prosim o kontrolu logu.
Problem - pomaly internet a nevyziadana reklama - kontextova, pop-up;
pri kontrole prvkov AdBlockom ukazuje napr. superfish.com tr553com a pod.
Podozrievam nieco, co sa tvarilo ako Opera a nainstalovalo sa mi napriek tomu, ze to zachytilo AVG a ze som instalaciu dal zastavit
Skusil som obnovu systemu, ale pisalo "bez zmeny".
Dakujem.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-03-2015
Ran by user (administrator) on SEVERKA on 10-03-2015 21:01:34
Running from D:\Documents and Settings\user\Plocha
Loaded Profiles: user (Available profiles: user & Katka)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 6 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Logitech Inc.) D:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
(Acresso Software Inc.) D:\Program Files\ESRI\License\arcgis9x\lmgrd.exe
(AVerMedia) D:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe
(Acresso Software Inc.) D:\Program Files\ESRI\License\arcgis9x\lmgrd.exe
() D:\Program Files\ESRI\License\arcgis9x\ARCGIS.EXE
() D:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe
() D:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVG Technologies CZ, s.r.o.) D:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Apple Computer, Inc.) D:\Program Files\Bonjour\mDNSResponder.exe
(Firebird Project) D:\Program Files\KROS\KROS FBServer\Firebird001\bin\fbserver.exe
(Ellora Assets Corp.) D:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
(Oracle Corporation) D:\Program Files\Java\jre7\bin\jqs.exe
(KirySoft) D:\Program Files\KLS Soft\KLS Backup 2009 Professional\klsbservice.exe
(Hewlett-Packard Company) D:\Program Files\Common Files\LightScribe\LSSrvc.exe
(ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) D:\WINDOWS\system32\PrintCtrl.exe
(SafeNet, Inc) D:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
(Analog Devices, Inc.) D:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
(Intel Corporation) D:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) D:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) D:\WINDOWS\system32\igfxpers.exe
(Analog Devices, Inc.) D:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
(Martin Marek / 76house) F:\_Ado\Diar\BUDIK104\BUDIK.EXE
(AVG Technologies CZ, s.r.o.) D:\Program Files\AVG\AVG2015\avgui.exe
() D:\Program Files\MRP\Tlačový manažér\W_mrpprn.exe
(Skype Technologies S.A.) D:\Program Files\Skype\Phone\Skype.exe
(Piriform Ltd) D:\Program Files\CCleaner\CCleaner.exe
(Dropbox, Inc.) D:\Documents and Settings\user\Data aplikací\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) D:\WINDOWS\system32\wbem\unsecapp.exe
(Ghisler Software GmbH) D:\totalcmd\TOTALCMD.EXE
(Mozilla Corporation) D:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) D:\Program Files\Mozilla Firefox\plugin-container.exe
(forum.viry.cz) D:\Documents and Settings\user\Plocha\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [igfxhkcmd] => D:\WINDOWS\system32\hkcmd.exe [77824 2006-04-01] (Intel Corporation)
HKLM\...\Run: [igfxpers] => D:\WINDOWS\system32\igfxpers.exe [114688 2006-04-01] (Intel Corporation)
HKLM\...\Run: [SoundMAXPnP] => D:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe [1388544 2004-10-14] (Analog Devices, Inc.)
HKLM\...\Run: [Budík] => F:\_Ado\Diar\BUDIK104\Budik.exe [1497600 2000-01-10] (Martin Marek / 76house)
HKLM\...\Run: [AVG_UI] => D:\Program Files\AVG\AVG2015\avgui.exe [3667472 2014-12-18] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SunJavaUpdateSched] => D:\Program Files\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKU\S-1-5-21-842925246-688789844-839522115-1003\...\Run: [W_MRPPRN] => D:\Program Files\MRP\Tlačový manažér\W_mrpprn.exe [849920 1999-06-10] ()
HKU\S-1-5-21-842925246-688789844-839522115-1003\...\Run: [LG LinkAir] => [X]
HKU\S-1-5-21-842925246-688789844-839522115-1003\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-842925246-688789844-839522115-1003\...\Run: [Skype] => D:\Program Files\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-842925246-688789844-839522115-1003\...\Run: [CCleaner Monitoring] => D:\Program Files\CCleaner\CCleaner.exe [4811032 2014-09-26] (Piriform Ltd)
HKU\S-1-5-21-842925246-688789844-839522115-1003\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x43010000
HKU\S-1-5-21-842925246-688789844-839522115-1003\...\MountPoints2: {3bebe2c4-8160-11df-a473-001731642897} - E:\Startme.exe
HKU\S-1-5-21-842925246-688789844-839522115-1003\...\MountPoints2: {684a8b1c-5462-11de-8afb-001731642897} - I:\setupSNK.exe
HKU\S-1-5-21-842925246-688789844-839522115-1003\...\MountPoints2: {f2086ffa-8be6-11e3-aaae-001731642897} - I:\setupSNK.exe
HKU\S-1-5-21-842925246-688789844-839522115-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> D:\WINDOWS\system32\sstext3d.scr [679936 2008-04-14] (Microsoft Corporation)
Startup: D:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> D:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
