﻿Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-12-2014
Ran by roze (administrator) on BW2008 on 18-12-2014 04:41:53
Running from C:\Documents and Settings\roze\Plocha
Loaded Profile: roze (Available profiles: roze)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Symantec Corporation) C:\Program Files\Symantec\SEP\Smc.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
(Symantec Corporation) C:\Program Files\Symantec\SEP\SmcGui.exe
(http://tortoisesvn.net) D:\U\TortoiseSVN\bin\TSVNCache.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\ccApp.exe
(SEIKO EPSON CORPORATION) C:\WINDOWS\system32\spool\drivers\w32x86\3\E_S10IC2.EXE
(FinePrint Software, LLC) C:\WINDOWS\system32\spool\drivers\w32x86\2\fpdisp4.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\SoundMan.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
(Acronis) D:\U_PC\Acronis_TrueImage\TrueImageMonitor.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
(Microsoft Corporation) C:\Program Files\Microsoft ActiveSync\wcescomm.exe
(Cisco Systems, Inc.) D:\Kancl\VPN Client\cvpnd.exe
(Microsoft Corporation) C:\PROGRA~1\MICROS~2\rapimgr.exe
(C. Ghisler & Co.) D:\U\TC_6.5\TOTALCMD.EXE
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(zett42) D:\U\FlashFolder\FlashFolder.exe
(Igor Nys) D:\U\Trayit_4_4_2\TrayIt!.exe
(GEAR Software) C:\WINDOWS\system32\gearsec.exe
(IBM) D:\Kancl\lotus\nsd.exe
(IBM Corp) D:\Kancl\lotus\ntmulti.exe
(Symantec Corporation) C:\Program Files\Symantec\SEP\Rtvscan.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft ActiveSync\WCESMgr.exe
() D:\WM_SW\MyMobiler\MyMobiler.exe
(PortableApps.com) E:\FirefoxPortable10\FirefoxPortable.exe
(Mozilla Corporation) E:\FirefoxPortable10\App\Firefox\firefox.exe
(forum.viry.cz) C:\Documents and Settings\roze\Plocha\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [JMB36X IDE Setup] => C:\WINDOWS\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM\...\Run: [36X Raid Configurer] => C:\WINDOWS\system32\xRaidSetup.exe [1953792 2007-05-25] (Gigabyte Technology Corp.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [90112 2006-11-10] ()
HKLM\...\Run: [ccApp] => C:\Program Files\Common Files\Symantec Shared\ccApp.exe [115560 2008-02-01] (Symantec Corporation)
HKLM\...\Run: [EPSON Stylus Photo R200 Series] => C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE [99840 2003-05-27] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [NWEReboot] => [X]
HKLM\...\Run: [FinePrint Dispatcher v4] => C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\fpdisp4.exe [356352 2002-07-27] (FinePrint Software, LLC)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16804864 2008-07-23] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SoundMan] => C:\WINDOWS\SOUNDMAN.EXE [77824 2008-06-18] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AlcWzrd] => C:\WINDOWS\ALCWZRD.EXE [2808832 2008-06-19] (RealTek Semicoductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [57344 2008-06-19] (Realtek Semiconductor Corp.)
HKLM\...\Run: [TrueImageMonitor.exe] => D:\U_PC\Acronis_TrueImage\TrueImageMonitor.exe [5566176 2010-12-17] (Acronis)
HKLM\...\Run: [Slu~ba Acronis Scheduler2] => C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [391144 2010-12-17] (Acronis)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\S-1-5-19\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-1547161642-1767777339-682003330-1003\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [94208 2006-06-01] (Nero AG)
HKU\S-1-5-21-1547161642-1767777339-682003330-1003\...\Run: [H/PC Connection Agent] => C:\Program Files\Microsoft ActiveSync\wcescomm.exe [1289000 2006-11-13] (Microsoft Corporation)
HKU\S-1-5-21-1547161642-1767777339-682003330-1003\...\Policies\system: [HideLegacyLogonScripts] 0
HKU\S-1-5-21-1547161642-1767777339-682003330-1003\...\Policies\system: [HideLogoffScripts] 0
HKU\S-1-5-21-1547161642-1767777339-682003330-1003\...\Policies\system: [RunLogonScriptSync] 1
HKU\S-1-5-21-1547161642-1767777339-682003330-1003\...\Policies\system: [RunStartupScriptSync] 0
HKU\S-1-5-21-1547161642-1767777339-682003330-1003\...\Policies\system: [HideStartupScripts] 0
HKU\S-1-5-21-1547161642-1767777339-682003330-1003\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-1547161642-1767777339-682003330-1003\...\MountPoints2: {5ff89b9a-1636-11dd-bb85-001a4d5c6a55} - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL \essentialpimproport2\EssentialPIM.exe
HKU\S-1-5-18\...\Run: [Google Update] => C:\WINDOWS\system32\config\systemprofile\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [116648 2014-02-07] (Google Inc.)
