Během skenování nebyl PC připojen k internetu...
FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 30-07-2013 04
Ran by Eragon (administrator) on 01-08-2013 11:42:24
Running from C:\Users\Eragon\Desktop
Microsoft® Windows Vista™ Home Premium Service Pack 1 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(Nalpeiron Ltd.) C:\Windows\system32\nlssrv32.exe
() C:\Windows\system32\PnkBstrA.exe
() C:\Windows\system32\PnkBstrB.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(Microsoft Corp.) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(ASUS) C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
() C:\Program Files\ASUS\Wireless Console 3\wcourier.exe
(ASUS) C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\WDC.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(AlcorMicro Co., Ltd.) C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
(ASUS) C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files\ASUS\ATK Media\DMedia.exe
(ASUS) C:\Windows\AsScrPro.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(CyberLink) C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(ZONER software) C:\Moje programy\Photo Studio 15\Program32\ZPSTray.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel.exe
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
(Gemius) C:\Moje programy\NetSoftware\NetSoftware.exe
(Microsoft Corporation) C:\Windows\ehome\ehRecvr.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Almico Software (
www.almico.com)) D:\Programy\SpeedFan\speedfan.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Avira Operations GmbH & Co. KG) C:\program files\avira\antivir desktop\avcenter.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\IELowutil.exe
(forum.viry.cz) C:\Users\Eragon\Downloads\FRSTLauncher (1).exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [UpdateLBPShortCut] - C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup [x]
HKLM\...\Run: [ETDWare] - C:\Program Files\Elantech\ETDCtrl.exe [497024 2009-07-30] (ELAN Microelectronic Corp.)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7612960 2009-07-10] (Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun] - C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe [237568 2009-04-09] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [HControlUser] - C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM\...\Run: [ATKOSD2] - C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe [8493624 2009-07-07] (ASUS)
HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMedia.exe [170624 2009-08-20] (ASUS)
HKLM\...\Run: [ASUS Screen Saver Protector] - C:\Windows\AsScrPro.exe [3054136 2009-09-08] (ASUS)
HKLM\...\Run: [ASUS Camera ScreenSaver] - C:\Windows\AsScrProlog.exe [72248 2009-09-08] (ASUS)
HKLM\...\Run: [ADSMTray] - C:\Program Files\ASUS\ASUS Data Security Manager\ADSMTray.exe [272952 2009-06-24] (ASUSTek Computer Inc.)
HKLM\...\Run: [MDS_Menu] - C:\Program Files\Cyberlink\MediaShowEspresso\MUITransfer\MUIStartMenu.exe [218408 2009-02-25] (CyberLink Corp.)
HKLM\...\Run: [UpdatePDRShortCut] - C:\Program Files\Cyberlink\PowerDirector\MUITransfer\MUIStartMenu.exe [218408 2008-12-04] (CyberLink Corp.)
HKLM\...\Run: [RemoteControl9] - C:\Program Files\Cyberlink\PowerDVD9\PDVD9Serv.exe [87336 2009-04-28] (CyberLink Corp.)
HKLM\...\Run: [PDVD9LanguageShortcut] - C:\Program Files\Cyberlink\PowerDVD9\Language\Language.exe [50472 2009-04-28] (CyberLink Corp.)
HKLM\...\Run: [UpdatePSTShortCut] - C:\Program Files\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-08-15] (CyberLink Corp.)
HKLM\...\Run: [P2Go_Menu] - C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [NetSoftware] - C:\Moje programy\NetSoftware\Starter.exe [189952 2013-04-19] (Gemius)
HKLM\...\Run: [CLMLServer] - C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [104936 2008-07-18] (CyberLink)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS6ServiceManager] - C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [345144 2013-07-30] (Avira Operations GmbH & Co. KG)
HKLM\...\InprocServer32: [Default-cscui] <==== ATTENTION!
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Eragon\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-08-05] (Google Inc.)
