Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-09-2013 03
Ran by Martin (administrator) on MARTINRASZKA-PC on 04-09-2013 16:44:34
Running from C:\Documents and Settings\Martin\Plocha
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Ellora Assets Corp.) C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastUI.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE
(Realtek Semiconductor Corp.) C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe
(Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [NvCplDaemon] - C:\WINDOWS\system32\NvCpl.dll [15517984 2013-03-22] (NVIDIA Corporation)
HKLM\...\Run: [nwiz] - C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2013-03-23] ()
HKLM\...\Run: [High Definition Audio Property Page Shortcut] - C:\Windows\system32\HDAShCut.exe [61952 2005-01-07] (Windows (R) Server 2003 DDK provider)
HKLM\...\Run: [RTHDCPL] - C:\Windows\RTHDCPL.EXE [15473664 2005-11-10] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\Windows\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-05-09] (AVAST Software)
HKCU\...\Run: [Zoner Photo Studio Autoupdate] - C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [774168 2013-02-18] (ZONER software)
MountPoints2: {390c09c0-b6f1-11e2-b9a1-00e04c0a2fc9} - G:\installer.exe
MountPoints2: {8b30b58a-bb18-11e2-b9c6-00e04c0a2fc9} - G:\installer.exe
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\REALTEK 11n USB Wireless LAN Utility.lnk
ShortcutTarget: REALTEK 11n USB Wireless LAN Utility.lnk -> C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU -&Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU -&Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\Windows\system32\SHELL32.dll (Microsoft Corporation)
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 7764883328
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 7765927656
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\2ryyvvu5.default
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.6 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.novinky.cz/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Martin\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\29.0.1547.62\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Documents and Settings\Martin\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\Martin\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\29.0.1547.62\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Documents and Settings\Martin\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.210.11) - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
CHR Extension: (Google Docs) - C:\DOCUME~1\Martin\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\DOCUME~1\Martin\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\DOCUME~1\Martin\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Adblock Plus) - C:\DOCUME~1\Martin\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.5_0
CHR Extension: (Google Search) - C:\DOCUME~1\Martin\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\DOCUME~1\Martin\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Facebook Themes) - C:\DOCUME~1\Martin\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\nnokmfkhggegacbiaknbocbboniaajdg\1.3_0
CHR Extension: (Gmail) - C:\DOCUME~1\Martin\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files\Common Files\Spigot\GC\coupons_2.3.crx
========================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 FreemakeVideoCapture; C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe [9216 2013-04-01] (Ellora Assets Corp.)
==================== Drivers (Whitelisted) ====================
R2 AegisP; C:\Windows\System32\DRIVERS\AegisP.sys [21361 2013-05-05] (Cisco Systems, Inc.)
R1 AmdK8; C:\Windows\System32\DRIVERS\AmdK8.sys [43008 2006-07-01] (Advanced Micro Devices)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [29816 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [66336 2013-05-09] (AVAST Software)
R1 AswRdr; C:\Windows\System32\Drivers\AswRdr.sys [49760 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49376 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [770344 2013-06-27] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [369584 2013-06-27] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [56080 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [175176 2013-06-27] ()
