Dobrý den,
prosím o kontrolu logu. Známé Eset něco našel a snad i odstranil, ale PC se nechová úplně dobře, takže log asi nebude preventivka.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-01-2015 01
Ran by Helena (administrator) on EDGE71 on 16-01-2015 08:13:25
Running from C:\Documents and Settings\Helena\Plocha
Loaded Profiles: Helena (Available profiles: Helena & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Wireless) C:\Program Files\TP-LINK\QSS\jswpbapi.exe
() C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\Sks8821.exe
(Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
(LITEON) C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\skdh8821.exe
(Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\System Update\SUService.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Software602) C:\Program Files\Software602\Print2PDF\Print2PDF.exe
(Roxio) C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
() C:\Program Files\TP-LINK\QSS\jswtrayutil.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\EuWatch.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\TrayNotify.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(LITE-ON TECHNOLOGY CORP.) C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\Skd8821.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(DOSPRN) C:\Program Files\Dosprn\DOSprn.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(TeamViewer GmbH) C:\DOCUME~1\Helena\LOCALS~1\Temp\TeamViewer\Version7\TeamViewer.exe
(TeamViewer GmbH) C:\DOCUME~1\Helena\LOCALS~1\Temp\TeamViewer\Version7\tv_w32.exe
(TeamViewer GmbH) C:\DOCUME~1\Helena\LOCALS~1\Temp\TeamViewer\Version7\TeamViewer_Desktop.exe
(forum.viry.cz) C:\Documents and Settings\Helena\Plocha\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [18782720 2009-10-12] (Realtek Semiconductor Corp.)
HKLM\...\Run: [TVT Scheduler Proxy] => C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe [487424 2008-03-04] (Lenovo Group Limited)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM\...\Run: [Print2PDF Print Monitor] => C:\Program Files\Software602\Print2PDF\Print2PDF.exe [220992 2011-10-04] (Software602)
HKLM\...\Run: [RoxioDragToDisc] => C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe [1695744 2005-02-04] (Roxio)
HKLM\...\Run: [OrderReminder] => C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [98304 2005-03-18] (Hewlett-Packard)
HKLM\...\Run: [jswtrayutil] => C:\Program Files\TP-LINK\QSS\jswtrayutil.exe [32871 2009-09-24] ()
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152 2008-03-25] (Hewlett-Packard)
HKLM\...\Run: [EaseUs Watch] => C:\Program Files\EaseUS\Todo Backup\bin\EuWatch.exe [70792 2011-12-22] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM\...\Run: [EaseUs Tray] => C:\Program Files\EaseUS\Todo Backup\bin\TrayNotify.exe [743560 2011-12-26] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [2219184 2011-01-12] (ESET)
HKLM\...\Run: [hpqSRMon] => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [81920 2008-03-13] (Hewlett-Packard)
HKLM\...\Run: [Skd8821] => C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\SKD8821.exe [286208 2010-06-01] (LITE-ON TECHNOLOGY CORP.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-57989841-1078081533-725345543-1003\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-57989841-1078081533-725345543-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
HKU\S-1-5-21-57989841-1078081533-725345543-1003\...\Run: [SifupUbolx] => regsvr32.exe "C:\Documents and Settings\All Users\Data aplikacĂ\SifupUbolx\EijpAcule.ivz"
HKU\S-1-5-18\...\Policies\Explorer: [CDRAutoRun] 0
Startup: C:\Documents and Settings\All Users\NabĂdka Start\Programy\Po spuštÄ›nĂ\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\Helena\NabĂdka Start\Programy\Po spuštÄ›nĂ\DOSprn.lnk
ShortcutTarget: DOSprn.lnk -> C:\Program Files\Dosprn\DOSprn.exe (DOSPRN)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-57989841-1078081533-725345543-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKU\S-1-5-21-57989841-1078081533-725345543-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKU\S-1-5-21-57989841-1078081533-725345543-1003 -> {9A221867-893D-41E0-A38C-1AA7877D0BBC} URL = http://search.seznam.cz/?q={searchTerms ... chmodule_2
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
DPF: {2DAD3559-2923-4935-AD49-B673D2539944} http://support.lenovo.com/Resources/Len ... Detect.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 5763461156
DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.3.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Helena\Data aplikacĂ\Mozilla\Firefox\Profiles\doumxqvh.default
FF Homepage: hxxp://www.seznam.cz/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-01-05]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2012-01-08]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012-01-10]
FF HKU\S-1-5-21-57989841-1078081533-725345543-1003\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2
Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Helena\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.102\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Documents and Settings\Helena\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.102\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\Helena\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.102\pdf.dll No File
CHR Plugin: (AVG Internet Security) - C:\Documents and Settings\Helena\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1901_0\plugins/avgnpss.dll No File
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Software602 Form Filler) - C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Profile: C:\Documents and Settings\Helena\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default
CHR StartMenuInternet: Google Chrome - C:\Documents and Settings\Helena\Local Settings\Data aplikacĂ\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe [61064 2011-12-22] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
S3 EhttpSrv; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [33584 2011-01-12] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [810144 2011-01-12] (ESET)
R2 Guard Agent; C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe [23176 2011-12-22] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2008-03-25] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [135168 2008-03-25] (Hewlett-Packard Co.) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-04-14] (Oracle Corporation)
R2 jswpbapi; C:\Program Files\TP-LINK\QSS\jswpbapi.exe [188416 2009-09-21] (Wireless) [File not signed]
S3 jswpsapi; C:\Program Files\TP-LINK\QSS\jswpsapi.exe [360529 2009-09-21] (wireless) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [38912 2005-01-13] () [File not signed]
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [43520 2008-02-28] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53248 2008-02-28] (Hewlett-Packard) [File not signed]
R2 Sks8821; C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\Sks8821.exe [125952 2010-05-04] () [File not signed]
R2 SUService; C:\Program Files\Lenovo\System Update\SUService.exe [28672 2011-07-25] (Lenovo Group Limited) [File not signed]
R2 TVT Scheduler; C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe [1122304 2008-03-04] (Lenovo Group Limited) [File not signed]
S3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{92D7FFB6-2BB8-4103-B6D4-FF7B70C4A120}
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 arusb(TP-LINK); C:\WINDOWS\System32\DRIVERS\arusb.sys [598528 2010-06-01] (Atheros Communications, Inc.)
R1 Cdr4_xp; C:\WINDOWS\system32\Drivers\Cdr4_xp.sys [44288 2005-02-04] (Roxio) [File not signed]
R1 Cdralw2k; C:\WINDOWS\system32\Drivers\Cdralw2k.sys [24832 2005-02-04] (Roxio) [File not signed]
R1 cdudf_xp; C:\WINDOWS\system32\Drivers\cdudf_xp.sys [291456 2005-02-04] (Roxio) [File not signed]
R1 DVDVRRdr_xp; C:\WINDOWS\system32\Drivers\DVDVRRdr_xp.sys [141184 2005-02-04] (Windows (R) 2000 DDK provider) [File not signed]
R3 dvd_2K; C:\WINDOWS\system32\Drivers\dvd_2K.sys [24064 2005-02-04] (Roxio) [File not signed]
R2 eamon; C:\WINDOWS\System32\DRIVERS\eamon.sys [141264 2010-12-21] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [115008 2010-12-21] (ESET)
R2 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [134000 2010-12-21] (ESET)
R3 Epfwndis; C:\WINDOWS\System32\DRIVERS\Epfwndis.sys [33120 2010-12-21] (ESET)
R1 epfwtdi; C:\WINDOWS\System32\DRIVERS\epfwtdi.sys [55256 2010-08-03] (ESET)
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [50312 2011-12-22] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [43784 2011-12-22] () [File not signed]
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [16008 2011-12-22] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [185864 2011-12-22] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2008-04-16] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2008-04-16] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2008-04-16] (HP)
R3 JSWSCIMD; C:\WINDOWS\System32\DRIVERS\jswscimd.sys [57440 2009-09-21] (Atheros Communications, Inc.)