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [Zoner Photo Studio Autoupdate] - C:\Moje programy\Photo Studio 15\Program32\ZPSTRAY.EXE [774680 2013-06-07] (ZONER software)
HKCU\...\Run: [Facebook Update] - C:\Users\Eragon\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-07-24] (Facebook Inc.)
MountPoints2: {8085575b-d17e-11e1-b84e-90e6ba2c406c} - G:\AutoRun.exe
MountPoints2: {91bab4f2-2be9-11e1-8348-90e6ba2c406c} - G:\Startme.exe
HKU\Default\...\Run: [WindowsWelcomeCenter] - C:\Windows\System32\oobefldr.dll [ 2008-01-21] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\ASUS\ASUS Data Security Manager\ASPWDFLT
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk
ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}\_A1DDD39913A1970387B7B3.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS Premium Sound.lnk
ShortcutTarget: SRS Premium Sound.lnk -> C:\Windows\Installer\{D42F84B6-3709-4A50-8502-6719D16AE6C8}\NewShortcut4_E9C83B3EDF9141A39DA5EC05C79BBB91.exe (Acresso Software Inc.)
Startup: C:\Users\Eragon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://asus.msn.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.com/ig/redirectdomain ... &bmod=ASUS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.google.com/ig/redirectdomain ... &bmod=ASUS
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
http://www.bing.com/search
BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Internet Panel - {CE7C3CF0-4B15-11D1-ABED-709549C10000} - C:\Moje programy\NetSoftware\IEHelper.dll (Gemius)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Toolbar: HKLM - &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Toolbar: HKCU -&Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2210608 2006-10-27] (Microsoft Corporation)
Winsock: Catalog5 02 %SystemRoot%\system32\napinsp.dll [50176] (Společnost Microsoft)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 42 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.2
FireFox:
========
FF ProfilePath: C:\Users\Eragon\AppData\Roaming\Mozilla\Firefox\Profiles\0z10jc6j.default
FF SelectedSearchEngine: ICQ Search
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8051.1204 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @playstation.com/PsndlCheck,version=1.00 - C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.)
FF Plugin: @SonyCreativeSoftware.com/Media Go,version=1.0 - C:\Program Files\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC)
FF Plugin: @videolan.org/vlc,version=2.0.6 - D:\Programy\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Eragon\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Eragon\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\Eragon\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn\
FF HKCU\...\Firefox\Extensions: [
gemgecko@gemius.com] C:\Moje programy\NetSoftware\gemgecko_ext\
FF Extension: Výzkum NetMonitor - C:\Moje programy\NetSoftware\gemgecko_ext\
FF StartMenuInternet: FIREFOX.EXE - D:\Programy\Mozilla Firefox\firefox.exe
Chrome:
=======
CHR HomePage: hxxp://
www.seznam.cz/
CHR RestoreOnStartup: "hxxp://
www.google.com"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\Eragon\AppData\Local\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Eragon\AppData\Local\Google\Chrome\Application\28.0.1500.72\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_265.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Eragon\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Eragon\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\\u00AE Windows Media Player Firefox Plugin) - D:\Programy\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U33) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.330.5) - C:\Windows\system32\npdeployJava1.dll (Oracle Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (Media Go Detector) - C:\Program Files\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC)
CHR Plugin: (PlayStation(R)Network Downloader Check Plug-in) - C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.)
