Dobrý den, prosím o kontrolu logu, při spuštění internetu vyskakují nesmyslná okna s hrami, naskakují reklamy atd.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Maty at 2014-10-02 16:59:38
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 41 GB (41%) free of 100 GB
Total RAM: 2551 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:00:01, on 2.10.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\HPQ\IAM\bin\asghost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
C:\WINDOWS\system32\mfevtps.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\McAfee\MSC\McAPExe.exe
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\SMINST\Scheduler.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\HPQ\Shared\HPQTOA~1.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Maty\Local Settings\Data aplikací\TNT2\2.0.0.1855\TNT2User.exe
C:\Documents and Settings\Maty\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Maty.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://services.freshy.com/general/newh ... 114C90FCBA}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/U223_FRPage
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: McAfee SafeKey Vault - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files\SafeKey\LPToolbar.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Credential Manager for ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: FindWide Toolbar - {37451734-B7FB-4A26-A1E3-55DE4912464E} - C:\Program Files\TNT2\Profiles\10985\passport.dll
O3 - Toolbar: McAfee SafeKey - {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files\SafeKey\LPToolbar.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\Sminst\Recguard.exe
O4 - HKLM\..\Run: [Reminder] C:\WINDOWS\Creator\Remind_XP.exe
O4 - HKLM\..\Run: [Scheduler] C:\WINDOWS\SMINST\Scheduler.exe
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Facebook Update] "C:\Documents and Settings\Maty\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\Xfire.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - Global Startup: Install SafeKey FF RunOnce.lnk = C:\Program Files\Common Files\lpuninstall.exe
O4 - Global Startup: Install SafeKey IE RunOnce.lnk = C:\Program Files\Common Files\lpuninstall.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: SafeKey - file://C:\Documents and Settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=lastpass
O8 - Extra context menu item: SafeKey Fill Forms - file://C:\Documents and Settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=fillforms
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\SafeKey\LPToolbar.dll
O9 - Extra 'Tools' menuitem: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\SafeKey\LPToolbar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 0247774000
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~1\mcafee\msc\mcsniepl.dll
O20 - Winlogon Notify: OneCard - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\WINDOWS\system32\mfevtps.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: PC Angel (PCA) - SoftThinks - C:\WINDOWS\SMINST\PCAngel.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Update allgenius - Unknown owner - C:\Program Files\allgenius\updateallgenius.exe (file missing)
O23 - Service: Util allgenius - Unknown owner - C:\Program Files\allgenius\bin\utilallgenius.exe (file missing)
--
End of file - 12711 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-755595373-899942693-2686452865-1006Core.job - C:\Documents and Settings\Maty\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-755595373-899942693-2686452865-1006UA.job - C:\Documents and Settings\Maty\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\RegInOut on user logon - Maty.job - C:\Program Files\RegInOut System Utilities\RegInOut.exe
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://services.freshy.com/general/newh ... 114C90FCBA}"
prefs.js - "keyword.URL" - "http://search.findwide.com/serp?guid={D ... _search&k="
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files\McAfee\SiteAdvisor
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_45]
"Description"=
"Path"=C:\WINDOWS\system32\npdeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default\extensions\
{072844D3-7DEE-45F6-A406-E87F76302E4B}
C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default\searchplugins\
findwide.xml
yahoo.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-23 63136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-08-31 110652]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2014-01-20 362928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9DB059B3-DD36-4a55-846C-59BE42A1202A}]
McAfee SafeKey Vault - C:\Program Files\SafeKey\LPToolbar.dll [2014-10-01 728560]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2014-01-20 59824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
HP Credential Manager for ProtectTools - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll [2005-03-03 50688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2014-01-20 80304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{37451734-B7FB-4A26-A1E3-55DE4912464E} - FindWide Toolbar - C:\Program Files\TNT2\Profiles\10985\passport.dll [2014-09-08 11520]
{61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - McAfee SafeKey - C:\Program Files\SafeKey\LPToolbar.dll [2014-10-01 728560]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2005-05-20 925696]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2005-05-06 716800]
"SunJavaUpdateSched"= []
"PTHOSTTR"=C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE [2006-02-14 122880]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2005-02-16 49152]
"DLA"=C:\WINDOWS\System32\DLA\DLACTRLW.EXE [2005-08-31 122940]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-03-03 761948]
"igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2006-03-23 94208]
"igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2006-03-23 77824]
"igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2006-03-23 118784]
"hpWirelessAssistant"=C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe [2006-02-14 454656]
"CognizanceTS"=C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll [2003-12-22 17920]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2006-05-08 131072]
"Cpqset"=C:\Program Files\HPQ\Default Settings\cpqset.exe [2006-01-26 172094]
"Recguard"=C:\WINDOWS\Sminst\Recguard.exe [2005-12-20 1187840]
"Reminder"=C:\WINDOWS\Creator\Remind_XP.exe [2006-03-09 806912]
"Scheduler"=C:\WINDOWS\SMINST\Scheduler.exe [2006-02-15 892928]
"WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2005-11-08 184320]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"mcpltui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2014-04-25 517392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Facebook Update"=C:\Documents and Settings\Maty\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe [2014-05-20 138096]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
DVD Check.lnk - C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
Install SafeKey FF RunOnce.lnk - C:\Program Files\Common Files\lpuninstall.exe
Install SafeKey IE RunOnce.lnk - C:\Program Files\Common Files\lpuninstall.exe
C:\Documents and Settings\Maty\Nabídka Start\Programy\Po spuštění
Xfire.lnk - C:\Program Files\Xfire\Xfire.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2006-03-23 139264]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\OneCard]
C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll [2005-07-25 40960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
AsWlnPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\SMINST\Scheduler.exe"="C:\WINDOWS\SMINST\Scheduler.exe:*:Enabled:Scheduler "
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\TmNationsForever\TmForever.exe"="C:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever"
"C:\Program Files\Call of Duty\CoDMP.exe"="C:\Program Files\Call of Duty\CoDMP.exe:*:Enabled:CoDMP"
"C:\Program Files\Call of Duty\CoDUOMP.exe"="C:\Program Files\Call of Duty\CoDUOMP.exe:*:Enabled:CoDUOMP"
"C:\Documents and Settings\Maty\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe"="C:\Documents and Settings\Maty\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Documents and Settings\Maty\Data aplikací\uTorrent\utorrent.exe"="C:\Documents and Settings\Maty\Data aplikací\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Documents and Settings\Maty\Local Settings\Data aplikací\TNT2\2.0.0.1855\TNT2User.exe"="C:\Documents and Settings\Maty\Local Settings\Data aplikací\TNT2\2.0.0.1855\TNT2User.exe:*:Enabled:TNT2"
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe"="C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe:*:Enabled:McAfee Shared Service Host"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Documents and Settings\Maty\Local Settings\Data aplikací\TNT2\2.0.0.1855\TNT2User.exe"="C:\Documents and Settings\Maty\Local Settings\Data aplikací\TNT2\2.0.0.1855\TNT2User.exe:*:Enabled:TNT2"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
======List of files/folders created in the last 1 month======
2014-10-02 16:59:38 ----D---- C:\rsit
2014-10-02 16:43:29 ----D---- C:\Program Files\Mozilla Firefox
2014-10-01 21:09:37 ----A---- C:\Program Files\Common Files\lpuninstall.exe
2014-10-01 21:09:22 ----A---- C:\WINDOWS\system32\drivers\HipShieldK.sys
2014-10-01 21:09:10 ----D---- C:\Program Files\SafeKey
2014-10-01 21:08:54 ----A---- C:\WINDOWS\system32\drivers\mfendisk.sys
2014-10-01 21:08:41 ----D---- C:\Program Files\McAfee.com
2014-10-01 21:08:31 ----D---- C:\Program Files\McAfee
2014-10-01 20:56:09 ----D---- C:\Program Files\stinger
2014-10-01 20:55:13 ----A---- C:\WINDOWS\system32\mfevtps.exe
2014-10-01 20:55:11 ----D---- C:\Program Files\Common Files\McAfee
2014-09-10 15:17:58 ----A---- C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}t.sys
2014-09-09 14:51:54 ----A---- C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt.sys
2014-09-08 20:10:07 ----D---- C:\Program Files\TNT2
2014-09-08 19:49:54 ----D---- C:\Program Files\id Software
2014-09-07 18:59:34 ----A---- C:\WINDOWS\Q3version.ini
2014-09-07 18:59:31 ----D---- C:\Program Files\Quake III Arena
2014-09-07 18:58:21 ----A---- C:\WINDOWS\Qiii.INI
2014-09-07 17:47:55 ----HD---- C:\WINDOWS\PIF
======List of files/folders modified in the last 1 month======
2014-10-02 16:59:44 ----D---- C:\Program Files\trend micro
2014-10-02 16:59:42 ----D---- C:\WINDOWS\Temp
2014-10-02 16:55:20 ----D---- C:\WINDOWS\system32\CatRoot2
2014-10-02 16:52:57 ----RD---- C:\Program Files
2014-10-02 16:52:57 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-10-02 16:52:31 ----D---- C:\WINDOWS\system32
2014-10-02 16:52:22 ----D---- C:\WINDOWS\SMINST
2014-10-02 16:49:11 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-10-02 16:46:47 ----A---- C:\WINDOWS\win.ini
2014-10-02 16:25:55 ----D---- C:\Documents and Settings\Maty\Data aplikací\uTorrent
2014-10-02 16:01:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2014-10-02 15:56:19 ----D---- C:\WINDOWS
2014-10-01 21:10:32 ----HD---- C:\WINDOWS\inf
2014-10-01 21:10:09 ----D---- C:\WINDOWS\system32\drivers
2014-10-01 21:09:37 ----D---- C:\Program Files\Common Files
2014-10-01 21:08:38 ----D---- C:\WINDOWS\Prefetch
2014-10-01 20:59:50 ----SHD---- C:\WINDOWS\Installer
2014-10-01 20:59:41 ----SD---- C:\WINDOWS\Tasks
2014-09-22 08:41:56 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-09-12 15:17:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-09-12 14:55:13 ----D---- C:\WINDOWS\system32\MRT
2014-09-12 14:54:46 ----A---- C:\WINDOWS\system32\MRT.exe
2014-09-10 15:30:06 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-09-09 15:26:33 ----D---- C:\Documents and Settings\Maty\Data aplikací\Skype
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 DRVMCDB;DRVMCDB; C:\WINDOWS\System32\Drivers\DRVMCDB.SYS [2005-08-30 88752]
R0 iaStor;Intel AHCI Controller; C:\WINDOWS\System32\DRIVERS\iaStor.sys [2005-10-12 874240]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2014-06-20 576048]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2005-04-25 20640]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-01-14 47616]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2004-10-28 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2004-12-03 20544]
R1 {af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt;{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt; C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt.sys [2014-09-07 55104]
R1 {af16652c-3cdd-4795-b89b-2d9cf16806d6}t;{af16652c-3cdd-4795-b89b-2d9cf16806d6}t; C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}t.sys [2014-09-06 55104]
R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2005-08-25 5628]
R1 DLARTL_N;DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [2005-08-25 22684]
R1 eabfiltr;eabfiltr; C:\WINDOWS\system32\DRIVERS\eabfiltr.sys [2005-09-19 7808]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 mfetdi2k;McAfee Inc. mfetdi2k; C:\WINDOWS\system32\drivers\mfetdi2k.sys [2014-06-20 93624]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2005-08-31 25628]
R2 DLADResN;DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2005-08-31 2496]
R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2005-08-31 86524]
R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2005-08-31 14684]
R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2005-08-31 6364]
R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2005-08-31 87036]
R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2005-08-31 94332]
R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2005-08-12 40544]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2006-02-28 176128]
R3 AEAudioService;AEAudio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2005-06-07 152960]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2006-07-31 1155584]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2006-02-09 45312]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2006-01-18 1342570]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2006-01-18 57096]
R3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2014-06-20 62832]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2005-09-19 9344]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2006-03-23 1166972]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\WINDOWS\system32\drivers\mfeapfk.sys [2014-06-20 135968]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2014-06-20 238176]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2014-06-20 369248]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2014-07-24 349192]
R3 mfendiskmp;mfendiskmp; C:\WINDOWS\system32\DRIVERS\mfendisk.sys [2014-06-20 87520]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-03-03 192736]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 w39n51;Intel(R) PRO/Wireless 3945ABG Adapter Driver; C:\WINDOWS\system32\DRIVERS\w39n51.sys [2006-01-19 1428096]
S3 ATSWPDRV;AuthenTec TruePrint USB Driver (AES2500); C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys [2006-03-30 130432]
S3 b57w2k;Broadcom NetLink (TM) Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2006-02-09 142720]
S3 eabusb;eabusb; C:\WINDOWS\system32\DRIVERS\eabusb.sys [2005-09-19 5760]
S3 GTIPCI21;GTIPCI21; C:\WINDOWS\system32\DRIVERS\gtipci21.sys []
S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2013-09-23 147912]
S3 mfebopk;McAfee Inc. mfebopk; C:\WINDOWS\system32\drivers\mfebopk.sys [2014-06-20 67816]
S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2014-07-24 81296]
S3 mfendisk;McAfee Core NDIS Intermediate Filter; C:\WINDOWS\system32\DRIVERS\mfendisk.sys [2014-06-20 87520]
S3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
S3 SMCIRDA;SMC IrCC Miniport Device Driver; C:\WINDOWS\system32\DRIVERS\smcirda.sys [2001-10-24 35913]
S3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys []
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2004-08-10 18944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASChannel;Local Communication Channel; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2006-01-18 258103]
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-05-02 135168]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2014-01-20 158128]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-06-20 49152]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2014-04-25 145568]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 mfecore;McAfee Anti-Malware Core; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2014-07-24 655936]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2014-06-20 169800]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\WINDOWS\system32\mfevtps.exe [2014-06-20 179600]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-10 38912]
S2 PCA;PC Angel; C:\WINDOWS\SMINST\PCAngel.exe [2006-01-12 294912]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S2 Update allgenius;Update allgenius; C:\Program Files\allgenius\updateallgenius.exe []
S2 Util allgenius;Util allgenius; C:\Program Files\allgenius\bin\utilallgenius.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10 267440]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 McODS;McAfee Scanner; C:\Program Files\McAfee\VirusScan\mcods.exe [2014-06-12 472072]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-02 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WmcCds;Windows Media Connect (WMC); c:\program files\windows media connect\mswmccds.exe [2004-08-11 483328]
S3 WmcCdsLs;Podpora programu Windows Media Connect (WMC); C:\Program Files\Windows Media Connect\mswmcls.exe [2004-08-10 28160]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu
stiahni a uloz na plochu ComboFix
potom spust pod uctom s administratorskym opravnenim
akcia trva cca. 5-10 minut, niekedy i dlhsie -, Pocas scanu nespustaj ziadne ine aplikacie
Nie je dovod na paniku ak stroj bude restartovany
upozornenie: ak pouzivas antispyware s rezidentnim stitem, ten pred scanom vypni.
