Zdravím
Mám klasický problém všechno se strašně vleče prohlížeč, programy, hry i video se seká. mám podezření na havěť. prosím o kontrolu logu a pomoc. díky
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-04-2014 01
Ran by dharma (administrator) on DHARMA-A14GPJLV on 18-04-2014 13:14:40
Running from C:\Documents and Settings\dharma\Plocha
Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastUi.exe
(forum.viry.cz) C:\Documents and Settings\dharma\Plocha\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [MSConfig] => C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE [171008 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704 2014-04-18] (AVAST Software)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {A4639D2F-774E-11D3-A490-00C04F6843FB} http://download.microsoft.com/download/ ... msorun.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Tcpip\..\Interfaces\{D535C484-1F1E-41D8-9FFF-A96EBC8FABE1}: [NameServer]194.228.41.65,194.228.41.113
FireFox:
========
FF ProfilePath: C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default
FF NetworkProxy: "backup.ftp", "46.36.35.24"
FF NetworkProxy: "backup.ftp_port", 8118
FF NetworkProxy: "backup.socks", "46.36.35.24"
FF NetworkProxy: "backup.socks_port", 8118
FF NetworkProxy: "backup.ssl", "46.36.35.24"
FF NetworkProxy: "backup.ssl_port", 8118
FF NetworkProxy: "ftp", "201.238.233.211"
FF NetworkProxy: "ftp_port", 3128
FF NetworkProxy: "http", "201.238.233.211"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "201.238.233.211"
FF NetworkProxy: "socks_port", 3128
FF NetworkProxy: "ssl", "201.238.233.211"
FF NetworkProxy: "ssl_port", 3128
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll No File
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pages.tvunetworks.com/WebPlayer - D:\Program Files\TVUPlayer\npTVUAx.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll No File
FF Plugin: @videolan.org/vlc,version=2.0.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin: @videolan.org/vlc,version=2.1.0 - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @acestream.net/acestreamplugin,version=2.2.0-next - C:\Documents and Settings\dharma\Data aplikací\ACEStream\player\npace_plugin.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\searchplugins\google-esk-republika.xml
FF SearchPlugin: C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\searchplugins\google-ssl.xml
FF SearchPlugin: C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\searchplugins\startpage-https.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: České slovníky pro kontrolu pravopisu - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\cs@dictionaries.addons.mozilla(2).org [2013-12-10]
FF Extension: DownloadHelper - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-25]
FF Extension: DownloadHelper - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}(2) [2013-12-10]
FF Extension: Download Statusbar - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}(2) [2013-12-10]
FF Extension: anonymoX - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\client@anonymox.net.xpi [2013-12-10]
FF Extension: MEGA - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\firefox@mega.co.nz.xpi [2013-12-19]
FF Extension: Adblock Plus - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-10]
FF Extension: Anti-Banner - C:\Program Files\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky(2).ru [2014-03-29]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\䍻䙁䕅䅆ⵃ〰㜱〭〰ⴰ〰㔰䄭䍂䕄䙆䑅䉃絁 [2014-03-29]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{55A8EC97-6AF6-442c-877F-11C51DBD162D}] - C:\Program Files\Tomabo\YouTube Video Downloader\YTVD_FF.xpi
FF Extension: YouTube Video Downloader Extension - C:\Program Files\Tomabo\YouTube Video Downloader\YTVD_FF.xpi [2014-03-07]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-04-18]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Documents and Settings\dharma\Data aplikací\ACEStream\extensions\firefox\magicplayer@torrentstream.org
========================== Services (Whitelisted) =================
S4 Adobe Version Cue CS2; C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe [163840 2005-05-25] (Adobe Systems Incorporated)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-18] (AVAST Software)
S4 Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (InterVideo Inc.)
S4 InCDsrvR; C:\Program Files\Nero\Nero8\InCD\InCDsrv.exe [1440552 2008-02-28] (Nero AG)
S4 lxdd_device; C:\WINDOWS\system32\lxddcoms.exe [537520 2007-05-25] ( )
S4 NeroRegInCDSrv; C:\Program Files\Nero\Nero8\InCD\NBHRegInCDSrv.exe [53032 2008-02-28] (Nero AG)
S4 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504 2011-05-25] (NVIDIA Corporation)
S2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76888 2013-12-20] ()
S2 PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [281152 2014-04-18] ()
==================== Drivers (Whitelisted) ====================
S3 ac97intc; C:\WINDOWS\System32\drivers\ac97intc.sys [96256 2001-08-17] (Intel Corporation)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43008 2006-07-01] (Advanced Micro Devices)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-04-18] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-04-18] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-04-18] (AVAST Software)
S0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-04-18] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [776976 2014-04-18] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [411552 2014-04-18] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-04-18] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [180632 2014-04-18] ()
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [278728 2009-08-10] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 ENTECH; C:\WINDOWS\system32\DRIVERS\ENTECH.sys [21664 2004-10-25] (EnTech Taiwan)
R1 Eve; C:\WINDOWS\System32\DRIVERS\eve.sys [33624 2013-03-28] ()
R3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [37344 2013-02-05] ()
S3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-14] (Microsoft Corporation)
S3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [25280 2010-12-31] (LogMeIn, Inc.)
S3 hidgame; C:\WINDOWS\System32\DRIVERS\hidgame.sys [8576 2003-04-16] (Microsoft Corporation)
R1 HMFAxCore5decdc700443adec5f3e84408e3098ff; C:\WINDOWS\HMFAxCore5decdc700443adec5f3e84408e3098ff.sys [96328 2014-03-31] (Eltima Software)
R1 incdrm; C:\WINDOWS\System32\drivers\InCDRm.sys [40360 2008-02-28] (Nero AG)
S3 IT9135BDA; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [145280 2012-03-02] (ITE )
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [25416 2009-08-10] ()
R3 LUsbFilt; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [28560 2009-06-17] (Logitech, Inc.)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-14] (Microsoft Corporation)
S3 msloop; C:\WINDOWS\System32\DRIVERS\loop.sys [4992 2003-04-16] (Microsoft Corporation)
S3 ms_mpu401; C:\WINDOWS\System32\drivers\msmpu401.sys [2944 2001-08-18] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35088 2010-07-16] (CACE Technologies, Inc.)
S2 nvcap; C:\WINDOWS\System32\DRIVERS\nvcap.sys [116924 2002-11-18] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [66688 2009-07-01] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [164896 2009-06-30] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13824 2009-07-01] (NVIDIA Corporation)
S2 NVXBAR; C:\WINDOWS\System32\DRIVERS\NVxbar.sys [10814 2002-11-18] (NVIDIA Corporation)
S1 P3; C:\WINDOWS\System32\DRIVERS\p3.sys [46592 2008-04-14] (Microsoft Corporation)
R1 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2003-12-05] (Padus, Inc.)
S3 PnkBstrK; C:\WINDOWS\system32\drivers\PnkBstrK.sys [138992 2014-04-18] ()
R1 SCDEmu; C:\WINDOWS\system32\Drivers\SCDEmu.sys [113608 2013-04-15] (Power Software Ltd)
S3 SE1008mdm; C:\WINDOWS\System32\DRIVERS\SE1008mdm.sys [58536 2009-02-12] (Sony Ericsson)
R0 sfvfs02; C:\WINDOWS\System32\drivers\sfvfs02.sys [63488 2005-11-03] (Protection Technology)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [466008 2013-07-31] (Duplex Secure Ltd.)
S3 tap0901_2gm; C:\WINDOWS\System32\DRIVERS\tap0901_2gm.sys [30720 2007-06-21] (The OpenVPN Project)
S3 taphss; C:\WINDOWS\System32\DRIVERS\taphss.sys [32768 2010-09-22] (AnchorFree Inc)
R2 thdudf; C:\WINDOWS\System32\DRIVERS\thdudf.sys [66944 2006-11-11] (TOSHIBA Corporation)
R0 TPkd; C:\WINDOWS\system32\Drivers\TPkd.sys [93336 2012-11-17] (PACE Anti-Piracy, Inc.)
S3 catchme; \??\C:\DOCUME~1\dharma\LOCALS~1\Temp\catchme.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U5 Tcpip6; C:\Windows\System32\Drivers\Tcpip6.sys [225856 2008-06-20] (Microsoft Corporation)
S3 vdrive; system32\DRIVERS\vdrive.sys [X]
==================== NetSvcs (Whitelisted) ===================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:37.27 GB) (Free:12.32 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:465.75 GB) (Free:6.68 GB) NTFS
Drive f: (Místní disk) (Fixed) (Total:74.53 GB) (Free:0.62 GB) NTFS
Available physical RAM: 1271.3 MB
Total physical RAM: 1791.23 MB
Percentage of memory in use: 29%
==================== MBR and Partition Table ==================
Disk: 0 (Size: 37 GB) (Disk ID: 1CE71CE6)
Partition 1: (Active) - (Size=37 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows XP) (Size: 75 GB) (Disk ID: 82842864)
Partition 1: (Not Active) - (Size=75 GB) - (Type=42)
Disk: 2 (Size: 466 GB) (Disk ID: F81BF81B)
Partition 1: (Active) - (Size=466 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:264A9BB7
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Documents and Settings\dharma\Plocha" je 235 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr
"C:\Documents and Settings\dharma\Data aplikac\Seznam.cz\bin\wszndesktop.exe" -q [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop
"C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FaxCenterServer
"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1
%systemroot%\system32\dumprep 0 -k [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Kernel and Hardware Abstraction Layer
C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck
C:\Program Files\Samsung\Kies\Kies.exe /preload [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload
"C:\Program Files\Lexmark 2500 Series\lxddamon.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent
rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXDDtime.dll,_RunDLLEntry@16 [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxddamon
"C:\Program Files\Lexmark 2500 Series\lxddmon.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LXDDCATS
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxddmon.exe
C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon
"C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz
Reim ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL
Reim ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce
Reim ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Adobe Gamma Loader.lnk
C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^EPSON Status Monitor 3 Environment Check 2.lnk
C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Logitech SetPoint.lnk
C:\PROGRA~1\Logitech\SetPoint\SetPoint.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dharma^Nabdka Start^Programy^Po sputn^MagicDisc.lnk
C:\PROGRA~1\MAGICD~1\MAGICD~1.EXE [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dharma^Nabdka Start^Programy^Po sputn^Vesmr na dlani.lnk
C:\PROGRA~1\NONOBL~1\vesmir.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services
ose REG_DWORD 0x3
Nero BackItUp Scheduler 4.0 REG_DWORD 0x2
Lavasoft Ad-Aware Service REG_DWORD 0x2
Adobe LM Service REG_DWORD 0x3
NeroRegInCDSrv REG_DWORD 0x2
InCDsrvR REG_DWORD 0x2
Adobe Version Cue CS2 REG_DWORD 0x2
gusvc REG_DWORD 0x2
gupdate1c98fa28e326f70 REG_DWORD 0x2
NVSvc REG_DWORD 0x2
Adobe Version Cue CS4 REG_DWORD 0x3
EPSONStatusAgent2 REG_DWORD 0x2
JavaQuickStarterService REG_DWORD 0x2
ForcewareWebInterface REG_DWORD 0x2
idsvc REG_DWORD 0x3
IDriverT REG_DWORD 0x3