CHR Plugin: (Windows Live\\u00AE Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Eragon\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (
http://jizdnirady.idnes.cz/ostrava/spojeni/) - C:\Users\Eragon\AppData\Local\Google\Chrome\User Data\Default\Extensions\abdialimkbnhgbblbepgmmjhjndngeda\2012.9.28.52656_0
CHR Extension: (
http://translate.google.cz/) - C:\Users\Eragon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahlagfghnfgpjkanemnddagekadalamm\2012.8.11.22055_0
CHR Extension: (
http://rallyzone.autoroad.cz/) - C:\Users\Eragon\AppData\Local\Google\Chrome\User Data\Default\Extensions\aicnlonoflieeeignmhjlablenlijjbc\2012.11.14.36029_0
CHR Extension: (
http://www.sledujuserialy.cz/) - C:\Users\Eragon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccojcjbenfcgecopgbiklhefamjiibpo\2013.7.22.50245_0
CHR Extension: (
http://jizdnirady.idnes.cz/odis/spojeni/) - C:\Users\Eragon\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnkjdmckmfeimfjeanbnemjloomocjag\2012.8.11.20533_0
CHR Extension: (
http://www.lifeinline.cz/zav/opava) - C:\Users\Eragon\AppData\Local\Google\Chrome\User Data\Default\Extensions\foibgnkhkeblpgahdcpmkpecfhgbcppg\2013.6.16.60058_0
CHR Extension: (
http://www.potravinynapranyri.cz/Search.aspx?) - C:\Users\Eragon\AppData\Local\Google\Chrome\User Data\Default\Extensions\iddbhplhjkpnglkiekdhaockknkkjckn\2012.8.11.20551_0
CHR Extension: (
http://www.medard-online.cz/) - C:\Users\Eragon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikgooecebojclkpolndindomepnmncca\2012.8.11.43781_0
CHR Extension: (
http://www.topgear4fan.cz/index.php?option=co) - C:\Users\Eragon\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbhanemeodhldimmehoeicepaaicllnf\2013.6.11.39440_0
CHR Extension: (
http://www.ls-novinky.cz/Navody.html) - C:\Users\Eragon\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfmabhgbopjjmfnnkmokjeoomekngpid\2012.8.11.20540_0
CHR Extension: (
http://www.scalextrichornilhota.estranky.cz/) - C:\Users\Eragon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnadlnbjjfpkjfgnloaiodjelgecikkm\2013.5.12.52084_0
CHR Extension: (Blue Space Sunset Chrome Theme ) - C:\Users\Eragon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nndfdjfoclbidmgpmbelcieibgjjfdog\3.5_1
CHR Extension: (
http://weedarr.wikidot.com/skinlistc) - C:\Users\Eragon\AppData\Local\Google\Chrome\User Data\Default\Extensions\onpjfdbcllgdapbboomciblfanihedcg\2013.3.6.629_0
========================== Services (Whitelisted) =================
R2 ADSMService; C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe [225280 2008-03-31] (ASUSTek Computer Inc.)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-07-30] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-07-30] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [589368 2013-07-30] (Avira Operations GmbH & Co. KG)
R2 ASLDRService; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [84536 2009-06-16] (ASUS)
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] ()
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [66872 2012-03-26] ()
R2 PnkBstrB; C:\Windows\system32\PnkBstrB.exe [103736 2012-03-26] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [247152 2009-01-21] ()
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155320 2012-01-18] (Avanquest Software)
==================== Drivers (Whitelisted) ====================
S3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [25600 2009-05-08] (Alcor Micro, Corp.)
R0 AsDsm; C:\Windows\System32\Drivers\AsDsm.sys [30264 2009-09-08] (ASUSTek Computer Inc)
