Zavirování - vynechávání klávesnice atd.

[Mirko]

Dobrý den, jsem zde nový. Musím to napsat rychle, dokud mohu, omlouvám se. Pokud je to špatné téma, opět omluva, nehněvejte se a kdyžtak přesuňte. Dále pak jdu nyní do práce (cca v 17h), tak pokud jste ochotni napsat mi jak postupovat, asi nebudu mít jak to provést okamžitě, je možné to udělat třeba zítra dodatečně, až tu budu?? Zobrazí se vám to?

Tolik na úvod, asi trochu kostrbaté, ale spěchám..

Co mě trápí: Poslední dobou se mi zpomaluje PC, net, občas mám přeškrtlé logo připojení k netu, ač připojen jsem, myslel jsem, že je to kabelem, ale není. Po chvíli bez zásahu do kabelů opět připojen. Potom chrčení (chvilku) jako když nabíhají data a PC pracuje, ale přitom nic nehledá a jen je spuštěna např. seznamová domovská stránka, a chrčí. Dneska, před chvílí mi začalo fest blbnout to, že nejde psát. Problikává prohlížeč, jakože je to neaktivní okno a tím pádem nejde nikam nic vepsat. A nejen na netu, ale ani např. ve wordu či notepadu. Navíc ode dneška to po přihlášení chce nesmyslně nový hardware (myš), ačkoli ji používám už dlouhé měsíce, a až dnes to chce instalovat nový HW. Ohledně té neschopnosti psát pomůže jen to, že restartuju systém nebo aspoň prohlížeč. Je to hodně otázek, ale doufám, že si někdo z vás udělá chvilku. A omlouvám se, že nebudu spolupracovat hned nyní, musím do práce, ale v noci z práce se přihlásit mohu z jiného PC. Kdyby bylo něco nejsaného, určitě to mohu upřesnit, vím, že toto je takové narychlo psané a asi zmatečné... Mockrát děkuji za případnou pomoc.


Miroslav

[Rudy]

Zdravím!
Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

[Mirko]

Hezký den. Nejde mi stáhnout FRSTlauncher, píše mi to v okně stahování "Blokováno, může obsahovat viry". Vypl jsem i firewall. První FRST stažený mám..

[Rudy]

Viry, neobsahuje, běžně ho tu používáme. vypněte antivir a stáhněte.

[Mirko]

dOBRÝ VEČER. Já vím, že ne, ale prostě mě to nepustí, když to stáhnu, tak ve stažených je bílý kříž v červeném poli s nápisem blokováno Teď už to zase blblo s tím psaním a nektivními okny, kde ani nejde nic označit, přesto se povedlo zapnout správce úloh a nechápu proč, tam asi 5 zaplých chromů, přitom žádný chrome jsem nespouštěl, není ani v dolní liště otevřených programů...

[Mirko]

Už v pohodě, jdu na scan

[Mirko]

FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:22-10-2015
Ran by Mirek (administrator) on MIRA (24-10-2015 19:27:53)
Running from C:\Documents and Settings\Mirek\Plocha
Loaded Profiles: Mirek (Available Profiles: Mirek & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 7 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Comodo Security Solutions, Inc.) C:\Program Files\Common Files\COMODO\launcher_service.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Comodo Security Solutions, Inc.) C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
() C:\Documents and Settings\Mirek\Data aplikací\Seznam.cz\bin\szndesktop.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Documents and Settings\Mirek\Plocha\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QT Lite\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKU\S-1-5-21-861567501-842925246-682003330-1003\...\Run: [uTorrent] => C:\Documents and Settings\Mirek\Data aplikací\uTorrent\uTorrent.exe [1822048 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-861567501-842925246-682003330-1003\...\Run: [cz.seznam.software.autoupdate] => C:\Documents and Settings\Mirek\Data aplikací\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-861567501-842925246-682003330-1003\...\Run: [cz.seznam.software.szndesktop] => C:\Documents and Settings\Mirek\Data aplikací\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{3D051471-358E-4E7B-936D-272584C91DC7}: [NameServer] 10.1.0.56,10.1.0.20
Tcpip\..\Interfaces\{912994FC-195C-4101-A02D-A9B71DB1CF9B}: [NameServer] 10.1.0.56,10.1.0.20
Tcpip\..\Interfaces\{C0DC6653-53FF-4B92-9288-0928E2C97DE7}: [DhcpNameServer] 10.1.0.36 10.1.0.32

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-861567501-842925246-682003330-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
URLSearchHook: HKLM -> Default = {CCC7B159-1D8C-11E3-B2AD-F3EF3D58318D}
SearchScopes: HKU\S-1-5-21-861567501-842925246-682003330-1003 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&r ... {startPage}
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll => No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-29] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-29] (Oracle Corporation)
BHO: No Name -> {EA837F48-5AD1-443e-AE34-FFE03CBF3099} -> No File
Toolbar: HKLM - No Name - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - No File
Toolbar: HKU\S-1-5-21-861567501-842925246-682003330-1003 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08] (CANON INC.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_15-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_15-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_15-windows-i586.cab

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Mirek\Data aplikací\Mozilla\Firefox\Profiles\81hyhscl.default
FF SelectedSearchEngine:
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-10-02] ()
FF Plugin: @alawar.com/npapi -> C:\WINDOWS\npapi.dll [2014-01-29] (Alawar)
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2009-03-27] (CANON INC.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-01-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-01-29] (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pages.tvunetworks.com/WebPlayer -> C:\WINDOWS\system32\TVUAx\npTVUAx.dll [2010-04-23] (TVU networks)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF SearchPlugin: C:\Documents and Settings\Mirek\Data aplikací\Mozilla\Firefox\Profiles\81hyhscl.default\searchplugins\zbocz.xml [2015-10-19]
FF Extension: Adblock Plus - C:\Documents and Settings\Mirek\Data aplikací\Mozilla\Firefox\Profiles\81hyhscl.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-10-19]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-04-17] [not signed]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKU\.DEFAULT\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => not found
FF HKU\S-1-5-21-861567501-842925246-682003330-1003\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => not found

Chrome:
=======
CHR Profile: C:\Documents and Settings\Mirek\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Documents and Settings\Mirek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-16]
CHR Extension: (Bookmark Manager) - C:\Documents and Settings\Mirek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Mirek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-24]
CHR HKLM\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [mibfbmhijjgpkmobcfdlelpccpeafoom] - <no Path\update_url>

