Ahoj, někdy se mi stane, že se z ničeho nic vypne počítač, přehřívání je blbost, teploty mám přeměřeny, větrání je silné.
LOG FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:08-08-2015 01
Ran by TheSeex (administrator) on PETR (09-08-2015 20:45:21)
Running from C:\Documents and Settings\TheSeex\Plocha
Loaded Profiles: TheSeex (Available Profiles: TheSeex)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ICSI Technology Ltd.) C:\WINDOWS\Dit.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Nota Inc.) C:\Program Files\Gyazo\GyStation.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(PC Tools) C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
() C:\WINDOWS\system32\PnkBstrA.exe
(Smart Link) C:\WINDOWS\system32\slserv.exe
(Microsoft Corporation) C:\WINDOWS\system32\snmp.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Documents and Settings\TheSeex\Plocha\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [40048 2007-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [CICache] => C:\WINDOWS\CICache.exe [24576 2002-09-05] ()
HKLM\...\Run: [Dit] => C:\WINDOWS\Dit.exe [86016 2004-04-27] (ICSI Technology Ltd.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2013-10-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5088456 2015-01-28] (ESET)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2014-01-07] (Advanced Micro Devices, Inc.)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2014-01-07] (ATI Technologies Inc.)
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Run: [Google Update] => C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [107912 2014-10-21] (Google Inc.)
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4810520 2014-09-25] (Piriform Ltd)
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Run: [Gyazo] => C:\Program Files\Gyazo\GyStation.exe [3097912 2015-07-08] (Nota Inc.)
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk [2012-10-16]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "http://www.google.com" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated)
BHO: EWPBrowseObject Class -> {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} -> C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-06-09] ()
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-30] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-30] (Oracle Corporation)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
Toolbar: HKU\S-1-5-21-1957994488-1229272821-725345543-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2012-06-28] (Společnost Microsoft)
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 8054949234
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Tcpip\Parameters: [DhcpNameServer] 94.74.192.252 94.74.192.244
Tcpip\..\Interfaces\{4173C4F6-1976-4454-833C-2A3BD630B277}: [DhcpNameServer] 94.74.192.252 94.74.192.244
FireFox:
========
FF ProfilePath: C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default
FF SelectedSearchEngine: Seznam
FF Homepage: hxxp://www.seznam.cz/?clid=1
FF Keyword.URL: hxxp://search.seznam.cz/?sourceid=undefined&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-15] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1207148.dll [2013-12-05] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-01-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-01-30] (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @talk.google.com/GoogleTalkPlugin -> C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @talk.google.com/O1DPlugin -> C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-01-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll [2012-06-28] (Nullsoft, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Documents and Settings\TheSeex\Data aplikací\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Documents and Settings\TheSeex\Data aplikací\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF SearchPlugin: C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\searchplugins\firmycz.xml [2012-09-28]
FF SearchPlugin: C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\searchplugins\mapycz.xml [2012-09-28]
FF SearchPlugin: C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\searchplugins\zbocz.xml [2012-09-28]
FF Extension: Blue Fox - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\{241aae70-0022-11de-87af-0800200c9a66} [2014-10-07]
FF Extension: FT DeepDark - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-05-16]
FF Extension: Lounge Assistant - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\jid1-XA5WEMQzmYdM8A@jetpack.xpi [2015-05-16]
FF Extension: Ask Shopping Toolbar - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\toolbar_ATU-SAT@apn.ask.com.xpi [2013-06-07]
FF Extension: Adblock Plus - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-09-19]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-09-19]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-10-16]
FF HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: McAfee Security Scan Plus - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
Chrome:
=======
CHR Profile: C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (TastyPlug) - C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\faccgibalfdoihmenknhpfhldkmgaang [2015-05-16]
CHR Extension: (AdBlock) - C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-16]
CHR Extension: (Chrome Web Store Payments) - C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-10]
CHR Extension: (Enhanced Steam) - C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2015-07-14]
CHR HKLM\...\Chrome\Extension: [aaaanakbdgnfidhgjoceaepbljdpfcpl] - C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork\Toolbar\ATU-SAT\CRX\ToolbarCR.crx <not found>
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [643072 2014-01-07] (ATI Technologies Inc.) [File not signed]
S4 ClipSrv; C:\WINDOWS\system32\clipsrv.exe [58368 2008-04-14] (Microsoft Corporation) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [1349576 2015-01-28] (ESET)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-01-30] (Oracle Corporation)
S3 LPDSVC; C:\WINDOWS\system32\tcpsvcs.exe [19456 2006-03-02] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S4 mnmsrvc; C:\WINDOWS\system32\mnmsrvc.exe [53248 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MSIServer; C:\WINDOWS\System32\msiexec.exe [116736 2008-05-19] (Microsoft Corporation) [File not signed]
S2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44544 2008-12-03] (Hewlett-Packard) [File not signed]
S3 npggsvc; C:\WINDOWS\system32\GameMon.des [3305824 2015-05-05] (INCA Internet Co., Ltd.) [File not signed]
R2 PCToolsSSDMonitorSvc; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2011-12-12] (PC Tools)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2008-12-03] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [75136 2013-01-23] ()
R2 SLService; C:\WINDOWS\system32\slserv.exe [73796 2008-04-14] (Smart Link)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5491984 2015-05-20] (TeamViewer GmbH)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43008 2006-06-18] (Advanced Micro Devices)
R3 ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [7875072 2014-01-07] (ATI Technologies Inc.) [File not signed]
R3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [103040 2012-05-14] (Advanced Micro Devices)
S3 CardReaderFilter; C:\WINDOWS\system32\Drivers\USBCRFT.SYS [13568 2015-08-09] (ICSI Technology Ltd.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [193464 2015-03-10] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [135808 2015-03-10] (ESET)
R1 epfwtdir; C:\WINDOWS\System32\DRIVERS\epfwtdir.sys [120304 2015-03-10] (ESET)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2015-07-14] (LogMeIn, Inc.)
S3 HdAudAddService; C:\WINDOWS\System32\drivers\AtiHdAud.sys [84992 2006-12-28] (ATI Research Inc.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2008-10-28] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2008-10-28] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2008-10-28] (HP)
S3 irsir; C:\WINDOWS\System32\DRIVERS\irsir.sys [18688 2001-08-17] (Microsoft Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R0 MpFilter; C:\WINDOWS\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
S3 Mtlmnt5; C:\WINDOWS\System32\DRIVERS\Mtlmnt5.sys [126686 2004-08-03] (Smart Link)
S3 Mtlstrm; C:\WINDOWS\System32\DRIVERS\Mtlstrm.sys [1309184 2004-08-03] (Smart Link)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 NtMtlFax; C:\WINDOWS\System32\DRIVERS\NtMtlFax.sys [180360 2004-08-03] (Smart Link)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [54016 2007-11-17] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [22016 2007-11-17] (NVIDIA Corporation)
S3 PCANDIS5; C:\Program Files\Wireless LAN\Access Point Utility\pcandis5.sys [16292 2001-11-23] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R0 RecAgent; C:\WINDOWS\System32\DRIVERS\RecAgent.sys [13776 2004-08-03] (Smart Link)
S3 Slntamr; C:\WINDOWS\System32\DRIVERS\slntamr.sys [404990 2004-08-03] (Smart Link)
S3 SlNtHal; C:\WINDOWS\System32\DRIVERS\Slnthal.sys [95424 2004-08-03] (Smart Link)
S3 SlWdmSup; C:\WINDOWS\System32\DRIVERS\SlWdmSup.sys [13240 2004-08-03] (Smart Link)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
U3 Winsock; no ImagePath
S4 Abiosdsk; no ImagePath
S4 abp480n5; no ImagePath
S4 adpu160m; no ImagePath
S4 Aha154x; no ImagePath
S4 aic78u2; no ImagePath
S4 aic78xx; no ImagePath
S4 AliIde; no ImagePath
S4 amsint; no ImagePath
S4 asc; no ImagePath
S4 asc3350p; no ImagePath
S4 asc3550; no ImagePath
S2 ASInsHelp; \??\C:\WINDOWS\system32\drivers\AsInsHelp32.sys [X]
S4 Atdisk; no ImagePath
S4 cd20xrnt; no ImagePath
S1 Changer; no ImagePath
S4 CmdIde; no ImagePath
S4 Cpqarray; no ImagePath
U4 dac2w2k; no ImagePath
S4 dac960nt; no ImagePath
S4 dpti2o; no ImagePath
S3 EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys [X]
S3 EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys [X]
S4 hpn; no ImagePath
S1 i2omgmt; no ImagePath
S4 i2omp; no ImagePath
S4 ini910u; no ImagePath
S4 IntelIde; no ImagePath
S1 lbrtfdc; no ImagePath
S4 mraid35x; no ImagePath
U5 P3; C:\Windows\System32\Drivers\P3.sys [46592 2008-04-14] (Microsoft Corporation)
S1 PCIDump; no ImagePath
S3 PDCOMP; no ImagePath
S3 PDFRAME; no ImagePath
S3 PDRELI; no ImagePath
S3 PDRFRAME; no ImagePath
S4 perc2; no ImagePath
S4 perc2hib; no ImagePath
S4 ql1080; no ImagePath
S4 Ql10wnt; no ImagePath
S4 ql12160; no ImagePath
S4 ql1240; no ImagePath
S4 ql1280; no ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S4 Simbad; no ImagePath
S4 Sparrow; no ImagePath
S4 symc810; no ImagePath
S4 symc8xx; no ImagePath
S4 sym_hi; no ImagePath
S4 sym_u3; no ImagePath
S4 TosIde; no ImagePath
S4 ultra; no ImagePath
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S4 ViaIde; no ImagePath
S3 WDICA; no ImagePath
U1 WS2IFSL; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-09 20:45 - 2015-08-09 20:45 - 00022128 _____ C:\Documents and Settings\TheSeex\Plocha\FRST.txt
2015-08-09 20:45 - 2015-08-09 20:45 - 00000000 ____D C:\FRST
2015-08-09 20:44 - 2015-08-09 20:44 - 01673216 _____ (Farbar) C:\Documents and Settings\TheSeex\Plocha\FRST.exe
2015-08-09 20:44 - 2015-08-09 20:44 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\TheSeex\Plocha\FRSTLauncher.exe
2015-08-09 20:41 - 2015-08-09 20:42 - 00000000 ____D C:\Program Files\SpeedFan
2015-08-09 20:41 - 2015-08-09 20:41 - 02174848 _____ C:\Documents and Settings\TheSeex\Dokumenty\instsf450.exe
2015-08-09 20:41 - 2015-08-09 20:41 - 00000689 _____ C:\Documents and Settings\TheSeex\Plocha\SpeedFan.lnk
2015-08-09 20:41 - 2015-08-09 20:41 - 00000045 _____ C:\WINDOWS\system32\initdebug.nfo
2015-08-09 20:41 - 2015-08-09 20:41 - 00000000 ____D C:\Documents and Settings\TheSeex\Nabídka Start\Programy\SpeedFan
2015-08-09 18:35 - 2015-08-09 18:35 - 01284374 _____ C:\Documents and Settings\TheSeex\Dokumenty\2-obra...rar
2015-07-27 15:10 - 2015-07-27 15:10 - 01223795 _____ C:\Documents and Settings\TheSeex\Dokumenty\kzlt_weirdjumps.zip
2015-07-26 22:17 - 2015-07-26 22:17 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\EMU
2015-07-26 22:15 - 2015-07-27 13:30 - 00019024 _____ C:\WINDOWS\setupapi.log
2015-07-26 22:14 - 2015-07-26 22:14 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Rocket League
2015-07-26 22:11 - 2015-07-26 22:14 - 00000000 ____D C:\Program Files\rocketleague
2015-07-26 21:49 - 2015-07-26 22:07 - 1849327616 _____ C:\Documents and Settings\TheSeex\Dokumenty\Rocket_League.iso
2015-07-24 20:08 - 2015-07-24 20:08 - 07503879 _____ C:\Documents and Settings\TheSeex\Dokumenty\cs-3148-qsk_fractured.zip
2015-07-24 19:58 - 2015-07-24 19:58 - 08712192 _____ C:\Documents and Settings\TheSeex\Dokumenty\hamachi.msi
2015-07-24 17:34 - 2015-07-24 17:34 - 00001507 _____ C:\Documents and Settings\All Users\Plocha\League of Legends.lnk
2015-07-24 17:34 - 2015-07-24 17:34 - 00000000 ____D C:\Riot Games
2015-07-24 17:34 - 2015-07-24 17:34 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\League of Legends
2015-07-24 17:33 - 2015-07-24 17:33 - 30993712 _____ (Riot Games) C:\Documents and Settings\TheSeex\Dokumenty\LeagueofLegends_EUNE_Installer_9_15_2014.exe
2015-07-24 17:33 - 2015-07-24 17:33 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\Riot Games
2015-07-24 13:05 - 2015-07-24 13:06 - 01298042 _____ C:\Documents and Settings\TheSeex\Dokumenty\cs-2706-c21_gladpask.zip
2015-07-22 08:51 - 2015-07-22 08:51 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\CEF
2015-07-20 18:14 - 2015-07-20 18:14 - 04727381 _____ C:\Documents and Settings\TheSeex\Dokumenty\92090 Klaypex - Jump.osz
2015-07-20 16:11 - 2015-07-20 16:11 - 02959377 _____ C:\Documents and Settings\TheSeex\Dokumenty\230989 Knife Party - Give It Up.osz
2015-07-20 16:07 - 2015-07-20 16:07 - 20071449 _____ C:\Documents and Settings\TheSeex\Dokumenty\157896 Meg & Dia - Monster (DotEXE Remix).osz
2015-07-20 16:03 - 2015-07-20 16:03 - 03882768 _____ C:\Documents and Settings\TheSeex\Dokumenty\42311 Skrillex - Bangarang (feat. Sirah) (Cut Ver.).osz
2015-07-20 15:35 - 2015-07-20 15:35 - 101234243 _____ C:\Documents and Settings\TheSeex\Dokumenty\Beginner+Training+Step+One.rar
2015-07-20 15:35 - 2015-07-20 15:35 - 00000875 _____ C:\Documents and Settings\TheSeex\Plocha\osu!.lnk
2015-07-20 15:34 - 2015-07-25 18:41 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\osu!
