Logfile of random's system information tool 1.06 (written by random/random)
Run by Aleš at 2014-01-13 14:52:52
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 4 GB (12%) free of 38 GB
Total RAM: 2047 MB (58% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\AmiUpdXp.job
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-515967899-746137067-1417001333-1004Core.job
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-515967899-746137067-1417001333-1004UA.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00011268-E188-40DF-A514-835FCD78B1BF}]
IE7Pro BHO - C:\Program Files\IEPro\iepro.dll [2008-12-09 752744]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1824FF90-C98E-48A6-838F-E3B6572B0C77}]
Better Surf Plus - C:\Program Files\BetterSurf\BetterSurfPlus\ie\BetterSrf.dll [2013-12-09 86528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}]
BetterSurf - C:\Program Files\BetterSurf\ie\BetterSurf.dll [2013-11-12 86016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-01-12 461216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8271B5D6-76D3-4ABF-AEB3-1721161C76BC}]
Better-Surf - C:\Program Files\Better-Surf\ie\BetterSrf.dll [2013-11-25 86016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-02-23 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{aa82027b-b796-4efa-a7b9-d098fff3946a}]
Webexp Enhanced - C:\Program Files\WebexpEnhancedV1\WebexpEnhancedV1alpha421\ie\WebexpEnhancedV1alpha421.dll [2013-12-19 87552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2013-02-23 761840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C451C08A-EC37-45DF-AAAD-18B51AB5E837}]
PDFCreator Toolbar Helper - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll [2012-12-13 806912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2013-02-23 458736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-01-12 170912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dd63d99e-b54d-43cf-a259-1336bf38603b}]
Video Player - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta273\ie\VideoPlayerV3beta273.dll [2014-01-08 87040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - PDFCreator Toolbar - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll [2012-12-13 806912]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-02-23 256112]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2007-03-16 868352]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"ViOrb"=C:\Program Files\extras\ViOrb\ViOrb.exe [2008-12-07 69632]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2008-07-01 1447168]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-09-17 13574144]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"tsnpstd3"=C:\WINDOWS\tsnpstd3.exe [2005-12-20 94208]
"Printsrv"=c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs [2013-05-01 543]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Pro Agent"=C:\Program Files\DAEMON Tools Pro\DTAgent.exe [2012-10-23 3108480]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-12-19 40960]
C:\Documents and Settings\Aleš\Nabídka Start\Programy\Po spuštění
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2008-12-14 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Windows XP Ultimate 2009\Windows XP Ultimate 2009.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Windows XP Ultimate 2009.theme
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\IEPro\MiniDM.exe"="C:\Program Files\IEPro\MiniDM.exe:*:Enabled:MiniDM"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe"="C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Spyware Terminator\SpywareTerminator.exe"="C:\Program Files\Spyware Terminator\SpywareTerminator.exe:*:Enabled:Spyware Terminator 2012"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Spyware Terminator 2012"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{eb41d0f4-456b-11e2-8757-806d6172696f}]
shell\AutoRun\command - D:\moment_of_silence_czech_setup.exe
======List of files/folders created in the last 1 months======
2014-01-13 18:07:56 ----D---- C:\Program Files\PokerStars
2014-01-13 14:52:00 ----D---- C:\rsit
2014-01-13 14:52:00 ----D---- C:\Program Files\trend micro
2014-01-12 12:43:30 ----D---- C:\Program Files\VideoPlayerV3
2013-12-25 11:44:44 ----D---- C:\Program Files\House of Tales
2013-12-25 01:20:51 ----D---- C:\Program Files\Common Files\DirectX
2013-12-25 01:20:33 ----D---- C:\WINDOWS\Cache
2013-12-25 01:16:58 ----D---- C:\Program Files\Hypermax
2013-12-23 23:48:53 ----D---- C:\ee6954325076deda2f3e1b5f7bca8e
2013-12-22 17:55:49 ----D---- C:\Program Files\THQ
2013-12-22 15:11:23 ----D---- C:\Program Files\1C Company
2013-12-21 12:52:21 ----D---- C:\Program Files\WebexpEnhancedV1
2013-12-20 16:37:20 ----D---- C:\Program Files\Mozilla Firefox
2013-12-17 22:19:30 ----D---- C:\Program Files\Common Files\Adobe
2013-12-17 22:19:30 ----D---- C:\Program Files\Adobe
2013-12-17 21:10:11 ----D---- C:\users
2013-12-17 19:49:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Caphyon
2013-12-17 19:46:02 ----D---- C:\Program Files\QuadCoreM2
2013-12-17 19:41:30 ----D---- C:\Documents and Settings\Aleš\Data aplikací\Quadcore Games
======List of files/folders modified in the last 1 months======
2014-01-13 17:52:30 ----SD---- C:\WINDOWS\Tasks
2014-01-13 17:49:26 ----D---- C:\WINDOWS\system32\CatRoot2
2014-01-13 17:49:20 ----D---- C:\WINDOWS\Registration
2014-01-13 17:47:31 ----N---- C:\WINDOWS\SchedLgU.Txt
2014-01-13 17:46:52 ----D---- C:\WINDOWS\Prefetch
2014-01-13 17:43:47 ----HD---- C:\WINDOWS\inf
2014-01-13 14:52:53 ----D---- C:\WINDOWS\Temp
2014-01-13 14:52:00 ----RD---- C:\Program Files
2014-01-13 14:46:06 ----D---- C:\Documents and Settings\Aleš\Data aplikací\DAEMON Tools Pro
2014-01-13 14:44:16 ----D---- C:\WINDOWS\Logs
2014-01-13 14:44:16 ----D---- C:\WINDOWS\Debug
2014-01-13 14:44:16 ----D---- C:\WINDOWS
2013-12-25 11:44:38 ----D---- C:\WINDOWS\system32
2013-12-25 01:17:47 ----D---- C:\Program Files\Sierra
2013-12-25 01:17:09 ----SHD---- C:\Config.Msi
2013-12-25 01:16:39 ----SHD---- C:\WINDOWS\Installer
2013-12-22 15:08:10 ----D---- C:\WINDOWS\system32\DirectX
2013-12-22 14:46:43 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-12-20 20:15:32 ----D---- C:\Program Files\LemurLeap
2013-12-17 22:51:17 ----D---- C:\Program Files\GameforgeLive
2013-12-17 22:19:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-12-17 22:19:30 ----D---- C:\Program Files\Common Files
2013-12-17 22:15:12 ----RSD---- C:\WINDOWS\assembly
2013-12-16 00:06:46 ----D---- C:\WINDOWS\system32\drivers
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-19 36864]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2013-02-08 242240]
R1 easdrv;easdrv; C:\WINDOWS\system32\DRIVERS\easdrv.sys [2008-07-01 53256]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2008-07-01 54280]
R1 nvport;NVIDIA PORT IO Control Driver; \??\C:\WINDOWS\system32\Drivers\nvport.sys []
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R2 eamon;EAMON; C:\WINDOWS\system32\DRIVERS\eamon.sys [2008-07-01 39944]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2008-07-01 71688]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2007-05-18 304640]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-05-18 94848]
R3 AR9271;Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athuw.sys [2011-07-28 1763584]
R3 aracpi;aracpi; C:\WINDOWS\system32\DRIVERS\aracpi.sys [2008-12-27 22784]
R3 arkbcfltr;Microsoft PS2 Keyboard Filter; C:\WINDOWS\system32\DRIVERS\arkbcfltr.sys [2008-12-27 5376]
R3 armoucfltr;Microsoft PS2 Mouse Filter; C:\WINDOWS\system32\DRIVERS\armoucfltr.sys [2008-12-27 4992]
R3 ARPolicy;ARPolicy; C:\WINDOWS\system32\DRIVERS\arpolicy.sys [2008-12-27 10112]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2008-07-01 30728]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2006-02-26 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-09-17 6132576]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-07-11 20480]
R3 nvsmu;nvsmu; C:\WINDOWS\system32\DRIVERS\nvsmu.sys [2006-11-14 11648]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2006-03-29 9856]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-17 392960]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys []
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-14 17152]
S3 arhidfltr;MS Ar HID Filter Driver; C:\WINDOWS\system32\DRIVERS\arhidfltr.sys [2008-12-27 19200]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-07-11 57856]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SNPSTD3;USB PC Camera (SNPSTD3); C:\WINDOWS\system32\DRIVERS\snpstd3.sys [2005-12-08 8718848]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-12-14 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-12-14 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ARSVC;ARSVC; C:\WINDOWS\arservice.exe [2008-12-27 58880]
R2 ehRecvr;Služba přijímače aplikace Media Center; C:\WINDOWS\eHome\ehRecvr.exe [2008-12-22 238592]
R2 ehSched;Služba plánování aplikace Media Center; C:\WINDOWS\eHome\ehSched.exe [2008-12-22 103424]
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2008-07-14 468224]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-01-12 170912]
R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-09-17 163908]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2013-10-22 587912]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2010-10-27 1483072]
R2 Update LemurLeap;Update LemurLeap; C:\Program Files\LemurLeap\updateLemurLeap.exe [2014-01-12 97056]
R2 Util LemurLeap;Util LemurLeap; C:\Program Files\LemurLeap\bin\utilLemurLeap.exe [2014-01-12 97056]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-04-08 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-02-28 161384]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2008-07-01 19200]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-04-08 116648]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-02-23 182768]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-20 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-06 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosim o kontrolu logu,vyskakuji nejake stranky s hrama
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
Zdravim 
Stahnete Shortcut Cleaner http://www.bleepingcomputer.com/downloa ... t-cleaner/
Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Stahnete Shortcut Cleaner http://www.bleepingcomputer.com/downloa ... t-cleaner/
- Ulozte nejlepe na plochu
- Ukoncete vsechny programy
- Spustte tradicne dvouklikem
- Probehne skenovani a pak se objevi log, pripadne bude ulozen v miste spusteni jako sc-cleaner.txt, ten sem vlozte
Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
- Ulozte nejlepe na plochu
- Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
- Probehne vytvoreni zalohy a nasledne prohledavani
- Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
- Ulozte nejlepe na plochu
- Ukoncete vsechny programy
- Kliknete na Scan a nasledne Clean
- Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
Shortcut Cleaner 1.2.6 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Shortcut Cleaner can be found at this link:
http://www.bleepingcomputer.com/downloa ... t-cleaner/
Windows Version: Microsoft Windows XP Service Pack 3
Program started at: 01/13/2014 03:04:38 PM.