po restarte aplikacie vytvori log, ulozeny na C:\Combofix.txt (jeho obsah vloz sem)
potom spust pod uctom s administratorskym opravnenim
akcia trva cca. 5-10 minut, niekedy i dlhsie -, Pocas scanu nespustaj ziadne ine aplikacie
Nie je dovod na paniku ak stroj bude restartovany
upozornenie: ak pouzivas antispyware s rezidentnim stitem, ten pred scanom vypni.
po restarte aplikacie vytvori log, ulozeny na C:\Combofix.txt (jeho obsah vloz sem)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o kontrolu logu
ComboFix 14-10-04.01 - Maty 05.10.2014 16:27:14.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2551.1727 [GMT 2:00]
Spuštěný z: c:\documents and settings\Maty\Plocha\ComboFix.exe
AV: McAfee Anti-Virus and Antispyware *Disabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall *Disabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
E:\Autorun.inf
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-09-05 do 2014-10-05 )))))))))))))))))))))))))))))))
.
.
2014-10-02 14:59 . 2014-10-02 15:00 -------- d-----w- C:\rsit
2014-10-01 19:09 . 2014-10-01 19:09 32372200 ----a-w- c:\program files\Common Files\lpuninstall.exe
2014-10-01 19:09 . 2013-09-23 11:48 147912 ----a-w- c:\windows\system32\drivers\HipShieldK.sys
2014-10-01 19:09 . 2014-10-01 19:09 -------- d-----w- c:\documents and settings\Maty\Local Settings\Data aplikací\SafeKey
2014-10-01 19:09 . 2014-10-01 19:09 -------- d-----w- c:\program files\SafeKey
2014-10-01 19:08 . 2014-06-20 09:05 87520 ----a-w- c:\windows\system32\drivers\mfendisk.sys
2014-10-01 19:08 . 2014-10-02 20:13 -------- d-----w- c:\program files\McAfee
2014-10-01 18:56 . 2014-10-01 18:57 -------- d-----w- c:\program files\stinger
2014-10-01 18:55 . 2014-06-20 09:13 179600 ----a-w- c:\windows\system32\mfevtps.exe
2014-10-01 18:55 . 2014-10-01 19:10 -------- d-----w- c:\program files\Common Files\McAfee
2014-09-10 13:18 . 2014-09-10 13:18 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2014-09-10 13:17 . 2014-09-05 22:35 55104 ----a-w- c:\windows\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}t.sys
2014-09-09 12:51 . 2014-09-07 09:06 55104 ----a-w- c:\windows\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt.sys
2014-09-08 18:10 . 2014-09-08 18:10 -------- d-sh--w- c:\documents and settings\Maty\PrivacIE
2014-09-08 17:49 . 2014-09-08 17:49 -------- d-----w- c:\program files\id Software
2014-09-07 16:59 . 2014-09-07 17:02 -------- d-----w- c:\program files\Quake III Arena
2014-09-07 15:47 . 2014-09-07 15:47 -------- d--h--w- c:\windows\PIF
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-22 06:41 . 2014-01-20 19:39 231568 ------w- c:\windows\system32\MpSigStub.exe
2014-09-10 13:30 . 2014-02-02 18:37 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-09-10 13:30 . 2014-02-02 18:37 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-07-24 12:31 . 2014-07-24 12:31 10600 ----a-w- c:\windows\system32\drivers\mfeclnrk.sys
2014-07-24 12:30 . 2014-07-24 12:30 81296 ----a-w- c:\windows\system32\drivers\mfencrk.sys
2014-07-24 12:30 . 2014-07-24 12:30 349192 ----a-w- c:\windows\system32\drivers\mfencbdc.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{61D700C1-7D8D-43c5-9C13-4FF85157CFE6}"= "c:\program files\SafeKey\LPToolbar.dll" [2014-10-01 728560]
.
[HKEY_CLASSES_ROOT\clsid\{61d700c1-7d8d-43c5-9c13-4ff85157cfe6}]
[HKEY_CLASSES_ROOT\LPToolbar.LPToolbarBand.1]
[HKEY_CLASSES_ROOT\TypeLib\{0A715D8A-947C-4ab1-AF67-62881ED45206}]
[HKEY_CLASSES_ROOT\LPToolbar.LPToolbarBand]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2005-05-20 925696]
"PTHOSTTR"="c:\program files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE" [2006-02-14 122880]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-16 49152]
"DLA"="c:\windows\System32\DLA\DLACTRLW.EXE" [2005-08-31 122940]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-03-03 761948]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2006-03-23 94208]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2006-03-23 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2006-03-23 118784]
"hpWirelessAssistant"="c:\program files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe" [2006-02-14 454656]
"CognizanceTS"="c:\progra~1\HPQ\IAM\Bin\AsTsVcc.dll" [2003-12-22 17920]
"QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2006-05-08 131072]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2006-01-26 172094]
"Recguard"="c:\windows\Sminst\Recguard.exe" [2005-12-20 1187840]
"Reminder"="c:\windows\Creator\Remind_XP.exe" [2006-03-09 806912]
"Scheduler"="c:\windows\SMINST\Scheduler.exe" [2006-02-15 892928]
"WatchDog"="c:\program files\InterVideo\DVD Check\DVDCheck.exe" [2005-11-08 184320]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"mcpltui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2014-04-25 517392]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-9-23 29696]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2006-1-18 581693]
DVD Check.lnk - c:\program files\InterVideo\DVD Check\DVDCheck.exe [2014-1-20 184320]
Install SafeKey FF RunOnce.lnk - c:\program files\Common Files\lpuninstall.exe -q -name=SafeKey -ffuuid {072844D3-7DEE-45F6-A406-E87F76302E4B} [2014-10-1 32372200]
Install SafeKey IE RunOnce.lnk - c:\program files\Common Files\lpuninstall.exe -p -name=SafeKey -ffuuid {072844D3-7DEE-45F6-A406-E87F76302E4B} [2014-10-1 32372200]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\OneCard]
2005-07-25 18:41 40960 ----a-w- c:\program files\HPQ\IAM\Bin\AsWlnPkg.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\SMINST\\Scheduler.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\TmNationsForever\\TmForever.exe"=
"c:\\Program Files\\Call of Duty\\CoDMP.exe"=
"c:\\Program Files\\Call of Duty\\CoDUOMP.exe"=
"c:\\Documents and Settings\\Maty\\Local Settings\\Data aplikací\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Common Files\\McAfee\\Platform\\McSvcHost\\McSvHost.exe"=
.
R1 {af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt;{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt;c:\windows\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt.sys [9.9.2014 14:51 55104]
R1 {af16652c-3cdd-4795-b89b-2d9cf16806d6}t;{af16652c-3cdd-4795-b89b-2d9cf16806d6}t;c:\windows\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}t.sys [10.9.2014 15:17 55104]
R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [20.6.2014 11:12 93624]
R2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe -k Cognizance [18.8.2004 10:00 14336]
R2 HomeNetSvc;McAfee Home Network;"c:\program files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [1.10.2014 21:08 281560]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;"c:\program files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [1.10.2014 21:08 281560]
R2 McAPExe;McAfee AP Service;c:\program files\McAfee\MSC\McAPExe.exe [1.10.2014 21:09 145568]
R2 McMPFSvc;McAfee Personal Firewall Service;"c:\program files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [1.10.2014 21:08 281560]
R2 McNaiAnn;McAfee VirusScan Announcer;"c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [1.10.2014 21:08 281560]
R2 mcpltsvc;McAfee Platform Services;"c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [1.10.2014 21:08 281560]
R2 mfecore;McAfee Anti-Malware Core;c:\program files\Common Files\McAfee\AMCore\mcshield.exe [1.10.2014 21:10 655936]
R2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\mfefire.exe [1.10.2014 21:08 169800]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [1.10.2014 20:55 179600]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [20.6.2014 11:21 62832]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [20.6.2014 11:05 369248]
R3 mfencbdc;McAfee Inc. mfencbdc;c:\windows\system32\drivers\mfencbdc.sys [24.7.2014 14:30 349192]
R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [1.10.2014 21:08 87520]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [23.10.2013 9:15 172192]
S2 Update allgenius;Update allgenius;"c:\program files\allgenius\updateallgenius.exe" --> c:\program files\allgenius\updateallgenius.exe [?]
S2 Util allgenius;Util allgenius;"c:\program files\allgenius\bin\utilallgenius.exe" --> c:\program files\allgenius\bin\utilallgenius.exe [?]
S3 GTIPCI21;GTIPCI21;c:\windows\system32\DRIVERS\gtipci21.sys --> c:\windows\system32\DRIVERS\gtipci21.sys [?]
S3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys [1.10.2014 21:09 147912]
S3 mfencrk;McAfee Inc. mfencrk;c:\windows\system32\drivers\mfencrk.sys [24.7.2014 14:30 81296]
S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [1.10.2014 21:08 87520]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Cognizance REG_MULTI_SZ ASChannel
.
Obsah adresáře 'Naplánované úlohy'
.
2014-10-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-02 13:30]
.
2014-08-08 c:\windows\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-04-07 23:28]
.
