Kontrola logu
Napsal: 17 pro 2014 16:18
Skúsil som spojazdniť Skype v Trilliane a niečo som si natiahol. Zbežne som to prečistil ADWCleaner-om a je to lepšie, len mi prepína farbu Panel rýchle spustenie z modrej na žltú a vyhadzuje chybz svchost.exe-Chyba aplikace-Instrukce na adrese 0x5963bdc3 odkazovala na adresu pamětí 0x00000000. S pamětí nelze provést operaci read. Toto vyhadzuje každú chvíľu. Prikladám log z RSIT a FRST
Prosím Vás pozriete mi to? Ďakujem.
Logfile of random's system information tool 1.06 (written by random/random)
Run by Ivan at 2014-12-17 16:13:48
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 34 GB (74%) free of 45 GB
Total RAM: 1535 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:13:57, on 17. 12. 2014
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\devldr32.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Ivan\Dokumenty\Preberanie\FRST.exe
D:\Ivan\Záloha PC\Programy\Antivír\HiJackthis\RSIT.exe
C:\WINDOWS\system32\svchost.exe
D:\Ivan\Záloha PC\Programy\Antivír\HiJackthis\Ivan.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O20 - AppInit_DLLs:
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
--
End of file - 2426 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\avast! Emergency Update.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
10
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-12-12 5227112]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlashPlayerUpdate]
C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_15_0_0_189_Plugin.exe -update plugin []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2005-02-16 49152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPUsageTracking]
C:\Program Files\HP\HP UT\bin\hppusg.exe [2007-07-12 36864]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TiVme Agent]
C:\Program Files\GIGABYTE\vivoTV\ScheduleAgent.exe [2010-09-22 124928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ToolBoxFX]
C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe [2007-07-11 53248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
C:\Program Files\Unlocker\UnlockerAssistant.exe [2006-09-07 15872]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Remote Control.lnk]
C:\PROGRA~1\GIGABYTE\U7300U~1\CONRCtl.exe [2011-05-03 94208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" "
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"F:\EasySetupAssistant\wr841n\EasySetupAssistant.exe"="F:\EasySetupAssistant\wr841n\EasySetupAssistant.exe:*:Enabled:TP-LINK Easy Setup Assistant"
"C:\Program Files\HP\hp laserjet m1522\Fax Config utility1.exe"="C:\Program Files\HP\hp laserjet m1522\Fax Config utility1.exe:*:Enabled:HP Networked Printer Installer"
"C:\xampp\mysql\bin\mysqld.exe"="C:\xampp\mysql\bin\mysqld.exe:*:Enabled:mysqld"
"C:\xampp\apache\bin\httpd.exe"="C:\xampp\apache\bin\httpd.exe:*:Enabled:Apache HTTP Server"
"C:\Program Files\HP\hp laserjet m1522\hppfaxnc1.exe"="C:\Program Files\HP\hp laserjet m1522\hppfaxnc1.exe:*:Enabled:HP Networked Printer Installer"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2014-12-17 16:13:02 ----D---- C:\FRST
2014-12-17 16:01:21 ----D---- C:\rsit
2014-12-17 15:55:59 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-12-17 15:13:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\23405448
2014-12-12 09:37:05 ----D---- C:\Program Files\Microsoft Silverlight
2014-12-09 09:49:23 ----D---- C:\Program Files\Mozilla Firefox
2014-12-01 17:59:45 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-12-01 14:39:14 ----D---- C:\Documents and Settings\Ivan\Data aplikací\Help
2014-11-28 10:05:42 ----A---- C:\WINDOWS\vzory.ini
2014-11-23 17:28:29 ----D---- C:\Documents and Settings\Ivan\Data aplikací\Trillian
2014-11-23 17:28:00 ----D---- C:\Program Files\Trillian
======List of files/folders modified in the last 1 months======
2014-12-17 16:13:06 ----D---- C:\WINDOWS
2014-12-17 15:59:56 ----D---- C:\WINDOWS\Prefetch
2014-12-17 15:57:51 ----D---- C:\WINDOWS\Temp
2014-12-17 15:49:28 ----D---- C:\AdwCleaner
2014-12-17 15:33:54 ----D---- C:\WINDOWS\SoftwareDistribution
2014-12-17 15:32:24 ----RD---- C:\Program Files
2014-12-17 15:29:00 ----D---- C:\WINDOWS\system32
2014-12-12 11:37:15 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-12-12 09:37:25 ----SHD---- C:\WINDOWS\Installer
2014-12-12 09:37:25 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2014-12-10 10:22:03 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-12-06 18:21:09 ----A---- C:\WINDOWS\wincmd.ini
2014-12-06 14:19:02 ----A---- C:\WINDOWS\wcx_ftp.ini
2014-12-04 21:40:10 ----D---- C:\Documents and Settings\Ivan\Data aplikací\vlc
2014-12-04 13:06:32 ----D---- C:\Program Files\Messenger
2014-12-04 13:06:31 ----D---- C:\Program Files\HD Tune
2014-12-01 18:00:03 ----D---- C:\WINDOWS\system32\drivers