Startup: D:\Documents and Settings\user\Nabídka Start\Programy\Po spuštění\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> D:\Documents and Settings\user\Data aplikací\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => D:\Documents and Settings\user\Data aplikací\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => D:\Documents and Settings\user\Data aplikací\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => D:\Documents and Settings\user\Data aplikací\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => D:\Documents and Settings\user\Data aplikací\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => D:\Documents and Settings\user\Data aplikací\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => D:\Documents and Settings\user\Data aplikací\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => D:\Documents and Settings\user\Data aplikací\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => D:\Documents and Settings\user\Data aplikací\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean.exeD:\PROGRA~1\AVG\AVG2015\avgrsx.exe /sync /restart
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-842925246-688789844-839522115-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... R}&ar=home
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-842925246-688789844-839522115-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.reerd.com
HKU\S-1-5-21-842925246-688789844-839522115-1003\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKU\S-1-5-21-842925246-688789844-839522115-1003\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
URLSearchHook: HKU\S-1-5-21-842925246-688789844-839522115-1003 - Modul přiřazení adres URL - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
SearchScopes: HKLM -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = http://us.yhs.search.yahoo.com/avg/sear ... earchTerms}
SearchScopes: HKU\S-1-5-21-842925246-688789844-839522115-1003 -> DefaultScope {6A1806CD-94D4-4689 URL =
SearchScopes: HKU\S-1-5-21-842925246-688789844-839522115-1003 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-842925246-688789844-839522115-1003 -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = http://www.webhledani.cz/results.aspx?i ... earchTerms}
BHO: AcroIEHlprObj Class -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-24] (Adobe Systems Incorporated)
BHO: HistoryTriggerBHO Class -> {21A88CB9-84D2-4020-A2D1-B25A21034884} -> D:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll [2011-05-19] (LG Electronics)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> D:\Program Files\Norton 360\Engine\21.6.0.32\coIEPlg.dll No File
BHO: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> D:\Program Files\Norton 360\Engine\21.6.0.32\IPS\IPSBHO.DLL No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Program Files\Java\jre7\bin\ssv.dll [2014-09-26] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-09-26] (Oracle Corporation)
Toolbar: HKLM - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - D:\Program Files\Norton 360\Engine\21.6.0.32\coIEPlg.dll No File
Toolbar: HKU\S-1-5-21-842925246-688789844-839522115-1003 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - D:\WINDOWS\system32\browseui.dll [2008-04-14] (Společnost Microsoft)
Toolbar: HKU\S-1-5-21-842925246-688789844-839522115-1003 -> No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{8CDC2AE5-92FA-4050-BF33-B0FA4B2EC562}: [NameServer] 217.12.48.2,217.12.50.2
FireFox:
========
FF ProfilePath: D:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\927wwy2q.default
FF Homepage: about:home
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> D:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_235.dll [2014-12-17] ()
FF Plugin: @adobe.com/ShockwavePlayer -> D:\WINDOWS\system32\Adobe\Director\np32dsw_1207148.dll [2013-12-05] (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> D:\Program Files\Google\Picasa3\npPicasa3.dll [2013-04-02] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.71.2 -> D:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.71.2 -> D:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-09-26] (Oracle Corporation)
FF Plugin: @macromedia.com/FlashPlayer9 -> D:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> D:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> D:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> D:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-03] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.4 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> D:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2013-03-21] (Adobe Systems)
FF Plugin HKU\S-1-5-21-842925246-688789844-839522115-1003: @Google.com/GoogleEarthPlugin -> D:\Documents and Settings\user\Local Settings\Data aplikací\Google\Google Earth\plugin\npgeplugin.dll [2009-11-12] (Google)
FF Plugin HKU\S-1-5-21-842925246-688789844-839522115-1003: @macromedia.com/FlashPlayer9 -> D:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
FF Plugin ProgramFiles/Appdata: D:\Program Files\mozilla firefox\plugins\nppdf32.dll [2005-09-24] (Adobe Systems Inc.)