2014-10-05 c:\windows\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-04-07 23:28]
.
.
------- Doplňkový sken -------
.
uStart Page = about:blank
mStart Page = about:blank
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: SafeKey - file://c:\documents and settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=lastpass
IE: SafeKey Fill Forms - file://c:\documents and settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=fillforms
IE: Send To &Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default\
FF - prefs.js: browser.search.selectedEngine - FindWide
FF - prefs.js: browser.startup.homepage - hxxp://services.freshy.com/general/newhometab.php?hometab=home&partner=10985&guid={D00D06AB-DDF7-4C70-89F9-56114C90FCBA}
FF - prefs.js: keyword.URL - hxxp://search.findwide.com/serp?guid={D00D06AB-DDF7-4C70-89F9-56114C90FCBA}&action=default_search&k=
FF - user.js: plugin.state.npconduitfirefoxplugin - 0
FF - user.js: plugin.state.nptnt - 2
FF - user.js: plugin.state.nptnt - 2
FF - user.js: keyword.URL - hxxp://search.findwide.com/serp?guid={D00D06AB-DDF7-4C70-89F9-56114C90FCBA}&action=default_search&k=
FF - user.js: browser.search.defaultenginename - FindWide
FF - user.js: browser.keywordURLPromptDeclined - 1
FF - user.js: browser.startup.homepage - hxxp://services.freshy.com/general/newhometab.php?hometab=home&partner=10985&guid={D00D06AB-DDF7-4C70-89F9-56114C90FCBA}
FF - user.js: browser.startup.page - 1
FF - user.js: browser.newtab.url - file:///c:\documents and settings\Maty\Local Settings\Data aplikací\TNT2\2.0.0.1855\pinnedSearch.htm
FF - user.js: browser.newtab.url -
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{37451734-B7FB-4A26-A1E3-55DE4912464E} - (no file)
HKLM-Run-SunJavaUpdateSched - (no file)
c:\documents and settings\Maty\Nabídka Start\Programy\Po spuštění\Xfire.lnk - c:\program files\Xfire\Xfire.exe
AddRemove-allgenius - c:\program files\allgenius\allgeniusuninstall.exe
AddRemove-Xfire - c:\program files\Xfire\uninst.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-10-05 16:36
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = c:\program files\HPQ\Default Settings\cpqset.exe?????Y??????n??|?????? ??4B??????????????hB? ????Y?
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1404)
c:\program files\HPQ\IAM\Bin\AsWlnPkg.dll
.
- - - - - - - > 'explorer.exe'(396)
c:\progra~1\mcafee\SITEAD~1\saHook.dll
c:\program files\HPQ\IAM\Bin\SFSShell.dll
c:\program files\HPQ\IAM\bin\ItMsg.dll
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\System32\SCardSvr.exe
c:\windows\system32\DllHost.exe
c:\program files\HPQ\IAM\bin\asghost.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\windows\system32\wdfmgr.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\igfxsrvc.exe
c:\progra~1\HPQ\Shared\HPQTOA~1.EXE
c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
c:\program files\Common Files\McAfee\Platform\mcuicnt.exe
c:\program files\McAfee\VirusScan\mcods.exe
.
**************************************************************************
.
Celkový čas: 2014-10-05 16:44:41 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-10-05 14:44
.
Před spuštěním: Volných bajtů: 44 693 549 056
Po spuštění: Volných bajtů: 44 678 615 040
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 82FE88BB23D4A5474B7494F2FAFF63BE
49450C01903853D8E82D6980ACA6B5C6
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2551.1727 [GMT 2:00]
Spuštěný z: c:\documents and settings\Maty\Plocha\ComboFix.exe
AV: McAfee Anti-Virus and Antispyware *Disabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall *Disabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\ASPNET\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\JweKMDkS6DRp.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn\2.1\newtab.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie\5.14\zzRhx_IwyLG.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf\1.0\Y3p.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\bVuTMtuKgUX.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp\235\manifest.json
E:\Autorun.inf
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-09-05 do 2014-10-05 )))))))))))))))))))))))))))))))
.
.
2014-10-02 14:59 . 2014-10-02 15:00 -------- d-----w- C:\rsit
2014-10-01 19:09 . 2014-10-01 19:09 32372200 ----a-w- c:\program files\Common Files\lpuninstall.exe
2014-10-01 19:09 . 2013-09-23 11:48 147912 ----a-w- c:\windows\system32\drivers\HipShieldK.sys
2014-10-01 19:09 . 2014-10-01 19:09 -------- d-----w- c:\documents and settings\Maty\Local Settings\Data aplikací\SafeKey
2014-10-01 19:09 . 2014-10-01 19:09 -------- d-----w- c:\program files\SafeKey
2014-10-01 19:08 . 2014-06-20 09:05 87520 ----a-w- c:\windows\system32\drivers\mfendisk.sys
2014-10-01 19:08 . 2014-10-02 20:13 -------- d-----w- c:\program files\McAfee
2014-10-01 18:56 . 2014-10-01 18:57 -------- d-----w- c:\program files\stinger
2014-10-01 18:55 . 2014-06-20 09:13 179600 ----a-w- c:\windows\system32\mfevtps.exe
2014-10-01 18:55 . 2014-10-01 19:10 -------- d-----w- c:\program files\Common Files\McAfee
2014-09-10 13:18 . 2014-09-10 13:18 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2014-09-10 13:17 . 2014-09-05 22:35 55104 ----a-w- c:\windows\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}t.sys
2014-09-09 12:51 . 2014-09-07 09:06 55104 ----a-w- c:\windows\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt.sys
2014-09-08 18:10 . 2014-09-08 18:10 -------- d-sh--w- c:\documents and settings\Maty\PrivacIE
2014-09-08 17:49 . 2014-09-08 17:49 -------- d-----w- c:\program files\id Software
2014-09-07 16:59 . 2014-09-07 17:02 -------- d-----w- c:\program files\Quake III Arena
2014-09-07 15:47 . 2014-09-07 15:47 -------- d--h--w- c:\windows\PIF
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-22 06:41 . 2014-01-20 19:39 231568 ------w- c:\windows\system32\MpSigStub.exe
2014-09-10 13:30 . 2014-02-02 18:37 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-09-10 13:30 . 2014-02-02 18:37 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-07-24 12:31 . 2014-07-24 12:31 10600 ----a-w- c:\windows\system32\drivers\mfeclnrk.sys
2014-07-24 12:30 . 2014-07-24 12:30 81296 ----a-w- c:\windows\system32\drivers\mfencrk.sys
2014-07-24 12:30 . 2014-07-24 12:30 349192 ----a-w- c:\windows\system32\drivers\mfencbdc.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{61D700C1-7D8D-43c5-9C13-4FF85157CFE6}"= "c:\program files\SafeKey\LPToolbar.dll" [2014-10-01 728560]
.
[HKEY_CLASSES_ROOT\clsid\{61d700c1-7d8d-43c5-9c13-4ff85157cfe6}]
[HKEY_CLASSES_ROOT\LPToolbar.LPToolbarBand.1]
[HKEY_CLASSES_ROOT\TypeLib\{0A715D8A-947C-4ab1-AF67-62881ED45206}]
[HKEY_CLASSES_ROOT\LPToolbar.LPToolbarBand]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2005-05-20 925696]
"PTHOSTTR"="c:\program files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE" [2006-02-14 122880]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-16 49152]
"DLA"="c:\windows\System32\DLA\DLACTRLW.EXE" [2005-08-31 122940]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-03-03 761948]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2006-03-23 94208]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2006-03-23 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2006-03-23 118784]
"hpWirelessAssistant"="c:\program files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe" [2006-02-14 454656]
"CognizanceTS"="c:\progra~1\HPQ\IAM\Bin\AsTsVcc.dll" [2003-12-22 17920]
"QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2006-05-08 131072]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2006-01-26 172094]
"Recguard"="c:\windows\Sminst\Recguard.exe" [2005-12-20 1187840]
"Reminder"="c:\windows\Creator\Remind_XP.exe" [2006-03-09 806912]
"Scheduler"="c:\windows\SMINST\Scheduler.exe" [2006-02-15 892928]
"WatchDog"="c:\program files\InterVideo\DVD Check\DVDCheck.exe" [2005-11-08 184320]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"mcpltui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2014-04-25 517392]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-9-23 29696]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2006-1-18 581693]
DVD Check.lnk - c:\program files\InterVideo\DVD Check\DVDCheck.exe [2014-1-20 184320]
Install SafeKey FF RunOnce.lnk - c:\program files\Common Files\lpuninstall.exe -q -name=SafeKey -ffuuid {072844D3-7DEE-45F6-A406-E87F76302E4B} [2014-10-1 32372200]
Install SafeKey IE RunOnce.lnk - c:\program files\Common Files\lpuninstall.exe -p -name=SafeKey -ffuuid {072844D3-7DEE-45F6-A406-E87F76302E4B} [2014-10-1 32372200]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\OneCard]
2005-07-25 18:41 40960 ----a-w- c:\program files\HPQ\IAM\Bin\AsWlnPkg.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\SMINST\\Scheduler.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\TmNationsForever\\TmForever.exe"=
"c:\\Program Files\\Call of Duty\\CoDMP.exe"=
"c:\\Program Files\\Call of Duty\\CoDUOMP.exe"=
"c:\\Documents and Settings\\Maty\\Local Settings\\Data aplikací\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Common Files\\McAfee\\Platform\\McSvcHost\\McSvHost.exe"=
.
R1 {af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt;{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt;c:\windows\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt.sys [9.9.2014 14:51 55104]
R1 {af16652c-3cdd-4795-b89b-2d9cf16806d6}t;{af16652c-3cdd-4795-b89b-2d9cf16806d6}t;c:\windows\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}t.sys [10.9.2014 15:17 55104]
R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [20.6.2014 11:12 93624]
R2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe -k Cognizance [18.8.2004 10:00 14336]
R2 HomeNetSvc;McAfee Home Network;"c:\program files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [1.10.2014 21:08 281560]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;"c:\program files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [1.10.2014 21:08 281560]
R2 McAPExe;McAfee AP Service;c:\program files\McAfee\MSC\McAPExe.exe [1.10.2014 21:09 145568]
R2 McMPFSvc;McAfee Personal Firewall Service;"c:\program files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [1.10.2014 21:08 281560]
R2 McNaiAnn;McAfee VirusScan Announcer;"c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [1.10.2014 21:08 281560]
R2 mcpltsvc;McAfee Platform Services;"c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [1.10.2014 21:08 281560]
R2 mfecore;McAfee Anti-Malware Core;c:\program files\Common Files\McAfee\AMCore\mcshield.exe [1.10.2014 21:10 655936]
R2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\mfefire.exe [1.10.2014 21:08 169800]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [1.10.2014 20:55 179600]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [20.6.2014 11:21 62832]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [20.6.2014 11:05 369248]
R3 mfencbdc;McAfee Inc. mfencbdc;c:\windows\system32\drivers\mfencbdc.sys [24.7.2014 14:30 349192]
R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [1.10.2014 21:08 87520]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [23.10.2013 9:15 172192]
S2 Update allgenius;Update allgenius;"c:\program files\allgenius\updateallgenius.exe" --> c:\program files\allgenius\updateallgenius.exe [?]
S2 Util allgenius;Util allgenius;"c:\program files\allgenius\bin\utilallgenius.exe" --> c:\program files\allgenius\bin\utilallgenius.exe [?]
S3 GTIPCI21;GTIPCI21;c:\windows\system32\DRIVERS\gtipci21.sys --> c:\windows\system32\DRIVERS\gtipci21.sys [?]
S3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys [1.10.2014 21:09 147912]
S3 mfencrk;McAfee Inc. mfencrk;c:\windows\system32\drivers\mfencrk.sys [24.7.2014 14:30 81296]
S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [1.10.2014 21:08 87520]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Cognizance REG_MULTI_SZ ASChannel
.
Obsah adresáře 'Naplánované úlohy'
.
2014-10-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-02 13:30]
.
2014-08-08 c:\windows\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-04-07 23:28]
.