2014-12-01 17:59:53 ----SD---- C:\WINDOWS\Tasks
2014-12-01 15:15:25 ----A---- C:\WINDOWS\win.ini
2014-12-01 15:15:25 ----A---- C:\WINDOWS\system.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-12-01 55240]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-12-01 787800]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-12-01 423784]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-12-01 57928]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-12-01 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-12-01 70384]
R3 ac97intc;Služba instalace zvukového ovladače Intel(r) (WDM); C:\WINDOWS\system32\drivers\ac97intc.sys [2001-08-17 96256]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-08-17 701440]
R3 ctljystk;Game port pro zařízení Creative SB Live!; C:\WINDOWS\system32\DRIVERS\ctljystk.sys [2001-08-17 3712]
R3 emu10k;Creative SB Live! (WDM); C:\WINDOWS\system32\drivers\emu10k1m.sys [2001-08-17 283904]
R3 emu10k1;Creative Interface Manager Driver (WDM); C:\WINDOWS\system32\drivers\ctlfacem.sys [2001-08-17 6912]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-10-25 9600]
R3 HPFXBULK;HPFXBULK; C:\WINDOWS\system32\drivers\hpfxbulk.sys [2007-08-21 11264]
R3 HPFXFAX;HPFXFAX; C:\WINDOWS\system32\drivers\hpfxfax.sys [2007-08-21 14336]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 RTL2832UBDA;REALTEK 2832U BDA Driver; C:\WINDOWS\system32\drivers\RTL2832UBDA.sys [2011-05-03 143264]
R3 RTL2832UUSB;REALTEK 2832U USB Driver; C:\WINDOWS\System32\Drivers\RTL2832UUSB.sys [2011-05-03 32800]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 sfman;Creative SoundFont Manager Driver (WDM); C:\WINDOWS\system32\drivers\sfmanm.sys [2001-08-17 36480]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-03 17024]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 CrystalSysInfo;CrystalSysInfo; C:\WINDOWS\system32\drivers\CrystalSysInfo.sys []
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2004-08-03 15360]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S4 sr;Ovladač filtru Obnovy systému; C:\WINDOWS\system32\DRIVERS\sr.sys [2004-08-17 73344]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-12-01 50344]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-12-09 114800]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-12-2014 01
Ran by Ivan at 2014-12-17 16:15:47
Running from C:\Documents and Settings\Ivan\Dokumenty\Preberanie
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
ACDSee (HKLM\...\ACDSee) (Version: - )
ACDSee 3.1 PowerPack SR-1sk (HKLM\...\ACDSee 3.1 PP SR-1) (Version: - )
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.22.87 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Slovak (HKLM\...\{AC76BA86-7AD7-1051-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software)
Balík Compatibility Pack pre systém Office 2007 (HKLM\...\{90120000-0020-041B-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform)
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Data Lifeguard Diagnostic for Windows 1.27 (HKLM\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation)
Destination Component (Version: 090.000.091.086 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 90.0.146.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Dolphin Futures XPS Viewer version 1.1.0 (HKLM\...\{75480068-162F-4D6B-B38E-76606A4E5320}_is1) (Version: 1.1.0 - Dolphin Futures Limited)
Elcomm (HKLM\...\Elcomm) (Version: - )
GIGABYTE Remote Utilities (HKLM\...\{DA60AB6B-6C9C-4B5F-BC61-3B0D9BCBD50B}) (Version: 3.0.0.0 - GIGABYTE)
HD Tune 2.52 (HKLM\...\HD Tune_is1) (Version: - EFD Software)
HijackThis 2.0.2 (HKLM\...\HijackThis) (Version: 2.0.2 - TrendMicro)
HP Customer Participation Program 9.0 (HKLM\...\HPExtendedCapabilities) (Version: 9.0 - HP)
HP LaserJet M1522 MFP Series 1.0 (HKLM\...\HP LaserJet M1522) (Version: 1.0 - HP)
HP Update (HKLM\...\{8C6027FD-53DC-446D-BB75-CACD7028A134}) (Version: 4.000.006.002 - Hewlett-Packard)
hppFaxDrvM1522 (Version: 000.008.00023 - Hewlett-Packard) Hidden
hppFaxUtility (Version: 000.105.00107 - Hewlett-Packard) Hidden
hppFonts (Version: 001.001.00056 - Hewlett-Packard) Hidden
hppIOFiles (Version: 002.000.00034 - Hewlett-Packard) Hidden
hppLJM1522 (Version: 000.008.00066 - Hewlett-Packard) Hidden
hppManualsM1522 (Version: 000.008.00067 - Hewlett-Packard) Hidden
hppscanM1522 (Version: 000.008.00073 - Hewlett-Packard) Hidden
hppScanTo (Version: 000.008.00060 - Hewlett-Packard) Hidden
hppSendFax (Version: 000.105.00089 - Hewlett-Packard) Hidden
hppTLBXFXM1522 (Version: 001.002.00013 - Hewlett-Packard) Hidden
hppusgM1522 (Version: 000.000.00003 - Hewlett-Packard) Hidden
HPSSupply (HKLM\...\{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}) (Version: 2.2.0.0000 - Hewlett Packard Development Company L.P.)