FF SearchPlugin: D:\Program Files\mozilla firefox\searchplugins\avg_igeared.xml [2011-03-14]
FF Extension: Zoom It - D:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\927wwy2q.default\Extensions\{da195238-f2ef-13a6-5072-e1109af0cfa1} [2015-03-10]
FF Extension: Classic Theme Restorer - D:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\927wwy2q.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2015-01-27]
FF Extension: facepaste - D:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\927wwy2q.default\Extensions\facepaste.firefox.addon@azabani.com.xpi [2014-09-15]
FF Extension: Geocaching.com GPX Downloader - D:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\927wwy2q.default\Extensions\gpxdown@geocaching.com.xpi [2014-08-30]
FF Extension: FlashGot - D:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\927wwy2q.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2014-09-08]
FF Extension: Adblock Plus - D:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\927wwy2q.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-10-06]
FF HKLM\...\Firefox\Extensions: [fbdownloader@KMcore] -
FF HKLM\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - D:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.2.0.38\coFFPlgn
FF HKLM\...\Firefox\Extensions: [fmdownloader@gmail.com] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com
FF Extension: Freemake Video Downloader Plugin - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com [2014-03-11]
FF HKLM\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com
FF Extension: Freemake Youtube Download Button - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com [2014-03-11]
Chrome:
=======
CHR Plugin: (Shockwave Flash) - D:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\PepperFlash\11.5.31.139\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - D:\Program Files\Google\Chrome\Application\37.0.2062.103\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - D:\Program Files\Google\Chrome\Application\37.0.2062.103\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - D:\Program Files\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.210.7) - D:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U21) - D:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Microsoft® DRM) - D:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - D:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft® DRM) - D:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - D:\Documents and Settings\user\Local Settings\Data aplikací\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Picasa) - D:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - D:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - D:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll No File
CHR Plugin: (Shockwave Flash) - D:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_228.dll No File
CHR Profile: D:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - D:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-02-08]
CHR Extension: (YouTube) - D:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-02-08]
CHR Extension: (Freemake Video Downloader) - D:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf [2014-03-12]
CHR Extension: (Freemake Youtube Download Button) - D:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh [2014-03-12]
CHR Extension: (Norton Security Toolbar) - D:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2013-12-03]
CHR Extension: (Google Wallet) - D:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-25]
CHR Extension: (Gmail) - D:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-02-08]
CHR HKLM\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2014-03-11]
CHR HKLM\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx [2014-03-11]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - D:\Program Files\Norton 360\Engine\21.6.0.32\Exts\Chrome.crx [Not Found]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 Adobe LM Service; D:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2009-06-01] (Adobe Systems) [File not signed]
R2 ArcGIS License Manager; D:\Program Files\ESRI\License\arcgis9x\lmgrd.exe [1431440 2008-08-02] (Acresso Software Inc.)
R2 AVerRemote; D:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe [352256 2008-10-21] (AVerMedia) [File not signed]
R2 AVerScheduleService; D:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe [405504 2008-12-09] () [File not signed]
S2 AVGIDSAgent; D:\Program Files\AVG\AVG2015\avgidsagent.exe [3432976 2014-12-18] (AVG Technologies CZ, s.r.o.)
R2 avgwd; D:\Program Files\AVG\AVG2015\avgwdsvc.exe [298080 2014-12-18] (AVG Technologies CZ, s.r.o.)
R2 Bonjour Service; D:\Program Files\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
R2 FirebirdServerKROS_20400; D:\Program Files\KROS\KROS FBServer\Firebird001\bin\fbserver.exe [3764224 2011-10-11] (Firebird Project) [File not signed]
S3 FLEXnet Licensing Service; D:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2009-09-12] (Macrovision Europe Ltd.) [File not signed]
R2 FreemakeVideoCapture; D:\Program Files\Freemake\CaptureLib\CaptureLibService.exe [9216 2014-03-11] (Ellora Assets Corp.) [File not signed]
R2 JavaQuickStarterService; D:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-09-26] (Oracle Corporation)
R2 KLSBackup2009Pro; D:\Program Files\KLS Soft\KLS Backup 2009 Professional\klsbservice.exe [3206656 2011-01-02] (KirySoft) [File not signed]
R2 LightScribeService; D:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2010-06-16] (Hewlett-Packard Company) [File not signed]
S2 LVSrvLauncher; D:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [105248 2007-02-06] (Logitech Inc.)
R2 Printer Control; D:\WINDOWS\system32\PrintCtrl.exe [77824 2009-06-16] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) [File not signed]
R2 SentinelProtectionServer; D:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [206400 2006-03-14] (SafeNet, Inc)
R2 SoundMAX Agent Service (default); D:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.) [File not signed]
S3 SwitchBoard; D:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 N360; "D:\Program Files\Norton 360\Engine\21.6.0.32\N360.exe" /s "N360" /m "D:\Program Files\Norton 360\Engine\21.6.0.32\diMaster.dll" /prefetch:1
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
S2 wuauserv; C:\WINDOWS\system32\wuauserv.dll [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 aeaudio; D:\WINDOWS\System32\drivers\aeaudio.sys [127872 2009-05-14] (Andrea Electronics Corporation) [File not signed]
S3 Andbus; D:\WINDOWS\System32\DRIVERS\lgandbus.sys [14336 2010-12-07] (LG Electronics Inc.)
S3 AndDiag; D:\WINDOWS\System32\DRIVERS\lganddiag.sys [20736 2010-12-07] (LG Electronics Inc.)
S3 AndGps; D:\WINDOWS\System32\DRIVERS\lgandgps.sys [20096 2010-12-07] (LG Electronics Inc.)
S3 ANDModem; D:\WINDOWS\System32\DRIVERS\lgandmodem.sys [25088 2010-12-07] (LG Electronics Inc.)