lxdd_device REG_DWORD 0x2
nvUpdatusService REG_DWORD 0x2
CyberLink PowerDVD 11.0 Service REG_DWORD 0x2
CyberLink PowerDVD 11.0 Monitor Service REG_DWORD 0x2
CryptSvc REG_DWORD 0x3
CLHNServiceForPowerDVD REG_DWORD 0x2
gupdatem REG_DWORD 0x3
gupdate REG_DWORD 0x2
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\CyberLink\\PowerDVD 9\\PowerDVD9.exe"="C:\\Program Files\\CyberLink\\PowerDVD 9\\PowerDVD9.exe:*:Enabled:CyberLink PowerDVD 9.0"
"C:\\Program Files\\Lexmark 2500 Series\\app4r.exe"="C:\\Program Files\\Lexmark 2500 Series\\App4R.exe:*:Enabled:BorgListener"
"C:\\Documents and Settings\\dharma\\Dokumenty\\Staen soubory\\detect_routers\\detect_routers.exe"="C:\\Documents and Settings\\dharma\\Dokumenty\\Staen soubory\\detect_routers\\detect_routers.exe:*:Enabled:Detect Multiple Routers"
"C:\\Program Files\\Simple Port Forwarding\\spf.exe"="C:\\Program Files\\Simple Port Forwarding\\spf.exe:*:Enabled:Simple Port Forwarding By PcWinTech.com"
"C:\\Program Files\\Simple Port Tester\\spt.exe"="C:\\Program Files\\Simple Port Tester\\spt.exe:*:Enabled:Simple Port Tester"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\WINDOWS\\system32\\sessmgr.exe"="C:\\WINDOWS\\system32\\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Lexmark 2500 Series\\lxddamon.exe"="C:\\Program Files\\Lexmark 2500 Series\\lxddamon.exe:*:Enabled:Device Monitor Appliaction"
"C:\\Program Files\\Lexmark 2500 Series\\App4R.exe"="C:\\Program Files\\Lexmark 2500 Series\\App4R.exe:*:Enabled: "
"C:\\Program Files\\Winamp\\winamp.exe"="C:\\Program Files\\Winamp\\winamp.exe:*:Disabled:Winamp"
"F:\\Program Files\\Battlefield 2\\BF2.exe"="F:\\Program Files\\Battlefield 2\\BF2.exe:*:Enabled:BF2"
"C:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"="C:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxddpswx.exe"="C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxddpswx.exe:*:Enabled: "
"C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxddtime.exe"="C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxddtime.exe:*:Enabled: "
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe"="C:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\WINDOWS\\system32\\muzapp.exe"="C:\\WINDOWS\\system32\\muzapp.exe:*:Enabled:MUZ AOD APP player"
"D:\\Program Files\\World_of_Tanks\\WOTLauncher.exe"="D:\\Program Files\\World_of_Tanks\\WOTLauncher.exe:*:Enabled:World of Tanks Launcher"
"D:\\Program Files\\World_of_Tanks\\WorldOfTanks.exe"="D:\\Program Files\\World_of_Tanks\\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\\Program Files\\Simple Port Forwarding\\spf.exe"="C:\\Program Files\\Simple Port Forwarding\\spf.exe:*:Enabled:Simple Port Forwarding By PcWinTech.com"
"C:\\Documents and Settings\\dharma\\Data aplikac\\BitTorrent\\BitTorrent.exe"="C:\\Documents and Settings\\dharma\\Data aplikac\\BitTorrent\\BitTorrent.exe:*:Enabled:BitTorrent"
"C:\\Program Files\\VSO\\VSO Downloader\\3\\VsoDownloader.exe"="C:\\Program Files\\VSO\\VSO Downloader\\3\\VsoDownloader.exe:*:Enabled:VSO Downloader"
"D:\\Program Files\\VideoLAN\\VLC\\vlc.exe"="D:\\Program Files\\VideoLAN\\VLC\\vlc.exe:*:Enabled:VLC media player 2.0.8"
"D:\\Program Files\\eMule\\emule.exe"="D:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"
"C:\\Program Files\\Simple Port Tester\\spt.exe"="C:\\Program Files\\Simple Port Tester\\spt.exe:*:Enabled:Simple Port Tester"
"C:\\Documents and Settings\\dharma\\Data aplikac\\uTorrent\\uTorrent.exe"="C:\\Documents and Settings\\dharma\\Data aplikac\\uTorrent\\uTorrent.exe:*:Enabled:Torrent"
"C:\\Program Files\\Tomabo\\YouTube Video Downloader\\YouTubeVideoDownloader.exe"="C:\\Program Files\\Tomabo\\YouTube Video Downloader\\YouTubeVideoDownloader.exe:*:Enabled:YouTube Video Downloader"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"54321:TCP"="54321:TCP:*:Enabled:uTorrent"
"5400:TCP"="5400:TCP:*:Enabled:ed"
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zpomalený počítač
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpomalený počítač
- Přílohy
-
- Addition.rar
- (9.17 KiB) Staženo 56 x
-
Rudy
- Site Admin
- Příspěvky: 119537
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený počítač
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený počítač
Zde je log:
# AdwCleaner v3.100 - Report created 20/04/2014 at 16:40:37
# Updated 20/04/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : dharma - DHARMA-A14GPJLV
# Running from : C:\Documents and Settings\dharma\Plocha\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Documents and Settings\All Users\Nabídka Start\Programy\myfree codec
Folder Deleted : C:\Documents and Settings\dharma\Local Settings\Data aplikací\FilesFrog Update Checker
Folder Deleted : C:\Documents and Settings\dharma\Dokumenty\DVDVideoSoft
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11D4-9B18-009027A5CD4F}
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKCU\Software\smarttweak
Key Deleted : HKLM\Software\Myfree Codec
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v28.0 (cs)
[ File : C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\prefs.js ]
[ File : C:\Documents and Settings\Administrator.DHARMA-A14GPJLV.002\Data aplikací\Mozilla\Firefox\Profiles\8s2wzzod.default\prefs.js ]
*************************
AdwCleaner[R3].txt - [2823 octets] - [20/04/2014 16:37:41]
AdwCleaner[S3].txt - [2695 octets] - [20/04/2014 16:40:37]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [2755 octets] ##########
# AdwCleaner v3.100 - Report created 20/04/2014 at 16:40:37
# Updated 20/04/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : dharma - DHARMA-A14GPJLV
# Running from : C:\Documents and Settings\dharma\Plocha\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Documents and Settings\All Users\Nabídka Start\Programy\myfree codec
Folder Deleted : C:\Documents and Settings\dharma\Local Settings\Data aplikací\FilesFrog Update Checker
Folder Deleted : C:\Documents and Settings\dharma\Dokumenty\DVDVideoSoft
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11D4-9B18-009027A5CD4F}
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKCU\Software\smarttweak
Key Deleted : HKLM\Software\Myfree Codec
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v28.0 (cs)
[ File : C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\prefs.js ]
[ File : C:\Documents and Settings\Administrator.DHARMA-A14GPJLV.002\Data aplikací\Mozilla\Firefox\Profiles\8s2wzzod.default\prefs.js ]
*************************
AdwCleaner[R3].txt - [2823 octets] - [20/04/2014 16:37:41]
AdwCleaner[S3].txt - [2695 octets] - [20/04/2014 16:40:37]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [2755 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119537
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený počítač
Poprosím o nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený počítač
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:09-05-2014 01
Ran by dharma (administrator) on DHARMA-A14GPJLV on 10-05-2014 00:17:57
Running from C:\Documents and Settings\dharma\Plocha
Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(forum.viry.cz) C:\Documents and Settings\dharma\Plocha\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [MSConfig] => C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE [171008 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704 2014-05-09] (AVAST Software)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {A4639D2F-774E-11D3-A490-00C04F6843FB} http://download.microsoft.com/download/ ... msorun.cab
DPF: {CAFEEFAC-0017-0000-0055-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Tcpip\..\Interfaces\{D535C484-1F1E-41D8-9FFF-A96EBC8FABE1}: [NameServer]194.228.41.65,194.228.41.113
FireFox:
========
FF ProfilePath: C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default
FF NetworkProxy: "backup.ftp", "46.36.35.24"
FF NetworkProxy: "backup.ftp_port", 8118
FF NetworkProxy: "backup.socks", "46.36.35.24"
FF NetworkProxy: "backup.socks_port", 8118
FF NetworkProxy: "backup.ssl", "46.36.35.24"
FF NetworkProxy: "backup.ssl_port", 8118
FF NetworkProxy: "ftp", "201.238.233.211"
FF NetworkProxy: "ftp_port", 3128
FF NetworkProxy: "http", "201.238.233.211"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "201.238.233.211"
FF NetworkProxy: "socks_port", 3128
FF NetworkProxy: "ssl", "201.238.233.211"
FF NetworkProxy: "ssl_port", 3128
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll No File
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pages.tvunetworks.com/WebPlayer - D:\Program Files\TVUPlayer\npTVUAx.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll No File
FF Plugin: @videolan.org/vlc,version=2.0.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin: @videolan.org/vlc,version=2.1.0 - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @acestream.net/acestreamplugin,version=2.2.0-next - C:\Documents and Settings\dharma\Data aplikací\ACEStream\player\npace_plugin.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\searchplugins\google-esk-republika.xml
FF SearchPlugin: C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\searchplugins\google-ssl.xml
FF SearchPlugin: C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\searchplugins\startpage-https.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: České slovníky pro kontrolu pravopisu - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\cs@dictionaries.addons.mozilla(2).org [2013-12-10]
FF Extension: DownloadHelper - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-25]
FF Extension: DownloadHelper - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}(2) [2013-12-10]
FF Extension: Download Statusbar - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}(2) [2013-12-10]
FF Extension: anonymoX - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\client@anonymox.net.xpi [2013-12-10]
FF Extension: MEGA - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\firefox@mega.co.nz.xpi [2013-12-19]
FF Extension: Adblock Plus - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-10]
FF Extension: Anti-Banner - C:\Program Files\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky(2).ru [2014-03-29]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\䍻䙁䕅䅆ⵃ〰㜱〭〰ⴰ〰㔰䄭䍂䕄䙆䑅䉃絁 [2014-03-29]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{55A8EC97-6AF6-442c-877F-11C51DBD162D}] - C:\Program Files\Tomabo\YouTube Video Downloader\YTVD_FF.xpi
FF Extension: YouTube Video Downloader Extension - C:\Program Files\Tomabo\YouTube Video Downloader\YTVD_FF.xpi [2014-03-07]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Documents and Settings\dharma\Data aplikací\ACEStream\extensions\firefox\magicplayer@torrentstream.org
Chrome:
=======
CHR Extension: (Docs) - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-04]
CHR Extension: (Disk Google) - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-04]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-04]
CHR Extension: (YouTube Video Downloader Extension) - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\igljnkmljjbhcellpnjppojkfdfmkjmp [2014-05-04]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-04]
CHR Extension: (Gmail) - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-04]
CHR HKLM\...\Chrome\Extension: [aaaaoggiphohkihibdkcnhnokmkfmhnj] - C:\Documents and Settings\dharma\Local Settings\Data aplikací\APN\GoogleCRXs\aaaaoggiphohkihibdkcnhnokmkfmhnj_7.14.1.0.crx [2014-05-04]
CHR HKLM\...\Chrome\Extension: [igljnkmljjbhcellpnjppojkfdfmkjmp] - C:\Program Files\Tomabo\YouTube Video Downloader\YTVD_GC.crx [2014-03-07]
CHR HKCU\...\Chrome\Extension: [kpckgflgdapkpabemgkielbefdildaio] - C:\Documents and Settings\dharma\Data aplikací\ACEStream\extensions\chrome_new\magicplayer.crx [2014-03-07]
========================== Services (Whitelisted) =================
S4 Adobe Version Cue CS2; C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe [163840 2005-05-25] (Adobe Systems Incorporated)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-09] (AVAST Software)
S4 Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (InterVideo Inc.)