hpzTLBXFX (Version: 003.004.00276 - Hewlett-Packard) Hidden
MarketResearch (Version: 90.0.146.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY (HKLM\...\{A2C9CD1B-2551-3AED-B244-6698FB929FA6}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY (HKLM\...\{546C143E-68DC-314D-97BC-1E454E3BA429}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - csy) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 sk) (HKLM\...\Mozilla Firefox 34.0.5 (x86 sk)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 24.4.0 - Mozilla)
MSXML 6.0 Parser (KB933579) (HKLM\...\{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}) (Version: 6.10.1200.0 - Microsoft Corporation)
Notepad++ (HKLM\...\Notepad++) (Version: 6.6.8 - Notepad++ Team)
OMEGA 17.60.00 (HKLM\...\{79DCE48C-3B7F-4071-AF33-7D35EC5EB312}) (Version: 17.60.00 - Kros a.s.)
Pink 3.11 (HKLM\...\Pink_is1) (Version: - Radoslav Manzela)
Product_Min_QFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Scan (Version: 9.0.2.0 - Hewlett-Packard) Hidden
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: - )
Trillian (HKLM\...\Trillian) (Version: - Cerulean Studios, LLC)
Unlocker 1.8.5 (HKLM\...\Unlocker) (Version: 1.8.5 - Cedrick Collomb)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
vivoTV (HKLM\...\vivoTV_is1) (Version: - )
VLC media player 1.1.11 (HKLM\...\VLC media player) (Version: 1.1.11 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
WebReg (Version: 90.0.146.000 - Hewlett-Packard) Hidden
Windows Imaging Component (HKLM\...\WIC) (Version: 3.0.0.0 - Microsoft Corporation)
Windows Installer 3.1 (KB893803) (HKLM\...\KB893803v2) (Version: 3.1 - Microsoft Corporation)
WinRAR archivátor (HKLM\...\WinRAR archiver) (Version: - )
XAMPP (HKLM\...\xampp) (Version: 1.8.2-5 - Bitnami)
XML Paper Specification Shared Components Language Pack 1.0 (Version: - Microsoft Corporation) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-436374069-1708537768-682003330-1003_Classes\CLSID\{B7125B4E-CA73-47f1-AEAA-6B3EFA553F5A}\InprocServer32 -> C:\Program Files\Trillian\events.dll (Cerulean Studios)
==================== Restore Points =========================
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2001-10-25 14:00 - 2001-10-25 14:00 - 00000737 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-12-17 10:05 - 2014-12-17 10:05 - 02908160 _____ () C:\Program Files\AVAST Software\Avast\defs\14121700\algo.dll
2014-08-06 11:04 - 2010-03-15 10:28 - 00141824 _____ () C:\Program Files\WinRAR\rarext.dll
2006-09-07 18:19 - 2006-09-07 18:19 - 00008704 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2014-08-07 12:56 - 2014-12-01 17:59 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-12-09 09:49 - 2014-12-09 09:49 - 03758192 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Remote Control.lnk => C:\WINDOWS\pss\Remote Control.lnkCommon Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: FlashPlayerUpdate => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_15_0_0_189_Plugin.exe -update plugin
MSCONFIG\startupreg: HP Software Update => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: HPUsageTracking => "C:\Program Files\HP\HP UT\bin\hppusg.exe" "C:\Program Files\HP\HP UT\"
MSCONFIG\startupreg: TiVme Agent => C:\Program Files\GIGABYTE\vivoTV\ScheduleAgent.exe srec
MSCONFIG\startupreg: ToolBoxFX => "C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on
MSCONFIG\startupreg: UnlockerAssistant => "C:\Program Files\Unlocker\UnlockerAssistant.exe"
========================= Accounts: ==========================
Administrator (S-1-5-21-436374069-1708537768-682003330-500 - Administrator - Enabled)
ASPNET (S-1-5-21-436374069-1708537768-682003330-1005 - Limited - Enabled)
Guest (S-1-5-21-436374069-1708537768-682003330-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-436374069-1708537768-682003330-1000 - Limited - Disabled)
Ivan (S-1-5-21-436374069-1708537768-682003330-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Ivan
SUPPORT_388945a0 (S-1-5-21-436374069-1708537768-682003330-1002 - Limited - Disabled)
==================== Faulty Device Manager Devices =============
Name: Myš Microsoft pro port PS/2
Description: Myš Microsoft pro port PS/2
Class Guid: {4D36E96F-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : A driver (service) for this device has been disabled. An alternate driver may be providing this functionality (Code 32)
Resolution: The start type for this driver is set to disabled in the registry.
Uninstall the driver from Device Manager, and then scan for new hardware to install the driver again. If this does not work, you might have to change the device start type parameter in the registry.
Name: Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Description: Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Class Guid: {4D36E96B-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : A driver (service) for this device has been disabled. An alternate driver may be providing this functionality (Code 32)
Resolution: The start type for this driver is set to disabled in the registry.
Uninstall the driver from Device Manager, and then scan for new hardware to install the driver again. If this does not work, you might have to change the device start type parameter in the registry.