S3 androidusb; D:\WINDOWS\System32\Drivers\lgandadb.sys [25728 2010-08-02] (Google Inc)
R2 Angelnt; D:\WINDOWS\System32\Drivers\ANGELNT.SYS [51072 2013-02-23] (Identcode Ltd.) [File not signed]
S3 AVerHybrid; D:\WINDOWS\System32\drivers\averhbtv.sys [304512 2007-09-07] (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
R1 Avgdiskx; D:\WINDOWS\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriverl; D:\WINDOWS\System32\DRIVERS\avgidsdriverlx.sys [192792 2014-12-08] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; D:\WINDOWS\System32\DRIVERS\avgidshx.sys [154904 2014-11-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; D:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; D:\WINDOWS\System32\DRIVERS\avgldx86.sys [192792 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; D:\WINDOWS\System32\DRIVERS\avglogx.sys [230680 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; D:\WINDOWS\System32\DRIVERS\avgmfx86.sys [98584 2014-10-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; D:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; D:\WINDOWS\System32\DRIVERS\avgtdix.sys [200984 2014-10-10] (AVG Technologies CZ, s.r.o.)
R3 CamDrL; D:\WINDOWS\System32\DRIVERS\Camdrl.sys [1075360 2007-02-03] (Logitech Inc.)
S3 CCDECODE; D:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S1 ccSet_N360; D:\WINDOWS\system32\drivers\N360\1506000.020\ccSetx86.sys [127064 2014-02-25] (Symantec Corporation)
S3 cmuda; D:\WINDOWS\System32\drivers\cmuda.sys [815296 2006-10-29] (C-Media Inc) [File not signed]
R1 dtsoftbus01; D:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [242240 2013-02-04] (DT Soft Ltd)
R1 eeCtrl; D:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [378672 2014-09-09] (Symantec Corporation)
S3 k600bus; D:\WINDOWS\System32\DRIVERS\k600bus.sys [52384 2005-05-11] (MCCI)
S3 k600mdfl; D:\WINDOWS\System32\DRIVERS\k600mdfl.sys [6096 2005-05-11] (MCCI)
S3 k600mdm; D:\WINDOWS\System32\DRIVERS\k600mdm.sys [87456 2005-05-11] (MCCI)
S3 k600mgmt; D:\WINDOWS\System32\DRIVERS\k600mgmt.sys [79248 2005-05-11] (MCCI)
S3 k600obex; D:\WINDOWS\System32\DRIVERS\k600obex.sys [77072 2005-05-11] (MCCI)
R3 LgBttPort; D:\WINDOWS\System32\DRIVERS\lgbtport.sys [12160 2009-09-29] (LG Electronics Inc.)
R3 lgbusenum; D:\WINDOWS\System32\DRIVERS\lgbtbus.sys [10496 2009-09-29] (LG Electronics Inc.)
R3 LGVMODEM; D:\WINDOWS\System32\DRIVERS\lgvmodem.sys [12928 2009-09-29] (LG Electronics Inc.)
S3 LVcKap; D:\WINDOWS\System32\DRIVERS\LVcKap.sys [1691808 2007-02-06] ()
R3 LVMVDrv; D:\WINDOWS\System32\DRIVERS\LVMVDrv.sys [1964064 2007-02-06] (Logitech Inc.)
R3 LVPr2Mon; D:\WINDOWS\System32\DRIVERS\LVPr2Mon.sys [25632 2007-02-06] ()
R3 LVUSBSta; D:\WINDOWS\System32\drivers\LVUSBSta.sys [41504 2007-02-03] (Logitech Inc.)
S3 MidiSyn; D:\WINDOWS\System32\drivers\MidiSyn.sys [88960 2009-05-14] (Analog Devices, Inc.)
S3 MPE; D:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-13] (Microsoft Corporation)
S3 NdisIP; D:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R2 npf; D:\WINDOWS\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.)
R3 pcouffin; D:\WINDOWS\System32\Drivers\pcouffin.sys [47360 2010-02-13] (VSO Software) [File not signed]
S3 s1039mdm; D:\WINDOWS\System32\DRIVERS\s1039mdm.sys [124016 2009-11-19] (MCCI Corporation)
S3 s1317bus; D:\WINDOWS\System32\DRIVERS\s1317bus.sys [83840 2007-10-31] (MCCI Corporation)
S3 s1317mdfl; D:\WINDOWS\System32\DRIVERS\s1317mdfl.sys [14976 2007-10-31] (MCCI Corporation)