Opera:
=======
OPR Extension: (Game BOX) - C:\Documents and Settings\Mirek\Data aplikací\Opera Software\Opera Stable\Extensions\mibfbmhijjgpkmobcfdlelpccpeafoom [2015-08-06]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 CLPSLauncher; C:\Program Files\Common Files\COMODO\launcher_service.exe [70352 2013-11-28] (Comodo Security Solutions, Inc.)
R2 GeekBuddyRSP; C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2013-11-28] (Comodo Security Solutions, Inc.)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-01-29] (Oracle Corporation)
S3 mnmsrvc; C:\WINDOWS\system32\mnmsrvc.exe [53248 2008-07-30] (Microsoft Corporation) [File not signed]
S3 MSDTC; C:\WINDOWS\system32\msdtc.exe [31744 2008-07-30] (Microsoft Corporation) [File not signed]
R2 NWCWorkstation; C:\WINDOWS\System32\nwwks.dll [65536 2008-04-14] (Microsoft Corporation)
S2 cmdAgent; "C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe" [X]
S3 cmdvirth; "C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe" [X]
S2 Update Jotzey; "C:\Program Files\Jotzey\updateJotzey.exe" [X]
S2 Update Surftastic; "C:\Program Files\Surftastic\updateSurftastic.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 CFRMD; C:\WINDOWS\System32\DRIVERS\CFRMD.sys [36112 2013-05-07] (Windows (R) Win 7 DDK provider)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [18528 2013-06-18] (COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [587352 2013-07-08] (COMODO)
R1 cmdHlp; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [32816 2013-06-18] (COMODO)
R3 HDAudBus; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [138752 2005-01-07] (Windows (R) Server 2003 DDK provider) [File not signed]
R1 HMD; C:\WINDOWS\System32\DRIVERS\hmd.sys [14272 2013-10-07] ()
R0 Inspect; C:\WINDOWS\System32\DRIVERS\inspect.sys [99520 2013-06-18] (COMODO)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R0 nvatabus; C:\WINDOWS\system32\Drivers\nvatabus.sys [100736 2008-07-30] (NVIDIA Corporation) [File not signed]
R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [128672 2013-02-25] (NVIDIA Corporation)
R2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-14] (Microsoft Corporation)
R2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2001-10-25] (Microsoft Corporation)
R2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2001-10-25] (Microsoft Corporation)
R3 NWRDR; C:\WINDOWS\System32\DRIVERS\nwrdr.sys [163584 2008-04-14] (Microsoft Corporation)
S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2008-04-13] (Realtek Semiconductor Corporation)
R2 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [13120 2013-08-25] ()
R3 yukonwxp; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [244864 2006-06-29] (Marvell)
S3 ZD1211BU(TP-LINK); C:\WINDOWS\System32\DRIVERS\zd1211Bu.sys [500736 2007-06-25] (Atheros Technology Corporation) [File not signed]
S4 sptd; \SystemRoot\System32\Drivers\sptd.sys [X]
S1 {a398d4bf-ac93-41b8-983d-d3185c8c4cc1}t; system32\drivers\{a398d4bf-ac93-41b8-983d-d3185c8c4cc1}t.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-24 19:27 - 2015-10-24 19:28 - 00013348 _____ C:\Documents and Settings\Mirek\Plocha\FRST.txt
2015-10-24 19:17 - 2015-10-24 19:25 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Mirek\Plocha\FRSTLauncher.exe
2015-10-23 13:37 - 2015-10-24 19:27 - 00000000 ____D C:\FRST
2015-10-23 13:36 - 2015-10-23 13:37 - 01700352 _____ (Farbar) C:\Documents and Settings\Mirek\Plocha\FRST.exe
2015-10-21 13:56 - 2015-10-24 18:53 - 00000362 _____ C:\WINDOWS\setupact.log
2015-10-21 13:56 - 2015-10-21 13:56 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-10-20 23:44 - 2015-10-20 23:44 - 00000403 _____ C:\WINDOWS\wmsetup.log
2015-10-20 15:29 - 2015-10-20 15:31 - 00000000 ____D C:\AdwCleaner
2015-10-20 14:57 - 2015-10-20 14:57 - 00262144 _____ C:\WINDOWS\system32\config\elam
2015-10-20 14:57 - 2015-10-20 14:57 - 00001024 ____H C:\WINDOWS\system32\config\elam.LOG
2015-10-20 14:44 - 2015-10-20 14:44 - 00000000 ____D C:\Documents and Settings\All Users\Kaspersky Lab Setup Files
2015-10-20 14:41 - 2015-10-24 18:55 - 00125000 _____ C:\WINDOWS\setupapi.log
2015-10-19 23:21 - 2015-10-19 23:21 - 00000677 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Mozilla Firefox.lnk
2015-10-19 23:15 - 2015-10-24 18:56 - 00001826 _____ C:\Documents and Settings\Default User\Plocha\Google Chrome.lnk
2015-10-19 23:12 - 2015-10-24 18:55 - 00001044 _____ C:\WINDOWS\Tasks\jlDuqCFnZCIhMc8vOVNp1w.job
2015-10-19 23:12 - 2015-10-24 18:55 - 00001040 _____ C:\WINDOWS\Tasks\aCqaGhAReBSZ9VLVI0IZ.job
2015-10-19 23:11 - 2015-10-20 15:00 - 00000004 _____ C:\WINDOWS\system32\029B560A371F4E00AB32838EBC01B9E7
2015-10-19 23:11 - 2015-10-19 23:11 - 00000000 ____D C:\Program Files\677366c0-a514-4515-bfa3-5503f8439cd0
2015-10-19 22:59 - 2015-10-19 23:20 - 00000000 ____D C:\Program Files\a2 free
2015-10-16 20:35 - 2015-10-17 11:56 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-12 19:57 - 2015-10-12 19:57 - 00000788 _____ C:\Documents and Settings\Mirek\Plocha\Skřítci.lnk
2015-10-08 15:31 - 2015-10-19 23:21 - 00000000 ____D C:\Documents and Settings\Mirek\Nabídka Start\Programy\Hry.cz
2015-10-08 15:30 - 2015-10-19 23:22 - 00000000 ____D C:\Program Files\Hry.cz
2015-10-07 10:38 - 2015-10-07 10:50 - 00000000 ____D C:\Documents and Settings\Mirek\Plocha\cdauto
2015-10-06 21:55 - 2015-10-06 21:55 - 00328010 _____ C:\Documents and Settings\Mirek\Plocha\Pro Míru rozpis.xlsx
2015-09-29 13:45 - 2015-09-29 13:45 - 00001919 _____ C:\WINDOWS\epplauncher.mif
2015-09-29 13:44 - 2015-09-29 13:44 - 11475768 _____ (Microsoft Corporation) C:\Documents and Settings\Mirek\Plocha\MSEInstall_x86_cs_cz.exe
2015-09-26 11:56 - 2015-09-26 11:56 - 00306748 _____ C:\Documents and Settings\Mirek\Plocha\Pro Míru.xlsx