S4 InCDsrvR; C:\Program Files\Nero\Nero8\InCD\InCDsrv.exe [1440552 2008-02-28] (Nero AG)
S4 lxdd_device; C:\WINDOWS\system32\lxddcoms.exe [537520 2007-05-25] ( )
S4 NeroRegInCDSrv; C:\Program Files\Nero\Nero8\InCD\NBHRegInCDSrv.exe [53032 2008-02-28] (Nero AG)
S4 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504 2011-05-25] (NVIDIA Corporation)
S2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76888 2013-12-20] ()
==================== Drivers (Whitelisted) ====================
S3 ac97intc; C:\WINDOWS\System32\drivers\ac97intc.sys [96256 2001-08-17] (Intel Corporation)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43008 2006-07-01] (Advanced Micro Devices)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-05-09] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-05-09] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-05-09] (AVAST Software)
S0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-05-09] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [776976 2014-05-09] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [411552 2014-05-09] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-05-09] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [180632 2014-05-09] ()
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [278728 2009-08-10] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 ENTECH; C:\WINDOWS\system32\DRIVERS\ENTECH.sys [21664 2004-10-25] (EnTech Taiwan)
R1 Eve; C:\WINDOWS\System32\DRIVERS\eve.sys [33624 2013-03-28] ()
R3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [37344 2013-02-05] ()
S3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-14] (Microsoft Corporation)
S3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [25280 2010-12-31] (LogMeIn, Inc.)
S3 hidgame; C:\WINDOWS\System32\DRIVERS\hidgame.sys [8576 2003-04-16] (Microsoft Corporation)
R1 HMFAxCore5decdc700443adec5f3e84408e3098ff; C:\WINDOWS\HMFAxCore5decdc700443adec5f3e84408e3098ff.sys [96328 2014-03-31] (Eltima Software)
R1 incdrm; C:\WINDOWS\System32\drivers\InCDRm.sys [40360 2008-02-28] (Nero AG)
S3 IT9135BDA; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [145280 2012-03-02] (ITE )
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [25416 2009-08-10] ()
R3 LUsbFilt; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [28560 2009-06-17] (Logitech, Inc.)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-14] (Microsoft Corporation)
S3 msloop; C:\WINDOWS\System32\DRIVERS\loop.sys [4992 2003-04-16] (Microsoft Corporation)
S3 ms_mpu401; C:\WINDOWS\System32\drivers\msmpu401.sys [2944 2001-08-18] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35088 2010-07-16] (CACE Technologies, Inc.)
S2 nvcap; C:\WINDOWS\System32\DRIVERS\nvcap.sys [116924 2002-11-18] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [66688 2009-07-01] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [164896 2009-06-30] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13824 2009-07-01] (NVIDIA Corporation)
S2 NVXBAR; C:\WINDOWS\System32\DRIVERS\NVxbar.sys [10814 2002-11-18] (NVIDIA Corporation)
S1 P3; C:\WINDOWS\System32\DRIVERS\p3.sys [46592 2008-04-14] (Microsoft Corporation)
R1 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2003-12-05] (Padus, Inc.)
R1 SCDEmu; C:\WINDOWS\system32\Drivers\SCDEmu.sys [113608 2013-04-15] (Power Software Ltd)
S3 SE1008mdm; C:\WINDOWS\System32\DRIVERS\SE1008mdm.sys [58536 2009-02-12] (Sony Ericsson)
R0 sfvfs02; C:\WINDOWS\System32\drivers\sfvfs02.sys [63488 2005-11-03] (Protection Technology)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [466008 2013-07-31] (Duplex Secure Ltd.)
S3 tap0901_2gm; C:\WINDOWS\System32\DRIVERS\tap0901_2gm.sys [30720 2007-06-21] (The OpenVPN Project)
S3 taphss; C:\WINDOWS\System32\DRIVERS\taphss.sys [32768 2010-09-22] (AnchorFree Inc)
R2 thdudf; C:\WINDOWS\System32\DRIVERS\thdudf.sys [66944 2006-11-11] (TOSHIBA Corporation)
R0 TPkd; C:\WINDOWS\system32\Drivers\TPkd.sys [93336 2012-11-17] (PACE Anti-Piracy, Inc.)
S3 catchme; \??\C:\DOCUME~1\dharma\LOCALS~1\Temp\catchme.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U5 Tcpip6; C:\Windows\System32\Drivers\Tcpip6.sys [225856 2008-06-20] (Microsoft Corporation)
S3 vdrive; system32\DRIVERS\vdrive.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-10 00:17 - 2014-05-10 00:18 - 00017939 _____ () C:\Documents and Settings\dharma\Plocha\FRST.txt
2014-05-10 00:17 - 2014-05-10 00:17 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\dharma\Plocha\FRSTLauncher.exe
2014-05-10 00:15 - 2014-05-10 00:15 - 01053184 _____ (Farbar) C:\Documents and Settings\dharma\Plocha\FRST.exe
2014-05-09 23:23 - 2014-05-09 23:23 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\AVAST Software
2014-05-09 23:22 - 2014-05-09 23:22 - 00001733 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-05-09 23:22 - 2014-05-09 23:22 - 00000316 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-05-09 23:22 - 2014-05-09 23:22 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-05-09 23:21 - 2014-05-09 23:21 - 00776976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00411552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00271264 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-05-09 23:21 - 2014-05-09 23:21 - 00180632 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-05-09 23:21 - 2014-05-09 23:21 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-05-09 23:18 - 2014-05-09 23:18 - 00000000 ____D () C:\Program Files\AVAST Software
2014-05-09 23:14 - 2014-05-09 23:17 - 00000000 ____D () C:\Documents and Settings\dharma\Plocha\Vyúčtování
2014-05-06 21:00 - 2014-05-10 00:17 - 00000468 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{2F6CF079-573F-46C7-947D-64C8B2B166D4}.job
2014-05-06 17:49 - 2014-05-09 15:25 - 00000000 ____D () C:\Documents and Settings\dharma\Plocha\WEB
2014-05-04 19:15 - 2014-05-04 19:15 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-05-04 19:15 - 2014-05-04 19:15 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2014-05-04 19:02 - 2014-05-10 00:07 - 00000940 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-04 19:02 - 2014-05-09 19:07 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-04 19:02 - 2014-05-04 19:02 - 00000000 ____D () C:\Program Files\MyFree Codec
2014-05-04 19:02 - 2014-05-04 19:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\MyFree Codec
2014-05-04 19:01 - 2014-05-04 19:24 - 00000000 ____D () C:\Program Files\Google
2014-05-04 19:00 - 2014-05-04 19:16 - 00000000 ____D () C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google
2014-05-04 18:54 - 2014-05-04 18:55 - 00000000 ____D () C:\WINDOWS\LastGood
2014-04-26 14:47 - 2014-04-26 14:47 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-04-26 14:47 - 2014-04-26 14:45 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-04-26 14:47 - 2014-04-26 14:45 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2014-04-26 14:46 - 2014-04-26 14:46 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-04-26 14:46 - 2014-04-26 14:46 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Java
2014-04-26 14:46 - 2014-04-26 14:45 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-04-26 14:46 - 2014-04-26 14:45 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-04-26 14:20 - 2014-04-26 14:22 - 00004214 _____ () C:\WINDOWS\system32\jupdate-1.7.0_55-b14.log
2014-04-22 21:12 - 2014-04-22 21:12 - 00000000 ____D () C:\Program Files\Common Files\STORMWARE
2014-04-22 21:12 - 2014-04-22 21:12 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\PDF Writer
2014-04-22 21:12 - 2013-10-04 09:42 - 00147456 _____ (STORMWARE) C:\WINDOWS\system32\bzpdfc.dll
2014-04-22 21:12 - 2013-09-01 12:59 - 01103872 _____ () C:\WINDOWS\system32\CBLCtlsU.ocx
2014-04-22 21:12 - 2013-07-13 12:15 - 00805376 _____ () C:\WINDOWS\system32\EditCtlsU.ocx
2014-04-22 21:12 - 2013-07-12 22:57 - 00539648 _____ () C:\WINDOWS\system32\LblCtlsU.ocx
2014-04-22 21:12 - 2013-04-05 13:55 - 00476160 _____ () C:\WINDOWS\system32\TabStripCtlU.ocx
2014-04-22 21:12 - 2013-03-28 23:13 - 00645632 _____ () C:\WINDOWS\system32\BtnCtlsU.ocx
2014-04-22 21:12 - 2013-03-03 14:37 - 01061888 _____ () C:\WINDOWS\system32\ExLvwU.ocx
2014-04-22 21:12 - 2008-10-30 09:42 - 00227840 _____ (Bullzip) C:\WINDOWS\system32\bzFlRdr.dll
2014-04-22 21:12 - 2008-07-09 09:42 - 00103424 _____ (Bullzip) C:\WINDOWS\system32\bzDCT.dll
2014-04-22 21:10 - 2014-04-22 21:11 - 00000000 ____D () C:\Program Files\STORMWARE
2014-04-22 21:10 - 2014-04-22 21:10 - 00001670 _____ () C:\Documents and Settings\All Users\Plocha\Ekonomický systém POHODA 2014 START.lnk
2014-04-22 21:10 - 2014-04-22 21:10 - 00000000 ____D () C:\Program Files\Common Files\STORMWARE Shared
2014-04-22 21:10 - 2014-04-22 21:10 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\STORMWARE Office
2014-04-22 21:10 - 2014-04-22 21:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\STORMWARE
2014-04-20 18:28 - 2014-04-20 18:28 - 00000833 _____ () C:\Documents and Settings\All Users\Plocha\Play BF2 Online Now!.lnk
2014-04-20 18:28 - 2014-04-20 18:28 - 00000811 _____ () C:\Documents and Settings\All Users\Plocha\Battlefield 2.lnk
2014-04-20 18:26 - 2014-04-20 18:26 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2014-04-20 18:16 - 2014-04-20 18:16 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\EA GAMES
2014-04-20 16:37 - 2014-04-20 16:40 - 00000000 ____D () C:\AdwCleaner
2014-04-18 13:12 - 2014-05-10 00:17 - 00000000 ____D () C:\FRST
2014-04-18 12:48 - 2014-04-18 12:48 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-04-17 10:59 - 2014-04-17 10:59 - 00001643 _____ () C:\Documents and Settings\All Users\Plocha\Samsung Kies (Lite).lnk
2014-04-17 10:59 - 2014-04-17 10:59 - 00001633 _____ () C:\Documents and Settings\All Users\Plocha\Samsung Kies.lnk
2014-04-16 11:05 - 2014-01-23 18:23 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\WINDOWS\system32\secman.dll
2014-04-16 11:04 - 2014-01-23 18:31 - 00821824 _____ (Devguru Co., Ltd.) C:\WINDOWS\system32\dgderapi.dll
2014-04-16 11:04 - 2014-01-23 18:31 - 00319456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DIFxAPI.dll
2014-04-16 11:04 - 2014-01-23 18:31 - 00020032 _____ (Devguru Co., Ltd) C:\WINDOWS\system32\Drivers\dgderdrv.sys
2014-04-16 10:56 - 2014-04-16 10:56 - 00964897 _____ () C:\Documents and Settings\dharma\Dokumenty\bookmarks-2014-04-16.json
==================== One Month Modified Files and Folders =======
2014-05-10 00:18 - 2014-05-10 00:17 - 00017939 _____ () C:\Documents and Settings\dharma\Plocha\FRST.txt
2014-05-10 00:17 - 2014-05-10 00:17 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\dharma\Plocha\FRSTLauncher.exe
2014-05-10 00:17 - 2014-05-06 21:00 - 00000468 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{2F6CF079-573F-46C7-947D-64C8B2B166D4}.job
2014-05-10 00:17 - 2014-04-18 13:12 - 00000000 ____D () C:\FRST
2014-05-10 00:17 - 2009-09-02 09:37 - 00000000 ____D () C:\Documents and Settings\dharma\Dokumenty\Stažené soubory
2014-05-10 00:17 - 2009-02-15 20:19 - 00000000 ___HD () C:\Documents and Settings\dharma\Local Settings\Data aplikací
2014-05-10 00:17 - 2009-02-15 20:19 - 00000000 ____D () C:\Documents and Settings\dharma\Plocha
2014-05-10 00:15 - 2014-05-10 00:15 - 01053184 _____ (Farbar) C:\Documents and Settings\dharma\Plocha\FRST.exe
2014-05-10 00:07 - 2014-05-04 19:02 - 00000940 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-10 00:01 - 2012-02-13 13:17 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\uTorrent