S3 s1317mdm; D:\WINDOWS\System32\DRIVERS\s1317mdm.sys [110592 2007-10-31] (MCCI Corporation)
S3 s1317mgmt; D:\WINDOWS\System32\DRIVERS\s1317mgmt.sys [104448 2007-10-31] (MCCI Corporation)
S3 s1317nd5; D:\WINDOWS\System32\DRIVERS\s1317nd5.sys [25472 2007-10-31] (MCCI Corporation)
S3 s1317obex; D:\WINDOWS\System32\DRIVERS\s1317obex.sys [100608 2007-10-31] (MCCI Corporation)
S3 s1317unic; D:\WINDOWS\System32\DRIVERS\s1317unic.sys [109952 2007-10-31] (MCCI Corporation)
R3 senfilt; D:\WINDOWS\System32\drivers\senfilt.sys [392704 2009-05-14] (Sensaura) [File not signed]
R3 smwdm; D:\WINDOWS\System32\drivers\smwdm.sys [220992 2005-03-28] (Analog Devices, Inc.) [File not signed]
R0 snapman; D:\WINDOWS\System32\DRIVERS\snapman.sys [65856 2009-05-18] (Acronis) [File not signed]
S3 SRTSP; D:\WINDOWS\System32\Drivers\N360\1506000.020\SRTSP.SYS [664792 2014-08-26] (Symantec Corporation)
R1 SRTSPX; D:\WINDOWS\system32\drivers\N360\1506000.020\SRTSPX.SYS [32984 2014-08-26] (Symantec Corporation)
R0 SymDS; D:\WINDOWS\System32\drivers\N360\1506000.020\SYMDS.SYS [367704 2013-10-30] (Symantec Corporation)
R0 SymEFA; D:\WINDOWS\System32\drivers\N360\1506000.020\SYMEFA.SYS [936152 2014-03-04] (Symantec Corporation)
R3 SymEvent; D:\WINDOWS\system32\Drivers\SYMEVENT.SYS [142936 2014-05-03] (Symantec Corporation)
S3 SymIM; D:\WINDOWS\System32\DRIVERS\SymIM.sys [47960 2013-10-30] (Symantec Corporation)
R3 SymIMMP; D:\WINDOWS\System32\DRIVERS\SymIM.sys [47960 2013-10-30] (Symantec Corporation)
S1 SymIRON; D:\WINDOWS\system32\drivers\N360\1506000.020\Ironx86.SYS [209624 2014-08-06] (Symantec Corporation)
S1 SYMTDI; D:\WINDOWS\System32\Drivers\N360\1506000.020\SYMTDI.SYS [423256 2014-02-18] (Symantec Corporation)
R3 yukonwxp; D:\WINDOWS\System32\DRIVERS\yk51x86.sys [243712 2006-10-29] (Marvell)
S3 appliandMP; system32\DRIVERS\appliand.sys [X]
S1 BHDrvx86; \??\D:\Program Files\Norton 360\NortonData\21.2.0.38\Definitions\BASHDefs\20141203.001\BHDrvx86.sys [X]
S3 catchme; \??\D:\DOCUME~1\user\LOCALS~1\Temp\catchme.sys [X]
S3 IDSxpx86; \??\D:\Program Files\Norton 360\NortonData\21.2.0.38\Definitions\IPSDefs\20141203.001\IDSxpx86.sys [X]
S3 NAVENG; \??\D:\Program Files\Norton 360\NortonData\21.2.0.38\Definitions\VirusDefs\20141203.038\NAVENG.SYS [X]
S3 NAVEX15; \??\D:\Program Files\Norton 360\NortonData\21.2.0.38\Definitions\VirusDefs\20141203.038\NAVEX15.SYS [X]
U5 ScsiPort; D:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U5 UnlockerDriver5; D:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2006-03-03] () [File not signed]
U1 WS2IFSL; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-10 21:01 - 2015-03-10 21:02 - 00029739 _____ () D:\Documents and Settings\user\Plocha\FRST.txt
2015-03-10 21:00 - 2015-03-10 21:01 - 00000000 ____D () D:\FRST
2015-03-10 20:57 - 2015-03-10 20:59 - 00112640 _____ (forum.viry.cz) D:\Documents and Settings\user\Plocha\FRSTLauncher.exe
2015-03-10 20:57 - 2015-03-10 20:58 - 01134592 _____ (Farbar) D:\Documents and Settings\user\Plocha\FRST.exe
2015-03-06 22:55 - 2015-03-06 23:03 - 00000000 ____D () D:\Documents and Settings\user\Local Settings\Data aplikací\Opera Software
2015-03-06 22:55 - 2015-03-06 23:03 - 00000000 ____D () D:\Documents and Settings\user\Data aplikací\Opera Software
2015-03-06 22:55 - 2015-03-06 22:55 - 00000675 _____ () D:\Documents and Settings\All Users\Nabídka Start\Programy\Opera.lnk