Scanning for registry hijacks:
* No issues found in the Registry.
Searching for Hijacked Shortcuts:
Searching C:\Documents and Settings\Aleš\Nabídka Start\
Searching C:\Documents and Settings\All Users\Nabídka Start\
Searching C:\Documents and Settings\Aleš\Data aplikací\Microsoft\Internet Explorer\Quick Launch\
Searching C:\Documents and Settings\All Users\Plocha\
Searching C:\Documents and Settings\Aleš\Plocha
0 bad shortcuts found.
Program finished at: 01/13/2014 03:04:39 PM
Execution time: 0 hours(s), 0 minute(s), and 0 seconds(s)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Shortcut Cleaner can be found at this link:
http://www.bleepingcomputer.com/downloa ... t-cleaner/
Windows Version: Microsoft Windows XP Service Pack 3
Program started at: 01/13/2014 03:04:38 PM.
Scanning for registry hijacks:
* No issues found in the Registry.
Searching for Hijacked Shortcuts:
Searching C:\Documents and Settings\Aleš\Nabídka Start\
Searching C:\Documents and Settings\All Users\Nabídka Start\
Searching C:\Documents and Settings\Aleš\Data aplikací\Microsoft\Internet Explorer\Quick Launch\
Searching C:\Documents and Settings\All Users\Plocha\
Searching C:\Documents and Settings\Aleš\Plocha
0 bad shortcuts found.
Program finished at: 01/13/2014 03:04:39 PM
Execution time: 0 hours(s), 0 minute(s), and 0 seconds(s)
Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Microsoft Windows XP x86
Ran by Aleç on po 13.01.2014 at 15:05:54,70
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
Failed to stop: [Service] update lemurleap
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440}
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\powerpack
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{99c91fc5-db5b-4aa0-bb70-5d89c5a4df96}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
~~~ Files
Successfully deleted: [File] C:\WINDOWS\Tasks\amiupdxp.job
~~~ Folders
Successfully deleted: [Folder] "C:\Documents and Settings\Aleç\Data aplikacˇ\babylon"
Successfully deleted: [Folder] "C:\Documents and Settings\Aleç\Data aplikacˇ\swvupdater"
Successfully deleted: [Folder] "C:\Program Files\bettersurf"
Failed to delete: [Folder] "C:\Program Files\lemurleap"
~~~ FireFox
Successfully deleted: [File] C:\Documents and Settings\Aleç\Data aplikacˇ\mozilla\firefox\profiles\euyg58ab.default\user.js
Successfully deleted: [File] C:\Documents and Settings\Aleç\Data aplikacˇ\mozilla\firefox\profiles\euyg58ab.default\searchplugins\askcom.xml
Successfully deleted: [File] C:\Documents and Settings\Aleç\Data aplikacˇ\mozilla\firefox\profiles\euyg58ab.default\searchplugins\my-web-search.xml
Successfully deleted the following from C:\Documents and Settings\Aleç\Data aplikacˇ\mozilla\firefox\profiles\euyg58ab.default\prefs.js
user_pref("browser.newtab.url", "hxxp://mixidj.delta-search.com/?babsrc=NT_ss&mntrId=58C164700207E934&affID=121125&tsp=5027");
user_pref("extensions.mywebsearch.prevDefaultEngine", "Google");
user_pref("extensions.mywebsearch.prevSelectedEngine", "Ask.com");
user_pref("extensions.toolbar.mindspark._57Members_.homepage", "hxxp://home.mywebsearch.com/index.jhtml?ptb=53590ECD-F0FD-47FE-AE25-1E525FA2D405&n=77fcbdf8&p2=^0D^xdm271^YY^cz
user_pref("extensions.toolbar.mindspark._57Members_.hp.enabled", true);
user_pref("extensions.toolbar.mindspark._57Members_.initialized", true);
user_pref("extensions.toolbar.mindspark._57Members_.installation.contextKey", "");
user_pref("extensions.toolbar.mindspark._57Members_.installation.installDate", "2013052408");
user_pref("extensions.toolbar.mindspark._57Members_.installation.partnerId", "^0D^xdm271^YY^cz");
user_pref("extensions.toolbar.mindspark._57Members_.installation.partnerSubId", "");
user_pref("extensions.toolbar.mindspark._57Members_.installation.success", true);
user_pref("extensions.toolbar.mindspark._57Members_.installation.toolbarId", "53590ECD-F0FD-47FE-AE25-1E525FA2D405");
user_pref("extensions.toolbar.mindspark._57Members_.lastActivePing", "1369366668627");
user_pref("extensions.toolbar.mindspark._57Members_.options.defaultSearch", true);
user_pref("extensions.toolbar.mindspark._57Members_.options.homePageEnabled", true);
user_pref("extensions.toolbar.mindspark._57Members_.options.keywordEnabled", true);
user_pref("extensions.toolbar.mindspark._57Members_.options.tabEnabled", true);
user_pref("extensions.toolbar.mindspark._57Members_.searchHistory", "");
user_pref("extensions.toolbar.mindspark._57Members_.weather.location", "10001");
user_pref("extensions.toolbar.mindspark._82Members_.homepage", "hxxp://home.mywebsearch.com/index.jhtml?ptb=undefined&n=77fcc05f&p2=^AUV^xpi000^YY^");
user_pref("extensions.toolbar.mindspark._82Members_.initialized", true);
user_pref("extensions.toolbar.mindspark._82Members_.installation.contextKey", "");
user_pref("extensions.toolbar.mindspark._82Members_.installation.installDate", "2013053023");
user_pref("extensions.toolbar.mindspark._82Members_.installation.partnerId", "^AUV^xpi000^YY^");
user_pref("extensions.toolbar.mindspark._82Members_.installation.partnerSubId", "");
user_pref("extensions.toolbar.mindspark._82Members_.installation.success", false);
user_pref("extensions.toolbar.mindspark._82Members_.installation.toolbarId", "undefined");
user_pref("extensions.toolbar.mindspark._82Members_.options.defaultSearch", false);
user_pref("extensions.toolbar.mindspark._82Members_.options.homePageEnabled", false);
user_pref("extensions.toolbar.mindspark._82Members_.options.keywordEnabled", false);
user_pref("extensions.toolbar.mindspark._82Members_.options.tabEnabled", false);
user_pref("extensions.toolbar.mindspark.hp.enabled", false);
user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "");
user_pref("extensions.toolbar.mindspark.lastInstalled", "photofriendzy@mindspark.com");
user_pref("keyword.URL", "hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=53590ECD-F0FD-47FE-AE25-1E525FA2D405&n=77fcbdf8&ind=2013052408&p2=^0D^xdm271^YY^cz&
~~~ Chrome
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\dedmngkbaffkenlfdcbganndoghblmap
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 13.01.2014 at 15:10:46,56
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Microsoft Windows XP x86
Ran by Aleç on po 13.01.2014 at 15:05:54,70
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
Failed to stop: [Service] update lemurleap
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440}
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\powerpack
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{99c91fc5-db5b-4aa0-bb70-5d89c5a4df96}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
~~~ Files
Successfully deleted: [File] C:\WINDOWS\Tasks\amiupdxp.job
~~~ Folders
Successfully deleted: [Folder] "C:\Documents and Settings\Aleç\Data aplikacˇ\babylon"
Successfully deleted: [Folder] "C:\Documents and Settings\Aleç\Data aplikacˇ\swvupdater"
Successfully deleted: [Folder] "C:\Program Files\bettersurf"
Failed to delete: [Folder] "C:\Program Files\lemurleap"
~~~ FireFox
Successfully deleted: [File] C:\Documents and Settings\Aleç\Data aplikacˇ\mozilla\firefox\profiles\euyg58ab.default\user.js
Successfully deleted: [File] C:\Documents and Settings\Aleç\Data aplikacˇ\mozilla\firefox\profiles\euyg58ab.default\searchplugins\askcom.xml
Successfully deleted: [File] C:\Documents and Settings\Aleç\Data aplikacˇ\mozilla\firefox\profiles\euyg58ab.default\searchplugins\my-web-search.xml
Successfully deleted the following from C:\Documents and Settings\Aleç\Data aplikacˇ\mozilla\firefox\profiles\euyg58ab.default\prefs.js
user_pref("browser.newtab.url", "hxxp://mixidj.delta-search.com/?babsrc=NT_ss&mntrId=58C164700207E934&affID=121125&tsp=5027");
user_pref("extensions.mywebsearch.prevDefaultEngine", "Google");
user_pref("extensions.mywebsearch.prevSelectedEngine", "Ask.com");
user_pref("extensions.toolbar.mindspark._57Members_.homepage", "hxxp://home.mywebsearch.com/index.jhtml?ptb=53590ECD-F0FD-47FE-AE25-1E525FA2D405&n=77fcbdf8&p2=^0D^xdm271^YY^cz
user_pref("extensions.toolbar.mindspark._57Members_.hp.enabled", true);
user_pref("extensions.toolbar.mindspark._57Members_.initialized", true);
user_pref("extensions.toolbar.mindspark._57Members_.installation.contextKey", "");
user_pref("extensions.toolbar.mindspark._57Members_.installation.installDate", "2013052408");
user_pref("extensions.toolbar.mindspark._57Members_.installation.partnerId", "^0D^xdm271^YY^cz");
user_pref("extensions.toolbar.mindspark._57Members_.installation.partnerSubId", "");
user_pref("extensions.toolbar.mindspark._57Members_.installation.success", true);
user_pref("extensions.toolbar.mindspark._57Members_.installation.toolbarId", "53590ECD-F0FD-47FE-AE25-1E525FA2D405");
user_pref("extensions.toolbar.mindspark._57Members_.lastActivePing", "1369366668627");
user_pref("extensions.toolbar.mindspark._57Members_.options.defaultSearch", true);
user_pref("extensions.toolbar.mindspark._57Members_.options.homePageEnabled", true);
user_pref("extensions.toolbar.mindspark._57Members_.options.keywordEnabled", true);
user_pref("extensions.toolbar.mindspark._57Members_.options.tabEnabled", true);
user_pref("extensions.toolbar.mindspark._57Members_.searchHistory", "");
user_pref("extensions.toolbar.mindspark._57Members_.weather.location", "10001");
user_pref("extensions.toolbar.mindspark._82Members_.homepage", "hxxp://home.mywebsearch.com/index.jhtml?ptb=undefined&n=77fcc05f&p2=^AUV^xpi000^YY^");
user_pref("extensions.toolbar.mindspark._82Members_.initialized", true);
user_pref("extensions.toolbar.mindspark._82Members_.installation.contextKey", "");
user_pref("extensions.toolbar.mindspark._82Members_.installation.installDate", "2013053023");
user_pref("extensions.toolbar.mindspark._82Members_.installation.partnerId", "^AUV^xpi000^YY^");
user_pref("extensions.toolbar.mindspark._82Members_.installation.partnerSubId", "");
user_pref("extensions.toolbar.mindspark._82Members_.installation.success", false);
user_pref("extensions.toolbar.mindspark._82Members_.installation.toolbarId", "undefined");
user_pref("extensions.toolbar.mindspark._82Members_.options.defaultSearch", false);
user_pref("extensions.toolbar.mindspark._82Members_.options.homePageEnabled", false);
user_pref("extensions.toolbar.mindspark._82Members_.options.keywordEnabled", false);
user_pref("extensions.toolbar.mindspark._82Members_.options.tabEnabled", false);
user_pref("extensions.toolbar.mindspark.hp.enabled", false);
user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "");
user_pref("extensions.toolbar.mindspark.lastInstalled", "photofriendzy@mindspark.com");
user_pref("keyword.URL", "hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=53590ECD-F0FD-47FE-AE25-1E525FA2D405&n=77fcbdf8&ind=2013052408&p2=^0D^xdm271^YY^cz&
~~~ Chrome
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\dedmngkbaffkenlfdcbganndoghblmap
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 13.01.2014 at 15:10:46,56
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
Jeste poprosim o AdwCleaner
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
kdyz ho pustim,az po restart vse v poradku,pak po startu se zapne,zacne pracovat a pak se zastavi pri procesu "deleting folders" a hodinu a pul se nic nedeje...modra cara ktera nabiha se zastavi cca v jedne desetine radku.je to tak normalni?musel jsem pc na tvrdo vypnout abych vam toto mohl napsat.mam to zkusit pustit znovu?
Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
CREATERESTOREPOINT netsvcs drivers32 savembr:0 /md5start atapi.sys autochk.exe cdrom.sys explorer.exe hal.dll scecli.dll services.exe svchost.exe tcpip.sys userinit.exe winlogon.exe /md5stop %systemroot%*.* /U /s %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 %SYSTEMDRIVE%\*.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 %PROGRAMFILES%\Opera\opera.exe /md5 %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 %SystemDrive%\PhysicalMBR.bin /md5 *crack* /s *keygen* /s *loader* /s- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
- Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
OTL mi log neukazalo,jen hlasku kterou prikladam jako obrazek prt.sc.
- Přílohy
-
- Bez názvu 1.jpg (52.96 KiB) Zobrazeno 1776 x
Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
Zkuste jej prosim spustit v nouzovem rezimu
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
tak v nouzovem rezimu to dopadlo uplne stejne
Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
Tak poprosim o log dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=30&t=133101
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-01-2014 02
Ran by Aleš (administrator) on DOMA-9914C156DA on 15-01-2014 17:17:21
Running from C:\Documents and Settings\Aleš\Plocha
Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Safe Mode (with Networking)
==================== Processes (Whitelisted) ===================
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
(forum.viry.cz) C:\Documents and Settings\Aleš\Plocha\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SoundMAXPnP] - C:\Program Files\Analog Devices\Core\smax4pnp.exe [868352 2007-03-16] (Analog Devices, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [ViOrb] - C:\Program Files\extras\ViOrb\ViOrb.exe [69632 2008-12-07] (Lee-Soft.com)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [1447168 2008-07-01] (ESET)
HKLM\...\Run: [NvCplDaemon] - C:\WINDOWS\system32\NvCpl.dll [13574144 2008-09-17] (NVIDIA Corporation)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [tsnpstd3] - C:\WINDOWS\tsnpstd3.exe [94208 2005-12-20] ()
HKLM\...\Run: [Printsrv] - c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs [543 2013-05-01] ()
HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672 2009-12-11] (Adobe Systems Incorporated)
HKCU\...\Run: [DAEMON Tools Pro Agent] - C:\Program Files\DAEMON Tools Pro\DTAgent.exe [3108480 2012-10-23] (DT Soft Ltd)
HKCU\...\Run: [MSMSGS] - C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\Default User\...\RunOnce: [_nltide_2] - regsvr32 /s /n /i:U shell32
Startup: C:\Documents and Settings\Aleš\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.gametop.com/?utm_source=Os ... dium=start
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {31CF9EBE-5755-4a1d-AC25-2834D952D9B4} URL = http://search.pdfcreator-toolbar.org/se ... arch-field
BHO: IE7Pro BHO - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll (IE7Pro.com)
BHO: Better Surf Plus - {1824FF90-C98E-48A6-838F-E3B6572B0C77} - No File
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Better-Surf - {8271B5D6-76D3-4ABF-AEB3-1721161C76BC} - C:\Program Files\Better-Surf\ie\BetterSrf.dll ()
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Webexp Enhanced - {aa82027b-b796-4efa-a7b9-d098fff3946a} - C:\Program Files\WebexpEnhancedV1\WebexpEnhancedV1alpha421\ie\WebexpEnhancedV1alpha421.dll ()
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
BHO: PDFCreator Toolbar Helper - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll ()
BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Video Player - {dd63d99e-b54d-43cf-a259-1336bf38603b} - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta273\ie\VideoPlayerV3beta273.dll ()
Toolbar: HKLM - PDFCreator Toolbar - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll ()
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - PDFCreator Toolbar - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll ()
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks: Microsoft AntiMalware ShellExecuteHook - {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll [83224 2006-11-03] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 188.92.8.18 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Aleš\Data aplikací\Mozilla\Firefox\Profiles\euyg58ab.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @java.com/JavaPlugin,version=10.11.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.11.2852 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nppl3260;version=6.0.12.46 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.1662 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.46 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Seznam lištička - C:\Documents and Settings\Aleš\Data aplikací\Mozilla\Firefox\Profiles\euyg58ab.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2013-10-06]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [xz123@ya456.com] - C:\Program Files\BetterSurf\ff
FF HKLM\...\Firefox\Extensions: [12x3q@3244516.com] - C:\Program Files\Better-Surf\ff
FF Extension: Better-Surf - C:\Program Files\Better-Surf\ff [2013-11-25]
FF HKLM\...\Firefox\Extensions: [ext@bettersurfplus.com] - C:\Program Files\BetterSurf\BetterSurfPlus\ff
FF HKLM\...\Firefox\Extensions: [ext@WebexpEnhancedV1alpha421.net] - C:\Program Files\WebexpEnhancedV1\WebexpEnhancedV1alpha421\ff
FF Extension: Webexp Enhanced - C:\Program Files\WebexpEnhancedV1\WebexpEnhancedV1alpha421\ff [2013-12-21]
FF HKLM\...\Firefox\Extensions: [ext@VideoPlayerV3beta273.net] - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta273\ff
FF Extension: Video Player - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta273\ff [2014-01-12]
Chrome:
=======
CHR HomePage: hxxp://seznam.cz/
CHR RestoreOnStartup: "hxxp://seznam.cz/"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Unity Player) - C:\Documents and Settings\Ale\u0161\Local Settings\Data aplikac\u00ED\Unity\WebPlayer\loader\npUnity3D32.dll No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 [2013-05-28]
CHR Extension: (Google Drive) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 [2013-05-28]
CHR Extension: (YouTube) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 [2013-05-28]
CHR Extension: (Google Search) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 [2013-05-28]
CHR Extension: (Webexp Enhanced) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jlpbbghhdggbghpedjbmfjnadbpoifmj\1.1_0 [2014-01-13]
CHR Extension: (Video Player) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lmohihabfmehcojonkdncolggnndpgam\1.1_0 [2014-01-13]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0 [2014-01-13]
CHR Extension: (Seznam Li\u0161ti\u010Dka - Rychl\u00E1 volba) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.5.14_1 [2013-10-06]
CHR Extension: (Gmail) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 [2013-04-08]
CHR Extension: (BetterSrf) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\poheodfamflhhhdcmjfeggbgigeefaco\1.1_0 [2013-12-10]
CHR HKLM\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx [2013-12-10]
CHR HKLM\...\Chrome\Extension: [jlpbbghhdggbghpedjbmfjnadbpoifmj] - C:\Program Files\WebexpEnhancedV1\WebexpEnhancedV1alpha421\ch\WebexpEnhancedV1alpha421.crx [2013-12-19]
CHR HKLM\...\Chrome\Extension: [lmohihabfmehcojonkdncolggnndpgam] - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta273\ch\VideoPlayerV3beta273.crx [2014-01-08]
CHR HKLM\...\Chrome\Extension: [mmifolfpllfdhilecpdpmemhelmanajl] - C:\Program Files\BetterSurf\BetterSurfPlus\ch\BetterSurfPlus.crx [2014-01-08]
CHR HKLM\...\Chrome\Extension: [poheodfamflhhhdcmjfeggbgigeefaco] - C:\Program Files\Better-Surf\ch\Chrome.crx [2013-11-25]
========================== Services (Whitelisted) =================
S2 ARSVC; C:\WINDOWS\arservice.exe [58880 2008-12-27] (Microsoft)
S3 EhttpSrv; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [19200 2008-07-01] (ESET)
S2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [468224 2008-07-14] (ESET)
S2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [170912 2013-01-12] (Oracle Corporation)
S2 McrdSvc; C:\WINDOWS\ehome\mcrdsvc.exe [99328 2005-08-05] (Microsoft Corporation)
S2 ST2012_Svc; C:\Program Files\Spyware Terminator\st_rsser.exe [587912 2013-10-22] (Crawler.com)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [13592 2006-11-03] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S1 AmdK8; C:\Windows\System32\DRIVERS\AmdK8.sys [36864 2006-06-19] (Advanced Micro Devices)
R3 AR9271; C:\Windows\System32\DRIVERS\athuw.sys [1763584 2011-07-28] (Atheros Communications, Inc.)