2015-07-20 15:33 - 2015-07-20 15:43 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\Localisation
2015-07-20 15:33 - 2015-07-20 15:33 - 03262024 _____ (ppy) C:\Documents and Settings\TheSeex\Dokumenty\osu!install.exe
2015-07-20 10:01 - 2015-07-20 11:19 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\Wowko
2015-07-19 11:27 - 2015-07-19 11:27 - 00739994 _____ C:\Documents and Settings\TheSeex\Dokumenty\resource_62.rar
2015-07-19 11:23 - 2015-07-19 11:23 - 03588476 _____ C:\Documents and Settings\TheSeex\Dokumenty\kz-random GUI.rar
2015-07-19 11:14 - 2015-07-19 11:20 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\Camtasia Studio
2015-07-19 11:07 - 2015-07-19 11:07 - 10931892 _____ C:\Documents and Settings\TheSeex\Dokumenty\plexed_30.zip
2015-07-19 11:02 - 2015-07-19 11:02 - 02490079 _____ C:\Documents and Settings\TheSeex\Dokumenty\blue_hd.zip
2015-07-19 10:41 - 2015-07-19 10:41 - 00013435 _____ C:\Documents and Settings\TheSeex\Dokumenty\serverbrowser_hist.vdf
2015-07-18 17:25 - 2015-07-30 08:22 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\vlc
2015-07-18 17:25 - 2015-07-18 17:25 - 02319212 _____ C:\Documents and Settings\TheSeex\Dokumenty\dsdssd.mp4
2015-07-18 15:49 - 2015-07-18 15:49 - 07369810 _____ C:\Documents and Settings\TheSeex\Dokumenty\Londrina Solid.zip
2015-07-18 11:39 - 2015-07-18 11:59 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Genymobile
2015-07-18 11:39 - 2015-07-18 11:54 - 00000000 ____D C:\Documents and Settings\TheSeex\.VirtualBox
2015-07-18 11:37 - 2013-04-12 12:33 - 00188176 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
2015-07-18 11:36 - 2013-04-12 12:33 - 00094480 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2015-07-17 21:44 - 2015-08-09 12:10 - 00003858 _____ C:\Documents and Settings\TheSeex\Plocha\DesktopOK.ini
2015-07-17 21:44 - 2015-07-07 08:50 - 00186368 _____ (Nenad Hrg SoftwareOK) C:\Documents and Settings\TheSeex\Plocha\DesktopOK.exe
2015-07-16 09:44 - 2015-08-09 19:49 - 00001034 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1957994488-1229272821-725345543-1004UA.job
2015-07-16 09:44 - 2015-08-09 19:49 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-16 09:44 - 2015-08-09 12:07 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-16 09:44 - 2015-08-07 09:49 - 00000982 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1957994488-1229272821-725345543-1004Core.job
2015-07-15 18:21 - 2015-07-15 18:21 - 02734121 _____ C:\Documents and Settings\TheSeex\Dokumenty\GrafikaPreDementov.rar
2015-07-15 17:40 - 2015-07-15 17:40 - 00733443 _____ (Marc Richarme) C:\Documents and Settings\TheSeex\Plocha\_83-.exe
2015-07-15 17:23 - 2015-07-15 17:23 - 00963352 _____ C:\Documents and Settings\TheSeex\Dokumenty\NixoneGrafika.rar
2015-07-15 16:57 - 2015-07-15 16:57 - 00000000 ____D C:\output
2015-07-15 16:56 - 2015-07-15 18:22 - 00006144 ____H C:\Documents and Settings\TheSeex\Dokumenty\photothumb.db
2015-07-14 20:37 - 2015-07-14 20:37 - 00911007 _____ C:\Documents and Settings\TheSeex\Dokumenty\flash_he_smoke_tron.rar
2015-07-12 22:08 - 2015-07-12 22:08 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\Gyazo
2015-07-12 22:06 - 2015-07-12 22:06 - 09987128 _____ (Nota Inc. ) C:\Documents and Settings\TheSeex\Dokumenty\Gyazo-3.1.1.exe
2015-07-12 22:06 - 2015-07-12 22:06 - 00000000 ____D C:\Program Files\Gyazo
2015-07-12 22:06 - 2015-07-12 22:06 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Gyazo
2015-07-12 14:14 - 2015-08-07 09:57 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\TS3Client
2015-07-12 14:13 - 2015-07-12 14:13 - 00000844 _____ C:\Documents and Settings\All Users\Plocha\TeamSpeak 3 Client.lnk
2015-07-12 14:13 - 2015-07-12 14:13 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamSpeak 3 Client
2015-07-12 14:11 - 2015-07-12 14:12 - 28115400 _____ (TeamSpeak Systems GmbH) C:\Documents and Settings\TheSeex\Dokumenty\TeamSpeak3-Client-win32-3.0.16.exe
2015-07-11 13:35 - 2015-07-11 18:18 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\Switchbotv3_0_0_5
2015-07-11 13:35 - 2015-07-11 13:35 - 08660200 _____ C:\Documents and Settings\TheSeex\Dokumenty\girlshare.ro_Switchbotv3_0_0_5.rar
2015-07-11 13:31 - 2015-07-11 13:31 - 01488266 _____ C:\Documents and Settings\TheSeex\Dokumenty\Tools by Unpublished.rar
2015-07-10 19:13 - 2015-07-11 18:19 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\The-Lost-Island-AQUA
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-09 20:45 - 2012-09-04 14:47 - 00000000 ____D C:\Documents and Settings\TheSeex\Plocha
2015-08-09 20:45 - 2012-09-04 14:47 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Temp
2015-08-09 20:44 - 2012-09-04 14:47 - 00000000 ___HD C:\Documents and Settings\TheSeex\Local Settings\Data aplikací
2015-08-09 20:41 - 2012-09-04 14:47 - 00000000 ___RD C:\Documents and Settings\TheSeex\Nabídka Start\Programy
2015-08-09 20:41 - 2012-09-04 14:47 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty
2015-08-09 20:08 - 2014-01-15 17:10 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-09 18:04 - 2012-12-28 12:04 - 00000000 ____D C:\Program Files\Steam
2015-08-09 18:04 - 2012-09-19 13:55 - 00458752 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2015-08-09 14:48 - 2014-01-15 21:12 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Battle.net
2015-08-09 12:09 - 2014-01-29 20:18 - 01740328 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-09 12:07 - 2014-10-08 15:10 - 00000226 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-08-09 12:07 - 2014-01-29 14:08 - 00000157 _____ C:\WINDOWS\wiadebug.log
2015-08-09 12:07 - 2014-01-29 14:07 - 00000048 _____ C:\WINDOWS\wiaservc.log
2015-08-09 12:07 - 2012-09-05 17:20 - 00013568 _____ (ICSI Technology Ltd.) C:\WINDOWS\system32\Drivers\USBCRFT.SYS
2015-08-09 12:07 - 2012-09-04 14:46 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-09 12:07 - 2006-03-02 14:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2015-08-07 12:29 - 2012-09-04 14:46 - 00032420 _____ C:\WINDOWS\SchedLgU.Txt
2015-08-07 12:28 - 2012-09-04 14:47 - 00000178 ___SH C:\Documents and Settings\TheSeex\ntuser.ini
2015-08-07 10:49 - 2012-09-19 16:47 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\Skype
2015-08-07 09:40 - 2015-07-09 13:48 - 00000167 _____ C:\Documents and Settings\TheSeex\Dokumenty\ClownfishForTeamspeak.ini
2015-08-05 12:56 - 2012-10-25 12:50 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-08-05 09:47 - 2014-01-15 21:12 - 00000000 ____D C:\Program Files\Battle.net
2015-08-02 10:11 - 2014-01-11 09:18 - 00000396 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2015-07-29 19:27 - 2014-01-16 19:29 - 00000000 ____D C:\Program Files\Hearthstone
2015-07-28 19:15 - 2012-09-04 16:33 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-07-27 15:12 - 2012-10-06 19:12 - 00000000 ____D C:\Program Files\Common Files\Steam
2015-07-27 13:30 - 2012-09-25 18:25 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\LogMeIn Hamachi
2015-07-27 13:30 - 2012-09-04 16:33 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-07-26 22:15 - 2012-09-04 14:42 - 00000000 ____D C:\WINDOWS\system32\DirectX
2015-07-25 08:51 - 2014-10-18 13:49 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\PhotoScape
2015-07-25 08:51 - 2012-09-22 15:19 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\uTorrent
2015-07-25 08:51 - 2012-09-04 14:47 - 00000000 ____D C:\Documents and Settings\TheSeex
2015-07-25 08:50 - 2014-01-12 16:31 - 00000000 ____D C:\AdwCleaner
2015-07-24 18:56 - 2012-09-19 17:54 - 00000000 ____D C:\Counter-Strike 1.6
2015-07-24 17:33 - 2012-09-04 14:47 - 00000000 __RHD C:\Documents and Settings\TheSeex\Data aplikací
2015-07-22 10:45 - 2012-12-31 22:43 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\League of Legends
2015-07-22 10:45 - 2012-09-05 17:08 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-07-19 22:09 - 2012-10-18 20:00 - 00789350 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-1957994488-1229272821-725345543-1004-0.dat
2015-07-19 22:09 - 2012-10-18 19:59 - 00141446 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2015-07-18 11:58 - 2012-11-17 12:36 - 00000000 ____D C:\Program Files\Oracle
2015-07-18 11:57 - 2015-06-28 14:06 - 00000000 ____D C:\Program Files\GameforgeLive
2015-07-15 07:44 - 2012-12-26 14:25 - 00778416 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-07-15 07:44 - 2012-12-26 14:25 - 00142512 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-07-15 07:43 - 2012-09-04 15:37 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Adobe
2015-07-14 15:09 - 2015-06-06 09:21 - 41287224 _____ C:\libcef.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 10457856 _____ C:\icudtl.dat
2015-07-14 15:09 - 2015-06-06 09:21 - 07334968 _____ (Spotify Ltd) C:\Spotify.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 04253463 _____ C:\devtools_resources.pak
2015-07-14 15:09 - 2015-06-06 09:21 - 03457592 _____ (Microsoft Corporation) C:\d3dcompiler_47.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 02106424 _____ (Microsoft Corporation) C:\d3dcompiler_43.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 02018406 _____ C:\cef.pak
2015-07-14 15:09 - 2015-06-06 09:21 - 02008632 _____ (Spotify Ltd) C:\SpotifyWebHelper.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 01488440 _____ C:\libGLESv2.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 00968248 _____ (The Chromium Authors) C:\ffmpegsumo.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 00838200 _____ (Spotify Ltd) C:\SpotifyCrashService.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 00598403 _____ C:\cef_200_percent.pak
2015-07-14 15:09 - 2015-06-06 09:21 - 00444515 _____ C:\cef_100_percent.pak
2015-07-14 15:09 - 2015-06-06 09:21 - 00098360 _____ (Spotify Ltd) C:\SpotifyLauncher.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 00079928 _____ C:\libEGL.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 00073272 _____ C:\wow_helper.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 00000020 _____ C:\inst_ver.dat
2015-07-14 15:09 - 2015-06-06 09:21 - 00000000 ____D C:\locales
2015-07-14 11:44 - 2012-11-13 15:48 - 00026176 ____H (LogMeIn, Inc.) C:\WINDOWS\system32\hamachi.sys
2015-07-14 11:44 - 2009-03-18 17:35 - 00026176 ____H (LogMeIn, Inc.) C:\WINDOWS\system32\Drivers\hamachi.sys
2015-07-11 19:38 - 2015-06-28 15:57 - 00000000 ____D C:\Program Files\CS16v36
2015-07-11 18:16 - 2015-05-24 17:06 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\kokot
==================== Files in the root of some directories =======
2012-11-17 12:38 - 2012-11-23 16:27 - 0583306 _____ () C:\Documents and Settings\TheSeex\Data aplikací\technic-launcher.jar
2012-11-17 12:38 - 2012-11-17 12:39 - 0579274 _____ () C:\Documents and Settings\TheSeex\Data aplikací\technic-launcher.jar.bak
2012-09-04 17:12 - 2015-07-08 14:58 - 0067072 _____ () C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-09-04 17:07 - 2012-09-04 17:07 - 0040404 _____ () C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\FASTWiz.log
Some files in TEMP:
====================
C:\Documents and Settings\TheSeex\Local Settings\Temp\sfamcc00001.dll
C:\Documents and Settings\TheSeex\Local Settings\Temp\sfextra.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe
[2006-03-02 14:00] - [2008-04-14 08:52] - 1541120 ____A (Microsoft Corporation) D63C59BB0CA2F83B62D003FD52863090
C:\WINDOWS\system32\winlogon.exe
[2006-03-02 14:00] - [2008-04-14 08:52] - 0547328 ____A (Microsoft Corporation) 471341D353962A35DA3C6324D59D09C4
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll
[2006-03-02 14:00] - [2008-04-14 08:52] - 0578560 ____A (Microsoft Corporation) CCB32D10C69A89822E9134C0C4894BE1
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1957994488-1229272821-725345543-1004Core.job => C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1957994488-1229272821-725345543-1004UA.job => C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1
==================== Security Center ==================
AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Documents and Settings\TheSeex\Plocha" je 2 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\4StoryPrePatch