2014-10-05 c:\windows\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-04-07 23:28]
.
.
------- Doplňkový sken -------
.
uStart Page = about:blank
mStart Page = about:blank
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: SafeKey - file://c:\documents and settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=lastpass
IE: SafeKey Fill Forms - file://c:\documents and settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=fillforms
IE: Send To &Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default\
FF - prefs.js: browser.search.selectedEngine - FindWide
FF - prefs.js: browser.startup.homepage - hxxp://services.freshy.com/general/newhometab.php?hometab=home&partner=10985&guid={D00D06AB-DDF7-4C70-89F9-56114C90FCBA}
FF - prefs.js: keyword.URL - hxxp://search.findwide.com/serp?guid={D00D06AB-DDF7-4C70-89F9-56114C90FCBA}&action=default_search&k=
FF - user.js: plugin.state.npconduitfirefoxplugin - 0
FF - user.js: plugin.state.nptnt - 2
FF - user.js: plugin.state.nptnt - 2
FF - user.js: keyword.URL - hxxp://search.findwide.com/serp?guid={D00D06AB-DDF7-4C70-89F9-56114C90FCBA}&action=default_search&k=
FF - user.js: browser.search.defaultenginename - FindWide
FF - user.js: browser.keywordURLPromptDeclined - 1
FF - user.js: browser.startup.homepage - hxxp://services.freshy.com/general/newhometab.php?hometab=home&partner=10985&guid={D00D06AB-DDF7-4C70-89F9-56114C90FCBA}
FF - user.js: browser.startup.page - 1
FF - user.js: browser.newtab.url - file:///c:\documents and settings\Maty\Local Settings\Data aplikací\TNT2\2.0.0.1855\pinnedSearch.htm
FF - user.js: browser.newtab.url -
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{37451734-B7FB-4A26-A1E3-55DE4912464E} - (no file)
HKLM-Run-SunJavaUpdateSched - (no file)
c:\documents and settings\Maty\Nabídka Start\Programy\Po spuštění\Xfire.lnk - c:\program files\Xfire\Xfire.exe
AddRemove-allgenius - c:\program files\allgenius\allgeniusuninstall.exe
AddRemove-Xfire - c:\program files\Xfire\uninst.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-10-05 16:36
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = c:\program files\HPQ\Default Settings\cpqset.exe?????Y??????n??|?????? ??4B??????????????hB? ????Y?
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1404)
c:\program files\HPQ\IAM\Bin\AsWlnPkg.dll
.
- - - - - - - > 'explorer.exe'(396)
c:\progra~1\mcafee\SITEAD~1\saHook.dll
c:\program files\HPQ\IAM\Bin\SFSShell.dll
c:\program files\HPQ\IAM\bin\ItMsg.dll
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\System32\SCardSvr.exe
c:\windows\system32\DllHost.exe
c:\program files\HPQ\IAM\bin\asghost.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\windows\system32\wdfmgr.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\igfxsrvc.exe
c:\progra~1\HPQ\Shared\HPQTOA~1.EXE
c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
c:\program files\Common Files\McAfee\Platform\mcuicnt.exe
c:\program files\McAfee\VirusScan\mcods.exe
.
**************************************************************************
.
Celkový čas: 2014-10-05 16:44:41 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-10-05 14:44
.
Před spuštěním: Volných bajtů: 44 693 549 056
Po spuštění: Volných bajtů: 44 678 615 040
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 82FE88BB23D4A5474B7494F2FAFF63BE
49450C01903853D8E82D6980ACA6B5C6
Re: Prosím o kontrolu logu
OK, vycisti s MBAM a napis, ci je to lepsie 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o kontrolu logu
Nemůžu program korektně nainstalovat, hází mi to hlášky Interní chyba - runtime error at 79:177, exrernal exceprion E06D7363.
Když hlášky odklikám, program se nainstaluje, ale nelze spustit.Naskočí chybová hláška a program se nespustí.
Když hlášky odklikám, program se nainstaluje, ale nelze spustit.Naskočí chybová hláška a program se nespustí.
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Zdravím,
použij http://www.malwarebytes.org/mbam-clean.exe
Stáhni a nainstaluj MBAM zde http://www.bleepingcomputer.com/downloa ... re/dl/241/ verzi 1.75
Při aktualizaci ti jako první nabídne instalaci nové verze - dáš Storno - bude aktualizována jen databáze
Po instalaci Spustit -> na 1.záložce "Kontrolor" -> Úplná kontrola -> Prohledat
po dokončení scanu vyskočí okno Notepad s výsledkem - obsah zkopíruj do své odpovědi
zatím nic nemazat - počkej na posouzení a program nezavírej - kolega se jistě ozve
použij http://www.malwarebytes.org/mbam-clean.exe Stáhni a nainstaluj MBAM zde http://www.bleepingcomputer.com/downloa ... re/dl/241/ verzi 1.75Při aktualizaci ti jako první nabídne instalaci nové verze - dáš Storno - bude aktualizována jen databáze
Po instalaci Spustit -> na 1.záložce "Kontrolor" -> Úplná kontrola -> Prohledat
po dokončení scanu vyskočí okno Notepad s výsledkem - obsah zkopíruj do své odpovědi
zatím nic nemazat - počkej na posouzení a program nezavírej - kolega se jistě ozve
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: Prosím o kontrolu logu
Nevím kde se stala chyba, ale žádný Notepad se mi neobjevil, pouze mi program našel jeden objekt - PUM.Hijack.StartMenu
Re: Prosím o kontrolu logu
Tak na druhý pokus 
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2013.04.04.07
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Maty :: PC144542890713 [administrátor]
6.10.2014 16:37:43
MBAM-log-2014-10-06 (22-29-30).txt
Typ: Kompletní kontrola (C:\|D:\|E:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 346729
Uplynulý čas: 1 hodin, 38 minut, 13 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|StartMenuLogoff (PUM.Hijack.StartMenu) -> Špatný: (1) Dobrý: (0) -> Nebyla provedena žádná instrukce.
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2013.04.04.07
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Maty :: PC144542890713 [administrátor]
6.10.2014 16:37:43
MBAM-log-2014-10-06 (22-29-30).txt
Typ: Kompletní kontrola (C:\|D:\|E:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 346729
Uplynulý čas: 1 hodin, 38 minut, 13 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|StartMenuLogoff (PUM.Hijack.StartMenu) -> Špatný: (1) Dobrý: (0) -> Nebyla provedena žádná instrukce.
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
Re: Prosím o kontrolu logu
Může mi prosím někdo poradit, co dál?
Díky
Díky
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
nález MBAM dej Odstranit...pak MBAM odinstaluj http://www.malwarebytes.org/mbam-clean.exe
jsou ještě nějaké problémy? dej aktuální RSITDoporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: Prosím o kontrolu logu
Ahoj, tak reklamy už neskáčou, ale neustále se mi objevuje stránka http://search.findwide.com/?guid={D00D0 ... 114C90FCBA} která se nastavuje sama jako výchozí prohlížeč, i když si ho přenastavím třeba na Seznam. Po vypnuí nebo restartu je tam zase zpátky tenhle nesmysl...
Logfile of random's system information tool 1.10 (written by random/random)
Run by Maty at 2014-10-08 16:07:55
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 42 GB (42%) free of 100 GB
Total RAM: 2551 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:08:09, on 8.10.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\HPQ\IAM\bin\asghost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
C:\WINDOWS\system32\mfevtps.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\McAfee\MSC\McAPExe.exe
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\WINDOWS\SMINST\Scheduler.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\PROGRA~1\HPQ\Shared\HPQTOA~1.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Maty\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Maty.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/U223_FRPage
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: McAfee SafeKey Vault - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files\SafeKey\LPToolbar.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Credential Manager for ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: McAfee SafeKey - {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files\SafeKey\LPToolbar.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\Sminst\Recguard.exe
O4 - HKLM\..\Run: [Reminder] C:\WINDOWS\Creator\Remind_XP.exe
O4 - HKLM\..\Run: [Scheduler] C:\WINDOWS\SMINST\Scheduler.exe
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - Global Startup: Install SafeKey FF RunOnce.lnk = C:\Program Files\Common Files\lpuninstall.exe
O4 - Global Startup: Install SafeKey IE RunOnce.lnk = C:\Program Files\Common Files\lpuninstall.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: SafeKey - file://C:\Documents and Settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=lastpass
O8 - Extra context menu item: SafeKey Fill Forms - file://C:\Documents and Settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=fillforms
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\SafeKey\LPToolbar.dll
O9 - Extra 'Tools' menuitem: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\SafeKey\LPToolbar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 0247774000
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~1\mcafee\msc\mcsniepl.dll
O20 - Winlogon Notify: OneCard - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\WINDOWS\system32\mfevtps.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: PC Angel (PCA) - SoftThinks - C:\WINDOWS\SMINST\PCAngel.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Update allgenius - Unknown owner - C:\Program Files\allgenius\updateallgenius.exe (file missing)
O23 - Service: Util allgenius - Unknown owner - C:\Program Files\allgenius\bin\utilallgenius.exe (file missing)
--
End of file - 12037 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://services.freshy.com/general/newh ... 114C90FCBA}"
prefs.js - "keyword.URL" - "http://search.findwide.com/serp?guid={D ... _search&k="
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files\McAfee\SiteAdvisor
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_45]
"Description"=
"Path"=C:\WINDOWS\system32\npdeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default\extensions\
{072844D3-7DEE-45F6-A406-E87F76302E4B}
C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default\searchplugins\
yahoo.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-23 63136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-08-31 110652]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2014-01-20 362928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9DB059B3-DD36-4a55-846C-59BE42A1202A}]
McAfee SafeKey Vault - C:\Program Files\SafeKey\LPToolbar.dll [2014-10-01 728560]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2014-01-20 59824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
HP Credential Manager for ProtectTools - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll [2005-03-03 50688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2014-01-20 80304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - McAfee SafeKey - C:\Program Files\SafeKey\LPToolbar.dll [2014-10-01 728560]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2005-05-20 925696]
"PTHOSTTR"=C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE [2006-02-14 122880]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2005-02-16 49152]
"DLA"=C:\WINDOWS\System32\DLA\DLACTRLW.EXE [2005-08-31 122940]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-03-03 761948]
"igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2006-03-23 94208]
"igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2006-03-23 77824]
"igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2006-03-23 118784]
"hpWirelessAssistant"=C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe [2006-02-14 454656]
"CognizanceTS"=C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll [2003-12-22 17920]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2006-05-08 131072]
"Cpqset"=C:\Program Files\HPQ\Default Settings\cpqset.exe [2006-01-26 172094]
"Recguard"=C:\WINDOWS\Sminst\Recguard.exe [2005-12-20 1187840]
"Reminder"=C:\WINDOWS\Creator\Remind_XP.exe [2006-03-09 806912]
"Scheduler"=C:\WINDOWS\SMINST\Scheduler.exe [2006-02-15 892928]
"WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2005-11-08 184320]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"mcpltui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2014-04-25 517392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
DVD Check.lnk - C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
Install SafeKey FF RunOnce.lnk - C:\Program Files\Common Files\lpuninstall.exe
Install SafeKey IE RunOnce.lnk - C:\Program Files\Common Files\lpuninstall.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2006-03-23 139264]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\OneCard]
C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll [2005-07-25 40960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\SMINST\Scheduler.exe"="C:\WINDOWS\SMINST\Scheduler.exe:*:Enabled:Scheduler "
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\TmNationsForever\TmForever.exe"="C:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever"
"C:\Program Files\Call of Duty\CoDMP.exe"="C:\Program Files\Call of Duty\CoDMP.exe:*:Enabled:CoDMP"
"C:\Program Files\Call of Duty\CoDUOMP.exe"="C:\Program Files\Call of Duty\CoDUOMP.exe:*:Enabled:CoDUOMP"