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-24 19:28 - 2014-02-13 18:08 - 00000000 ____D C:\Documents and Settings\Mirek\Local Settings\Temp
2015-10-24 19:27 - 2010-04-09 21:56 - 00000000 ____D C:\Documents and Settings\Mirek\Plocha
2015-10-24 19:25 - 2014-10-17 14:37 - 00031250 _____ C:\WINDOWS\system32\nvAppTimestamps
2015-10-24 19:25 - 2010-04-09 21:56 - 00000000 ___HD C:\Documents and Settings\Mirek\Local Settings\Data aplikací
2015-10-24 19:15 - 2010-04-09 21:56 - 00000000 ___RD C:\Documents and Settings\Mirek\Dokumenty
2015-10-24 19:13 - 2012-01-27 03:01 - 00000000 ____D C:\Documents and Settings\Mirek\Plocha\učení
2015-10-24 19:03 - 2014-03-26 12:03 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-24 19:00 - 2013-03-06 14:14 - 00000000 ____D C:\Documents and Settings\Mirek\Data aplikací\Seznam.cz
2015-10-24 18:56 - 2011-03-20 16:24 - 00000000 ____D C:\Documents and Settings\Mirek\Data aplikací\uTorrent
2015-10-24 18:55 - 2014-10-15 16:48 - 00032456 _____ C:\WINDOWS\SchedLgU.Txt
2015-10-24 18:55 - 2014-03-26 12:03 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-24 18:54 - 2014-10-15 14:02 - 01757806 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-24 18:53 - 2014-10-15 16:48 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-10-24 18:53 - 2014-10-15 16:48 - 00000050 _____ C:\WINDOWS\wiaservc.log
2015-10-24 18:53 - 2010-04-09 21:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-24 18:53 - 2001-10-25 18:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2015-10-23 22:42 - 2010-04-09 21:56 - 00000178 ___SH C:\Documents and Settings\Mirek\ntuser.ini
2015-10-23 18:52 - 2010-04-09 23:16 - 00000000 ___RD C:\Documents and Settings\Mirek\Plocha\mp3
2015-10-23 13:46 - 2010-04-09 23:21 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2015-10-23 13:46 - 2010-04-09 21:56 - 00000000 __RHD C:\Documents and Settings\Mirek\Data aplikací
2015-10-23 13:46 - 2010-04-09 21:56 - 00000000 ___RD C:\Documents and Settings\Mirek\Nabídka Start
2015-10-21 13:50 - 2013-02-09 22:26 - 00001984 _____ C:\WINDOWS\system32\d3d9caps.dat
2015-10-21 00:38 - 2010-04-11 11:41 - 04272558 ___SH C:\Documents and Settings\Mirek\Plocha\Thumbs.db
2015-10-20 15:32 - 2014-03-26 12:04 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2015-10-20 15:32 - 2012-01-16 14:01 - 00264294 ____C C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2015-10-20 15:32 - 2010-04-09 21:56 - 00000000 ___RD C:\Documents and Settings\Mirek\Nabídka Start\Programy
2015-10-20 15:32 - 2010-04-09 21:56 - 00000000 ____D C:\Documents and Settings\Mirek
2015-10-20 15:31 - 2014-03-24 14:34 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací
2015-10-20 15:05 - 2010-04-09 23:22 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-10-20 15:05 - 2010-04-09 23:22 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-10-20 15:00 - 2015-04-10 22:40 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Datamngr
2015-10-20 14:40 - 2014-03-24 14:34 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0
2015-10-20 14:40 - 2014-03-24 14:34 - 00000000 ____D C:\Documents and Settings\HelpAssistant
2015-10-20 14:40 - 2014-03-24 14:34 - 00000000 ____D C:\Documents and Settings\Guest
2015-10-20 14:40 - 2014-03-24 14:34 - 00000000 ____D C:\Documents and Settings\ASPNET
2015-10-20 14:40 - 2014-03-24 14:34 - 00000000 ____D C:\Documents and Settings\Administrator
2015-10-19 23:21 - 2010-04-09 21:56 - 00000000 ___RD C:\Documents and Settings\Mirek\Nabídka Start\Programy\Po spuštění
2015-10-19 23:15 - 2010-04-09 23:22 - 00000000 ____D C:\Documents and Settings\Default User\Plocha
2015-10-19 21:53 - 2015-08-10 20:06 - 00035328 ____H C:\Documents and Settings\Mirek\Dokumenty\~WRL0764.tmp
2015-10-19 20:34 - 2015-08-10 20:06 - 00034816 ____H C:\Documents and Settings\Mirek\Dokumenty\~WRL1050.tmp
2015-10-19 20:31 - 2015-08-10 20:06 - 00034816 ____H C:\Documents and Settings\Mirek\Dokumenty\~WRL2963.tmp
2015-10-19 20:30 - 2015-08-10 20:06 - 00034816 ____H C:\Documents and Settings\Mirek\Dokumenty\~WRL0004.tmp
2015-10-17 21:53 - 2013-12-26 22:11 - 00000000 ____D C:\Documents and Settings\Mirek\Data aplikací\vlc
2015-10-17 17:47 - 2015-06-17 13:45 - 00000284 _____ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2015-10-17 11:56 - 2015-01-13 00:02 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-14 22:55 - 2012-03-13 02:28 - 00000000 ____D C:\Documents and Settings\Mirek\Dokumenty\turk
2015-10-14 22:47 - 2010-04-09 23:15 - 00000000 ___RD C:\Documents and Settings\Mirek\Dokumenty\plocha stará
2015-10-14 14:14 - 2013-12-08 10:21 - 00216465 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2015-10-12 20:03 - 2014-11-12 14:00 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\SugarGames
2015-10-12 20:02 - 2014-02-16 14:22 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
2015-10-12 20:02 - 2010-04-09 23:22 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2015-10-09 23:52 - 2015-06-03 18:22 - 00000000 ____D C:\Documents and Settings\Mirek\Dokumenty\Evropské poháry 2015-2016
2015-10-06 23:56 - 2015-08-10 20:06 - 00034816 ____H C:\Documents and Settings\Mirek\Dokumenty\~WRL0002.tmp
2015-10-02 21:59 - 2011-10-27 15:04 - 00000000 ___HD C:\Documents and Settings\Mirek\Plocha\.picasaoriginals
2015-10-02 21:45 - 2014-07-01 22:21 - 00000000 ____D C:\Documents and Settings\Mirek\Local Settings\Data aplikací\Adobe
2015-10-02 20:58 - 2012-05-25 23:17 - 00780488 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-02 20:58 - 2012-05-25 23:17 - 00142536 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-10-01 12:42 - 2012-04-27 12:31 - 00000000 ___RD C:\Documents and Settings\Mirek\Plocha\propaganda
2015-09-28 16:57 - 2013-12-04 18:47 - 00000000 ____D C:\Documents and Settings\Mirek\Dokumenty\Stažené soubory