C:\Program Files\GameforgeLive\Games\CZE_ces\4Story\PrePatch.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3
"C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish
"C:\Program Files\Clownfish\Clownfish.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update
"C:\Documents and Settings\TheSeex\Local Settings\Data aplikac\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui
"C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype
"C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper
"C:\SpotifyWebHelper.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam
"C:\Program Files\Steam\steam.exe" -silent [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent
"C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED [x]
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe:*:Enabled:hposid01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqcopy2.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqcopy2.exe:*:Enabled:hpqcopy2.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfcCopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfcCopy.exe:*:Enabled:hpfccopy.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\\Program Files\\Common Files\\HP\\Digital Imaging\\Bin\\hpqPhotoCrm.exe"="C:\\Program Files\\Common Files\\HP\\Digital Imaging\\Bin\\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgm.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgm.exe:*:Enabled:hpqusgm.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgh.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgh.exe:*:Enabled:hpqusgh.exe"
"C:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"="C:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe:*:Enabled:hpwucli.exe"
"C:\\Program Files\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe"="C:\\Program Files\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\WINDOWS\\system32\\usmt\\migwiz.exe"="C:\\WINDOWS\\system32\\usmt\\migwiz.exe:*:Enabled:Prvodce penesenm soubor a nastaven"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\WINDOWS\\system32\\dpvsetup.exe"="C:\\WINDOWS\\system32\\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\\WINDOWS\\system32\\rundll32.exe"="C:\\WINDOWS\\system32\\rundll32.exe:*:Enabled:Run a DLL as an App"
"C:\\Counter-Strike 1.6\\csko.exe"="C:\\Counter-Strike 1.6\\csko.exe:*:Enabled:Half-Life Launcher"
"C:\\WINDOWS\\system32\\javaw.exe"="C:\\WINDOWS\\system32\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\uTorrent\\uTorrent.exe"="C:\\Program Files\\uTorrent\\uTorrent.exe:*:Enabled:uTorrent"
"C:\\Program Files\\United\\metin2client.bin"="C:\\Program Files\\United\\metin2client.bin:*:Enabled:metin2client"
"C:\\Program Files\\Java\\jre7\\bin\\javaw.exe"="C:\\Program Files\\Java\\jre7\\bin\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe:*:Enabled:hposid01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqcopy2.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqcopy2.exe:*:Enabled:hpqcopy2.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfcCopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfcCopy.exe:*:Enabled:hpfccopy.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\\Program Files\\Common Files\\HP\\Digital Imaging\\Bin\\hpqPhotoCrm.exe"="C:\\Program Files\\Common Files\\HP\\Digital Imaging\\Bin\\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgm.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgm.exe:*:Enabled:hpqusgm.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgh.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgh.exe:*:Enabled:hpqusgh.exe"
"C:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"="C:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe:*:Enabled:hpwucli.exe"
"C:\\Program Files\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe"="C:\\Program Files\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe"
"C:\\Program Files\\LunaRis-Online\\Lunaris.exe"="C:\\Program Files\\LunaRis-Online\\Lunaris.exe:*:Enabled:Lunaris"
"C:\\Program Files\\Opera\\opera.exe"="C:\\Program Files\\Opera\\opera.exe:*:Enabled:Opera Internet Browser"
"C:\\Documents and Settings\\TheSeex\\Local Settings\\Data aplikac\\Google\\Google Talk Plugin\\googletalkplugin.exe"="C:\\Documents and Settings\\TheSeex\\Local Settings\\Data aplikac\\Google\\Google Talk Plugin\\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"C:\\Documents and Settings\\All Users\\Data aplikac\\Electronic Arts\\Need For Speed World\\Data\\nfsw.exe"="C:\\Documents and Settings\\All Users\\Data aplikac\\Electronic Arts\\Need For Speed World\\Data\\nfsw.exe:*:Enabled:Need for Speed World"
"C:\\WINDOWS\\system32\\java.exe"="C:\\WINDOWS\\system32\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Documents and Settings\\TheSeex\\Plocha\\Hry\\Csko\\hl.exe"="C:\\Documents and Settings\\TheSeex\\Plocha\\Hry\\Csko\\hl.exe:*:Enabled:Half-Life Launcher"
"C:\\HLDS\\hlds.exe"="C:\\HLDS\\hlds.exe:*:Enabled:HLDS Launcher"
"C:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe"="C:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"C:\\WINDOWS\\system32\\PnkBstrA.exe"="C:\\WINDOWS\\system32\\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\\WINDOWS\\system32\\PnkBstrB.exe"="C:\\WINDOWS\\system32\\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\\Program Files\\Ubisoft\\Assassin's Creed Brotherhood\\ACBSP.exe"="C:\\Program Files\\Ubisoft\\Assassin's Creed Brotherhood\\ACBSP.exe:*:Enabled:Assassin's Creed Brotherhood"
"C:\\Program Files\\Ubisoft\\Assassin's Creed Brotherhood\\ACBMP.exe"="C:\\Program Files\\Ubisoft\\Assassin's Creed Brotherhood\\ACBMP.exe:*:Enabled:Assassin's Creed Brotherhood Multiplayer"
"C:\\Program Files\\Ubisoft\\Assassin's Creed Brotherhood\\AssassinsCreedBrotherhood.exe"="C:\\Program Files\\Ubisoft\\Assassin's Creed Brotherhood\\AssassinsCreedBrotherhood.exe:*:Enabled:Assassin's Creed Brotherhood Update"
"C:\\Program Files\\Ubisoft\\Assassin's Creed Brotherhood\\UPlayBrowser.exe"="C:\\Program Files\\Ubisoft\\Assassin's Creed Brotherhood\\UPlayBrowser.exe:*:Enabled:Assassin's Creed Brotherhood Uplay"
"C:\\Program Files\\Steam\\Steam.exe"="C:\\Program Files\\Steam\\Steam.exe:*:Enabled:Steam"
"C:\\Documents and Settings\\TheSeex\\Plocha\\Hry\\Metiny\\Aqua PVP\\Aqua.exe"="C:\\Documents and Settings\\TheSeex\\Plocha\\Hry\\Metiny\\Aqua PVP\\Aqua.exe:*:Enabled:Aqua"
"C:\\Documents and Settings\\TheSeex\\Dokumenty\\League of Legends\\lol.launcher.exe"="C:\\Documents and Settings\\TheSeex\\Dokumenty\\League of Legends\\lol.launcher.exe:*:Enabled:Play League of Legends"
"C:\\Program Files\\Steam\\steamapps\\common\\Half-Life\\hl.exe"="C:\\Program Files\\Steam\\steamapps\\common\\Half-Life\\hl.exe:*:Enabled:Counter-Strike"
"C:\\Documents and Settings\\TheSeex\\Plocha\\Last-World Klient\\lw.bin"="C:\\Documents and Settings\\TheSeex\\Plocha\\Last-World Klient\\lw.bin:*:Disabled:lw"
"C:\\Documents and Settings\\TheSeex\\Plocha\\Metin2 Anubis official\\Anubis.bin"="C:\\Documents and Settings\\TheSeex\\Plocha\\Metin2 Anubis official\\Anubis.bin:*:Disabled:Anubis"
"C:\\Documents and Settings\\All Users\\Data aplikac\\Battle.net\\Agent\\Agent.2380\\Agent.exe"="C:\\Documents and Settings\\All Users\\Data aplikac\\Battle.net\\Agent\\Agent.2380\\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\\Program Files\\Battle.net\\Battle.net.exe"="C:\\Program Files\\Battle.net\\Battle.net.exe:*:Enabled:Battle.net"
"C:\\Program Files\\Hearthstone\\Hearthstone.exe"="C:\\Program Files\\Hearthstone\\Hearthstone.exe:*:Enabled:Hearthstone"
"C:\\Documents and Settings\\All Users\\Data aplikac\\Battle.net\\Agent\\Agent.beta.2514\\Agent.exe"="C:\\Documents and Settings\\All Users\\Data aplikac\\Battle.net\\Agent\\Agent.beta.2514\\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\\Documents and Settings\\TheSeex\\Local Settings\\Data aplikac\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"="C:\\Documents and Settings\\TheSeex\\Local Settings\\Data aplikac\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"
"C:\\Program Files\\Steam\\bin\\steamwebhelper.exe"="C:\\Program Files\\Steam\\bin\\steamwebhelper.exe:*:Enabled:Steam Web Helper"
"C:\\Documents and Settings\\All Users\\Data aplikac\\Battle.net\\Agent\\Agent.beta.2581\\Agent.exe"="C:\\Documents and Settings\\All Users\\Data aplikac\\Battle.net\\Agent\\Agent.beta.2581\\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\\Program Files\\Steam\\steamapps\\common\\PAYDAY The Heist\\payday_win32_release.exe"="C:\\Program Files\\Steam\\steamapps\\common\\PAYDAY The Heist\\payday_win32_release.exe:*:Enabled:PAYDAY: The Heist"
"C:\\Documents and Settings\\TheSeex\\Data aplikac\\Spotify\\spotify.exe"="C:\\Documents and Settings\\TheSeex\\Data aplikac\\Spotify\\spotify.exe:*:Enabled:Spotify"
"C:\\Documents and Settings\\TheSeex\\Plocha\\Assassins Creed Brotherhood PC v_1.03 singleplayer ^^nosTEAM^^\\Assassin's Creed Brotherhood\\ACBSP.exe"="C:\\Documents and Settings\\TheSeex\\Plocha\\Assassins Creed Brotherhood PC v_1.03 singleplayer ^^nosTEAM^^\\Assassin's Creed Brotherhood\\ACBSP.exe:*:Enabled:ACBSP"
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox (C:\\Program Files\\Mozilla Firefox)"
"C:\\Documents and Settings\\All Users\\Data aplikac\\Battle.net\\Agent\\Agent.3478\\Agent.exe"="C:\\Documents and Settings\\All Users\\Data aplikac\\Battle.net\\Agent\\Agent.3478\\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\\Documents and Settings\\TheSeex\\Dokumenty\\Hazzard verze 1.3\\Hazzard.exe"="C:\\Documents and Settings\\TheSeex\\Dokumenty\\Hazzard verze 1.3\\Hazzard.exe:*:Disabled:Hazzard"
"C:\\Documents and Settings\\TheSeex\\Plocha\\Hry\\Metiny\\Official AQUA CLIENT\\metin2.bin"="C:\\Documents and Settings\\TheSeex\\Plocha\\Hry\\Metiny\\Official AQUA CLIENT\\metin2.bin:*:Enabled:metin2"
"C:\\Documents and Settings\\TheSeex\\Plocha\\larox\\graves.dll"="C:\\Documents and Settings\\TheSeex\\Plocha\\larox\\graves.dll:*:Enabled:Metin2Client"
"C:\\Documents and Settings\\TheSeex\\Plocha\\Fear-Inside\\FearInside.exe"="C:\\Documents and Settings\\TheSeex\\Plocha\\Fear-Inside\\FearInside.exe:*:Enabled:Metin2Client"
"C:\\Documents and Settings\\TheSeex\\Plocha\\Attomey ---\\metin2client.exe"="C:\\Documents and Settings\\TheSeex\\Plocha\\Attomey ---\\metin2client.exe:*:Enabled:metin2client"
"C:\\Documents and Settings\\TheSeex\\Plocha\\Attomey ---\\metin2client.bin"="C:\\Documents and Settings\\TheSeex\\Plocha\\Attomey ---\\metin2client.bin:*:Enabled:metin2client"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Documents and Settings\\TheSeex\\Dokumenty\\Metin2AV.RO - GM MODE\\Start Client.exe"="C:\\Documents and Settings\\TheSeex\\Dokumenty\\Metin2AV.RO - GM MODE\\Start Client.exe:*:Disabled:Start Client"
"C:\\Program Files\\TeamViewer\\TeamViewer.exe"="C:\\Program Files\\TeamViewer\\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe"="C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\\Program Files\\Steam\\steamapps\\common\\Warface\\live\\nw.exe"="C:\\Program Files\\Steam\\steamapps\\common\\Warface\\live\\nw.exe:*:Enabled:Warface"
"C:\\Spotify.exe"="C:\\Spotify.exe:*:Enabled:Spotify"
"C:\\Program Files\\Steam\\steamapps\\common\\Orcs Must Die 2\\build\\release\\OrcsMustDie2.exe"="C:\\Program Files\\Steam\\steamapps\\common\\Orcs Must Die 2\\build\\release\\OrcsMustDie2.exe:*:Enabled:Orcs Must Die! 2"
"C:\\Program Files\\Steam\\steamapps\\common\\Orcs Must Die 2\\build\\game\\OrcsMustDie2.exe"="C:\\Program Files\\Steam\\steamapps\\common\\Orcs Must Die 2\\build\\game\\OrcsMustDie2.exe:*:Enabled:Orcs Must Die 2"
"C:\\Program Files\\Steam\\steamapps\\common\\Counter-Strike Global Offensive\\csgo.exe"="C:\\Program Files\\Steam\\steamapps\\common\\Counter-Strike Global Offensive\\csgo.exe:*:Enabled:Counter-Strike: Global Offensive"
"C:\\Program Files\\CS16v36\\hl.exe"="C:\\Program Files\\CS16v36\\hl.exe:*:Enabled:Half-Life Launcher"
"C:\\Program Files\\Steam\\steamapps\\common\\Saints Row the Third\\game_launcher.exe"="C:\\Program Files\\Steam\\steamapps\\common\\Saints Row the Third\\game_launcher.exe:*:Enabled:Saints Row: The Third"
