Z mé E-mailové adresy je pravděpodobně odesílám SPAM, chodí mi mnoho zpráv "Undelivered Mail Returned to Sender", které jsem neodeslal.
Nevím, zda je to odesíláno z mého PC, nebo někdo někde použil mou adresu.
Eset Smart Security 7 nenašel nic.
Děkuji za pomoc.
********************************
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:25-06-2014
Ran by MJ (administrator) on MJ-PC on 25-06-2014 19:35:43
Running from C:\Users\MJ\Desktop
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\CoreTemp32_0.99.8.0\Core Temp.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
() C:\Windows\System32\PSIService.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(SMART Technologies ULC) C:\Program Files\SMART Technologies\Education Software\ResponseHardwareService.exe
(SMART Technologies) C:\Program Files\SMART Technologies\Education Software\SMARTHelperService.exe
(Highresolution Enterprises) C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonSvc.exe
(Highresolution Enterprises) C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(SMART Technologies) C:\Program Files\SMART Technologies\Education Software\SMARTNotification.exe
(SMART Technologies) C:\Program Files\SMART Technologies\Education Software\SMARTTrayIcon.exe
(SMART Technologies) C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe
(SMART Technologies ULC) C:\Program Files\SMART Technologies\Education Software\DesktopMenu.exe
(Joyent, Inc) C:\Program Files\SMART Technologies\Education Software\sbsdk-server\SBWDKService.exe
(BlazeVideo Company) C:\Program Files\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe
(Joyent, Inc) C:\Program Files\SMART Technologies\Education Software\ResponseConnectorService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(SMART Technologies ULC) C:\Program Files\SMART Technologies\Education Software\ResponseSoftwareService.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Sony) C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe
() C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MJ\AppData\Local\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\MJ\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11487848 2011-12-05] (Realtek Semiconductor)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM\...\Run: [HP Update 3400C] => C:\Users\MJ\Downloads\sj652en\hpupdate.exe [32768 2002-02-01] (Hewlett-Packard)
HKLM\...\Run: [TkBellExe] => c:\program files\real\realplayer\Update\realsched.exe [295512 2013-10-10] (RealNetworks, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5110672 2013-09-12] (ESET)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM\...\Run: [SMART Floating Tools] => C:\Program Files\SMART Technologies\Education Software\FloatingTools.exe [9024304 2013-11-20] (SMART Technologies ULC)
HKLM\...\Run: [SMARTNotification] => C:\Program Files\SMART Technologies\Education Software\SMARTNotification.exe [204592 2014-02-12] (SMART Technologies)
HKLM\...\Run: [SMART Tray Tools] => C:\Program Files\SMART Technologies\Education Software\SMARTTrayIcon.exe [744752 2014-02-12] (SMART Technologies)
HKLM\...\Run: [SMART Board Service] => C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe [1933616 2014-02-12] (SMART Technologies)
HKLM\...\Run: [sbsdk-server] => C:\Program Files\SMART Technologies\Education Software\sbsdk-server\NodeLauncher.exe [62768 2013-08-22] (SMART Technologies)
HKLM\...\Run: [Response Desktop Menu] => C:\Program Files\SMART Technologies\Education Software\DesktopMenu.exe [1312560 2013-11-20] (SMART Technologies ULC)
HKLM\...\Run: [ResponseConnectorService] => C:\Program Files\SMART Technologies\Education Software\response-connector-server\NodeLauncher.exe [40448 2013-11-20] (SMART Technologies)
HKU\S-1-5-21-4279725726-2668247726-1728232190-1001\...\Run: [Google Update] => C:\Users\MJ\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2012-01-13] (Google Inc.)