R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [281760 2011-10-08] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [84744 2013-07-30] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135136 2013-07-30] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-07-30] (Avira Operations GmbH & Co. KG)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [218688 2011-07-27] (DT Soft Ltd)
R3 ETD; C:\Windows\System32\DRIVERS\ETD.sys [87040 2009-07-29] (ELAN Microelectronic Corp.)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [192056 2008-01-21] (Společnost Microsoft)
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] ()
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [13880 2008-11-03] ( )
R3 L1C; C:\Windows\System32\DRIVERS\L1C60x86.sys [50688 2009-07-27] (Atheros Communications, Inc.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [25888 2011-10-08] ()
R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15416 2009-06-18] (Windows (R) Win 7 DDK provider)
R3 mod7700; C:\Windows\System32\Drivers\dvb7700all.sys [448640 2008-12-09] (DiBcom)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [14392 2008-12-24] (ATK0100)
R3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [1081912 2008-01-21] (Společnost Microsoft)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1752704 2008-08-11] ()
R0 speedfan; C:\Windows\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-07-30] (Avira GmbH)
S3 Huawei; system32\DRIVERS\ewdcsc.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-08-01 11:42 - 2013-08-01 11:42 - 00000000 ____D C:\Users\Eragon\AppData\Local\qb309DFA4.B6
2013-08-01 11:42 - 2013-08-01 11:42 - 00000000 ____D C:\Users\Eragon\AppData\Local\qb309B402.F2
2013-08-01 11:42 - 2013-08-01 11:42 - 00000000 ____D C:\FRST
2013-08-01 11:40 - 2013-08-01 11:40 - 00000000 ____D C:\Users\Eragon\AppData\Local\qb308B25D.92
2013-08-01 11:40 - 2013-07-30 20:47 - 01222064 _____ (Farbar) C:\Users\Eragon\Desktop\FRST.exe
2013-08-01 11:39 - 2013-08-01 11:39 - 00364544 _____ (forum.viry.cz) C:\Users\Eragon\Downloads\FRSTLauncher (1).exe
2013-08-01 11:38 - 2013-08-01 11:38 - 00000000 ____D C:\Users\Eragon\AppData\Local\qb306A2E2.76
2013-08-01 11:38 - 2013-08-01 11:38 - 00000000 ____D C:\Users\Eragon\AppData\Local\qb3064C3B.52
2013-07-31 21:29 - 2013-07-31 21:31 - 00004934 _____ C:\AdwCleaner[S1].txt
2013-07-31 01:21 - 2013-07-31 01:21 - 00004790 _____ C:\AdwCleaner[R1].txt
2013-07-31 01:20 - 2013-07-31 01:20 - 00001990 _____ C:\Users\Eragon\Desktop\JRT.txt
2013-07-31 01:17 - 2013-07-31 01:17 - 00666633 _____ C:\Users\Eragon\Downloads\adwcleaner.exe
2013-07-31 01:17 - 2013-07-31 01:17 - 00000000 ____D C:\Windows\ERUNT
2013-07-30 17:47 - 2013-07-30 17:47 - 00000044 _____ C:\Users\Eragon\Desktop\viry.txt
2013-07-30 17:46 - 2013-07-30 17:54 - 00000000 ____D C:\Program Files\trend micro
2013-07-30 17:46 - 2013-07-30 17:46 - 00000000 ____D C:\rsit
2013-07-30 16:25 - 2013-07-30 16:25 - 00000000 ____D C:\Users\Eragon\AppData\Roaming\Avira
2013-07-30 16:19 - 2013-07-30 16:41 - 00001854 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-07-30 16:19 - 2013-07-30 16:41 - 00000000 ____D C:\ProgramData\Avira
2013-07-30 16:19 - 2013-07-30 16:19 - 00000000 ____D C:\Program Files\Avira
2013-07-30 16:19 - 2013-07-30 16:08 - 00135136 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-07-30 16:19 - 2013-07-30 16:08 - 00084744 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-07-30 16:19 - 2013-07-30 16:08 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-07-30 16:19 - 2013-07-30 16:08 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-07-28 21:31 - 2013-07-30 14:34 - 00000000 ____D C:\Windows\pss
2013-07-27 23:28 - 2013-07-27 23:28 - 00586741 _____ C:\Users\Eragon\Downloads\amtlib.rar
2013-07-24 14:20 - 2013-08-01 11:25 - 00000932 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000UA.job