==================== Files in the root of some directories =======

2010-12-06 18:27 - 2010-12-06 18:27 - 0330467 ____C () C:\Program Files\GGT.zip
2010-10-13 09:41 - 2010-10-13 09:41 - 0000000 ____C () C:\Program Files\scconf.txt
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Documents and Settings\Mirek\Data aplikací\aCqaGhAReBSZ9VLVI0IZ
2014-02-21 14:55 - 2014-02-21 14:55 - 0105727 _____ () C:\Documents and Settings\Mirek\Data aplikací\crashdump-2014-02-21-13-55.dmp
2015-04-14 18:28 - 2015-04-14 18:28 - 0004387 _____ () C:\Documents and Settings\Mirek\Data aplikací\jlDuqCFnZCIhMc8vOVNp1w
2015-04-20 16:05 - 2015-04-20 16:05 - 1246720 _____ () C:\Documents and Settings\Mirek\Data aplikací\jlDuqCFnZCIhMc8vOVNp1w.exe
2014-02-20 15:21 - 2014-02-22 19:41 - 1499429 _____ () C:\Documents and Settings\Mirek\Data aplikací\log.sflog
2013-12-18 14:52 - 2013-12-18 14:52 - 0000052 _____ () C:\Documents and Settings\Mirek\Data aplikací\mbam.context.scan
2012-06-28 22:37 - 2012-06-28 22:37 - 0000203 ____C () C:\Documents and Settings\Mirek\Data aplikací\OpenSceneryX Installer.plist
2010-06-18 14:00 - 2015-09-14 16:49 - 0096256 _____ () C:\Documents and Settings\Mirek\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2005-07-27 23:24 - 2005-07-27 23:24 - 0000071 ____C () C:\Documents and Settings\Mirek\Local Settings\Data aplikací\FASTWiz.log
2015-08-11 13:58 - 2015-08-11 13:58 - 0003072 _____ () C:\Documents and Settings\Mirek\Local Settings\Data aplikací\file__0.localstorage
2014-03-24 13:05 - 2014-03-24 13:05 - 0000125 _____ () C:\Documents and Settings\Mirek\Local Settings\Data aplikací\fusioncache.dat

Some files in TEMP:
====================
C:\Documents and Settings\Mirek\Local Settings\Temp\amt_oursurfing.exe
C:\Documents and Settings\Mirek\Local Settings\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe
[2008-07-30 10:10] - [2008-07-30 10:10] - 1589760 ____A (Microsoft Corporation) DD7E25E20AEBD672DAE7E1D911C2D824

C:\WINDOWS\system32\winlogon.exe
[2008-07-30 10:17] - [2008-07-30 10:17] - 0557056 ____A (Microsoft Corporation) 12A799AD9415AE9C8ABCC5F75E9CF034

C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll
[2008-07-30 10:16] - [2008-07-30 10:16] - 0578560 ____A (Microsoft Corporation) CCB32D10C69A89822E9134C0C4894BE1

C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Tento počítač) (Fixed) (Total:113.2 GB) (Free:45.78 GB) NTFS ==>[drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:6.83 GB) (Free:6.69 GB) NTFS
Drive i: (DATA) (Fixed) (Total:112.85 GB) (Free:100.34 GB) NTFS
Drive j: (FIFAPCCD) (CDROM) (Total:0.44 GB) (Free:0 GB) CDFS

Available physical RAM: 1235.25 MB
Total physical RAM: 2047.48 MB
Percentage of memory in use: 39%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 232.9 GB) (Disk ID: C5BC1D68)
Partition 1: (Not Active) - (Size=6.8 GB) - (Type=05)
Partition 2: (Active) - (Size=113.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=112.9 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\aCqaGhAReBSZ9VLVI0IZ.job => C:\Documents and Settings\Mirek\Data aplikac\aCqaGhAReBSZ9VLVI0IZ.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\jlDuqCFnZCIhMc8vOVNp1w.job => C:\Documents and Settings\Mirek\Data aplikac\jlDuqCFnZCIhMc8vOVNp1w.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Documents and Settings\Mirek:gs5sys
AlternateDataStreams: C:\Documents and Settings\All Users\Šablony:gs5sys
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\desktop.ini:gs5sys
AlternateDataStreams: C:\Documents and Settings\All Users\Dokumenty\desktop.ini:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Cookies:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Plocha:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Šablony:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Data aplikací\desktop.ini:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Local Settings\Data aplikací:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Local Settings\History:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Dokumenty\desktop.ini:gs5sys

==================== Security Center ==================

AV: COMODO Antivirus (Enabled - Up to date) {043803A5-4F86-4ef7-AFC5-F6E02A79969B}
FW: COMODO Firewall (Disabled) {043803A3-4F86-4ef6-AFC5-F6E02A79969B}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\Mirek\Plocha" je 16965 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu
C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe
C:\WINDOWS\system32\ctfmon.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter
RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL
Reim ECHO je vypnut.


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Winamp\\winamp.exe"="C:\\Program Files\\Winamp\\winamp.exe:*:Enabled:Winamp"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\WINDOWS\\system32\\msiexec.exe"="C:\\WINDOWS\\system32\\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\\Program Files\\Opera\\opera.exe"="C:\\Program Files\\Opera\\opera.exe:*:Enabled:Opera Internet Browser"
"C:\\Program Files\\AVG\\AVG2013\\avgmfapx.exe"="C:\\Program Files\\AVG\\AVG2013\\avgmfapx.exe:*:Enabled:Instaltor AVG"
"C:\\Program Files\\Pinnacle\\VideoSpin\\Programs\\RM.exe"="C:\\Program Files\\Pinnacle\\VideoSpin\\Programs\\RM.exe:*:Enabled:Render Manager"
"C:\\Program Files\\Pinnacle\\VideoSpin\\Programs\\umi.exe"="C:\\Program Files\\Pinnacle\\VideoSpin\\Programs\\umi.exe:*:Enabled:umi"
"C:\\Program Files\\Pinnacle\\VideoSpin\\Programs\\VideoSpin.exe"="C:\\Program Files\\Pinnacle\\VideoSpin\\Programs\\VideoSpin.exe:*:Enabled:Pinnacle VideoSpin"
"C:\\Program Files\\GoforFiles\\goforfilesdl.exe"="C:\\Program Files\\GoforFiles\\goforfilesdl.exe:*:Enabled:GoforFiles"
"C:\\Program Files\\GoforFiles\\GoforFiles.exe"="C:\\Program Files\\GoforFiles\\GoforFiles.exe:*:Enabled:GoforFiles"
"C:\\Program Files\\PCData\\cudaminer.exe"="C:\\Program Files\\PCData\\cudaminer.exe:*:Enabled:NProxy"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"
"C:\\Documents and Settings\\Mirek\\Data aplikac\\uTorrent\\uTorrent.exe"="C:\\Documents and Settings\\Mirek\\Data aplikac\\uTorrent\\uTorrent.exe:*:Enabled:Torrent"
"C:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"="C:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe:*:Enabled:WebKit"
"C:\\Program Files\\Hry.cz\\Brownies\\Brownies.exe"="C:\\Program Files\\Hry.cz\\Brownies\\Brownies.exe:*:Enabled:Brownies.exe"
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox (C:\\Program Files\\Mozilla Firefox)"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"
"139:TCP"="139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002"


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000


==================== End Of Log ==============================



Add.:


Additional scan result of Farbar Recovery Scan Tool (x86) Version:22-10-2015
Ran by Mirek (2015-10-24 19:28:45)
Running from C:\Documents and Settings\Mirek\Plocha
Systém Microsoft Windows XP Professional Service Pack 3 (X86) (2010-04-09 19:47:00)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-861567501-842925246-682003330-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator.MIRA
ASPNET (S-1-5-21-861567501-842925246-682003330-1022 - Limited - Enabled)
Guest (S-1-5-21-861567501-842925246-682003330-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-861567501-842925246-682003330-1000 - Limited - Disabled)
Mirek (S-1-5-21-861567501-842925246-682003330-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Mirek
SUPPORT_388945a0 (S-1-5-21-861567501-842925246-682003330-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: COMODO Antivirus (Enabled - Up to date) {043803A5-4F86-4ef7-AFC5-F6E02A79969B}
FW: COMODO Firewall (Disabled) {043803A3-4F86-4ef6-AFC5-F6E02A79969B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-861567501-842925246-682003330-1003\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
7-Zip 4.57 (HKLM\...\7-Zip) (Version: - )
ACE Mega CoDecS Pack (HKLM\...\{FFFF6D5C-E2F1-4B40-BC89-8923312E89EB}}_is1) (Version: 6.03.0911 - ACE DESIGN Software)
Adobe Acrobat 4.0 (HKLM\...\Adobe Acrobat 4.0) (Version: - )
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Aktualizace systému Windows Internet Explorer 7 (KB980182) (HKLM\...\KB980182-IE7) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB952069) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player (KB954155) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player (KB968816) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player (KB973540) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player (KB978695) (HKLM\...\KB978695_WM9) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player 11 (KB954154) (HKLM\...\KB954154_WM11) (Version: - Microsoft Corporation)
Aktualizace zabezpečení produktu Windows XP (KB941569) (HKLM\...\KB941569) (Version: - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2898785) (HKLM\...\KB2898785-IE7) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB938127-v2) (HKLM\...\KB938127-v2-IE7) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2705219-v2) (HKLM\...\KB2705219-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2723135-v2) (HKLM\...\KB2723135-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2884256) (HKLM\...\KB2884256) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2893984) (HKLM\...\KB2893984) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB923789) (HKLM\...\KB923789) (Version: - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB950760) (HKLM\...\KB950760) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB951066) (HKLM\...\KB951066) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB951748) (HKLM\...\KB951748) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB954459) (HKLM\...\KB954459) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB955069) (HKLM\...\KB955069) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956744) (HKLM\...\KB956744) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956802) (HKLM\...\KB956802) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956803) (HKLM\...\KB956803) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB958644) (HKLM\...\KB958644) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB958869) (HKLM\...\KB958869) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB960225) (HKLM\...\KB960225) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB961501) (HKLM\...\KB961501) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB969947) (HKLM\...\KB969947) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB970238) (HKLM\...\KB970238) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971468) (HKLM\...\KB971468) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971961) (HKLM\...\KB971961) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973354) (HKLM\...\KB973354) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975561) (HKLM\...\KB975561) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975713) (HKLM\...\KB975713) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB977165-v2) (HKLM\...\KB977165-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978037) (HKLM\...\KB978037) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978251) (HKLM\...\KB978251) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978262) (HKLM\...\KB978262) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
AVCHD Video Converter version 6.0.0 (HKLM\...\AVCHD Video Converter_is1) (Version: 6.0.0 - )
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0) (HKLM\...\17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382) (Version: 05/31/2012 7.1.2.0 - Nokia)
Canon Easy-WebPrint EX (HKLM\...\Easy-WebPrint EX) (Version: - )
Canon MP Navigator EX 3.0 (HKLM\...\MP Navigator EX 3.0) (Version: - )
Canon MP550 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP550_series) (Version: - )
Canon Utilities Easy-PhotoPrint EX (HKLM\...\Easy-PhotoPrint EX) (Version: - )
Canon Utilities My Printer (HKLM\...\CanonMyPrinter) (Version: - )
Canon Utilities Solution Menu (HKLM\...\CanonSolutionMenu) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 2.36 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4478 - CDBurnerXP)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
Czech Soccer Manager (HKLM\...\Czech Soccer Manager) (Version: - )
Czech Soccer Manager 2002 FE (HKLM\...\Czech Soccer Manager 2002 FE) (Version: - )
Czech Soccer Manager 2002 Final Edition (HKLM\...\Czech Soccer Manager 2002 Final Editionverze 4.0 (31.3.2006)) (Version: verze 4.0 (31.3.2006) - Petr Vašíček)
Djerba 2005 (HKLM\...\Djerba 2005) (Version: - )
FIFA 99 (HKLM\...\FIFA 99) (Version: - )
FS Scenery Creator (HKLM\...\ST5UNST #1) (Version: - )
FSRepaint (HKLM\...\FSRepaint) (Version: - )
FSRepaint V2.06 (HKLM\...\{14282D93-6BD9-4681-8D7D-7677390A0425}) (Version: 2.06.0000 - Abacus)
Game BOX (HKLM\...\Game BOX) (Version: 1.4.0 - Alawar)
Google Chrome (HKLM\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden
IFDG A319-100 Tunisair (HKLM\...\IFDG A319-100 Tunisair) (Version: - )
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.28 - Irfan Skiljan)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Malwarebytes Anti-Malware verze 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Media Player (HKLM\...\MediaPlayerV1alpha8194) (Version: 1.1 - Media Player) <==== ATTENTION
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Flight Simulator 2002 (HKLM\...\Flight Simulator 8.0) (Version: - )
Microsoft Office Small Business Edition 2003 (HKLM\...\{90CA0405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.9 (HKLM\...\Wudf01009) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 41.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 41.0.2 (x86 cs)) (Version: 41.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla)
mp3-2-wav converter 1.14 (HKLM\...\mp3-2-wav) (Version: - )
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Nokia Connectivity Cable Driver (HKLM\...\{A57025CC-5F2E-4D01-B387-06DB10500D43}) (Version: 7.1.78.0 - Nokia)
Nokia PC Suite (HKLM\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
Nokia PC Suite (Version: 7.1.180.94 - Nokia) Hidden
Notepad++ (HKLM\...\Notepad++) (Version: - )
Nova (HKLM\...\ST5UNST #2) (Version: - )
Oprava Hotfix systému Windows XP (KB942288-v3) (HKLM\...\KB942288-v3) (Version: 3 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB979306) (HKLM\...\KB979306) (Version: 1 - Microsoft Corporation)
PC Connectivity Solution (HKLM\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia)
pdfFactory (HKLM\...\pdfFactory) (Version: - )
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Postranní panel systému Windows (HKLM\...\Windows Sidebar) (Version: 6.0.6001.18000 - Microsoft Corporation)
QT Lite 4.1.0 (HKLM\...\quicktime_lite_is1) (Version: 4.1.0 - )
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
rajče průvodce verze 1.59.25.240 (HKLM\...\rajče.net_is1) (Version: - rajče.net)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.6069 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MP550 series (HKLM\...\Registrace uživatele zařízení Canon MP550 series) (Version: - )
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Roll (HKLM\...\RollerCoaster Tycoon Setup) (Version: - )
Seznam Software (HKU\S-1-5-21-861567501-842925246-682003330-1003\...\SeznamInstall) (Version: - Seznam.cz)
Skřítci (HKU\S-1-5-21-861567501-842925246-682003330-1003\...\Skřítci) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
Version 1.0 (HKLM\...\{A901BF63-29AD-49A3-B067-231925E98B62}_is1) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (HKLM\...\KB952011) (Version: 1.0 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows PowerShell(TM) 1.0 (HKLM\...\KB926139-v2) (Version: 2 - Microsoft Corporation)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
XML Paper Specification Shared Components Pack 1.0 (Version: - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-861567501-842925246-682003330-1003_Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}\InprocServer32 -> C:\Documents and Settings\Mirek\Local Settings\Data aplikací\Google\Update\1.3.21.111\psuser.dll => (the data entry has 7 more characters).