S3 aracpi; C:\Windows\System32\DRIVERS\aracpi.sys [22784 2008-12-27] (Microsoft Corporation)
S3 arhidfltr; C:\Windows\System32\DRIVERS\arhidfltr.sys [19200 2008-12-27] (Microsoft Corporation)
R3 arkbcfltr; C:\Windows\System32\DRIVERS\arkbcfltr.sys [5376 2008-12-27] (Microsoft Corporation)
R3 armoucfltr; C:\Windows\System32\DRIVERS\armoucfltr.sys [4992 2008-12-27] (Microsoft Corporation)
S3 ARPolicy; C:\Windows\System32\DRIVERS\arpolicy.sys [10112 2008-12-27] (Microsoft Corporation)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-02-08] (DT Soft Ltd)
S2 eamon; C:\Windows\System32\DRIVERS\eamon.sys [39944 2008-07-01] (ESET)
S1 easdrv; C:\Windows\System32\DRIVERS\easdrv.sys [53256 2008-07-01] (ESET)
S2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [71688 2008-07-01] (ESET)
R3 Epfwndis; C:\Windows\System32\DRIVERS\Epfwndis.sys [30728 2008-07-01] (ESET)
R1 epfwtdi; C:\Windows\System32\DRIVERS\epfwtdi.sys [54280 2008-07-01] (ESET)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2006-02-26] ()
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R0 nvatabus; C:\Windows\System32\Drivers\nvatabus.sys [100736 2008-12-29] (NVIDIA Corporation)
S3 NVENETFD; C:\Windows\System32\DRIVERS\NVENETFD.sys [57856 2006-07-11] (NVIDIA Corporation)
R3 nvnetbus; C:\Windows\System32\DRIVERS\nvnetbus.sys [20480 2006-07-11] (NVIDIA Corporation)
S1 nvport; C:\WINDOWS\system32\Drivers\nvport.sys [4608 2006-05-05] (NVIDIA Corporation.)
R3 pfc; C:\Windows\System32\drivers\pfc.sys [9856 2006-03-29] (Padus, Inc.)
S3 SenFiltService; C:\Windows\System32\drivers\Senfilt.sys [392960 2006-03-17] (Sensaura)
S3 SNPSTD3; C:\Windows\System32\DRIVERS\snpstd3.sys [8718848 2005-12-08] ()
S1 sp_rsdrv2; C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [32768 2011-06-21] ()
S3 EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys [x]
S4 IntelIde; No ImagePath
U1 WS2IFSL;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-15 17:17 - 2014-01-15 17:17 - 00018582 _____ C:\Documents and Settings\Aleš\Plocha\FRST.txt
2014-01-15 17:17 - 2014-01-15 17:17 - 00000000 ____D C:\FRST
2014-01-15 17:14 - 2014-01-15 17:14 - 01219584 _____ (Farbar) C:\Documents and Settings\Aleš\Plocha\FRST.exe
2014-01-15 17:14 - 2014-01-15 17:14 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Aleš\Plocha\FRSTLauncher.exe
2014-01-15 16:38 - 2014-01-15 16:38 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2014-01-15 16:37 - 2014-01-15 16:37 - 00000000 ____D C:\WINDOWS\CSC
2014-01-15 16:27 - 2014-01-15 16:27 - 00000000 ____D C:\Documents and Settings\Aleš\Dokumenty\Stažené soubory
2014-01-14 22:27 - 2014-01-15 16:37 - 00029191 _____ C:\WINDOWS\setupapi.log
2014-01-14 22:26 - 2014-01-14 22:26 - 00000681 _____ C:\WINDOWS\KB973768.log
2014-01-14 01:20 - 2014-01-15 16:48 - 00112918 _____ C:\Documents and Settings\Aleš\Plocha\OTL.Txt
2014-01-14 01:20 - 2014-01-14 01:20 - 00043376 _____ C:\Documents and Settings\Aleš\Plocha\Extras.Txt
2014-01-14 01:05 - 2014-01-15 16:41 - 00000512 _____ C:\PhysicalMBR.bin
2014-01-14 00:59 - 2014-01-14 01:00 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Aleš\Plocha\OTL.exe
2014-01-14 00:56 - 2014-01-14 00:56 - 00000000 ___RD C:\Documents and Settings\Aleš\Nabídka Start\Programy\Nástroje pro správu
2014-01-13 18:08 - 2014-01-13 18:08 - 00000736 _____ C:\Documents and Settings\All Users\Plocha\PokerStars.lnk
2014-01-13 18:08 - 2014-01-13 18:08 - 00000736 _____ C:\Documents and Settings\All Users\Nabídka Start\PokerStars.lnk
2014-01-13 18:08 - 2014-01-13 18:08 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\PokerStars
2014-01-13 18:07 - 2014-01-14 00:06 - 00000000 ____D C:\Program Files\PokerStars
2014-01-13 15:12 - 2014-01-13 20:01 - 00000000 ____D C:\AdwCleaner
2014-01-13 15:05 - 2014-01-13 15:05 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-13 15:04 - 2014-01-13 15:04 - 00001870 _____ C:\sc-cleaner.txt
2014-01-13 15:03 - 2014-01-13 15:03 - 01236282 _____ C:\Documents and Settings\Aleš\Plocha\adwcleaner.exe
2014-01-13 15:03 - 2014-01-13 15:03 - 01037068 _____ (Thisisu) C:\Documents and Settings\Aleš\Plocha\JRT.exe
2014-01-13 15:03 - 2014-01-13 15:03 - 00406264 _____ (Bleeping Computer, LLC) C:\Documents and Settings\Aleš\Plocha\sc-cleaner.exe
2014-01-13 14:52 - 2014-01-13 14:52 - 00000000 ____D C:\rsit
2014-01-13 14:52 - 2014-01-13 14:52 - 00000000 ____D C:\Program Files\trend micro
2014-01-13 14:51 - 2014-01-13 14:51 - 00781909 _____ C:\Documents and Settings\Aleš\Plocha\RSIT.exe
2014-01-12 12:43 - 2014-01-12 12:43 - 00000000 ____D C:\Program Files\VideoPlayerV3
2013-12-25 11:46 - 2013-12-25 11:46 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\House of Tales
2013-12-25 11:44 - 2013-12-25 11:44 - 00000000 ____D C:\Program Files\House of Tales
2013-12-25 01:20 - 2013-12-25 01:20 - 00000821 _____ C:\Documents and Settings\Aleš\Plocha\Drači oko.lnk
2013-12-25 01:20 - 2013-12-25 01:20 - 00000000 ____D C:\WINDOWS\Cache
2013-12-25 01:20 - 2013-12-25 01:20 - 00000000 ____D C:\Program Files\Common Files\DirectX
2013-12-25 01:20 - 2013-12-25 01:20 - 00000000 ____D C:\Documents and Settings\Aleš\Nabídka Start\Programy\Hypermax
2013-12-25 01:16 - 2013-12-25 01:16 - 00000000 ____D C:\Program Files\Hypermax
2013-12-23 23:48 - 2013-12-23 23:48 - 00000000 ____D C:\ee6954325076deda2f3e1b5f7bca8e
2013-12-22 18:05 - 2013-12-22 18:05 - 00002020 _____ C:\Documents and Settings\All Users\Plocha\S.T.A.L.K.E.R. - Shadow of Chernobyl.lnk
2013-12-22 18:05 - 2013-12-22 18:05 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\THQ
2013-12-22 17:55 - 2013-12-22 17:55 - 00000000 ____D C:\Program Files\THQ
2013-12-22 15:11 - 2013-12-22 15:11 - 00000000 ____D C:\Program Files\1C Company
2013-12-21 12:52 - 2013-12-21 12:52 - 00000000 ____D C:\Program Files\WebexpEnhancedV1
2013-12-20 16:37 - 2013-12-20 16:37 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-17 22:19 - 2013-12-17 22:19 - 00001804 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Reader 9.lnk
2013-12-17 22:19 - 2013-12-17 22:19 - 00001729 _____ C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
2013-12-17 22:19 - 2013-12-17 22:19 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-12-17 22:19 - 2013-12-17 22:19 - 00000000 ____D C:\Program Files\Adobe
2013-12-17 19:49 - 2013-12-17 19:49 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Caphyon
2013-12-17 19:46 - 2013-12-17 22:44 - 00000000 ____D C:\Program Files\QuadCoreM2
2013-12-17 19:41 - 2013-12-17 19:41 - 00000000 ____D C:\Documents and Settings\Aleš\Data aplikací\Quadcore Games
==================== One Month Modified Files and Folders =======
2014-01-15 17:17 - 2014-01-15 17:17 - 00018582 _____ C:\Documents and Settings\Aleš\Plocha\FRST.txt
2014-01-15 17:17 - 2014-01-15 17:17 - 00000000 ____D C:\FRST
2014-01-15 17:17 - 2012-12-14 01:50 - 00000000 ____D C:\Documents and Settings\Aleš\Plocha
2014-01-15 17:16 - 2012-12-14 01:50 - 00000000 ___HD C:\Documents and Settings\Aleš\Local Settings\Data aplikací
2014-01-15 17:14 - 2014-01-15 17:14 - 01219584 _____ (Farbar) C:\Documents and Settings\Aleš\Plocha\FRST.exe
2014-01-15 17:14 - 2014-01-15 17:14 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Aleš\Plocha\FRSTLauncher.exe
2014-01-15 16:48 - 2014-01-14 01:20 - 00112918 _____ C:\Documents and Settings\Aleš\Plocha\OTL.Txt
2014-01-15 16:41 - 2014-01-14 01:05 - 00000512 _____ C:\PhysicalMBR.bin
2014-01-15 16:40 - 2012-12-13 22:44 - 00000330 ____H C:\WINDOWS\Tasks\MP Scheduled Scan.job
2014-01-15 16:38 - 2014-01-15 16:38 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2014-01-15 16:37 - 2014-01-15 16:37 - 00000000 ____D C:\WINDOWS\CSC
2014-01-15 16:37 - 2014-01-14 22:27 - 00029191 _____ C:\WINDOWS\setupapi.log
2014-01-15 16:35 - 2012-12-14 10:32 - 00131072 _____ C:\WINDOWS\system32\config\TuneUp.evt
2014-01-15 16:35 - 2012-12-14 02:13 - 00000216 _____ C:\WINDOWS\wiadebug.log
2014-01-15 16:35 - 2012-12-14 02:13 - 00000049 _____ C:\WINDOWS\wiaservc.log
2014-01-15 16:35 - 2012-12-14 01:48 - 00032454 _____ C:\WINDOWS\SchedLgU.Txt
2014-01-15 16:35 - 2012-12-14 01:48 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-15 16:35 - 2012-12-14 01:33 - 01728272 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-15 16:33 - 2013-04-08 19:48 - 00000932 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-15 16:33 - 2012-12-14 02:12 - 00200712 _____ C:\WINDOWS\system32\nvapps.xml
2014-01-15 16:33 - 2012-12-14 01:31 - 00000000 ____D C:\WINDOWS\Registration
2014-01-15 16:27 - 2014-01-15 16:27 - 00000000 ____D C:\Documents and Settings\Aleš\Dokumenty\Stažené soubory
2014-01-15 16:27 - 2012-12-14 01:50 - 00000000 ___RD C:\Documents and Settings\Aleš\Dokumenty
2014-01-15 16:05 - 2013-06-01 13:00 - 00000988 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-515967899-746137067-1417001333-1004UA.job
2014-01-15 16:01 - 2013-04-08 19:48 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-15 15:54 - 2001-10-25 17:30 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2014-01-14 22:26 - 2014-01-14 22:26 - 00000681 _____ C:\WINDOWS\KB973768.log
