PC se mi čas od času při nějakm úkolu na cca 10 vteřin zasekne a nic dlšího nezpracovává. Prosím o kontrolu logu, jestli ho něco neužírá. Díky
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-10-2014 01
Ran by T (administrator) on SELI-KANCELAR1 on 13-10-2014 20:01:03
Running from C:\Documents and Settings\T\Plocha
Loaded Profiles: Milan & T & UpdatusUser (Available profiles: Milan & T & UpdatusUser & MH & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
(Crawler.com) C:\Program Files\Spyware Terminator\sp_rsser.exe
() C:\Program Files\Synology Data Replicator 3\SynoDrService.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
() C:\WINDOWS\system32\spool\drivers\w32x86\3\spe__pi.exe
() C:\Ksoft\KOSYS\KOSYS.EXE
(Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
(Microsoft Corporation) C:\WINDOWS\system32\logonui.exe
(Microsoft Corporation) C:\WINDOWS\system32\logon.scr
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
() C:\Ksoft\KOSYS\KOSYS.EXE
(Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Synology Inc.) C:\Program Files\Synology Data Replicator 3\Backup.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432 2014-10-10] (AVAST Software)
HKU\S-1-5-21-1390067357-1454471165-725345543-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21650016 2014-07-24] (Skype Technologies S.A.)
HKU\S-1-5-21-1390067357-1454471165-725345543-1004\...\Run: [Data Replicator 3] => C:\Program Files\Synology Data Replicator 3\Backup.exe [11605576 2013-10-09] (Synology Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\VIA RAID TOOL.lnk
ShortcutTarget: VIA RAID TOOL.lnk -> C:\Program Files\VIA\RAID\raid_tool.exe (VIA Technologies)
Startup: C:\Documents and Settings\Milan \Nabídka Start\Programy\Po spuštění\start.lnk
ShortcutTarget: start.lnk -> C:\Documents and Settings\Milan \nwb65w2t16\92486.vbs (No File)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
URLSearchHook: HKCU - (No Name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - No File
SearchScopes: HKCU - {9701B515-5994-4A4E-9002-C253FA5D7AF5} URL = http://search.yahoo.com/search?fr=chr-g ... =302398&p={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
DPF: {336C9D79-263A-4D75-AA7C-60DAF945AE67} http://62.209.202.134:7001/classes/Ovis ... V_H264.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/v ... .2.5.7.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 7155813140
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} https://www.mojedatovaschranka.cz/stati ... ?3,16,13,0
DPF: {6BA530D8-94B2-49E0-AC55-70899582FE1F} http://192.168.1.225/AV718.cab
DPF: {79EE81BD-6194-4240-A04F-131A81513DCB} http://192.168.1.31/Media.CAB
DPF: {7A24CAC8-8549-4698-85A2-AFF61D4427F7} http://192.168.1.223/classes/AlfaCamV.cab
DPF: {87D48502-D1FF-4D25-B66C-9DA4F7CB2722} http://192.168.1.227/classes/CamV_H264.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {8FEED82A-42A6-4117-A803-7EC3EB9339E0} http://62.209.202.134:6001/plugin/client.cab
DPF: {A93B47FD-9BF6-4DA8-97FC-9270B9D64A6C} http://192.168.1.8/plugin/h263ctrl.cab
DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} https://snzr.ksrzis.cz/nsnzr/ozn/capicom.cab
DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {DB87A30F-4960-4247-9672-6A0D550EECE8} http://192.168.1.31/SVRFind.CAB
DPF: {FF3BA0DA-79B5-4110-8FAC-C402D85AAEDA} http://62.209.202.134:6000/view.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{A4B689E6-71A9-4A5E-9F1F-FA3868115F32}: [NameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\T\Data aplikací\Mozilla\Firefox\Profiles\u5h6kkxe.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin HKCU: @kb-ext.cz/PKIComponent -> C:\Documents and Settings\T\Data aplikací\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll (Komerční banka, a.s.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-11-03]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-05-23]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-10]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-10-10]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-10-10] (AVAST Software)
R2 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2009-11-03] (Sun Microsystems, Inc.)
R2 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504 2011-05-25] (NVIDIA Corporation)
S3 Samsung UPD Service; C:\WINDOWS\system32\SUPDSvc.exe [127656 2009-03-24] (Samsung Electronics CO., LTD.)
R2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.) [File not signed]
R2 sp_rssrv; C:\Program Files\Spyware Terminator\sp_rsser.exe [487936 2009-10-19] (Crawler.com) [File not signed]
R2 SynoDrService; c:\Program Files\Synology Data Replicator 3\SynoDrService.exe [251464 2013-10-09] ()
R3 TermService; C:\windows\System32\termsrv.dll [295936 2010-03-16] (Microsoft Corporation) [File not signed]
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 Ambfilt; C:\windows\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-10-10] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-10-10] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr.sys [55112 2014-10-10] (AVAST Software)
S0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-10-10] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [779536 2014-10-10] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [414520 2014-10-10] (AVAST Software)
R1 aswTdi; C:\windows\system32\drivers\aswTdi.sys [57800 2014-10-10] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [192352 2014-10-10] ()
R2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [41984 2006-09-18] (Samsung Electronics Co., Ltd.) [File not signed]
R1 Ext2fs; C:\windows\System32\DRIVERS\ext2fs.sys [181120 2008-09-25] (Stephan Schreiber) [File not signed]
S3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [25280 2008-11-19] (LogMeIn, Inc.)
S3 hipeer20; C:\windows\System32\DRIVERS\remobo32.sys [26112 2009-04-22] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 Huawei; C:\windows\System32\DRIVERS\ewdcsc.sys [24448 2009-08-18] (Huawei Tech. Co., Ltd.)
S3 hwusbfake; C:\windows\System32\DRIVERS\ewusbfake.sys [100736 2009-11-04] (Huawei Technologies Co., Ltd.)
R1 IfsMount; C:\windows\System32\DRIVERS\ifsmount.sys [51072 2008-08-28] (Stephan Schreiber) [File not signed]
R0 JRAID; C:\windows\System32\DRIVERS\jraid.sys [83296 2008-11-04] (JMicron Technology Corp.)
S3 Monfilt; C:\windows\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 rt2870; C:\windows\System32\DRIVERS\rt2870.sys [709248 2009-03-04] (Ralink Technology, Corp.) [File not signed]
S4 RTL8023xp; C:\windows\System32\DRIVERS\DLKRTXP.SYS [83456 2006-07-31] (D-Link Corp. )
S3 SONYPVU1; C:\windows\System32\DRIVERS\SONYPVU1.SYS [7552 2001-08-17] (Sony Corporation)
R1 sp_rsdrv2; C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [142592 2009-10-19] () [File not signed]
S4 viaagp1; C:\windows\System32\DRIVERS\viaagp1.sys [26880 2002-12-27] (VIA Technologies, Inc.)
R0 viamraid; C:\windows\System32\DRIVERS\viamraid.sys [104064 2007-03-19] (VIA Technologies inc,.ltd) [File not signed]
R0 viasraid; C:\windows\System32\drivers\viasraid.sys [77312 2003-11-01] (VIA Technologies inc,.ltd)
R0 videX32; C:\windows\System32\DRIVERS\videX32.sys [9216 2007-03-29] (VIA Technologies, Inc.)
S4 yukonwxp; C:\windows\System32\DRIVERS\yukonwxp.sys [174464 2003-11-28] (Marvell Semiconductor Inc.)
S3 ZDPSp50; C:\windows\System32\Drivers\ZDPSp50.sys [17664 2004-10-25] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 catchme; \??\C:\DOCUME~1\MILANL~1\LOCALS~1\Temp\catchme.sys [X]
S4 IntelIde; No ImagePath
S3 PCASp50; System32\Drivers\PCASp50.sys [X]
U5 ScsiPort; C:\windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 ZDCndis5; \??\C:\WINDOWS\system32\ZDCndis5.SYS [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-13 19:59 - 2014-10-13 20:01 - 00014721 _____ () C:\Documents and Settings\T\Plocha\FRST.txt
2014-10-13 19:59 - 2014-10-13 20:01 - 00000000 ____D () C:\FRST
2014-10-13 19:58 - 2014-10-13 19:58 - 01101824 _____ (Farbar) C:\Documents and Settings\T\Plocha\FRST.exe
2014-10-13 19:54 - 2014-10-13 19:54 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\Data aplikací\Temp
2014-10-13 19:53 - 2014-10-13 19:53 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\AVAST Software
2014-10-13 13:42 - 2014-10-13 13:43 - 00061440 _____ () C:\Documents and Settings\Milan \Plocha\ok - Podklady BNG 10-2014.xls
2014-10-12 20:02 - 2014-10-12 20:02 - 00000857 _____ () C:\Documents and Settings\All Users\Plocha\TeamViewer 9.lnk
2014-10-12 20:02 - 2014-10-12 20:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 9
2014-10-10 23:13 - 2014-10-10 23:13 - 00000000 ____D () C:\Documents and Settings\Milan \Local Settings\Data aplikací\Temp
2014-10-10 23:12 - 2014-10-10 23:12 - 00000000 ____D () C:\Documents and Settings\Milan \Data aplikací\AVAST Software
2014-10-10 23:11 - 2014-10-13 11:11 - 00000380 ____H () C:\windows\Tasks\avast! Emergency Update.job
2014-10-10 23:11 - 2014-10-10 23:11 - 00779536 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00414520 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00414392 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys.1412975509359
2014-10-10 23:11 - 2014-10-10 23:11 - 00276432 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-10-10 23:11 - 2014-10-10 23:11 - 00192352 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00067824 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00057800 _____ (AVAST Software) C:\windows\system32\Drivers\aswTdi.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00055112 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00049944 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-10-10 23:11 - 2014-10-10 23:11 - 00024184 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00001775 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\windows\jumpshot.com
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-10-10 23:10 - 2014-10-10 23:10 - 00000000 ____D () C:\Program Files\AVAST Software
2014-10-10 23:09 - 2014-10-10 23:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-10-10 23:06 - 2014-10-10 23:06 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SUPERAntiSpyware.com
2014-10-09 23:10 - 2014-10-09 23:10 - 00016384 _____ () C:\Documents and Settings\Milan \Plocha\Kopie - PACKAGING STOCK 20140929.xls
2014-10-03 12:37 - 2014-10-03 12:37 - 00013824 _____ () C:\Documents and Settings\Milan \Plocha\Piasten 400g Doulton počty.xls
2014-10-03 08:36 - 2014-10-03 08:56 - 00021504 _____ () C:\Documents and Settings\Milan \Plocha\Seli zahr platby.xls
2014-10-02 23:11 - 2014-10-03 10:22 - 00028672 _____ () C:\Documents and Settings\Milan \Plocha\Mili 02.10.2014.xls
2014-10-02 10:08 - 2014-10-10 23:05 - 00005386 _____ () C:\windows\setupapi.log
2014-09-29 01:38 - 2014-09-29 01:51 - 00022016 _____ () C:\Documents and Settings\Milan \Plocha\situace.xls
2014-09-26 12:24 - 2014-09-26 14:00 - 00013824 _____ () C:\Documents and Settings\Milan \Plocha\platby+zalohy.xls
2014-09-26 10:49 - 2014-09-19 08:00 - 00037376 ____R () C:\Documents and Settings\Milan \Plocha\OK zosit 19.xls
2014-09-26 09:19 - 2014-10-01 12:22 - 00014336 _____ () C:\Documents and Settings\Milan \Plocha\Penny 26.9..xls
2014-09-23 13:45 - 2014-09-23 13:46 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Wiebold fotky
2014-09-23 10:56 - 2014-09-23 10:56 - 00013824 _____ () C:\Documents and Settings\Milan \Plocha\plán.xls
2014-09-19 08:09 - 2014-09-29 09:59 - 00023552 _____ () C:\Documents and Settings\Milan \Plocha\NL 33x250g.xls
2014-09-16 08:13 - 2014-10-03 09:40 - 00060928 _____ () C:\Documents and Settings\Milan \Plocha\Seli Hauswirtz VIANOCE 2014.xls
2014-09-15 11:03 - 2014-09-15 14:03 - 00023040 _____ () C:\Documents and Settings\Milan \Plocha\upravy v byteSešit1.xls
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-13 20:01 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\temp
2014-10-13 20:01 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\Milan \Local Settings\temp
2014-10-13 20:01 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T\Plocha