==================== Restore Points =========================

26-07-2015 19:05:30 Kontrolní bod systému
28-07-2015 17:48:33 Kontrolní bod systému
30-07-2015 15:39:57 Kontrolní bod systému
01-08-2015 14:33:39 Kontrolní bod systému
04-08-2015 15:00:21 Kontrolní bod systému
06-08-2015 15:43:39 Kontrolní bod systému
07-08-2015 16:00:31 Kontrolní bod systému
08-08-2015 16:06:58 Kontrolní bod systému
09-08-2015 16:52:30 Kontrolní bod systému
11-08-2015 16:04:07 Kontrolní bod systému
13-08-2015 14:18:15 Kontrolní bod systému
15-08-2015 14:17:14 Kontrolní bod systému
17-08-2015 20:34:33 Kontrolní bod systému
19-08-2015 18:14:18 Kontrolní bod systému
20-08-2015 18:32:40 Kontrolní bod systému
22-08-2015 11:22:20 Kontrolní bod systému
23-08-2015 12:39:54 Kontrolní bod systému
24-08-2015 17:16:43 Kontrolní bod systému
25-08-2015 19:00:06 Kontrolní bod systému
26-08-2015 21:35:24 Kontrolní bod systému
28-08-2015 15:50:00 Kontrolní bod systému
29-08-2015 19:47:18 Kontrolní bod systému
30-08-2015 19:48:42 Kontrolní bod systému
31-08-2015 20:50:18 Kontrolní bod systému
03-09-2015 13:03:29 Kontrolní bod systému
04-09-2015 17:37:03 Kontrolní bod systému
05-09-2015 19:26:35 Kontrolní bod systému
07-09-2015 16:37:02 Kontrolní bod systému
09-09-2015 12:39:59 Kontrolní bod systému
10-09-2015 12:50:31 Kontrolní bod systému
11-09-2015 17:45:30 Kontrolní bod systému
12-09-2015 18:43:06 Kontrolní bod systému
14-09-2015 12:47:00 Kontrolní bod systému
15-09-2015 15:04:47 Kontrolní bod systému
16-09-2015 15:49:31 Kontrolní bod systému
17-09-2015 16:17:59 Kontrolní bod systému
18-09-2015 17:59:01 Kontrolní bod systému
20-09-2015 17:55:14 Kontrolní bod systému
22-09-2015 12:52:48 Kontrolní bod systému
23-09-2015 15:22:38 Kontrolní bod systému
25-09-2015 14:24:32 Kontrolní bod systému
26-09-2015 17:40:44 Kontrolní bod systému
27-09-2015 17:47:40 Kontrolní bod systému
29-09-2015 13:33:10 Kontrolní bod systému
01-10-2015 13:31:24 Kontrolní bod systému
02-10-2015 13:35:09 Kontrolní bod systému
03-10-2015 16:05:30 Kontrolní bod systému
04-10-2015 21:29:25 Kontrolní bod systému
06-10-2015 17:46:11 Kontrolní bod systému
07-10-2015 22:05:10 Kontrolní bod systému
09-10-2015 13:00:05 Kontrolní bod systému
12-10-2015 13:19:56 Kontrolní bod systému
14-10-2015 13:52:01 Kontrolní bod systému
15-10-2015 17:05:13 Kontrolní bod systému
17-10-2015 13:08:04 Kontrolní bod systému
18-10-2015 19:19:02 Kontrolní bod systému
19-10-2015 23:23:10 Removed UpdateAdmin
20-10-2015 14:40:21 First Restore Point
20-10-2015 15:06:14 Odebráno Kaspersky Anti-Virus.
21-10-2015 13:52:25 Odebráno Kaspersky Anti-Virus.
22-10-2015 00:01:14 Instalace nepodepsaného ovladače
23-10-2015 15:47:23 Kontrolní bod systému

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2001-10-25 18:00 - 2014-02-26 17:30 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\aCqaGhAReBSZ9VLVI0IZ.job => C:\Documents and Settings\Mirek\Data aplikac\aCqaGhAReBSZ9VLVI0IZ.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\jlDuqCFnZCIhMc8vOVNp1w.job => C:\Documents and Settings\Mirek\Data aplikac\jlDuqCFnZCIhMc8vOVNp1w.exe

==================== Loaded Modules (Whitelisted) ==============

2015-10-19 23:14 - 2015-05-26 13:37 - 00078504 _____ () C:\Documents and Settings\Mirek\Data aplikací\Seznam.cz\bin\532libfoxloader.dll
2008-04-14 10:51 - 2008-04-14 10:51 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2015-01-06 02:34 - 2004-11-06 10:08 - 00065536 _____ () C:\Program Files\ACE Mega CoDecS Pack\SystemS\XviD\xvid.ax
2015-10-19 23:13 - 2015-05-26 13:38 - 00457384 _____ () C:\Documents and Settings\Mirek\Data aplikací\Seznam.cz\bin\szndesktop.exe
2015-10-19 23:13 - 2015-05-26 13:38 - 00862888 _____ () C:\Documents and Settings\Mirek\Data aplikací\Seznam.cz\bin\lightspeed.dll
2015-10-19 23:13 - 2015-02-17 10:35 - 00764416 _____ () C:\Documents and Settings\Mirek\Data aplikací\Seznam.cz\bin\libchinst.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Documents and Settings\Mirek:gs5sys
AlternateDataStreams: C:\Documents and Settings\All Users\Šablony:gs5sys
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\desktop.ini:gs5sys
AlternateDataStreams: C:\Documents and Settings\All Users\Dokumenty\desktop.ini:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Cookies:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Plocha:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Šablony:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Data aplikací\desktop.ini:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Local Settings\Data aplikací:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Local Settings\History:gs5sys
AlternateDataStreams: C:\Documents and Settings\Mirek\Dokumenty\desktop.ini:gs5sys

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-861567501-842925246-682003330-1003\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\Mirek\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
DNS Servers: 10.1.0.56 - 10.1.0.20
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
MSCONFIG\startupreg: CanonSolutionMenu => C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
MSCONFIG\startupreg: ctfmon.exe => C:\WINDOWS\system32\ctfmon.exe
MSCONFIG\startupreg: NvCplDaemon => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
MSCONFIG\startupreg: NvMediaCenter => RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
MSCONFIG\startupreg: RTHDCPL => RTHDCPL.EXE