S3 HdAudAddService; C:\Windows\System32\drivers\HdAudio.sys [145920 2005-01-07] (Windows (R) Server 2003 DDK provider)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [22560 2013-07-20] (REALiX(tm))
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 NVENETFD; C:\Windows\System32\DRIVERS\NVENETFD.sys [70912 2010-03-04] (NVIDIA Corporation)
R0 nvgts; C:\Windows\System32\DRIVERS\nvgts.sys [168040 2010-04-09] (NVIDIA Corporation)
R3 nvnetbus; C:\Windows\System32\DRIVERS\nvnetbus.sys [13824 2010-03-04] (NVIDIA Corporation)
R3 RTL8192cu; C:\Windows\System32\DRIVERS\rtwlanu.sys [904680 2011-05-09] (Realtek Semiconductor Corporation )
S3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [904680 2011-05-09] (Realtek Semiconductor Corporation )
R1 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5632 2006-07-24] ()
S4 IntelIde; No ImagePath
S3 NPF; system32\drivers\NPF.sys [x]
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 WINIO; \??\C:\Documents and Settings\Martin\Plocha\Power-Supply-Calculator-2.071_-Gio\Power Supply Calculator 2.071_ Gio\winio.sys [x]
U1 WS2IFSL;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-04 16:44 - 2013-09-03 18:44 - 01084575 _____ (Farbar) C:\Documents and Settings\Martin\Plocha\FRST.exe
2013-08-18 10:23 - 2013-08-18 10:24 - 00000000 ____D C:\Program Files\rajce
2013-08-17 22:13 - 2013-08-17 22:13 - 00000110 ____H C:\Documents and Settings\Martin\Plocha\Fotografie-0022.jpg.uid-zps
2013-08-17 21:35 - 2013-08-18 09:45 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-08-13 23:27 - 2013-08-13 23:27 - 00000110 ____H C:\Documents and Settings\Martin\Plocha\Fotografie-0021.jpg.uid-zps
2013-08-13 23:26 - 2013-08-13 23:26 - 00000110 ____H C:\Documents and Settings\Martin\Plocha\Fotografie-0020.jpg.uid-zps
2013-08-11 15:48 - 2013-08-22 18:18 - 00000000 ____D C:\Program Files\Microsoft Office
2013-08-11 15:42 - 2013-08-11 16:04 - 00065536 _____ C:\WINDOWS\system32\config\TuneUp.evt
2013-08-11 15:41 - 2013-08-11 15:41 - 00000000 ____D C:\Documents and Settings\Martin\Data aplikací\AVG
2013-08-11 15:39 - 2013-08-22 18:18 - 00000000 ____D C:\Program Files\MSECache
2013-08-11 15:30 - 2013-08-11 15:30 - 00000000 __HDC C:\WINDOWS\$NtUninstallXPSEPSCLP$
2013-08-11 15:30 - 2006-06-29 13:07 - 00014048 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsg2.dll
2013-08-11 15:28 - 2013-08-11 15:29 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2013-08-11 15:28 - 2013-08-11 15:28 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-08-11 15:28 - 2013-08-11 15:28 - 00000000 ____D C:\Program Files\MSBuild
2013-08-11 15:27 - 2008-07-06 14:06 - 01676288 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpssvcs.dll
2013-08-11 15:27 - 2008-07-06 14:06 - 01676288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpssvcs.dll
2013-08-11 15:27 - 2008-07-06 14:06 - 00575488 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsshhdr.dll
2013-08-11 15:27 - 2008-07-06 14:06 - 00575488 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpsshhdr.dll
2013-08-11 15:27 - 2008-07-06 14:06 - 00117760 ____N (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2013-08-11 15:27 - 2008-07-06 14:06 - 00089088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\filterpipelineprintproc.dll
2013-08-11 15:27 - 2008-07-06 12:50 - 00597504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\printfilterpipelinesvc.exe
2013-08-09 12:23 - 2013-08-09 12:20 - 00001713 _____ C:\Documents and Settings\Martin\Plocha\Chit Chat For Facebook.lnk
2013-08-09 12:20 - 2013-08-09 12:20 - 00000000 ____D C:\Program Files\RelevantKnowledge
2013-08-09 12:20 - 2013-08-09 12:20 - 00000000 ____D C:\Program Files\Chit Chat For Facebook
2013-08-07 08:54 - 2013-08-07 12:18 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-08-05 01:16 - 2013-09-04 16:34 - 00002272 _____ C:\Documents and Settings\Martin\Plocha\Google Chrome.lnk
2013-08-05 01:16 - 2013-08-05 01:16 - 00000000 ____D C:\Documents and Settings\Martin\Nabídka Start\Programy\Google Chrome
2013-08-05 01:15 - 2013-09-04 16:34 - 00001030 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-507921405-117609710-839522115-1004UA.job
2013-08-05 01:15 - 2013-09-01 01:26 - 00000978 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-507921405-117609710-839522115-1004Core.job