R3 MEI; C:\WINDOWS\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Intel Corporation)
S3 mmc_2K; C:\WINDOWS\system32\Drivers\mmc_2K.sys [23808 2005-02-04] (Roxio) [File not signed]
R1 pwd_2k; C:\WINDOWS\system32\Drivers\pwd_2k.sys [117632 2005-02-04] (Roxio) [File not signed]
R1 UDFReadr; C:\WINDOWS\system32\Drivers\UDFReadr.sys [202368 2005-02-04] (Roxio) [File not signed]
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-16 08:13 - 2015-01-16 08:13 - 00017833 _____ () C:\Documents and Settings\Helena\Plocha\FRST.txt
2015-01-16 08:13 - 2015-01-16 08:13 - 00000000 ____D () C:\FRST
2015-01-16 08:11 - 2015-01-16 08:11 - 01116672 _____ (Farbar) C:\Documents and Settings\Helena\Plocha\FRST.exe
2015-01-16 08:11 - 2015-01-16 08:11 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Helena\Plocha\FRSTLauncher.exe
2015-01-14 23:45 - 2015-01-14 23:45 - 00000000 ____D () C:\Documents and Settings\Helena\Plocha\VZP
2015-01-14 18:48 - 2015-01-14 19:11 - 00000000 ____D () C:\Program Files\Mozilla Thunderbird
2015-01-13 21:45 - 2015-01-14 16:48 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikacĂ\SifupUbolx
2015-01-12 21:42 - 2015-01-12 21:42 - 00001228 _____ () C:\MS2
2015-01-12 21:41 - 2015-01-12 21:41 - 00000682 _____ () C:\MS1
2015-01-10 10:05 - 2015-01-10 10:05 - 00001129 _____ () C:\MK1
2015-01-10 10:05 - 2015-01-10 10:05 - 00000875 _____ () C:\MK2
2015-01-10 10:05 - 2015-01-10 10:05 - 00000784 _____ () C:\MK3
2015-01-07 18:12 - 2015-01-07 18:12 - 00001215 _____ () C:\IM5
2015-01-07 18:12 - 2015-01-07 18:12 - 00001055 _____ () C:\IM6
2015-01-07 18:12 - 2015-01-07 18:12 - 00001055 _____ () C:\IM4
2015-01-07 18:11 - 2015-01-07 18:11 - 00001229 _____ () C:\IM3
2015-01-07 18:11 - 2015-01-07 18:11 - 00001000 _____ () C:\IM2
2015-01-07 18:11 - 2015-01-07 18:11 - 00001000 _____ () C:\IM1
2015-01-04 10:46 - 2015-01-04 10:46 - 00001228 _____ () C:\MD2
2015-01-04 10:46 - 2015-01-04 10:46 - 00000886 _____ () C:\MD3
2015-01-04 10:45 - 2015-01-04 10:45 - 00000718 _____ () C:\MD1
2014-12-30 10:13 - 2014-12-30 10:16 - 00000000 ____D () C:\Documents and Settings\Helena\Dokumenty\AniÄŤka
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-16 08:13 - 2012-01-05 12:26 - 00000000 ___HD () C:\Documents and Settings\Helena\Local Settings\Data aplikacĂ
2015-01-16 08:13 - 2012-01-05 12:26 - 00000000 ____D () C:\Documents and Settings\Helena\Plocha
2015-01-16 08:13 - 2012-01-05 12:26 - 00000000 ____D () C:\Documents and Settings\Helena\Local Settings\Temp
2015-01-16 08:12 - 2012-01-06 10:02 - 00000000 ____D () C:\Documents and Settings\Helena\Dokumenty\Stažené soubory
2015-01-16 08:08 - 2012-01-06 09:57 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-01-16 07:50 - 2012-01-06 13:06 - 00000000 ____D () C:\Documents and Settings\Helena\Data aplikacĂ\Skype
2015-01-16 07:17 - 2012-01-05 12:19 - 01699189 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-16 07:16 - 2012-01-06 12:33 - 00001997 _____ () C:\dosprn.log
2015-01-16 07:15 - 2013-12-19 21:02 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-16 07:15 - 2006-03-02 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-01-16 07:14 - 2014-03-07 16:30 - 00000224 _____ () C:\WINDOWS\Tasks\Přihlášenà k oznamovánà konce poskytovánà služeb pro Microsoft Windows XP.job
2015-01-16 07:14 - 2012-01-05 13:11 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-01-16 07:14 - 2012-01-05 13:11 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-01-16 07:14 - 2012-01-05 12:23 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-16 00:29 - 2012-01-05 12:23 - 00032596 _____ () C:\WINDOWS\SchedLgU.Txt