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

DomainProfile\AuthorizedApplications: [C:\Program Files\Winamp\winamp.exe] => Enabled:Winamp
StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\msiexec.exe] => Enabled:UpdateManagerSetup
StandardProfile\AuthorizedApplications: [C:\Program Files\Opera\opera.exe] => Enabled:Opera Internet Browser
StandardProfile\AuthorizedApplications: [C:\Program Files\AVG\AVG2013\avgmfapx.exe] => Enabled:Instalátor AVG
StandardProfile\AuthorizedApplications: [C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe] => Enabled:Render Manager
StandardProfile\AuthorizedApplications: [C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe] => Enabled:umi
StandardProfile\AuthorizedApplications: [C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe] => Enabled:Pinnacle VideoSpin
StandardProfile\AuthorizedApplications: [C:\Program Files\GoforFiles\goforfilesdl.exe] => Enabled:GoforFiles
StandardProfile\AuthorizedApplications: [C:\Program Files\GoforFiles\GoforFiles.exe] => Enabled:GoforFiles
StandardProfile\AuthorizedApplications: [C:\Program Files\PCData\cudaminer.exe] => Enabled:NProxy
StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Chrome\Application\chrome.exe] => Enabled:Google Chrome
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\Mirek\Data aplikací\uTorrent\uTorrent.exe] => Enabled:μTorrent
StandardProfile\AuthorizedApplications: [C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe] => Enabled:WebKit
StandardProfile\AuthorizedApplications: [C:\Program Files\Hry.cz\Brownies\Brownies.exe] => Enabled:Brownies.exe
StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Program Files\Mozilla Firefox)
DomainProfile\GloballyOpenPorts: [3389:TCP] => Enabled:@xpsp2res.dll,-22009
StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007
StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008
StandardProfile\GloballyOpenPorts: [3389:TCP] => Enabled:@xpsp2res.dll,-22009
StandardProfile\GloballyOpenPorts: [139:TCP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22004
StandardProfile\GloballyOpenPorts: [445:TCP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22005
StandardProfile\GloballyOpenPorts: [137:UDP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22001
StandardProfile\GloballyOpenPorts: [138:UDP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22002

==================== Faulty Device Manager Devices =============

Name: Nokia 6230i
Description: Nokia 6230i
Class Guid: {EEC5AD98-8080-425F-922A-DABF3DE3F69A}
Manufacturer: Nokia
Service: WUDFRd
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/24/2015 06:55:38 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Systém Windows se nemůže dotazovat na položku registru DllName pro {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná registrace.

Error: (10/24/2015 06:55:38 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Systém Windows se nemůže dotazovat na položku registru DllName pro {7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná registrace.

Error: (10/24/2015 06:53:15 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Systém Windows se nemůže dotazovat na položku registru DllName pro {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná registrace.

Error: (10/24/2015 06:53:15 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Systém Windows se nemůže dotazovat na položku registru DllName pro {7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná registrace.

Error: (10/23/2015 10:20:37 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Systém Windows se nemůže dotazovat na položku registru DllName pro {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná registrace.

Error: (10/23/2015 10:20:37 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Systém Windows se nemůže dotazovat na položku registru DllName pro {7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná registrace.

Error: (10/23/2015 09:36:37 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Systém Windows se nemůže dotazovat na položku registru DllName pro {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná registrace.

Error: (10/23/2015 09:36:37 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Systém Windows se nemůže dotazovat na položku registru DllName pro {7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná registrace.

Error: (10/23/2015 08:29:37 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Systém Windows se nemůže dotazovat na položku registru DllName pro {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná registrace.

Error: (10/23/2015 08:29:37 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Systém Windows se nemůže dotazovat na položku registru DllName pro {7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná registrace.


System errors:
=============
Error: (10/24/2015 06:53:25 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
{a398d4bf-ac93-41b8-983d-d3185c8c4cc1}t

Error: (10/24/2015 06:53:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Update Surftastic neuspěla při spuštění v důsledku následující chyby:
%%3

Error: (10/24/2015 06:53:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Update Jotzey neuspěla při spuštění v důsledku následující chyby:
%%3

Error: (10/24/2015 06:53:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba COMODO Internet Security Helper Service neuspěla při spuštění v důsledku následující chyby:
%%3

Error: (10/23/2015 01:32:47 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
{a398d4bf-ac93-41b8-983d-d3185c8c4cc1}t

Error: (10/23/2015 01:32:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Update Surftastic neuspěla při spuštění v důsledku následující chyby:
%%3

Error: (10/23/2015 01:32:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Update Jotzey neuspěla při spuštění v důsledku následující chyby:
%%3

Error: (10/23/2015 01:32:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba COMODO Internet Security Helper Service neuspěla při spuštění v důsledku následující chyby:
%%3

Error: (10/22/2015 03:57:38 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
{a398d4bf-ac93-41b8-983d-d3185c8c4cc1}t

Error: (10/22/2015 03:57:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Update Surftastic neuspěla při spuštění v důsledku následující chyby:
%%3


==================== Memory info ===========================

Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4000+
Percentage of memory in use: 39%
Total physical RAM: 2047.48 MB
Available physical RAM: 1235.25 MB
Total Virtual: 3430.19 MB
Available Virtual: 2840.09 MB

==================== Drives ================================

Drive c: (Tento počítač) (Fixed) (Total:113.2 GB) (Free:45.78 GB) NTFS ==>[drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:6.83 GB) (Free:6.69 GB) NTFS
Drive i: (DATA) (Fixed) (Total:112.85 GB) (Free:100.34 GB) NTFS
Drive j: (FIFAPCCD) (CDROM) (Total:0.44 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: C5BC1D68)
Partition 1: (Not Active) - (Size=6.8 GB) - (Type=05)
Partition 2: (Active) - (Size=113.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=112.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[Rudy]

Teď spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[Mirko]

# AdwCleaner v5.014 - Logfile created 24/10/2015 at 20:43:41
# Updated 18/10/2015 by Xplode
# Database : 2015-10-18.5 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : Mirek - MIRA
# Running from : C:\Documents and Settings\Mirek\Plocha\adwcleaner_5.014.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\GeekBuddyRSP
[-] Key Deleted : HKLM\SOFTWARE\DataMngr
[-] Key Deleted : HKLM\SOFTWARE\GeekBuddyRSP

***** [ Web browsers ] *****


*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C4].txt - [797 bytes] ##########

[Rudy]

Dejte nový log FRST.