2014-10-13 19:54 - 2010-03-18 18:03 - 00023296 _____ () C:\Documents and Settings\T\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-13 19:54 - 2007-07-02 21:30 - 00000000 ___HD () C:\Documents and Settings\T\Local Settings\Data aplikací
2014-10-13 19:53 - 2007-07-02 21:30 - 00000000 __RHD () C:\Documents and Settings\T\Data aplikací
2014-10-13 19:37 - 2007-11-05 21:20 - 00000000 ____D () C:\Documents and Settings\Milan \Data aplikací\Skype
2014-10-13 19:33 - 2012-08-09 16:12 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-10-13 19:33 - 2011-04-11 10:06 - 00000000 ____D () C:\Ksoft
2014-10-13 19:33 - 2008-06-02 07:43 - 00000121 _____ () C:\kosdat.mem
2014-10-13 19:25 - 2014-03-24 18:59 - 00000508 ____H () C:\windows\Tasks\User_Feed_Synchronization-{526B7424-400E-4A5F-A451-969C6C71A20B}.job
2014-10-13 19:11 - 2007-06-30 13:14 - 00006605 _____ () C:\windows\wincmd.ini
2014-10-13 19:07 - 2007-06-30 12:22 - 01379443 _____ () C:\windows\WindowsUpdate.log
2014-10-13 16:44 - 2014-02-12 08:38 - 00000072 _____ () C:\Autoconfig.ini
2014-10-13 16:24 - 2009-11-03 17:28 - 00000000 ____D () C:\Documents and Settings\Milan \Dokumenty\Stažené soubory
2014-10-13 15:33 - 2007-06-30 12:27 - 00032636 _____ () C:\windows\SchedLgU.Txt
2014-10-13 15:10 - 2007-11-14 11:48 - 00000684 _____ () C:\windows\wcx_ftp.ini
2014-10-13 14:31 - 2007-07-29 21:02 - 00002561 _____ () C:\Documents and Settings\Milan \Plocha\Microsoft Office Word 2003.lnk
2014-10-13 14:31 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha
2014-10-13 13:49 - 2007-10-26 18:06 - 00001846 ____H () C:\Documents and Settings\Milan \Dokumenty\Default.rdp
2014-10-13 13:40 - 2014-08-07 20:09 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Belgické bonboniery
2014-10-13 13:31 - 2014-08-07 09:33 - 00002259 _____ () C:\Documents and Settings\Milan \Plocha\Denní nakládka ok.lnk
2014-10-13 13:11 - 2007-06-30 14:17 - 00003223 _____ () C:\windows\wiadebug.log
2014-10-13 11:20 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan \Okolní síť
2014-10-12 23:24 - 2014-07-01 21:27 - 00000278 _____ () C:\windows\Tasks\Synology Data Replicator 3-SELI-KANCELAR1-T.job
2014-10-12 23:24 - 2007-07-02 21:30 - 00000272 ___SH () C:\Documents and Settings\T\ntuser.ini
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Program Files\TeamViewer
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Documents and Settings\Milan \Data aplikací\TeamViewer
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 4
2014-10-12 20:02 - 2007-06-30 14:15 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-10-12 20:02 - 2007-06-30 14:15 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-10-12 20:02 - 2007-06-30 12:29 - 00023296 _____ () C:\Documents and Settings\Milan \Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-12 14:01 - 2009-05-07 22:10 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\ML ostatní
2014-10-11 10:25 - 2013-12-23 23:50 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-10-10 23:13 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan \Local Settings\Data aplikací
2014-10-10 23:12 - 2007-06-30 12:28 - 00000000 __RHD () C:\Documents and Settings\Milan \Data aplikací
2014-10-10 23:09 - 2007-06-30 14:15 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-10-10 23:08 - 2010-01-06 04:00 - 00000260 _____ () C:\windows\Tasks\WGASetup.job
2014-10-10 23:08 - 2007-06-30 14:17 - 00000050 _____ () C:\windows\wiaservc.log
2014-10-10 23:08 - 2007-06-30 12:27 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-10-10 23:08 - 2001-10-25 16:00 - 00002206 _____ () C:\windows\system32\wpa.dbl
2014-10-10 23:07 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T
2014-10-10 23:07 - 2007-06-30 12:28 - 00000272 ___SH () C:\Documents and Settings\Milan \ntuser.ini
2014-10-10 23:06 - 2012-11-16 13:36 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SecuGuard6.0.3
2014-10-10 23:06 - 2009-11-02 17:18 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2014-10-10 23:06 - 2007-07-02 21:30 - 00000000 ___RD () C:\Documents and Settings\T\Nabídka Start\Programy
2014-10-10 23:05 - 2008-03-28 13:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\ESET
2014-10-10 23:04 - 2010-03-24 12:38 - 00000000 ____D () C:\Program Files\CesarFTP
2014-10-10 21:34 - 2013-01-30 21:18 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Meine Mappe
2014-10-10 09:58 - 2013-08-13 14:45 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\PEKARNA L I D I - R O Z P I S
2014-10-10 09:37 - 2007-07-11 14:50 - 00000000 ____D () C:\Program Files\=PRIKAZY=
2014-10-03 12:28 - 2007-09-30 13:03 - 00002517 _____ () C:\Documents and Settings\Milan \Plocha\Microsoft Office Excel 2003.lnk
2014-10-02 23:13 - 2007-08-30 09:06 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Ikony Filium
2014-09-29 02:02 - 2013-08-08 08:31 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\T O M A S
2014-09-29 01:58 - 2014-07-02 12:40 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Nysade foto
2014-09-28 22:39 - 2014-09-07 12:28 - 00000613 _____ () C:\Documents and Settings\Milan \Plocha\sdilena-slozka-pekarna.lnk
2014-09-26 09:49 - 2014-09-10 13:49 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Káva 60g
2014-09-26 07:33 - 2012-05-14 20:29 - 00701104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-09-26 07:33 - 2011-09-08 06:33 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-23 22:04 - 2007-07-07 19:20 - 00031232 _____ () C:\Documents and Settings\Milan \Plocha\Seli Kosys-fakturace.xls
2014-09-21 23:07 - 2009-11-04 21:14 - 00000664 _____ () C:\windows\system32\d3d9caps.dat
2014-09-19 07:42 - 2014-01-07 13:56 - 00035328 _____ () C:\Documents and Settings\Milan \Plocha\OK - WieboldOrder Form 2014.xls
2014-09-15 21:28 - 2007-09-24 12:00 - 00016380 _____ () C:\windows\system32\VFP9Rerr.log
2014-09-15 14:08 - 2014-08-18 08:36 - 00000000 ____D () C:\Documents and Settings\Milan \Plocha\Byt pro prodej
Some content of TEMP:
====================
C:\Documents and Settings\Milan \Local Settings\temp\SkypeSetup.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
==================== End Of Log ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosba o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosba o kontrolu logu
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosba o kontrolu logu
# AdwCleaner v4.000 - Report created 13/10/2014 at 21:00:01
# DB v2014-10-13.5
# Updated 12/10/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : T - SELI-KANCELAR1
# Running from : C:\Documents and Settings\T\Local Settings\Temporary Internet Files\Content.IE5\Q5OB0SAK\adwcleaner_4.000[1].exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\Search Settings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B922D405-6D13-4A2B-AE89-08A030DA4402}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Common Files\soft602\langserv.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\TightVNC\tvnserver.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe]
Key Deleted : HKCU\Software\Search Settings
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v32.0.3 (x86 cs)
*************************
AdwCleaner[R0].txt - [2278 octets] - [13/10/2014 20:58:16]
AdwCleaner[S0].txt - [2214 octets] - [13/10/2014 21:00:01]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2274 octets] ##########
# DB v2014-10-13.5
# Updated 12/10/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : T - SELI-KANCELAR1
# Running from : C:\Documents and Settings\T\Local Settings\Temporary Internet Files\Content.IE5\Q5OB0SAK\adwcleaner_4.000[1].exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\Search Settings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B922D405-6D13-4A2B-AE89-08A030DA4402}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Common Files\soft602\langserv.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\TightVNC\tvnserver.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe]
Key Deleted : HKCU\Software\Search Settings
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v32.0.3 (x86 cs)
*************************
AdwCleaner[R0].txt - [2278 octets] - [13/10/2014 20:58:16]
AdwCleaner[S0].txt - [2214 octets] - [13/10/2014 21:00:01]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2274 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosba o kontrolu logu
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosba o kontrolu logu
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-10-2014 01
Ran by T (administrator) on SELI-KANCELAR1 on 14-10-2014 08:06:58
Running from C:\Documents and Settings\T\Plocha
Loaded Profiles: Milan Lipavský & T & UpdatusUser (Available profiles: Milan Lipavský & T & UpdatusUser & MH & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
(Crawler.com) C:\Program Files\Spyware Terminator\sp_rsser.exe
() C:\Program Files\Synology Data Replicator 3\SynoDrService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Synology Inc.) C:\Program Files\Synology Data Replicator 3\Backup.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\logonui.exe
(Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-10-10] (AVAST Software)
HKU\S-1-5-21-1390067357-1454471165-725345543-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21650016 2014-07-24] (Skype Technologies S.A.)
HKU\S-1-5-21-1390067357-1454471165-725345543-1004\...\Run: [Data Replicator 3] => C:\Program Files\Synology Data Replicator 3\Backup.exe [11605576 2013-10-09] (Synology Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\VIA RAID TOOL.lnk
ShortcutTarget: VIA RAID TOOL.lnk -> C:\Program Files\VIA\RAID\raid_tool.exe (VIA Technologies)
Startup: C:\Documents and Settings\Milan Lipavský\Nabídka Start\Programy\Po spuštění\start.lnk
ShortcutTarget: start.lnk -> C:\Documents and Settings\Milan Lipavský\nwb65w2t16\92486.vbs (No File)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKCU - {9701B515-5994-4A4E-9002-C253FA5D7AF5} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
DPF: {336C9D79-263A-4D75-AA7C-60DAF945AE67} http://62.209.202.134:7001/classes/Ovis ... V_H264.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/v ... .2.5.7.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 7155813140
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} https://www.mojedatovaschranka.cz/stati ... ?3,16,13,0
DPF: {6BA530D8-94B2-49E0-AC55-70899582FE1F} http://192.168.1.225/AV718.cab
DPF: {79EE81BD-6194-4240-A04F-131A81513DCB} http://192.168.1.31/Media.CAB
DPF: {7A24CAC8-8549-4698-85A2-AFF61D4427F7} http://192.168.1.223/classes/AlfaCamV.cab
DPF: {87D48502-D1FF-4D25-B66C-9DA4F7CB2722} http://192.168.1.227/classes/CamV_H264.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {8FEED82A-42A6-4117-A803-7EC3EB9339E0} http://62.209.202.134:6001/plugin/client.cab
DPF: {A93B47FD-9BF6-4DA8-97FC-9270B9D64A6C} http://192.168.1.8/plugin/h263ctrl.cab
DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} https://snzr.ksrzis.cz/nsnzr/ozn/capicom.cab
DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {DB87A30F-4960-4247-9672-6A0D550EECE8} http://192.168.1.31/SVRFind.CAB
DPF: {FF3BA0DA-79B5-4110-8FAC-C402D85AAEDA} http://62.209.202.134:6000/view.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{A4B689E6-71A9-4A5E-9F1F-FA3868115F32}: [NameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\T\Data aplikací\Mozilla\Firefox\Profiles\u5h6kkxe.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin HKCU: @kb-ext.cz/PKIComponent -> C:\Documents and Settings\T\Data aplikací\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll (Komerční banka, a.s.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-11-03]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-05-23]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-10]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-10-10]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-10-10] (AVAST Software)
R2 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2009-11-03] (Sun Microsystems, Inc.)