==================== One Month Modified Files and Folders =======
2013-09-04 16:44 - 2013-09-04 16:44 - 00000000 ____D C:\FRST
2013-09-04 16:44 - 2013-05-05 16:03 - 00000000 ___HD C:\DOCUME~1\Martin\LOCALS~1\Data aplikací
2013-09-04 16:44 - 2013-05-05 16:03 - 00000000 ____D C:\Documents and Settings\Martin\Plocha
2013-09-04 16:34 - 2013-08-05 01:16 - 00002272 _____ C:\Documents and Settings\Martin\Plocha\Google Chrome.lnk
2013-09-04 16:34 - 2013-08-05 01:15 - 00001030 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-507921405-117609710-839522115-1004UA.job
2013-09-04 16:15 - 2013-05-05 15:59 - 01683447 _____ C:\WINDOWS\WindowsUpdate.log
2013-09-04 16:14 - 2013-05-12 14:17 - 00006496 _____ C:\WINDOWS\system32\d3d9caps.dat
2013-09-04 16:14 - 2013-05-05 17:53 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-09-04 16:14 - 2013-05-05 17:53 - 00000048 _____ C:\WINDOWS\wiaservc.log
2013-09-04 16:14 - 2013-05-05 16:40 - 00000000 ____D C:\WINDOWS\system32\Lang
2013-09-04 16:14 - 2013-05-05 16:10 - 00000000 _____ C:\WINDOWS\RTacDbg.txt
2013-09-04 16:14 - 2013-05-05 16:03 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-09-04 04:52 - 2013-05-11 00:46 - 00524288 _____ C:\WINDOWS\system32\config\CaptureL.evt
2013-09-04 04:52 - 2013-05-07 09:34 - 00032574 _____ C:\WINDOWS\SchedLgU.Txt
2013-09-04 04:52 - 2013-05-05 16:03 - 00000178 ___SH C:\Documents and Settings\Martin\ntuser.ini
2013-09-03 19:40 - 2013-05-05 16:03 - 00000000 ____D C:\Documents and Settings\Martin
2013-09-03 18:44 - 2013-09-04 16:44 - 01084575 _____ (Farbar) C:\Documents and Settings\Martin\Plocha\FRST.exe
2013-09-01 21:32 - 2013-05-12 03:28 - 00000000 ____D C:\Documents and Settings\Martin\Data aplikací\Canon
2013-09-01 21:16 - 2006-03-02 14:00 - 00000600 _____ C:\WINDOWS\win.ini
2013-09-01 21:16 - 2006-03-02 14:00 - 00000253 _____ C:\WINDOWS\system.ini
2013-09-01 20:44 - 2013-05-05 17:36 - 00000000 ____D C:\Documents and Settings\Martin\Data aplikací\vlc
2013-09-01 01:26 - 2013-08-05 01:15 - 00000978 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-507921405-117609710-839522115-1004Core.job
2013-08-31 14:36 - 2006-03-02 14:00 - 00013676 _____ C:\WINDOWS\system32\wpa.dbl
2013-08-22 18:18 - 2013-08-11 15:48 - 00000000 ____D C:\Program Files\Microsoft Office
2013-08-22 18:18 - 2013-08-11 15:39 - 00000000 ____D C:\Program Files\MSECache
2013-08-22 18:18 - 2013-05-05 17:51 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-08-18 10:24 - 2013-08-18 10:23 - 00000000 ____D C:\Program Files\rajce
2013-08-18 10:24 - 2013-05-05 17:50 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2013-08-18 09:45 - 2013-08-17 21:35 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-08-18 09:45 - 2013-07-28 12:55 - 00367880 _____ C:\WINDOWS\setupapi.log
2013-08-18 09:45 - 2013-05-05 16:50 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-08-17 22:13 - 2013-08-17 22:13 - 00000110 ____H C:\Documents and Settings\Martin\Plocha\Fotografie-0022.jpg.uid-zps
2013-08-17 22:11 - 2013-05-05 16:03 - 00000000 ___RD C:\Documents and Settings\Martin\Dokumenty
2013-08-13 23:27 - 2013-08-13 23:27 - 00000110 ____H C:\Documents and Settings\Martin\Plocha\Fotografie-0021.jpg.uid-zps
2013-08-13 23:26 - 2013-08-13 23:26 - 00000110 ____H C:\Documents and Settings\Martin\Plocha\Fotografie-0020.jpg.uid-zps
2013-08-13 11:35 - 2013-07-04 10:22 - 00000781 _____ C:\Documents and Settings\Martin\Plocha\BS.Player FREE.lnk
2013-08-13 11:35 - 2013-07-04 10:22 - 00000781 _____ C:\Documents and Settings\Martin\Nabídka Start\BS.Player FREE.lnk
2013-08-11 21:56 - 2013-05-11 00:35 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-08-11 20:13 - 2013-05-05 17:50 - 00293272 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-08-11 16:04 - 2013-08-11 15:42 - 00065536 _____ C:\WINDOWS\system32\config\TuneUp.evt
2013-08-11 15:42 - 2013-05-05 16:03 - 00000000 __RHD C:\Documents and Settings\Martin\Data aplikací
2013-08-11 15:41 - 2013-08-11 15:41 - 00000000 ____D C:\Documents and Settings\Martin\Data aplikací\AVG
2013-08-11 15:41 - 2013-05-05 17:50 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2013-08-11 15:30 - 2013-08-11 15:30 - 00000000 __HDC C:\WINDOWS\$NtUninstallXPSEPSCLP$
2013-08-11 15:30 - 2013-07-28 13:14 - 00017132 _____ C:\WINDOWS\spupdsvc.log
2013-08-11 15:30 - 2013-07-28 13:13 - 00797638 _____ C:\WINDOWS\FaxSetup.log