2015-01-15 22:49 - 2012-01-05 12:26 - 00000000 ____D () C:\Documents and Settings\Helena
2015-01-15 20:32 - 2014-06-29 13:51 - 00000000 ____D () C:\Documents and Settings\Helena\Dokumenty\DanÄ›
2015-01-15 08:31 - 2012-01-05 12:26 - 00000178 ___SH () C:\Documents and Settings\Helena\ntuser.ini
2015-01-15 00:01 - 2013-07-16 21:42 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-15 00:00 - 2012-01-05 13:08 - 110348472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-01-14 23:27 - 2014-09-04 20:09 - 00001682 _____ () C:\Documents and Settings\Helena\Plocha\VZP.cer
2015-01-14 23:17 - 2012-01-06 12:45 - 00000000 ____D () C:\Documents and Settings\Helena\Dokumenty\Pracovnà - účto
2015-01-14 23:07 - 2014-01-05 15:50 - 00000000 ____D () C:\UCET
2015-01-14 00:15 - 2013-12-19 21:02 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-01-14 00:15 - 2012-01-06 12:31 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-01-13 22:43 - 2012-01-06 10:34 - 00000000 ____D () C:\JUCET
2015-01-13 21:45 - 2012-01-05 13:08 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikacĂ
2015-01-12 21:52 - 2014-12-02 17:48 - 00045035 _____ () C:\Documents and Settings\Helena\Plocha\Vyplneno_PVPOJ_v50_publikovano_5.11.2014.zfo
2015-01-12 21:47 - 2014-12-07 17:57 - 00002147 _____ () C:\out_filler.dat
2015-01-11 13:04 - 2013-10-18 20:14 - 00000000 ____D () C:\Documents and Settings\Helena\Plocha\DPH datová schránka
2015-01-11 12:07 - 2012-01-05 12:26 - 00000000 ___RD () C:\Documents and Settings\Helena\Dokumenty
2015-01-10 20:15 - 2012-01-06 12:46 - 00111616 _____ () C:\Documents and Settings\Helena\Dokumenty\KalkulackaDSL_viceLet (version 1).xls
2015-01-08 16:46 - 2012-01-05 12:26 - 00000000 ___RD () C:\Documents and Settings\Helena\OblĂbenĂ© poloĹľky
2015-01-08 16:16 - 2014-03-07 16:30 - 00000218 _____ () C:\WINDOWS\Tasks\MÄ›sĂÄŤnĂ oznamovánĂ konce poskytovánĂ sluĹľeb pro Microsoft Windows XP.job
2015-01-04 11:53 - 2012-01-06 12:45 - 00000000 ____D () C:\Documents and Settings\Helena\Dokumenty\Moje naskenované obrázky
2015-01-04 11:24 - 2014-12-02 19:39 - 00045005 _____ () C:\Documents and Settings\Helena\Plocha\Vyplneno_PVPOJ_v50_publikovano_05.11.2014.zfo
2014-12-30 10:20 - 2012-01-06 12:43 - 00000000 ___RD () C:\Documents and Settings\Helena\Dokumenty\kris
2014-12-30 09:46 - 2012-02-04 15:58 - 00000000 ____D () C:\PSMZDY
2014-12-17 05:44 - 2012-01-05 13:08 - 01022012 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
Some content of TEMP:
====================
C:\Documents and Settings\Helena\Local Settings\Temp\difxapi.dll
C:\Documents and Settings\Helena\Local Settings\Temp\errfix.exe
C:\Documents and Settings\Helena\Local Settings\Temp\FP_PL_PFS_INSTALLER_32bit.exe
C:\Documents and Settings\Helena\Local Settings\Temp\hpzmsi01.exe
C:\Documents and Settings\Helena\Local Settings\Temp\hpzscr01.EXE
C:\Documents and Settings\Helena\Local Settings\Temp\jre-7u51-windows-i586-iftw.exe
C:\Documents and Settings\Helena\Local Settings\Temp\jre-7u55-windows-i586-iftw.exe
C:\Documents and Settings\Helena\Local Settings\Temp\setup_wm.exe
C:\Documents and Settings\Helena\Local Settings\Temp\SkypeSetup.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:465.75 GB) (Free:401.57 GB) NTFS ==>[Drive with boot components (Windows XP)]
Available physical RAM: 2188.4 MB
Total physical RAM: 2922.34 MB
Percentage of memory in use: 25%
==================== MBR and Partition Table ==================