"C:\\Program Files\\Steam\\steamapps\\common\\Saints Row the Third\\SaintsRowTheThird.exe"="C:\\Program Files\\Steam\\steamapps\\common\\Saints Row the Third\\SaintsRowTheThird.exe:*:Enabled:Saints Row: The Third"
"C:\\Program Files\\Steam\\steamapps\\common\\Saints Row the Third\\SaintsRowTheThird_DX11.exe"="C:\\Program Files\\Steam\\steamapps\\common\\Saints Row the Third\\SaintsRowTheThird_DX11.exe:*:Enabled:Saints Row: The Third DX11"
"C:\\Documents and Settings\\TheSeex\\Dokumenty\\The-Lost-Island-AQUA\\TLI-PVM_Bez_Patcheru.exe"="C:\\Documents and Settings\\TheSeex\\Dokumenty\\The-Lost-Island-AQUA\\TLI-PVM_Bez_Patcheru.exe:*:Disabled:TLI-PVM_Bez_Patcheru"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"58568:TCP"="58568:TCP:*:Enabled:Pando Media Booster"
"58568:UDP"="58568:UDP:*:Enabled:Pando Media Booster"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002"
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"
"58568:TCP"="58568:TCP:*:Enabled:Pando Media Booster"
"58568:UDP"="58568:UDP:*:Enabled:Pando Media Booster"
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Vypínání počítače
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vypínání počítače
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vypínání počítače
# AdwCleaner v4.208 - Log vytvořen 09/08/2015 v 22:09:59
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-08-01.1 [Server]
# Operační system : Microsoft Windows XP Service Pack 3 (x86)
# Uživatelské jméno : TheSeex - PETR
# Spuštěno z : C:\Documents and Settings\TheSeex\Plocha\adwcleaner_4.208.exe
# Nastavení : Čištění
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\Documents and Settings\TheSeex\Data aplikací\HPAppData
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Hodnota Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Ubisoft\Assassin's Creed Brotherhood\UPlayBrowser.exe]
***** [ Prohlížeče ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v38.0.1 (x86 cs)
-\\ Google Chrome v44.0.2403.130
*************************
AdwCleaner[R0].txt - [36217 bytů] - [12/01/2014 16:32:25]
AdwCleaner[R1].txt - [3491 bytů] - [16/05/2015 12:32:18]
AdwCleaner[R2].txt - [1472 bytů] - [27/05/2015 19:24:19]
AdwCleaner[R3].txt - [1459 bytů] - [09/06/2015 19:13:24]
AdwCleaner[R4].txt - [1519 bytů] - [20/06/2015 12:07:23]
AdwCleaner[R5].txt - [1282 bytů] - [26/06/2015 17:35:45]
AdwCleaner[R6].txt - [1429 bytů] - [28/06/2015 13:30:01]
AdwCleaner[R7].txt - [1476 bytů] - [25/07/2015 08:49:34]
AdwCleaner[R8].txt - [1749 bytů] - [09/08/2015 22:08:53]
AdwCleaner[S0].txt - [35174 bytů] - [12/01/2014 16:36:11]
AdwCleaner[S1].txt - [3402 bytů] - [16/05/2015 12:33:15]
AdwCleaner[S2].txt - [1598 bytů] - [20/06/2015 12:12:42]
AdwCleaner[S3].txt - [1672 bytů] - [09/08/2015 22:09:59]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1730 bytů] ##########
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-08-01.1 [Server]
# Operační system : Microsoft Windows XP Service Pack 3 (x86)
# Uživatelské jméno : TheSeex - PETR
# Spuštěno z : C:\Documents and Settings\TheSeex\Plocha\adwcleaner_4.208.exe
# Nastavení : Čištění
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\Documents and Settings\TheSeex\Data aplikací\HPAppData
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Hodnota Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Ubisoft\Assassin's Creed Brotherhood\UPlayBrowser.exe]
***** [ Prohlížeče ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v38.0.1 (x86 cs)
-\\ Google Chrome v44.0.2403.130
*************************
AdwCleaner[R0].txt - [36217 bytů] - [12/01/2014 16:32:25]
AdwCleaner[R1].txt - [3491 bytů] - [16/05/2015 12:32:18]
AdwCleaner[R2].txt - [1472 bytů] - [27/05/2015 19:24:19]
AdwCleaner[R3].txt - [1459 bytů] - [09/06/2015 19:13:24]
AdwCleaner[R4].txt - [1519 bytů] - [20/06/2015 12:07:23]
AdwCleaner[R5].txt - [1282 bytů] - [26/06/2015 17:35:45]
AdwCleaner[R6].txt - [1429 bytů] - [28/06/2015 13:30:01]
AdwCleaner[R7].txt - [1476 bytů] - [25/07/2015 08:49:34]
AdwCleaner[R8].txt - [1749 bytů] - [09/08/2015 22:08:53]
AdwCleaner[S0].txt - [35174 bytů] - [12/01/2014 16:36:11]
AdwCleaner[S1].txt - [3402 bytů] - [16/05/2015 12:33:15]
AdwCleaner[S2].txt - [1598 bytů] - [20/06/2015 12:12:42]
AdwCleaner[S3].txt - [1672 bytů] - [09/08/2015 22:09:59]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1730 bytů] ##########
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vypínání počítače
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vypínání počítače
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:09-08-2015
Ran by TheSeex (administrator) on PETR (10-08-2015 18:19:35)
Running from C:\Documents and Settings\TheSeex\Plocha
Loaded Profiles: TheSeex (Available Profiles: TheSeex)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ICSI Technology Ltd.) C:\WINDOWS\Dit.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Nota Inc.) C:\Program Files\Gyazo\GyStation.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(PC Tools) C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
() C:\WINDOWS\system32\PnkBstrA.exe
(Smart Link) C:\WINDOWS\system32\slserv.exe
(Microsoft Corporation) C:\WINDOWS\system32\snmp.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Documents and Settings\TheSeex\Plocha\FRSTLauncher.exe
(Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
(Microsoft Corporation) C:\WINDOWS\system32\ping.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [40048 2007-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [CICache] => C:\WINDOWS\CICache.exe [24576 2002-09-05] ()
HKLM\...\Run: [Dit] => C:\WINDOWS\Dit.exe [86016 2004-04-27] (ICSI Technology Ltd.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2013-10-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5088456 2015-01-28] (ESET)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2014-01-07] (Advanced Micro Devices, Inc.)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2014-01-07] (ATI Technologies Inc.)
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Run: [Google Update] => C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [107912 2014-10-21] (Google Inc.)
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4810520 2014-09-25] (Piriform Ltd)
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Run: [Gyazo] => C:\Program Files\Gyazo\GyStation.exe [3097912 2015-07-08] (Nota Inc.)
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk [2012-10-16]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "http://www.google.com" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated)
BHO: EWPBrowseObject Class -> {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} -> C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-06-09] ()
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-30] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-30] (Oracle Corporation)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
Toolbar: HKU\S-1-5-21-1957994488-1229272821-725345543-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2012-06-28] (Společnost Microsoft)
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 8054949234
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Tcpip\Parameters: [DhcpNameServer] 94.74.192.252 94.74.192.244
Tcpip\..\Interfaces\{4173C4F6-1976-4454-833C-2A3BD630B277}: [DhcpNameServer] 94.74.192.252 94.74.192.244
FireFox:
========
FF ProfilePath: C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default
FF SelectedSearchEngine: Seznam
FF Homepage: hxxp://www.seznam.cz/?clid=1
FF Keyword.URL: hxxp://search.seznam.cz/?sourceid=undefined&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-15] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1207148.dll [2013-12-05] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-01-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-01-30] (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @talk.google.com/GoogleTalkPlugin -> C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @talk.google.com/O1DPlugin -> C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-01-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll [2012-06-28] (Nullsoft, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Documents and Settings\TheSeex\Data aplikací\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Documents and Settings\TheSeex\Data aplikací\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF SearchPlugin: C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\searchplugins\firmycz.xml [2012-09-28]
FF SearchPlugin: C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\searchplugins\mapycz.xml [2012-09-28]
FF SearchPlugin: C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\searchplugins\zbocz.xml [2012-09-28]
FF Extension: Blue Fox - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\{241aae70-0022-11de-87af-0800200c9a66} [2014-10-07]
FF Extension: FT DeepDark - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-05-16]
FF Extension: Lounge Assistant - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\jid1-XA5WEMQzmYdM8A@jetpack.xpi [2015-05-16]
FF Extension: Ask Shopping Toolbar - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\toolbar_ATU-SAT@apn.ask.com.xpi [2013-06-07]
FF Extension: Adblock Plus - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-09-19]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-09-19]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-10-16]
FF HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: McAfee Security Scan Plus - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
Chrome:
=======
CHR Profile: C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (TastyPlug) - C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\faccgibalfdoihmenknhpfhldkmgaang [2015-05-16]
CHR Extension: (AdBlock) - C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-16]
CHR Extension: (Chrome Web Store Payments) - C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-10]
CHR Extension: (Enhanced Steam) - C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2015-07-14]
CHR HKLM\...\Chrome\Extension: [aaaanakbdgnfidhgjoceaepbljdpfcpl] - C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork\Toolbar\ATU-SAT\CRX\ToolbarCR.crx <not found>
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [643072 2014-01-07] (ATI Technologies Inc.) [File not signed]
S4 ClipSrv; C:\WINDOWS\system32\clipsrv.exe [58368 2008-04-14] (Microsoft Corporation) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [1349576 2015-01-28] (ESET)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-01-30] (Oracle Corporation)
S3 LPDSVC; C:\WINDOWS\system32\tcpsvcs.exe [19456 2006-03-02] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S4 mnmsrvc; C:\WINDOWS\system32\mnmsrvc.exe [53248 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MSIServer; C:\WINDOWS\System32\msiexec.exe [116736 2008-05-19] (Microsoft Corporation) [File not signed]
S2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44544 2008-12-03] (Hewlett-Packard) [File not signed]
S3 npggsvc; C:\WINDOWS\system32\GameMon.des [3305824 2015-05-05] (INCA Internet Co., Ltd.) [File not signed]
R2 PCToolsSSDMonitorSvc; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2011-12-12] (PC Tools)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2008-12-03] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [75136 2013-01-23] ()
R2 SLService; C:\WINDOWS\system32\slserv.exe [73796 2008-04-14] (Smart Link)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5491984 2015-05-20] (TeamViewer GmbH)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43008 2006-06-18] (Advanced Micro Devices)
R3 ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [7875072 2014-01-07] (ATI Technologies Inc.) [File not signed]
R3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [103040 2012-05-14] (Advanced Micro Devices)
S3 CardReaderFilter; C:\WINDOWS\system32\Drivers\USBCRFT.SYS [13568 2015-08-10] (ICSI Technology Ltd.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [193464 2015-03-10] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [135808 2015-03-10] (ESET)
R1 epfwtdir; C:\WINDOWS\System32\DRIVERS\epfwtdir.sys [120304 2015-03-10] (ESET)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2015-07-14] (LogMeIn, Inc.)