2014-01-14 01:20 - 2014-01-14 01:20 - 00043376 _____ C:\Documents and Settings\Aleš\Plocha\Extras.Txt
2014-01-14 01:00 - 2014-01-14 00:59 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Aleš\Plocha\OTL.exe
2014-01-14 00:56 - 2014-01-14 00:56 - 00000000 ___RD C:\Documents and Settings\Aleš\Nabídka Start\Programy\Nástroje pro správu
2014-01-14 00:56 - 2012-12-14 01:50 - 00000000 ___RD C:\Documents and Settings\Aleš\Nabídka Start\Programy
2014-01-14 00:54 - 2013-02-08 19:48 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-14 00:06 - 2014-01-13 18:07 - 00000000 ____D C:\Program Files\PokerStars
2014-01-13 20:01 - 2014-01-13 15:12 - 00000000 ____D C:\AdwCleaner
2014-01-13 20:01 - 2012-12-14 02:08 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2014-01-13 18:08 - 2014-01-13 18:08 - 00000736 _____ C:\Documents and Settings\All Users\Plocha\PokerStars.lnk
2014-01-13 18:08 - 2014-01-13 18:08 - 00000736 _____ C:\Documents and Settings\All Users\Nabídka Start\PokerStars.lnk
2014-01-13 18:08 - 2014-01-13 18:08 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\PokerStars
2014-01-13 18:08 - 2012-12-14 02:08 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-01-13 18:08 - 2012-12-14 02:08 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start
2014-01-13 18:08 - 2012-12-14 02:08 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2014-01-13 17:47 - 2012-12-14 01:50 - 00000178 ___SH C:\Documents and Settings\Aleš\ntuser.ini
2014-01-13 15:06 - 2013-10-06 16:30 - 00000000 ____D C:\Program Files\LemurLeap
2014-01-13 15:06 - 2012-12-14 01:50 - 00000000 __RHD C:\Documents and Settings\Aleš\Data aplikací
2014-01-13 15:05 - 2014-01-13 15:05 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-13 15:04 - 2014-01-13 15:04 - 00001870 _____ C:\sc-cleaner.txt
2014-01-13 15:03 - 2014-01-13 15:03 - 01236282 _____ C:\Documents and Settings\Aleš\Plocha\adwcleaner.exe
2014-01-13 15:03 - 2014-01-13 15:03 - 01037068 _____ (Thisisu) C:\Documents and Settings\Aleš\Plocha\JRT.exe
2014-01-13 15:03 - 2014-01-13 15:03 - 00406264 _____ (Bleeping Computer, LLC) C:\Documents and Settings\Aleš\Plocha\sc-cleaner.exe
2014-01-13 14:52 - 2014-01-13 14:52 - 00000000 ____D C:\rsit
2014-01-13 14:52 - 2014-01-13 14:52 - 00000000 ____D C:\Program Files\trend micro
2014-01-13 14:51 - 2014-01-13 14:51 - 00781909 _____ C:\Documents and Settings\Aleš\Plocha\RSIT.exe
2014-01-13 14:46 - 2013-02-08 20:11 - 00000000 ____D C:\Documents and Settings\Aleš\Data aplikací\DAEMON Tools Pro
2014-01-13 14:46 - 2012-12-14 01:50 - 00000000 ____D C:\Documents and Settings\Aleš
2014-01-12 13:05 - 2013-06-01 13:00 - 00000966 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-515967899-746137067-1417001333-1004Core.job
2014-01-12 12:43 - 2014-01-12 12:43 - 00000000 ____D C:\Program Files\VideoPlayerV3
2013-12-25 11:46 - 2013-12-25 11:46 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\House of Tales
2013-12-25 11:44 - 2013-12-25 11:44 - 00000000 ____D C:\Program Files\House of Tales
2013-12-25 01:20 - 2013-12-25 01:20 - 00000821 _____ C:\Documents and Settings\Aleš\Plocha\Drači oko.lnk
2013-12-25 01:20 - 2013-12-25 01:20 - 00000000 ____D C:\WINDOWS\Cache
2013-12-25 01:20 - 2013-12-25 01:20 - 00000000 ____D C:\Program Files\Common Files\DirectX
2013-12-25 01:20 - 2013-12-25 01:20 - 00000000 ____D C:\Documents and Settings\Aleš\Nabídka Start\Programy\Hypermax
2013-12-25 01:17 - 2013-06-03 18:58 - 00000000 ____D C:\Program Files\Sierra
2013-12-25 01:16 - 2013-12-25 01:16 - 00000000 ____D C:\Program Files\Hypermax
2013-12-23 23:48 - 2013-12-23 23:48 - 00000000 ____D C:\ee6954325076deda2f3e1b5f7bca8e
2013-12-22 18:05 - 2013-12-22 18:05 - 00002020 _____ C:\Documents and Settings\All Users\Plocha\S.T.A.L.K.E.R. - Shadow of Chernobyl.lnk
2013-12-22 18:05 - 2013-12-22 18:05 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\THQ
2013-12-22 17:55 - 2013-12-22 17:55 - 00000000 ____D C:\Program Files\THQ
2013-12-22 15:11 - 2013-12-22 15:11 - 00000000 ____D C:\Program Files\1C Company
2013-12-22 15:08 - 2012-12-14 01:33 - 00000000 ____D C:\WINDOWS\system32\DirectX
2013-12-22 14:46 - 2012-12-23 14:49 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-12-21 12:52 - 2013-12-21 12:52 - 00000000 ____D C:\Program Files\WebexpEnhancedV1
2013-12-20 16:37 - 2013-12-20 16:37 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-18 23:38 - 2012-12-14 19:01 - 00000000 ____D C:\Documents and Settings\Aleš\Plocha\stahnute
2013-12-18 22:59 - 2013-01-27 00:06 - 00012800 _____ C:\Documents and Settings\Aleš\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-18 21:02 - 2013-04-08 19:49 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Drive
2013-12-17 22:51 - 2013-12-09 15:29 - 00000000 ____D C:\Documents and Settings\Ale�\Dokumenty
2013-12-17 22:51 - 2013-12-09 15:28 - 00000000 ____D C:\Program Files\GameforgeLive
2013-12-17 22:44 - 2013-12-17 19:46 - 00000000 ____D C:\Program Files\QuadCoreM2
2013-12-17 22:19 - 2013-12-17 22:19 - 00001804 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Reader 9.lnk
2013-12-17 22:19 - 2013-12-17 22:19 - 00001729 _____ C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
2013-12-17 22:19 - 2013-12-17 22:19 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-12-17 22:19 - 2013-12-17 22:19 - 00000000 ____D C:\Program Files\Adobe
2013-12-17 22:19 - 2012-12-13 22:30 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-12-17 22:18 - 2013-02-08 20:19 - 00000000 ____D C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Adobe
2013-12-17 20:57 - 2013-02-08 16:57 - 00000000 ____D C:\Documents and Settings\Aleš\Dokumenty\My Games
2013-12-17 19:49 - 2013-12-17 19:49 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Caphyon
2013-12-17 19:49 - 2012-12-14 01:50 - 00000000 ___RD C:\Documents and Settings\Aleš\Oblíbené položky
2013-12-17 19:41 - 2013-12-17 19:41 - 00000000 ____D C:\Documents and Settings\Aleš\Data aplikací\Quadcore Games
Some content of TEMP:
====================
C:\Documents and Settings\Aleš\Local Settings\Temp\comsvcs.dll
C:\Documents and Settings\Aleš\Local Settings\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2008-12-19 17:13] - [2008-12-19 17:13] - 1486336 ____A (Microsoft Corporation) d39127310cbad1485ec5001a4ed1d853
C:\Windows\System32\winlogon.exe
[2008-12-19 16:59] - [2008-12-19 16:59] - 0557056 ____A (Microsoft Corporation) 12a799ad9415ae9c8abcc5f75e9cf034
C:\Windows\System32\svchost.exe
[2008-04-14 11:22] - [2008-04-14 11:22] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\Windows\System32\services.exe
[2008-04-14 11:22] - [2009-02-09 15:55] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\Windows\System32\User32.dll
[2008-12-19 16:58] - [2008-12-19 16:58] - 0578560 ____A (Microsoft Corporation) ccb32d10c69a89822e9134c0c4894be1
C:\Windows\System32\userinit.exe
[2008-04-14 11:22] - [2008-04-14 11:22] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2008-04-14 10:12] - [2008-04-14 10:12] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:37.26 GB) (Free:6.07 GB) NTFS ==>[Drive with boot components (Windows XP)]
Available physical RAM: 1534.24 MB
Total physical RAM: 2047.3 MB
Percentage of memory in use: 25%
==================== MBR and Partition Table ==================
Disk: 0 (Size: 37 GB) (Disk ID: A074EE02)
Partition 1: (Active) - (Size=37 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-515967899-746137067-1417001333-1004Core.job => C:\Documents and Settings\Alea\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-515967899-746137067-1417001333-1004UA.job => C:\Documents and Settings\Alea\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\MP Scheduled Scan.job => C:\Program Files\Windows Defender\MpCmdRun.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: ESET Smart Security 3.0 (Disabled - Up to date) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall (Disabled) {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Documents and Settings\Ale\Plocha" je 3571 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\IEPro\\MiniDM.exe"="C:\\Program Files\\IEPro\\MiniDM.exe:*:Enabled:MiniDM"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\Spyware Terminator\\SpywareTerminator.exe"="C:\\Program Files\\Spyware Terminator\\SpywareTerminator.exe:*:Enabled:Spyware Terminator 2012"
"C:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"="C:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe:*:Enabled:Spyware Terminator 2012"
"C:\\Documents and Settings\\Ale\\Local Settings\\Data aplikac\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"="C:\\Documents and Settings\\Ale\\Local Settings\\Data aplikac\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"80:TCP"="80:TCP:*:Enabled:War Thunder"
"443:TCP"="443:TCP:*:Enabled:War Thunder"
"20010:UDP"="20010:UDP:*:Enabled:War Thunder"
"3478:UDP"="3478:UDP:*:Enabled:War Thunder"
"7850:TCP"="7850:TCP:*:Enabled:War Thunder"
"27022:TCP"="27022:TCP:*:Enabled:War Thunder"
"6881:TCP"="6881:TCP:*:Enabled:War Thunder"
"33333:TCP"="33333:TCP:*:Enabled:War Thunder"
"20443:TCP"="20443:TCP:*:Enabled:War Thunder"
"8090:TCP"="8090:TCP:*:Enabled:War Thunder"