2012-01-10 15:08 - 2011-12-22 23:08 - 00114312 _____ () C:\Program Files\EaseUS\Todo Backup\bin\ExchBackupSize.dll
Disk: 0 (Size: 465.8 GB) (Disk ID: 83795070)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\MÄ›sĂÄŤnĂ oznamovánĂ konce poskytovánĂ sluĹľeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Přihlášenà k oznamovánà konce poskytovánà služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: ESET Smart Security 4.2 (Disabled - Up to date) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall (Disabled) {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Documents and Settings\Helena\Plocha" je 575 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe:*:Enabled:hposid01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\\Program Files\\Common Files\\HP\\Digital Imaging\\bin\\hpqPhotoCrm.exe"="C:\\Program Files\\Common Files\\HP\\Digital Imaging\\bin\\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpsapp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpsapp.exe:*:Enabled:hpqpsapp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpse.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpse.exe:*:Enabled:hpqpse.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqsudi.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqsudi.exe:*:Enabled:hpqsudi.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"="C:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe:*:Enabled:Instal tor AVG"
"C:\\Program Files\\Common Files\\soft602\\langserv.exe"="C:\\Program Files\\Common Files\\soft602\\langserv.exe:*:Enabled:Software602 Spell Checker"
"C:\\Program Files\\EaseUS\\Todo Backup\\bin\\Agent.exe"="C:\\Program Files\\EaseUS\\Todo Backup\\bin\\Agent.exe:*:Enabled:Agent.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe:*:Enabled:hposid01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\\Program Files\\Common Files\\HP\\Digital Imaging\\bin\\hpqPhotoCrm.exe"="C:\\Program Files\\Common Files\\HP\\Digital Imaging\\bin\\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpsapp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpsapp.exe:*:Enabled:hpqpsapp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpse.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpse.exe:*:Enabled:hpqpse.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqsudi.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqsudi.exe:*:Enabled:hpqsudi.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Eset asi neodstranil vše
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Eset asi neodstranil vše
- Přílohy
-
- Addition.rar
- (8.26 KiB) Staženo 55 x
Re: Eset asi neodstranil vše
ahoj,
je to v podstate OK
- Velikost slozky "C:\Documents and Settings\Helena\Plocha" je 575 MB.
uprac plochu, aby to bolo menej ako 300MB
- vycisti PC s CCleanerom
je to v podstate OK
- Velikost slozky "C:\Documents and Settings\Helena\Plocha" je 575 MB.
uprac plochu, aby to bolo menej ako 300MB
- vycisti PC s CCleanerom
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Eset asi neodstranil vše
Díky, ty hlášky, co se objevovaly po restartu byly asi důsledkem zabordelených registrů po odstranění toho nepořádku Esetem, po CCleaneru už je vše OK.
Plochu uklidila na 75 MB
Jaký je důvod pro redukci objemu Plochy? Rychlejší vykreslování Plochy?
Plochu uklidila na 75 MB
Jaký je důvod pro redukci objemu Plochy? Rychlejší vykreslování Plochy?Re: Eset asi neodstranil vše
objem plochy sa natahuje pri starte a ak je neumerne velky, predlzuje sa doba startu PC >> od zapnutia po nacitanie plochy 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?