2013-07-24 14:20 - 2013-07-26 14:25 - 00000910 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000Core.job
2013-07-24 14:20 - 2013-07-24 14:20 - 00000000 ____D C:\Users\Eragon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2013-07-23 18:05 - 2013-07-28 00:28 - 00000000 ____D C:\Users\Eragon\Downloads\new
2013-07-14 13:50 - 2013-07-14 13:50 - 00000000 ____D C:\ProgramData\WindowsSearch
2013-07-13 01:16 - 2013-07-25 10:57 - 00008555 _____ C:\Users\Eragon\Desktop\Práce - Výdaje.xlsx
2013-07-05 17:14 - 2013-07-05 17:31 - 402316604 _____ C:\Users\Eragon\Downloads\Ulice-2435.díl.avi
==================== One Month Modified Files and Folders =======
2013-08-01 11:42 - 2013-08-01 11:42 - 00000000 ____D C:\Users\Eragon\AppData\Local\qb309DFA4.B6
2013-08-01 11:42 - 2013-08-01 11:42 - 00000000 ____D C:\Users\Eragon\AppData\Local\qb309B402.F2
2013-08-01 11:42 - 2013-08-01 11:42 - 00000000 ____D C:\FRST
2013-08-01 11:42 - 2012-08-05 11:53 - 00000966 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000UA.job
2013-08-01 11:40 - 2013-08-01 11:40 - 00000000 ____D C:\Users\Eragon\AppData\Local\qb308B25D.92
2013-08-01 11:39 - 2013-08-01 11:39 - 00364544 _____ (forum.viry.cz) C:\Users\Eragon\Downloads\FRSTLauncher (1).exe
2013-08-01 11:38 - 2013-08-01 11:38 - 00000000 ____D C:\Users\Eragon\AppData\Local\qb306A2E2.76
2013-08-01 11:38 - 2013-08-01 11:38 - 00000000 ____D C:\Users\Eragon\AppData\Local\qb3064C3B.52
2013-08-01 11:32 - 2011-09-07 17:32 - 00000000 ____D C:\ProgramData\NetSoftware
2013-08-01 11:25 - 2013-07-24 14:20 - 00000932 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000UA.job
2013-08-01 11:08 - 2009-09-08 21:06 - 01217478 _____ C:\Windows\WindowsUpdate.log
2013-08-01 11:07 - 2009-09-08 22:02 - 00048734 _____ C:\ProgramData\nvModes.dat
2013-08-01 11:07 - 2009-09-08 22:02 - 00048734 _____ C:\ProgramData\nvModes.001
2013-08-01 11:07 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-01 11:07 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-31 21:34 - 2006-11-02 14:37 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-07-31 21:33 - 2011-07-27 00:30 - 00000000 ____D C:\Users\Eragon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS Video Magic
2013-07-31 21:33 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-31 21:32 - 2009-09-08 21:06 - 00000012 _____ C:\Windows\bthservsdp.dat
2013-07-31 21:32 - 2006-11-02 15:01 - 00032614 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-07-31 21:31 - 2013-07-31 21:29 - 00004934 _____ C:\AdwCleaner[S1].txt
2013-07-31 21:29 - 2012-08-31 00:08 - 00000000 ____D C:\ProgramData\ICQ
2013-07-31 01:21 - 2013-07-31 01:21 - 00004790 _____ C:\AdwCleaner[R1].txt
2013-07-31 01:20 - 2013-07-31 01:20 - 00001990 _____ C:\Users\Eragon\Desktop\JRT.txt
2013-07-31 01:17 - 2013-07-31 01:17 - 00666633 _____ C:\Users\Eragon\Downloads\adwcleaner.exe
2013-07-31 01:17 - 2013-07-31 01:17 - 00000000 ____D C:\Windows\ERUNT
2013-07-30 23:02 - 2012-03-24 14:17 - 00000000 ___RD C:\Users\Eragon\Desktop\lukáš flashka
2013-07-30 23:02 - 2011-07-27 11:12 - 00000000 ___RD C:\Users\Eragon\Downloads\Programy
2013-07-30 22:42 - 2012-08-05 11:53 - 00000914 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000Core.job
2013-07-30 20:47 - 2013-08-01 11:40 - 01222064 _____ (Farbar) C:\Users\Eragon\Desktop\FRST.exe
2013-07-30 19:45 - 2012-10-30 20:46 - 00000000 ____D C:\Users\Eragon\AppData\Local\CrashDumps
2013-07-30 17:54 - 2013-07-30 17:46 - 00000000 ____D C:\Program Files\trend micro
2013-07-30 17:47 - 2013-07-30 17:47 - 00000044 _____ C:\Users\Eragon\Desktop\viry.txt
2013-07-30 17:46 - 2013-07-30 17:46 - 00000000 ____D C:\rsit