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
Ran by Aleš (administrator) on DOMA-9914C156DA on 15-01-2014 17:17:21
Running from C:\Documents and Settings\Aleš\Plocha
Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Safe Mode (with Networking)
==================== Processes (Whitelisted) ===================
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
(forum.viry.cz) C:\Documents and Settings\Aleš\Plocha\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SoundMAXPnP] - C:\Program Files\Analog Devices\Core\smax4pnp.exe [868352 2007-03-16] (Analog Devices, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [ViOrb] - C:\Program Files\extras\ViOrb\ViOrb.exe [69632 2008-12-07] (Lee-Soft.com)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [1447168 2008-07-01] (ESET)
HKLM\...\Run: [NvCplDaemon] - C:\WINDOWS\system32\NvCpl.dll [13574144 2008-09-17] (NVIDIA Corporation)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [tsnpstd3] - C:\WINDOWS\tsnpstd3.exe [94208 2005-12-20] ()
HKLM\...\Run: [Printsrv] - c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs [543 2013-05-01] ()
HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672 2009-12-11] (Adobe Systems Incorporated)
HKCU\...\Run: [DAEMON Tools Pro Agent] - C:\Program Files\DAEMON Tools Pro\DTAgent.exe [3108480 2012-10-23] (DT Soft Ltd)
HKCU\...\Run: [MSMSGS] - C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\Default User\...\RunOnce: [_nltide_2] - regsvr32 /s /n /i:U shell32
Startup: C:\Documents and Settings\Aleš\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.gametop.com/?utm_source=Os ... dium=start
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {31CF9EBE-5755-4a1d-AC25-2834D952D9B4} URL = http://search.pdfcreator-toolbar.org/se ... arch-field
BHO: IE7Pro BHO - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll (IE7Pro.com)
BHO: Better Surf Plus - {1824FF90-C98E-48A6-838F-E3B6572B0C77} - No File
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Better-Surf - {8271B5D6-76D3-4ABF-AEB3-1721161C76BC} - C:\Program Files\Better-Surf\ie\BetterSrf.dll ()
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Webexp Enhanced - {aa82027b-b796-4efa-a7b9-d098fff3946a} - C:\Program Files\WebexpEnhancedV1\WebexpEnhancedV1alpha421\ie\WebexpEnhancedV1alpha421.dll ()
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
BHO: PDFCreator Toolbar Helper - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll ()
BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Video Player - {dd63d99e-b54d-43cf-a259-1336bf38603b} - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta273\ie\VideoPlayerV3beta273.dll ()
Toolbar: HKLM - PDFCreator Toolbar - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll ()
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - PDFCreator Toolbar - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll ()
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks: Microsoft AntiMalware ShellExecuteHook - {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll [83224 2006-11-03] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 188.92.8.18 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Aleš\Data aplikací\Mozilla\Firefox\Profiles\euyg58ab.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @java.com/JavaPlugin,version=10.11.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.11.2852 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nppl3260;version=6.0.12.46 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.1662 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.46 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Seznam lištička - C:\Documents and Settings\Aleš\Data aplikací\Mozilla\Firefox\Profiles\euyg58ab.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2013-10-06]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [xz123@ya456.com] - C:\Program Files\BetterSurf\ff
FF HKLM\...\Firefox\Extensions: [12x3q@3244516.com] - C:\Program Files\Better-Surf\ff
FF Extension: Better-Surf - C:\Program Files\Better-Surf\ff [2013-11-25]
FF HKLM\...\Firefox\Extensions: [ext@bettersurfplus.com] - C:\Program Files\BetterSurf\BetterSurfPlus\ff
FF HKLM\...\Firefox\Extensions: [ext@WebexpEnhancedV1alpha421.net] - C:\Program Files\WebexpEnhancedV1\WebexpEnhancedV1alpha421\ff
FF Extension: Webexp Enhanced - C:\Program Files\WebexpEnhancedV1\WebexpEnhancedV1alpha421\ff [2013-12-21]
FF HKLM\...\Firefox\Extensions: [ext@VideoPlayerV3beta273.net] - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta273\ff
FF Extension: Video Player - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta273\ff [2014-01-12]
Chrome:
=======
CHR HomePage: hxxp://seznam.cz/
CHR RestoreOnStartup: "hxxp://seznam.cz/"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Unity Player) - C:\Documents and Settings\Ale\u0161\Local Settings\Data aplikac\u00ED\Unity\WebPlayer\loader\npUnity3D32.dll No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 [2013-05-28]
CHR Extension: (Google Drive) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 [2013-05-28]
CHR Extension: (YouTube) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 [2013-05-28]
CHR Extension: (Google Search) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 [2013-05-28]
CHR Extension: (Webexp Enhanced) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jlpbbghhdggbghpedjbmfjnadbpoifmj\1.1_0 [2014-01-13]
CHR Extension: (Video Player) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lmohihabfmehcojonkdncolggnndpgam\1.1_0 [2014-01-13]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0 [2014-01-13]
CHR Extension: (Seznam Li\u0161ti\u010Dka - Rychl\u00E1 volba) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.5.14_1 [2013-10-06]
CHR Extension: (Gmail) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 [2013-04-08]
CHR Extension: (BetterSrf) - C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\poheodfamflhhhdcmjfeggbgigeefaco\1.1_0 [2013-12-10]
CHR HKLM\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx [2013-12-10]
CHR HKLM\...\Chrome\Extension: [jlpbbghhdggbghpedjbmfjnadbpoifmj] - C:\Program Files\WebexpEnhancedV1\WebexpEnhancedV1alpha421\ch\WebexpEnhancedV1alpha421.crx [2013-12-19]
CHR HKLM\...\Chrome\Extension: [lmohihabfmehcojonkdncolggnndpgam] - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta273\ch\VideoPlayerV3beta273.crx [2014-01-08]
CHR HKLM\...\Chrome\Extension: [mmifolfpllfdhilecpdpmemhelmanajl] - C:\Program Files\BetterSurf\BetterSurfPlus\ch\BetterSurfPlus.crx [2014-01-08]
CHR HKLM\...\Chrome\Extension: [poheodfamflhhhdcmjfeggbgigeefaco] - C:\Program Files\Better-Surf\ch\Chrome.crx [2013-11-25]
========================== Services (Whitelisted) =================
S2 ARSVC; C:\WINDOWS\arservice.exe [58880 2008-12-27] (Microsoft)
S3 EhttpSrv; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [19200 2008-07-01] (ESET)
S2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [468224 2008-07-14] (ESET)
S2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [170912 2013-01-12] (Oracle Corporation)
S2 McrdSvc; C:\WINDOWS\ehome\mcrdsvc.exe [99328 2005-08-05] (Microsoft Corporation)
S2 ST2012_Svc; C:\Program Files\Spyware Terminator\st_rsser.exe [587912 2013-10-22] (Crawler.com)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [13592 2006-11-03] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S1 AmdK8; C:\Windows\System32\DRIVERS\AmdK8.sys [36864 2006-06-19] (Advanced Micro Devices)
R3 AR9271; C:\Windows\System32\DRIVERS\athuw.sys [1763584 2011-07-28] (Atheros Communications, Inc.)
S3 aracpi; C:\Windows\System32\DRIVERS\aracpi.sys [22784 2008-12-27] (Microsoft Corporation)
S3 arhidfltr; C:\Windows\System32\DRIVERS\arhidfltr.sys [19200 2008-12-27] (Microsoft Corporation)
R3 arkbcfltr; C:\Windows\System32\DRIVERS\arkbcfltr.sys [5376 2008-12-27] (Microsoft Corporation)
R3 armoucfltr; C:\Windows\System32\DRIVERS\armoucfltr.sys [4992 2008-12-27] (Microsoft Corporation)
S3 ARPolicy; C:\Windows\System32\DRIVERS\arpolicy.sys [10112 2008-12-27] (Microsoft Corporation)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-02-08] (DT Soft Ltd)
S2 eamon; C:\Windows\System32\DRIVERS\eamon.sys [39944 2008-07-01] (ESET)
S1 easdrv; C:\Windows\System32\DRIVERS\easdrv.sys [53256 2008-07-01] (ESET)
S2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [71688 2008-07-01] (ESET)
R3 Epfwndis; C:\Windows\System32\DRIVERS\Epfwndis.sys [30728 2008-07-01] (ESET)
R1 epfwtdi; C:\Windows\System32\DRIVERS\epfwtdi.sys [54280 2008-07-01] (ESET)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2006-02-26] ()
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R0 nvatabus; C:\Windows\System32\Drivers\nvatabus.sys [100736 2008-12-29] (NVIDIA Corporation)
S3 NVENETFD; C:\Windows\System32\DRIVERS\NVENETFD.sys [57856 2006-07-11] (NVIDIA Corporation)
R3 nvnetbus; C:\Windows\System32\DRIVERS\nvnetbus.sys [20480 2006-07-11] (NVIDIA Corporation)
S1 nvport; C:\WINDOWS\system32\Drivers\nvport.sys [4608 2006-05-05] (NVIDIA Corporation.)
R3 pfc; C:\Windows\System32\drivers\pfc.sys [9856 2006-03-29] (Padus, Inc.)