"C:\Documents and Settings\Maty\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe"="C:\Documents and Settings\Maty\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe"="C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe:*:Enabled:McAfee Shared Service Host"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Documents and Settings\Maty\Local Settings\Data aplikací\TNT2\2.0.0.1855\TNT2User.exe"="C:\Documents and Settings\Maty\Local Settings\Data aplikací\TNT2\2.0.0.1855\TNT2User.exe:*:Enabled:TNT2"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
======List of files/folders created in the last 1 month======
2014-10-08 16:05:50 ----SHD---- C:\RECYCLER
2014-10-05 16:44:52 ----A---- C:\WINDOWS\system32\drivers\PROCEXP113.SYS
2014-10-05 16:44:45 ----A---- C:\ComboFix.txt
2014-10-05 16:25:20 ----A---- C:\Boot.bak
2014-10-05 16:25:02 ----RASHD---- C:\cmdcons
2014-10-05 16:22:03 ----A---- C:\WINDOWS\zip.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\SWXCACLS.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\SWSC.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\SWREG.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\sed.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\PEV.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\NIRCMD.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\MBR.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\grep.exe
2014-10-05 16:21:50 ----AD---- C:\Qoobox
2014-10-05 16:21:37 ----D---- C:\WINDOWS\erdnt
2014-10-02 16:59:38 ----D---- C:\rsit
2014-10-02 16:43:29 ----D---- C:\Program Files\Mozilla Firefox
2014-10-01 21:09:37 ----A---- C:\Program Files\Common Files\lpuninstall.exe
2014-10-01 21:09:22 ----A---- C:\WINDOWS\system32\drivers\HipShieldK.sys
2014-10-01 21:09:10 ----D---- C:\Program Files\SafeKey
2014-10-01 21:08:54 ----A---- C:\WINDOWS\system32\drivers\mfendisk.sys
2014-10-01 21:08:41 ----D---- C:\Program Files\McAfee.com
2014-10-01 21:08:31 ----D---- C:\Program Files\McAfee
2014-10-01 20:56:09 ----D---- C:\Program Files\stinger
2014-10-01 20:55:13 ----A---- C:\WINDOWS\system32\mfevtps.exe
2014-10-01 20:55:11 ----D---- C:\Program Files\Common Files\McAfee
2014-09-10 15:17:58 ----A---- C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}t.sys
2014-09-09 14:51:54 ----A---- C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt.sys
======List of files/folders modified in the last 1 month======
2014-10-08 16:08:00 ----D---- C:\Program Files\trend micro
2014-10-08 16:07:58 ----D---- C:\WINDOWS\Temp
2014-10-08 16:07:54 ----D---- C:\WINDOWS\Prefetch
2014-10-08 16:00:42 ----D---- C:\WINDOWS\system32
2014-10-08 16:00:30 ----D---- C:\WINDOWS\SMINST
2014-10-08 16:00:29 ----D---- C:\WINDOWS\system32\CatRoot2
2014-10-08 15:59:44 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-10-08 15:59:30 ----RD---- C:\Program Files
2014-10-08 15:59:29 ----D---- C:\WINDOWS\system32\drivers
2014-10-06 16:18:29 ----SHD---- C:\WINDOWS\Installer
2014-10-06 16:18:23 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2014-10-05 16:43:42 ----SD---- C:\WINDOWS\Tasks
2014-10-05 16:37:58 ----D---- C:\WINDOWS
2014-10-05 16:37:58 ----A---- C:\WINDOWS\system.ini
2014-10-05 16:35:45 ----D---- C:\WINDOWS\system32\drivers\etc
2014-10-05 16:33:51 ----D---- C:\WINDOWS\system32\config
2014-10-05 16:30:48 ----D---- C:\WINDOWS\AppPatch
2014-10-05 16:30:46 ----D---- C:\Program Files\Common Files
2014-10-05 16:25:20 ----RASH---- C:\boot.ini
2014-10-02 19:12:07 ----HD---- C:\WINDOWS\inf
2014-10-02 19:11:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2014-10-02 16:52:57 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-10-02 16:46:47 ----A---- C:\WINDOWS\win.ini
2014-10-02 16:25:55 ----D---- C:\Documents and Settings\Maty\Data aplikací\uTorrent
2014-09-22 08:41:56 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-09-12 15:17:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-09-12 15:02:11 ----D---- C:\WINDOWS\system32\MRT
2014-09-12 14:54:46 ----A---- C:\WINDOWS\system32\MRT.exe
2014-09-10 15:30:06 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-09-09 15:26:33 ----D---- C:\Documents and Settings\Maty\Data aplikací\Skype
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 DRVMCDB;DRVMCDB; C:\WINDOWS\System32\Drivers\DRVMCDB.SYS [2005-08-30 88752]
R0 iaStor;Intel AHCI Controller; C:\WINDOWS\System32\DRIVERS\iaStor.sys [2005-10-12 874240]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2014-06-20 576048]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2005-04-25 20640]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-01-14 47616]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2004-10-28 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2004-12-03 20544]
R1 {af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt;{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt; C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt.sys [2014-09-07 55104]
R1 {af16652c-3cdd-4795-b89b-2d9cf16806d6}t;{af16652c-3cdd-4795-b89b-2d9cf16806d6}t; C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}t.sys [2014-09-06 55104]
R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2005-08-25 5628]
R1 DLARTL_N;DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [2005-08-25 22684]
R1 eabfiltr;eabfiltr; C:\WINDOWS\system32\DRIVERS\eabfiltr.sys [2005-09-19 7808]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 mfetdi2k;McAfee Inc. mfetdi2k; C:\WINDOWS\system32\drivers\mfetdi2k.sys [2014-06-20 93624]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2005-08-31 25628]
R2 DLADResN;DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2005-08-31 2496]
R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2005-08-31 86524]
R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2005-08-31 14684]
R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2005-08-31 6364]
R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2005-08-31 87036]
R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2005-08-31 94332]
R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2005-08-12 40544]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2006-02-28 176128]
R3 AEAudioService;AEAudio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2005-06-07 152960]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2006-07-31 1155584]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2006-02-09 45312]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2006-01-18 1342570]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2006-01-18 57096]
R3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2014-06-20 62832]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2005-09-19 9344]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2006-03-23 1166972]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\WINDOWS\system32\drivers\mfeapfk.sys [2014-06-20 135968]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2014-06-20 238176]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2014-06-20 369248]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2014-07-24 349192]
R3 mfendiskmp;mfendiskmp; C:\WINDOWS\system32\DRIVERS\mfendisk.sys [2014-06-20 87520]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-03-03 192736]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 w39n51;Intel(R) PRO/Wireless 3945ABG Adapter Driver; C:\WINDOWS\system32\DRIVERS\w39n51.sys [2006-01-19 1428096]
S3 ATSWPDRV;AuthenTec TruePrint USB Driver (AES2500); C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys [2006-03-30 130432]
S3 b57w2k;Broadcom NetLink (TM) Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2006-02-09 142720]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 eabusb;eabusb; C:\WINDOWS\system32\DRIVERS\eabusb.sys [2005-09-19 5760]
S3 GTIPCI21;GTIPCI21; C:\WINDOWS\system32\DRIVERS\gtipci21.sys []
S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2013-09-23 147912]
S3 mfebopk;McAfee Inc. mfebopk; C:\WINDOWS\system32\drivers\mfebopk.sys [2014-06-20 67816]
S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2014-07-24 81296]
S3 mfendisk;McAfee Core NDIS Intermediate Filter; C:\WINDOWS\system32\DRIVERS\mfendisk.sys [2014-06-20 87520]
S3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
S3 SMCIRDA;SMC IrCC Miniport Device Driver; C:\WINDOWS\system32\DRIVERS\smcirda.sys [2001-10-24 35913]
S3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys []
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2004-08-10 18944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASChannel;Local Communication Channel; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2006-01-18 258103]
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-05-02 135168]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2014-01-20 158128]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-06-20 49152]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2014-04-25 145568]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 mfecore;McAfee Anti-Malware Core; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2014-07-24 655936]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2014-06-20 169800]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\WINDOWS\system32\mfevtps.exe [2014-06-20 179600]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-10 38912]
S2 PCA;PC Angel; C:\WINDOWS\SMINST\PCAngel.exe [2006-01-12 294912]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S2 Update allgenius;Update allgenius; C:\Program Files\allgenius\updateallgenius.exe []
S2 Util allgenius;Util allgenius; C:\Program Files\allgenius\bin\utilallgenius.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10 267440]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 McODS;McAfee Scanner; C:\Program Files\McAfee\VirusScan\mcods.exe [2014-06-12 472072]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-02 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WmcCds;Windows Media Connect (WMC); c:\program files\windows media connect\mswmccds.exe [2004-08-11 483328]
S3 WmcCdsLs;Podpora programu Windows Media Connect (WMC); C:\Program Files\Windows Media Connect\mswmcls.exe [2004-08-10 28160]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Maty at 2014-10-08 16:07:55
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 42 GB (42%) free of 100 GB
Total RAM: 2551 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:08:09, on 8.10.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\HPQ\IAM\bin\asghost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
C:\WINDOWS\system32\mfevtps.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\McAfee\MSC\McAPExe.exe
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\WINDOWS\SMINST\Scheduler.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\PROGRA~1\HPQ\Shared\HPQTOA~1.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Maty\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Maty.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/U223_FRPage
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: McAfee SafeKey Vault - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files\SafeKey\LPToolbar.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Credential Manager for ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: McAfee SafeKey - {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files\SafeKey\LPToolbar.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\Sminst\Recguard.exe
O4 - HKLM\..\Run: [Reminder] C:\WINDOWS\Creator\Remind_XP.exe
O4 - HKLM\..\Run: [Scheduler] C:\WINDOWS\SMINST\Scheduler.exe
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - Global Startup: Install SafeKey FF RunOnce.lnk = C:\Program Files\Common Files\lpuninstall.exe
O4 - Global Startup: Install SafeKey IE RunOnce.lnk = C:\Program Files\Common Files\lpuninstall.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: SafeKey - file://C:\Documents and Settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=lastpass
O8 - Extra context menu item: SafeKey Fill Forms - file://C:\Documents and Settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=fillforms
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\SafeKey\LPToolbar.dll
O9 - Extra 'Tools' menuitem: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\SafeKey\LPToolbar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 0247774000
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~1\mcafee\msc\mcsniepl.dll
O20 - Winlogon Notify: OneCard - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\WINDOWS\system32\mfevtps.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: PC Angel (PCA) - SoftThinks - C:\WINDOWS\SMINST\PCAngel.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Update allgenius - Unknown owner - C:\Program Files\allgenius\updateallgenius.exe (file missing)
O23 - Service: Util allgenius - Unknown owner - C:\Program Files\allgenius\bin\utilallgenius.exe (file missing)
--
End of file - 12037 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://services.freshy.com/general/newh ... 114C90FCBA}"
prefs.js - "keyword.URL" - "http://search.findwide.com/serp?guid={D ... _search&k="
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files\McAfee\SiteAdvisor
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_45]
"Description"=
"Path"=C:\WINDOWS\system32\npdeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default\extensions\
{072844D3-7DEE-45F6-A406-E87F76302E4B}
C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default\searchplugins\