R2 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504 2011-05-25] (NVIDIA Corporation)
S3 Samsung UPD Service; C:\WINDOWS\system32\SUPDSvc.exe [127656 2009-03-24] (Samsung Electronics CO., LTD.)
R2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.) [File not signed]
R2 sp_rssrv; C:\Program Files\Spyware Terminator\sp_rsser.exe [487936 2009-10-19] (Crawler.com) [File not signed]
R2 SynoDrService; c:\Program Files\Synology Data Replicator 3\SynoDrService.exe [251464 2013-10-09] ()
R3 TermService; C:\windows\System32\termsrv.dll [295936 2010-03-16] (Microsoft Corporation) [File not signed]
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 Ambfilt; C:\windows\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-10-10] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-10-10] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr.sys [55112 2014-10-10] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-10-10] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [779536 2014-10-10] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [414520 2014-10-10] (AVAST Software)
R1 aswTdi; C:\windows\system32\drivers\aswTdi.sys [57800 2014-10-10] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [192352 2014-10-10] ()
R2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [41984 2006-09-18] (Samsung Electronics Co., Ltd.) [File not signed]
R1 Ext2fs; C:\windows\System32\DRIVERS\ext2fs.sys [181120 2008-09-25] (Stephan Schreiber) [File not signed]
S3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [25280 2008-11-19] (LogMeIn, Inc.)
S3 hipeer20; C:\windows\System32\DRIVERS\remobo32.sys [26112 2009-04-22] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 Huawei; C:\windows\System32\DRIVERS\ewdcsc.sys [24448 2009-08-18] (Huawei Tech. Co., Ltd.)
S3 hwusbfake; C:\windows\System32\DRIVERS\ewusbfake.sys [100736 2009-11-04] (Huawei Technologies Co., Ltd.)
R1 IfsMount; C:\windows\System32\DRIVERS\ifsmount.sys [51072 2008-08-28] (Stephan Schreiber) [File not signed]
R0 JRAID; C:\windows\System32\DRIVERS\jraid.sys [83296 2008-11-04] (JMicron Technology Corp.)
S3 Monfilt; C:\windows\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 rt2870; C:\windows\System32\DRIVERS\rt2870.sys [709248 2009-03-04] (Ralink Technology, Corp.) [File not signed]
S4 RTL8023xp; C:\windows\System32\DRIVERS\DLKRTXP.SYS [83456 2006-07-31] (D-Link Corp. )
S3 SONYPVU1; C:\windows\System32\DRIVERS\SONYPVU1.SYS [7552 2001-08-17] (Sony Corporation)
R1 sp_rsdrv2; C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [142592 2009-10-19] () [File not signed]
S4 viaagp1; C:\windows\System32\DRIVERS\viaagp1.sys [26880 2002-12-27] (VIA Technologies, Inc.)
R0 viamraid; C:\windows\System32\DRIVERS\viamraid.sys [104064 2007-03-19] (VIA Technologies inc,.ltd) [File not signed]
R0 viasraid; C:\windows\System32\drivers\viasraid.sys [77312 2003-11-01] (VIA Technologies inc,.ltd)
R0 videX32; C:\windows\System32\DRIVERS\videX32.sys [9216 2007-03-29] (VIA Technologies, Inc.)
S4 yukonwxp; C:\windows\System32\DRIVERS\yukonwxp.sys [174464 2003-11-28] (Marvell Semiconductor Inc.)
S3 ZDPSp50; C:\windows\System32\Drivers\ZDPSp50.sys [17664 2004-10-25] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 catchme; \??\C:\DOCUME~1\MILANL~1\LOCALS~1\Temp\catchme.sys [X]
S4 IntelIde; No ImagePath
S3 PCASp50; System32\Drivers\PCASp50.sys [X]
U5 ScsiPort; C:\windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 ZDCndis5; \??\C:\WINDOWS\system32\ZDCndis5.SYS [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-13 20:58 - 2014-10-13 21:00 - 00000000 ____D () C:\AdwCleaner
2014-10-13 19:59 - 2014-10-14 08:07 - 00014054 _____ () C:\Documents and Settings\T\Plocha\FRST.txt
2014-10-13 19:59 - 2014-10-14 08:06 - 00000000 ____D () C:\FRST
2014-10-13 19:58 - 2014-10-13 19:58 - 01101824 _____ (Farbar) C:\Documents and Settings\T\Plocha\FRST.exe
2014-10-13 19:54 - 2014-10-13 19:54 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\Data aplikací\Temp
2014-10-13 19:53 - 2014-10-13 19:53 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\AVAST Software
2014-10-13 13:42 - 2014-10-13 13:43 - 00061440 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\ok - Podklady BNG 10-2014.xls
2014-10-12 20:02 - 2014-10-12 20:02 - 00000857 _____ () C:\Documents and Settings\All Users\Plocha\TeamViewer 9.lnk
2014-10-12 20:02 - 2014-10-12 20:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 9
2014-10-10 23:13 - 2014-10-10 23:13 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací\Temp
2014-10-10 23:12 - 2014-10-10 23:12 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\AVAST Software
2014-10-10 23:11 - 2014-10-13 23:11 - 00000380 ____H () C:\windows\Tasks\avast! Emergency Update.job
2014-10-10 23:11 - 2014-10-10 23:11 - 00779536 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00414520 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00276432 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-10-10 23:11 - 2014-10-10 23:11 - 00192352 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00067824 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00057800 _____ (AVAST Software) C:\windows\system32\Drivers\aswTdi.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00055112 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00049944 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-10-10 23:11 - 2014-10-10 23:11 - 00024184 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00001775 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\windows\jumpshot.com
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-10-10 23:10 - 2014-10-10 23:10 - 00000000 ____D () C:\Program Files\AVAST Software
2014-10-10 23:09 - 2014-10-10 23:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-10-10 23:06 - 2014-10-10 23:06 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SUPERAntiSpyware.com
2014-10-09 23:10 - 2014-10-09 23:10 - 00016384 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Kopie - PACKAGING STOCK 20140929.xls
2014-10-03 12:37 - 2014-10-03 12:37 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Piasten 400g Doulton počty.xls
2014-10-03 08:36 - 2014-10-03 08:56 - 00021504 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli zahr platby.xls
2014-10-02 23:11 - 2014-10-03 10:22 - 00028672 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Mili 02.10.2014.xls
2014-10-02 10:08 - 2014-10-10 23:05 - 00005386 _____ () C:\windows\setupapi.log
2014-09-29 01:38 - 2014-09-29 01:51 - 00022016 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\situace.xls
2014-09-26 12:24 - 2014-09-26 14:00 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\platby+zalohy.xls
2014-09-26 10:49 - 2014-09-19 08:00 - 00037376 ____R () C:\Documents and Settings\Milan Lipavský\Plocha\OK zosit 19.xls
2014-09-26 09:19 - 2014-10-01 12:22 - 00014336 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Penny 26.9..xls
2014-09-23 13:45 - 2014-09-23 13:46 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Wiebold fotky
2014-09-23 10:56 - 2014-09-23 10:56 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\plán.xls
2014-09-19 08:09 - 2014-09-29 09:59 - 00023552 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\NL 33x250g.xls
2014-09-16 08:13 - 2014-10-03 09:40 - 00060928 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli Hauswirtz VIANOCE 2014.xls
2014-09-15 11:03 - 2014-09-15 14:03 - 00023040 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\upravy v byteSešit1.xls
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-14 08:07 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\temp
2014-10-14 08:06 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T\Plocha
2014-10-14 08:00 - 2007-11-05 21:20 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\Skype
2014-10-14 07:54 - 2011-04-11 10:06 - 00000000 ____D () C:\Ksoft
2014-10-14 07:46 - 2008-06-02 07:43 - 00000121 _____ () C:\kosdat.mem
2014-10-14 07:33 - 2012-08-09 16:12 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-10-14 07:32 - 2007-06-30 12:22 - 01419198 _____ () C:\windows\WindowsUpdate.log
2014-10-14 07:30 - 2014-02-12 08:38 - 00000072 _____ () C:\Autoconfig.ini
2014-10-14 01:11 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Local Settings\temp
2014-10-14 00:22 - 2014-03-24 18:59 - 00000508 ____H () C:\windows\Tasks\User_Feed_Synchronization-{526B7424-400E-4A5F-A451-969C6C71A20B}.job
2014-10-13 22:00 - 2009-11-04 21:14 - 00000664 _____ () C:\windows\system32\d3d9caps.dat
2014-10-13 21:30 - 2014-07-01 21:27 - 00000278 _____ () C:\windows\Tasks\Synology Data Replicator 3-SELI-KANCELAR1-T.job
2014-10-13 21:01 - 2007-06-30 14:17 - 00000159 _____ () C:\windows\wiadebug.log
2014-10-13 21:01 - 2007-06-30 14:17 - 00000050 _____ () C:\windows\wiaservc.log
2014-10-13 21:01 - 2007-06-30 12:27 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-10-13 21:01 - 2001-10-25 16:00 - 00002206 _____ () C:\windows\system32\wpa.dbl
2014-10-13 21:00 - 2012-07-01 08:49 - 00000178 ___SH () C:\Documents and Settings\UpdatusUser.SELI-KANCELAR1\ntuser.ini
2014-10-13 21:00 - 2007-07-02 21:30 - 00000272 ___SH () C:\Documents and Settings\T\ntuser.ini
2014-10-13 21:00 - 2007-06-30 14:15 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-10-13 21:00 - 2007-06-30 14:14 - 00140440 _____ () C:\windows\system32\FNTCACHE.DAT
2014-10-13 21:00 - 2007-06-30 12:28 - 00000272 ___SH () C:\Documents and Settings\Milan Lipavský\ntuser.ini
2014-10-13 21:00 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský
2014-10-13 21:00 - 2007-06-30 12:27 - 00032636 _____ () C:\windows\SchedLgU.Txt
2014-10-13 19:54 - 2010-03-18 18:03 - 00023296 _____ () C:\Documents and Settings\T\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-13 19:54 - 2007-07-02 21:30 - 00000000 ___HD () C:\Documents and Settings\T\Local Settings\Data aplikací
2014-10-13 19:53 - 2007-07-02 21:30 - 00000000 __RHD () C:\Documents and Settings\T\Data aplikací
2014-10-13 19:11 - 2007-06-30 13:14 - 00006605 _____ () C:\windows\wincmd.ini
2014-10-13 16:24 - 2009-11-03 17:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Dokumenty\Stažené soubory
2014-10-13 15:10 - 2007-11-14 11:48 - 00000684 _____ () C:\windows\wcx_ftp.ini
2014-10-13 14:31 - 2007-07-29 21:02 - 00002561 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Microsoft Office Word 2003.lnk
2014-10-13 14:31 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha
2014-10-13 13:49 - 2007-10-26 18:06 - 00001846 ____H () C:\Documents and Settings\Milan Lipavský\Dokumenty\Default.rdp
2014-10-13 13:40 - 2014-08-07 20:09 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Belgické bonboniery
2014-10-13 13:31 - 2014-08-07 09:33 - 00002259 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Denní nakládka ok.lnk
2014-10-13 11:20 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan Lipavský\Okolní síť
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Program Files\TeamViewer
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\TeamViewer
2014-10-12 20:02 - 2007-06-30 14:15 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-10-12 20:02 - 2007-06-30 12:29 - 00023296 _____ () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-12 14:01 - 2009-05-07 22:10 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\ML ostatní
2014-10-11 10:25 - 2013-12-23 23:50 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-10-10 23:13 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací
2014-10-10 23:12 - 2007-06-30 12:28 - 00000000 __RHD () C:\Documents and Settings\Milan Lipavský\Data aplikací
2014-10-10 23:09 - 2007-06-30 14:15 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-10-10 23:08 - 2010-01-06 04:00 - 00000260 _____ () C:\windows\Tasks\WGASetup.job
2014-10-10 23:07 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T
2014-10-10 23:06 - 2012-11-16 13:36 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SecuGuard6.0.3
2014-10-10 23:06 - 2009-11-02 17:18 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2014-10-10 23:06 - 2007-07-02 21:30 - 00000000 ___RD () C:\Documents and Settings\T\Nabídka Start\Programy
2014-10-10 23:05 - 2008-03-28 13:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\ESET
2014-10-10 23:04 - 2010-03-24 12:38 - 00000000 ____D () C:\Program Files\CesarFTP
2014-10-10 21:34 - 2013-01-30 21:18 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Meine Mappe
2014-10-10 09:58 - 2013-08-13 14:45 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\PEKARNA L I D I - R O Z P I S
2014-10-10 09:37 - 2007-07-11 14:50 - 00000000 ____D () C:\Program Files\=PRIKAZY=
2014-10-03 12:28 - 2007-09-30 13:03 - 00002517 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Microsoft Office Excel 2003.lnk
2014-10-02 23:13 - 2007-08-30 09:06 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Ikony Filium
2014-09-29 02:02 - 2013-08-08 08:31 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\T O M A S
2014-09-29 01:58 - 2014-07-02 12:40 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Nysade foto
2014-09-28 22:39 - 2014-09-07 12:28 - 00000613 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\sdilena-slozka-pekarna.lnk
2014-09-26 09:49 - 2014-09-10 13:49 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Káva 60g
2014-09-26 07:33 - 2012-05-14 20:29 - 00701104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-09-26 07:33 - 2011-09-08 06:33 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-23 22:04 - 2007-07-07 19:20 - 00031232 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli Kosys-fakturace.xls
2014-09-19 07:42 - 2014-01-07 13:56 - 00035328 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\OK - WieboldOrder Form 2014.xls
2014-09-15 21:28 - 2007-09-24 12:00 - 00016380 _____ () C:\windows\system32\VFP9Rerr.log
2014-09-15 14:08 - 2014-08-18 08:36 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Byt pro prodej
Some content of TEMP:
====================
C:\Documents and Settings\Milan Lipavský\Local Settings\temp\SkypeSetup.exe
C:\Documents and Settings\T\Local Settings\temp\Quarantine.exe
C:\Documents and Settings\T\Local Settings\temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
==================== End Of Log ============================
Ran by T (administrator) on SELI-KANCELAR1 on 14-10-2014 08:06:58
Running from C:\Documents and Settings\T\Plocha
Loaded Profiles: Milan Lipavský & T & UpdatusUser (Available profiles: Milan Lipavský & T & UpdatusUser & MH & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
(Crawler.com) C:\Program Files\Spyware Terminator\sp_rsser.exe
() C:\Program Files\Synology Data Replicator 3\SynoDrService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Synology Inc.) C:\Program Files\Synology Data Replicator 3\Backup.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\logonui.exe
(Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-10-10] (AVAST Software)
HKU\S-1-5-21-1390067357-1454471165-725345543-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21650016 2014-07-24] (Skype Technologies S.A.)
HKU\S-1-5-21-1390067357-1454471165-725345543-1004\...\Run: [Data Replicator 3] => C:\Program Files\Synology Data Replicator 3\Backup.exe [11605576 2013-10-09] (Synology Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\VIA RAID TOOL.lnk
ShortcutTarget: VIA RAID TOOL.lnk -> C:\Program Files\VIA\RAID\raid_tool.exe (VIA Technologies)
Startup: C:\Documents and Settings\Milan Lipavský\Nabídka Start\Programy\Po spuštění\start.lnk
ShortcutTarget: start.lnk -> C:\Documents and Settings\Milan Lipavský\nwb65w2t16\92486.vbs (No File)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKCU - {9701B515-5994-4A4E-9002-C253FA5D7AF5} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
DPF: {336C9D79-263A-4D75-AA7C-60DAF945AE67} http://62.209.202.134:7001/classes/Ovis ... V_H264.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/v ... .2.5.7.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 7155813140
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} https://www.mojedatovaschranka.cz/stati ... ?3,16,13,0
DPF: {6BA530D8-94B2-49E0-AC55-70899582FE1F} http://192.168.1.225/AV718.cab
DPF: {79EE81BD-6194-4240-A04F-131A81513DCB} http://192.168.1.31/Media.CAB
DPF: {7A24CAC8-8549-4698-85A2-AFF61D4427F7} http://192.168.1.223/classes/AlfaCamV.cab
DPF: {87D48502-D1FF-4D25-B66C-9DA4F7CB2722} http://192.168.1.227/classes/CamV_H264.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {8FEED82A-42A6-4117-A803-7EC3EB9339E0} http://62.209.202.134:6001/plugin/client.cab
DPF: {A93B47FD-9BF6-4DA8-97FC-9270B9D64A6C} http://192.168.1.8/plugin/h263ctrl.cab
DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} https://snzr.ksrzis.cz/nsnzr/ozn/capicom.cab
DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {DB87A30F-4960-4247-9672-6A0D550EECE8} http://192.168.1.31/SVRFind.CAB
DPF: {FF3BA0DA-79B5-4110-8FAC-C402D85AAEDA} http://62.209.202.134:6000/view.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{A4B689E6-71A9-4A5E-9F1F-FA3868115F32}: [NameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\T\Data aplikací\Mozilla\Firefox\Profiles\u5h6kkxe.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin HKCU: @kb-ext.cz/PKIComponent -> C:\Documents and Settings\T\Data aplikací\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll (Komerční banka, a.s.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-11-03]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-05-23]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-10]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-10-10]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-10-10] (AVAST Software)
R2 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2009-11-03] (Sun Microsystems, Inc.)
R2 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504 2011-05-25] (NVIDIA Corporation)
S3 Samsung UPD Service; C:\WINDOWS\system32\SUPDSvc.exe [127656 2009-03-24] (Samsung Electronics CO., LTD.)
R2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.) [File not signed]
R2 sp_rssrv; C:\Program Files\Spyware Terminator\sp_rsser.exe [487936 2009-10-19] (Crawler.com) [File not signed]
R2 SynoDrService; c:\Program Files\Synology Data Replicator 3\SynoDrService.exe [251464 2013-10-09] ()
R3 TermService; C:\windows\System32\termsrv.dll [295936 2010-03-16] (Microsoft Corporation) [File not signed]
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 Ambfilt; C:\windows\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-10-10] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-10-10] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr.sys [55112 2014-10-10] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-10-10] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [779536 2014-10-10] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [414520 2014-10-10] (AVAST Software)
R1 aswTdi; C:\windows\system32\drivers\aswTdi.sys [57800 2014-10-10] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [192352 2014-10-10] ()
R2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [41984 2006-09-18] (Samsung Electronics Co., Ltd.) [File not signed]
R1 Ext2fs; C:\windows\System32\DRIVERS\ext2fs.sys [181120 2008-09-25] (Stephan Schreiber) [File not signed]
S3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [25280 2008-11-19] (LogMeIn, Inc.)
S3 hipeer20; C:\windows\System32\DRIVERS\remobo32.sys [26112 2009-04-22] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 Huawei; C:\windows\System32\DRIVERS\ewdcsc.sys [24448 2009-08-18] (Huawei Tech. Co., Ltd.)
S3 hwusbfake; C:\windows\System32\DRIVERS\ewusbfake.sys [100736 2009-11-04] (Huawei Technologies Co., Ltd.)
R1 IfsMount; C:\windows\System32\DRIVERS\ifsmount.sys [51072 2008-08-28] (Stephan Schreiber) [File not signed]
R0 JRAID; C:\windows\System32\DRIVERS\jraid.sys [83296 2008-11-04] (JMicron Technology Corp.)
S3 Monfilt; C:\windows\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 rt2870; C:\windows\System32\DRIVERS\rt2870.sys [709248 2009-03-04] (Ralink Technology, Corp.) [File not signed]
S4 RTL8023xp; C:\windows\System32\DRIVERS\DLKRTXP.SYS [83456 2006-07-31] (D-Link Corp. )
S3 SONYPVU1; C:\windows\System32\DRIVERS\SONYPVU1.SYS [7552 2001-08-17] (Sony Corporation)
R1 sp_rsdrv2; C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [142592 2009-10-19] () [File not signed]
S4 viaagp1; C:\windows\System32\DRIVERS\viaagp1.sys [26880 2002-12-27] (VIA Technologies, Inc.)
R0 viamraid; C:\windows\System32\DRIVERS\viamraid.sys [104064 2007-03-19] (VIA Technologies inc,.ltd) [File not signed]
R0 viasraid; C:\windows\System32\drivers\viasraid.sys [77312 2003-11-01] (VIA Technologies inc,.ltd)
R0 videX32; C:\windows\System32\DRIVERS\videX32.sys [9216 2007-03-29] (VIA Technologies, Inc.)
S4 yukonwxp; C:\windows\System32\DRIVERS\yukonwxp.sys [174464 2003-11-28] (Marvell Semiconductor Inc.)