S3 HdAudAddService; C:\WINDOWS\System32\drivers\AtiHdAud.sys [84992 2006-12-28] (ATI Research Inc.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2008-10-28] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2008-10-28] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2008-10-28] (HP)
S3 irsir; C:\WINDOWS\System32\DRIVERS\irsir.sys [18688 2001-08-17] (Microsoft Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R0 MpFilter; C:\WINDOWS\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
S3 Mtlmnt5; C:\WINDOWS\System32\DRIVERS\Mtlmnt5.sys [126686 2004-08-03] (Smart Link)
S3 Mtlstrm; C:\WINDOWS\System32\DRIVERS\Mtlstrm.sys [1309184 2004-08-03] (Smart Link)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 NtMtlFax; C:\WINDOWS\System32\DRIVERS\NtMtlFax.sys [180360 2004-08-03] (Smart Link)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [54016 2007-11-17] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [22016 2007-11-17] (NVIDIA Corporation)
S3 PCANDIS5; C:\Program Files\Wireless LAN\Access Point Utility\pcandis5.sys [16292 2001-11-23] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R0 RecAgent; C:\WINDOWS\System32\DRIVERS\RecAgent.sys [13776 2004-08-03] (Smart Link)
S3 Slntamr; C:\WINDOWS\System32\DRIVERS\slntamr.sys [404990 2004-08-03] (Smart Link)
S3 SlNtHal; C:\WINDOWS\System32\DRIVERS\Slnthal.sys [95424 2004-08-03] (Smart Link)
S3 SlWdmSup; C:\WINDOWS\System32\DRIVERS\SlWdmSup.sys [13240 2004-08-03] (Smart Link)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
S2 ASInsHelp; \??\C:\WINDOWS\system32\drivers\AsInsHelp32.sys [X]
S3 EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys [X]
S3 EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys [X]
S4 IntelIde; no ImagePath
U5 P3; C:\Windows\System32\Drivers\P3.sys [46592 2008-04-14] (Microsoft Corporation)
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
U1 WS2IFSL; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-10 18:19 - 2015-08-10 18:19 - 00029696 _____ C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\MSGBOX.EXE
2015-08-10 18:19 - 2015-08-10 18:19 - 00015327 _____ C:\Documents and Settings\TheSeex\Plocha\LM.bat
2015-08-10 18:18 - 2015-08-10 18:19 - 00000000 ____D C:\Documents and Settings\TheSeex\Plocha\FRST-OlderVersion
2015-08-10 16:15 - 2015-08-10 16:15 - 00000213 _____ C:\Documents and Settings\TheSeex\Plocha\Portal 2.url
2015-08-09 22:08 - 2015-08-09 22:08 - 02248704 _____ C:\Documents and Settings\TheSeex\Plocha\adwcleaner_4.208.exe
2015-08-09 20:46 - 2015-08-09 20:46 - 00060145 _____ C:\Documents and Settings\TheSeex\Plocha\FRST3.txt
2015-08-09 20:45 - 2015-08-10 18:20 - 00020705 _____ C:\Documents and Settings\TheSeex\Plocha\FRST.txt
2015-08-09 20:45 - 2015-08-10 18:19 - 00000000 ____D C:\FRST
2015-08-09 20:44 - 2015-08-10 18:18 - 01674752 _____ (Farbar) C:\Documents and Settings\TheSeex\Plocha\FRST.exe
2015-08-09 20:44 - 2015-08-09 20:44 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\TheSeex\Plocha\FRSTLauncher.exe
2015-08-09 20:41 - 2015-08-10 13:38 - 00000000 ____D C:\Program Files\SpeedFan
2015-08-09 20:41 - 2015-08-09 20:41 - 02174848 _____ C:\Documents and Settings\TheSeex\Dokumenty\instsf450.exe
2015-08-09 20:41 - 2015-08-09 20:41 - 00000689 _____ C:\Documents and Settings\TheSeex\Plocha\SpeedFan.lnk
2015-08-09 20:41 - 2015-08-09 20:41 - 00000045 _____ C:\WINDOWS\system32\initdebug.nfo
2015-08-09 20:41 - 2015-08-09 20:41 - 00000000 ____D C:\Documents and Settings\TheSeex\Nabídka Start\Programy\SpeedFan
2015-08-09 18:35 - 2015-08-09 18:35 - 01284374 _____ C:\Documents and Settings\TheSeex\Dokumenty\2-obra...rar
2015-07-27 15:10 - 2015-07-27 15:10 - 01223795 _____ C:\Documents and Settings\TheSeex\Dokumenty\kzlt_weirdjumps.zip
2015-07-26 22:17 - 2015-07-26 22:17 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\EMU
2015-07-26 22:15 - 2015-08-10 08:55 - 00023363 _____ C:\WINDOWS\setupapi.log
2015-07-26 22:14 - 2015-07-26 22:14 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Rocket League
2015-07-26 22:11 - 2015-07-26 22:14 - 00000000 ____D C:\Program Files\rocketleague
2015-07-26 21:49 - 2015-07-26 22:07 - 1849327616 _____ C:\Documents and Settings\TheSeex\Dokumenty\Rocket_League.iso
2015-07-24 20:08 - 2015-07-24 20:08 - 07503879 _____ C:\Documents and Settings\TheSeex\Dokumenty\cs-3148-qsk_fractured.zip
2015-07-24 19:58 - 2015-07-24 19:58 - 08712192 _____ C:\Documents and Settings\TheSeex\Dokumenty\hamachi.msi
2015-07-24 17:34 - 2015-07-24 17:34 - 00001507 _____ C:\Documents and Settings\All Users\Plocha\League of Legends.lnk
2015-07-24 17:34 - 2015-07-24 17:34 - 00000000 ____D C:\Riot Games
2015-07-24 17:34 - 2015-07-24 17:34 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\League of Legends
2015-07-24 17:33 - 2015-07-24 17:33 - 30993712 _____ (Riot Games) C:\Documents and Settings\TheSeex\Dokumenty\LeagueofLegends_EUNE_Installer_9_15_2014.exe
2015-07-24 17:33 - 2015-07-24 17:33 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\Riot Games
2015-07-24 13:05 - 2015-07-24 13:06 - 01298042 _____ C:\Documents and Settings\TheSeex\Dokumenty\cs-2706-c21_gladpask.zip
2015-07-22 08:51 - 2015-07-22 08:51 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\CEF
2015-07-20 18:14 - 2015-07-20 18:14 - 04727381 _____ C:\Documents and Settings\TheSeex\Dokumenty\92090 Klaypex - Jump.osz
2015-07-20 16:11 - 2015-07-20 16:11 - 02959377 _____ C:\Documents and Settings\TheSeex\Dokumenty\230989 Knife Party - Give It Up.osz
2015-07-20 16:07 - 2015-07-20 16:07 - 20071449 _____ C:\Documents and Settings\TheSeex\Dokumenty\157896 Meg & Dia - Monster (DotEXE Remix).osz
2015-07-20 16:03 - 2015-07-20 16:03 - 03882768 _____ C:\Documents and Settings\TheSeex\Dokumenty\42311 Skrillex - Bangarang (feat. Sirah) (Cut Ver.).osz
2015-07-20 15:35 - 2015-07-20 15:35 - 101234243 _____ C:\Documents and Settings\TheSeex\Dokumenty\Beginner+Training+Step+One.rar
2015-07-20 15:35 - 2015-07-20 15:35 - 00000875 _____ C:\Documents and Settings\TheSeex\Plocha\osu!.lnk
2015-07-20 15:34 - 2015-07-25 18:41 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\osu!
2015-07-20 15:33 - 2015-07-20 15:43 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\Localisation
2015-07-20 15:33 - 2015-07-20 15:33 - 03262024 _____ (ppy) C:\Documents and Settings\TheSeex\Dokumenty\osu!install.exe
2015-07-20 10:01 - 2015-07-20 11:19 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\Wowko
2015-07-19 11:27 - 2015-07-19 11:27 - 00739994 _____ C:\Documents and Settings\TheSeex\Dokumenty\resource_62.rar
2015-07-19 11:23 - 2015-07-19 11:23 - 03588476 _____ C:\Documents and Settings\TheSeex\Dokumenty\kz-random GUI.rar
2015-07-19 11:14 - 2015-07-19 11:20 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\Camtasia Studio
2015-07-19 11:07 - 2015-07-19 11:07 - 10931892 _____ C:\Documents and Settings\TheSeex\Dokumenty\plexed_30.zip
2015-07-19 11:02 - 2015-07-19 11:02 - 02490079 _____ C:\Documents and Settings\TheSeex\Dokumenty\blue_hd.zip
2015-07-19 10:41 - 2015-07-19 10:41 - 00013435 _____ C:\Documents and Settings\TheSeex\Dokumenty\serverbrowser_hist.vdf
2015-07-18 17:25 - 2015-07-30 08:22 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\vlc
2015-07-18 17:25 - 2015-07-18 17:25 - 02319212 _____ C:\Documents and Settings\TheSeex\Dokumenty\dsdssd.mp4
2015-07-18 15:49 - 2015-07-18 15:49 - 07369810 _____ C:\Documents and Settings\TheSeex\Dokumenty\Londrina Solid.zip
2015-07-18 11:39 - 2015-07-18 11:59 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Genymobile
2015-07-18 11:39 - 2015-07-18 11:54 - 00000000 ____D C:\Documents and Settings\TheSeex\.VirtualBox
2015-07-18 11:37 - 2013-04-12 12:33 - 00188176 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
2015-07-18 11:36 - 2013-04-12 12:33 - 00094480 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2015-07-17 21:44 - 2015-08-10 13:36 - 00003858 _____ C:\Documents and Settings\TheSeex\Plocha\DesktopOK.ini
2015-07-17 21:44 - 2015-07-07 08:50 - 00186368 _____ (Nenad Hrg SoftwareOK) C:\Documents and Settings\TheSeex\Plocha\DesktopOK.exe
2015-07-16 09:44 - 2015-08-10 17:49 - 00001034 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1957994488-1229272821-725345543-1004UA.job
2015-07-16 09:44 - 2015-08-10 17:49 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-16 09:44 - 2015-08-10 13:36 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-16 09:44 - 2015-08-10 09:49 - 00000982 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1957994488-1229272821-725345543-1004Core.job
2015-07-15 18:21 - 2015-07-15 18:21 - 02734121 _____ C:\Documents and Settings\TheSeex\Dokumenty\GrafikaPreDementov.rar
2015-07-15 17:40 - 2015-07-15 17:40 - 00733443 _____ (Marc Richarme) C:\Documents and Settings\TheSeex\Plocha\_83-.exe
2015-07-15 17:23 - 2015-07-15 17:23 - 00963352 _____ C:\Documents and Settings\TheSeex\Dokumenty\NixoneGrafika.rar
2015-07-15 16:57 - 2015-07-15 16:57 - 00000000 ____D C:\output
2015-07-15 16:56 - 2015-07-15 18:22 - 00006144 ____H C:\Documents and Settings\TheSeex\Dokumenty\photothumb.db
2015-07-14 20:37 - 2015-07-14 20:37 - 00911007 _____ C:\Documents and Settings\TheSeex\Dokumenty\flash_he_smoke_tron.rar
2015-07-12 22:08 - 2015-07-12 22:08 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\Gyazo
2015-07-12 22:06 - 2015-07-12 22:06 - 09987128 _____ (Nota Inc. ) C:\Documents and Settings\TheSeex\Dokumenty\Gyazo-3.1.1.exe
2015-07-12 22:06 - 2015-07-12 22:06 - 00000000 ____D C:\Program Files\Gyazo
2015-07-12 22:06 - 2015-07-12 22:06 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Gyazo
2015-07-12 14:14 - 2015-08-10 18:15 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\TS3Client
2015-07-12 14:13 - 2015-07-12 14:13 - 00000844 _____ C:\Documents and Settings\All Users\Plocha\TeamSpeak 3 Client.lnk
2015-07-12 14:13 - 2015-07-12 14:13 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamSpeak 3 Client
2015-07-12 14:11 - 2015-07-12 14:12 - 28115400 _____ (TeamSpeak Systems GmbH) C:\Documents and Settings\TheSeex\Dokumenty\TeamSpeak3-Client-win32-3.0.16.exe
2015-07-11 13:35 - 2015-07-11 18:18 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\Switchbotv3_0_0_5
2015-07-11 13:35 - 2015-07-11 13:35 - 08660200 _____ C:\Documents and Settings\TheSeex\Dokumenty\girlshare.ro_Switchbotv3_0_0_5.rar
2015-07-11 13:31 - 2015-07-11 13:31 - 01488266 _____ C:\Documents and Settings\TheSeex\Dokumenty\Tools by Unpublished.rar
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-10 18:20 - 2012-09-04 14:47 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Temp
2015-08-10 18:19 - 2012-09-04 14:47 - 00000000 ___HD C:\Documents and Settings\TheSeex\Local Settings\Data aplikací
2015-08-10 18:19 - 2012-09-04 14:47 - 00000000 ____D C:\Documents and Settings\TheSeex\Plocha
2015-08-10 18:13 - 2012-12-28 12:04 - 00000000 ____D C:\Program Files\Steam
2015-08-10 18:08 - 2014-01-15 17:10 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-10 16:56 - 2014-01-15 21:12 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Battle.net
2015-08-10 16:15 - 2012-12-28 12:15 - 00000000 ____D C:\Documents and Settings\TheSeex\Nabídka Start\Programy\Steam
2015-08-10 14:40 - 2012-09-19 13:55 - 00393216 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2015-08-10 13:39 - 2014-01-29 20:18 - 01824761 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-10 13:36 - 2014-10-08 15:10 - 00000226 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-08-10 13:36 - 2014-01-29 14:08 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-08-10 13:36 - 2014-01-29 14:07 - 00000049 _____ C:\WINDOWS\wiaservc.log
2015-08-10 13:36 - 2012-09-05 17:20 - 00013568 _____ (ICSI Technology Ltd.) C:\WINDOWS\system32\Drivers\USBCRFT.SYS
2015-08-10 13:36 - 2012-09-04 14:46 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-10 09:29 - 2012-09-04 14:46 - 00032230 _____ C:\WINDOWS\SchedLgU.Txt
2015-08-10 09:28 - 2012-09-04 14:47 - 00000178 ___SH C:\Documents and Settings\TheSeex\ntuser.ini
2015-08-10 09:11 - 2014-01-10 23:22 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-09 22:10 - 2014-01-12 16:31 - 00000000 ____D C:\AdwCleaner
2015-08-09 22:09 - 2012-09-04 14:47 - 00000000 __RHD C:\Documents and Settings\TheSeex\Data aplikací
2015-08-09 20:41 - 2012-09-04 14:47 - 00000000 ___RD C:\Documents and Settings\TheSeex\Nabídka Start\Programy
2015-08-09 20:41 - 2012-09-04 14:47 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty
2015-08-09 12:07 - 2006-03-02 14:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2015-08-07 10:49 - 2012-09-19 16:47 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\Skype
2015-08-07 09:40 - 2015-07-09 13:48 - 00000167 _____ C:\Documents and Settings\TheSeex\Dokumenty\ClownfishForTeamspeak.ini
2015-08-05 12:56 - 2012-10-25 12:50 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-08-05 09:47 - 2014-01-15 21:12 - 00000000 ____D C:\Program Files\Battle.net
2015-08-02 10:11 - 2014-01-11 09:18 - 00000396 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2015-07-29 19:27 - 2014-01-16 19:29 - 00000000 ____D C:\Program Files\Hearthstone