yahoo.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-23 63136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-08-31 110652]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2014-01-20 362928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9DB059B3-DD36-4a55-846C-59BE42A1202A}]
McAfee SafeKey Vault - C:\Program Files\SafeKey\LPToolbar.dll [2014-10-01 728560]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2014-01-20 59824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
HP Credential Manager for ProtectTools - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll [2005-03-03 50688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2014-01-20 80304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - McAfee SafeKey - C:\Program Files\SafeKey\LPToolbar.dll [2014-10-01 728560]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2005-05-20 925696]
"PTHOSTTR"=C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE [2006-02-14 122880]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2005-02-16 49152]
"DLA"=C:\WINDOWS\System32\DLA\DLACTRLW.EXE [2005-08-31 122940]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-03-03 761948]
"igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2006-03-23 94208]
"igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2006-03-23 77824]
"igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2006-03-23 118784]
"hpWirelessAssistant"=C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe [2006-02-14 454656]
"CognizanceTS"=C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll [2003-12-22 17920]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2006-05-08 131072]
"Cpqset"=C:\Program Files\HPQ\Default Settings\cpqset.exe [2006-01-26 172094]
"Recguard"=C:\WINDOWS\Sminst\Recguard.exe [2005-12-20 1187840]
"Reminder"=C:\WINDOWS\Creator\Remind_XP.exe [2006-03-09 806912]
"Scheduler"=C:\WINDOWS\SMINST\Scheduler.exe [2006-02-15 892928]
"WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2005-11-08 184320]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"mcpltui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2014-04-25 517392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
DVD Check.lnk - C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
Install SafeKey FF RunOnce.lnk - C:\Program Files\Common Files\lpuninstall.exe
Install SafeKey IE RunOnce.lnk - C:\Program Files\Common Files\lpuninstall.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2006-03-23 139264]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\OneCard]
C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll [2005-07-25 40960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\SMINST\Scheduler.exe"="C:\WINDOWS\SMINST\Scheduler.exe:*:Enabled:Scheduler "
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\TmNationsForever\TmForever.exe"="C:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever"
"C:\Program Files\Call of Duty\CoDMP.exe"="C:\Program Files\Call of Duty\CoDMP.exe:*:Enabled:CoDMP"
"C:\Program Files\Call of Duty\CoDUOMP.exe"="C:\Program Files\Call of Duty\CoDUOMP.exe:*:Enabled:CoDUOMP"
"C:\Documents and Settings\Maty\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe"="C:\Documents and Settings\Maty\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe"="C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe:*:Enabled:McAfee Shared Service Host"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Documents and Settings\Maty\Local Settings\Data aplikací\TNT2\2.0.0.1855\TNT2User.exe"="C:\Documents and Settings\Maty\Local Settings\Data aplikací\TNT2\2.0.0.1855\TNT2User.exe:*:Enabled:TNT2"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
======List of files/folders created in the last 1 month======
2014-10-08 16:05:50 ----SHD---- C:\RECYCLER
2014-10-05 16:44:52 ----A---- C:\WINDOWS\system32\drivers\PROCEXP113.SYS
2014-10-05 16:44:45 ----A---- C:\ComboFix.txt
2014-10-05 16:25:20 ----A---- C:\Boot.bak
2014-10-05 16:25:02 ----RASHD---- C:\cmdcons
2014-10-05 16:22:03 ----A---- C:\WINDOWS\zip.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\SWXCACLS.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\SWSC.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\SWREG.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\sed.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\PEV.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\NIRCMD.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\MBR.exe
2014-10-05 16:22:03 ----A---- C:\WINDOWS\grep.exe
2014-10-05 16:21:50 ----AD---- C:\Qoobox
2014-10-05 16:21:37 ----D---- C:\WINDOWS\erdnt
2014-10-02 16:59:38 ----D---- C:\rsit
2014-10-02 16:43:29 ----D---- C:\Program Files\Mozilla Firefox
2014-10-01 21:09:37 ----A---- C:\Program Files\Common Files\lpuninstall.exe
2014-10-01 21:09:22 ----A---- C:\WINDOWS\system32\drivers\HipShieldK.sys
2014-10-01 21:09:10 ----D---- C:\Program Files\SafeKey
2014-10-01 21:08:54 ----A---- C:\WINDOWS\system32\drivers\mfendisk.sys
2014-10-01 21:08:41 ----D---- C:\Program Files\McAfee.com
2014-10-01 21:08:31 ----D---- C:\Program Files\McAfee
2014-10-01 20:56:09 ----D---- C:\Program Files\stinger
2014-10-01 20:55:13 ----A---- C:\WINDOWS\system32\mfevtps.exe
2014-10-01 20:55:11 ----D---- C:\Program Files\Common Files\McAfee
2014-09-10 15:17:58 ----A---- C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}t.sys
2014-09-09 14:51:54 ----A---- C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt.sys
======List of files/folders modified in the last 1 month======
2014-10-08 16:08:00 ----D---- C:\Program Files\trend micro
2014-10-08 16:07:58 ----D---- C:\WINDOWS\Temp
2014-10-08 16:07:54 ----D---- C:\WINDOWS\Prefetch
2014-10-08 16:00:42 ----D---- C:\WINDOWS\system32
2014-10-08 16:00:30 ----D---- C:\WINDOWS\SMINST
2014-10-08 16:00:29 ----D---- C:\WINDOWS\system32\CatRoot2
2014-10-08 15:59:44 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-10-08 15:59:30 ----RD---- C:\Program Files
2014-10-08 15:59:29 ----D---- C:\WINDOWS\system32\drivers
2014-10-06 16:18:29 ----SHD---- C:\WINDOWS\Installer
2014-10-06 16:18:23 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2014-10-05 16:43:42 ----SD---- C:\WINDOWS\Tasks
2014-10-05 16:37:58 ----D---- C:\WINDOWS
2014-10-05 16:37:58 ----A---- C:\WINDOWS\system.ini
2014-10-05 16:35:45 ----D---- C:\WINDOWS\system32\drivers\etc
2014-10-05 16:33:51 ----D---- C:\WINDOWS\system32\config
2014-10-05 16:30:48 ----D---- C:\WINDOWS\AppPatch
2014-10-05 16:30:46 ----D---- C:\Program Files\Common Files
2014-10-05 16:25:20 ----RASH---- C:\boot.ini
2014-10-02 19:12:07 ----HD---- C:\WINDOWS\inf
2014-10-02 19:11:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2014-10-02 16:52:57 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-10-02 16:46:47 ----A---- C:\WINDOWS\win.ini
2014-10-02 16:25:55 ----D---- C:\Documents and Settings\Maty\Data aplikací\uTorrent
2014-09-22 08:41:56 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-09-12 15:17:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-09-12 15:02:11 ----D---- C:\WINDOWS\system32\MRT
2014-09-12 14:54:46 ----A---- C:\WINDOWS\system32\MRT.exe
2014-09-10 15:30:06 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-09-09 15:26:33 ----D---- C:\Documents and Settings\Maty\Data aplikací\Skype
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 DRVMCDB;DRVMCDB; C:\WINDOWS\System32\Drivers\DRVMCDB.SYS [2005-08-30 88752]
R0 iaStor;Intel AHCI Controller; C:\WINDOWS\System32\DRIVERS\iaStor.sys [2005-10-12 874240]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2014-06-20 576048]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2005-04-25 20640]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-01-14 47616]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2004-10-28 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2004-12-03 20544]
R1 {af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt;{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt; C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt.sys [2014-09-07 55104]
R1 {af16652c-3cdd-4795-b89b-2d9cf16806d6}t;{af16652c-3cdd-4795-b89b-2d9cf16806d6}t; C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}t.sys [2014-09-06 55104]
R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2005-08-25 5628]
R1 DLARTL_N;DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [2005-08-25 22684]
R1 eabfiltr;eabfiltr; C:\WINDOWS\system32\DRIVERS\eabfiltr.sys [2005-09-19 7808]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 mfetdi2k;McAfee Inc. mfetdi2k; C:\WINDOWS\system32\drivers\mfetdi2k.sys [2014-06-20 93624]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2005-08-31 25628]
R2 DLADResN;DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2005-08-31 2496]
R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2005-08-31 86524]
R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2005-08-31 14684]
R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2005-08-31 6364]
R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2005-08-31 87036]
R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2005-08-31 94332]
R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2005-08-12 40544]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2006-02-28 176128]
R3 AEAudioService;AEAudio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2005-06-07 152960]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2006-07-31 1155584]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2006-02-09 45312]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2006-01-18 1342570]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2006-01-18 57096]
R3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2014-06-20 62832]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2005-09-19 9344]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2006-03-23 1166972]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\WINDOWS\system32\drivers\mfeapfk.sys [2014-06-20 135968]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2014-06-20 238176]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2014-06-20 369248]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2014-07-24 349192]
R3 mfendiskmp;mfendiskmp; C:\WINDOWS\system32\DRIVERS\mfendisk.sys [2014-06-20 87520]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-03-03 192736]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 w39n51;Intel(R) PRO/Wireless 3945ABG Adapter Driver; C:\WINDOWS\system32\DRIVERS\w39n51.sys [2006-01-19 1428096]
S3 ATSWPDRV;AuthenTec TruePrint USB Driver (AES2500); C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys [2006-03-30 130432]
S3 b57w2k;Broadcom NetLink (TM) Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2006-02-09 142720]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 eabusb;eabusb; C:\WINDOWS\system32\DRIVERS\eabusb.sys [2005-09-19 5760]
S3 GTIPCI21;GTIPCI21; C:\WINDOWS\system32\DRIVERS\gtipci21.sys []
S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2013-09-23 147912]
S3 mfebopk;McAfee Inc. mfebopk; C:\WINDOWS\system32\drivers\mfebopk.sys [2014-06-20 67816]
S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2014-07-24 81296]
S3 mfendisk;McAfee Core NDIS Intermediate Filter; C:\WINDOWS\system32\DRIVERS\mfendisk.sys [2014-06-20 87520]
S3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
S3 SMCIRDA;SMC IrCC Miniport Device Driver; C:\WINDOWS\system32\DRIVERS\smcirda.sys [2001-10-24 35913]
S3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys []
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2004-08-10 18944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASChannel;Local Communication Channel; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2006-01-18 258103]
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-05-02 135168]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2014-01-20 158128]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-06-20 49152]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2014-04-25 145568]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 mfecore;McAfee Anti-Malware Core; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2014-07-24 655936]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2014-06-20 169800]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\WINDOWS\system32\mfevtps.exe [2014-06-20 179600]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-10 38912]
S2 PCA;PC Angel; C:\WINDOWS\SMINST\PCAngel.exe [2006-01-12 294912]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S2 Update allgenius;Update allgenius; C:\Program Files\allgenius\updateallgenius.exe []
S2 Util allgenius;Util allgenius; C:\Program Files\allgenius\bin\utilallgenius.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10 267440]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 McODS;McAfee Scanner; C:\Program Files\McAfee\VirusScan\mcods.exe [2014-06-12 472072]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-02 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WmcCds;Windows Media Connect (WMC); c:\program files\windows media connect\mswmccds.exe [2004-08-11 483328]
S3 WmcCdsLs;Podpora programu Windows Media Connect (WMC); C:\Program Files\Windows Media Connect\mswmcls.exe [2004-08-10 28160]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Stáhni Junkware Removal Tool http://thisisudax.org/downloads/JRT.exeUlož jej na plochu a spusť - zobrazí se licenční podminky -> start libovolnou klávesou.
Bude vytvořena záloha a proběhne skenování.