S3 ZDPSp50; C:\windows\System32\Drivers\ZDPSp50.sys [17664 2004-10-25] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 catchme; \??\C:\DOCUME~1\MILANL~1\LOCALS~1\Temp\catchme.sys [X]
S4 IntelIde; No ImagePath
S3 PCASp50; System32\Drivers\PCASp50.sys [X]
U5 ScsiPort; C:\windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 ZDCndis5; \??\C:\WINDOWS\system32\ZDCndis5.SYS [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-13 20:58 - 2014-10-13 21:00 - 00000000 ____D () C:\AdwCleaner
2014-10-13 19:59 - 2014-10-14 08:07 - 00014054 _____ () C:\Documents and Settings\T\Plocha\FRST.txt
2014-10-13 19:59 - 2014-10-14 08:06 - 00000000 ____D () C:\FRST
2014-10-13 19:58 - 2014-10-13 19:58 - 01101824 _____ (Farbar) C:\Documents and Settings\T\Plocha\FRST.exe
2014-10-13 19:54 - 2014-10-13 19:54 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\Data aplikací\Temp
2014-10-13 19:53 - 2014-10-13 19:53 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\AVAST Software
2014-10-13 13:42 - 2014-10-13 13:43 - 00061440 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\ok - Podklady BNG 10-2014.xls
2014-10-12 20:02 - 2014-10-12 20:02 - 00000857 _____ () C:\Documents and Settings\All Users\Plocha\TeamViewer 9.lnk
2014-10-12 20:02 - 2014-10-12 20:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 9
2014-10-10 23:13 - 2014-10-10 23:13 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací\Temp
2014-10-10 23:12 - 2014-10-10 23:12 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\AVAST Software
2014-10-10 23:11 - 2014-10-13 23:11 - 00000380 ____H () C:\windows\Tasks\avast! Emergency Update.job
2014-10-10 23:11 - 2014-10-10 23:11 - 00779536 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00414520 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00276432 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-10-10 23:11 - 2014-10-10 23:11 - 00192352 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00067824 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00057800 _____ (AVAST Software) C:\windows\system32\Drivers\aswTdi.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00055112 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00049944 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-10-10 23:11 - 2014-10-10 23:11 - 00024184 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00001775 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\windows\jumpshot.com
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-10-10 23:10 - 2014-10-10 23:10 - 00000000 ____D () C:\Program Files\AVAST Software
2014-10-10 23:09 - 2014-10-10 23:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-10-10 23:06 - 2014-10-10 23:06 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SUPERAntiSpyware.com
2014-10-09 23:10 - 2014-10-09 23:10 - 00016384 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Kopie - PACKAGING STOCK 20140929.xls
2014-10-03 12:37 - 2014-10-03 12:37 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Piasten 400g Doulton počty.xls
2014-10-03 08:36 - 2014-10-03 08:56 - 00021504 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli zahr platby.xls
2014-10-02 23:11 - 2014-10-03 10:22 - 00028672 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Mili 02.10.2014.xls
2014-10-02 10:08 - 2014-10-10 23:05 - 00005386 _____ () C:\windows\setupapi.log
2014-09-29 01:38 - 2014-09-29 01:51 - 00022016 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\situace.xls
2014-09-26 12:24 - 2014-09-26 14:00 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\platby+zalohy.xls
2014-09-26 10:49 - 2014-09-19 08:00 - 00037376 ____R () C:\Documents and Settings\Milan Lipavský\Plocha\OK zosit 19.xls
2014-09-26 09:19 - 2014-10-01 12:22 - 00014336 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Penny 26.9..xls
2014-09-23 13:45 - 2014-09-23 13:46 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Wiebold fotky
2014-09-23 10:56 - 2014-09-23 10:56 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\plán.xls
2014-09-19 08:09 - 2014-09-29 09:59 - 00023552 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\NL 33x250g.xls
2014-09-16 08:13 - 2014-10-03 09:40 - 00060928 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli Hauswirtz VIANOCE 2014.xls
2014-09-15 11:03 - 2014-09-15 14:03 - 00023040 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\upravy v byteSešit1.xls
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-14 08:07 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\temp
2014-10-14 08:06 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T\Plocha
2014-10-14 08:00 - 2007-11-05 21:20 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\Skype
2014-10-14 07:54 - 2011-04-11 10:06 - 00000000 ____D () C:\Ksoft
2014-10-14 07:46 - 2008-06-02 07:43 - 00000121 _____ () C:\kosdat.mem
2014-10-14 07:33 - 2012-08-09 16:12 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-10-14 07:32 - 2007-06-30 12:22 - 01419198 _____ () C:\windows\WindowsUpdate.log
2014-10-14 07:30 - 2014-02-12 08:38 - 00000072 _____ () C:\Autoconfig.ini
2014-10-14 01:11 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Local Settings\temp
2014-10-14 00:22 - 2014-03-24 18:59 - 00000508 ____H () C:\windows\Tasks\User_Feed_Synchronization-{526B7424-400E-4A5F-A451-969C6C71A20B}.job
2014-10-13 22:00 - 2009-11-04 21:14 - 00000664 _____ () C:\windows\system32\d3d9caps.dat
2014-10-13 21:30 - 2014-07-01 21:27 - 00000278 _____ () C:\windows\Tasks\Synology Data Replicator 3-SELI-KANCELAR1-T.job
2014-10-13 21:01 - 2007-06-30 14:17 - 00000159 _____ () C:\windows\wiadebug.log
2014-10-13 21:01 - 2007-06-30 14:17 - 00000050 _____ () C:\windows\wiaservc.log
2014-10-13 21:01 - 2007-06-30 12:27 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-10-13 21:01 - 2001-10-25 16:00 - 00002206 _____ () C:\windows\system32\wpa.dbl
2014-10-13 21:00 - 2012-07-01 08:49 - 00000178 ___SH () C:\Documents and Settings\UpdatusUser.SELI-KANCELAR1\ntuser.ini
2014-10-13 21:00 - 2007-07-02 21:30 - 00000272 ___SH () C:\Documents and Settings\T\ntuser.ini
2014-10-13 21:00 - 2007-06-30 14:15 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-10-13 21:00 - 2007-06-30 14:14 - 00140440 _____ () C:\windows\system32\FNTCACHE.DAT
2014-10-13 21:00 - 2007-06-30 12:28 - 00000272 ___SH () C:\Documents and Settings\Milan Lipavský\ntuser.ini
2014-10-13 21:00 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský
2014-10-13 21:00 - 2007-06-30 12:27 - 00032636 _____ () C:\windows\SchedLgU.Txt
2014-10-13 19:54 - 2010-03-18 18:03 - 00023296 _____ () C:\Documents and Settings\T\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-13 19:54 - 2007-07-02 21:30 - 00000000 ___HD () C:\Documents and Settings\T\Local Settings\Data aplikací
2014-10-13 19:53 - 2007-07-02 21:30 - 00000000 __RHD () C:\Documents and Settings\T\Data aplikací
2014-10-13 19:11 - 2007-06-30 13:14 - 00006605 _____ () C:\windows\wincmd.ini
2014-10-13 16:24 - 2009-11-03 17:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Dokumenty\Stažené soubory
2014-10-13 15:10 - 2007-11-14 11:48 - 00000684 _____ () C:\windows\wcx_ftp.ini
2014-10-13 14:31 - 2007-07-29 21:02 - 00002561 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Microsoft Office Word 2003.lnk
2014-10-13 14:31 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha
2014-10-13 13:49 - 2007-10-26 18:06 - 00001846 ____H () C:\Documents and Settings\Milan Lipavský\Dokumenty\Default.rdp
2014-10-13 13:40 - 2014-08-07 20:09 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Belgické bonboniery
2014-10-13 13:31 - 2014-08-07 09:33 - 00002259 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Denní nakládka ok.lnk
2014-10-13 11:20 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan Lipavský\Okolní síť
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Program Files\TeamViewer
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\TeamViewer
2014-10-12 20:02 - 2007-06-30 14:15 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-10-12 20:02 - 2007-06-30 12:29 - 00023296 _____ () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-12 14:01 - 2009-05-07 22:10 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\ML ostatní
2014-10-11 10:25 - 2013-12-23 23:50 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-10-10 23:13 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací
2014-10-10 23:12 - 2007-06-30 12:28 - 00000000 __RHD () C:\Documents and Settings\Milan Lipavský\Data aplikací
2014-10-10 23:09 - 2007-06-30 14:15 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-10-10 23:08 - 2010-01-06 04:00 - 00000260 _____ () C:\windows\Tasks\WGASetup.job
2014-10-10 23:07 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T
2014-10-10 23:06 - 2012-11-16 13:36 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SecuGuard6.0.3
2014-10-10 23:06 - 2009-11-02 17:18 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2014-10-10 23:06 - 2007-07-02 21:30 - 00000000 ___RD () C:\Documents and Settings\T\Nabídka Start\Programy
2014-10-10 23:05 - 2008-03-28 13:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\ESET
2014-10-10 23:04 - 2010-03-24 12:38 - 00000000 ____D () C:\Program Files\CesarFTP
2014-10-10 21:34 - 2013-01-30 21:18 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Meine Mappe
2014-10-10 09:58 - 2013-08-13 14:45 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\PEKARNA L I D I - R O Z P I S
2014-10-10 09:37 - 2007-07-11 14:50 - 00000000 ____D () C:\Program Files\=PRIKAZY=
2014-10-03 12:28 - 2007-09-30 13:03 - 00002517 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Microsoft Office Excel 2003.lnk
2014-10-02 23:13 - 2007-08-30 09:06 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Ikony Filium
2014-09-29 02:02 - 2013-08-08 08:31 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\T O M A S
2014-09-29 01:58 - 2014-07-02 12:40 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Nysade foto
2014-09-28 22:39 - 2014-09-07 12:28 - 00000613 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\sdilena-slozka-pekarna.lnk
2014-09-26 09:49 - 2014-09-10 13:49 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Káva 60g
2014-09-26 07:33 - 2012-05-14 20:29 - 00701104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-09-26 07:33 - 2011-09-08 06:33 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-23 22:04 - 2007-07-07 19:20 - 00031232 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli Kosys-fakturace.xls
2014-09-19 07:42 - 2014-01-07 13:56 - 00035328 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\OK - WieboldOrder Form 2014.xls
2014-09-15 21:28 - 2007-09-24 12:00 - 00016380 _____ () C:\windows\system32\VFP9Rerr.log
2014-09-15 14:08 - 2014-08-18 08:36 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Byt pro prodej
Some content of TEMP:
====================
C:\Documents and Settings\Milan Lipavský\Local Settings\temp\SkypeSetup.exe
C:\Documents and Settings\T\Local Settings\temp\Quarantine.exe
C:\Documents and Settings\T\Local Settings\temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
==================== End Of Log ============================
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosba o kontrolu logu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
ShortcutTarget: start.lnk -> C:\Documents and Settings\Milan Lipavský\nwb65w2t16\92486.vbs (No File)
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/v ... .2.5.7.cab
C:\Documents and Settings\Milan Lipavský\Local Settings\temp
C:\Documents and Settings\T\Local Settings\temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosba o kontrolu logu
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-10-2014 01
Ran by T (administrator) on SELI-KANCELAR1 on 14-10-2014 19:27:35
Running from C:\Documents and Settings\T\Plocha
Loaded Profiles: Milan Lipavský & T & UpdatusUser (Available profiles: Milan Lipavský & T & UpdatusUser & MH & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
(Crawler.com) C:\Program Files\Spyware Terminator\sp_rsser.exe
() C:\Program Files\Synology Data Replicator 3\SynoDrService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Synology Inc.) C:\Program Files\Synology Data Replicator 3\Backup.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
() C:\WINDOWS\system32\spool\drivers\w32x86\3\spe__pi.exe
() C:\Ksoft\KOSYS\KOSYS.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
() C:\Ksoft\KOSYS\KOSYS.EXE
(C. Ghisler & Co.) C:\Program Files\totalcmd\TOTALCMD.EXE
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-10-10] (AVAST Software)
HKU\S-1-5-21-1390067357-1454471165-725345543-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21650016 2014-07-24] (Skype Technologies S.A.)
HKU\S-1-5-21-1390067357-1454471165-725345543-1004\...\Run: [Data Replicator 3] => C:\Program Files\Synology Data Replicator 3\Backup.exe [11605576 2013-10-09] (Synology Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\VIA RAID TOOL.lnk
ShortcutTarget: VIA RAID TOOL.lnk -> C:\Program Files\VIA\RAID\raid_tool.exe (VIA Technologies)
Startup: C:\Documents and Settings\Milan Lipavský\Nabídka Start\Programy\Po spuštění\start.lnk
ShortcutTarget: start.lnk -> C:\Documents and Settings\Milan Lipavský\nwb65w2t16\92486.vbs (No File)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKCU - {9701B515-5994-4A4E-9002-C253FA5D7AF5} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
DPF: {336C9D79-263A-4D75-AA7C-60DAF945AE67} http://62.209.202.134:7001/classes/Ovis ... V_H264.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 7155813140
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} https://www.mojedatovaschranka.cz/stati ... ?3,16,13,0
DPF: {6BA530D8-94B2-49E0-AC55-70899582FE1F} http://192.168.1.225/AV718.cab
DPF: {79EE81BD-6194-4240-A04F-131A81513DCB} http://192.168.1.31/Media.CAB
DPF: {7A24CAC8-8549-4698-85A2-AFF61D4427F7} http://192.168.1.223/classes/AlfaCamV.cab
DPF: {87D48502-D1FF-4D25-B66C-9DA4F7CB2722} http://192.168.1.227/classes/CamV_H264.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {8FEED82A-42A6-4117-A803-7EC3EB9339E0} http://62.209.202.134:6001/plugin/client.cab
DPF: {A93B47FD-9BF6-4DA8-97FC-9270B9D64A6C} http://192.168.1.8/plugin/h263ctrl.cab
DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} https://snzr.ksrzis.cz/nsnzr/ozn/capicom.cab
DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {DB87A30F-4960-4247-9672-6A0D550EECE8} http://192.168.1.31/SVRFind.CAB
DPF: {FF3BA0DA-79B5-4110-8FAC-C402D85AAEDA} http://62.209.202.134:6000/view.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{A4B689E6-71A9-4A5E-9F1F-FA3868115F32}: [NameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\T\Data aplikací\Mozilla\Firefox\Profiles\u5h6kkxe.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin HKCU: @kb-ext.cz/PKIComponent -> C:\Documents and Settings\T\Data aplikací\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll (Komerční banka, a.s.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-11-03]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-05-23]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-10]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-10-10]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-10-10] (AVAST Software)
R2 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2009-11-03] (Sun Microsystems, Inc.)