==================== Event log errors: =========================
Application errors:
==================
Error: (12/17/2014 03:27:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace svchost.exe, verze 5.1.2600.2180, chybující modul qmgr.dll, verze 6.6.2600.2180, adresa chyby 0x0002bdc3.
Zpracování události, specifické pro médium ([svchost.exe!ws!])
Error: (12/17/2014 03:14:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace svchost.exe, verze 5.1.2600.2180, chybující modul qmgr.dll, verze 6.6.2600.2180, adresa chyby 0x0002bdc3.
Zpracování události, specifické pro médium ([svchost.exe!ws!])
Error: (12/15/2014 11:11:39 PM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 1000) (User: )
Description: Faulting application tvpanel.exe, version 1.4.2.28, stamp 4d354bc6, faulting module clvsd.ax, version 8.4.0.730, stamp 4a714eb2, debug? 0, fault address 0x00084178.
Error: (12/05/2014 09:29:57 PM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 1000) (User: )
Description: Faulting application tvpanel.exe, version 1.4.2.28, stamp 4d354bc6, faulting module clvsd.ax, version 8.4.0.730, stamp 4a714eb2, debug? 0, fault address 0x00084178.
Error: (12/01/2014 05:33:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace plugin-container.exe, verze 33.1.1.5430, chybující modul mozalloc.dll, verze 33.1.1.5430, adresa chyby 0x00001425.
Zpracování události, specifické pro médium ([plugin-container.exe!ws!])
Error: (12/01/2014 04:24:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace coolpro2.exe, verze 2.1.3097.0, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error: (12/01/2014 04:17:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace coolpro2.exe, verze 2.1.3097.0, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error: (11/23/2014 01:01:47 AM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 1000) (User: )
Description: Faulting application tvpanel.exe, version 1.4.2.28, stamp 4d354bc6, faulting module clvsd.ax, version 8.4.0.730, stamp 4a714eb2, debug? 0, fault address 0x00084178.
Error: (11/19/2014 06:09:10 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace notepad++.exe, verze 6.6.8.0, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error: (11/09/2014 06:59:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace explorer.exe, verze 6.0.2900.2180, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
System errors:
=============
Error: (12/17/2014 04:14:45 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Služba WMI, ale tato akce selhala kvůli následující chybě:
%%1056
Error: (12/17/2014 04:13:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Systém událostí modelu COM+ byla neočekávaně ukončena. Tento stav nastal již 13krát.
Error: (12/17/2014 04:13:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba inteligentního přenosu na pozadí byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (12/17/2014 04:11:36 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Služba WMI, ale tato akce selhala kvůli následující chybě:
%%1056
Error: (12/17/2014 04:10:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Systém událostí modelu COM+ byla neočekávaně ukončena. Tento stav nastal již 12krát.
Error: (12/17/2014 04:10:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba inteligentního přenosu na pozadí byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (12/17/2014 04:10:33 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Služba WMI, ale tato akce selhala kvůli následující chybě:
%%1056
Error: (12/17/2014 04:10:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Systém událostí modelu COM+ byla neočekávaně ukončena. Tento stav nastal již 9krát.
Error: (12/17/2014 04:10:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba inteligentního přenosu na pozadí byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (12/17/2014 04:06:48 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Služba WMI, ale tato akce selhala kvůli následující chybě:
%%1056
Microsoft Office Sessions:
=========================
Error: (12/17/2014 03:27:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe5.1.2600.2180qmgr.dll6.6.2600.21800002bdc3
Error: (12/17/2014 03:14:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe5.1.2600.2180qmgr.dll6.6.2600.21800002bdc3
Error: (12/15/2014 11:11:39 PM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 1000) (User: )
Description: tvpanel.exe1.4.2.284d354bc6clvsd.ax8.4.0.7304a714eb2000084178
Error: (12/05/2014 09:29:57 PM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 1000) (User: )
Description: tvpanel.exe1.4.2.284d354bc6clvsd.ax8.4.0.7304a714eb2000084178
Error: (12/01/2014 05:33:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe33.1.1.5430mozalloc.dll33.1.1.543000001425
Error: (12/01/2014 04:24:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: coolpro2.exe2.1.3097.0hungapp0.0.0.000000000
Error: (12/01/2014 04:17:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: coolpro2.exe2.1.3097.0hungapp0.0.0.000000000
Error: (11/23/2014 01:01:47 AM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 1000) (User: )
Description: tvpanel.exe1.4.2.284d354bc6clvsd.ax8.4.0.7304a714eb2000084178
Error: (11/19/2014 06:09:10 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: notepad++.exe6.6.8.0hungapp0.0.0.000000000
Error: (11/09/2014 06:59:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: explorer.exe6.0.2900.2180hungapp0.0.0.000000000
==================== Memory info ===========================
Processor: Intel(R) Pentium(R) 4 CPU 1.60GHz
Percentage of memory in use: 34%
Total physical RAM: 1535.3 MB
Available physical RAM: 1001.26 MB
Total Pagefile: 3434.74 MB
Available Pagefile: 3051.36 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.16 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:43.95 GB) (Free:32.74 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:105.09 GB) (Free:4.51 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 149.1 GB) (Disk ID: DDD4DDD4)
Partition 1: (Active) - (Size=43.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=105.1 GB) - (Type=OF Extended)
==================== End Of Log ============================
Prosím Vás pozriete mi to? Ďakujem.