2013-07-30 16:43 - 2008-01-21 04:47 - 00352498 _____ C:\Windows\PFRO.log
2013-07-30 16:41 - 2013-07-30 16:19 - 00001854 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-07-30 16:41 - 2013-07-30 16:19 - 00000000 ____D C:\ProgramData\Avira
2013-07-30 16:25 - 2013-07-30 16:25 - 00000000 ____D C:\Users\Eragon\AppData\Roaming\Avira
2013-07-30 16:19 - 2013-07-30 16:19 - 00000000 ____D C:\Program Files\Avira
2013-07-30 16:16 - 2009-09-08 21:30 - 00000000 ____D C:\ProgramData\Norton
2013-07-30 16:10 - 2011-10-25 20:49 - 00001912 _____ C:\Windows\epplauncher.mif
2013-07-30 16:09 - 2006-11-02 13:18 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2013-07-30 16:08 - 2013-07-30 16:19 - 00135136 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-07-30 16:08 - 2013-07-30 16:19 - 00084744 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-07-30 16:08 - 2013-07-30 16:19 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-07-30 16:08 - 2013-07-30 16:19 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-07-30 16:04 - 2011-08-12 11:56 - 00000000 ___RD C:\Users\Eragon\Downloads\Obrázky+Fotky
2013-07-30 14:34 - 2013-07-28 21:31 - 00000000 ____D C:\Windows\pss
2013-07-30 01:03 - 2012-11-27 21:00 - 00000000 ___RD C:\Users\Eragon\Desktop\Moje Tvorba
2013-07-29 00:35 - 2012-06-23 23:58 - 00011264 ____H C:\Users\Eragon\Desktop\photothumb.db
2013-07-28 11:35 - 2006-11-02 12:33 - 01408954 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-28 00:28 - 2013-07-23 18:05 - 00000000 ____D C:\Users\Eragon\Downloads\new
2013-07-28 00:28 - 2011-07-27 16:37 - 00000000 ___RD C:\Users\Eragon\Downloads\Hry
2013-07-27 23:28 - 2013-07-27 23:28 - 00586741 _____ C:\Users\Eragon\Downloads\amtlib.rar
2013-07-27 22:05 - 2013-03-31 12:59 - 00000132 _____ C:\Users\Eragon\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2013-07-27 12:13 - 2011-07-27 19:19 - 00000000 ____D C:\Moje programy
2013-07-26 14:25 - 2013-07-24 14:20 - 00000910 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000Core.job
2013-07-25 10:57 - 2013-07-13 01:16 - 00008555 _____ C:\Users\Eragon\Desktop\Práce - Výdaje.xlsx
2013-07-25 01:09 - 2013-06-28 23:57 - 00000000 ___RD C:\Users\Eragon\Desktop\Fotky z paměťovky na probrání
2013-07-24 14:20 - 2013-07-24 14:20 - 00000000 ____D C:\Users\Eragon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2013-07-24 14:20 - 2013-01-04 21:18 - 00000000 ____D C:\Users\Eragon\AppData\Local\Facebook
2013-07-24 11:37 - 2011-12-28 12:36 - 00000680 _____ C:\Users\Eragon\AppData\Local\d3d9caps.dat
2013-07-23 18:35 - 2006-11-02 14:52 - 00290064 _____ C:\Windows\setupact.log
2013-07-23 14:20 - 2012-08-30 23:56 - 00000000 ____D C:\Users\Eragon\AppData\Roaming\ICQ
2013-07-22 23:30 - 2013-04-14 15:09 - 00000000 ____D C:\Users\Eragon\AppData\Roaming\vlc
2013-07-22 10:28 - 2013-03-04 00:17 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-07-22 10:28 - 2013-03-04 00:17 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-07-22 10:28 - 2011-07-27 01:01 - 00000000 ____D C:\Users\Eragon\AppData\Local\Adobe
2013-07-21 18:55 - 2011-07-27 11:12 - 00115200 _____ C:\Users\Eragon\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-07-21 18:45 - 2011-11-16 01:07 - 00000000 ___RD C:\Users\Eragon\Desktop\soubory mix
2013-07-14 21:24 - 2011-07-27 11:46 - 00000000 ___RD C:\Users\Eragon\Desktop\Hry
2013-07-14 21:19 - 2012-12-15 12:36 - 00000000 ____D C:\Users\Eragon\Documents\Poznámkové bloky aplikace OneNote
2013-07-14 15:44 - 2011-07-27 19:20 - 00000000 ____D C:\Users\Eragon\AppData\Roaming\DAEMON Tools Lite
2013-07-14 13:50 - 2013-07-14 13:50 - 00000000 ____D C:\ProgramData\WindowsSearch
2013-07-07 16:58 - 2012-09-08 00:21 - 00000000 ___RD C:\Users\Eragon\Desktop\zatřídit!!!!