2015-07-28 19:15 - 2012-09-04 16:33 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-07-27 15:12 - 2012-10-06 19:12 - 00000000 ____D C:\Program Files\Common Files\Steam
2015-07-27 13:30 - 2012-09-25 18:25 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\LogMeIn Hamachi
2015-07-27 13:30 - 2012-09-04 16:33 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-07-26 22:15 - 2012-09-04 14:42 - 00000000 ____D C:\WINDOWS\system32\DirectX
2015-07-25 08:51 - 2014-10-18 13:49 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\PhotoScape
2015-07-25 08:51 - 2012-09-22 15:19 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\uTorrent
2015-07-25 08:51 - 2012-09-04 14:47 - 00000000 ____D C:\Documents and Settings\TheSeex
2015-07-24 18:56 - 2012-09-19 17:54 - 00000000 ____D C:\Counter-Strike 1.6
2015-07-22 10:45 - 2012-12-31 22:43 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\League of Legends
2015-07-22 10:45 - 2012-09-05 17:08 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-07-19 22:09 - 2012-10-18 20:00 - 00789350 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-1957994488-1229272821-725345543-1004-0.dat
2015-07-19 22:09 - 2012-10-18 19:59 - 00141446 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2015-07-18 11:58 - 2012-11-17 12:36 - 00000000 ____D C:\Program Files\Oracle
2015-07-18 11:57 - 2015-06-28 14:06 - 00000000 ____D C:\Program Files\GameforgeLive
2015-07-15 07:44 - 2012-12-26 14:25 - 00778416 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-07-15 07:44 - 2012-12-26 14:25 - 00142512 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-07-15 07:43 - 2012-09-04 15:37 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Adobe
2015-07-14 15:09 - 2015-06-06 09:21 - 41287224 _____ C:\libcef.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 10457856 _____ C:\icudtl.dat
2015-07-14 15:09 - 2015-06-06 09:21 - 07334968 _____ (Spotify Ltd) C:\Spotify.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 04253463 _____ C:\devtools_resources.pak
2015-07-14 15:09 - 2015-06-06 09:21 - 03457592 _____ (Microsoft Corporation) C:\d3dcompiler_47.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 02106424 _____ (Microsoft Corporation) C:\d3dcompiler_43.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 02018406 _____ C:\cef.pak
2015-07-14 15:09 - 2015-06-06 09:21 - 02008632 _____ (Spotify Ltd) C:\SpotifyWebHelper.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 01488440 _____ C:\libGLESv2.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 00968248 _____ (The Chromium Authors) C:\ffmpegsumo.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 00838200 _____ (Spotify Ltd) C:\SpotifyCrashService.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 00598403 _____ C:\cef_200_percent.pak
2015-07-14 15:09 - 2015-06-06 09:21 - 00444515 _____ C:\cef_100_percent.pak
2015-07-14 15:09 - 2015-06-06 09:21 - 00098360 _____ (Spotify Ltd) C:\SpotifyLauncher.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 00079928 _____ C:\libEGL.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 00073272 _____ C:\wow_helper.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 00000020 _____ C:\inst_ver.dat
2015-07-14 15:09 - 2015-06-06 09:21 - 00000000 ____D C:\locales
2015-07-14 11:44 - 2012-11-13 15:48 - 00026176 ____H (LogMeIn, Inc.) C:\WINDOWS\system32\hamachi.sys
2015-07-14 11:44 - 2009-03-18 17:35 - 00026176 ____H (LogMeIn, Inc.) C:\WINDOWS\system32\Drivers\hamachi.sys
2015-07-11 19:38 - 2015-06-28 15:57 - 00000000 ____D C:\Program Files\CS16v36
2015-07-11 18:19 - 2015-07-10 19:13 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\The-Lost-Island-AQUA
2015-07-11 18:16 - 2015-05-24 17:06 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\kokot
==================== Files in the root of some directories =======
2012-11-17 12:38 - 2012-11-23 16:27 - 0583306 _____ () C:\Documents and Settings\TheSeex\Data aplikací\technic-launcher.jar
2012-11-17 12:38 - 2012-11-17 12:39 - 0579274 _____ () C:\Documents and Settings\TheSeex\Data aplikací\technic-launcher.jar.bak
2012-09-04 17:12 - 2015-07-08 14:58 - 0067072 _____ () C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-09-04 17:07 - 2012-09-04 17:07 - 0040404 _____ () C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\FASTWiz.log
2015-08-10 18:19 - 2015-08-10 18:19 - 0029696 _____ () C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\MSGBOX.EXE
Some files in TEMP:
====================
C:\Documents and Settings\TheSeex\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\TheSeex\Local Settings\Temp\sfamcc00001.dll
C:\Documents and Settings\TheSeex\Local Settings\Temp\sfextra.dll
C:\Documents and Settings\TheSeex\Local Settings\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe
[2006-03-02 14:00] - [2008-04-14 08:52] - 1541120 ____A (Microsoft Corporation) D63C59BB0CA2F83B62D003FD52863090
C:\WINDOWS\system32\winlogon.exe
[2006-03-02 14:00] - [2008-04-14 08:52] - 0547328 ____A (Microsoft Corporation) 471341D353962A35DA3C6324D59D09C4
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll
[2006-03-02 14:00] - [2008-04-14 08:52] - 0578560 ____A (Microsoft Corporation) CCB32D10C69A89822E9134C0C4894BE1
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of log ============================
Ran by TheSeex (administrator) on PETR (10-08-2015 18:19:35)
Running from C:\Documents and Settings\TheSeex\Plocha
Loaded Profiles: TheSeex (Available Profiles: TheSeex)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ICSI Technology Ltd.) C:\WINDOWS\Dit.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Nota Inc.) C:\Program Files\Gyazo\GyStation.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(PC Tools) C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
() C:\WINDOWS\system32\PnkBstrA.exe
(Smart Link) C:\WINDOWS\system32\slserv.exe
(Microsoft Corporation) C:\WINDOWS\system32\snmp.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Documents and Settings\TheSeex\Plocha\FRSTLauncher.exe
(Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
(Microsoft Corporation) C:\WINDOWS\system32\ping.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [40048 2007-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [CICache] => C:\WINDOWS\CICache.exe [24576 2002-09-05] ()
HKLM\...\Run: [Dit] => C:\WINDOWS\Dit.exe [86016 2004-04-27] (ICSI Technology Ltd.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2013-10-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5088456 2015-01-28] (ESET)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2014-01-07] (Advanced Micro Devices, Inc.)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2014-01-07] (ATI Technologies Inc.)
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Run: [Google Update] => C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [107912 2014-10-21] (Google Inc.)
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4810520 2014-09-25] (Piriform Ltd)
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Run: [Gyazo] => C:\Program Files\Gyazo\GyStation.exe [3097912 2015-07-08] (Nota Inc.)
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk [2012-10-16]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "http://www.google.com" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated)
BHO: EWPBrowseObject Class -> {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} -> C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-06-09] ()
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-30] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-30] (Oracle Corporation)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
Toolbar: HKU\S-1-5-21-1957994488-1229272821-725345543-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2012-06-28] (Společnost Microsoft)
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 8054949234
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Tcpip\Parameters: [DhcpNameServer] 94.74.192.252 94.74.192.244
Tcpip\..\Interfaces\{4173C4F6-1976-4454-833C-2A3BD630B277}: [DhcpNameServer] 94.74.192.252 94.74.192.244
FireFox:
========
FF ProfilePath: C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default
FF SelectedSearchEngine: Seznam
FF Homepage: hxxp://www.seznam.cz/?clid=1
FF Keyword.URL: hxxp://search.seznam.cz/?sourceid=undefined&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-15] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1207148.dll [2013-12-05] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-01-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-01-30] (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @talk.google.com/GoogleTalkPlugin -> C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @talk.google.com/O1DPlugin -> C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1957994488-1229272821-725345543-1004: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-01-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll [2012-06-28] (Nullsoft, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Documents and Settings\TheSeex\Data aplikací\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Documents and Settings\TheSeex\Data aplikací\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF SearchPlugin: C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\searchplugins\firmycz.xml [2012-09-28]
FF SearchPlugin: C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\searchplugins\mapycz.xml [2012-09-28]
FF SearchPlugin: C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\searchplugins\zbocz.xml [2012-09-28]
FF Extension: Blue Fox - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\{241aae70-0022-11de-87af-0800200c9a66} [2014-10-07]
FF Extension: FT DeepDark - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-05-16]
FF Extension: Lounge Assistant - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\jid1-XA5WEMQzmYdM8A@jetpack.xpi [2015-05-16]
FF Extension: Ask Shopping Toolbar - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\toolbar_ATU-SAT@apn.ask.com.xpi [2013-06-07]
FF Extension: Adblock Plus - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-09-19]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-09-19]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-10-16]
FF HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: McAfee Security Scan Plus - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
Chrome:
=======
CHR Profile: C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (TastyPlug) - C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\faccgibalfdoihmenknhpfhldkmgaang [2015-05-16]
CHR Extension: (AdBlock) - C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-16]
CHR Extension: (Chrome Web Store Payments) - C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-10]
CHR Extension: (Enhanced Steam) - C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2015-07-14]
CHR HKLM\...\Chrome\Extension: [aaaanakbdgnfidhgjoceaepbljdpfcpl] - C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork\Toolbar\ATU-SAT\CRX\ToolbarCR.crx <not found>
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [643072 2014-01-07] (ATI Technologies Inc.) [File not signed]
S4 ClipSrv; C:\WINDOWS\system32\clipsrv.exe [58368 2008-04-14] (Microsoft Corporation) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [1349576 2015-01-28] (ESET)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-01-30] (Oracle Corporation)
S3 LPDSVC; C:\WINDOWS\system32\tcpsvcs.exe [19456 2006-03-02] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S4 mnmsrvc; C:\WINDOWS\system32\mnmsrvc.exe [53248 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MSIServer; C:\WINDOWS\System32\msiexec.exe [116736 2008-05-19] (Microsoft Corporation) [File not signed]
S2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44544 2008-12-03] (Hewlett-Packard) [File not signed]
S3 npggsvc; C:\WINDOWS\system32\GameMon.des [3305824 2015-05-05] (INCA Internet Co., Ltd.) [File not signed]
R2 PCToolsSSDMonitorSvc; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2011-12-12] (PC Tools)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2008-12-03] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [75136 2013-01-23] ()
R2 SLService; C:\WINDOWS\system32\slserv.exe [73796 2008-04-14] (Smart Link)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5491984 2015-05-20] (TeamViewer GmbH)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43008 2006-06-18] (Advanced Micro Devices)
R3 ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [7875072 2014-01-07] (ATI Technologies Inc.) [File not signed]
R3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [103040 2012-05-14] (Advanced Micro Devices)
S3 CardReaderFilter; C:\WINDOWS\system32\Drivers\USBCRFT.SYS [13568 2015-08-10] (ICSI Technology Ltd.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [193464 2015-03-10] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [135808 2015-03-10] (ESET)
R1 epfwtdir; C:\WINDOWS\System32\DRIVERS\epfwtdir.sys [120304 2015-03-10] (ESET)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2015-07-14] (LogMeIn, Inc.)