Logfile of random's system information tool 1.06 (written by random/random)
Run by Ivan at 2014-12-17 16:13:48
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 34 GB (74%) free of 45 GB
Total RAM: 1535 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:13:57, on 17. 12. 2014
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\devldr32.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Ivan\Dokumenty\Preberanie\FRST.exe
D:\Ivan\Záloha PC\Programy\Antivír\HiJackthis\RSIT.exe
C:\WINDOWS\system32\svchost.exe
D:\Ivan\Záloha PC\Programy\Antivír\HiJackthis\Ivan.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O20 - AppInit_DLLs:
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
--
End of file - 2426 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\avast! Emergency Update.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
10
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-12-12 5227112]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlashPlayerUpdate]
C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_15_0_0_189_Plugin.exe -update plugin []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2005-02-16 49152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPUsageTracking]
C:\Program Files\HP\HP UT\bin\hppusg.exe [2007-07-12 36864]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TiVme Agent]
C:\Program Files\GIGABYTE\vivoTV\ScheduleAgent.exe [2010-09-22 124928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ToolBoxFX]
C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe [2007-07-11 53248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
C:\Program Files\Unlocker\UnlockerAssistant.exe [2006-09-07 15872]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Remote Control.lnk]
C:\PROGRA~1\GIGABYTE\U7300U~1\CONRCtl.exe [2011-05-03 94208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" "
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"F:\EasySetupAssistant\wr841n\EasySetupAssistant.exe"="F:\EasySetupAssistant\wr841n\EasySetupAssistant.exe:*:Enabled:TP-LINK Easy Setup Assistant"
"C:\Program Files\HP\hp laserjet m1522\Fax Config utility1.exe"="C:\Program Files\HP\hp laserjet m1522\Fax Config utility1.exe:*:Enabled:HP Networked Printer Installer"
"C:\xampp\mysql\bin\mysqld.exe"="C:\xampp\mysql\bin\mysqld.exe:*:Enabled:mysqld"
"C:\xampp\apache\bin\httpd.exe"="C:\xampp\apache\bin\httpd.exe:*:Enabled:Apache HTTP Server"
"C:\Program Files\HP\hp laserjet m1522\hppfaxnc1.exe"="C:\Program Files\HP\hp laserjet m1522\hppfaxnc1.exe:*:Enabled:HP Networked Printer Installer"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2014-12-17 16:13:02 ----D---- C:\FRST
2014-12-17 16:01:21 ----D---- C:\rsit
2014-12-17 15:55:59 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-12-17 15:13:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\23405448
2014-12-12 09:37:05 ----D---- C:\Program Files\Microsoft Silverlight
2014-12-09 09:49:23 ----D---- C:\Program Files\Mozilla Firefox
2014-12-01 17:59:45 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-12-01 14:39:14 ----D---- C:\Documents and Settings\Ivan\Data aplikací\Help
2014-11-28 10:05:42 ----A---- C:\WINDOWS\vzory.ini
2014-11-23 17:28:29 ----D---- C:\Documents and Settings\Ivan\Data aplikací\Trillian
2014-11-23 17:28:00 ----D---- C:\Program Files\Trillian
======List of files/folders modified in the last 1 months======
2014-12-17 16:13:06 ----D---- C:\WINDOWS
2014-12-17 15:59:56 ----D---- C:\WINDOWS\Prefetch
2014-12-17 15:57:51 ----D---- C:\WINDOWS\Temp
2014-12-17 15:49:28 ----D---- C:\AdwCleaner
2014-12-17 15:33:54 ----D---- C:\WINDOWS\SoftwareDistribution
2014-12-17 15:32:24 ----RD---- C:\Program Files
2014-12-17 15:29:00 ----D---- C:\WINDOWS\system32
2014-12-12 11:37:15 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-12-12 09:37:25 ----SHD---- C:\WINDOWS\Installer
2014-12-12 09:37:25 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2014-12-10 10:22:03 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-12-06 18:21:09 ----A---- C:\WINDOWS\wincmd.ini
2014-12-06 14:19:02 ----A---- C:\WINDOWS\wcx_ftp.ini
2014-12-04 21:40:10 ----D---- C:\Documents and Settings\Ivan\Data aplikací\vlc
2014-12-04 13:06:32 ----D---- C:\Program Files\Messenger
2014-12-04 13:06:31 ----D---- C:\Program Files\HD Tune
2014-12-01 18:00:03 ----D---- C:\WINDOWS\system32\drivers
2014-12-01 17:59:53 ----SD---- C:\WINDOWS\Tasks
2014-12-01 15:15:25 ----A---- C:\WINDOWS\win.ini
2014-12-01 15:15:25 ----A---- C:\WINDOWS\system.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-12-01 55240]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-12-01 787800]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-12-01 423784]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-12-01 57928]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-12-01 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-12-01 70384]