HKU\S-1-5-21-4279725726-2668247726-1728232190-1001\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [466656 2014-05-23] (Sony)
HKU\S-1-5-21-4279725726-2668247726-1728232190-1001\...\Run: [BlazeServoTool] => C:\Program Files\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe [286720 2010-03-06] (BlazeVideo Company)
HKU\S-1-5-21-4279725726-2668247726-1728232190-1001\...\MountPoints2: {3afea7a5-4c11-11e1-a431-0019dbf700d5} - E:\Startme.exe
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: SMART Notebook Download Utility - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\NotebookPlugin.dll (SMART Technologies ULC.)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\MJ\AppData\Roaming\Mozilla\Firefox\Profiles\u8dd3nqi.default
FF Homepage: www.seznam.cz
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_139.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\MJ\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\MJ\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\MJ\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Ask Toolbar - C:\Users\MJ\AppData\Roaming\Mozilla\Firefox\Profiles\u8dd3nqi.default\Extensions\toolbar@ask.com [2013-10-02]
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-10-10]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-02-20]
Chrome:
=======
CHR HomePage: hxxp://www.seznam.cz/
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\MJ\AppData\Local\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\MJ\AppData\Local\Google\Chrome\Application\35.0.1916.153\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\MJ\AppData\Local\Google\Chrome\Application\35.0.1916.153\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll No File
CHR Plugin: (RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll No File
CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U4) - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.40.255) - C:\Windows\system32\npDeployJava1.dll No File
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll No File
CHR Extension: (YouTube) - C:\Users\MJ\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-01-13]
CHR Extension: (Vyhledávání Google) - C:\Users\MJ\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-01-13]
CHR Extension: (RealDownloader) - C:\Users\MJ\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-01-10]
CHR Extension: (EXIF Viewer) - C:\Users\MJ\AppData\Local\Google\Chrome\User Data\Default\Extensions\lplmljfembbkocngnlkkdgabpnfokmnl [2012-02-13]
CHR Extension: (Peněženka Google) - C:\Users\MJ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Gmail) - C:\Users\MJ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-01-13]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
========================== Services (Whitelisted) =================
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1337752 2013-09-12] (ESET)
R3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1074480 2014-04-02] (Flexera Software LLC)
R2 ProtexisLicensing; C:\Windows\system32\PSIService.exe [177704 2007-06-05] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 Response Hardware; C:\Program Files\SMART Technologies\Education Software\ResponseHardwareService.exe [20272 2013-11-20] (SMART Technologies ULC)
R2 SMARTHelperService; C:\Program Files\SMART Technologies\Education Software\SMARTHelperService.exe [538416 2014-02-12] (SMART Technologies)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
R2 XMouseButton Launcher; C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonSvc.exe [73216 2012-03-04] (Highresolution Enterprises) [File not signed]
==================== Drivers (Whitelisted) ====================
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [188808 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [134248 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [174400 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [37416 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [49240 2013-09-17] (ESET)
S3 IPFilter; C:\Windows\System32\DRIVERS\IPFilter.sys [11136 2002-04-11] (Microsoft Corporation) [File not signed]
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [94336 2012-03-26] (ITE )
R3 NuidFltr; C:\Windows\System32\DRIVERS\NuidFltr.sys [21784 2011-08-01] (Microsoft Corporation)
S3 PASCO; C:\Windows\System32\Drivers\PSSensor.sys [15744 2012-08-24] (PASCO scientific) [File not signed]
S3 silabenm; C:\Windows\System32\DRIVERS\silabenm.sys [49520 2011-06-24] (Silicon Laboratories, Inc.)
S3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [69488 2011-06-24] (Silicon Laboratories)
R3 SMARTMouseFilterx86; C:\Windows\System32\DRIVERS\SMARTMouseFilterx86.sys [8192 2014-02-12] (SMART Technologies)
S3 SMARTSRVSDC330; C:\Windows\System32\Drivers\SMARTDocCamGen2.sys [23280 2012-03-08] (SMART TECHNOLOGIES)
R3 SMARTVHidMini2000x86; C:\Windows\System32\DRIVERS\SMARTVHidMini2000x86.sys [7680 2013-03-07] (SMART Technologies)