2014-05-10 00:00 - 2009-02-15 20:19 - 00000000 ____D () C:\Documents and Settings\dharma
2014-05-09 23:55 - 2009-02-15 20:19 - 00000000 ___RD () C:\Documents and Settings\dharma\Dokumenty
2014-05-09 23:53 - 2009-02-16 17:58 - 00000000 ____D () C:\Documents and Settings\dharma\dwhelper
2014-05-09 23:52 - 2009-02-15 20:19 - 00000000 ___RD () C:\Documents and Settings\dharma\Data aplikací
2014-05-09 23:45 - 2012-06-14 22:33 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\Autodesk
2014-05-09 23:44 - 2009-02-15 20:47 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-05-09 23:44 - 2009-02-15 20:47 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-05-09 23:39 - 2009-02-15 20:47 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start
2014-05-09 23:39 - 2009-02-15 20:19 - 00000000 ___RD () C:\Documents and Settings\dharma\Nabídka Start
2014-05-09 23:29 - 2009-02-15 20:19 - 00000000 ___RD () C:\Documents and Settings\dharma\Nabídka Start\Programy
2014-05-09 23:23 - 2014-05-09 23:23 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\AVAST Software
2014-05-09 23:22 - 2014-05-09 23:22 - 00001733 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-05-09 23:22 - 2014-05-09 23:22 - 00000316 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-05-09 23:22 - 2014-05-09 23:22 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-05-09 23:21 - 2014-05-09 23:21 - 00776976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00411552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00271264 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-05-09 23:21 - 2014-05-09 23:21 - 00180632 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-05-09 23:21 - 2014-05-09 23:21 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-05-09 23:18 - 2014-05-09 23:18 - 00000000 ____D () C:\Program Files\AVAST Software
2014-05-09 23:17 - 2014-05-09 23:14 - 00000000 ____D () C:\Documents and Settings\dharma\Plocha\Vyúčtování
2014-05-09 23:17 - 2013-01-11 01:21 - 00000000 ____D () C:\Documents and Settings\dharma\Plocha\Nová složka
2014-05-09 23:16 - 2014-03-06 11:24 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-05-09 22:28 - 2014-03-06 22:36 - 00107520 _____ () C:\Documents and Settings\dharma\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-09 20:15 - 2012-07-22 21:37 - 00000000 ____D () C:\Documents and Settings\dharma\Dokumenty\StreamTransport
2014-05-09 20:07 - 2009-02-15 20:14 - 00032540 ____N () C:\WINDOWS\SchedLgU.Txt
2014-05-09 19:07 - 2014-05-04 19:02 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-09 18:38 - 2010-01-09 20:16 - 00000000 ____D () C:\Documents and Settings\dharma\Local Settings\Data aplikací\Adobe
2014-05-09 18:23 - 2013-11-14 19:06 - 00692400 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-05-09 18:23 - 2013-11-14 19:06 - 00070832 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-05-09 17:12 - 2012-04-30 13:25 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\YouTube Downloader
2014-05-09 16:01 - 2014-03-31 15:18 - 00000371 ___SH () C:\WINDOWS\hlistHMFAxCore5decdc700443adec5f3e84408e3098ff
2014-05-09 16:00 - 2014-03-31 15:18 - 00000126 ___SH () C:\WINDOWS\wlistHMFAxCore5decdc700443adec5f3e84408e3098ff
2014-05-09 15:25 - 2014-05-06 17:49 - 00000000 ____D () C:\Documents and Settings\dharma\Plocha\WEB
2014-05-09 14:55 - 2011-03-25 09:41 - 00228613 _____ () C:\lxdd.log
2014-05-09 14:55 - 2011-03-23 18:09 - 00000254 ____N () C:\WINDOWS\wiadebug.log
2014-05-09 06:58 - 2009-02-15 20:45 - 00000281 __RSH () C:\boot.ini
2014-05-09 06:58 - 2003-04-16 14:00 - 00000962 _____ () C:\WINDOWS\win.ini
2014-05-09 06:58 - 2003-04-16 14:00 - 00000277 _____ () C:\WINDOWS\system.ini
2014-05-09 06:56 - 2003-04-16 14:00 - 00012598 _____ () C:\WINDOWS\system32\wpa.dbl
2014-05-09 06:55 - 2011-03-23 18:09 - 00000048 ____N () C:\WINDOWS\wiaservc.log
2014-05-09 06:55 - 2009-02-15 20:09 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-05-07 21:48 - 2009-02-15 20:19 - 00000272 ___SH () C:\Documents and Settings\dharma\ntuser.ini
2014-05-07 21:34 - 2009-02-15 20:19 - 00000000 ___RD () C:\Documents and Settings\dharma\Dokumenty\Obrázky
2014-05-06 21:00 - 2009-02-15 20:19 - 00000000 ___RD () C:\Documents and Settings\dharma\Oblíbené položky
2014-05-05 18:41 - 2009-05-27 18:33 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-05-04 19:38 - 2014-03-03 20:59 - 00820170 _____ () C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2014-05-04 19:24 - 2014-05-04 19:01 - 00000000 ____D () C:\Program Files\Google
2014-05-04 19:18 - 2014-03-03 20:59 - 02137215 _____ () C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-842925246-1580436667-1060284298-1003-0.dat
2014-05-04 19:16 - 2014-05-04 19:00 - 00000000 ____D () C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google
2014-05-04 19:15 - 2014-05-04 19:15 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-05-04 19:15 - 2014-05-04 19:15 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2014-05-04 19:02 - 2014-05-04 19:02 - 00000000 ____D () C:\Program Files\MyFree Codec
2014-05-04 19:02 - 2014-05-04 19:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\MyFree Codec
2014-05-04 18:55 - 2014-05-04 18:54 - 00000000 ____D () C:\WINDOWS\LastGood
2014-05-04 18:54 - 2012-08-10 17:44 - 00000000 ____D () C:\Program Files\Samsung
2014-05-04 18:02 - 2012-08-10 17:45 - 00000000 ____D () C:\Program Files\MarkAny
2014-04-26 16:08 - 2010-12-30 12:37 - 00000682 _____ () C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2014-04-26 16:07 - 2009-08-06 00:17 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-26 14:47 - 2014-04-26 14:47 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-04-26 14:46 - 2014-04-26 14:46 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-04-26 14:46 - 2014-04-26 14:46 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Java
2014-04-26 14:45 - 2014-04-26 14:47 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-04-26 14:45 - 2014-04-26 14:47 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2014-04-26 14:45 - 2014-04-26 14:46 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-04-26 14:45 - 2014-04-26 14:46 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-04-26 14:45 - 2009-02-15 20:33 - 00000000 ____D () C:\Program Files\Java
2014-04-26 14:22 - 2014-04-26 14:20 - 00004214 _____ () C:\WINDOWS\system32\jupdate-1.7.0_55-b14.log
2014-04-23 09:58 - 2013-06-26 09:56 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\vlc
2014-04-22 21:12 - 2014-04-22 21:12 - 00000000 ____D () C:\Program Files\Common Files\STORMWARE
2014-04-22 21:12 - 2014-04-22 21:12 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\PDF Writer
2014-04-22 21:11 - 2014-04-22 21:10 - 00000000 ____D () C:\Program Files\STORMWARE
2014-04-22 21:10 - 2014-04-22 21:10 - 00001670 _____ () C:\Documents and Settings\All Users\Plocha\Ekonomický systém POHODA 2014 START.lnk
2014-04-22 21:10 - 2014-04-22 21:10 - 00000000 ____D () C:\Program Files\Common Files\STORMWARE Shared
2014-04-22 21:10 - 2014-04-22 21:10 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\STORMWARE Office
2014-04-22 21:10 - 2014-04-22 21:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\STORMWARE
2014-04-22 21:10 - 2009-02-15 20:47 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-04-20 18:40 - 2012-07-19 13:29 - 00000671 _____ () C:\Documents and Settings\dharma\Plocha\BF2.lnk
2014-04-20 18:28 - 2014-04-20 18:28 - 00000833 _____ () C:\Documents and Settings\All Users\Plocha\Play BF2 Online Now!.lnk
2014-04-20 18:28 - 2014-04-20 18:28 - 00000811 _____ () C:\Documents and Settings\All Users\Plocha\Battlefield 2.lnk
2014-04-20 18:27 - 2009-02-15 20:07 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-04-20 18:26 - 2014-04-20 18:26 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2014-04-20 18:16 - 2014-04-20 18:16 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\EA GAMES
2014-04-20 18:16 - 2009-02-15 23:47 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-04-20 17:08 - 2011-02-21 08:33 - 00138992 _____ () C:\WINDOWS\system32\Drivers\PnkBstrK.sys
2014-04-20 17:07 - 2011-02-21 08:31 - 00281152 _____ () C:\WINDOWS\system32\PnkBstrB.exe
2014-04-20 17:07 - 2010-09-05 14:17 - 00281152 _____ () C:\WINDOWS\system32\PnkBstrB.xtr
2014-04-20 16:40 - 2014-04-20 16:37 - 00000000 ____D () C:\AdwCleaner
2014-04-20 14:10 - 2011-08-11 08:34 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-04-18 12:48 - 2014-04-18 12:48 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-04-18 11:17 - 2010-09-05 14:17 - 00281152 _____ () C:\WINDOWS\system32\PnkBstrB.ex0
2014-04-17 11:06 - 2012-08-10 17:48 - 00000000 ____D () C:\Documents and Settings\dharma\Local Settings\Data aplikací\Samsung
2014-04-17 11:03 - 2012-08-10 17:48 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\Samsung
2014-04-17 10:59 - 2014-04-17 10:59 - 00001643 _____ () C:\Documents and Settings\All Users\Plocha\Samsung Kies (Lite).lnk
2014-04-17 10:59 - 2014-04-17 10:59 - 00001633 _____ () C:\Documents and Settings\All Users\Plocha\Samsung Kies.lnk
2014-04-17 10:52 - 2013-03-05 21:27 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Samsung
2014-04-17 10:49 - 2012-08-10 17:44 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Samsung
2014-04-16 11:01 - 2010-01-19 16:08 - 00000000 ____D () C:\Documents and Settings\dharma\Local Settings\Data aplikací\Downloaded Installations
2014-04-16 10:56 - 2014-04-16 10:56 - 00964897 _____ () C:\Documents and Settings\dharma\Dokumenty\bookmarks-2014-04-16.json
==================== Bamital & volsnap Check =================
C:\WINDOWS\explorer.exe
[2003-04-16 14:00] - [2008-04-14 09:52] - 1034240 ____N (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1
C:\WINDOWS\system32\winlogon.exe
[2003-04-16 14:00] - [2008-04-14 09:52] - 0507904 _____ (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea
C:\WINDOWS\system32\svchost.exe
[2003-04-16 14:00] - [2008-04-14 09:52] - 0014336 _____ (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\WINDOWS\system32\services.exe
[2003-04-16 14:00] - [2009-02-09 13:25] - 0111104 _____ (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\WINDOWS\system32\User32.dll
[2003-04-16 14:00] - [2008-04-14 09:52] - 0578560 _____ (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53
C:\WINDOWS\system32\userinit.exe
[2003-04-16 14:00] - [2008-04-14 09:52] - 0026112 _____ (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\volsnap.sys
[2003-04-16 14:00] - [2008-04-14 08:42] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:37.27 GB) (Free:15.04 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:465.75 GB) (Free:6.57 GB) NTFS
Drive f: (Místní disk) (Fixed) (Total:74.53 GB) (Free:5.57 GB) NTFS
Available physical RAM: 1247.09 MB
Total physical RAM: 1791.23 MB
Percentage of memory in use: 30%
==================== MBR and Partition Table ==================
Disk: 0 (Size: 37 GB) (Disk ID: 1CE71CE6)
Partition 1: (Active) - (Size=37 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows XP) (Size: 75 GB) (Disk ID: 82842864)
Partition 1: (Not Active) - (Size=75 GB) - (Type=42)
Disk: 2 (Size: 466 GB) (Disk ID: F81BF81B)
Partition 1: (Active) - (Size=466 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{2F6CF079-573F-46C7-947D-64C8B2B166D4}.job => C:\WINDOWS\system32\msfeedssync.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:264A9BB7
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Documents and Settings\dharma\Plocha" je 390 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr
"C:\Documents and Settings\dharma\Data aplikac\Seznam.cz\bin\wszndesktop.exe" -q [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop
"C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FaxCenterServer
"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1
%systemroot%\system32\dumprep 0 -k [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Kernel and Hardware Abstraction Layer
C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck
C:\Program Files\Samsung\Kies\Kies.exe /preload [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload
"C:\Program Files\Lexmark 2500 Series\lxddamon.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent
rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXDDtime.dll,_RunDLLEntry@16 [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxddamon
"C:\Program Files\Lexmark 2500 Series\lxddmon.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LXDDCATS
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxddmon.exe
C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon
"C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz
"C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL
Reim ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce
Reim ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
Reim ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Adobe Gamma Loader.lnk
C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^EPSON Status Monitor 3 Environment Check 2.lnk
C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Logitech SetPoint.lnk
C:\PROGRA~1\Logitech\SetPoint\SetPoint.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dharma^Nabdka Start^Programy^Po sputn^MagicDisc.lnk
C:\PROGRA~1\MAGICD~1\MAGICD~1.EXE [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dharma^Nabdka Start^Programy^Po sputn^Vesmr na dlani.lnk
C:\PROGRA~1\NONOBL~1\vesmir.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services
ose REG_DWORD 0x3
Nero BackItUp Scheduler 4.0 REG_DWORD 0x2
Lavasoft Ad-Aware Service REG_DWORD 0x2
Adobe LM Service REG_DWORD 0x3
NeroRegInCDSrv REG_DWORD 0x2
InCDsrvR REG_DWORD 0x2
Adobe Version Cue CS2 REG_DWORD 0x2
gusvc REG_DWORD 0x2
gupdate1c98fa28e326f70 REG_DWORD 0x2
NVSvc REG_DWORD 0x2
Adobe Version Cue CS4 REG_DWORD 0x3
EPSONStatusAgent2 REG_DWORD 0x2
JavaQuickStarterService REG_DWORD 0x2
ForcewareWebInterface REG_DWORD 0x2
idsvc REG_DWORD 0x3
IDriverT REG_DWORD 0x3
lxdd_device REG_DWORD 0x2
nvUpdatusService REG_DWORD 0x2
CyberLink PowerDVD 11.0 Service REG_DWORD 0x2
CyberLink PowerDVD 11.0 Monitor Service REG_DWORD 0x2
CryptSvc REG_DWORD 0x3
CLHNServiceForPowerDVD REG_DWORD 0x2
gupdatem REG_DWORD 0x3
gupdate REG_DWORD 0x2
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\CyberLink\\PowerDVD 9\\PowerDVD9.exe"="C:\\Program Files\\CyberLink\\PowerDVD 9\\PowerDVD9.exe:*:Enabled:CyberLink PowerDVD 9.0"
"C:\\Program Files\\Lexmark 2500 Series\\app4r.exe"="C:\\Program Files\\Lexmark 2500 Series\\App4R.exe:*:Enabled:BorgListener"
"C:\\Documents and Settings\\dharma\\Dokumenty\\Staen soubory\\detect_routers\\detect_routers.exe"="C:\\Documents and Settings\\dharma\\Dokumenty\\Staen soubory\\detect_routers\\detect_routers.exe:*:Enabled:Detect Multiple Routers"
"C:\\Program Files\\Simple Port Forwarding\\spf.exe"="C:\\Program Files\\Simple Port Forwarding\\spf.exe:*:Enabled:Simple Port Forwarding By PcWinTech.com"
"C:\\Program Files\\Simple Port Tester\\spt.exe"="C:\\Program Files\\Simple Port Tester\\spt.exe:*:Enabled:Simple Port Tester"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\WINDOWS\\system32\\sessmgr.exe"="C:\\WINDOWS\\system32\\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Lexmark 2500 Series\\lxddamon.exe"="C:\\Program Files\\Lexmark 2500 Series\\lxddamon.exe:*:Enabled:Device Monitor Appliaction"
"C:\\Program Files\\Lexmark 2500 Series\\App4R.exe"="C:\\Program Files\\Lexmark 2500 Series\\App4R.exe:*:Enabled: "
"C:\\Program Files\\Winamp\\winamp.exe"="C:\\Program Files\\Winamp\\winamp.exe:*:Disabled:Winamp"
"F:\\Program Files\\Battlefield 2\\BF2.exe"="F:\\Program Files\\Battlefield 2\\BF2.exe:*:Enabled:BF2"
"C:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"="C:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxddpswx.exe"="C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxddpswx.exe:*:Enabled: "
"C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxddtime.exe"="C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxddtime.exe:*:Enabled: "
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe"="C:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\WINDOWS\\system32\\muzapp.exe"="C:\\WINDOWS\\system32\\muzapp.exe:*:Enabled:MUZ AOD APP player"
"D:\\Program Files\\World_of_Tanks\\WOTLauncher.exe"="D:\\Program Files\\World_of_Tanks\\WOTLauncher.exe:*:Enabled:World of Tanks Launcher"
"D:\\Program Files\\World_of_Tanks\\WorldOfTanks.exe"="D:\\Program Files\\World_of_Tanks\\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\\Program Files\\Simple Port Forwarding\\spf.exe"="C:\\Program Files\\Simple Port Forwarding\\spf.exe:*:Enabled:Simple Port Forwarding By PcWinTech.com"
"C:\\Program Files\\VSO\\VSO Downloader\\3\\VsoDownloader.exe"="C:\\Program Files\\VSO\\VSO Downloader\\3\\VsoDownloader.exe:*:Enabled:VSO Downloader"
"D:\\Program Files\\VideoLAN\\VLC\\vlc.exe"="D:\\Program Files\\VideoLAN\\VLC\\vlc.exe:*:Enabled:VLC media player 2.0.8"
"D:\\Program Files\\eMule\\emule.exe"="D:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"
"C:\\Program Files\\Simple Port Tester\\spt.exe"="C:\\Program Files\\Simple Port Tester\\spt.exe:*:Enabled:Simple Port Tester"
"C:\\Documents and Settings\\dharma\\Data aplikac\\uTorrent\\uTorrent.exe"="C:\\Documents and Settings\\dharma\\Data aplikac\\uTorrent\\uTorrent.exe:*:Enabled:Torrent"
"C:\\Program Files\\Tomabo\\YouTube Video Downloader\\YouTubeVideoDownloader.exe"="C:\\Program Files\\Tomabo\\YouTube Video Downloader\\YouTubeVideoDownloader.exe:*:Enabled:YouTube Video Downloader"
"D:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe"="D:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe:*:Enabled:Battlefield 2"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"54321:TCP"="54321:TCP:*:Enabled:uTorrent"
"5400:TCP"="5400:TCP:*:Enabled:ed"
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
Ran by dharma (administrator) on DHARMA-A14GPJLV on 10-05-2014 00:17:57
Running from C:\Documents and Settings\dharma\Plocha
Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(forum.viry.cz) C:\Documents and Settings\dharma\Plocha\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [MSConfig] => C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE [171008 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704 2014-05-09] (AVAST Software)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {A4639D2F-774E-11D3-A490-00C04F6843FB} http://download.microsoft.com/download/ ... msorun.cab
DPF: {CAFEEFAC-0017-0000-0055-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Tcpip\..\Interfaces\{D535C484-1F1E-41D8-9FFF-A96EBC8FABE1}: [NameServer]194.228.41.65,194.228.41.113
FireFox:
========
FF ProfilePath: C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default
FF NetworkProxy: "backup.ftp", "46.36.35.24"
FF NetworkProxy: "backup.ftp_port", 8118
FF NetworkProxy: "backup.socks", "46.36.35.24"
FF NetworkProxy: "backup.socks_port", 8118
FF NetworkProxy: "backup.ssl", "46.36.35.24"
FF NetworkProxy: "backup.ssl_port", 8118
FF NetworkProxy: "ftp", "201.238.233.211"
FF NetworkProxy: "ftp_port", 3128
FF NetworkProxy: "http", "201.238.233.211"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "201.238.233.211"
FF NetworkProxy: "socks_port", 3128
FF NetworkProxy: "ssl", "201.238.233.211"
FF NetworkProxy: "ssl_port", 3128
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll No File
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pages.tvunetworks.com/WebPlayer - D:\Program Files\TVUPlayer\npTVUAx.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll No File
FF Plugin: @videolan.org/vlc,version=2.0.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin: @videolan.org/vlc,version=2.1.0 - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @acestream.net/acestreamplugin,version=2.2.0-next - C:\Documents and Settings\dharma\Data aplikací\ACEStream\player\npace_plugin.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\searchplugins\google-esk-republika.xml
FF SearchPlugin: C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\searchplugins\google-ssl.xml
FF SearchPlugin: C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\searchplugins\startpage-https.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: České slovníky pro kontrolu pravopisu - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\cs@dictionaries.addons.mozilla(2).org [2013-12-10]
FF Extension: DownloadHelper - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-25]
FF Extension: DownloadHelper - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}(2) [2013-12-10]
FF Extension: Download Statusbar - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}(2) [2013-12-10]
FF Extension: anonymoX - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\client@anonymox.net.xpi [2013-12-10]
FF Extension: MEGA - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\firefox@mega.co.nz.xpi [2013-12-19]
FF Extension: Adblock Plus - C:\Documents and Settings\dharma\Data aplikací\Mozilla\Firefox\Profiles\6a65fmkt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-10]
FF Extension: Anti-Banner - C:\Program Files\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky(2).ru [2014-03-29]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\䍻䙁䕅䅆ⵃ〰㜱〭〰ⴰ〰㔰䄭䍂䕄䙆䑅䉃絁 [2014-03-29]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{55A8EC97-6AF6-442c-877F-11C51DBD162D}] - C:\Program Files\Tomabo\YouTube Video Downloader\YTVD_FF.xpi
FF Extension: YouTube Video Downloader Extension - C:\Program Files\Tomabo\YouTube Video Downloader\YTVD_FF.xpi [2014-03-07]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Documents and Settings\dharma\Data aplikací\ACEStream\extensions\firefox\magicplayer@torrentstream.org
Chrome:
=======
CHR Extension: (Docs) - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-04]
CHR Extension: (Disk Google) - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-04]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-04]
CHR Extension: (YouTube Video Downloader Extension) - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\igljnkmljjbhcellpnjppojkfdfmkjmp [2014-05-04]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-04]
CHR Extension: (Gmail) - C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-04]
CHR HKLM\...\Chrome\Extension: [aaaaoggiphohkihibdkcnhnokmkfmhnj] - C:\Documents and Settings\dharma\Local Settings\Data aplikací\APN\GoogleCRXs\aaaaoggiphohkihibdkcnhnokmkfmhnj_7.14.1.0.crx [2014-05-04]
CHR HKLM\...\Chrome\Extension: [igljnkmljjbhcellpnjppojkfdfmkjmp] - C:\Program Files\Tomabo\YouTube Video Downloader\YTVD_GC.crx [2014-03-07]
CHR HKCU\...\Chrome\Extension: [kpckgflgdapkpabemgkielbefdildaio] - C:\Documents and Settings\dharma\Data aplikací\ACEStream\extensions\chrome_new\magicplayer.crx [2014-03-07]
========================== Services (Whitelisted) =================
S4 Adobe Version Cue CS2; C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe [163840 2005-05-25] (Adobe Systems Incorporated)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-09] (AVAST Software)
S4 Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (InterVideo Inc.)