S3 SenFiltService; C:\Windows\System32\drivers\Senfilt.sys [392960 2006-03-17] (Sensaura)
S3 SNPSTD3; C:\Windows\System32\DRIVERS\snpstd3.sys [8718848 2005-12-08] ()
S1 sp_rsdrv2; C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [32768 2011-06-21] ()
S3 EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys [x]
S4 IntelIde; No ImagePath
U1 WS2IFSL;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-15 17:17 - 2014-01-15 17:17 - 00018582 _____ C:\Documents and Settings\Aleš\Plocha\FRST.txt
2014-01-15 17:17 - 2014-01-15 17:17 - 00000000 ____D C:\FRST
2014-01-15 17:14 - 2014-01-15 17:14 - 01219584 _____ (Farbar) C:\Documents and Settings\Aleš\Plocha\FRST.exe
2014-01-15 17:14 - 2014-01-15 17:14 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Aleš\Plocha\FRSTLauncher.exe
2014-01-15 16:38 - 2014-01-15 16:38 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2014-01-15 16:37 - 2014-01-15 16:37 - 00000000 ____D C:\WINDOWS\CSC
2014-01-15 16:27 - 2014-01-15 16:27 - 00000000 ____D C:\Documents and Settings\Aleš\Dokumenty\Stažené soubory
2014-01-14 22:27 - 2014-01-15 16:37 - 00029191 _____ C:\WINDOWS\setupapi.log
2014-01-14 22:26 - 2014-01-14 22:26 - 00000681 _____ C:\WINDOWS\KB973768.log
2014-01-14 01:20 - 2014-01-15 16:48 - 00112918 _____ C:\Documents and Settings\Aleš\Plocha\OTL.Txt
2014-01-14 01:20 - 2014-01-14 01:20 - 00043376 _____ C:\Documents and Settings\Aleš\Plocha\Extras.Txt
2014-01-14 01:05 - 2014-01-15 16:41 - 00000512 _____ C:\PhysicalMBR.bin
2014-01-14 00:59 - 2014-01-14 01:00 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Aleš\Plocha\OTL.exe
2014-01-14 00:56 - 2014-01-14 00:56 - 00000000 ___RD C:\Documents and Settings\Aleš\Nabídka Start\Programy\Nástroje pro správu
2014-01-13 18:08 - 2014-01-13 18:08 - 00000736 _____ C:\Documents and Settings\All Users\Plocha\PokerStars.lnk
2014-01-13 18:08 - 2014-01-13 18:08 - 00000736 _____ C:\Documents and Settings\All Users\Nabídka Start\PokerStars.lnk
2014-01-13 18:08 - 2014-01-13 18:08 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\PokerStars
2014-01-13 18:07 - 2014-01-14 00:06 - 00000000 ____D C:\Program Files\PokerStars
2014-01-13 15:12 - 2014-01-13 20:01 - 00000000 ____D C:\AdwCleaner
2014-01-13 15:05 - 2014-01-13 15:05 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-13 15:04 - 2014-01-13 15:04 - 00001870 _____ C:\sc-cleaner.txt
2014-01-13 15:03 - 2014-01-13 15:03 - 01236282 _____ C:\Documents and Settings\Aleš\Plocha\adwcleaner.exe
2014-01-13 15:03 - 2014-01-13 15:03 - 01037068 _____ (Thisisu) C:\Documents and Settings\Aleš\Plocha\JRT.exe
2014-01-13 15:03 - 2014-01-13 15:03 - 00406264 _____ (Bleeping Computer, LLC) C:\Documents and Settings\Aleš\Plocha\sc-cleaner.exe
2014-01-13 14:52 - 2014-01-13 14:52 - 00000000 ____D C:\rsit
2014-01-13 14:52 - 2014-01-13 14:52 - 00000000 ____D C:\Program Files\trend micro
2014-01-13 14:51 - 2014-01-13 14:51 - 00781909 _____ C:\Documents and Settings\Aleš\Plocha\RSIT.exe
2014-01-12 12:43 - 2014-01-12 12:43 - 00000000 ____D C:\Program Files\VideoPlayerV3
2013-12-25 11:46 - 2013-12-25 11:46 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\House of Tales
2013-12-25 11:44 - 2013-12-25 11:44 - 00000000 ____D C:\Program Files\House of Tales
2013-12-25 01:20 - 2013-12-25 01:20 - 00000821 _____ C:\Documents and Settings\Aleš\Plocha\Drači oko.lnk
2013-12-25 01:20 - 2013-12-25 01:20 - 00000000 ____D C:\WINDOWS\Cache
2013-12-25 01:20 - 2013-12-25 01:20 - 00000000 ____D C:\Program Files\Common Files\DirectX
2013-12-25 01:20 - 2013-12-25 01:20 - 00000000 ____D C:\Documents and Settings\Aleš\Nabídka Start\Programy\Hypermax
2013-12-25 01:16 - 2013-12-25 01:16 - 00000000 ____D C:\Program Files\Hypermax
2013-12-23 23:48 - 2013-12-23 23:48 - 00000000 ____D C:\ee6954325076deda2f3e1b5f7bca8e
2013-12-22 18:05 - 2013-12-22 18:05 - 00002020 _____ C:\Documents and Settings\All Users\Plocha\S.T.A.L.K.E.R. - Shadow of Chernobyl.lnk
2013-12-22 18:05 - 2013-12-22 18:05 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\THQ
2013-12-22 17:55 - 2013-12-22 17:55 - 00000000 ____D C:\Program Files\THQ
2013-12-22 15:11 - 2013-12-22 15:11 - 00000000 ____D C:\Program Files\1C Company
2013-12-21 12:52 - 2013-12-21 12:52 - 00000000 ____D C:\Program Files\WebexpEnhancedV1
2013-12-20 16:37 - 2013-12-20 16:37 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-17 22:19 - 2013-12-17 22:19 - 00001804 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Reader 9.lnk
2013-12-17 22:19 - 2013-12-17 22:19 - 00001729 _____ C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
2013-12-17 22:19 - 2013-12-17 22:19 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-12-17 22:19 - 2013-12-17 22:19 - 00000000 ____D C:\Program Files\Adobe
2013-12-17 19:49 - 2013-12-17 19:49 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Caphyon
2013-12-17 19:46 - 2013-12-17 22:44 - 00000000 ____D C:\Program Files\QuadCoreM2
2013-12-17 19:41 - 2013-12-17 19:41 - 00000000 ____D C:\Documents and Settings\Aleš\Data aplikací\Quadcore Games
==================== One Month Modified Files and Folders =======
2014-01-15 17:17 - 2014-01-15 17:17 - 00018582 _____ C:\Documents and Settings\Aleš\Plocha\FRST.txt
2014-01-15 17:17 - 2014-01-15 17:17 - 00000000 ____D C:\FRST
2014-01-15 17:17 - 2012-12-14 01:50 - 00000000 ____D C:\Documents and Settings\Aleš\Plocha
2014-01-15 17:16 - 2012-12-14 01:50 - 00000000 ___HD C:\Documents and Settings\Aleš\Local Settings\Data aplikací
2014-01-15 17:14 - 2014-01-15 17:14 - 01219584 _____ (Farbar) C:\Documents and Settings\Aleš\Plocha\FRST.exe
2014-01-15 17:14 - 2014-01-15 17:14 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Aleš\Plocha\FRSTLauncher.exe
2014-01-15 16:48 - 2014-01-14 01:20 - 00112918 _____ C:\Documents and Settings\Aleš\Plocha\OTL.Txt
2014-01-15 16:41 - 2014-01-14 01:05 - 00000512 _____ C:\PhysicalMBR.bin
2014-01-15 16:40 - 2012-12-13 22:44 - 00000330 ____H C:\WINDOWS\Tasks\MP Scheduled Scan.job
2014-01-15 16:38 - 2014-01-15 16:38 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2014-01-15 16:37 - 2014-01-15 16:37 - 00000000 ____D C:\WINDOWS\CSC
2014-01-15 16:37 - 2014-01-14 22:27 - 00029191 _____ C:\WINDOWS\setupapi.log
2014-01-15 16:35 - 2012-12-14 10:32 - 00131072 _____ C:\WINDOWS\system32\config\TuneUp.evt
2014-01-15 16:35 - 2012-12-14 02:13 - 00000216 _____ C:\WINDOWS\wiadebug.log
2014-01-15 16:35 - 2012-12-14 02:13 - 00000049 _____ C:\WINDOWS\wiaservc.log
2014-01-15 16:35 - 2012-12-14 01:48 - 00032454 _____ C:\WINDOWS\SchedLgU.Txt
2014-01-15 16:35 - 2012-12-14 01:48 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-15 16:35 - 2012-12-14 01:33 - 01728272 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-15 16:33 - 2013-04-08 19:48 - 00000932 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-15 16:33 - 2012-12-14 02:12 - 00200712 _____ C:\WINDOWS\system32\nvapps.xml
2014-01-15 16:33 - 2012-12-14 01:31 - 00000000 ____D C:\WINDOWS\Registration
2014-01-15 16:27 - 2014-01-15 16:27 - 00000000 ____D C:\Documents and Settings\Aleš\Dokumenty\Stažené soubory
2014-01-15 16:27 - 2012-12-14 01:50 - 00000000 ___RD C:\Documents and Settings\Aleš\Dokumenty
2014-01-15 16:05 - 2013-06-01 13:00 - 00000988 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-515967899-746137067-1417001333-1004UA.job
2014-01-15 16:01 - 2013-04-08 19:48 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-15 15:54 - 2001-10-25 17:30 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2014-01-14 22:26 - 2014-01-14 22:26 - 00000681 _____ C:\WINDOWS\KB973768.log
2014-01-14 01:20 - 2014-01-14 01:20 - 00043376 _____ C:\Documents and Settings\Aleš\Plocha\Extras.Txt
2014-01-14 01:00 - 2014-01-14 00:59 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Aleš\Plocha\OTL.exe
2014-01-14 00:56 - 2014-01-14 00:56 - 00000000 ___RD C:\Documents and Settings\Aleš\Nabídka Start\Programy\Nástroje pro správu
2014-01-14 00:56 - 2012-12-14 01:50 - 00000000 ___RD C:\Documents and Settings\Aleš\Nabídka Start\Programy
2014-01-14 00:54 - 2013-02-08 19:48 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-14 00:06 - 2014-01-13 18:07 - 00000000 ____D C:\Program Files\PokerStars
2014-01-13 20:01 - 2014-01-13 15:12 - 00000000 ____D C:\AdwCleaner
2014-01-13 20:01 - 2012-12-14 02:08 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2014-01-13 18:08 - 2014-01-13 18:08 - 00000736 _____ C:\Documents and Settings\All Users\Plocha\PokerStars.lnk
2014-01-13 18:08 - 2014-01-13 18:08 - 00000736 _____ C:\Documents and Settings\All Users\Nabídka Start\PokerStars.lnk
2014-01-13 18:08 - 2014-01-13 18:08 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\PokerStars
2014-01-13 18:08 - 2012-12-14 02:08 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-01-13 18:08 - 2012-12-14 02:08 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start