S3 SMARTVTabletPCx86; C:\Windows\System32\DRIVERS\SMARTVTabletPCx86.sys [15872 2013-03-07] (SMART Technologies ULC)
R3 ALSysIO; \??\C:\Users\MJ\AppData\Local\Temp\ALSysIO.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-06-25 19:35 - 2014-06-25 19:36 - 00021923 _____ () C:\Users\MJ\Desktop\FRST.txt
2014-06-25 19:33 - 2014-06-25 19:35 - 00000000 ____D () C:\FRST
2014-06-25 19:13 - 2014-06-25 19:13 - 00112640 _____ (forum.viry.cz) C:\Users\MJ\Desktop\FRSTLauncher.exe
2014-06-25 19:12 - 2014-06-25 19:12 - 00112640 _____ (forum.viry.cz) C:\Users\MJ\Downloads\Nepotvrzeno 471908.crdownload
2014-06-25 19:11 - 2014-06-25 19:11 - 00112640 _____ (forum.viry.cz) C:\Users\MJ\Downloads\Nepotvrzeno 250685.crdownload
2014-06-25 19:10 - 2014-06-25 19:11 - 01073152 _____ (Farbar) C:\Users\MJ\Desktop\FRST.exe
2014-06-23 22:56 - 2014-06-25 19:01 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf8f258d6ed0ed.job
2014-06-21 08:43 - 2014-06-21 08:44 - 00269824 _____ () C:\Users\MJ\Downloads\Predám_PUBLIKÁCIE_2014.xls
2014-06-20 21:28 - 2014-06-20 21:28 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-18 17:46 - 2014-06-25 18:51 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4279725726-2668247726-1728232190-1001UA1cf8b0c7cb1b8b0.job
2014-06-13 14:44 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-13 14:44 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-13 14:44 - 2014-05-30 11:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-13 14:44 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-13 14:44 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-13 14:44 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-13 14:44 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-13 14:44 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-13 14:44 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-13 14:44 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-13 14:44 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-13 14:44 - 2014-05-30 10:28 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-13 14:44 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-13 14:44 - 2014-05-30 10:21 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-13 14:44 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-13 14:44 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-13 14:44 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-13 14:44 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-13 14:44 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-13 14:44 - 2014-05-30 09:57 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-13 14:44 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-13 14:44 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-13 14:44 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-13 14:44 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-13 14:44 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-13 14:44 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-13 14:44 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-13 14:44 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-13 14:36 - 2014-06-20 14:10 - 00044032 _____ () C:\Users\MJ\Downloads\Jenčík-červen.xls
2014-06-13 14:34 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-13 14:34 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-13 14:34 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-13 14:34 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-13 14:33 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-13 14:33 - 2014-04-05 04:25 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-13 14:33 - 2014-04-05 04:24 - 00187840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-12 14:39 - 2014-05-08 11:06 - 02742784 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-12 14:39 - 2014-05-08 11:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-06-09 20:53 - 2014-06-09 20:54 - 79847224 _____ () C:\Users\MJ\Downloads\tutorial - stara fotka.rar
2014-06-04 15:32 - 2014-06-04 15:33 - 07758209 _____ () C:\Users\MJ\Downloads\Jambo.wmv
2014-06-03 22:45 - 2014-06-03 22:47 - 35004275 _____ () C:\Users\MJ\Downloads\Do-zooparku-s-fotoaparátem.notebook
2014-06-03 22:43 - 2014-06-03 22:44 - 25081982 _____ () C:\Users\MJ\Downloads\Stromy.pptx
2014-06-03 22:23 - 2014-06-03 22:33 - 177690716 _____ () C:\Users\MJ\Downloads\Moje-škola,-moje-třída.mpg
2014-06-03 21:52 - 2014-06-03 22:12 - 353237480 _____ () C:\Users\MJ\Downloads\4.A.pptx
2014-05-30 06:19 - 2014-05-30 06:20 - 03539509 _____ () C:\Users\MJ\Desktop\KNIHY2008offi.xlsx
2014-05-27 14:42 - 2014-06-25 12:50 - 00001972 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-05-26 19:33 - 2014-05-26 19:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-05-26 19:32 - 2014-05-26 19:32 - 01110476 _____ () C:\Users\MJ\Downloads\7z920 (1).exe
2014-05-26 17:11 - 2014-05-26 17:11 - 01042206 _____ () C:\Users\MJ\Downloads\444.bmp
==================== One Month Modified Files and Folders =======
2014-06-25 19:36 - 2014-06-25 19:35 - 00021923 _____ () C:\Users\MJ\Desktop\FRST.txt