S4 InCDsrvR; C:\Program Files\Nero\Nero8\InCD\InCDsrv.exe [1440552 2008-02-28] (Nero AG)
S4 lxdd_device; C:\WINDOWS\system32\lxddcoms.exe [537520 2007-05-25] ( )
S4 NeroRegInCDSrv; C:\Program Files\Nero\Nero8\InCD\NBHRegInCDSrv.exe [53032 2008-02-28] (Nero AG)
S4 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504 2011-05-25] (NVIDIA Corporation)
S2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76888 2013-12-20] ()
==================== Drivers (Whitelisted) ====================
S3 ac97intc; C:\WINDOWS\System32\drivers\ac97intc.sys [96256 2001-08-17] (Intel Corporation)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43008 2006-07-01] (Advanced Micro Devices)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-05-09] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-05-09] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-05-09] (AVAST Software)
S0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-05-09] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [776976 2014-05-09] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [411552 2014-05-09] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-05-09] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [180632 2014-05-09] ()
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [278728 2009-08-10] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 ENTECH; C:\WINDOWS\system32\DRIVERS\ENTECH.sys [21664 2004-10-25] (EnTech Taiwan)
R1 Eve; C:\WINDOWS\System32\DRIVERS\eve.sys [33624 2013-03-28] ()
R3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [37344 2013-02-05] ()
S3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-14] (Microsoft Corporation)
S3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [25280 2010-12-31] (LogMeIn, Inc.)
S3 hidgame; C:\WINDOWS\System32\DRIVERS\hidgame.sys [8576 2003-04-16] (Microsoft Corporation)
R1 HMFAxCore5decdc700443adec5f3e84408e3098ff; C:\WINDOWS\HMFAxCore5decdc700443adec5f3e84408e3098ff.sys [96328 2014-03-31] (Eltima Software)
R1 incdrm; C:\WINDOWS\System32\drivers\InCDRm.sys [40360 2008-02-28] (Nero AG)
S3 IT9135BDA; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [145280 2012-03-02] (ITE )
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [25416 2009-08-10] ()
R3 LUsbFilt; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [28560 2009-06-17] (Logitech, Inc.)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-14] (Microsoft Corporation)
S3 msloop; C:\WINDOWS\System32\DRIVERS\loop.sys [4992 2003-04-16] (Microsoft Corporation)
S3 ms_mpu401; C:\WINDOWS\System32\drivers\msmpu401.sys [2944 2001-08-18] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35088 2010-07-16] (CACE Technologies, Inc.)
S2 nvcap; C:\WINDOWS\System32\DRIVERS\nvcap.sys [116924 2002-11-18] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [66688 2009-07-01] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [164896 2009-06-30] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13824 2009-07-01] (NVIDIA Corporation)
S2 NVXBAR; C:\WINDOWS\System32\DRIVERS\NVxbar.sys [10814 2002-11-18] (NVIDIA Corporation)
S1 P3; C:\WINDOWS\System32\DRIVERS\p3.sys [46592 2008-04-14] (Microsoft Corporation)
R1 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2003-12-05] (Padus, Inc.)
R1 SCDEmu; C:\WINDOWS\system32\Drivers\SCDEmu.sys [113608 2013-04-15] (Power Software Ltd)
S3 SE1008mdm; C:\WINDOWS\System32\DRIVERS\SE1008mdm.sys [58536 2009-02-12] (Sony Ericsson)
R0 sfvfs02; C:\WINDOWS\System32\drivers\sfvfs02.sys [63488 2005-11-03] (Protection Technology)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [466008 2013-07-31] (Duplex Secure Ltd.)
S3 tap0901_2gm; C:\WINDOWS\System32\DRIVERS\tap0901_2gm.sys [30720 2007-06-21] (The OpenVPN Project)
S3 taphss; C:\WINDOWS\System32\DRIVERS\taphss.sys [32768 2010-09-22] (AnchorFree Inc)
R2 thdudf; C:\WINDOWS\System32\DRIVERS\thdudf.sys [66944 2006-11-11] (TOSHIBA Corporation)
R0 TPkd; C:\WINDOWS\system32\Drivers\TPkd.sys [93336 2012-11-17] (PACE Anti-Piracy, Inc.)
S3 catchme; \??\C:\DOCUME~1\dharma\LOCALS~1\Temp\catchme.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U5 Tcpip6; C:\Windows\System32\Drivers\Tcpip6.sys [225856 2008-06-20] (Microsoft Corporation)
S3 vdrive; system32\DRIVERS\vdrive.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-10 00:17 - 2014-05-10 00:18 - 00017939 _____ () C:\Documents and Settings\dharma\Plocha\FRST.txt
2014-05-10 00:17 - 2014-05-10 00:17 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\dharma\Plocha\FRSTLauncher.exe
2014-05-10 00:15 - 2014-05-10 00:15 - 01053184 _____ (Farbar) C:\Documents and Settings\dharma\Plocha\FRST.exe
2014-05-09 23:23 - 2014-05-09 23:23 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\AVAST Software
2014-05-09 23:22 - 2014-05-09 23:22 - 00001733 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-05-09 23:22 - 2014-05-09 23:22 - 00000316 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-05-09 23:22 - 2014-05-09 23:22 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-05-09 23:21 - 2014-05-09 23:21 - 00776976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00411552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00271264 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-05-09 23:21 - 2014-05-09 23:21 - 00180632 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-05-09 23:21 - 2014-05-09 23:21 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-05-09 23:18 - 2014-05-09 23:18 - 00000000 ____D () C:\Program Files\AVAST Software
2014-05-09 23:14 - 2014-05-09 23:17 - 00000000 ____D () C:\Documents and Settings\dharma\Plocha\Vyúčtování
2014-05-06 21:00 - 2014-05-10 00:17 - 00000468 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{2F6CF079-573F-46C7-947D-64C8B2B166D4}.job
2014-05-06 17:49 - 2014-05-09 15:25 - 00000000 ____D () C:\Documents and Settings\dharma\Plocha\WEB
2014-05-04 19:15 - 2014-05-04 19:15 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-05-04 19:15 - 2014-05-04 19:15 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2014-05-04 19:02 - 2014-05-10 00:07 - 00000940 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-04 19:02 - 2014-05-09 19:07 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-04 19:02 - 2014-05-04 19:02 - 00000000 ____D () C:\Program Files\MyFree Codec
2014-05-04 19:02 - 2014-05-04 19:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\MyFree Codec
2014-05-04 19:01 - 2014-05-04 19:24 - 00000000 ____D () C:\Program Files\Google
2014-05-04 19:00 - 2014-05-04 19:16 - 00000000 ____D () C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google
2014-05-04 18:54 - 2014-05-04 18:55 - 00000000 ____D () C:\WINDOWS\LastGood
2014-04-26 14:47 - 2014-04-26 14:47 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-04-26 14:47 - 2014-04-26 14:45 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-04-26 14:47 - 2014-04-26 14:45 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2014-04-26 14:46 - 2014-04-26 14:46 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-04-26 14:46 - 2014-04-26 14:46 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Java
2014-04-26 14:46 - 2014-04-26 14:45 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-04-26 14:46 - 2014-04-26 14:45 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-04-26 14:20 - 2014-04-26 14:22 - 00004214 _____ () C:\WINDOWS\system32\jupdate-1.7.0_55-b14.log
2014-04-22 21:12 - 2014-04-22 21:12 - 00000000 ____D () C:\Program Files\Common Files\STORMWARE
2014-04-22 21:12 - 2014-04-22 21:12 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\PDF Writer
2014-04-22 21:12 - 2013-10-04 09:42 - 00147456 _____ (STORMWARE) C:\WINDOWS\system32\bzpdfc.dll
2014-04-22 21:12 - 2013-09-01 12:59 - 01103872 _____ () C:\WINDOWS\system32\CBLCtlsU.ocx
2014-04-22 21:12 - 2013-07-13 12:15 - 00805376 _____ () C:\WINDOWS\system32\EditCtlsU.ocx
2014-04-22 21:12 - 2013-07-12 22:57 - 00539648 _____ () C:\WINDOWS\system32\LblCtlsU.ocx
2014-04-22 21:12 - 2013-04-05 13:55 - 00476160 _____ () C:\WINDOWS\system32\TabStripCtlU.ocx
2014-04-22 21:12 - 2013-03-28 23:13 - 00645632 _____ () C:\WINDOWS\system32\BtnCtlsU.ocx
2014-04-22 21:12 - 2013-03-03 14:37 - 01061888 _____ () C:\WINDOWS\system32\ExLvwU.ocx
2014-04-22 21:12 - 2008-10-30 09:42 - 00227840 _____ (Bullzip) C:\WINDOWS\system32\bzFlRdr.dll
2014-04-22 21:12 - 2008-07-09 09:42 - 00103424 _____ (Bullzip) C:\WINDOWS\system32\bzDCT.dll
2014-04-22 21:10 - 2014-04-22 21:11 - 00000000 ____D () C:\Program Files\STORMWARE
2014-04-22 21:10 - 2014-04-22 21:10 - 00001670 _____ () C:\Documents and Settings\All Users\Plocha\Ekonomický systém POHODA 2014 START.lnk
2014-04-22 21:10 - 2014-04-22 21:10 - 00000000 ____D () C:\Program Files\Common Files\STORMWARE Shared
2014-04-22 21:10 - 2014-04-22 21:10 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\STORMWARE Office
2014-04-22 21:10 - 2014-04-22 21:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\STORMWARE
2014-04-20 18:28 - 2014-04-20 18:28 - 00000833 _____ () C:\Documents and Settings\All Users\Plocha\Play BF2 Online Now!.lnk
2014-04-20 18:28 - 2014-04-20 18:28 - 00000811 _____ () C:\Documents and Settings\All Users\Plocha\Battlefield 2.lnk
2014-04-20 18:26 - 2014-04-20 18:26 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2014-04-20 18:16 - 2014-04-20 18:16 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\EA GAMES
2014-04-20 16:37 - 2014-04-20 16:40 - 00000000 ____D () C:\AdwCleaner
2014-04-18 13:12 - 2014-05-10 00:17 - 00000000 ____D () C:\FRST
2014-04-18 12:48 - 2014-04-18 12:48 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-04-17 10:59 - 2014-04-17 10:59 - 00001643 _____ () C:\Documents and Settings\All Users\Plocha\Samsung Kies (Lite).lnk
2014-04-17 10:59 - 2014-04-17 10:59 - 00001633 _____ () C:\Documents and Settings\All Users\Plocha\Samsung Kies.lnk
2014-04-16 11:05 - 2014-01-23 18:23 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\WINDOWS\system32\secman.dll
2014-04-16 11:04 - 2014-01-23 18:31 - 00821824 _____ (Devguru Co., Ltd.) C:\WINDOWS\system32\dgderapi.dll
2014-04-16 11:04 - 2014-01-23 18:31 - 00319456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DIFxAPI.dll
2014-04-16 11:04 - 2014-01-23 18:31 - 00020032 _____ (Devguru Co., Ltd) C:\WINDOWS\system32\Drivers\dgderdrv.sys
2014-04-16 10:56 - 2014-04-16 10:56 - 00964897 _____ () C:\Documents and Settings\dharma\Dokumenty\bookmarks-2014-04-16.json
==================== One Month Modified Files and Folders =======
2014-05-10 00:18 - 2014-05-10 00:17 - 00017939 _____ () C:\Documents and Settings\dharma\Plocha\FRST.txt
2014-05-10 00:17 - 2014-05-10 00:17 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\dharma\Plocha\FRSTLauncher.exe
2014-05-10 00:17 - 2014-05-06 21:00 - 00000468 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{2F6CF079-573F-46C7-947D-64C8B2B166D4}.job
2014-05-10 00:17 - 2014-04-18 13:12 - 00000000 ____D () C:\FRST