2014-01-13 18:08 - 2012-12-14 02:08 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2014-01-13 17:47 - 2012-12-14 01:50 - 00000178 ___SH C:\Documents and Settings\Aleš\ntuser.ini
2014-01-13 15:06 - 2013-10-06 16:30 - 00000000 ____D C:\Program Files\LemurLeap
2014-01-13 15:06 - 2012-12-14 01:50 - 00000000 __RHD C:\Documents and Settings\Aleš\Data aplikací
2014-01-13 15:05 - 2014-01-13 15:05 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-13 15:04 - 2014-01-13 15:04 - 00001870 _____ C:\sc-cleaner.txt
2014-01-13 15:03 - 2014-01-13 15:03 - 01236282 _____ C:\Documents and Settings\Aleš\Plocha\adwcleaner.exe
2014-01-13 15:03 - 2014-01-13 15:03 - 01037068 _____ (Thisisu) C:\Documents and Settings\Aleš\Plocha\JRT.exe
2014-01-13 15:03 - 2014-01-13 15:03 - 00406264 _____ (Bleeping Computer, LLC) C:\Documents and Settings\Aleš\Plocha\sc-cleaner.exe
2014-01-13 14:52 - 2014-01-13 14:52 - 00000000 ____D C:\rsit
2014-01-13 14:52 - 2014-01-13 14:52 - 00000000 ____D C:\Program Files\trend micro
2014-01-13 14:51 - 2014-01-13 14:51 - 00781909 _____ C:\Documents and Settings\Aleš\Plocha\RSIT.exe
2014-01-13 14:46 - 2013-02-08 20:11 - 00000000 ____D C:\Documents and Settings\Aleš\Data aplikací\DAEMON Tools Pro
2014-01-13 14:46 - 2012-12-14 01:50 - 00000000 ____D C:\Documents and Settings\Aleš
2014-01-12 13:05 - 2013-06-01 13:00 - 00000966 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-515967899-746137067-1417001333-1004Core.job
2014-01-12 12:43 - 2014-01-12 12:43 - 00000000 ____D C:\Program Files\VideoPlayerV3
2013-12-25 11:46 - 2013-12-25 11:46 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\House of Tales
2013-12-25 11:44 - 2013-12-25 11:44 - 00000000 ____D C:\Program Files\House of Tales
2013-12-25 01:20 - 2013-12-25 01:20 - 00000821 _____ C:\Documents and Settings\Aleš\Plocha\Drači oko.lnk
2013-12-25 01:20 - 2013-12-25 01:20 - 00000000 ____D C:\WINDOWS\Cache
2013-12-25 01:20 - 2013-12-25 01:20 - 00000000 ____D C:\Program Files\Common Files\DirectX
2013-12-25 01:20 - 2013-12-25 01:20 - 00000000 ____D C:\Documents and Settings\Aleš\Nabídka Start\Programy\Hypermax
2013-12-25 01:17 - 2013-06-03 18:58 - 00000000 ____D C:\Program Files\Sierra
2013-12-25 01:16 - 2013-12-25 01:16 - 00000000 ____D C:\Program Files\Hypermax
2013-12-23 23:48 - 2013-12-23 23:48 - 00000000 ____D C:\ee6954325076deda2f3e1b5f7bca8e
2013-12-22 18:05 - 2013-12-22 18:05 - 00002020 _____ C:\Documents and Settings\All Users\Plocha\S.T.A.L.K.E.R. - Shadow of Chernobyl.lnk
2013-12-22 18:05 - 2013-12-22 18:05 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\THQ
2013-12-22 17:55 - 2013-12-22 17:55 - 00000000 ____D C:\Program Files\THQ
2013-12-22 15:11 - 2013-12-22 15:11 - 00000000 ____D C:\Program Files\1C Company
2013-12-22 15:08 - 2012-12-14 01:33 - 00000000 ____D C:\WINDOWS\system32\DirectX
2013-12-22 14:46 - 2012-12-23 14:49 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-12-21 12:52 - 2013-12-21 12:52 - 00000000 ____D C:\Program Files\WebexpEnhancedV1
2013-12-20 16:37 - 2013-12-20 16:37 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-18 23:38 - 2012-12-14 19:01 - 00000000 ____D C:\Documents and Settings\Aleš\Plocha\stahnute
2013-12-18 22:59 - 2013-01-27 00:06 - 00012800 _____ C:\Documents and Settings\Aleš\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-18 21:02 - 2013-04-08 19:49 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Drive
2013-12-17 22:51 - 2013-12-09 15:29 - 00000000 ____D C:\Documents and Settings\Ale�\Dokumenty
2013-12-17 22:51 - 2013-12-09 15:28 - 00000000 ____D C:\Program Files\GameforgeLive
2013-12-17 22:44 - 2013-12-17 19:46 - 00000000 ____D C:\Program Files\QuadCoreM2
2013-12-17 22:19 - 2013-12-17 22:19 - 00001804 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Reader 9.lnk
2013-12-17 22:19 - 2013-12-17 22:19 - 00001729 _____ C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
2013-12-17 22:19 - 2013-12-17 22:19 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-12-17 22:19 - 2013-12-17 22:19 - 00000000 ____D C:\Program Files\Adobe
2013-12-17 22:19 - 2012-12-13 22:30 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-12-17 22:18 - 2013-02-08 20:19 - 00000000 ____D C:\Documents and Settings\Aleš\Local Settings\Data aplikací\Adobe
2013-12-17 20:57 - 2013-02-08 16:57 - 00000000 ____D C:\Documents and Settings\Aleš\Dokumenty\My Games
2013-12-17 19:49 - 2013-12-17 19:49 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Caphyon
2013-12-17 19:49 - 2012-12-14 01:50 - 00000000 ___RD C:\Documents and Settings\Aleš\Oblíbené položky
2013-12-17 19:41 - 2013-12-17 19:41 - 00000000 ____D C:\Documents and Settings\Aleš\Data aplikací\Quadcore Games
Some content of TEMP:
====================
C:\Documents and Settings\Aleš\Local Settings\Temp\comsvcs.dll
C:\Documents and Settings\Aleš\Local Settings\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2008-12-19 17:13] - [2008-12-19 17:13] - 1486336 ____A (Microsoft Corporation) d39127310cbad1485ec5001a4ed1d853
C:\Windows\System32\winlogon.exe
[2008-12-19 16:59] - [2008-12-19 16:59] - 0557056 ____A (Microsoft Corporation) 12a799ad9415ae9c8abcc5f75e9cf034
C:\Windows\System32\svchost.exe
[2008-04-14 11:22] - [2008-04-14 11:22] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\Windows\System32\services.exe
[2008-04-14 11:22] - [2009-02-09 15:55] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\Windows\System32\User32.dll
[2008-12-19 16:58] - [2008-12-19 16:58] - 0578560 ____A (Microsoft Corporation) ccb32d10c69a89822e9134c0c4894be1
C:\Windows\System32\userinit.exe
[2008-04-14 11:22] - [2008-04-14 11:22] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2008-04-14 10:12] - [2008-04-14 10:12] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:37.26 GB) (Free:6.07 GB) NTFS ==>[Drive with boot components (Windows XP)]
Available physical RAM: 1534.24 MB
Total physical RAM: 2047.3 MB
Percentage of memory in use: 25%
==================== MBR and Partition Table ==================
Disk: 0 (Size: 37 GB) (Disk ID: A074EE02)
Partition 1: (Active) - (Size=37 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-515967899-746137067-1417001333-1004Core.job => C:\Documents and Settings\Alea\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-515967899-746137067-1417001333-1004UA.job => C:\Documents and Settings\Alea\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\MP Scheduled Scan.job => C:\Program Files\Windows Defender\MpCmdRun.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: ESET Smart Security 3.0 (Disabled - Up to date) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall (Disabled) {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Documents and Settings\Ale\Plocha" je 3571 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\IEPro\\MiniDM.exe"="C:\\Program Files\\IEPro\\MiniDM.exe:*:Enabled:MiniDM"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\Spyware Terminator\\SpywareTerminator.exe"="C:\\Program Files\\Spyware Terminator\\SpywareTerminator.exe:*:Enabled:Spyware Terminator 2012"
"C:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"="C:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe:*:Enabled:Spyware Terminator 2012"
"C:\\Documents and Settings\\Ale\\Local Settings\\Data aplikac\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"="C:\\Documents and Settings\\Ale\\Local Settings\\Data aplikac\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"80:TCP"="80:TCP:*:Enabled:War Thunder"
"443:TCP"="443:TCP:*:Enabled:War Thunder"
"20010:UDP"="20010:UDP:*:Enabled:War Thunder"
"3478:UDP"="3478:UDP:*:Enabled:War Thunder"
"7850:TCP"="7850:TCP:*:Enabled:War Thunder"
"27022:TCP"="27022:TCP:*:Enabled:War Thunder"
"6881:TCP"="6881:TCP:*:Enabled:War Thunder"
"33333:TCP"="33333:TCP:*:Enabled:War Thunder"
"20443:TCP"="20443:TCP:*:Enabled:War Thunder"
"8090:TCP"="8090:TCP:*:Enabled:War Thunder"
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
Mala technicka, na ten ESET SMart Security mate zakoupenou licenci?? Jelikoz verze je hooodne zastarala 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
nemam licenci,je to pc ktere jsem nedavno dal synkovy do provozu.je z druhe ruky vse jsem zatim nechal tak jak to bylo.
Re: prosim o kontrolu logu,vyskakuji nejake stranky s hrama
Pak ale tam nema ten ESET co delat, jelikoz je v rozporu s licencnimi podminkami, navic je hooodne zastaraly, takze vubec nechrani 
Odinstalujte ESET a nainstalujte nejake free reseni, napr. Avast Free nebo Bitdefender Antivirus Free Stahnete SecurityCheck http://screen317.spywareinfoforum.org/SecurityCheck.exe
- Ulozte nejlepe na Plochu
- Spustte tradicne dvouklikem a postupujte dle pokynu utility
- Po dokonceni skenu se vytvori a otevre log, ten mi sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?