R2 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504 2011-05-25] (NVIDIA Corporation)
S3 Samsung UPD Service; C:\WINDOWS\system32\SUPDSvc.exe [127656 2009-03-24] (Samsung Electronics CO., LTD.)
R2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.) [File not signed]
R2 sp_rssrv; C:\Program Files\Spyware Terminator\sp_rsser.exe [487936 2009-10-19] (Crawler.com) [File not signed]
R2 SynoDrService; c:\Program Files\Synology Data Replicator 3\SynoDrService.exe [251464 2013-10-09] ()
R3 TermService; C:\windows\System32\termsrv.dll [295936 2010-03-16] (Microsoft Corporation) [File not signed]
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 Ambfilt; C:\windows\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-10-10] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-10-10] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr.sys [55112 2014-10-10] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-10-10] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [779536 2014-10-10] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [414520 2014-10-10] (AVAST Software)
R1 aswTdi; C:\windows\system32\drivers\aswTdi.sys [57800 2014-10-10] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [192352 2014-10-10] ()
R2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [41984 2006-09-18] (Samsung Electronics Co., Ltd.) [File not signed]
R1 Ext2fs; C:\windows\System32\DRIVERS\ext2fs.sys [181120 2008-09-25] (Stephan Schreiber) [File not signed]
S3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [25280 2008-11-19] (LogMeIn, Inc.)
S3 hipeer20; C:\windows\System32\DRIVERS\remobo32.sys [26112 2009-04-22] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 Huawei; C:\windows\System32\DRIVERS\ewdcsc.sys [24448 2009-08-18] (Huawei Tech. Co., Ltd.)
S3 hwusbfake; C:\windows\System32\DRIVERS\ewusbfake.sys [100736 2009-11-04] (Huawei Technologies Co., Ltd.)
R1 IfsMount; C:\windows\System32\DRIVERS\ifsmount.sys [51072 2008-08-28] (Stephan Schreiber) [File not signed]
R0 JRAID; C:\windows\System32\DRIVERS\jraid.sys [83296 2008-11-04] (JMicron Technology Corp.)
S3 Monfilt; C:\windows\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 rt2870; C:\windows\System32\DRIVERS\rt2870.sys [709248 2009-03-04] (Ralink Technology, Corp.) [File not signed]
S4 RTL8023xp; C:\windows\System32\DRIVERS\DLKRTXP.SYS [83456 2006-07-31] (D-Link Corp. )
S3 SONYPVU1; C:\windows\System32\DRIVERS\SONYPVU1.SYS [7552 2001-08-17] (Sony Corporation)
R1 sp_rsdrv2; C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [142592 2009-10-19] () [File not signed]
S4 viaagp1; C:\windows\System32\DRIVERS\viaagp1.sys [26880 2002-12-27] (VIA Technologies, Inc.)
R0 viamraid; C:\windows\System32\DRIVERS\viamraid.sys [104064 2007-03-19] (VIA Technologies inc,.ltd) [File not signed]
R0 viasraid; C:\windows\System32\drivers\viasraid.sys [77312 2003-11-01] (VIA Technologies inc,.ltd)
R0 videX32; C:\windows\System32\DRIVERS\videX32.sys [9216 2007-03-29] (VIA Technologies, Inc.)
S4 yukonwxp; C:\windows\System32\DRIVERS\yukonwxp.sys [174464 2003-11-28] (Marvell Semiconductor Inc.)
S3 ZDPSp50; C:\windows\System32\Drivers\ZDPSp50.sys [17664 2004-10-25] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 catchme; \??\C:\DOCUME~1\MILANL~1\LOCALS~1\Temp\catchme.sys [X]
S4 IntelIde; No ImagePath
S3 PCASp50; System32\Drivers\PCASp50.sys [X]
U5 ScsiPort; C:\windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 ZDCndis5; \??\C:\WINDOWS\system32\ZDCndis5.SYS [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-14 19:26 - 2014-10-14 19:26 - 00000328 _____ () C:\Documents and Settings\T\Plocha\fixlist.txt
2014-10-14 12:42 - 2014-10-14 12:48 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\rozdily v Aholdu.xls
2014-10-14 12:34 - 2014-10-14 14:08 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\BNG odměny
2014-10-14 12:34 - 2014-10-14 12:36 - 00043520 ___SH () C:\Thumbs.db
2014-10-14 12:19 - 2014-10-14 12:19 - 00050688 _____ () C:\skladacka.xls
2014-10-14 12:00 - 2014-10-14 12:00 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\knoflíky dill.xls
2014-10-13 20:58 - 2014-10-13 21:00 - 00000000 ____D () C:\AdwCleaner
2014-10-13 19:59 - 2014-10-14 19:27 - 00014106 _____ () C:\Documents and Settings\T\Plocha\FRST.txt
2014-10-13 19:59 - 2014-10-14 19:27 - 00000000 ____D () C:\FRST
2014-10-13 19:58 - 2014-10-13 19:58 - 01101824 _____ (Farbar) C:\Documents and Settings\T\Plocha\FRST.exe
2014-10-13 19:54 - 2014-10-13 19:54 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\Data aplikací\Temp
2014-10-13 19:53 - 2014-10-13 19:53 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\AVAST Software
2014-10-13 13:42 - 2014-10-13 13:43 - 00061440 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\ok - Podklady BNG 10-2014.xls
2014-10-12 20:02 - 2014-10-12 20:02 - 00000857 _____ () C:\Documents and Settings\All Users\Plocha\TeamViewer 9.lnk
2014-10-12 20:02 - 2014-10-12 20:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 9
2014-10-10 23:13 - 2014-10-10 23:13 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací\Temp
2014-10-10 23:12 - 2014-10-10 23:12 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\AVAST Software
2014-10-10 23:11 - 2014-10-14 11:11 - 00000380 ____H () C:\windows\Tasks\avast! Emergency Update.job
2014-10-10 23:11 - 2014-10-10 23:11 - 00779536 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00414520 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00276432 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-10-10 23:11 - 2014-10-10 23:11 - 00192352 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00067824 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00057800 _____ (AVAST Software) C:\windows\system32\Drivers\aswTdi.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00055112 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00049944 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-10-10 23:11 - 2014-10-10 23:11 - 00024184 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00001775 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\windows\jumpshot.com
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-10-10 23:10 - 2014-10-10 23:10 - 00000000 ____D () C:\Program Files\AVAST Software
2014-10-10 23:09 - 2014-10-10 23:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-10-10 23:06 - 2014-10-10 23:06 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SUPERAntiSpyware.com
2014-10-09 23:10 - 2014-10-09 23:10 - 00016384 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Kopie - PACKAGING STOCK 20140929.xls
2014-10-03 12:37 - 2014-10-03 12:37 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Piasten 400g Doulton počty.xls
2014-10-03 08:36 - 2014-10-03 08:56 - 00021504 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli zahr platby.xls
2014-10-02 23:11 - 2014-10-03 10:22 - 00028672 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Mili 02.10.2014.xls
2014-10-02 10:08 - 2014-10-14 13:59 - 00005595 _____ () C:\windows\setupapi.log
2014-09-29 01:38 - 2014-09-29 01:51 - 00022016 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\situace.xls
2014-09-26 12:24 - 2014-09-26 14:00 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\platby+zalohy.xls
2014-09-26 10:49 - 2014-09-19 08:00 - 00037376 ____R () C:\Documents and Settings\Milan Lipavský\Plocha\OK zosit 19.xls
2014-09-26 09:19 - 2014-10-01 12:22 - 00014336 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Penny 26.9..xls
2014-09-23 13:45 - 2014-09-23 13:46 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Wiebold fotky
2014-09-23 10:56 - 2014-09-23 10:56 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\plán.xls
2014-09-19 08:09 - 2014-09-29 09:59 - 00023552 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\NL 33x250g.xls
2014-09-16 08:13 - 2014-10-03 09:40 - 00060928 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli Hauswirtz VIANOCE 2014.xls
2014-09-15 11:03 - 2014-09-15 14:03 - 00023040 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\upravy v byteSešit1.xls
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-14 19:27 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\temp
2014-10-14 19:27 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T\Plocha
2014-10-14 19:13 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Local Settings\temp
2014-10-14 18:59 - 2007-11-05 21:20 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\Skype
2014-10-14 18:33 - 2012-08-09 16:12 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-10-14 18:32 - 2007-06-30 12:22 - 01422991 _____ () C:\windows\WindowsUpdate.log
2014-10-14 18:05 - 2014-02-12 08:38 - 00000072 _____ () C:\Autoconfig.ini
2014-10-14 15:57 - 2011-04-11 10:06 - 00000000 ____D () C:\Ksoft
2014-10-14 15:27 - 2007-07-11 14:50 - 00000000 ____D () C:\Program Files\=PRIKAZY=
2014-10-14 13:56 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha
2014-10-14 12:42 - 2007-09-30 13:03 - 00002517 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Microsoft Office Excel 2003.lnk
2014-10-14 11:54 - 2010-10-21 12:50 - 00000012 _____ () C:\Documents and Settings\T\intlname.ols
2014-10-14 11:54 - 2007-06-30 13:14 - 00006605 _____ () C:\windows\wincmd.ini
2014-10-14 11:45 - 2008-06-02 07:43 - 00000121 _____ () C:\kosdat.mem
2014-10-14 10:03 - 2007-06-30 14:17 - 00001691 _____ () C:\windows\wiadebug.log
2014-10-14 09:28 - 2014-09-07 12:28 - 00000613 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\sdilena-slozka-pekarna.lnk
2014-10-14 08:28 - 2007-07-29 21:02 - 00002561 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Microsoft Office Word 2003.lnk
2014-10-14 00:22 - 2014-03-24 18:59 - 00000508 ____H () C:\windows\Tasks\User_Feed_Synchronization-{526B7424-400E-4A5F-A451-969C6C71A20B}.job
2014-10-13 22:00 - 2009-11-04 21:14 - 00000664 _____ () C:\windows\system32\d3d9caps.dat
2014-10-13 21:30 - 2014-07-01 21:27 - 00000278 _____ () C:\windows\Tasks\Synology Data Replicator 3-SELI-KANCELAR1-T.job
2014-10-13 21:01 - 2007-06-30 14:17 - 00000050 _____ () C:\windows\wiaservc.log
2014-10-13 21:01 - 2007-06-30 12:27 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-10-13 21:01 - 2001-10-25 16:00 - 00002206 _____ () C:\windows\system32\wpa.dbl
2014-10-13 21:00 - 2012-07-01 08:49 - 00000178 ___SH () C:\Documents and Settings\UpdatusUser.SELI-KANCELAR1\ntuser.ini
2014-10-13 21:00 - 2007-07-02 21:30 - 00000272 ___SH () C:\Documents and Settings\T\ntuser.ini
2014-10-13 21:00 - 2007-06-30 14:15 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-10-13 21:00 - 2007-06-30 14:14 - 00140440 _____ () C:\windows\system32\FNTCACHE.DAT
2014-10-13 21:00 - 2007-06-30 12:28 - 00000272 ___SH () C:\Documents and Settings\Milan Lipavský\ntuser.ini
2014-10-13 21:00 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský
2014-10-13 21:00 - 2007-06-30 12:27 - 00032636 _____ () C:\windows\SchedLgU.Txt