2013-07-07 16:52 - 2012-06-17 11:12 - 00000000 ___RD C:\Users\Eragon\Desktop\Moje Fotky
2013-07-05 17:31 - 2013-07-05 17:14 - 402316604 _____ C:\Users\Eragon\Downloads\Ulice-2435.díl.avi
Files to move or delete:
====================
C:\ProgramData\nvModes.dat
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-31 21:39
==================== Scheduled Tasks (whitelisted) ===========
Task: {0C3AF200-FADC-49E5-880E-DEE192C8B79A} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\Windows\system32\RAServer.exe [2008-01-21] (Společnost Microsoft)
Task: {117CB895-72D3-4D20-9814-5628E379EA73} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000Core => C:\Users\Eragon\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-24] (Facebook Inc.)
Task: {1A14EABF-595F-4122-A0B3-021468712F86} - System32\Tasks\ASUS Live Update => C:\Program Files\ASUS\ASUS Live Update\ALU.exe [2007-11-30] ()
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {22A8EC74-F92B-45B3-A305-8126D6D7688F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000Core => C:\Users\Eragon\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-05] (Google Inc.)
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {387CA62D-CAF1-4790-8C0E-B39F153432E7} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files\ASUS\SmartLogon\sensorsrv.exe [2009-05-19] (ASUS)
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {4F61BDFB-B15F-4D76-8345-81EB11D05AD0} - System32\Tasks\P4GIntlCtrl => C:\Program Files\P4G\IntlCtrl.exe [2009-08-11] (TODO: <Company name>)
Task: {563233B8-BA93-4966-83AC-717B197A87CA} - System32\Tasks\ACMON => C:\Program Files\ASUS\Splendid\ACMON.exe [2009-07-23] (ATK)
Task: {680774D3-A0B4-4595-8305-D33A0E720446} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-12] (Microsoft Corporation)
Task: {722E9EDA-904C-40C7-AA85-4829EE186B30} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - Eragon => C:\Program Files\Windows Calendar\WinCal.exe [2008-01-21] (Microsoft Corporation)
Task: {87F552D6-E44C-4143-BE26-88D76D56D5A7} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000UA => C:\Users\Eragon\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-05] (Google Inc.)
Task: {903A2367-1705-4DC4-A2D5-0803773DB704} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2008-01-21] (Microsoft Corporation)
Task: {A61555D3-7840-45C1-A5A9-0D49851DE37A} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\OptinNotification => C:\Windows\System32\wsqmcons.exe [2008-01-21] (Microsoft Corporation)
Task: {B9D70412-43CD-4D72-A0A2-1EA7C126E25D} - System32\Tasks\WC3 => C:\Program Files\ASUS\Wireless Console 3\wcourier.exe [2009-07-24] ()
Task: {BAB6F247-531F-4361-992A-3E0FBF49C15C} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2009-08-11] (ATK)
Task: {DEF9CB9D-2A14-4E04-B0DA-458BDCD65BCB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000UA => C:\Users\Eragon\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-24] (Facebook Inc.)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {ECC0DF3A-028C-4713-A656-7408CB3D5BCB} - System32\Tasks\ASPG => C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe [2009-06-29] (ASUS)
Task: {FE265062-39AF-45A7-AF18-96AD668CB33C} - System32\Tasks\P4G Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-21] (Microsoft Corporation)
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000Core.job => C:\Users\Eragon\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000UA.job => C:\Users\Eragon\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000Core.job => C:\Users\Eragon\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2648847288-1022183937-1090160603-1000UA.job => C:\Users\Eragon\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Supplementary Scan (All) ================
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NtVdmSrv
command REG_SZ C:\Windows\inf\ntvdm.vbe
Soubor C:\Windows\inf\ntvdm.vbe ... neexistuje.