2014-06-25 19:35 - 2014-06-25 19:33 - 00000000 ____D () C:\FRST
2014-06-25 19:22 - 2012-04-02 16:21 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-25 19:13 - 2014-06-25 19:13 - 00112640 _____ (forum.viry.cz) C:\Users\MJ\Desktop\FRSTLauncher.exe
2014-06-25 19:12 - 2014-06-25 19:12 - 00112640 _____ (forum.viry.cz) C:\Users\MJ\Downloads\Nepotvrzeno 471908.crdownload
2014-06-25 19:11 - 2014-06-25 19:11 - 00112640 _____ (forum.viry.cz) C:\Users\MJ\Downloads\Nepotvrzeno 250685.crdownload
2014-06-25 19:11 - 2014-06-25 19:10 - 01073152 _____ (Farbar) C:\Users\MJ\Desktop\FRST.exe
2014-06-25 19:01 - 2014-06-23 22:56 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf8f258d6ed0ed.job
2014-06-25 18:51 - 2014-06-18 17:46 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4279725726-2668247726-1728232190-1001UA1cf8b0c7cb1b8b0.job
2014-06-25 17:51 - 2014-05-10 16:40 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4279725726-2668247726-1728232190-1001Core1cf6c5dcd483ffd.job
2014-06-25 13:28 - 2012-01-16 13:40 - 00000000 ____D () C:\Users\MJ\Documents\Soubory PSP
2014-06-25 12:54 - 2009-07-14 06:34 - 00022224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-25 12:54 - 2009-07-14 06:34 - 00022224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-25 12:51 - 2012-01-16 13:54 - 01018626 _____ () C:\Windows\DPINST.LOG
2014-06-25 12:50 - 2014-05-27 14:42 - 00001972 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-06-25 12:50 - 2012-03-09 09:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-06-25 12:50 - 2012-01-13 21:04 - 01322177 _____ () C:\Windows\WindowsUpdate.log
2014-06-25 12:49 - 2012-01-14 11:51 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-06-25 12:48 - 2012-03-02 13:40 - 00002609 _____ () C:\Users\MJ\Documents\untitled.teacher
2014-06-25 12:47 - 2014-02-15 11:39 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf2a31e37caa5e.job
2014-06-25 12:46 - 2012-01-13 21:41 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-25 12:46 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-25 12:46 - 2009-07-14 06:39 - 00126313 _____ () C:\Windows\setupact.log
2014-06-23 23:22 - 2012-04-02 16:21 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-06-23 23:22 - 2012-01-14 14:56 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-06-23 22:03 - 2010-11-20 23:01 - 00006436 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-21 08:44 - 2014-06-21 08:43 - 00269824 _____ () C:\Users\MJ\Downloads\Predám_PUBLIKÁCIE_2014.xls
2014-06-21 07:49 - 2012-06-26 19:12 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-06-20 21:28 - 2014-06-20 21:28 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-20 17:39 - 2012-02-21 21:43 - 05336019 _____ () C:\Users\MJ\Desktop\Účetnictví .xlsx
2014-06-20 14:10 - 2014-06-13 14:36 - 00044032 _____ () C:\Users\MJ\Downloads\Jenčík-červen.xls
2014-06-17 19:16 - 2013-06-16 19:28 - 00000000 ____D () C:\Users\MJ\Desktop\foto tříd 2012-2013
2014-06-16 16:55 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-06-13 19:47 - 2012-01-13 21:24 - 00002350 _____ () C:\Users\MJ\Desktop\Google Chrome.lnk
2014-06-13 00:05 - 2012-01-13 21:59 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-12 14:39 - 2013-08-15 01:26 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-12 14:29 - 2012-01-13 21:44 - 92708840 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-09 20:54 - 2014-06-09 20:53 - 79847224 _____ () C:\Users\MJ\Downloads\tutorial - stara fotka.rar
2014-06-04 15:33 - 2014-06-04 15:32 - 07758209 _____ () C:\Users\MJ\Downloads\Jambo.wmv
2014-06-03 22:47 - 2014-06-03 22:45 - 35004275 _____ () C:\Users\MJ\Downloads\Do-zooparku-s-fotoaparátem.notebook
2014-06-03 22:44 - 2014-06-03 22:43 - 25081982 _____ () C:\Users\MJ\Downloads\Stromy.pptx
2014-06-03 22:33 - 2014-06-03 22:23 - 177690716 _____ () C:\Users\MJ\Downloads\Moje-škola,-moje-třída.mpg
2014-06-03 22:12 - 2014-06-03 21:52 - 353237480 _____ () C:\Users\MJ\Downloads\4.A.pptx
2014-06-03 14:18 - 2014-05-15 19:18 - 00044032 _____ () C:\Users\MJ\Downloads\květen-Jenčík.xls
2014-05-30 11:18 - 2014-06-13 14:44 - 17271296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 11:02 - 2014-06-13 14:44 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 11:02 - 2014-06-13 14:44 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 10:44 - 2014-06-13 14:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 10:43 - 2014-06-13 14:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 10:42 - 2014-06-13 14:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 10:38 - 2014-06-13 14:44 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 10:34 - 2014-06-13 14:44 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 10:33 - 2014-06-13 14:44 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 10:30 - 2014-06-13 14:44 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 10:28 - 2014-06-13 14:44 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 10:28 - 2014-06-13 14:44 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 10:27 - 2014-06-13 14:44 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 10:21 - 2014-06-13 14:44 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 10:16 - 2014-06-13 14:44 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 10:10 - 2014-06-13 14:44 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 10:06 - 2014-06-13 14:44 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 10:04 - 2014-06-13 14:44 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 10:02 - 2014-06-13 14:44 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 09:57 - 2014-06-13 14:44 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 09:56 - 2014-06-13 14:44 - 04244992 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 09:54 - 2014-06-13 14:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 09:50 - 2014-06-13 14:44 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 09:49 - 2014-06-13 14:44 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 09:40 - 2014-06-13 14:44 - 11725312 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 09:21 - 2014-06-13 14:44 - 01790976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 09:15 - 2014-06-13 14:44 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 09:13 - 2014-06-13 14:44 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-30 06:20 - 2014-05-30 06:19 - 03539509 _____ () C:\Users\MJ\Desktop\KNIHY2008offi.xlsx
2014-05-26 19:33 - 2014-05-26 19:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-05-26 19:33 - 2012-05-19 22:01 - 00000000 ____D () C:\Program Files\7-Zip
2014-05-26 19:32 - 2014-05-26 19:32 - 01110476 _____ () C:\Users\MJ\Downloads\7z920 (1).exe
2014-05-26 17:11 - 2014-05-26 17:11 - 01042206 _____ () C:\Users\MJ\Downloads\444.bmp
Files to move or delete:
====================
C:\ProgramData\dsgsdgdsgdsgw.pad
Some content of TEMP:
====================
C:\Users\MJ\AppData\Local\Temp\AskSLib.dll
C:\Users\MJ\AppData\Local\Temp\DevSetup32.dll
C:\Users\MJ\AppData\Local\Temp\DevSetup64.dll
C:\Users\MJ\AppData\Local\Temp\DriverInstall32.exe
C:\Users\MJ\AppData\Local\Temp\DriverInstall64.exe
C:\Users\MJ\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\MJ\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\MJ\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\MJ\AppData\Local\Temp\jre-7u5-windows-i586-iftw.exe
C:\Users\MJ\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\MJ\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\MJ\AppData\Local\Temp\jre-7u7-windows-i586-iftw.exe
C:\Users\MJ\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
C:\Users\MJ\AppData\Local\Temp\KillProcess.exe
C:\Users\MJ\AppData\Local\Temp\lowproc.exe
C:\Users\MJ\AppData\Local\Temp\RealPlayer.exe
C:\Users\MJ\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\MJ\AppData\Local\Temp\SMARTProductUpdate.exe
C:\Users\MJ\AppData\Local\Temp\stubhelper.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf2a31e37caa5e.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf8f258d6ed0ed.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4279725726-2668247726-1728232190-1001Core1cf6c5dcd483ffd.job => C:\Users\MJ\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4279725726-2668247726-1728232190-1001UA1cf8b0c7cb1b8b0.job => C:\Users\MJ\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\MJ\Desktop" je 16056 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
PC odesílá SPAM?
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: PC odesílá SPAM?
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-4279725726-2668247726-1728232190-1001\...\MountPoints2: {3afea7a5-4c11-11e1-a431-0019dbf700d5} - E:\Startme.exe
BHO: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
C:\Program Files\Ask.com
Toolbar: HKLM - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Extension: Ask Toolbar - C:\Users\MJ\AppData\Roaming\Mozilla\Firefox\Profiles\u8dd3nqi.default\Extensions\toolbar@ask.com [2013-10-02]
CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll No File
CHR Plugin: (RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll No File
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf8f258d6ed0ed.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4279725726-2668247726-1728232190-1001UA1cf8b0c7cb1b8b0.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4279725726-2668247726-1728232190-1001Core1cf6c5dcd483ffd.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf2a31e37caa5e.job
C:\Users\MJ\AppData\Local\Temp
C:\ProgramData\dsgsdgdsgdsgw.pad
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: PC odesílá SPAM?
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: PC odesílá SPAM?
Zatím další SPAM nechodí, takže asi v pořádku. Preventivně jsem i změnil heslo k mailu.
Děkuji.
Děkuji.
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: PC odesílá SPAM?
I změnu hesla jsem vám chtěl na závěr doporučit. Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?