Vyskočí log (nebo je uložen zde c:\JRT jako JRT.txt) - zkopíruj jej sem
Stáhni AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleanerUlož nejlépe na plochu -> ukonči všechny programy -> spusť AdwCleaner -> klikni na Scan po dokončení na Clean
bude provedena oprava, restartuje se - (případně restartuj) a vypadne log C:\AdwCleaner\AdwCleaner[S?].txt , jeho obsah vložíš sem
pravděpodobně budeš nucen vypnout na tu chvíli antivir - je to čisté, prověřeno
vyosek píše:Log bude zde C:\zoek-results.log
Kód: Vybrat vše
srinfo; autoclean; emptyclsid; iedefaults; process; hijackthis; emptyalltemp; resethosts;- Nasledne kliknete na Run Script
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: Prosím o kontrolu logu
Tak prohlížeč už naběhl v pohodě, tady jsou logy.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.1 (10.06.2014:1)
OS: Microsoft Windows XP x86
Ran by Maty on st 08.10.2014 at 18:16:11,28
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
Successfully deleted: [File] "C:\WINDOWS\wininit.ini"
~~~ Folders
~~~ FireFox
Successfully deleted: [File] C:\Documents and Settings\Maty\Data aplikací\mozilla\firefox\profiles\fjg3wwkn.default\user.js
Successfully deleted the following from C:\Documents and Settings\Maty\Data aplikací\mozilla\firefox\profiles\fjg3wwkn.default\prefs.js
user_pref("browser.search.defaultenginename", "FindWide");
user_pref("browser.search.selectedEngine", "FindWide");
user_pref("browser.search.useDBForOrder", true);
user_pref("keyword.URL", "hxxp://search.findwide.com/serp?guid={D00D06AB-DDF7-4C70-89F9-56114C90FCBA}&action=default_search&k=");
user_pref("plugin.state.npconduitfirefoxplugin", 0);
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 08.10.2014 at 18:20:56,89
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# AdwCleaner v3.311 - Report created 08/10/2014 at 18:32:19
# Updated 30/09/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Maty - PC144542890713
# Running from : C:\Documents and Settings\Maty\Dokumenty\Stažené soubory\adwcleaner_3.311.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : {af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt
[#] Service Deleted : {af16652c-3cdd-4795-b89b-2d9cf16806d6}t
***** [ Files / Folders ] *****
File Deleted : C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt.sys
File Deleted : C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}t.sys
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v32.0.3 (x86 cs)
[ File : C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default\prefs.js ]
-\\ Google Chrome v
*************************
AdwCleaner[R0].txt - [1592 octets] - [08/10/2014 18:24:47]
AdwCleaner[R1].txt - [1652 octets] - [08/10/2014 18:28:29]
AdwCleaner[S0].txt - [1599 octets] - [08/10/2014 18:32:19]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1659 octets] ##########
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.1 (10.06.2014:1)
OS: Microsoft Windows XP x86
Ran by Maty on st 08.10.2014 at 18:16:11,28
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
Successfully deleted: [File] "C:\WINDOWS\wininit.ini"
~~~ Folders
~~~ FireFox
Successfully deleted: [File] C:\Documents and Settings\Maty\Data aplikací\mozilla\firefox\profiles\fjg3wwkn.default\user.js
Successfully deleted the following from C:\Documents and Settings\Maty\Data aplikací\mozilla\firefox\profiles\fjg3wwkn.default\prefs.js
user_pref("browser.search.defaultenginename", "FindWide");
user_pref("browser.search.selectedEngine", "FindWide");
user_pref("browser.search.useDBForOrder", true);
user_pref("keyword.URL", "hxxp://search.findwide.com/serp?guid={D00D06AB-DDF7-4C70-89F9-56114C90FCBA}&action=default_search&k=");
user_pref("plugin.state.npconduitfirefoxplugin", 0);
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 08.10.2014 at 18:20:56,89
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# AdwCleaner v3.311 - Report created 08/10/2014 at 18:32:19
# Updated 30/09/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Maty - PC144542890713
# Running from : C:\Documents and Settings\Maty\Dokumenty\Stažené soubory\adwcleaner_3.311.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : {af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt
[#] Service Deleted : {af16652c-3cdd-4795-b89b-2d9cf16806d6}t
***** [ Files / Folders ] *****
File Deleted : C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}Gt.sys
File Deleted : C:\WINDOWS\system32\drivers\{af16652c-3cdd-4795-b89b-2d9cf16806d6}t.sys
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v32.0.3 (x86 cs)
[ File : C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default\prefs.js ]
-\\ Google Chrome v
*************************
AdwCleaner[R0].txt - [1592 octets] - [08/10/2014 18:24:47]
AdwCleaner[R1].txt - [1652 octets] - [08/10/2014 18:28:29]
AdwCleaner[S0].txt - [1599 octets] - [08/10/2014 18:32:19]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1659 octets] ##########
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Počkáme na výsledek Zoek a nový RSIT na případné dočištění 
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: Prosím o kontrolu logu
RSIT bude hned následovat
Zoek.exe v5.0.0.0 Updated 07-October-2014
Tool run by Maty on st 08.10.2014 at 20:36:13,00.
Microsoft Windows XP Home Edition 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Maty\Plocha\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
8.10.2014 20:37:50 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C4069E3A-68F1-403E-B40E-20066696354B} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Internet Explorer\Approved Extensions\{37451734-B7FB-4A26-A1E3-55DE4912464E} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{C4069E3A-68F1-403E-B40E-20066696354B} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\jqs@sun.com deleted successfully
==== Running Processes ======================
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\WINDOWS\system32\DllHost.exe
C:\Program Files\HPQ\IAM\bin\asghost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
C:\WINDOWS\system32\mfevtps.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\McAfee\MSC\McAPExe.exe
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\SMINST\Scheduler.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\PROGRA~1\HPQ\Shared\HPQTOA~1.EXE
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\Documents and Settings\Maty\Plocha\zoek.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k Cognizance
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k imgsvc
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Util allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Util allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\Util allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Util allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\Update allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Update allgenius deleted successfully
==== FireFox Fix ======================
ProfilePath: C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default
user.js not found
---- Lines jqs@sun.com modified from prefs.js ----
user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"jqs@sun.com\":{\"descriptor\":\"C:\\\\Program Files\\\\Java\\\\jr
---- FireFox user.js and prefs.js backups ----
prefs_08.10.2014_2059_.backup
ProfilePath: C:\Documents and Settings\MATSEK~1\Data aplikací\Mozilla\Firefox\Profiles\r7cp7emm.default
prefs.js not found
user.js not found
---- FireFox user.js and prefs.js backups ----
==== Deleting Files \ Folders ======================
C:\Documents and Settings\Maty\AppData\LocalLow\{0E6F71AC-1F21-EE85-A41A-3E61050F2514} deleted
C:\Documents and Settings\Maty\AppData\LocalLow\{BD544E5B-0C25-F90B-5453-EC0EB101EAD7} deleted
C:\Documents and Settings\Maty\AppData\LocalLow\{D710165E-5C85-3ABB-2BFE-33CA8E1F4EBF} deleted
C:\Documents and Settings\Maty\AppData\LocalLow\{DB1BE921-119C-0D6B-D94C-BF623931E92E} deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\871b371cdcf02444 deleted
C:\Documents and Settings\Maty\.android deleted
C:\Program Files\ComPlus Applications deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\spds90.txt deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\ICQ deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\InstallMate deleted
C:\Documents and Settings\Maty\Local Settings\Data aplikací\cache deleted
C:\WINDOWS\System32\InstallUtil.InstallLog deleted
"C:\Program Files\Java\jre6\bin\jqs.exe" deleted
"C:\Program Files\Java\jre6\bin\msvcr71.dll" deleted
"C:\Program Files\Java" not deleted
"C:\Program Files\Java\jre6" not deleted
"C:\Program Files\Java\jre6\bin" not deleted
======== System Restore Points ========
RP80: 11.7.2014 19:56:03 - Kontrolní bod systému
RP81: 12.7.2014 16:56:20 - Xfire Install 1.32
RP82: 12.7.2014 17:19:53 - Installed Call of Duty - United Offensive
RP83: 14.7.2014 13:13:52 - Kontrolní bod systému
RP84: 15.7.2014 18:46:23 - Kontrolní bod systému
RP85: 16.7.2014 19:03:55 - Kontrolní bod systému
RP86: 20.7.2014 20:11:58 - Kontrolní bod systému
RP87: 22.7.2014 14:58:25 - Kontrolní bod systému
RP88: 1.8.2014 16:06:07 - Kontrolní bod systému
RP89: 5.8.2014 11:43:33 - Kontrolní bod systému
RP90: 7.8.2014 23:13:01 - Kontrolní bod systému
RP91: 26.8.2014 11:56:07 - Kontrolní bod systému
RP92: 31.8.2014 18:41:46 - Kontrolní bod systému
RP93: 31.8.2014 19:05:16 - Software Distribution Service 3.0
RP94: 1.9.2014 19:56:21 - Software Distribution Service 3.0
RP95: 3.9.2014 13:45:21 - Software Distribution Service 3.0
RP96: 4.9.2014 16:23:21 - Software Distribution Service 3.0
RP97: 7.9.2014 17:39:17 - Software Distribution Service 3.0
RP98: 8.9.2014 18:49:07 - Software Distribution Service 3.0
RP99: 10.9.2014 15:27:50 - Software Distribution Service 3.0
RP100: 12.9.2014 14:54:32 - Software Distribution Service 3.0
RP101: 12.9.2014 15:03:19 - Software Distribution Service 3.0
RP102: 12.9.2014 15:16:28 - Software Distribution Service 3.0
RP103: 1.10.2014 20:20:30 - Software Distribution Service 3.0
RP104: 2.10.2014 21:27:52 - Kontrolní bod systému
RP105: 5.10.2014 16:22:16 - ComboFix created restore point
RP106: 6.10.2014 16:18:18 - Removed Bing Bar
RP107: 7.10.2014 19:41:21 - Kontrolní bod systému
RP108: 8.10.2014 19:44:24 - Kontrolní bod systému
RP109: 8.10.2014 20:37:50 - zoek.exe restore point
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files\McAfee\SiteAdvisor" [01.10.2014 21:10]
==== Firefox Extensions ======================
ProfilePath: C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default
- McAfee SafeKey - %ProfilePath%\extensions\{072844D3-7DEE-45F6-A406-E87F76302E4B}
- Noia Fox : Options - %ProfilePath%\extensions\NoiaFoxoption@davidvincent.tld.xpi
- Noia Fox - %ProfilePath%\extensions\{7b90e860-5d61-11e0-80e3-0800200c9a66}.xpi
- Noia 4 - %ProfilePath%\extensions\{faf13420-5e24-11e0-80e3-0800200c9a66}.xpi
ProfilePath: C:\Documents and Settings\MATSEK~1\Data aplikací\Mozilla\Firefox\Profiles\r7cp7emm.default
- Undetermined - %ProfilePath%\extensions\{9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}
AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default
DFC9460CC37E5C414DC4680B10C19E7A - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll - Shockwave Flash
893BF7D2261C56C24F813405D9D018E0 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll - Silverlight Plug-In
24FC9E3BF54DE8CE91700615D8AD4B0D - C:\WINDOWS\system32\npdeployJava1.dll - Java Deployment Toolkit 6.0.450.6
7B40A8479A10E23E00BD58D32E1CC0A5 - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin
AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation
7E54D1EC87CE306CB1A26CE59AFE6E37 - C:\Program Files\Windows Media Player\npdrmv2.dll - Microsoft® DRM
D33D39A318AEA70691CED7530E2D9DF9 - C:\Program Files\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
CFBC726A1712BD8DC9914EA06DBCE20B - C:\Program Files\Windows Media Player\npwmsdrm.dll - Microsoft® DRM
8F5927706AE17CD50541F5C417248EA8 - C:\Program Files\Adobe\Acrobat 7.0\Reader\browser\nppdf32.dll - Adobe Acrobat
8DA2ED6B04EA33F2EAE8BA883F903729 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll - Microsoft® Silverlight
6B47E809D91DF30D028CF4F1B11A6616 - C:\WINDOWS\system32\npptools.dll - Operační systém Microsoft® Windows®
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx[30.06.2014 15:21]
KeyRocket for Gmail - Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp
SaeArch-NewTab - Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn
Savee net - Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie
YoutubeAdblocker - Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf
KeyRocket for Gmail - Maty\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp
KeyRocket for Gmail - Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp
SaeArch-NewTab - Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn
Savee net - Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie
YoutubeAdblocker - Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf
==== Chromium Fix ======================
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E7E6F031-17CE-4C07-BC86-EABFE594F69C} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E7E6F031-17CE-4C07-BC86-EABFE594F69C} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{E7E6F031-17CE-4C07-BC86-EABFE594F69C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\db81528b-e97c-42a7-bb43-b91660ef9613 deleted successfully
==== HijackThis Entries ======================
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/U223_FRPage
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: McAfee SafeKey Vault - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files\SafeKey\LPToolbar.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: HP Credential Manager for ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll
O3 - Toolbar: McAfee SafeKey - {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files\SafeKey\LPToolbar.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\Sminst\Recguard.exe
O4 - HKLM\..\Run: [Reminder] C:\WINDOWS\Creator\Remind_XP.exe
O4 - HKLM\..\Run: [Scheduler] C:\WINDOWS\SMINST\Scheduler.exe
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - Global Startup: Install SafeKey FF RunOnce.lnk = C:\Program Files\Common Files\lpuninstall.exe
O4 - Global Startup: Install SafeKey IE RunOnce.lnk = C:\Program Files\Common Files\lpuninstall.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: SafeKey - file://C:\Documents and Settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=lastpass
O8 - Extra context menu item: SafeKey Fill Forms - file://C:\Documents and Settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=fillforms
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\SafeKey\LPToolbar.dll
O9 - Extra 'Tools' menuitem: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\SafeKey\LPToolbar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 0247774000
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~1\mcafee\msc\mcsniepl.dll
O20 - Winlogon Notify: OneCard - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\WINDOWS\system32\mfevtps.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: PC Angel (PCA) - SoftThinks - C:\WINDOWS\SMINST\PCAngel.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
==== Empty IE Cache ======================
C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\Maty\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Cache found
==== Empty Chrome Cache ======================
No Chrome Cache found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=1280 folders=201 157273342 bytes)
==== Empty Temp Folders ======================
C:\Documents and Settings\Default User\Local Settings\Temp emptied successfully
C:\Documents and Settings\LocalService\Local Settings\temp emptied successfully
C:\Documents and Settings\Maty\Local Settings\temp will be emptied at reboot
C:\Documents and Settings\Matýsek\Local Settings\Temp emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\Maty\LOCALS~1\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\RECYCLER successfully emptied
==== Deleting Files / Folders ======================
"C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Documents and Settings\Maty\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Program Files\Java" not found
==== EOF on st 08.10.2014 at 21:21:34,70 ======================
Zoek.exe v5.0.0.0 Updated 07-October-2014
Tool run by Maty on st 08.10.2014 at 20:36:13,00.