R3 ac97intc;Služba instalace zvukového ovladače Intel(r) (WDM); C:\WINDOWS\system32\drivers\ac97intc.sys [2001-08-17 96256]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-08-17 701440]
R3 ctljystk;Game port pro zařízení Creative SB Live!; C:\WINDOWS\system32\DRIVERS\ctljystk.sys [2001-08-17 3712]
R3 emu10k;Creative SB Live! (WDM); C:\WINDOWS\system32\drivers\emu10k1m.sys [2001-08-17 283904]
R3 emu10k1;Creative Interface Manager Driver (WDM); C:\WINDOWS\system32\drivers\ctlfacem.sys [2001-08-17 6912]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-10-25 9600]
R3 HPFXBULK;HPFXBULK; C:\WINDOWS\system32\drivers\hpfxbulk.sys [2007-08-21 11264]
R3 HPFXFAX;HPFXFAX; C:\WINDOWS\system32\drivers\hpfxfax.sys [2007-08-21 14336]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 RTL2832UBDA;REALTEK 2832U BDA Driver; C:\WINDOWS\system32\drivers\RTL2832UBDA.sys [2011-05-03 143264]
R3 RTL2832UUSB;REALTEK 2832U USB Driver; C:\WINDOWS\System32\Drivers\RTL2832UUSB.sys [2011-05-03 32800]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 sfman;Creative SoundFont Manager Driver (WDM); C:\WINDOWS\system32\drivers\sfmanm.sys [2001-08-17 36480]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-03 17024]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 CrystalSysInfo;CrystalSysInfo; C:\WINDOWS\system32\drivers\CrystalSysInfo.sys []
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2004-08-03 15360]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S4 sr;Ovladač filtru Obnovy systému; C:\WINDOWS\system32\DRIVERS\sr.sys [2004-08-17 73344]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-12-01 50344]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-12-09 114800]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-12-2014 01
Ran by Ivan at 2014-12-17 16:15:47
Running from C:\Documents and Settings\Ivan\Dokumenty\Preberanie
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
ACDSee (HKLM\...\ACDSee) (Version: - )
ACDSee 3.1 PowerPack SR-1sk (HKLM\...\ACDSee 3.1 PP SR-1) (Version: - )
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.22.87 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Slovak (HKLM\...\{AC76BA86-7AD7-1051-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software)
Balík Compatibility Pack pre systém Office 2007 (HKLM\...\{90120000-0020-041B-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform)
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Data Lifeguard Diagnostic for Windows 1.27 (HKLM\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation)
Destination Component (Version: 090.000.091.086 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 90.0.146.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Dolphin Futures XPS Viewer version 1.1.0 (HKLM\...\{75480068-162F-4D6B-B38E-76606A4E5320}_is1) (Version: 1.1.0 - Dolphin Futures Limited)
Elcomm (HKLM\...\Elcomm) (Version: - )
GIGABYTE Remote Utilities (HKLM\...\{DA60AB6B-6C9C-4B5F-BC61-3B0D9BCBD50B}) (Version: 3.0.0.0 - GIGABYTE)
HD Tune 2.52 (HKLM\...\HD Tune_is1) (Version: - EFD Software)
HijackThis 2.0.2 (HKLM\...\HijackThis) (Version: 2.0.2 - TrendMicro)
HP Customer Participation Program 9.0 (HKLM\...\HPExtendedCapabilities) (Version: 9.0 - HP)
HP LaserJet M1522 MFP Series 1.0 (HKLM\...\HP LaserJet M1522) (Version: 1.0 - HP)
HP Update (HKLM\...\{8C6027FD-53DC-446D-BB75-CACD7028A134}) (Version: 4.000.006.002 - Hewlett-Packard)
hppFaxDrvM1522 (Version: 000.008.00023 - Hewlett-Packard) Hidden
hppFaxUtility (Version: 000.105.00107 - Hewlett-Packard) Hidden
hppFonts (Version: 001.001.00056 - Hewlett-Packard) Hidden
hppIOFiles (Version: 002.000.00034 - Hewlett-Packard) Hidden
hppLJM1522 (Version: 000.008.00066 - Hewlett-Packard) Hidden
hppManualsM1522 (Version: 000.008.00067 - Hewlett-Packard) Hidden
hppscanM1522 (Version: 000.008.00073 - Hewlett-Packard) Hidden
hppScanTo (Version: 000.008.00060 - Hewlett-Packard) Hidden
hppSendFax (Version: 000.105.00089 - Hewlett-Packard) Hidden
hppTLBXFXM1522 (Version: 001.002.00013 - Hewlett-Packard) Hidden
hppusgM1522 (Version: 000.000.00003 - Hewlett-Packard) Hidden
HPSSupply (HKLM\...\{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}) (Version: 2.2.0.0000 - Hewlett Packard Development Company L.P.)
hpzTLBXFX (Version: 003.004.00276 - Hewlett-Packard) Hidden
MarketResearch (Version: 90.0.146.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY (HKLM\...\{A2C9CD1B-2551-3AED-B244-6698FB929FA6}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY (HKLM\...\{546C143E-68DC-314D-97BC-1E454E3BA429}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - csy) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 sk) (HKLM\...\Mozilla Firefox 34.0.5 (x86 sk)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 24.4.0 - Mozilla)
MSXML 6.0 Parser (KB933579) (HKLM\...\{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}) (Version: 6.10.1200.0 - Microsoft Corporation)
Notepad++ (HKLM\...\Notepad++) (Version: 6.6.8 - Notepad++ Team)
OMEGA 17.60.00 (HKLM\...\{79DCE48C-3B7F-4071-AF33-7D35EC5EB312}) (Version: 17.60.00 - Kros a.s.)