2015-03-06 22:48 - 2015-03-06 23:03 - 00000000 ____D () D:\Program Files\Opera
2015-03-04 21:08 - 2015-03-04 21:08 - 00001692 _____ () D:\Documents and Settings\All Users\Plocha\ALFA plus.lnk
2015-02-14 12:46 - 2015-02-14 12:47 - 00000000 ____D () D:\Program Files\Recuva
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-10 21:02 - 2010-06-21 21:28 - 00000000 ____D () D:\Documents and Settings\user\Local Settings\temp
2015-03-10 21:01 - 2009-05-13 13:57 - 00000000 ____D () D:\Documents and Settings\user\Plocha
2015-03-10 20:59 - 2009-05-13 13:57 - 00000000 ___HD () D:\Documents and Settings\user\Local Settings\Data aplikací
2015-03-10 20:39 - 2009-05-13 13:57 - 00000000 __RHD () D:\Documents and Settings\user\Data aplikací
2015-03-10 20:36 - 2009-05-18 17:48 - 00007505 _____ () D:\WINDOWS\wincmd.ini
2015-03-10 20:30 - 2011-02-15 20:27 - 00000000 ____D () D:\Documents and Settings\user\Data aplikací\Dropbox
2015-03-10 20:29 - 2009-05-13 15:43 - 00000157 _____ () D:\WINDOWS\wiadebug.log
2015-03-10 20:29 - 2009-05-13 15:43 - 00000051 _____ () D:\WINDOWS\wiaservc.log
2015-03-10 20:28 - 2009-05-13 13:56 - 00000006 ____H () D:\WINDOWS\Tasks\SA.DAT
2015-03-10 20:27 - 2014-10-15 22:08 - 00242096 _____ () D:\WINDOWS\WindowsUpdate.log
2015-03-10 20:27 - 2014-03-11 21:35 - 00131072 _____ () D:\WINDOWS\system32\config\CaptureL.evt
2015-03-10 20:27 - 2009-05-13 13:56 - 00032538 _____ () D:\WINDOWS\SchedLgU.Txt
2015-03-10 19:18 - 2014-12-07 12:21 - 00000000 ____D () D:\Documents and Settings\All Users\Data aplikací\MFAData
2015-03-10 14:57 - 2011-10-04 19:31 - 00000178 ___SH () D:\Documents and Settings\Katka\ntuser.ini
2015-03-10 14:57 - 2011-10-04 19:31 - 00000000 ____D () D:\Documents and Settings\Katka\Local Settings\Temp
2015-03-10 12:41 - 2009-05-13 13:57 - 00000272 ___SH () D:\Documents and Settings\user\ntuser.ini
2015-03-10 12:38 - 2009-05-19 15:52 - 00000000 ____D () D:\Documents and Settings\user\Data aplikací\Skype
2015-03-10 10:42 - 2014-01-19 22:44 - 00000000 ____D () D:\Documents and Settings\user\Local Settings\Data aplikací\Deployment
2015-03-09 01:03 - 2009-05-18 21:53 - 00001065 _____ () D:\WINDOWS\winamp.ini
2015-03-08 15:34 - 2009-06-06 15:19 - 00000000 ____D () D:\Program Files\IDOS
2015-03-08 13:04 - 2010-11-01 15:07 - 00000639 ____C () D:\WINDOWS\M3JPEG.INI
2015-03-08 13:04 - 2009-06-21 10:31 - 00000069 ____C () D:\WINDOWS\NeroDigital.ini
2015-03-07 21:51 - 2009-05-28 21:02 - 00000000 ____D () D:\Program Files\GetRight
2015-03-06 23:03 - 2009-05-13 15:40 - 00000000 ____D () D:\Documents and Settings\All Users\Plocha
2015-03-06 22:55 - 2009-05-13 15:40 - 00000000 ___RD () D:\Documents and Settings\All Users\Nabídka Start\Programy
2015-03-06 22:49 - 2014-12-07 12:26 - 00000000 ____D () D:\Documents and Settings\All Users\Data aplikací\AVG2015
2015-03-06 22:41 - 2014-12-07 12:21 - 00000000 ____D () D:\Documents and Settings\user\Local Settings\Data aplikací\Avg2015
2015-03-04 21:11 - 2009-05-13 15:40 - 00000000 ___RD () D:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2015-03-04 21:05 - 2014-03-06 23:40 - 00000000 ____D () D:\Documents and Settings\All Users\Data aplikací\firebird
2015-03-03 21:44 - 2009-05-29 22:09 - 00000639 _____ () D:\WINDOWS\wcx_ftp.ini
2015-02-27 20:07 - 2009-05-13 15:39 - 00000000 __RHD () D:\Documents and Settings\All Users\Data aplikací
2015-02-27 00:29 - 2014-11-08 00:00 - 00000000 ____D () D:\Program Files\Mariáš - Flek!