Microsoft Windows XP Home Edition 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Maty\Plocha\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
8.10.2014 20:37:50 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C4069E3A-68F1-403E-B40E-20066696354B} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Internet Explorer\Approved Extensions\{37451734-B7FB-4A26-A1E3-55DE4912464E} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{C4069E3A-68F1-403E-B40E-20066696354B} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\jqs@sun.com deleted successfully
==== Running Processes ======================
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\WINDOWS\system32\DllHost.exe
C:\Program Files\HPQ\IAM\bin\asghost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
C:\WINDOWS\system32\mfevtps.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\McAfee\MSC\McAPExe.exe
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\SMINST\Scheduler.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\PROGRA~1\HPQ\Shared\HPQTOA~1.EXE
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\Documents and Settings\Maty\Plocha\zoek.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k Cognizance
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k imgsvc
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Util allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Util allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\Util allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Util allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\Update allgenius deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Update allgenius deleted successfully
==== FireFox Fix ======================
ProfilePath: C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default
user.js not found
---- Lines jqs@sun.com modified from prefs.js ----
user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"jqs@sun.com\":{\"descriptor\":\"C:\\\\Program Files\\\\Java\\\\jr
---- FireFox user.js and prefs.js backups ----
prefs_08.10.2014_2059_.backup
ProfilePath: C:\Documents and Settings\MATSEK~1\Data aplikací\Mozilla\Firefox\Profiles\r7cp7emm.default
prefs.js not found
user.js not found
---- FireFox user.js and prefs.js backups ----
==== Deleting Files \ Folders ======================
C:\Documents and Settings\Maty\AppData\LocalLow\{0E6F71AC-1F21-EE85-A41A-3E61050F2514} deleted
C:\Documents and Settings\Maty\AppData\LocalLow\{BD544E5B-0C25-F90B-5453-EC0EB101EAD7} deleted
C:\Documents and Settings\Maty\AppData\LocalLow\{D710165E-5C85-3ABB-2BFE-33CA8E1F4EBF} deleted
C:\Documents and Settings\Maty\AppData\LocalLow\{DB1BE921-119C-0D6B-D94C-BF623931E92E} deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\871b371cdcf02444 deleted
C:\Documents and Settings\Maty\.android deleted
C:\Program Files\ComPlus Applications deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\spds90.txt deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\ICQ deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\InstallMate deleted
C:\Documents and Settings\Maty\Local Settings\Data aplikací\cache deleted
C:\WINDOWS\System32\InstallUtil.InstallLog deleted
"C:\Program Files\Java\jre6\bin\jqs.exe" deleted
"C:\Program Files\Java\jre6\bin\msvcr71.dll" deleted
"C:\Program Files\Java" not deleted
"C:\Program Files\Java\jre6" not deleted
"C:\Program Files\Java\jre6\bin" not deleted
======== System Restore Points ========
RP80: 11.7.2014 19:56:03 - Kontrolní bod systému
RP81: 12.7.2014 16:56:20 - Xfire Install 1.32
RP82: 12.7.2014 17:19:53 - Installed Call of Duty - United Offensive
RP83: 14.7.2014 13:13:52 - Kontrolní bod systému
RP84: 15.7.2014 18:46:23 - Kontrolní bod systému
RP85: 16.7.2014 19:03:55 - Kontrolní bod systému
RP86: 20.7.2014 20:11:58 - Kontrolní bod systému
RP87: 22.7.2014 14:58:25 - Kontrolní bod systému
RP88: 1.8.2014 16:06:07 - Kontrolní bod systému
RP89: 5.8.2014 11:43:33 - Kontrolní bod systému
RP90: 7.8.2014 23:13:01 - Kontrolní bod systému
RP91: 26.8.2014 11:56:07 - Kontrolní bod systému
RP92: 31.8.2014 18:41:46 - Kontrolní bod systému
RP93: 31.8.2014 19:05:16 - Software Distribution Service 3.0
RP94: 1.9.2014 19:56:21 - Software Distribution Service 3.0
RP95: 3.9.2014 13:45:21 - Software Distribution Service 3.0
RP96: 4.9.2014 16:23:21 - Software Distribution Service 3.0
RP97: 7.9.2014 17:39:17 - Software Distribution Service 3.0
RP98: 8.9.2014 18:49:07 - Software Distribution Service 3.0
RP99: 10.9.2014 15:27:50 - Software Distribution Service 3.0
RP100: 12.9.2014 14:54:32 - Software Distribution Service 3.0
RP101: 12.9.2014 15:03:19 - Software Distribution Service 3.0
RP102: 12.9.2014 15:16:28 - Software Distribution Service 3.0
RP103: 1.10.2014 20:20:30 - Software Distribution Service 3.0
RP104: 2.10.2014 21:27:52 - Kontrolní bod systému
RP105: 5.10.2014 16:22:16 - ComboFix created restore point
RP106: 6.10.2014 16:18:18 - Removed Bing Bar
RP107: 7.10.2014 19:41:21 - Kontrolní bod systému
RP108: 8.10.2014 19:44:24 - Kontrolní bod systému
RP109: 8.10.2014 20:37:50 - zoek.exe restore point
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files\McAfee\SiteAdvisor" [01.10.2014 21:10]
==== Firefox Extensions ======================
ProfilePath: C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default
- McAfee SafeKey - %ProfilePath%\extensions\{072844D3-7DEE-45F6-A406-E87F76302E4B}
- Noia Fox : Options - %ProfilePath%\extensions\NoiaFoxoption@davidvincent.tld.xpi
- Noia Fox - %ProfilePath%\extensions\{7b90e860-5d61-11e0-80e3-0800200c9a66}.xpi
- Noia 4 - %ProfilePath%\extensions\{faf13420-5e24-11e0-80e3-0800200c9a66}.xpi
ProfilePath: C:\Documents and Settings\MATSEK~1\Data aplikací\Mozilla\Firefox\Profiles\r7cp7emm.default
- Undetermined - %ProfilePath%\extensions\{9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}
AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Documents and Settings\Maty\Data aplikací\Mozilla\Firefox\Profiles\fjg3wwkn.default
DFC9460CC37E5C414DC4680B10C19E7A - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll - Shockwave Flash
893BF7D2261C56C24F813405D9D018E0 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll - Silverlight Plug-In
24FC9E3BF54DE8CE91700615D8AD4B0D - C:\WINDOWS\system32\npdeployJava1.dll - Java Deployment Toolkit 6.0.450.6
7B40A8479A10E23E00BD58D32E1CC0A5 - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin
AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation
7E54D1EC87CE306CB1A26CE59AFE6E37 - C:\Program Files\Windows Media Player\npdrmv2.dll - Microsoft® DRM
D33D39A318AEA70691CED7530E2D9DF9 - C:\Program Files\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
CFBC726A1712BD8DC9914EA06DBCE20B - C:\Program Files\Windows Media Player\npwmsdrm.dll - Microsoft® DRM
8F5927706AE17CD50541F5C417248EA8 - C:\Program Files\Adobe\Acrobat 7.0\Reader\browser\nppdf32.dll - Adobe Acrobat
8DA2ED6B04EA33F2EAE8BA883F903729 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll - Microsoft® Silverlight
6B47E809D91DF30D028CF4F1B11A6616 - C:\WINDOWS\system32\npptools.dll - Operační systém Microsoft® Windows®
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx[30.06.2014 15:21]
KeyRocket for Gmail - Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp
SaeArch-NewTab - Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn
Savee net - Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie
YoutubeAdblocker - Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf
KeyRocket for Gmail - Maty\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp
KeyRocket for Gmail - Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp
SaeArch-NewTab - Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn
Savee net - Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie
YoutubeAdblocker - Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf
==== Chromium Fix ======================
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\omgdgfgjoedgkcabkiogbceahknmincf deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dmocchgkijnbjdjkmlglaemjhhdiobbp deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\fokmjhpoabhekcojkncfpennlcghbjpn deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\ASPNET\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\Maty\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\kfoihbdickgnbgaichknmocoebgclkie deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E7E6F031-17CE-4C07-BC86-EABFE594F69C} deleted successfully
HKEY_USERS\S-1-5-21-755595373-899942693-2686452865-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E7E6F031-17CE-4C07-BC86-EABFE594F69C} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{E7E6F031-17CE-4C07-BC86-EABFE594F69C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\db81528b-e97c-42a7-bb43-b91660ef9613 deleted successfully
==== HijackThis Entries ======================
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/U223_FRPage
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: McAfee SafeKey Vault - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files\SafeKey\LPToolbar.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: HP Credential Manager for ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll
O3 - Toolbar: McAfee SafeKey - {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files\SafeKey\LPToolbar.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\Sminst\Recguard.exe
O4 - HKLM\..\Run: [Reminder] C:\WINDOWS\Creator\Remind_XP.exe
O4 - HKLM\..\Run: [Scheduler] C:\WINDOWS\SMINST\Scheduler.exe
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - Global Startup: Install SafeKey FF RunOnce.lnk = C:\Program Files\Common Files\lpuninstall.exe
O4 - Global Startup: Install SafeKey IE RunOnce.lnk = C:\Program Files\Common Files\lpuninstall.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: SafeKey - file://C:\Documents and Settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=lastpass
O8 - Extra context menu item: SafeKey Fill Forms - file://C:\Documents and Settings\Maty\Local Settings\Data aplikací\SafeKey\context.html?cmd=fillforms
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\SafeKey\LPToolbar.dll
O9 - Extra 'Tools' menuitem: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\SafeKey\LPToolbar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 0247774000
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~1\mcafee\msc\mcsniepl.dll
O20 - Winlogon Notify: OneCard - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\WINDOWS\system32\mfevtps.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: PC Angel (PCA) - SoftThinks - C:\WINDOWS\SMINST\PCAngel.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
==== Empty IE Cache ======================
C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\Maty\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Cache found
==== Empty Chrome Cache ======================
No Chrome Cache found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=1280 folders=201 157273342 bytes)
==== Empty Temp Folders ======================
C:\Documents and Settings\Default User\Local Settings\Temp emptied successfully
C:\Documents and Settings\LocalService\Local Settings\temp emptied successfully
C:\Documents and Settings\Maty\Local Settings\temp will be emptied at reboot
C:\Documents and Settings\Matýsek\Local Settings\Temp emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\Maty\LOCALS~1\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\RECYCLER successfully emptied
==== Deleting Files / Folders ======================
"C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Documents and Settings\Maty\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Program Files\Java" not found
==== EOF on st 08.10.2014 at 21:21:34,70 ======================
Přispějete na provoz fóra?