2013-08-11 15:30 - 2013-07-28 13:13 - 00381324 _____ C:\WINDOWS\ocgen.log
2013-08-11 15:30 - 2013-07-28 13:13 - 00304378 _____ C:\WINDOWS\tsoc.log
2013-08-11 15:30 - 2013-07-28 13:13 - 00264921 _____ C:\WINDOWS\comsetup.log
2013-08-11 15:30 - 2013-07-28 13:13 - 00160352 _____ C:\WINDOWS\ntdtcsetup.log
2013-08-11 15:30 - 2013-07-28 13:13 - 00127206 _____ C:\WINDOWS\iis6.log
2013-08-11 15:30 - 2013-07-28 13:13 - 00049794 _____ C:\WINDOWS\ocmsn.log
2013-08-11 15:30 - 2013-07-28 13:13 - 00039087 _____ C:\WINDOWS\msgsocm.log
2013-08-11 15:30 - 2013-07-28 13:13 - 00001374 _____ C:\WINDOWS\imsins.log
2013-08-11 15:29 - 2013-08-11 15:28 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2013-08-11 15:29 - 2013-05-05 17:43 - 00000000 ____D C:\WINDOWS\system32\mui
2013-08-11 15:28 - 2013-08-11 15:28 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-08-11 15:28 - 2013-08-11 15:28 - 00000000 ____D C:\Program Files\MSBuild
2013-08-11 15:28 - 2013-05-05 17:51 - 01115196 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-08-11 15:28 - 2013-05-05 16:03 - 00000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikací
2013-08-11 15:27 - 2013-05-05 17:43 - 00000000 ____D C:\WINDOWS\system32\spool
2013-08-11 15:26 - 2013-05-05 17:43 - 00000000 ____D C:\WINDOWS\pchealth
2013-08-09 12:20 - 2013-08-09 12:23 - 00001713 _____ C:\Documents and Settings\Martin\Plocha\Chit Chat For Facebook.lnk
2013-08-09 12:20 - 2013-08-09 12:20 - 00000000 ____D C:\Program Files\RelevantKnowledge
2013-08-09 12:20 - 2013-08-09 12:20 - 00000000 ____D C:\Program Files\Chit Chat For Facebook
2013-08-09 12:03 - 2013-05-05 17:43 - 00000000 ____D C:\WINDOWS\system32\usmt
2013-08-09 12:03 - 2013-05-05 15:58 - 00000000 ____D C:\WINDOWS\system32\Restore
2013-08-09 12:03 - 2013-05-05 15:58 - 00000000 ____D C:\WINDOWS\srchasst
2013-08-09 12:03 - 2013-05-05 15:58 - 00000000 ____D C:\Program Files\Outlook Express
2013-08-09 12:03 - 2013-05-05 15:57 - 00000000 ____D C:\Program Files\Common Files\System
2013-08-09 12:03 - 2013-05-05 15:56 - 00000000 ____D C:\Program Files\Windows NT
2013-08-07 12:18 - 2013-08-07 08:54 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-08-05 01:16 - 2013-08-05 01:16 - 00000000 ____D C:\Documents and Settings\Martin\Nabídka Start\Programy\Google Chrome
2013-08-05 01:16 - 2013-05-05 16:03 - 00000000 ___RD C:\Documents and Settings\Martin\Nabídka Start\Programy
2013-08-05 01:10 - 2013-05-05 16:25 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups
Files to move or delete:
====================
C:\DOCUME~1\Martin\LOCALS~1\Temp\NiwradSoft DB Toolbar.exe
C:\DOCUME~1\Martin\LOCALS~1\Temp\toolbar.exe
C:\DOCUME~1\Martin\LOCALS~1\Temp\TUUUninstallHelper.exe
C:\DOCUME~1\Martin\LOCALS~1\Temp\OCS\ICSharpCode.SharpZipLib.dll
C:\DOCUME~1\Martin\LOCALS~1\Temp\OCS\ocs_v7d.exe
C:\DOCUME~1\Martin\LOCALS~1\Temp\OCS\Downloads\9f8cc62c3640bf6eb115b4c78bb22a3f\c351a68bd6f44508abd51e2ed0d2ef75\SLOW-PCfighter_light.exe
C:\DOCUME~1\Martin\LOCALS~1\Temp\OCS\Downloads\9f8cc62c3640bf6eb115b4c78bb22a3f\73ab8ddae464ca55c5cf2c87e35413a9\PowerPointViewer_cs_2007.exe
C:\DOCUME~1\Martin\LOCALS~1\Temp\OCS\Downloads\9f8cc62c3640bf6eb115b4c78bb22a3f\0d1126e45af545e30e849fc32d1a8806\AVG-PC-TuneUp2012.exe
C:\DOCUME~1\Martin\LOCALS~1\Temp\nss20.tmp\bsplayer.exe
C:\DOCUME~1\Martin\LOCALS~1\Temp\nss20.tmp\bsplayer_installer.exe
C:\DOCUME~1\Martin\LOCALS~1\Temp\nsp15.tmp\wordview_cs-cz.exe
C:\DOCUME~1\Martin\LOCALS~1\Temp\nsh27F.tmp\PPV.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2006-03-02 14:00] - [2008-04-14 08:52] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1
C:\Windows\System32\winlogon.exe
[2006-03-02 14:00] - [2008-04-14 08:52] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea
C:\Windows\System32\svchost.exe
[2006-03-02 14:00] - [2008-04-14 08:52] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\Windows\System32\services.exe
[2006-03-02 14:00] - [2009-02-09 13:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\Windows\System32\User32.dll
[2006-03-02 14:00] - [2008-04-14 08:52] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53
C:\Windows\System32\userinit.exe
[2006-03-02 14:00] - [2008-04-14 08:52] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\Windows\System32\Drivers\volsnap.sys