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=dword:00000002
"ConsentPromptBehaviorUser"=dword:00000001
"EnableInstallerDetection"=dword:00000001
"EnableLUA"=dword:00000001
"EnableSecureUIAPaths"=dword:00000001
"EnableVirtualization"=dword:00000001
"PromptOnSecureDesktop"=dword:00000001
"ValidateAdminCodeSignatures"=dword:00000000
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"scforceoption"=dword:00000000
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
"FilterAdministratorToken"=dword:00000000
"EnableUIADesktopToggle"=dword:00000000
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\UIPI]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\UIPI\Clipboard]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\UIPI\Clipboard\ExceptionFormats]
"CF_TEXT"=dword:00000001
"CF_BITMAP"=dword:00000002
"CF_OEMTEXT"=dword:00000007
"CF_DIB"=dword:00000008
"CF_PALETTE"=dword:00000009
"CF_UNICODETEXT"=dword:0000000d
"CF_DIBV5"=dword:00000011
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"="msrle32.dll"
"vidc.msvc"="msvidc32.dll"
"msacm.imaadpcm"="imaadp32.acm"
"msacm.msg711"="msg711.acm"
"msacm.msgsm610"="msgsm32.acm"
"msacm.msadpcm"="msadp32.acm"
"midimapper"="midimap.dll"
"wavemapper"="msacm32.drv"
"VIDC.UYVY"="msyuv.dll"
"VIDC.YUY2"="msyuv.dll"
"VIDC.YVYU"="msyuv.dll"
"VIDC.IYUV"="iyuv_32.dll"
"vidc.i420"="iyuv_32.dll"
"VIDC.YVU9"="tsbyuv.dll"
"msacm.l3acm"="C:\\Windows\\System32\\l3codeca.acm"
"vidc.cvid"="iccvid.dll"
"MSVideo8"="VfWWDM32.dll"
"wave"="wdmaud.drv"
"midi"="wdmaud.drv"
"mixer"="wdmaud.drv"
"wave1"="wdmaud.drv"
"midi1"="wdmaud.drv"
"mixer1"="wdmaud.drv"
"aux"="wdmaud.drv"
"wave2"="wdmaud.drv"
"midi2"="wdmaud.drv"
"mixer2"="wdmaud.drv"
"wave3"="wdmaud.drv"
"midi3"="wdmaud.drv"
"mixer3"="wdmaud.drv"
"wave4"="wdmaud.drv"
"midi4"="wdmaud.drv"
"mixer4"="wdmaud.drv"
"msacm.siren"="sirenacm.dll"
"msacm.l3codecp"="l3codecp.acm"
"vidc.mjpg"="pvmjpg30.dll"
"VIDC.FMVC"="fmcodec.dll"
==================== Drive and Memory info ===================
Avira Free Antivirus (Version: 13.0.0.3884)
Drive c: (VistaOS) (Fixed) (Total:232.88 GB) (Free:85.45 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (DATA) (Fixed) (Total:221.16 GB) (Free:36.28 GB) NTFS
Available physical RAM: 1648.63 MB
Total physical RAM: 3070.29 MB
Percentage of memory in use: 46%
==================== End Of Log ==============================
Stahnete Junkware Removal Tool 
. Díky moc! 
.
Přispějete na provoz fóra?