2014-10-13 19:54 - 2010-03-18 18:03 - 00023296 _____ () C:\Documents and Settings\T\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-13 19:54 - 2007-07-02 21:30 - 00000000 ___HD () C:\Documents and Settings\T\Local Settings\Data aplikací
2014-10-13 19:53 - 2007-07-02 21:30 - 00000000 __RHD () C:\Documents and Settings\T\Data aplikací
2014-10-13 16:24 - 2009-11-03 17:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Dokumenty\Stažené soubory
2014-10-13 15:10 - 2007-11-14 11:48 - 00000684 _____ () C:\windows\wcx_ftp.ini
2014-10-13 13:49 - 2007-10-26 18:06 - 00001846 ____H () C:\Documents and Settings\Milan Lipavský\Dokumenty\Default.rdp
2014-10-13 13:40 - 2014-08-07 20:09 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Belgické bonboniery
2014-10-13 13:31 - 2014-08-07 09:33 - 00002259 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Denní nakládka ok.lnk
2014-10-13 11:20 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan Lipavský\Okolní síť
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Program Files\TeamViewer
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\TeamViewer
2014-10-12 20:02 - 2007-06-30 14:15 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-10-12 20:02 - 2007-06-30 12:29 - 00023296 _____ () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-12 14:01 - 2009-05-07 22:10 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\ML ostatní
2014-10-11 10:25 - 2013-12-23 23:50 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-10-10 23:13 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací
2014-10-10 23:12 - 2007-06-30 12:28 - 00000000 __RHD () C:\Documents and Settings\Milan Lipavský\Data aplikací
2014-10-10 23:09 - 2007-06-30 14:15 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-10-10 23:08 - 2010-01-06 04:00 - 00000260 _____ () C:\windows\Tasks\WGASetup.job
2014-10-10 23:07 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T
2014-10-10 23:06 - 2012-11-16 13:36 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SecuGuard6.0.3
2014-10-10 23:06 - 2009-11-02 17:18 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2014-10-10 23:06 - 2007-07-02 21:30 - 00000000 ___RD () C:\Documents and Settings\T\Nabídka Start\Programy
2014-10-10 23:05 - 2008-03-28 13:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\ESET
2014-10-10 23:04 - 2010-03-24 12:38 - 00000000 ____D () C:\Program Files\CesarFTP
2014-10-10 21:34 - 2013-01-30 21:18 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Meine Mappe
2014-10-10 09:58 - 2013-08-13 14:45 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\PEKARNA L I D I - R O Z P I S
2014-10-02 23:13 - 2007-08-30 09:06 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Ikony Filium
2014-09-29 02:02 - 2013-08-08 08:31 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\T O M A S
2014-09-29 01:58 - 2014-07-02 12:40 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Nysade foto
2014-09-26 09:49 - 2014-09-10 13:49 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Káva 60g
2014-09-26 07:33 - 2012-05-14 20:29 - 00701104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-09-26 07:33 - 2011-09-08 06:33 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-23 22:04 - 2007-07-07 19:20 - 00031232 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli Kosys-fakturace.xls
2014-09-19 07:42 - 2014-01-07 13:56 - 00035328 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\OK - WieboldOrder Form 2014.xls
2014-09-15 21:28 - 2007-09-24 12:00 - 00016380 _____ () C:\windows\system32\VFP9Rerr.log
2014-09-15 14:08 - 2014-08-18 08:36 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Byt pro prodej
Some content of TEMP:
====================
C:\Documents and Settings\Milan Lipavský\Local Settings\temp\SkypeSetup.exe
C:\Documents and Settings\T\Local Settings\temp\Quarantine.exe
C:\Documents and Settings\T\Local Settings\temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
==================== End Of Log ============================
Ran by T (administrator) on SELI-KANCELAR1 on 14-10-2014 19:27:35
Running from C:\Documents and Settings\T\Plocha
Loaded Profiles: Milan Lipavský & T & UpdatusUser (Available profiles: Milan Lipavský & T & UpdatusUser & MH & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
(Crawler.com) C:\Program Files\Spyware Terminator\sp_rsser.exe
() C:\Program Files\Synology Data Replicator 3\SynoDrService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Synology Inc.) C:\Program Files\Synology Data Replicator 3\Backup.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
() C:\WINDOWS\system32\spool\drivers\w32x86\3\spe__pi.exe
() C:\Ksoft\KOSYS\KOSYS.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
() C:\Ksoft\KOSYS\KOSYS.EXE
(C. Ghisler & Co.) C:\Program Files\totalcmd\TOTALCMD.EXE
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-10-10] (AVAST Software)
HKU\S-1-5-21-1390067357-1454471165-725345543-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21650016 2014-07-24] (Skype Technologies S.A.)
HKU\S-1-5-21-1390067357-1454471165-725345543-1004\...\Run: [Data Replicator 3] => C:\Program Files\Synology Data Replicator 3\Backup.exe [11605576 2013-10-09] (Synology Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\VIA RAID TOOL.lnk
ShortcutTarget: VIA RAID TOOL.lnk -> C:\Program Files\VIA\RAID\raid_tool.exe (VIA Technologies)
Startup: C:\Documents and Settings\Milan Lipavský\Nabídka Start\Programy\Po spuštění\start.lnk
ShortcutTarget: start.lnk -> C:\Documents and Settings\Milan Lipavský\nwb65w2t16\92486.vbs (No File)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKCU - {9701B515-5994-4A4E-9002-C253FA5D7AF5} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
DPF: {336C9D79-263A-4D75-AA7C-60DAF945AE67} http://62.209.202.134:7001/classes/Ovis ... V_H264.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 7155813140
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} https://www.mojedatovaschranka.cz/stati ... ?3,16,13,0
DPF: {6BA530D8-94B2-49E0-AC55-70899582FE1F} http://192.168.1.225/AV718.cab
DPF: {79EE81BD-6194-4240-A04F-131A81513DCB} http://192.168.1.31/Media.CAB
DPF: {7A24CAC8-8549-4698-85A2-AFF61D4427F7} http://192.168.1.223/classes/AlfaCamV.cab
DPF: {87D48502-D1FF-4D25-B66C-9DA4F7CB2722} http://192.168.1.227/classes/CamV_H264.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {8FEED82A-42A6-4117-A803-7EC3EB9339E0} http://62.209.202.134:6001/plugin/client.cab
DPF: {A93B47FD-9BF6-4DA8-97FC-9270B9D64A6C} http://192.168.1.8/plugin/h263ctrl.cab
DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} https://snzr.ksrzis.cz/nsnzr/ozn/capicom.cab
DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {DB87A30F-4960-4247-9672-6A0D550EECE8} http://192.168.1.31/SVRFind.CAB
DPF: {FF3BA0DA-79B5-4110-8FAC-C402D85AAEDA} http://62.209.202.134:6000/view.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{A4B689E6-71A9-4A5E-9F1F-FA3868115F32}: [NameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\T\Data aplikací\Mozilla\Firefox\Profiles\u5h6kkxe.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin HKCU: @kb-ext.cz/PKIComponent -> C:\Documents and Settings\T\Data aplikací\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll (Komerční banka, a.s.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-11-03]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-05-23]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-10]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-10-10]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-10-10] (AVAST Software)
R2 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2009-11-03] (Sun Microsystems, Inc.)
R2 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504 2011-05-25] (NVIDIA Corporation)
S3 Samsung UPD Service; C:\WINDOWS\system32\SUPDSvc.exe [127656 2009-03-24] (Samsung Electronics CO., LTD.)
R2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.) [File not signed]
R2 sp_rssrv; C:\Program Files\Spyware Terminator\sp_rsser.exe [487936 2009-10-19] (Crawler.com) [File not signed]
R2 SynoDrService; c:\Program Files\Synology Data Replicator 3\SynoDrService.exe [251464 2013-10-09] ()
R3 TermService; C:\windows\System32\termsrv.dll [295936 2010-03-16] (Microsoft Corporation) [File not signed]
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1690096 2013-07-19] (GlavSoft LLC.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 Ambfilt; C:\windows\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-10-10] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-10-10] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr.sys [55112 2014-10-10] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-10-10] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [779536 2014-10-10] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [414520 2014-10-10] (AVAST Software)
R1 aswTdi; C:\windows\system32\drivers\aswTdi.sys [57800 2014-10-10] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [192352 2014-10-10] ()
R2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [41984 2006-09-18] (Samsung Electronics Co., Ltd.) [File not signed]
R1 Ext2fs; C:\windows\System32\DRIVERS\ext2fs.sys [181120 2008-09-25] (Stephan Schreiber) [File not signed]
S3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [25280 2008-11-19] (LogMeIn, Inc.)
S3 hipeer20; C:\windows\System32\DRIVERS\remobo32.sys [26112 2009-04-22] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 Huawei; C:\windows\System32\DRIVERS\ewdcsc.sys [24448 2009-08-18] (Huawei Tech. Co., Ltd.)
S3 hwusbfake; C:\windows\System32\DRIVERS\ewusbfake.sys [100736 2009-11-04] (Huawei Technologies Co., Ltd.)
R1 IfsMount; C:\windows\System32\DRIVERS\ifsmount.sys [51072 2008-08-28] (Stephan Schreiber) [File not signed]
R0 JRAID; C:\windows\System32\DRIVERS\jraid.sys [83296 2008-11-04] (JMicron Technology Corp.)
S3 Monfilt; C:\windows\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 rt2870; C:\windows\System32\DRIVERS\rt2870.sys [709248 2009-03-04] (Ralink Technology, Corp.) [File not signed]
S4 RTL8023xp; C:\windows\System32\DRIVERS\DLKRTXP.SYS [83456 2006-07-31] (D-Link Corp. )
S3 SONYPVU1; C:\windows\System32\DRIVERS\SONYPVU1.SYS [7552 2001-08-17] (Sony Corporation)
R1 sp_rsdrv2; C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [142592 2009-10-19] () [File not signed]
S4 viaagp1; C:\windows\System32\DRIVERS\viaagp1.sys [26880 2002-12-27] (VIA Technologies, Inc.)
R0 viamraid; C:\windows\System32\DRIVERS\viamraid.sys [104064 2007-03-19] (VIA Technologies inc,.ltd) [File not signed]
R0 viasraid; C:\windows\System32\drivers\viasraid.sys [77312 2003-11-01] (VIA Technologies inc,.ltd)
R0 videX32; C:\windows\System32\DRIVERS\videX32.sys [9216 2007-03-29] (VIA Technologies, Inc.)
S4 yukonwxp; C:\windows\System32\DRIVERS\yukonwxp.sys [174464 2003-11-28] (Marvell Semiconductor Inc.)