[2006-03-02 14:00] - [2008-04-14 07:42] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
==================== Scheduled Tasks (whitelisted) ===========
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-507921405-117609710-839522115-1004Core.job => C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-507921405-117609710-839522115-1004UA.job => C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
==================== Supplementary Scan (All) ================
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Chit Chat for Facebook
C:\Program Files\Chit Chat For Facebook\CCFFacebook.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck
%systemroot%\system32\dumprep 0 -k [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OSSProxy
c:\program files\relevantknowledge\rlvknlg.exe -bootinstall [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services
ose REG_DWORD 0x2
AdobeFlashPlayerUpdateSvc REG_DWORD 0x3
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\{1a3e09be-1e45-494b-9174-d7385b45bbf5}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled"=dword:00000001
"AntiVirusDisableNotify"=dword:00000000
"FirewallDisableNotify"=dword:00000000
"UpdatesDisableNotify"=dword:00000001
"AntiVirusOverride"=dword:00000000
"FirewallOverride"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\REALTEK\\11n USB Wireless LAN Utility\\RtWLan.exe"="C:\\Program Files\\REALTEK\\11n USB Wireless LAN Utility\\RtWLan.exe:*:Enabled:RtWlan"
"C:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"="C:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe:*:Enabled:Daemonu.exe"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Java\\jre7\\launch4j-tmp\\frd.exe"="C:\\Program Files\\Java\\jre7\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\WINDOWS\\Microsoft.NET\\Framework\\v2.0.50727\\vbc.exe"="C:\\WINDOWS\\Microsoft.NET\\Framework\\v2.0.50727\\vbc.exe:*:Enabled:Visual Basic Command Line Compiler"
"C:\\Program Files\\REALTEK\\USB Wireless LAN Utility\\RtWLan.exe"="C:\\Program Files\\REALTEK\\USB Wireless LAN Utility\\RtWLan.exe:*:Enabled:RtWlan"
"C:\\Program Files\\REALTEK\\USB Wireless LAN Utility\\RTLDHCP.exe"="C:\\Program Files\\REALTEK\\USB Wireless LAN Utility\\RTLDHCP.exe:*:Enabled:RTLDHCP"
"C:\\Program Files\\QIP 2012\\qip.exe"="C:\\Program Files\\QIP 2012\\qip.exe:*:Enabled:QIP 2012"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\RelevantKnowledge\\rlvknlg.exe"="C:\\Program Files\\RelevantKnowledge\\rlvknlg.exe:*:Enabled:rlvknlg.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1542:TCP"="1542:TCP:*:Enabled:Realtek WPS TCP Prot"
"1542:UDP"="1542:UDP:*:Enabled:Realtek WPS UDP Prot"
"53:UDP"="53:UDP:*:Enabled:Realtek AP UDP Prot"
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"="midimap.dll"
"msacm.imaadpcm"="imaadp32.acm"
"msacm.msadpcm"="msadp32.acm"
"msacm.msg711"="msg711.acm"
"msacm.msgsm610"="msgsm32.acm"
"msacm.trspch"="tssoft32.acm"
"vidc.cvid"="iccvid.dll"
"VIDC.I420"="msh263.drv"
"vidc.iv31"="ir32_32.dll"
"vidc.iv32"="ir32_32.dll"
"vidc.iv41"="ir41_32.ax"
"VIDC.IYUV"="iyuv_32.dll"
"vidc.mrle"="msrle32.dll"
"vidc.msvc"="msvidc32.dll"
"VIDC.UYVY"="msyuv.dll"
"VIDC.YUY2"="msyuv.dll"
"VIDC.YVU9"="tsbyuv.dll"
"VIDC.YVYU"="msyuv.dll"
"wavemapper"="msacm32.drv"
"msacm.msg723"="msg723.acm"
"vidc.M263"="msh263.drv"
"vidc.M261"="msh261.drv"
"msacm.msaudio1"="msaud32.acm"
"msacm.sl_anet"="sl_anet.acm"
"msacm.iac2"="C:\\WINDOWS\\system32\\iac25_32.ax"
"vidc.iv50"="ir50_32.dll"
"msacm.l3acm"="C:\\WINDOWS\\system32\\l3codeca.acm"
"wave"="wdmaud.drv"
"midi"="wdmaud.drv"
"mixer"="wdmaud.drv"
"aux"="wdmaud.drv"
"MSVideo8"="VfWWDM32.dll"
"wave1"="wdmaud.drv"
"midi1"="wdmaud.drv"
"mixer1"="wdmaud.drv"
"aux1"="wdmaud.drv"
"msacm.voxacm160"="vct3216.acm"
"msacm.scg726"="scg726.acm"
"msacm.alf2cd"="alf2cd.acm"
"msacm.ac3acm"="AC3ACM.acm"
"vidc.dvsd"="mcdvd_32.dll"
"vidc.xvid"="xvidvfw.dll"
"vidc.DIVX"="DivX.dll"
"vidc.mpg4"="mpg4c32.dll"
"vidc.mp42"="mpg4c32.dll"
"vidc.mp43"="mpg4c32.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\Terminal Server]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\Terminal Server\RDP]
"wave"="rdpsnd.dll"
"mixer"="rdpsnd.dll"
"MaxBandwidth"=dword:000056b9
"wavemapper"="msacm32.drv"
"EnableMP3Codec"=dword:00000001
"midimapper"="midimap.dll"
==================== Drive and Memory info ===================