HKU\S-1-5-18\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000
HKU\S-1-5-18\...\Policies\Explorer: [NoFolderOptions] 0
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\AutorunsDisabled ()
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\TOTALCMD.LNK
ShortcutTarget: TOTALCMD.LNK -> D:\U\TC_6.5\TOTALCMD.EXE (C. Ghisler & Co.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\TrayIt!.lnk
ShortcutTarget: TrayIt!.lnk -> D:\U\Trayit_4_4_2\TrayIt!.exe (Igor Nys)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\VPN Client.lnk
ShortcutTarget: VPN Client.lnk -> C:\WINDOWS\Installer\{1CE60928-8325-49A8-8B06-633E48DD2B67}\Icon3E5562ED7.ico ()
Startup: C:\Documents and Settings\roze\Nabídka Start\Programy\Po spuštění\AutorunsDisabled ()
ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [HumyoConflict] -> {7479C9AF-DA81-4944-92E5-23E49390BB2B} =>  No File
ShellIconOverlayIdentifiers: [HumyoReadonly] -> {7479C9AF-DA81-4944-92E5-23E49390BB2C} =>  No File
ShellIconOverlayIdentifiers: [HumyoSynced] -> {7479C9AF-DA81-4944-92E5-23E49390BB2A} =>  No File
ShellIconOverlayIdentifiers: [HumyoSyncing] -> {7479C9AF-DA81-4944-92E5-23E49390BB29} =>  No File
ShellIconOverlayIdentifiers: [HumyoUnavailable] -> {06F5F772-99DF-4191-9AED-3037B0DF154B} =>  No File
ShellIconOverlayIdentifiers: [Syncplicity Icon Overlay (Folder)] -> {02FCECC2-84DC-4FAA-A718-C41FFCA5B8D1} => C:\Program Files\Syncplicity\SyncplicityShellExt.dll (Syncplicity, Inc.)
ShellIconOverlayIdentifiers: [Syncplicity Icon Overlay (Fully Synced)] -> {CA4FCCBF-F4B7-4DD1-861E-1F42AAD396D1} => C:\Program Files\Syncplicity\SyncplicityShellExt.dll (Syncplicity, Inc.)
ShellIconOverlayIdentifiers: [Syncplicity Icon Overlay (Not Latest Version)] -> {284C090F-EB1D-4A6E-872E-6DB72E417E24} => C:\Program Files\Syncplicity\SyncplicityShellExt.dll (Syncplicity, Inc.)