2015-02-25 23:58 - 2014-10-15 21:14 - 00113776 _____ () D:\WINDOWS\setupapi.log
2015-02-24 11:17 - 2011-10-04 19:52 - 00002539 _____ () D:\Documents and Settings\Katka\Plocha\Microsoft Word.lnk
2015-02-22 11:01 - 2001-10-25 15:00 - 00002206 _____ () D:\WINDOWS\system32\wpa.dbl
2015-02-16 20:23 - 2013-09-17 23:07 - 00000000 ____D () D:\Documents and Settings\user\Plocha\GIS
2015-02-16 20:23 - 2009-06-16 17:36 - 00000000 ____D () D:\Documents and Settings\user\Plocha\management
2015-02-14 14:29 - 2009-05-13 13:57 - 00000000 ___RD () D:\Documents and Settings\user\Dokumenty
2015-02-13 23:30 - 2009-05-13 13:57 - 00000000 ___RD () D:\Documents and Settings\user\Nabídka Start\Programy\Po spuštění
2015-02-13 23:29 - 2014-12-06 23:48 - 00000000 ____D () D:\Documents and Settings\user\Nabídka Start\Programy\Dropbox
==================== Files in the root of some directories =======
2009-11-11 21:38 - 1998-11-16 16:38 - 0145358 ____C () D:\Program Files\SLEX99.HLP
2009-11-11 21:38 - 1997-03-11 02:16 - 0432914 ____C () D:\Program Files\SLEX99.LEX
2009-11-11 21:38 - 1998-11-18 12:25 - 62787435 ____C () D:\Program Files\SLEX99.M14
2009-11-11 21:39 - 1998-11-15 13:39 - 0525824 ____C (Forma® Ltd.) D:\Program Files\SLEX9932.EXE
2009-11-11 21:39 - 1998-09-13 02:15 - 0089088 ____C (Forma Ltd.) D:\Program Files\SLEXSP32.DLL
2010-02-13 11:09 - 2010-02-13 11:09 - 0087608 ____C () D:\Documents and Settings\user\Data aplikací\inst.exe
2009-05-18 22:33 - 2014-10-08 19:39 - 0000032 ____C () D:\Documents and Settings\user\Data aplikací\ntl.ini
2010-02-13 11:09 - 2010-02-13 11:09 - 0007887 ____C () D:\Documents and Settings\user\Data aplikací\pcouffin.cat
2010-02-13 11:09 - 2010-02-13 11:09 - 0001144 ____C () D:\Documents and Settings\user\Data aplikací\pcouffin.inf
2010-02-13 11:10 - 2010-02-13 11:10 - 0000034 ____C () D:\Documents and Settings\user\Data aplikací\pcouffin.log
2010-02-13 11:09 - 2010-02-13 11:09 - 0047360 ____C (VSO Software) D:\Documents and Settings\user\Data aplikací\pcouffin.sys
2009-07-19 12:49 - 2015-01-11 23:27 - 0022528 ____C () D:\Documents and Settings\user\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2010-12-25 14:37 - 2010-12-25 14:37 - 0000124 ____C () D:\Documents and Settings\user\Local Settings\Data aplikací\fusioncache.dat
2014-06-21 21:56 - 2014-06-21 21:57 - 0000137 ____C () D:\Documents and Settings\user\Local Settings\Data aplikací\mrdownloader.err
2014-06-21 21:56 - 2014-06-21 21:59 - 0001312 ____C () D:\Documents and Settings\user\Local Settings\Data aplikací\mrdownloader.nast
2011-04-23 12:43 - 2014-06-21 21:26 - 0065863 ____C () D:\Documents and Settings\user\Local Settings\Data aplikací\SRDownloader.err
2011-04-23 12:14 - 2014-06-21 21:27 - 0001416 ____C () D:\Documents and Settings\user\Local Settings\Data aplikací\SRDownloader.nast
Some content of TEMP:
====================
D:\Documents and Settings\user\Local Settings\temp\AdbeRdr930_sk_SK.exe
D:\Documents and Settings\user\Local Settings\temp\amt_mystartsearch.exe
D:\Documents and Settings\user\Local Settings\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmptihous.dll
D:\Documents and Settings\user\Local Settings\temp\FirebirdServerSetupZip.exe
D:\Documents and Settings\user\Local Settings\temp\jre-7u71-windows-i586-iftw.exe
D:\Documents and Settings\user\Local Settings\temp\Opera_NI_stable.exe
D:\Documents and Settings\user\Local Settings\temp\proxy_vole5272483590838368501.dll
D:\Documents and Settings\user\Local Settings\temp\SkypeSetup.exe
D:\Documents and Settings\user\Local Settings\temp\ytd-upgrade.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
D:\WINDOWS\explorer.exe => File is digitally signed
D:\WINDOWS\system32\winlogon.exe => File is digitally signed
D:\WINDOWS\system32\svchost.exe => File is digitally signed
D:\WINDOWS\system32\services.exe => File is digitally signed
D:\WINDOWS\system32\User32.dll => File is digitally signed
D:\WINDOWS\system32\userinit.exe => File is digitally signed
D:\WINDOWS\system32\rpcss.dll => File is digitally signed
D:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: D:\WINDOWS\Tasks\Express FilesUpdate.job => D:\Program Files\ExpressFiles\EFUpdater.exehttp:/www.express-files.com <==== ATTENTION
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: AVG Internet Security 2015 (Disabled - Up to date) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Norton 360 (Enabled - Up to date) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton 360 (Disabled) {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "D:\Documents and Settings\user\Plocha" je 1 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 7.0
"D:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0
"D:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager
"D:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring
"D:\Program Files\CCleaner\CCleaner.exe" /MONITOR [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"D:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup
D:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler
"D:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel
D:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager
"D:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon
"D:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray
D:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck
"D:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE4
D:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OrderReminder
D:\WINDOWS\system32\PrintDisp.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PrintDisp
"D:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" /systray /nologon [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion
"D:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate
D:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe /auto [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StatusClient
"D:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
D:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard
D:\Program Files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomcatStartup
D:\Program Files\Unlocker\UnlockerAssistant.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant
Reim ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Adobe Acrobat Speed Launcher.lnk
D:\WINDOWS\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Adobe Gamma Loader.lnk
D:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Adobe Reader Speed Launch.lnk
D:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^AVer HID Receiver.lnk
D:\PROGRA~1\COMMON~1\AVERME~1\AVERQU~1\AVERHI~1.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^AVerQuick.lnk
D:\PROGRA~1\COMMON~1\AVERME~1\AVERQU~1\AVERQU~1.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^QuickTV.lnk
D:\PROGRA~1\AVERTV~1.0\AVerQT.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^user^Nabdka Start^Programy^Po sputn^NameIt.lnk
D:\Program Files\NameIt\NameIt\NameIt.exe [x]
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\\Program Files\\Java\\jre6\\bin\\javaw.exe"="D:\\Program Files\\Java\\jre6\\bin\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\\Program Files\\Bonjour\\mDNSResponder.exe"="D:\\Program Files\\Bonjour\\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\\wincmd\\WINCMD32.EXE"="C:\\wincmd\\WINCMD32.EXE:*:Enabled:Windows Commander 32 bit international version, file manager replacement for Windows"
"D:\\Program Files\\JAlbum7.3\\JAlbumWin.exe"="D:\\Program Files\\JAlbum7.3\\JAlbumWin.exe:*:Enabled:JAlbumWin"
"D:\\Program Files\\Mozilla Firefox\\firefox.exe"="D:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox"
"D:\\totalcmd\\TOTALCMD.EXE"="D:\\totalcmd\\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"D:\\Program Files\\Hewlett-Packard\\Toolbox2.0\\Javasoft\\JRE\\1.3.1\\bin\\javaw.exe"="D:\\Program Files\\Hewlett-Packard\\Toolbox2.0\\Javasoft\\JRE\\1.3.1\\bin\\javaw.exe:*:Enabled:javaw"
"D:\\Program Files\\Internet Explorer\\iexplore.exe"="D:\\Program Files\\Internet Explorer\\iexplore.exe:*:Enabled:Internet Explorer"
"D:\\Documents and Settings\\user\\Data aplikac\\Dropbox\\bin\\Dropbox.exe"="D:\\Documents and Settings\\user\\Data aplikac\\Dropbox\\bin\\Dropbox.exe:*:Enabled:Dropbox"
"D:\\Program Files\\Java\\jre6\\bin\\java.exe"="D:\\Program Files\\Java\\jre6\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\\Program Files\\Common Files\\SafeNet Sentinel\\Sentinel Protection Server\\WinNT\\spnsrvnt.exe"="D:\\Program Files\\Common Files\\SafeNet Sentinel\\Sentinel Protection Server\\WinNT\\spnsrvnt.exe:*:Disabled:Sentinel Protection Server"
"D:\\Program Files\\ArcGIS\\Bin\\ArcCatalog.exe"="D:\\Program Files\\ArcGIS\\Bin\\ArcCatalog.exe:*:Enabled:ArcCatalog"
"D:\\Program Files\\ArcGIS\\Bin\\ArcGlobe.exe"="D:\\Program Files\\ArcGIS\\Bin\\ArcGlobe.exe:*:Enabled:ArcGlobe"
"D:\\Program Files\\ArcGIS\\Bin\\ArcMap.exe"="D:\\Program Files\\ArcGIS\\Bin\\ArcMap.exe:*:Enabled:ArcMap"
"D:\\Program Files\\ArcGIS\\Bin\\ArcReader.exe"="D:\\Program Files\\ArcGIS\\Bin\\ArcReader.exe:*:Enabled:ArcReader"
"D:\\Program Files\\ArcGIS\\Bin\\ArcScene.exe"="D:\\Program Files\\ArcGIS\\Bin\\ArcScene.exe:*:Enabled:ArcScene"
"D:\\Program Files\\ESRI\\License\\arcgis9x\\lmtools.exe"="D:\\Program Files\\ESRI\\License\\arcgis9x\\lmtools.exe:*:Enabled:License Manager Tools"
"D:\\Program Files\\Java\\jre7\\bin\\javaw.exe"="D:\\Program Files\\Java\\jre7\\bin\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\\MoZiGo\\MoZiGo.exe"="D:\\MoZiGo\\MoZiGo.exe:*:Enabled:Pomcka geokeera"
"D:\\Program Files\\AVG\\AVG2015\\avgmfapx.exe"="D:\\Program Files\\AVG\\AVG2015\\avgmfapx.exe:*:Enabled:Intaltor produktu AVG"
"D:\\Program Files\\AVG\\AVG2015\\avgnsx.exe"="D:\\Program Files\\AVG\\AVG2015\\avgnsx.exe:*:Enabled:Webov tt"
"D:\\Program Files\\AVG\\AVG2015\\avgdiagex.exe"="D:\\Program Files\\AVG\\AVG2015\\avgdiagex.exe:*:Enabled:AVG Diagnostika 2015"
"D:\\Program Files\\AVG\\AVG2015\\avgemcx.exe"="D:\\Program Files\\AVG\\AVG2015\\avgemcx.exe:*:Enabled:Veobecn kontrola poty"
"D:\\Program Files\\Skype\\Phone\\Skype.exe"="D:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"20400:TCP"="20400:TCP:*:Enabled:KrosPort20400"
"20401:TCP"="20401:TCP:*:Enabled:KrosPort20401"
"20402:TCP"="20402:TCP:*:Enabled:KrosPort20402"
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
Přispějete na provoz fóra?