Drive c: (System) (Fixed) (Total:45.3 GB) (Free:32.8 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (Dokumenty) (Fixed) (Total:13.3 GB) (Free:6.92 GB) NTFS
Drive e: (Data) (Fixed) (Total:174.29 GB) (Free:87.14 GB) NTFS
Available physical RAM: 2493.63 MB
Total physical RAM: 3519.48 MB
Percentage of memory in use: 29%
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola logu z FRSR - preventivka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Kontrola logu z FRSR - preventivka
ahoj,
1. citat:
TFC http://oldtimer.geekstogo.com/TFC.exe
• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte
2. vloz log z ComboFix-u
1. citat:
TFC http://oldtimer.geekstogo.com/TFC.exe
• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte
2. vloz log z ComboFix-u
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Kontrola logu z FRSR - preventivka
ComboFix 13-09-04.04 - Martin 05.09.2013 16:16:36.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.3519.3040 [GMT 2:00]
Spuštěný z: c:\documents and settings\Martin\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\RelevantKnowledge
c:\program files\RelevantKnowledge\rlservice.exe
c:\program files\RelevantKnowledge\rlvknlg.exe
c:\windows\system32\Packet.dll
c:\windows\system32\wpcap.dll
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_NPF
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-08-05 do 2013-09-05 )))))))))))))))))))))))))))))))
.
.
2013-09-04 14:44 . 2013-09-04 14:44 -------- d-----w- C:\FRST
2013-08-18 08:23 . 2013-08-18 08:24 -------- d-----w- c:\program files\rajce
2013-08-11 13:41 . 2013-08-11 13:41 -------- d-----w- c:\documents and settings\Martin\Data aplikací\AVG
2013-08-11 13:41 . 2013-08-11 13:42 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVG
2013-08-11 13:41 . 2013-08-11 13:41 -------- d-sh--w- c:\documents and settings\All Users\Data aplikací\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2013-08-11 13:41 . 2013-08-11 13:41 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2013-08-11 13:39 . 2013-08-22 16:18 -------- d-----w- c:\program files\MSECache
2013-08-11 13:39 . 2013-08-11 13:42 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Fighters
2013-08-11 13:30 . 2006-06-29 11:07 14048 ------w- c:\windows\system32\spmsg2.dll
2013-08-11 13:28 . 2013-08-11 13:29 -------- d-----w- c:\windows\system32\XPSViewer
2013-08-11 13:28 . 2013-08-11 13:28 -------- d-----w- c:\program files\MSBuild
2013-08-11 13:28 . 2013-08-11 13:28 -------- d-----w- c:\program files\Reference Assemblies
2013-08-11 13:27 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2013-08-11 13:27 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2013-08-11 13:27 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2013-08-11 13:27 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2013-08-11 13:27 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2013-08-11 13:27 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2013-08-11 13:27 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2013-08-11 13:27 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2013-08-11 13:27 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2013-08-09 10:20 . 2013-08-09 10:20 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Chit Chat For Facebook
2013-08-09 10:20 . 2013-08-09 10:20 -------- d-----w- c:\program files\Chit Chat For Facebook
2013-08-07 06:54 . 2013-08-07 10:18 -------- d-----w- c:\program files\Mozilla Thunderbird
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-28 02:07 . 2006-03-02 12:00 219648 ----a-w- c:\windows\system32\uxtheme.dll
2013-07-20 19:39 . 2013-07-20 19:39 22560 ----a-w- c:\windows\system32\drivers\HWiNFO32.SYS
2013-06-27 21:03 . 2013-05-05 15:19 369584 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-06-27 21:03 . 2013-05-05 15:19 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-06-27 21:03 . 2013-05-05 15:19 175176 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-06-12 14:25 . 2013-05-12 15:09 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-12 14:25 . 2013-05-12 15:09 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-06-07 21:53 . 2006-03-02 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2013-06-07 18:25 . 2006-03-02 12:00 385024 ----a-w- c:\windows\system32\html.iec