ShellIconOverlayIdentifiers: [Syncplicity Icon Overlay (Shared Folder)] -> {3DFC86AD-F2CC-4AdA-98DD-AC5DC84119CC} => C:\Program Files\Syncplicity\SyncplicityShellExt.dll (Syncplicity, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1547161642-1767777339-682003330-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1547161642-1767777339-682003330-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://translate.google.cz/?hl=cs&tab=wT#en/cs/STEPHEN
HKU\S-1-5-21-1547161642-1767777339-682003330-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1547161642-1767777339-682003330-1003 -> {682EFF80-2AB6-4ED3-8FD6-8830B4BCB7E5} URL = http://www.google.cz/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: RepliGoIEHelperCtl Class -> {91DE4477-9CDC-4806-9BCB-28A963988E94} -> C:\Program Files\Cerience\RepliGo\RepliGoIEHelper.dll (Cerience Corporation)
Toolbar: HKLM - &RepliGo - {81F4066B-F330-4872-8094-3E9FBCCEC8C1} - C:\Program Files\Cerience\RepliGo\RepliGoIEBar.dll (Cerience Corporation)
Toolbar: HKU\S-1-5-21-1547161642-1767777339-682003330-1003 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKU\S-1-5-21-1547161642-1767777339-682003330-1003 -> &RepliGo - {81F4066B-F330-4872-8094-3E9FBCCEC8C1} - C:\Program Files\Cerience\RepliGo\RepliGoIEBar.dll (Cerience Corporation)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} http://62.168.0.189/activex/AMC.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} https://ep1ww2p.ats/adistc/adis/idpr_pub/xspa/bin/cryptsignx.cab
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

FireFox:
========
FF ProfilePath: C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> D:\G\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @palmsource.com/installer,version=1.0 -> E:\PALM_D~1\PACKAG~1\NPInstal.dll ()
FF Plugin: @real.com/nppl3260;version=6.0.11.2852 -> D:\A\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nppl3260;version=6.0.12.46 -> D:\A\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.1662 -> D:\A\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.46 -> D:\A\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @skyhookwireless.com/LokiPlugin,version=2.7.2 -> C:\Program Files\Skyhook Wireless\Loki Browser Plugin\nploki.dll (Skyhook Wireless)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\.DEFAULT: @tools.google.com/Google Update;version=3 -> C:\WINDOWS\system32\config\systemprofile\Local Settings\Data aplikací\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\.DEFAULT: @tools.google.com/Google Update;version=9 -> C:\WINDOWS\system32\config\systemprofile\Local Settings\Data aplikací\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-1547161642-1767777339-682003330-1003: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
FF Plugin HKU\S-1-5-21-1547161642-1767777339-682003330-1003: @kb-ext.cz/PKIComponent -> C:\Documents and Settings\roze\Data aplikací\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll (Komerční banka, a.s.)
FF SearchPlugin: C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\searchplugins\abzcz.xml
FF SearchPlugin: C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\searchplugins\slovnik-cz-en.xml
FF SearchPlugin: C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\searchplugins\slovnik-en-cz.xml
FF SearchPlugin: C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\searchplugins\wikipedia---czech.xml
FF SearchPlugin: C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\searchplugins\wikipedia-eng.xml
FF Extension: České slovníky pro kontrolu pravopisu - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\cs@dictionaries.addons.mozilla.org [2008-05-01]
FF Extension: Foxmarks Bookmark Synchronizer - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\foxmarks@kei.com [2008-12-05]
FF Extension: Regular Expressions Tester - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\regexptester@sebastianzartner.ath.cx [2008-07-16]
FF Extension: Locate in Bookmark Folders - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A} [2008-05-01]
FF Extension: Minimeter - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{08ab63e1-c4bc-4fb7-a0b2-55373b596eb7} [2008-05-01]
FF Extension: Auto Copy - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{0FED7D55-65D4-47b6-A6DE-9A4ADB55355F} [2008-05-01]
FF Extension: LoremIpsum Content Generator - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{10CF5A7A-2959-4ab3-B0D9-9DE2A7772D47} [2008-05-01]
FF Extension: Image Zoom - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68} [2008-05-01]
FF Extension: Nuke Anything Enhanced - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{1ced4832-f06e-413f-aa14-9eb63ad40ace} [2008-05-01]
FF Extension: MinimizeToTray - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{31513E58-F253-47ad-86DB-D5F21E905429} [2008-05-03]
FF Extension: Flashblock - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a} [2008-05-01]
FF Extension: HttpFox - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{4093c4de-454a-4329-8aff-c6b0b123c386} [2008-09-30]
FF Extension: iMacros for Firefox - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} [2008-05-01]
FF Extension: Live HTTP Headers - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a} [2008-05-01]