Pink 3.11 (HKLM\...\Pink_is1) (Version: - Radoslav Manzela)
Product_Min_QFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Scan (Version: 9.0.2.0 - Hewlett-Packard) Hidden
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: - )
Trillian (HKLM\...\Trillian) (Version: - Cerulean Studios, LLC)
Unlocker 1.8.5 (HKLM\...\Unlocker) (Version: 1.8.5 - Cedrick Collomb)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
vivoTV (HKLM\...\vivoTV_is1) (Version: - )
VLC media player 1.1.11 (HKLM\...\VLC media player) (Version: 1.1.11 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
WebReg (Version: 90.0.146.000 - Hewlett-Packard) Hidden
Windows Imaging Component (HKLM\...\WIC) (Version: 3.0.0.0 - Microsoft Corporation)
Windows Installer 3.1 (KB893803) (HKLM\...\KB893803v2) (Version: 3.1 - Microsoft Corporation)
WinRAR archivátor (HKLM\...\WinRAR archiver) (Version: - )
XAMPP (HKLM\...\xampp) (Version: 1.8.2-5 - Bitnami)
XML Paper Specification Shared Components Language Pack 1.0 (Version: - Microsoft Corporation) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-436374069-1708537768-682003330-1003_Classes\CLSID\{B7125B4E-CA73-47f1-AEAA-6B3EFA553F5A}\InprocServer32 -> C:\Program Files\Trillian\events.dll (Cerulean Studios)
==================== Restore Points =========================
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2001-10-25 14:00 - 2001-10-25 14:00 - 00000737 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-12-17 10:05 - 2014-12-17 10:05 - 02908160 _____ () C:\Program Files\AVAST Software\Avast\defs\14121700\algo.dll
2014-08-06 11:04 - 2010-03-15 10:28 - 00141824 _____ () C:\Program Files\WinRAR\rarext.dll
2006-09-07 18:19 - 2006-09-07 18:19 - 00008704 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2014-08-07 12:56 - 2014-12-01 17:59 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-12-09 09:49 - 2014-12-09 09:49 - 03758192 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Remote Control.lnk => C:\WINDOWS\pss\Remote Control.lnkCommon Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: FlashPlayerUpdate => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_15_0_0_189_Plugin.exe -update plugin
MSCONFIG\startupreg: HP Software Update => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: HPUsageTracking => "C:\Program Files\HP\HP UT\bin\hppusg.exe" "C:\Program Files\HP\HP UT\"
MSCONFIG\startupreg: TiVme Agent => C:\Program Files\GIGABYTE\vivoTV\ScheduleAgent.exe srec
MSCONFIG\startupreg: ToolBoxFX => "C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on
MSCONFIG\startupreg: UnlockerAssistant => "C:\Program Files\Unlocker\UnlockerAssistant.exe"
========================= Accounts: ==========================
Administrator (S-1-5-21-436374069-1708537768-682003330-500 - Administrator - Enabled)
ASPNET (S-1-5-21-436374069-1708537768-682003330-1005 - Limited - Enabled)
Guest (S-1-5-21-436374069-1708537768-682003330-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-436374069-1708537768-682003330-1000 - Limited - Disabled)
Ivan (S-1-5-21-436374069-1708537768-682003330-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Ivan
SUPPORT_388945a0 (S-1-5-21-436374069-1708537768-682003330-1002 - Limited - Disabled)
==================== Faulty Device Manager Devices =============
Name: Myš Microsoft pro port PS/2
Description: Myš Microsoft pro port PS/2
Class Guid: {4D36E96F-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : A driver (service) for this device has been disabled. An alternate driver may be providing this functionality (Code 32)
Resolution: The start type for this driver is set to disabled in the registry.
Uninstall the driver from Device Manager, and then scan for new hardware to install the driver again. If this does not work, you might have to change the device start type parameter in the registry.
Name: Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Description: Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Class Guid: {4D36E96B-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : A driver (service) for this device has been disabled. An alternate driver may be providing this functionality (Code 32)
Resolution: The start type for this driver is set to disabled in the registry.
Uninstall the driver from Device Manager, and then scan for new hardware to install the driver again. If this does not work, you might have to change the device start type parameter in the registry.
==================== Event log errors: =========================
Application errors:
==================
Error: (12/17/2014 03:27:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace svchost.exe, verze 5.1.2600.2180, chybující modul qmgr.dll, verze 6.6.2600.2180, adresa chyby 0x0002bdc3.