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Zoner Photo Studio Autoupdate"="c:\program files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE" [2013-02-18 774168]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2013-03-21 15517984]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2013-03-22 1982312]
"High Definition Audio Property Page Shortcut"="HDAShCut.exe" [2005-01-07 61952]
"RTHDCPL"="RTHDCPL.EXE" [2005-11-10 15473664]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
REALTEK 11n USB Wireless LAN Utility.lnk - c:\program files\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe /H [2013-6-27 1044480]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Chit Chat for Facebook]
2013-04-27 11:57 5342720 ----a-w- c:\program files\Chit Chat For Facebook\CCFFacebook.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
2013-02-18 10:50 774168 ----a-w- c:\program files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"ose"=2 (0x2)
"AdobeFlashPlayerUpdateSvc"=3 (0x3)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\REALTEK\\11n USB Wireless LAN Utility\\RtWLan.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Java\\jre7\\launch4j-tmp\\frd.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1542:TCP"= 1542:TCP:Realtek WPS TCP Prot
"1542:UDP"= 1542:UDP:Realtek WPS UDP Prot
"53:UDP"= 53:UDP:Realtek AP UDP Prot
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [5.5.2013 17:19 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [5.5.2013 17:19 175176]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [5.5.2013 17:19 770344]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [5.5.2013 17:19 369584]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO32.SYS [20.7.2013 21:39 22560]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [5.5.2013 17:19 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [5.5.2013 17:19 66336]
R2 FreemakeVideoCapture;FreemakeVideoCapture;c:\program files\Freemake\CaptureLib\CaptureLibService.exe [11.5.2013 0:29 9216]
R3 RTL8192cu;Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\rtwlanu.sys [27.6.2013 11:17 904680]
S3 RtlWlanu;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\rtwlanu.sys [27.6.2013 11:17 904680]
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\2ryyvvu5.default-1368371723227\
FF - prefs.js: browser.startup.homepage - http://www.google.com
FF - ExtSQL: 2013-07-28 03:36; WebSiteRecommendation@weliketheweb.com; c:\documents and settings\Martin\Data aplikacĂÂ\Mozilla\Firefox\Profiles\2ryyvvu5.default-1368371723227\extensions\WebSiteRecommendation@weliketheweb.com
FF - ExtSQL: 2013-08-11 15:29; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
MSConfigStartUp-OSSProxy - c:\program files\relevantknowledge\rlvknlg.exe
AddRemove-{d08d9f98-1c78-4704-87e6-368b0023d831} - c:\program files\RelevantKnowledge\rlvknlg.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-09-05 16:23
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(4040)
c:\program files\NVIDIA Corporation\nview\nview.dll
c:\program files\NVIDIA Corporation\nview\NVWRSCS.DLL
c:\windows\system32\wpdshext.dll
c:\windows\system32\PortableDeviceApi.dll
c:\windows\system32\Audiodev.dll
c:\windows\system32\WMVCore.DLL
c:\windows\system32\WMASF.DLL
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\nvsvc32.exe
c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\rundll32.exe
c:\windows\RTHDCPL.EXE
c:\program files\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe
.
**************************************************************************
.
Celkový čas: 2013-09-05 16:26:10 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-09-05 14:26
.
Před spuštěním: Volných bajtů: 36 472 418 304
Po spuštění: Volných bajtů: 36 333 031 424
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - D957D68A0831CE1BA24217F1E0323A1E
413FC2A0C716421B3158746D63736515
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.3519.3040 [GMT 2:00]
Spuštěný z: c:\documents and settings\Martin\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\RelevantKnowledge
c:\program files\RelevantKnowledge\rlservice.exe
c:\program files\RelevantKnowledge\rlvknlg.exe
c:\windows\system32\Packet.dll
c:\windows\system32\wpcap.dll
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_NPF
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-08-05 do 2013-09-05 )))))))))))))))))))))))))))))))
.
.