S3 HdAudAddService; C:\WINDOWS\System32\drivers\AtiHdAud.sys [84992 2006-12-28] (ATI Research Inc.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2008-10-28] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2008-10-28] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2008-10-28] (HP)
S3 irsir; C:\WINDOWS\System32\DRIVERS\irsir.sys [18688 2001-08-17] (Microsoft Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R0 MpFilter; C:\WINDOWS\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
S3 Mtlmnt5; C:\WINDOWS\System32\DRIVERS\Mtlmnt5.sys [126686 2004-08-03] (Smart Link)
S3 Mtlstrm; C:\WINDOWS\System32\DRIVERS\Mtlstrm.sys [1309184 2004-08-03] (Smart Link)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 NtMtlFax; C:\WINDOWS\System32\DRIVERS\NtMtlFax.sys [180360 2004-08-03] (Smart Link)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [54016 2007-11-17] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [22016 2007-11-17] (NVIDIA Corporation)
S3 PCANDIS5; C:\Program Files\Wireless LAN\Access Point Utility\pcandis5.sys [16292 2001-11-23] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R0 RecAgent; C:\WINDOWS\System32\DRIVERS\RecAgent.sys [13776 2004-08-03] (Smart Link)
S3 Slntamr; C:\WINDOWS\System32\DRIVERS\slntamr.sys [404990 2004-08-03] (Smart Link)
S3 SlNtHal; C:\WINDOWS\System32\DRIVERS\Slnthal.sys [95424 2004-08-03] (Smart Link)
S3 SlWdmSup; C:\WINDOWS\System32\DRIVERS\SlWdmSup.sys [13240 2004-08-03] (Smart Link)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
S2 ASInsHelp; \??\C:\WINDOWS\system32\drivers\AsInsHelp32.sys [X]
S3 EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys [X]
S3 EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys [X]
S4 IntelIde; no ImagePath
U5 P3; C:\Windows\System32\Drivers\P3.sys [46592 2008-04-14] (Microsoft Corporation)
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
U1 WS2IFSL; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-10 18:19 - 2015-08-10 18:19 - 00029696 _____ C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\MSGBOX.EXE
2015-08-10 18:19 - 2015-08-10 18:19 - 00015327 _____ C:\Documents and Settings\TheSeex\Plocha\LM.bat
2015-08-10 18:18 - 2015-08-10 18:19 - 00000000 ____D C:\Documents and Settings\TheSeex\Plocha\FRST-OlderVersion
2015-08-10 16:15 - 2015-08-10 16:15 - 00000213 _____ C:\Documents and Settings\TheSeex\Plocha\Portal 2.url
2015-08-09 22:08 - 2015-08-09 22:08 - 02248704 _____ C:\Documents and Settings\TheSeex\Plocha\adwcleaner_4.208.exe
2015-08-09 20:46 - 2015-08-09 20:46 - 00060145 _____ C:\Documents and Settings\TheSeex\Plocha\FRST3.txt
2015-08-09 20:45 - 2015-08-10 18:20 - 00020705 _____ C:\Documents and Settings\TheSeex\Plocha\FRST.txt
2015-08-09 20:45 - 2015-08-10 18:19 - 00000000 ____D C:\FRST
2015-08-09 20:44 - 2015-08-10 18:18 - 01674752 _____ (Farbar) C:\Documents and Settings\TheSeex\Plocha\FRST.exe
2015-08-09 20:44 - 2015-08-09 20:44 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\TheSeex\Plocha\FRSTLauncher.exe
2015-08-09 20:41 - 2015-08-10 13:38 - 00000000 ____D C:\Program Files\SpeedFan
2015-08-09 20:41 - 2015-08-09 20:41 - 02174848 _____ C:\Documents and Settings\TheSeex\Dokumenty\instsf450.exe
2015-08-09 20:41 - 2015-08-09 20:41 - 00000689 _____ C:\Documents and Settings\TheSeex\Plocha\SpeedFan.lnk
2015-08-09 20:41 - 2015-08-09 20:41 - 00000045 _____ C:\WINDOWS\system32\initdebug.nfo
2015-08-09 20:41 - 2015-08-09 20:41 - 00000000 ____D C:\Documents and Settings\TheSeex\Nabídka Start\Programy\SpeedFan
2015-08-09 18:35 - 2015-08-09 18:35 - 01284374 _____ C:\Documents and Settings\TheSeex\Dokumenty\2-obra...rar
2015-07-27 15:10 - 2015-07-27 15:10 - 01223795 _____ C:\Documents and Settings\TheSeex\Dokumenty\kzlt_weirdjumps.zip
2015-07-26 22:17 - 2015-07-26 22:17 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\EMU
2015-07-26 22:15 - 2015-08-10 08:55 - 00023363 _____ C:\WINDOWS\setupapi.log
2015-07-26 22:14 - 2015-07-26 22:14 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Rocket League
2015-07-26 22:11 - 2015-07-26 22:14 - 00000000 ____D C:\Program Files\rocketleague
2015-07-26 21:49 - 2015-07-26 22:07 - 1849327616 _____ C:\Documents and Settings\TheSeex\Dokumenty\Rocket_League.iso
2015-07-24 20:08 - 2015-07-24 20:08 - 07503879 _____ C:\Documents and Settings\TheSeex\Dokumenty\cs-3148-qsk_fractured.zip
2015-07-24 19:58 - 2015-07-24 19:58 - 08712192 _____ C:\Documents and Settings\TheSeex\Dokumenty\hamachi.msi
2015-07-24 17:34 - 2015-07-24 17:34 - 00001507 _____ C:\Documents and Settings\All Users\Plocha\League of Legends.lnk
2015-07-24 17:34 - 2015-07-24 17:34 - 00000000 ____D C:\Riot Games
2015-07-24 17:34 - 2015-07-24 17:34 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\League of Legends
2015-07-24 17:33 - 2015-07-24 17:33 - 30993712 _____ (Riot Games) C:\Documents and Settings\TheSeex\Dokumenty\LeagueofLegends_EUNE_Installer_9_15_2014.exe
2015-07-24 17:33 - 2015-07-24 17:33 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\Riot Games
2015-07-24 13:05 - 2015-07-24 13:06 - 01298042 _____ C:\Documents and Settings\TheSeex\Dokumenty\cs-2706-c21_gladpask.zip
2015-07-22 08:51 - 2015-07-22 08:51 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\CEF
2015-07-20 18:14 - 2015-07-20 18:14 - 04727381 _____ C:\Documents and Settings\TheSeex\Dokumenty\92090 Klaypex - Jump.osz
2015-07-20 16:11 - 2015-07-20 16:11 - 02959377 _____ C:\Documents and Settings\TheSeex\Dokumenty\230989 Knife Party - Give It Up.osz
2015-07-20 16:07 - 2015-07-20 16:07 - 20071449 _____ C:\Documents and Settings\TheSeex\Dokumenty\157896 Meg & Dia - Monster (DotEXE Remix).osz
2015-07-20 16:03 - 2015-07-20 16:03 - 03882768 _____ C:\Documents and Settings\TheSeex\Dokumenty\42311 Skrillex - Bangarang (feat. Sirah) (Cut Ver.).osz
2015-07-20 15:35 - 2015-07-20 15:35 - 101234243 _____ C:\Documents and Settings\TheSeex\Dokumenty\Beginner+Training+Step+One.rar
2015-07-20 15:35 - 2015-07-20 15:35 - 00000875 _____ C:\Documents and Settings\TheSeex\Plocha\osu!.lnk
2015-07-20 15:34 - 2015-07-25 18:41 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\osu!
2015-07-20 15:33 - 2015-07-20 15:43 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\Localisation
2015-07-20 15:33 - 2015-07-20 15:33 - 03262024 _____ (ppy) C:\Documents and Settings\TheSeex\Dokumenty\osu!install.exe
2015-07-20 10:01 - 2015-07-20 11:19 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\Wowko
2015-07-19 11:27 - 2015-07-19 11:27 - 00739994 _____ C:\Documents and Settings\TheSeex\Dokumenty\resource_62.rar
2015-07-19 11:23 - 2015-07-19 11:23 - 03588476 _____ C:\Documents and Settings\TheSeex\Dokumenty\kz-random GUI.rar
2015-07-19 11:14 - 2015-07-19 11:20 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\Camtasia Studio
2015-07-19 11:07 - 2015-07-19 11:07 - 10931892 _____ C:\Documents and Settings\TheSeex\Dokumenty\plexed_30.zip
2015-07-19 11:02 - 2015-07-19 11:02 - 02490079 _____ C:\Documents and Settings\TheSeex\Dokumenty\blue_hd.zip
2015-07-19 10:41 - 2015-07-19 10:41 - 00013435 _____ C:\Documents and Settings\TheSeex\Dokumenty\serverbrowser_hist.vdf
2015-07-18 17:25 - 2015-07-30 08:22 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\vlc
2015-07-18 17:25 - 2015-07-18 17:25 - 02319212 _____ C:\Documents and Settings\TheSeex\Dokumenty\dsdssd.mp4
2015-07-18 15:49 - 2015-07-18 15:49 - 07369810 _____ C:\Documents and Settings\TheSeex\Dokumenty\Londrina Solid.zip
2015-07-18 11:39 - 2015-07-18 11:59 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Genymobile
2015-07-18 11:39 - 2015-07-18 11:54 - 00000000 ____D C:\Documents and Settings\TheSeex\.VirtualBox
2015-07-18 11:37 - 2013-04-12 12:33 - 00188176 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
2015-07-18 11:36 - 2013-04-12 12:33 - 00094480 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2015-07-17 21:44 - 2015-08-10 13:36 - 00003858 _____ C:\Documents and Settings\TheSeex\Plocha\DesktopOK.ini
2015-07-17 21:44 - 2015-07-07 08:50 - 00186368 _____ (Nenad Hrg SoftwareOK) C:\Documents and Settings\TheSeex\Plocha\DesktopOK.exe
2015-07-16 09:44 - 2015-08-10 17:49 - 00001034 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1957994488-1229272821-725345543-1004UA.job
2015-07-16 09:44 - 2015-08-10 17:49 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-16 09:44 - 2015-08-10 13:36 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-16 09:44 - 2015-08-10 09:49 - 00000982 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1957994488-1229272821-725345543-1004Core.job
2015-07-15 18:21 - 2015-07-15 18:21 - 02734121 _____ C:\Documents and Settings\TheSeex\Dokumenty\GrafikaPreDementov.rar
2015-07-15 17:40 - 2015-07-15 17:40 - 00733443 _____ (Marc Richarme) C:\Documents and Settings\TheSeex\Plocha\_83-.exe
2015-07-15 17:23 - 2015-07-15 17:23 - 00963352 _____ C:\Documents and Settings\TheSeex\Dokumenty\NixoneGrafika.rar
2015-07-15 16:57 - 2015-07-15 16:57 - 00000000 ____D C:\output
2015-07-15 16:56 - 2015-07-15 18:22 - 00006144 ____H C:\Documents and Settings\TheSeex\Dokumenty\photothumb.db
2015-07-14 20:37 - 2015-07-14 20:37 - 00911007 _____ C:\Documents and Settings\TheSeex\Dokumenty\flash_he_smoke_tron.rar
2015-07-12 22:08 - 2015-07-12 22:08 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\Gyazo
2015-07-12 22:06 - 2015-07-12 22:06 - 09987128 _____ (Nota Inc. ) C:\Documents and Settings\TheSeex\Dokumenty\Gyazo-3.1.1.exe
2015-07-12 22:06 - 2015-07-12 22:06 - 00000000 ____D C:\Program Files\Gyazo
2015-07-12 22:06 - 2015-07-12 22:06 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Gyazo
2015-07-12 14:14 - 2015-08-10 18:15 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\TS3Client
2015-07-12 14:13 - 2015-07-12 14:13 - 00000844 _____ C:\Documents and Settings\All Users\Plocha\TeamSpeak 3 Client.lnk
2015-07-12 14:13 - 2015-07-12 14:13 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamSpeak 3 Client
2015-07-12 14:11 - 2015-07-12 14:12 - 28115400 _____ (TeamSpeak Systems GmbH) C:\Documents and Settings\TheSeex\Dokumenty\TeamSpeak3-Client-win32-3.0.16.exe
2015-07-11 13:35 - 2015-07-11 18:18 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\Switchbotv3_0_0_5
2015-07-11 13:35 - 2015-07-11 13:35 - 08660200 _____ C:\Documents and Settings\TheSeex\Dokumenty\girlshare.ro_Switchbotv3_0_0_5.rar
2015-07-11 13:31 - 2015-07-11 13:31 - 01488266 _____ C:\Documents and Settings\TheSeex\Dokumenty\Tools by Unpublished.rar
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-10 18:20 - 2012-09-04 14:47 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Temp
2015-08-10 18:19 - 2012-09-04 14:47 - 00000000 ___HD C:\Documents and Settings\TheSeex\Local Settings\Data aplikací
2015-08-10 18:19 - 2012-09-04 14:47 - 00000000 ____D C:\Documents and Settings\TheSeex\Plocha
2015-08-10 18:13 - 2012-12-28 12:04 - 00000000 ____D C:\Program Files\Steam
2015-08-10 18:08 - 2014-01-15 17:10 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-10 16:56 - 2014-01-15 21:12 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Battle.net
2015-08-10 16:15 - 2012-12-28 12:15 - 00000000 ____D C:\Documents and Settings\TheSeex\Nabídka Start\Programy\Steam
2015-08-10 14:40 - 2012-09-19 13:55 - 00393216 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2015-08-10 13:39 - 2014-01-29 20:18 - 01824761 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-10 13:36 - 2014-10-08 15:10 - 00000226 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-08-10 13:36 - 2014-01-29 14:08 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-08-10 13:36 - 2014-01-29 14:07 - 00000049 _____ C:\WINDOWS\wiaservc.log
2015-08-10 13:36 - 2012-09-05 17:20 - 00013568 _____ (ICSI Technology Ltd.) C:\WINDOWS\system32\Drivers\USBCRFT.SYS
2015-08-10 13:36 - 2012-09-04 14:46 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-10 09:29 - 2012-09-04 14:46 - 00032230 _____ C:\WINDOWS\SchedLgU.Txt