S3 ZDPSp50; C:\windows\System32\Drivers\ZDPSp50.sys [17664 2004-10-25] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 catchme; \??\C:\DOCUME~1\MILANL~1\LOCALS~1\Temp\catchme.sys [X]
S4 IntelIde; No ImagePath
S3 PCASp50; System32\Drivers\PCASp50.sys [X]
U5 ScsiPort; C:\windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 ZDCndis5; \??\C:\WINDOWS\system32\ZDCndis5.SYS [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-14 19:26 - 2014-10-14 19:26 - 00000328 _____ () C:\Documents and Settings\T\Plocha\fixlist.txt
2014-10-14 12:42 - 2014-10-14 12:48 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\rozdily v Aholdu.xls
2014-10-14 12:34 - 2014-10-14 14:08 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\BNG odměny
2014-10-14 12:34 - 2014-10-14 12:36 - 00043520 ___SH () C:\Thumbs.db
2014-10-14 12:19 - 2014-10-14 12:19 - 00050688 _____ () C:\skladacka.xls
2014-10-14 12:00 - 2014-10-14 12:00 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\knoflíky dill.xls
2014-10-13 20:58 - 2014-10-13 21:00 - 00000000 ____D () C:\AdwCleaner
2014-10-13 19:59 - 2014-10-14 19:27 - 00014106 _____ () C:\Documents and Settings\T\Plocha\FRST.txt
2014-10-13 19:59 - 2014-10-14 19:27 - 00000000 ____D () C:\FRST
2014-10-13 19:58 - 2014-10-13 19:58 - 01101824 _____ (Farbar) C:\Documents and Settings\T\Plocha\FRST.exe
2014-10-13 19:54 - 2014-10-13 19:54 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\Data aplikací\Temp
2014-10-13 19:53 - 2014-10-13 19:53 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\AVAST Software
2014-10-13 13:42 - 2014-10-13 13:43 - 00061440 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\ok - Podklady BNG 10-2014.xls
2014-10-12 20:02 - 2014-10-12 20:02 - 00000857 _____ () C:\Documents and Settings\All Users\Plocha\TeamViewer 9.lnk
2014-10-12 20:02 - 2014-10-12 20:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 9
2014-10-10 23:13 - 2014-10-10 23:13 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací\Temp
2014-10-10 23:12 - 2014-10-10 23:12 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\AVAST Software
2014-10-10 23:11 - 2014-10-14 11:11 - 00000380 ____H () C:\windows\Tasks\avast! Emergency Update.job
2014-10-10 23:11 - 2014-10-10 23:11 - 00779536 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00414520 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00276432 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-10-10 23:11 - 2014-10-10 23:11 - 00192352 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00067824 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00057800 _____ (AVAST Software) C:\windows\system32\Drivers\aswTdi.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00055112 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00049944 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-10-10 23:11 - 2014-10-10 23:11 - 00024184 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-10-10 23:11 - 2014-10-10 23:11 - 00001775 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\windows\jumpshot.com
2014-10-10 23:11 - 2014-10-10 23:11 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-10-10 23:10 - 2014-10-10 23:10 - 00000000 ____D () C:\Program Files\AVAST Software
2014-10-10 23:09 - 2014-10-10 23:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-10-10 23:06 - 2014-10-10 23:06 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SUPERAntiSpyware.com
2014-10-09 23:10 - 2014-10-09 23:10 - 00016384 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Kopie - PACKAGING STOCK 20140929.xls
2014-10-03 12:37 - 2014-10-03 12:37 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Piasten 400g Doulton počty.xls
2014-10-03 08:36 - 2014-10-03 08:56 - 00021504 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli zahr platby.xls
2014-10-02 23:11 - 2014-10-03 10:22 - 00028672 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Mili 02.10.2014.xls
2014-10-02 10:08 - 2014-10-14 13:59 - 00005595 _____ () C:\windows\setupapi.log
2014-09-29 01:38 - 2014-09-29 01:51 - 00022016 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\situace.xls
2014-09-26 12:24 - 2014-09-26 14:00 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\platby+zalohy.xls
2014-09-26 10:49 - 2014-09-19 08:00 - 00037376 ____R () C:\Documents and Settings\Milan Lipavský\Plocha\OK zosit 19.xls
2014-09-26 09:19 - 2014-10-01 12:22 - 00014336 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Penny 26.9..xls
2014-09-23 13:45 - 2014-09-23 13:46 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Wiebold fotky
2014-09-23 10:56 - 2014-09-23 10:56 - 00013824 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\plán.xls
2014-09-19 08:09 - 2014-09-29 09:59 - 00023552 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\NL 33x250g.xls
2014-09-16 08:13 - 2014-10-03 09:40 - 00060928 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli Hauswirtz VIANOCE 2014.xls
2014-09-15 11:03 - 2014-09-15 14:03 - 00023040 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\upravy v byteSešit1.xls
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-14 19:27 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\T\Local Settings\temp
2014-10-14 19:27 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T\Plocha
2014-10-14 19:13 - 2009-11-10 18:52 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Local Settings\temp
2014-10-14 18:59 - 2007-11-05 21:20 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\Skype
2014-10-14 18:33 - 2012-08-09 16:12 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-10-14 18:32 - 2007-06-30 12:22 - 01422991 _____ () C:\windows\WindowsUpdate.log
2014-10-14 18:05 - 2014-02-12 08:38 - 00000072 _____ () C:\Autoconfig.ini
2014-10-14 15:57 - 2011-04-11 10:06 - 00000000 ____D () C:\Ksoft
2014-10-14 15:27 - 2007-07-11 14:50 - 00000000 ____D () C:\Program Files\=PRIKAZY=
2014-10-14 13:56 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha
2014-10-14 12:42 - 2007-09-30 13:03 - 00002517 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Microsoft Office Excel 2003.lnk
2014-10-14 11:54 - 2010-10-21 12:50 - 00000012 _____ () C:\Documents and Settings\T\intlname.ols
2014-10-14 11:54 - 2007-06-30 13:14 - 00006605 _____ () C:\windows\wincmd.ini
2014-10-14 11:45 - 2008-06-02 07:43 - 00000121 _____ () C:\kosdat.mem
2014-10-14 10:03 - 2007-06-30 14:17 - 00001691 _____ () C:\windows\wiadebug.log
2014-10-14 09:28 - 2014-09-07 12:28 - 00000613 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\sdilena-slozka-pekarna.lnk
2014-10-14 08:28 - 2007-07-29 21:02 - 00002561 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Microsoft Office Word 2003.lnk
2014-10-14 00:22 - 2014-03-24 18:59 - 00000508 ____H () C:\windows\Tasks\User_Feed_Synchronization-{526B7424-400E-4A5F-A451-969C6C71A20B}.job
2014-10-13 22:00 - 2009-11-04 21:14 - 00000664 _____ () C:\windows\system32\d3d9caps.dat
2014-10-13 21:30 - 2014-07-01 21:27 - 00000278 _____ () C:\windows\Tasks\Synology Data Replicator 3-SELI-KANCELAR1-T.job
2014-10-13 21:01 - 2007-06-30 14:17 - 00000050 _____ () C:\windows\wiaservc.log
2014-10-13 21:01 - 2007-06-30 12:27 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-10-13 21:01 - 2001-10-25 16:00 - 00002206 _____ () C:\windows\system32\wpa.dbl
2014-10-13 21:00 - 2012-07-01 08:49 - 00000178 ___SH () C:\Documents and Settings\UpdatusUser.SELI-KANCELAR1\ntuser.ini
2014-10-13 21:00 - 2007-07-02 21:30 - 00000272 ___SH () C:\Documents and Settings\T\ntuser.ini
2014-10-13 21:00 - 2007-06-30 14:15 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-10-13 21:00 - 2007-06-30 14:14 - 00140440 _____ () C:\windows\system32\FNTCACHE.DAT
2014-10-13 21:00 - 2007-06-30 12:28 - 00000272 ___SH () C:\Documents and Settings\Milan Lipavský\ntuser.ini
2014-10-13 21:00 - 2007-06-30 12:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský
2014-10-13 21:00 - 2007-06-30 12:27 - 00032636 _____ () C:\windows\SchedLgU.Txt
2014-10-13 19:54 - 2010-03-18 18:03 - 00023296 _____ () C:\Documents and Settings\T\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-13 19:54 - 2007-07-02 21:30 - 00000000 ___HD () C:\Documents and Settings\T\Local Settings\Data aplikací
2014-10-13 19:53 - 2007-07-02 21:30 - 00000000 __RHD () C:\Documents and Settings\T\Data aplikací
2014-10-13 16:24 - 2009-11-03 17:28 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Dokumenty\Stažené soubory
2014-10-13 15:10 - 2007-11-14 11:48 - 00000684 _____ () C:\windows\wcx_ftp.ini
2014-10-13 13:49 - 2007-10-26 18:06 - 00001846 ____H () C:\Documents and Settings\Milan Lipavský\Dokumenty\Default.rdp
2014-10-13 13:40 - 2014-08-07 20:09 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Belgické bonboniery
2014-10-13 13:31 - 2014-08-07 09:33 - 00002259 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Denní nakládka ok.lnk
2014-10-13 11:20 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan Lipavský\Okolní síť
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Program Files\TeamViewer
2014-10-12 20:02 - 2009-11-12 10:50 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Data aplikací\TeamViewer
2014-10-12 20:02 - 2007-06-30 14:15 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-10-12 20:02 - 2007-06-30 12:29 - 00023296 _____ () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-10-12 14:01 - 2009-05-07 22:10 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\ML ostatní
2014-10-11 10:25 - 2013-12-23 23:50 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-10-10 23:13 - 2007-06-30 12:28 - 00000000 ___HD () C:\Documents and Settings\Milan Lipavský\Local Settings\Data aplikací
2014-10-10 23:12 - 2007-06-30 12:28 - 00000000 __RHD () C:\Documents and Settings\Milan Lipavský\Data aplikací
2014-10-10 23:09 - 2007-06-30 14:15 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-10-10 23:08 - 2010-01-06 04:00 - 00000260 _____ () C:\windows\Tasks\WGASetup.job
2014-10-10 23:07 - 2007-07-02 21:30 - 00000000 ____D () C:\Documents and Settings\T
2014-10-10 23:06 - 2012-11-16 13:36 - 00000000 ____D () C:\Documents and Settings\T\Data aplikací\SecuGuard6.0.3
2014-10-10 23:06 - 2009-11-02 17:18 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-10-10 23:06 - 2009-11-02 11:10 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2014-10-10 23:06 - 2007-07-02 21:30 - 00000000 ___RD () C:\Documents and Settings\T\Nabídka Start\Programy
2014-10-10 23:05 - 2008-03-28 13:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\ESET
2014-10-10 23:04 - 2010-03-24 12:38 - 00000000 ____D () C:\Program Files\CesarFTP
2014-10-10 21:34 - 2013-01-30 21:18 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Meine Mappe
2014-10-10 09:58 - 2013-08-13 14:45 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\PEKARNA L I D I - R O Z P I S
2014-10-02 23:13 - 2007-08-30 09:06 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Ikony Filium
2014-09-29 02:02 - 2013-08-08 08:31 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\T O M A S
2014-09-29 01:58 - 2014-07-02 12:40 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Nysade foto
2014-09-26 09:49 - 2014-09-10 13:49 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Káva 60g
2014-09-26 07:33 - 2012-05-14 20:29 - 00701104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-09-26 07:33 - 2011-09-08 06:33 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-23 22:04 - 2007-07-07 19:20 - 00031232 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\Seli Kosys-fakturace.xls
2014-09-19 07:42 - 2014-01-07 13:56 - 00035328 _____ () C:\Documents and Settings\Milan Lipavský\Plocha\OK - WieboldOrder Form 2014.xls
2014-09-15 21:28 - 2007-09-24 12:00 - 00016380 _____ () C:\windows\system32\VFP9Rerr.log
2014-09-15 14:08 - 2014-08-18 08:36 - 00000000 ____D () C:\Documents and Settings\Milan Lipavský\Plocha\Byt pro prodej
Some content of TEMP:
====================
C:\Documents and Settings\Milan Lipavský\Local Settings\temp\SkypeSetup.exe
C:\Documents and Settings\T\Local Settings\temp\Quarantine.exe
C:\Documents and Settings\T\Local Settings\temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
==================== End Of Log ============================
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosba o kontrolu logu
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosba o kontrolu logu
vypadá to dobře, zítra to otestujeme v běžném provozu
díky moc
díky moc
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosba o kontrolu logu
Zatím není zač. Dejte vědět. 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?