2014-05-10 00:17 - 2009-09-02 09:37 - 00000000 ____D () C:\Documents and Settings\dharma\Dokumenty\Stažené soubory
2014-05-10 00:17 - 2009-02-15 20:19 - 00000000 ___HD () C:\Documents and Settings\dharma\Local Settings\Data aplikací
2014-05-10 00:17 - 2009-02-15 20:19 - 00000000 ____D () C:\Documents and Settings\dharma\Plocha
2014-05-10 00:15 - 2014-05-10 00:15 - 01053184 _____ (Farbar) C:\Documents and Settings\dharma\Plocha\FRST.exe
2014-05-10 00:07 - 2014-05-04 19:02 - 00000940 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-10 00:01 - 2012-02-13 13:17 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\uTorrent
2014-05-10 00:00 - 2009-02-15 20:19 - 00000000 ____D () C:\Documents and Settings\dharma
2014-05-09 23:55 - 2009-02-15 20:19 - 00000000 ___RD () C:\Documents and Settings\dharma\Dokumenty
2014-05-09 23:53 - 2009-02-16 17:58 - 00000000 ____D () C:\Documents and Settings\dharma\dwhelper
2014-05-09 23:52 - 2009-02-15 20:19 - 00000000 ___RD () C:\Documents and Settings\dharma\Data aplikací
2014-05-09 23:45 - 2012-06-14 22:33 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\Autodesk
2014-05-09 23:44 - 2009-02-15 20:47 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-05-09 23:44 - 2009-02-15 20:47 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-05-09 23:39 - 2009-02-15 20:47 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start
2014-05-09 23:39 - 2009-02-15 20:19 - 00000000 ___RD () C:\Documents and Settings\dharma\Nabídka Start
2014-05-09 23:29 - 2009-02-15 20:19 - 00000000 ___RD () C:\Documents and Settings\dharma\Nabídka Start\Programy
2014-05-09 23:23 - 2014-05-09 23:23 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\AVAST Software
2014-05-09 23:22 - 2014-05-09 23:22 - 00001733 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-05-09 23:22 - 2014-05-09 23:22 - 00000316 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-05-09 23:22 - 2014-05-09 23:22 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-05-09 23:21 - 2014-05-09 23:21 - 00776976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00411552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00271264 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-05-09 23:21 - 2014-05-09 23:21 - 00180632 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-05-09 23:21 - 2014-05-09 23:21 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-05-09 23:21 - 2014-05-09 23:21 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-05-09 23:18 - 2014-05-09 23:18 - 00000000 ____D () C:\Program Files\AVAST Software
2014-05-09 23:17 - 2014-05-09 23:14 - 00000000 ____D () C:\Documents and Settings\dharma\Plocha\Vyúčtování
2014-05-09 23:17 - 2013-01-11 01:21 - 00000000 ____D () C:\Documents and Settings\dharma\Plocha\Nová složka
2014-05-09 23:16 - 2014-03-06 11:24 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-05-09 22:28 - 2014-03-06 22:36 - 00107520 _____ () C:\Documents and Settings\dharma\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-09 20:15 - 2012-07-22 21:37 - 00000000 ____D () C:\Documents and Settings\dharma\Dokumenty\StreamTransport
2014-05-09 20:07 - 2009-02-15 20:14 - 00032540 ____N () C:\WINDOWS\SchedLgU.Txt
2014-05-09 19:07 - 2014-05-04 19:02 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-09 18:38 - 2010-01-09 20:16 - 00000000 ____D () C:\Documents and Settings\dharma\Local Settings\Data aplikací\Adobe
2014-05-09 18:23 - 2013-11-14 19:06 - 00692400 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-05-09 18:23 - 2013-11-14 19:06 - 00070832 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-05-09 17:12 - 2012-04-30 13:25 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\YouTube Downloader
2014-05-09 16:01 - 2014-03-31 15:18 - 00000371 ___SH () C:\WINDOWS\hlistHMFAxCore5decdc700443adec5f3e84408e3098ff
2014-05-09 16:00 - 2014-03-31 15:18 - 00000126 ___SH () C:\WINDOWS\wlistHMFAxCore5decdc700443adec5f3e84408e3098ff
2014-05-09 15:25 - 2014-05-06 17:49 - 00000000 ____D () C:\Documents and Settings\dharma\Plocha\WEB
2014-05-09 14:55 - 2011-03-25 09:41 - 00228613 _____ () C:\lxdd.log
2014-05-09 14:55 - 2011-03-23 18:09 - 00000254 ____N () C:\WINDOWS\wiadebug.log
2014-05-09 06:58 - 2009-02-15 20:45 - 00000281 __RSH () C:\boot.ini
2014-05-09 06:58 - 2003-04-16 14:00 - 00000962 _____ () C:\WINDOWS\win.ini
2014-05-09 06:58 - 2003-04-16 14:00 - 00000277 _____ () C:\WINDOWS\system.ini
2014-05-09 06:56 - 2003-04-16 14:00 - 00012598 _____ () C:\WINDOWS\system32\wpa.dbl
2014-05-09 06:55 - 2011-03-23 18:09 - 00000048 ____N () C:\WINDOWS\wiaservc.log
2014-05-09 06:55 - 2009-02-15 20:09 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-05-07 21:48 - 2009-02-15 20:19 - 00000272 ___SH () C:\Documents and Settings\dharma\ntuser.ini
2014-05-07 21:34 - 2009-02-15 20:19 - 00000000 ___RD () C:\Documents and Settings\dharma\Dokumenty\Obrázky
2014-05-06 21:00 - 2009-02-15 20:19 - 00000000 ___RD () C:\Documents and Settings\dharma\Oblíbené položky
2014-05-05 18:41 - 2009-05-27 18:33 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-05-04 19:38 - 2014-03-03 20:59 - 00820170 _____ () C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2014-05-04 19:24 - 2014-05-04 19:01 - 00000000 ____D () C:\Program Files\Google
2014-05-04 19:18 - 2014-03-03 20:59 - 02137215 _____ () C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-842925246-1580436667-1060284298-1003-0.dat
2014-05-04 19:16 - 2014-05-04 19:00 - 00000000 ____D () C:\Documents and Settings\dharma\Local Settings\Data aplikací\Google
2014-05-04 19:15 - 2014-05-04 19:15 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-05-04 19:15 - 2014-05-04 19:15 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2014-05-04 19:02 - 2014-05-04 19:02 - 00000000 ____D () C:\Program Files\MyFree Codec
2014-05-04 19:02 - 2014-05-04 19:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\MyFree Codec
2014-05-04 18:55 - 2014-05-04 18:54 - 00000000 ____D () C:\WINDOWS\LastGood
2014-05-04 18:54 - 2012-08-10 17:44 - 00000000 ____D () C:\Program Files\Samsung
2014-05-04 18:02 - 2012-08-10 17:45 - 00000000 ____D () C:\Program Files\MarkAny
2014-04-26 16:08 - 2010-12-30 12:37 - 00000682 _____ () C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2014-04-26 16:07 - 2009-08-06 00:17 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-26 14:47 - 2014-04-26 14:47 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-04-26 14:46 - 2014-04-26 14:46 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-04-26 14:46 - 2014-04-26 14:46 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Java
2014-04-26 14:45 - 2014-04-26 14:47 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-04-26 14:45 - 2014-04-26 14:47 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2014-04-26 14:45 - 2014-04-26 14:46 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-04-26 14:45 - 2014-04-26 14:46 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-04-26 14:45 - 2009-02-15 20:33 - 00000000 ____D () C:\Program Files\Java
2014-04-26 14:22 - 2014-04-26 14:20 - 00004214 _____ () C:\WINDOWS\system32\jupdate-1.7.0_55-b14.log
2014-04-23 09:58 - 2013-06-26 09:56 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\vlc
2014-04-22 21:12 - 2014-04-22 21:12 - 00000000 ____D () C:\Program Files\Common Files\STORMWARE
2014-04-22 21:12 - 2014-04-22 21:12 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\PDF Writer
2014-04-22 21:11 - 2014-04-22 21:10 - 00000000 ____D () C:\Program Files\STORMWARE
2014-04-22 21:10 - 2014-04-22 21:10 - 00001670 _____ () C:\Documents and Settings\All Users\Plocha\Ekonomický systém POHODA 2014 START.lnk
2014-04-22 21:10 - 2014-04-22 21:10 - 00000000 ____D () C:\Program Files\Common Files\STORMWARE Shared
2014-04-22 21:10 - 2014-04-22 21:10 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\STORMWARE Office
2014-04-22 21:10 - 2014-04-22 21:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\STORMWARE
2014-04-22 21:10 - 2009-02-15 20:47 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-04-20 18:40 - 2012-07-19 13:29 - 00000671 _____ () C:\Documents and Settings\dharma\Plocha\BF2.lnk
2014-04-20 18:28 - 2014-04-20 18:28 - 00000833 _____ () C:\Documents and Settings\All Users\Plocha\Play BF2 Online Now!.lnk
2014-04-20 18:28 - 2014-04-20 18:28 - 00000811 _____ () C:\Documents and Settings\All Users\Plocha\Battlefield 2.lnk
2014-04-20 18:27 - 2009-02-15 20:07 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-04-20 18:26 - 2014-04-20 18:26 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2014-04-20 18:16 - 2014-04-20 18:16 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\EA GAMES
2014-04-20 18:16 - 2009-02-15 23:47 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-04-20 17:08 - 2011-02-21 08:33 - 00138992 _____ () C:\WINDOWS\system32\Drivers\PnkBstrK.sys
2014-04-20 17:07 - 2011-02-21 08:31 - 00281152 _____ () C:\WINDOWS\system32\PnkBstrB.exe
2014-04-20 17:07 - 2010-09-05 14:17 - 00281152 _____ () C:\WINDOWS\system32\PnkBstrB.xtr
2014-04-20 16:40 - 2014-04-20 16:37 - 00000000 ____D () C:\AdwCleaner
2014-04-20 14:10 - 2011-08-11 08:34 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-04-18 12:48 - 2014-04-18 12:48 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-04-18 11:17 - 2010-09-05 14:17 - 00281152 _____ () C:\WINDOWS\system32\PnkBstrB.ex0
2014-04-17 11:06 - 2012-08-10 17:48 - 00000000 ____D () C:\Documents and Settings\dharma\Local Settings\Data aplikací\Samsung
2014-04-17 11:03 - 2012-08-10 17:48 - 00000000 ____D () C:\Documents and Settings\dharma\Data aplikací\Samsung
2014-04-17 10:59 - 2014-04-17 10:59 - 00001643 _____ () C:\Documents and Settings\All Users\Plocha\Samsung Kies (Lite).lnk
2014-04-17 10:59 - 2014-04-17 10:59 - 00001633 _____ () C:\Documents and Settings\All Users\Plocha\Samsung Kies.lnk
2014-04-17 10:52 - 2013-03-05 21:27 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Samsung
2014-04-17 10:49 - 2012-08-10 17:44 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Samsung
2014-04-16 11:01 - 2010-01-19 16:08 - 00000000 ____D () C:\Documents and Settings\dharma\Local Settings\Data aplikací\Downloaded Installations
2014-04-16 10:56 - 2014-04-16 10:56 - 00964897 _____ () C:\Documents and Settings\dharma\Dokumenty\bookmarks-2014-04-16.json
==================== Bamital & volsnap Check =================
C:\WINDOWS\explorer.exe
[2003-04-16 14:00] - [2008-04-14 09:52] - 1034240 ____N (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1
C:\WINDOWS\system32\winlogon.exe
[2003-04-16 14:00] - [2008-04-14 09:52] - 0507904 _____ (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea
C:\WINDOWS\system32\svchost.exe
[2003-04-16 14:00] - [2008-04-14 09:52] - 0014336 _____ (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\WINDOWS\system32\services.exe
[2003-04-16 14:00] - [2009-02-09 13:25] - 0111104 _____ (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\WINDOWS\system32\User32.dll