FF Extension: DictionarySearch - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{a0faa0a4-f1a7-4098-9a74-21efc3a92372} [2008-05-01]
FF Extension: OpenBook - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{aba3f5c2-35d5-4960-bdfc-de9c162e39ce} [2008-05-01]
FF Extension: Gmail Space - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{B9C8BE50-7105-4ec6-8FB4-4935C0671648} [2008-05-24]
FF Extension: wmlbrowser - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{c4dc572a-3295-40eb-b30f-b54aa4cdc4b7} [2008-05-01]
FF Extension: Extended Statusbar - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{daf44bf7-a45e-4450-979c-91cf07434c3d} [2008-05-01]
FF Extension: Tab Mix Plus - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{dc572301-7619-498c-a57d-39143191b318} [2008-05-01]
FF Extension: DownThemAll! - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8} [2008-05-01]
FF Extension: User Agent Switcher - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\Extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1} [2008-05-01]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-01-13]
FF Extension: No Name - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [Not Found]
FF Extension: DOM Inspector - D:\KANCL\FIREFOX2\extensions\inspector@mozilla.org [2008-05-01]
FF Extension: Download to online storage Plugin - D:\KANCL\FIREFOX2\extensions\hrfsdownloader@hrfs.com [2009-06-08]
FF Extension: No Name - C:\Documents and Settings\roze\Data aplikací\Mozilla\Firefox\Profiles\96rh4isc.default\extensions\coi@oiktnb.com [Not Found]
FF StartMenuInternet: FIREFOX.EXE - D:\Kancl\Firefox2\firefox.exe

Chrome: 
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\39.0.2171.95\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\39.0.2171.95\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - D:\Kancl\Firefox2\plugins\npdeployJava1.dll No File
CHR Plugin: (2007 Microsoft Office system) - D:\Kancl\Firefox2\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - D:\Kancl\Firefox2\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (QuickTime Plug-in 7.4.5) - D:\Kancl\Firefox2\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.4.5) - D:\Kancl\Firefox2\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.4.5) - D:\Kancl\Firefox2\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.4.5) - D:\Kancl\Firefox2\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.4.5) - D:\Kancl\Firefox2\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (RealPlayer Version Plugin) - D:\Kancl\Firefox2\plugins\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (Garmin Communicator Plug-In) - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (Loki Plugin) - C:\Program Files\Skyhook Wireless\Loki Browser Plugin\nploki.dll (Skyhook Wireless)
CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_149.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - D:\D\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Picasa) - D:\G\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (PalmSource Package Installer) - E:\PALM_D~1\PACKAG~1\NPInstal.dll ()
CHR Profile: C:\Documents and Settings\roze\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Peněženka Google) - C:\Documents and Settings\roze\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-29]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [804952 2010-12-17] (Acronis)
R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3246040 2012-01-06] (Acronis)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2007-12-20] () [File not signed]
R2 ccEvtMgr; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [108392 2008-02-01] (Symantec Corporation)
S3 ccPwdSvc; C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe [79208 2008-01-17] (Symantec Corporation)
R2 ccSetMgr; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [108392 2008-02-01] (Symantec Corporation)
R2 CVPND; D:\Kancl\VPN Client\cvpnd.exe [1528616 2010-09-27] (Cisco Systems, Inc.)
R2 FlashFolder; D:\U\FlashFolder\FlashFolder.exe [71680 2008-03-20] (zett42) [File not signed]
R2 GEARSecurity; C:\WINDOWS\System32\GEARSec.exe [53248 2005-09-09] (GEAR Software) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S3 LiveUpdate; C:\Program Files\Symantec\LiveUpdate\LuComServer_3_3.EXE [3093872 2007-09-10] (Symantec Corporation)
R2 Lotus Notes Diagnostics; D:\Kancl\lotus\nsd.exe [3417480 2011-07-11] (IBM)
R2 Multi-user Cleanup Service; D:\Kancl\lotus\ntmulti.exe [58760 2011-07-11] (IBM Corp)
S3 Norton Ghost; D:\U_PC\Norton Ghost\Agent\VProSvc.exe [2066024 2008-04-30] (Symantec Corporation) [File not signed]
R2 SmcService; C:\Program Files\Symantec\SEP\Smc.exe [2479488 2008-07-27] (Symantec Corporation)
S3 SNAC; C:\Program Files\Symantec\SEP\SNAC.EXE [296328 2008-06-30] (Symantec Corporation)
R2 Symantec AntiVirus; C:\Program Files\Symantec\SEP\Rtvscan.exe [2238904 2008-07-27] (Symantec Corporation)
S3 Symantec Core LC; C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [822424 2008-04-30] (Symantec Corporation)
R2 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2004-12-13] (Ulead Systems, Inc.) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 COH_Mon; C:\WINDOWS\system32\Drivers\COH_Mon.sys [23888 2008-07-30] (Symantec Corporation)
S3 CVirtA; C:\WINDOWS\System32\DRIVERS\CVirtA.sys [5275 2007-01-18] (Cisco Systems, Inc.)