2015-08-10 09:28 - 2012-09-04 14:47 - 00000178 ___SH C:\Documents and Settings\TheSeex\ntuser.ini
2015-08-10 09:11 - 2014-01-10 23:22 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-09 22:10 - 2014-01-12 16:31 - 00000000 ____D C:\AdwCleaner
2015-08-09 22:09 - 2012-09-04 14:47 - 00000000 __RHD C:\Documents and Settings\TheSeex\Data aplikací
2015-08-09 20:41 - 2012-09-04 14:47 - 00000000 ___RD C:\Documents and Settings\TheSeex\Nabídka Start\Programy
2015-08-09 20:41 - 2012-09-04 14:47 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty
2015-08-09 12:07 - 2006-03-02 14:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2015-08-07 10:49 - 2012-09-19 16:47 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\Skype
2015-08-07 09:40 - 2015-07-09 13:48 - 00000167 _____ C:\Documents and Settings\TheSeex\Dokumenty\ClownfishForTeamspeak.ini
2015-08-05 12:56 - 2012-10-25 12:50 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-08-05 09:47 - 2014-01-15 21:12 - 00000000 ____D C:\Program Files\Battle.net
2015-08-02 10:11 - 2014-01-11 09:18 - 00000396 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2015-07-29 19:27 - 2014-01-16 19:29 - 00000000 ____D C:\Program Files\Hearthstone
2015-07-28 19:15 - 2012-09-04 16:33 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-07-27 15:12 - 2012-10-06 19:12 - 00000000 ____D C:\Program Files\Common Files\Steam
2015-07-27 13:30 - 2012-09-25 18:25 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\LogMeIn Hamachi
2015-07-27 13:30 - 2012-09-04 16:33 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-07-26 22:15 - 2012-09-04 14:42 - 00000000 ____D C:\WINDOWS\system32\DirectX
2015-07-25 08:51 - 2014-10-18 13:49 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\PhotoScape
2015-07-25 08:51 - 2012-09-22 15:19 - 00000000 ____D C:\Documents and Settings\TheSeex\Data aplikací\uTorrent
2015-07-25 08:51 - 2012-09-04 14:47 - 00000000 ____D C:\Documents and Settings\TheSeex
2015-07-24 18:56 - 2012-09-19 17:54 - 00000000 ____D C:\Counter-Strike 1.6
2015-07-22 10:45 - 2012-12-31 22:43 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\League of Legends
2015-07-22 10:45 - 2012-09-05 17:08 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-07-19 22:09 - 2012-10-18 20:00 - 00789350 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-1957994488-1229272821-725345543-1004-0.dat
2015-07-19 22:09 - 2012-10-18 19:59 - 00141446 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2015-07-18 11:58 - 2012-11-17 12:36 - 00000000 ____D C:\Program Files\Oracle
2015-07-18 11:57 - 2015-06-28 14:06 - 00000000 ____D C:\Program Files\GameforgeLive
2015-07-15 07:44 - 2012-12-26 14:25 - 00778416 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-07-15 07:44 - 2012-12-26 14:25 - 00142512 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-07-15 07:43 - 2012-09-04 15:37 - 00000000 ____D C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\Adobe
2015-07-14 15:09 - 2015-06-06 09:21 - 41287224 _____ C:\libcef.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 10457856 _____ C:\icudtl.dat
2015-07-14 15:09 - 2015-06-06 09:21 - 07334968 _____ (Spotify Ltd) C:\Spotify.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 04253463 _____ C:\devtools_resources.pak
2015-07-14 15:09 - 2015-06-06 09:21 - 03457592 _____ (Microsoft Corporation) C:\d3dcompiler_47.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 02106424 _____ (Microsoft Corporation) C:\d3dcompiler_43.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 02018406 _____ C:\cef.pak
2015-07-14 15:09 - 2015-06-06 09:21 - 02008632 _____ (Spotify Ltd) C:\SpotifyWebHelper.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 01488440 _____ C:\libGLESv2.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 00968248 _____ (The Chromium Authors) C:\ffmpegsumo.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 00838200 _____ (Spotify Ltd) C:\SpotifyCrashService.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 00598403 _____ C:\cef_200_percent.pak
2015-07-14 15:09 - 2015-06-06 09:21 - 00444515 _____ C:\cef_100_percent.pak
2015-07-14 15:09 - 2015-06-06 09:21 - 00098360 _____ (Spotify Ltd) C:\SpotifyLauncher.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 00079928 _____ C:\libEGL.dll
2015-07-14 15:09 - 2015-06-06 09:21 - 00073272 _____ C:\wow_helper.exe
2015-07-14 15:09 - 2015-06-06 09:21 - 00000020 _____ C:\inst_ver.dat
2015-07-14 15:09 - 2015-06-06 09:21 - 00000000 ____D C:\locales
2015-07-14 11:44 - 2012-11-13 15:48 - 00026176 ____H (LogMeIn, Inc.) C:\WINDOWS\system32\hamachi.sys
2015-07-14 11:44 - 2009-03-18 17:35 - 00026176 ____H (LogMeIn, Inc.) C:\WINDOWS\system32\Drivers\hamachi.sys
2015-07-11 19:38 - 2015-06-28 15:57 - 00000000 ____D C:\Program Files\CS16v36
2015-07-11 18:19 - 2015-07-10 19:13 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\The-Lost-Island-AQUA
2015-07-11 18:16 - 2015-05-24 17:06 - 00000000 ____D C:\Documents and Settings\TheSeex\Dokumenty\kokot
==================== Files in the root of some directories =======
2012-11-17 12:38 - 2012-11-23 16:27 - 0583306 _____ () C:\Documents and Settings\TheSeex\Data aplikací\technic-launcher.jar
2012-11-17 12:38 - 2012-11-17 12:39 - 0579274 _____ () C:\Documents and Settings\TheSeex\Data aplikací\technic-launcher.jar.bak
2012-09-04 17:12 - 2015-07-08 14:58 - 0067072 _____ () C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-09-04 17:07 - 2012-09-04 17:07 - 0040404 _____ () C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\FASTWiz.log
2015-08-10 18:19 - 2015-08-10 18:19 - 0029696 _____ () C:\Documents and Settings\TheSeex\Local Settings\Data aplikací\MSGBOX.EXE
Some files in TEMP:
====================
C:\Documents and Settings\TheSeex\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\TheSeex\Local Settings\Temp\sfamcc00001.dll
C:\Documents and Settings\TheSeex\Local Settings\Temp\sfextra.dll
C:\Documents and Settings\TheSeex\Local Settings\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe
[2006-03-02 14:00] - [2008-04-14 08:52] - 1541120 ____A (Microsoft Corporation) D63C59BB0CA2F83B62D003FD52863090
C:\WINDOWS\system32\winlogon.exe
[2006-03-02 14:00] - [2008-04-14 08:52] - 0547328 ____A (Microsoft Corporation) 471341D353962A35DA3C6324D59D09C4
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll
[2006-03-02 14:00] - [2008-04-14 08:52] - 0578560 ____A (Microsoft Corporation) CCB32D10C69A89822E9134C0C4894BE1
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of log ============================
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vypínání počítače
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "http://www.google.com" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Extension: Ask Shopping Toolbar - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\toolbar_ATU-SAT@apn.ask.com.xpi [2013-06-07]
C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\toolbar_ATU-SAT@apn.ask.com.xpi
FF HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan
FF Extension: McAfee Security Scan Plus - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
CHR HKLM\...\Chrome\Extension: [aaaanakbdgnfidhgjoceaepbljdpfcpl] - C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork\Toolbar\ATU-SAT\CRX\ToolbarCR.crx <not found>
C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath
C:\Documents and Settings\TheSeex\Local Settings\Temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vypínání počítače
Fix result of Farbar Recovery Scan Tool (x86) Version:09-08-2015
Ran by TheSeex (2015-08-10 20:31:38) Run:1
Running from C:\Documents and Settings\TheSeex\Plocha
Loaded Profiles: TheSeex (Available Profiles: TheSeex)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "http://www.google.com" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Extension: Ask Shopping Toolbar - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\toolbar_ATU-SAT@apn.ask.com.xpi [2013-06-07]
C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\toolbar_ATU-SAT@apn.ask.com.xpi
FF HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan
FF Extension: McAfee Security Scan Plus - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
CHR HKLM\...\Chrome\Extension: [aaaanakbdgnfidhgjoceaepbljdpfcpl] - C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork\Toolbar\ATU-SAT\CRX\ToolbarCR.crx <not found>
C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath
C:\Documents and Settings\TheSeex\Local Settings\Temp
End
*****************
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs => value restored successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\toolbar_ATU-SAT@apn.ask.com.xpi => moved successfully.
"C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\toolbar_ATU-SAT@apn.ask.com.xpi" => File/Folder not found.
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\Software\Mozilla\Firefox\Extensions\\{e4f94d1e-2f53-401e-8885-681602c0ddd8} => value removed successfully.
C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan => moved successfully.
C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => not found.
"HKLM\SOFTWARE\Google\Chrome\Extensions\aaaanakbdgnfidhgjoceaepbljdpfcpl" => key removed successfully.
"C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork" => File/Folder not found.
IntelIde => service removed successfully.
WS2IFSL => service removed successfully.
C:\Documents and Settings\TheSeex\Local Settings\Temp => moved successfully.
==== End of Fixlog 20:31:40 ====
Ran by TheSeex (2015-08-10 20:31:38) Run:1
Running from C:\Documents and Settings\TheSeex\Plocha
Loaded Profiles: TheSeex (Available Profiles: TheSeex)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "http://www.google.com" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Extension: Ask Shopping Toolbar - C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\toolbar_ATU-SAT@apn.ask.com.xpi [2013-06-07]
C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\toolbar_ATU-SAT@apn.ask.com.xpi
FF HKU\S-1-5-21-1957994488-1229272821-725345543-1004\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan
FF Extension: McAfee Security Scan Plus - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
CHR HKLM\...\Chrome\Extension: [aaaanakbdgnfidhgjoceaepbljdpfcpl] - C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork\Toolbar\ATU-SAT\CRX\ToolbarCR.crx <not found>
C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath
C:\Documents and Settings\TheSeex\Local Settings\Temp
End
*****************
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs => value restored successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\toolbar_ATU-SAT@apn.ask.com.xpi => moved successfully.
"C:\Documents and Settings\TheSeex\Data aplikací\Mozilla\Firefox\Profiles\5z5mmgch.default\Extensions\toolbar_ATU-SAT@apn.ask.com.xpi" => File/Folder not found.
HKU\S-1-5-21-1957994488-1229272821-725345543-1004\Software\Mozilla\Firefox\Extensions\\{e4f94d1e-2f53-401e-8885-681602c0ddd8} => value removed successfully.
C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan => moved successfully.
C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => not found.
"HKLM\SOFTWARE\Google\Chrome\Extensions\aaaanakbdgnfidhgjoceaepbljdpfcpl" => key removed successfully.
"C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork" => File/Folder not found.
IntelIde => service removed successfully.
WS2IFSL => service removed successfully.
C:\Documents and Settings\TheSeex\Local Settings\Temp => moved successfully.
==== End of Fixlog 20:31:40 ====
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vypínání počítače
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vypínání počítače
Zatím se mi nevypl, tak kdyžtak děkuju, přeji krásný zbytek dne! 
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vypínání počítače
Rádo se stalo a rovněž hezký den! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?