Zpracování události, specifické pro médium ([svchost.exe!ws!])
Error: (12/17/2014 03:14:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace svchost.exe, verze 5.1.2600.2180, chybující modul qmgr.dll, verze 6.6.2600.2180, adresa chyby 0x0002bdc3.
Zpracování události, specifické pro médium ([svchost.exe!ws!])
Error: (12/15/2014 11:11:39 PM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 1000) (User: )
Description: Faulting application tvpanel.exe, version 1.4.2.28, stamp 4d354bc6, faulting module clvsd.ax, version 8.4.0.730, stamp 4a714eb2, debug? 0, fault address 0x00084178.
Error: (12/05/2014 09:29:57 PM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 1000) (User: )
Description: Faulting application tvpanel.exe, version 1.4.2.28, stamp 4d354bc6, faulting module clvsd.ax, version 8.4.0.730, stamp 4a714eb2, debug? 0, fault address 0x00084178.
Error: (12/01/2014 05:33:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace plugin-container.exe, verze 33.1.1.5430, chybující modul mozalloc.dll, verze 33.1.1.5430, adresa chyby 0x00001425.
Zpracování události, specifické pro médium ([plugin-container.exe!ws!])
Error: (12/01/2014 04:24:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace coolpro2.exe, verze 2.1.3097.0, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error: (12/01/2014 04:17:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace coolpro2.exe, verze 2.1.3097.0, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error: (11/23/2014 01:01:47 AM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 1000) (User: )
Description: Faulting application tvpanel.exe, version 1.4.2.28, stamp 4d354bc6, faulting module clvsd.ax, version 8.4.0.730, stamp 4a714eb2, debug? 0, fault address 0x00084178.
Error: (11/19/2014 06:09:10 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace notepad++.exe, verze 6.6.8.0, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error: (11/09/2014 06:59:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace explorer.exe, verze 6.0.2900.2180, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
System errors:
=============
Error: (12/17/2014 04:14:45 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Služba WMI, ale tato akce selhala kvůli následující chybě:
%%1056
Error: (12/17/2014 04:13:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Systém událostí modelu COM+ byla neočekávaně ukončena. Tento stav nastal již 13krát.
Error: (12/17/2014 04:13:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba inteligentního přenosu na pozadí byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (12/17/2014 04:11:36 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Služba WMI, ale tato akce selhala kvůli následující chybě:
%%1056
Error: (12/17/2014 04:10:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Systém událostí modelu COM+ byla neočekávaně ukončena. Tento stav nastal již 12krát.
Error: (12/17/2014 04:10:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba inteligentního přenosu na pozadí byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (12/17/2014 04:10:33 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Služba WMI, ale tato akce selhala kvůli následující chybě:
%%1056
Error: (12/17/2014 04:10:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Systém událostí modelu COM+ byla neočekávaně ukončena. Tento stav nastal již 9krát.
Error: (12/17/2014 04:10:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba inteligentního přenosu na pozadí byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (12/17/2014 04:06:48 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Služba WMI, ale tato akce selhala kvůli následující chybě:
%%1056
Microsoft Office Sessions:
=========================
Error: (12/17/2014 03:27:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe5.1.2600.2180qmgr.dll6.6.2600.21800002bdc3
Error: (12/17/2014 03:14:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe5.1.2600.2180qmgr.dll6.6.2600.21800002bdc3
Error: (12/15/2014 11:11:39 PM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 1000) (User: )
Description: tvpanel.exe1.4.2.284d354bc6clvsd.ax8.4.0.7304a714eb2000084178
Error: (12/05/2014 09:29:57 PM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 1000) (User: )
Description: tvpanel.exe1.4.2.284d354bc6clvsd.ax8.4.0.7304a714eb2000084178
Error: (12/01/2014 05:33:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe33.1.1.5430mozalloc.dll33.1.1.543000001425
Error: (12/01/2014 04:24:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: coolpro2.exe2.1.3097.0hungapp0.0.0.000000000
Error: (12/01/2014 04:17:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: coolpro2.exe2.1.3097.0hungapp0.0.0.000000000
Error: (11/23/2014 01:01:47 AM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 1000) (User: )
Description: tvpanel.exe1.4.2.284d354bc6clvsd.ax8.4.0.7304a714eb2000084178
Error: (11/19/2014 06:09:10 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: notepad++.exe6.6.8.0hungapp0.0.0.000000000
Error: (11/09/2014 06:59:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: explorer.exe6.0.2900.2180hungapp0.0.0.000000000
==================== Memory info ===========================
Processor: Intel(R) Pentium(R) 4 CPU 1.60GHz
Percentage of memory in use: 34%
Total physical RAM: 1535.3 MB
Available physical RAM: 1001.26 MB
Total Pagefile: 3434.74 MB
Available Pagefile: 3051.36 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.16 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:43.95 GB) (Free:32.74 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:105.09 GB) (Free:4.51 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 149.1 GB) (Disk ID: DDD4DDD4)
Partition 1: (Active) - (Size=43.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=105.1 GB) - (Type=OF Extended)
==================== End Of Log ============================