R2 CVPNDRVA; C:\WINDOWS\system32\Drivers\CVPNDRVA.sys [308859 2010-09-27] (Cisco Systems, Inc.) [File not signed]
R0 d347bus; C:\WINDOWS\System32\DRIVERS\d347bus.sys [155136 2004-08-22] ( ) [File not signed]
R0 d347prt; C:\WINDOWS\System32\Drivers\d347prt.sys [5248 2004-08-22] ( ) [File not signed]
R3 DNE; C:\WINDOWS\System32\DRIVERS\dne2000.sys [131984 2008-11-16] (Deterministic Networks, Inc.)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [378672 2014-11-25] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [111408 2014-11-25] (Symantec Corporation)
R1 FSLX; C:\WINDOWS\system32\drivers\fslx.sys [166400 2006-05-17] (Altiris, Inc.) [File not signed]
S3 gdrv; C:\WINDOWS\gdrv.sys [15600 2008-04-27] (Windows (R) 2000 DDK provider)
S3 grmnusb; C:\WINDOWS\System32\drivers\grmnusb.sys [8320 2007-03-08] (GARMIN Corp.) [File not signed]
R3 HdAudAddService; C:\WINDOWS\System32\drivers\AtiHdAud.sys [84992 2006-12-28] (ATI Research Inc.)
R0 hotcore2; C:\WINDOWS\System32\drivers\hotcore2.sys [30808 2006-11-13] (Paragon Software Group) [File not signed]
R1 HWiNFO32; D:\U_PC\HWinfo32\HWiNFO32.SYS [16872 2009-01-14] (REALiX(tm))
R0 JRAID; C:\WINDOWS\System32\DRIVERS\jraid.sys [48256 2007-06-13] (JMicron Technology Corp.)
S3 MA-620; C:\WINDOWS\System32\DRIVERS\MA-620.sys [27136 2003-03-25] (Mobile Action Tech. Inc.) [File not signed]
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-14] (Microsoft Corporation)
R3 NAVENG; C:\Program Files\Common Files\Symantec Shared\VirusDefs\20141217.004\NAVENG.SYS [95704 2014-08-11] (Symantec Corporation)
R3 NAVEX15; C:\Program Files\Common Files\Symantec Shared\VirusDefs\20141217.004\NAVEX15.SYS [1636696 2014-08-11] (Symantec Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 PalmUSBD; C:\WINDOWS\System32\drivers\PalmUSBD.sys [16640 2007-12-04] (PalmSource, Inc.)
