-4d71-983e-d6ec3f16059f} nezdařilo (hr=0xC004C4B3)


System errors:
=============
Error: (01/08/2014 07:58:27 PM) (Source: Service Control Manager) (User: )
Description: Služba Service KMSELDI byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/08/2014 07:47:57 PM) (Source: EventLog) (User: )
Description: Předchozí vypnutí systému (19:35:35, ‎8. ‎1. ‎2014) bylo neočekávané.

Error: (01/08/2014 07:45:18 PM) (Source: Service Control Manager) (User: )
Description: Služba Service KMSELDI byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/08/2014 06:13:10 PM) (Source: Service Control Manager) (User: )
Description: Služba KMS Server Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/08/2014 05:56:44 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: Ze vzdáleného koncového bodu byla přijata následující výstraha o závažné chybě. Kód výstrahy o závažné chybě definovaný protokolem TLS: 40

Error: (01/08/2014 05:56:44 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: Ze vzdáleného koncového bodu byla přijata následující výstraha o závažné chybě. Kód výstrahy o závažné chybě definovaný protokolem TLS: 40

Error: (01/08/2014 05:55:25 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: Ze vzdáleného koncového bodu byla přijata následující výstraha o závažné chybě. Kód výstrahy o závažné chybě definovaný protokolem TLS: 40

Error: (01/08/2014 05:55:25 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: Ze vzdáleného koncového bodu byla přijata následující výstraha o závažné chybě. Kód výstrahy o závažné chybě definovaný protokolem TLS: 40

Error: (01/08/2014 05:53:10 PM) (Source: Service Control Manager) (User: )
Description: Služba ESET Service je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/08/2014 05:51:15 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: Ze vzdáleného koncového bodu byla přijata následující výstraha o závažné chybě. Kód výstrahy o závažné chybě definovaný protokolem TLS: 40


Microsoft Office Sessions:
=========================
Error: (01/08/2014 09:00:32 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004C4B3{99d92734-d682-4d71-983e-d6ec3f16059f}

Error: (01/08/2014 07:58:50 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004C4B3{99d92734-d682-4d71-983e-d6ec3f16059f}

Error: (01/08/2014 07:58:48 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004C4B3{99d92734-d682-4d71-983e-d6ec3f16059f}

Error: (01/08/2014 07:58:45 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004C4B3{99d92734-d682-4d71-983e-d6ec3f16059f}

Error: (01/08/2014 07:58:38 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004C4B3{99d92734-d682-4d71-983e-d6ec3f16059f}

Error: (01/08/2014 07:51:35 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004C4B3{99d92734-d682-4d71-983e-d6ec3f16059f}

Error: (01/08/2014 07:51:19 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004C4B3{99d92734-d682-4d71-983e-d6ec3f16059f}

Error: (01/08/2014 07:51:17 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004C4B3{99d92734-d682-4d71-983e-d6ec3f16059f}

Error: (01/08/2014 07:46:02 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004C4B3{99d92734-d682-4d71-983e-d6ec3f16059f}

Error: (01/08/2014 07:45:59 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004C4B3{99d92734-d682-4d71-983e-d6ec3f16059f}


==================== Memory info ===========================

Percentage of memory in use: 30%
Total physical RAM: 2806.43 MB
Available physical RAM: 1957.78 MB
Total Pagefile: 4086.43 MB
Available Pagefile: 3196.73 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:130.03 GB) (Free:110.5 GB) NTFS
Drive d: (Místní disk) (Fixed) (Total:167.72 GB) (Free:167.18 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: B99E5982)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=130 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=168 GB) - (Type=07 NTFS)

==================== End Of Log ============================
Nahoru
Odpovědět

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 65 hostů