[2003-04-16 14:00] - [2008-04-14 09:52] - 0578560 _____ (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53
C:\WINDOWS\system32\userinit.exe
[2003-04-16 14:00] - [2008-04-14 09:52] - 0026112 _____ (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\volsnap.sys
[2003-04-16 14:00] - [2008-04-14 08:42] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:37.27 GB) (Free:15.04 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:465.75 GB) (Free:6.57 GB) NTFS
Drive f: (Místní disk) (Fixed) (Total:74.53 GB) (Free:5.57 GB) NTFS
Available physical RAM: 1247.09 MB
Total physical RAM: 1791.23 MB
Percentage of memory in use: 30%
==================== MBR and Partition Table ==================
Disk: 0 (Size: 37 GB) (Disk ID: 1CE71CE6)
Partition 1: (Active) - (Size=37 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows XP) (Size: 75 GB) (Disk ID: 82842864)
Partition 1: (Not Active) - (Size=75 GB) - (Type=42)
Disk: 2 (Size: 466 GB) (Disk ID: F81BF81B)
Partition 1: (Active) - (Size=466 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{2F6CF079-573F-46C7-947D-64C8B2B166D4}.job => C:\WINDOWS\system32\msfeedssync.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:264A9BB7
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Documents and Settings\dharma\Plocha" je 390 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr
"C:\Documents and Settings\dharma\Data aplikac\Seznam.cz\bin\wszndesktop.exe" -q [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop
"C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FaxCenterServer
"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1
%systemroot%\system32\dumprep 0 -k [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Kernel and Hardware Abstraction Layer
C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck
C:\Program Files\Samsung\Kies\Kies.exe /preload [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload
"C:\Program Files\Lexmark 2500 Series\lxddamon.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent
rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXDDtime.dll,_RunDLLEntry@16 [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxddamon
"C:\Program Files\Lexmark 2500 Series\lxddmon.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LXDDCATS
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxddmon.exe
C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon
"C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz
"C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL
Reim ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce
Reim ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
Reim ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Adobe Gamma Loader.lnk
C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^EPSON Status Monitor 3 Environment Check 2.lnk
C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Logitech SetPoint.lnk
C:\PROGRA~1\Logitech\SetPoint\SetPoint.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dharma^Nabdka Start^Programy^Po sputn^MagicDisc.lnk
C:\PROGRA~1\MAGICD~1\MAGICD~1.EXE [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dharma^Nabdka Start^Programy^Po sputn^Vesmr na dlani.lnk
C:\PROGRA~1\NONOBL~1\vesmir.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services
ose REG_DWORD 0x3
Nero BackItUp Scheduler 4.0 REG_DWORD 0x2
Lavasoft Ad-Aware Service REG_DWORD 0x2
Adobe LM Service REG_DWORD 0x3
NeroRegInCDSrv REG_DWORD 0x2
InCDsrvR REG_DWORD 0x2
Adobe Version Cue CS2 REG_DWORD 0x2
gusvc REG_DWORD 0x2
gupdate1c98fa28e326f70 REG_DWORD 0x2
NVSvc REG_DWORD 0x2
Adobe Version Cue CS4 REG_DWORD 0x3
EPSONStatusAgent2 REG_DWORD 0x2
JavaQuickStarterService REG_DWORD 0x2
ForcewareWebInterface REG_DWORD 0x2
idsvc REG_DWORD 0x3
IDriverT REG_DWORD 0x3
lxdd_device REG_DWORD 0x2
nvUpdatusService REG_DWORD 0x2
CyberLink PowerDVD 11.0 Service REG_DWORD 0x2
CyberLink PowerDVD 11.0 Monitor Service REG_DWORD 0x2
CryptSvc REG_DWORD 0x3
CLHNServiceForPowerDVD REG_DWORD 0x2
gupdatem REG_DWORD 0x3
gupdate REG_DWORD 0x2
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\CyberLink\\PowerDVD 9\\PowerDVD9.exe"="C:\\Program Files\\CyberLink\\PowerDVD 9\\PowerDVD9.exe:*:Enabled:CyberLink PowerDVD 9.0"
"C:\\Program Files\\Lexmark 2500 Series\\app4r.exe"="C:\\Program Files\\Lexmark 2500 Series\\App4R.exe:*:Enabled:BorgListener"
"C:\\Documents and Settings\\dharma\\Dokumenty\\Staen soubory\\detect_routers\\detect_routers.exe"="C:\\Documents and Settings\\dharma\\Dokumenty\\Staen soubory\\detect_routers\\detect_routers.exe:*:Enabled:Detect Multiple Routers"
"C:\\Program Files\\Simple Port Forwarding\\spf.exe"="C:\\Program Files\\Simple Port Forwarding\\spf.exe:*:Enabled:Simple Port Forwarding By PcWinTech.com"
"C:\\Program Files\\Simple Port Tester\\spt.exe"="C:\\Program Files\\Simple Port Tester\\spt.exe:*:Enabled:Simple Port Tester"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\WINDOWS\\system32\\sessmgr.exe"="C:\\WINDOWS\\system32\\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Lexmark 2500 Series\\lxddamon.exe"="C:\\Program Files\\Lexmark 2500 Series\\lxddamon.exe:*:Enabled:Device Monitor Appliaction"
"C:\\Program Files\\Lexmark 2500 Series\\App4R.exe"="C:\\Program Files\\Lexmark 2500 Series\\App4R.exe:*:Enabled: "
"C:\\Program Files\\Winamp\\winamp.exe"="C:\\Program Files\\Winamp\\winamp.exe:*:Disabled:Winamp"
"F:\\Program Files\\Battlefield 2\\BF2.exe"="F:\\Program Files\\Battlefield 2\\BF2.exe:*:Enabled:BF2"
"C:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"="C:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxddpswx.exe"="C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxddpswx.exe:*:Enabled: "
"C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxddtime.exe"="C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxddtime.exe:*:Enabled: "
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe"="C:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\WINDOWS\\system32\\muzapp.exe"="C:\\WINDOWS\\system32\\muzapp.exe:*:Enabled:MUZ AOD APP player"
"D:\\Program Files\\World_of_Tanks\\WOTLauncher.exe"="D:\\Program Files\\World_of_Tanks\\WOTLauncher.exe:*:Enabled:World of Tanks Launcher"
"D:\\Program Files\\World_of_Tanks\\WorldOfTanks.exe"="D:\\Program Files\\World_of_Tanks\\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\\Program Files\\Simple Port Forwarding\\spf.exe"="C:\\Program Files\\Simple Port Forwarding\\spf.exe:*:Enabled:Simple Port Forwarding By PcWinTech.com"
"C:\\Program Files\\VSO\\VSO Downloader\\3\\VsoDownloader.exe"="C:\\Program Files\\VSO\\VSO Downloader\\3\\VsoDownloader.exe:*:Enabled:VSO Downloader"
"D:\\Program Files\\VideoLAN\\VLC\\vlc.exe"="D:\\Program Files\\VideoLAN\\VLC\\vlc.exe:*:Enabled:VLC media player 2.0.8"
"D:\\Program Files\\eMule\\emule.exe"="D:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"
"C:\\Program Files\\Simple Port Tester\\spt.exe"="C:\\Program Files\\Simple Port Tester\\spt.exe:*:Enabled:Simple Port Tester"
"C:\\Documents and Settings\\dharma\\Data aplikac\\uTorrent\\uTorrent.exe"="C:\\Documents and Settings\\dharma\\Data aplikac\\uTorrent\\uTorrent.exe:*:Enabled:Torrent"
"C:\\Program Files\\Tomabo\\YouTube Video Downloader\\YouTubeVideoDownloader.exe"="C:\\Program Files\\Tomabo\\YouTube Video Downloader\\YouTubeVideoDownloader.exe:*:Enabled:YouTube Video Downloader"
"D:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe"="D:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe:*:Enabled:Battlefield 2"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"54321:TCP"="54321:TCP:*:Enabled:uTorrent"
"5400:TCP"="5400:TCP:*:Enabled:ed"
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
- Přílohy
-
- Addition.rar
- (9.52 KiB) Staženo 58 x
-
Rudy
- Site Admin
- Příspěvky: 119537
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený počítač
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Pak znovu spusťte FRST a klikněte na >Fix<. Zkopírujte sem pak log, který se na závěr vytvoří.Start
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\䍻䙁䕅䅆ⵃ〰㜱〭〰ⴰ〰㔰䄭䍂䕄䙆䑅䉃絁 [2014-03-29]
C:\Documents and Settings\dharma\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:264A9BB7
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1
%systemroot%\system32\dumprep 0 -k [x]
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený počítač
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:10-05-2014
Ran by dharma at 2014-05-10 15:13:31 Run:1
Running from C:\Documents and Settings\dharma\Plocha
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\䍻䙁䕅䅆ⵃ〰㜱〭〰ⴰ〰㔰䄭䍂䕄䙆䑅䉃絁 [2014-03-29]
C:\Documents and Settings\dharma\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:264A9BB7
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1
%systemroot%\system32\dumprep 0 -k [x]
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe
End
*****************
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\䍻䙁䕅䅆ⵃ〰㜱〭〰ⴰ〰㔰䄭䍂䕄䙆䑅䉃絁 => Moved successfully.
C:\Documents and Settings\dharma\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Documents and Settings\All Users\Data aplikací\TEMP => ":264A9BB7" ADS removed successfully.
==== End of Fixlog ====
Ran by dharma at 2014-05-10 15:13:31 Run:1
Running from C:\Documents and Settings\dharma\Plocha
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\䍻䙁䕅䅆ⵃ〰㜱〭〰ⴰ〰㔰䄭䍂䕄䙆䑅䉃絁 [2014-03-29]
C:\Documents and Settings\dharma\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:264A9BB7
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1
%systemroot%\system32\dumprep 0 -k [x]
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe
End
*****************
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\䍻䙁䕅䅆ⵃ〰㜱〭〰ⴰ〰㔰䄭䍂䕄䙆䑅䉃絁 => Moved successfully.
C:\Documents and Settings\dharma\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Documents and Settings\All Users\Data aplikací\TEMP => ":264A9BB7" ADS removed successfully.
==== End of Fixlog ====
-
Rudy
- Site Admin
- Příspěvky: 119537
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený počítač
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený počítač
Stále se to kouše. Mám podezření, že si explorer.exe bere víc paměti než je zdrávo.
-
Rudy
- Site Admin
- Příspěvky: 119537
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený počítač
Dejte log ComboFix:
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se
jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine
aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,
pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k
nezadoucim kolizim s rezidentem antispyware.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený počítač
Bohužel, pustil jsem to dvakrát, ale v obou případech u bodu 50 vyskočila modrá smrt s hláškou BAD_POOL_HEADER.
Log tedy nemám.
Log tedy nemám.
-
Rudy
- Site Admin
- Příspěvky: 119537
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený počítač
To není dobré znamení. Zkuste spustit v nouz. režimu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?