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R1 SPBBCDrv; C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [420400 2008-06-16] (Symantec Corporation)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [639224 2008-05-01] () [File not signed]
R1 SRTSP; C:\WINDOWS\System32\Drivers\SRTSP.SYS [279088 2008-03-21] (Symantec Corporation)
S3 SRTSPL; C:\WINDOWS\System32\Drivers\SRTSPL.SYS [317616 2008-03-21] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\Drivers\SRTSPX.SYS [43696 2008-03-21] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [123952 2008-10-28] (Symantec Corporation)
R2 symlcbrd; C:\WINDOWS\system32\drivers\symlcbrd.sys [4608 2008-04-30] (Symantec Corporation) [File not signed]
R3 SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [27696 2007-10-30] (Symantec Corporation)
R1 SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [191536 2007-10-30] (Symantec Corporation)
R0 SysPlant; C:\WINDOWS\SYSTEM32\Drivers\SysPlant.sys [91520 2008-07-27] (Symantec Corporation)
R3 Teefer2; C:\WINDOWS\System32\DRIVERS\teefer2.sys [49536 2008-03-12] (Symantec Corporation)
R1 V2IMount; C:\WINDOWS\system32\Drivers\V2IMount.sys [56192 2007-04-10] (Symantec Corporation)
S3 wceusbsh; C:\WINDOWS\System32\DRIVERS\wceusbsh.sys [28672 2006-11-06] (Microsoft Corporation)
R1 wfcxacap; C:\WINDOWS\System32\DRIVERS\wfcxacap.sys [9856 2007-09-19] (Leadtek Research Inc.) [File not signed]
R2 wfcxatun; C:\WINDOWS\System32\drivers\wfcxatun.sys [31744 2007-09-19] (Leadtek Research Inc.) [File not signed]
R3 wfcxdtun; C:\WINDOWS\System32\drivers\wfcxdtun.sys [21248 2007-09-19] (Leadtek Research Inc.) [File not signed]
R3 wfcxtcap; C:\WINDOWS\System32\drivers\wfcxtcap.sys [15872 2007-09-19] (Leadtek Research Inc.) [File not signed]
R2 WFCXVCAP; C:\WINDOWS\System32\drivers\wfcxvcap.sys [167040 2007-09-19] (Leadtek Research Inc.) [File not signed]
R3 wfcxxbar; C:\WINDOWS\System32\drivers\wfcxxbar.sys [10368 2006-01-26] (Leadtek Research Inc.)
S3 WFIOCTL; D:\V\WinFast\WFDTV\WFIOCTL.SYS [9446 2005-01-06] (Leadtek Research Inc.) [File not signed]
R1 WPS; C:\WINDOWS\system32\drivers\wpsdrvnt.sys [40832 2008-07-27] (Symantec Corporation)
S3 WpsHelper; C:\WINDOWS\system32\drivers\WpsHelper.sys [174056 2012-10-05] (Symantec Corporation)
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U5 UnlockerDriver5; d:\U\Unlocker\UnlockerDriver5.sys [4096 2008-05-02] () [File not signed]
S1 VRVD302; system32\DRIVERS\VRVD302.sys [X]
S2 vsdatant; a [X]
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-18 04:41 - 2014-12-18 04:42 - 00032191 _____ () C:\Documents and Settings\roze\Plocha\FRST.txt
2014-12-18 04:41 - 2014-12-18 04:41 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\roze\Plocha\FRSTLauncher.exe
2014-12-18 04:41 - 2014-12-18 04:41 - 00000000 ____D () C:\FRST
2014-12-18 04:31 - 2014-12-18 04:31 - 01113600 _____ (Farbar) C:\Documents and Settings\roze\Plocha\FRST.exe
2014-12-17 21:18 - 2014-12-17 21:30 - 00000000 ____D () C:\AdwCleaner
2014-12-17 21:17 - 2014-12-17 21:17 - 02166272 _____ () C:\Documents and Settings\roze\Plocha\adwcleaner_4.105.exe
2014-12-14 12:36 - 2014-12-14 12:36 - 00000000 ____D () C:\zoek_backup
2014-12-12 21:34 - 2014-12-12 21:34 - 00000084 _____ () C:\Documents and Settings\roze\Plocha\Forum napoveda.seznam.cz • Zobrazit téma - One-Time-Password - chybná () detekce klientského zařízení.URL
2014-11-30 00:34 - 2014-11-30 00:34 - 00000068 _____ () C:\Documents and Settings\roze\Plocha\www.USPZA.cz.URL
2014-11-26 21:07 - 2014-11-26 21:07 - 00000000 ____D () C:\Documents and Settings\roze\Plocha\TO_pudorysy
2014-11-24 23:00 - 2014-11-24 23:00 - 00000075 _____ () C:\Documents and Settings\roze\Plocha\Orl.h. - Šerlich.URL
2014-11-22 11:56 - 2014-11-22 11:56 - 00000094 _____ () C:\Documents and Settings\roze\Plocha\Interesting places near the fort Tvrz Orlice.URL