2013-09-04 14:44 . 2013-09-04 14:44 -------- d-----w- C:\FRST
2013-08-18 08:23 . 2013-08-18 08:24 -------- d-----w- c:\program files\rajce
2013-08-11 13:41 . 2013-08-11 13:41 -------- d-----w- c:\documents and settings\Martin\Data aplikací\AVG
2013-08-11 13:41 . 2013-08-11 13:42 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVG
2013-08-11 13:41 . 2013-08-11 13:41 -------- d-sh--w- c:\documents and settings\All Users\Data aplikací\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2013-08-11 13:41 . 2013-08-11 13:41 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2013-08-11 13:39 . 2013-08-22 16:18 -------- d-----w- c:\program files\MSECache
2013-08-11 13:39 . 2013-08-11 13:42 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Fighters
2013-08-11 13:30 . 2006-06-29 11:07 14048 ------w- c:\windows\system32\spmsg2.dll
2013-08-11 13:28 . 2013-08-11 13:29 -------- d-----w- c:\windows\system32\XPSViewer
2013-08-11 13:28 . 2013-08-11 13:28 -------- d-----w- c:\program files\MSBuild
2013-08-11 13:28 . 2013-08-11 13:28 -------- d-----w- c:\program files\Reference Assemblies
2013-08-11 13:27 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2013-08-11 13:27 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2013-08-11 13:27 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2013-08-11 13:27 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2013-08-11 13:27 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2013-08-11 13:27 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2013-08-11 13:27 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2013-08-11 13:27 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2013-08-11 13:27 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2013-08-09 10:20 . 2013-08-09 10:20 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Chit Chat For Facebook
2013-08-09 10:20 . 2013-08-09 10:20 -------- d-----w- c:\program files\Chit Chat For Facebook
2013-08-07 06:54 . 2013-08-07 10:18 -------- d-----w- c:\program files\Mozilla Thunderbird
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-28 02:07 . 2006-03-02 12:00 219648 ----a-w- c:\windows\system32\uxtheme.dll
2013-07-20 19:39 . 2013-07-20 19:39 22560 ----a-w- c:\windows\system32\drivers\HWiNFO32.SYS
2013-06-27 21:03 . 2013-05-05 15:19 369584 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-06-27 21:03 . 2013-05-05 15:19 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-06-27 21:03 . 2013-05-05 15:19 175176 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-06-12 14:25 . 2013-05-12 15:09 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-12 14:25 . 2013-05-12 15:09 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-06-07 21:53 . 2006-03-02 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2013-06-07 18:25 . 2006-03-02 12:00 385024 ----a-w- c:\windows\system32\html.iec
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Zoner Photo Studio Autoupdate"="c:\program files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE" [2013-02-18 774168]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2013-03-21 15517984]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2013-03-22 1982312]
"High Definition Audio Property Page Shortcut"="HDAShCut.exe" [2005-01-07 61952]
"RTHDCPL"="RTHDCPL.EXE" [2005-11-10 15473664]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
REALTEK 11n USB Wireless LAN Utility.lnk - c:\program files\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe /H [2013-6-27 1044480]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Chit Chat for Facebook]
2013-04-27 11:57 5342720 ----a-w- c:\program files\Chit Chat For Facebook\CCFFacebook.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
2013-02-18 10:50 774168 ----a-w- c:\program files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"ose"=2 (0x2)
"AdobeFlashPlayerUpdateSvc"=3 (0x3)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\REALTEK\\11n USB Wireless LAN Utility\\RtWLan.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Java\\jre7\\launch4j-tmp\\frd.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1542:TCP"= 1542:TCP:Realtek WPS TCP Prot
"1542:UDP"= 1542:UDP:Realtek WPS UDP Prot
"53:UDP"= 53:UDP:Realtek AP UDP Prot
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [5.5.2013 17:19 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [5.5.2013 17:19 175176]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [5.5.2013 17:19 770344]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [5.5.2013 17:19 369584]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO32.SYS [20.7.2013 21:39 22560]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [5.5.2013 17:19 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [5.5.2013 17:19 66336]
R2 FreemakeVideoCapture;FreemakeVideoCapture;c:\program files\Freemake\CaptureLib\CaptureLibService.exe [11.5.2013 0:29 9216]
R3 RTL8192cu;Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\rtwlanu.sys [27.6.2013 11:17 904680]
S3 RtlWlanu;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\rtwlanu.sys [27.6.2013 11:17 904680]
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\2ryyvvu5.default-1368371723227\
FF - prefs.js: browser.startup.homepage - http://www.google.com
FF - ExtSQL: 2013-07-28 03:36; WebSiteRecommendation@weliketheweb.com; c:\documents and settings\Martin\Data aplikacĂÂ\Mozilla\Firefox\Profiles\2ryyvvu5.default-1368371723227\extensions\WebSiteRecommendation@weliketheweb.com
FF - ExtSQL: 2013-08-11 15:29; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
MSConfigStartUp-OSSProxy - c:\program files\relevantknowledge\rlvknlg.exe
AddRemove-{d08d9f98-1c78-4704-87e6-368b0023d831} - c:\program files\RelevantKnowledge\rlvknlg.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-09-05 16:23
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(4040)
c:\program files\NVIDIA Corporation\nview\nview.dll
c:\program files\NVIDIA Corporation\nview\NVWRSCS.DLL
c:\windows\system32\wpdshext.dll
c:\windows\system32\PortableDeviceApi.dll
c:\windows\system32\Audiodev.dll
c:\windows\system32\WMVCore.DLL
c:\windows\system32\WMASF.DLL
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\nvsvc32.exe
c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\rundll32.exe
c:\windows\RTHDCPL.EXE
c:\program files\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe
.
**************************************************************************
.
Celkový čas: 2013-09-05 16:26:10 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-09-05 14:26
.
Před spuštěním: Volných bajtů: 36 472 418 304
Po spuštění: Volných bajtů: 36 333 031 424
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - D957D68A0831CE1BA24217F1E0323A1E
413FC2A0C716421B3158746D63736515
Re: Kontrola logu z FRSR - preventivka
OK, ak nie su problemy - hotovo 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Kontrola logu z FRSR - preventivka
Nie su. Ďakujem!
Přispějete na provoz fóra?