2014-11-18 18:27 - 2014-11-18 18:24 - 00000205 _____ () C:\Documents and Settings\roze\Plocha\Very slow response time from www.Waymarking.com - Groundspeak Forums.URL
2014-11-18 00:17 - 2014-11-18 00:17 - 00000141 _____ () C:\Documents and Settings\roze\Plocha\Husákovo Sluníčko a Řebíčkův bzučák. Co nevíte o ministerstvu dopravy Týden.cz.URL

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-18 04:41 - 2008-04-26 18:52 - 00000000 ____D () C:\Documents and Settings\roze\Plocha
2014-12-18 04:26 - 2013-02-16 21:43 - 00000940 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-18 04:26 - 2008-04-26 20:30 - 01053878 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-18 04:24 - 2008-05-01 21:15 - 00000000 ____D () C:\Documents and Settings\roze\Data aplikací\Mozilla
2014-12-18 04:22 - 2008-04-26 20:34 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-12-18 04:22 - 2008-04-26 20:34 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-12-18 04:21 - 2013-05-14 07:53 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-18 04:21 - 2008-04-26 18:52 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-12-17 22:30 - 2010-09-28 14:17 - 01418698 _____ () C:\WINDOWS\WindowsUpdate.log
2014-12-17 22:30 - 2008-04-27 22:07 - 00262144 _____ () C:\WINDOWS\system32\config\ACEEvent.evt
2014-12-17 22:30 - 2008-04-26 18:52 - 00032608 _____ () C:\WINDOWS\SchedLgU.Txt
2014-12-17 22:30 - 2008-04-26 18:52 - 00000272 ___SH () C:\Documents and Settings\roze\ntuser.ini
2014-12-17 22:30 - 2008-04-26 18:52 - 00000000 ____D () C:\Documents and Settings\roze
2014-12-17 22:20 - 2014-02-07 22:15 - 00001046 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-18UA.job
2014-12-17 22:20 - 2014-02-07 22:15 - 00000994 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-18Core.job
2014-12-17 22:03 - 2010-09-28 14:24 - 01536731 _____ () C:\WINDOWS\setupapi.log
2014-12-17 21:53 - 2012-04-05 21:01 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-12-17 21:38 - 2008-04-26 18:52 - 00000000 __RHD () C:\Documents and Settings\roze\Data aplikací
2014-12-17 21:30 - 2008-04-26 20:30 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-12-17 21:16 - 2010-09-27 15:25 - 00000000 ____D () C:\Program Files\trend micro
2014-12-17 18:57 - 2012-01-25 21:24 - 00001762 ____H () C:\Documents and Settings\roze\Dokumenty\Default.rdp
2014-12-16 09:11 - 2007-10-29 13:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl
2014-12-16 01:09 - 2013-02-24 21:36 - 00000000 ____D () C:\Documents and Settings\roze\Dokumenty\PhraseExpress
2014-12-16 00:34 - 2008-05-02 19:31 - 00000000 ____D () C:\Documents and Settings\roze\Data aplikací\XnView
2014-12-12 20:30 - 2009-09-20 19:58 - 00000426 _____ () C:\WINDOWS\Tasks\AutoIt3.job
2014-12-11 12:20 - 2008-05-02 13:33 - 00000600 _____ () C:\Documents and Settings\roze\PUTTY.RND
2014-12-10 21:53 - 2012-04-05 21:01 - 00701104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-12-10 21:53 - 2011-05-21 20:32 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-12-09 17:47 - 2009-02-21 17:53 - 00002351 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Excel.lnk
2014-12-08 18:33 - 2012-11-29 09:46 - 00000000 ____D () C:\Documents and Settings\roze\Data aplikací\Dropbox
2014-12-08 18:33 - 2008-05-03 10:42 - 00000116 _____ () C:\WINDOWS\NeroDigital.ini
2014-12-08 18:32 - 2012-11-29 09:52 - 00000988 _____ () C:\Documents and Settings\roze\Plocha\Dropbox.lnk
2014-12-08 18:32 - 2012-11-29 09:48 - 00000000 ____D () C:\Documents and Settings\roze\Nabídka Start\Programy\Dropbox
2014-12-06 18:39 - 2008-05-10 13:50 - 00024891 _____ () C:\Documents and Settings\roze\_viminfo
2014-11-24 22:22 - 2008-05-07 17:42 - 00009662 _____ () C:\WINDOWS\EPISME00.SWB
2014-11-24 22:22 - 2008-05-02 14:15 - 00000000 ____D () C:\Documents and Settings\roze\Dokumenty\FinePrint files

Files to move or delete:
====================
C:\Documents and Settings\roze\FMCodec.dat


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (WIN_XP) (Fixed) (Total:29.29 GB) (Free:4.94 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (APPL) (Fixed) (Total:29.3 GB) (Free:10.47 GB) NTFS
Drive e: (APPL_s_DATY) (Fixed) (Total:20.07 GB) (Free:9.46 GB) NTFS
Drive f: (D1_DATA) (Fixed) (Total:188.17 GB) (Free:58.49 GB) NTFS
Drive h: (LM_DIC) (CDROM) (Total:0.59 GB) (Free:0 GB) CDFS
Drive i: (Anglictina_LN_03) (CDROM) (Total:0.19 GB) (Free:0 GB) CDFS
Drive l: (My Passport) (Fixed) (Total:931.48 GB) (Free:480.72 GB) NTFS
Drive o: (Win_VIDEO) (Fixed) (Total:11.72 GB) (Free:5.26 GB) NTFS
Drive p: (Appl_VIDEO) (Fixed) (Total:19.53 GB) (Free:9.03 GB) NTFS
Drive x: (D2_01) (Fixed) (Total:149.64 GB) (Free:72.59 GB) NTFS
Drive y: (D2_02) (Fixed) (Total:148.44 GB) (Free:60.2 GB) NTFS

Available physical RAM: 2574.45 MB
Total physical RAM: 3582.42 MB
Percentage of memory in use: 28%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 298.1 GB) (Disk ID: 0B440B43)
Partition 1: (Active) - (Size=29.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=11.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=257.1 GB) - (Type=OF Extended)
Disk: 1 (Size: 298.1 GB) (Disk ID: 0B7A0B79)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=OF Extended)
Disk: 2 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 0003F448)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AutoIt3.job => D:\U\AutoIt3\AutoIt3.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-18Core.job => C:\WINDOWS\system32\config\systemprofile\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-18UA.job => C:\WINDOWS\system32\config\systemprofile\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Symantec Endpoint Protection (Disabled - Up to date) {FB06448E-52B8-493A-90F3-E43226D3305C}
FW: Symantec Endpoint Protection (Disabled) {BE898FE3-CD0B-4014-85A9-03DB9923DDB6}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

  
***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\roze\Plocha" je 3 MB.
 
 
***** Startup Programs *****
 
 
***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    EnableFirewall	REG_DWORD	0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"="C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Symantec\\SEP\\Smc.exe"="C:\\Program Files\\Symantec\\SEP\\Smc.exe:*:Enabled:SMC Service"
"C:\\Program Files\\Symantec\\SEP\\SNAC.EXE"="C:\\Program Files\\Symantec\\SEP\\SNAC.EXE:*:Enabled:SNAC Service"
"C:\\Program Files\\Common Files\\Symantec Shared\\ccApp.exe"="C:\\Program Files\\Common Files\\Symantec Shared\\ccApp.exe:*:Enabled:Symantec Email"
"C:\\Program Files\\uTorrent\\uTorrent.exe"="C:\\Program Files\\uTorrent\\uTorrent.exe:*:Enabled:Torrent"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\\Kancl\\MS Office\\Office12\\OUTLOOK.EXE"="D:\\Kancl\\MS Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"="C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\\Documents and Settings\\roze\\Data aplikac\\Dropbox\\bin\\Dropbox.exe"="C:\\Documents and Settings\\roze\\Data aplikac\\Dropbox\\bin\\Dropbox.exe:*:Enabled:Dropbox"
"C:\\Program Files\\TeamViewer\\Version9\\TeamViewer.exe"="C:\\Program Files\\TeamViewer\\Version9\\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\\Program Files\\TeamViewer\\Version9\\TeamViewer_Service.exe"="C:\\Program Files\\TeamViewer\\Version9\\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"
"26675:TCP"="26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service"
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"26675:TCP"="26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service"
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"
 
 
***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

 
==================== End Of Log ==============================