[Mirko]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:22-10-2015
Ran by Mirek (administrator) on MIRA (24-10-2015 21:02:53)
Running from C:\Documents and Settings\Mirek\Plocha
Loaded Profiles: Mirek (Available Profiles: Mirek & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 7 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Comodo Security Solutions, Inc.) C:\Program Files\Common Files\COMODO\launcher_service.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Comodo Security Solutions, Inc.) C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
() C:\Documents and Settings\Mirek\Data aplikací\Seznam.cz\bin\szndesktop.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QT Lite\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKU\S-1-5-21-861567501-842925246-682003330-1003\...\Run: [uTorrent] => C:\Documents and Settings\Mirek\Data aplikací\uTorrent\uTorrent.exe [1822048 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-861567501-842925246-682003330-1003\...\Run: [cz.seznam.software.autoupdate] => C:\Documents and Settings\Mirek\Data aplikací\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-861567501-842925246-682003330-1003\...\Run: [cz.seznam.software.szndesktop] => C:\Documents and Settings\Mirek\Data aplikací\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{3D051471-358E-4E7B-936D-272584C91DC7}: [NameServer] 10.1.0.56,10.1.0.20
Tcpip\..\Interfaces\{912994FC-195C-4101-A02D-A9B71DB1CF9B}: [NameServer] 10.1.0.56,10.1.0.20
Tcpip\..\Interfaces\{C0DC6653-53FF-4B92-9288-0928E2C97DE7}: [DhcpNameServer] 10.1.0.36 10.1.0.32

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-861567501-842925246-682003330-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
URLSearchHook: HKLM -> Default = {CCC7B159-1D8C-11E3-B2AD-F3EF3D58318D}
SearchScopes: HKU\S-1-5-21-861567501-842925246-682003330-1003 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&r ... {startPage}
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll => No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-29] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-29] (Oracle Corporation)
BHO: No Name -> {EA837F48-5AD1-443e-AE34-FFE03CBF3099} -> No File
Toolbar: HKLM - No Name - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - No File
Toolbar: HKU\S-1-5-21-861567501-842925246-682003330-1003 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08] (CANON INC.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_15-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_15-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_15-windows-i586.cab

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Mirek\Data aplikací\Mozilla\Firefox\Profiles\81hyhscl.default
FF SelectedSearchEngine:
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-10-02] ()
FF Plugin: @alawar.com/npapi -> C:\WINDOWS\npapi.dll [2014-01-29] (Alawar)
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2009-03-27] (CANON INC.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-01-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-01-29] (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pages.tvunetworks.com/WebPlayer -> C:\WINDOWS\system32\TVUAx\npTVUAx.dll [2010-04-23] (TVU networks)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF SearchPlugin: C:\Documents and Settings\Mirek\Data aplikací\Mozilla\Firefox\Profiles\81hyhscl.default\searchplugins\zbocz.xml [2015-10-19]
FF Extension: Adblock Plus - C:\Documents and Settings\Mirek\Data aplikací\Mozilla\Firefox\Profiles\81hyhscl.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-10-19]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-04-17] [not signed]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKU\.DEFAULT\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => not found
FF HKU\S-1-5-21-861567501-842925246-682003330-1003\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => not found

Chrome:
=======
CHR Profile: C:\Documents and Settings\Mirek\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Documents and Settings\Mirek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-16]
CHR Extension: (Bookmark Manager) - C:\Documents and Settings\Mirek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Mirek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-24]
CHR HKLM\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [mibfbmhijjgpkmobcfdlelpccpeafoom] - <no Path\update_url>

Opera:
=======
OPR Extension: (Game BOX) - C:\Documents and Settings\Mirek\Data aplikací\Opera Software\Opera Stable\Extensions\mibfbmhijjgpkmobcfdlelpccpeafoom [2015-08-06]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 CLPSLauncher; C:\Program Files\Common Files\COMODO\launcher_service.exe [70352 2013-11-28] (Comodo Security Solutions, Inc.)
R2 GeekBuddyRSP; C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2013-11-28] (Comodo Security Solutions, Inc.)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-01-29] (Oracle Corporation)
S3 mnmsrvc; C:\WINDOWS\system32\mnmsrvc.exe [53248 2008-07-30] (Microsoft Corporation) [File not signed]
S3 MSDTC; C:\WINDOWS\system32\msdtc.exe [31744 2008-07-30] (Microsoft Corporation) [File not signed]
R2 NWCWorkstation; C:\WINDOWS\System32\nwwks.dll [65536 2008-04-14] (Microsoft Corporation)
S2 cmdAgent; "C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe" [X]
S3 cmdvirth; "C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe" [X]
S2 Update Jotzey; "C:\Program Files\Jotzey\updateJotzey.exe" [X]
S2 Update Surftastic; "C:\Program Files\Surftastic\updateSurftastic.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 CFRMD; C:\WINDOWS\System32\DRIVERS\CFRMD.sys [36112 2013-05-07] (Windows (R) Win 7 DDK provider)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [18528 2013-06-18] (COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [587352 2013-07-08] (COMODO)
R1 cmdHlp; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [32816 2013-06-18] (COMODO)
R3 HDAudBus; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [138752 2005-01-07] (Windows (R) Server 2003 DDK provider) [File not signed]
R1 HMD; C:\WINDOWS\System32\DRIVERS\hmd.sys [14272 2013-10-07] ()
R0 Inspect; C:\WINDOWS\System32\DRIVERS\inspect.sys [99520 2013-06-18] (COMODO)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R0 nvatabus; C:\WINDOWS\system32\Drivers\nvatabus.sys [100736 2008-07-30] (NVIDIA Corporation) [File not signed]
R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [128672 2013-02-25] (NVIDIA Corporation)
R2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-14] (Microsoft Corporation)
R2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2001-10-25] (Microsoft Corporation)
R2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2001-10-25] (Microsoft Corporation)
R3 NWRDR; C:\WINDOWS\System32\DRIVERS\nwrdr.sys [163584 2008-04-14] (Microsoft Corporation)
S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2008-04-13] (Realtek Semiconductor Corporation)
R2 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [13120 2013-08-25] ()
R3 yukonwxp; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [244864 2006-06-29] (Marvell)
S3 ZD1211BU(TP-LINK); C:\WINDOWS\System32\DRIVERS\zd1211Bu.sys [500736 2007-06-25] (Atheros Technology Corporation) [File not signed]
S4 sptd; \SystemRoot\System32\Drivers\sptd.sys [X]
S1 {a398d4bf-ac93-41b8-983d-d3185c8c4cc1}t; system32\drivers\{a398d4bf-ac93-41b8-983d-d3185c8c4cc1}t.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-24 20:14 - 2015-10-24 20:14 - 01691648 _____ C:\Documents and Settings\Mirek\Plocha\adwcleaner_5.014.exe
2015-10-24 19:36 - 2015-10-24 20:01 - 00000000 ____D C:\Documents and Settings\Mirek\Plocha\jp
2015-10-24 19:28 - 2015-10-24 19:29 - 00039635 _____ C:\Documents and Settings\Mirek\Plocha\Addition.txt
2015-10-24 19:27 - 2015-10-24 21:03 - 00013372 _____ C:\Documents and Settings\Mirek\Plocha\FRST.txt
2015-10-24 19:17 - 2015-10-24 19:25 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Mirek\Plocha\FRSTLauncher.exe
2015-10-23 13:37 - 2015-10-24 21:02 - 00000000 ____D C:\FRST
2015-10-23 13:36 - 2015-10-23 13:37 - 01700352 _____ (Farbar) C:\Documents and Settings\Mirek\Plocha\FRST.exe
2015-10-21 13:56 - 2015-10-24 20:45 - 00000403 _____ C:\WINDOWS\setupact.log
2015-10-21 13:56 - 2015-10-21 13:56 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-10-20 23:44 - 2015-10-20 23:44 - 00000403 _____ C:\WINDOWS\wmsetup.log
2015-10-20 15:29 - 2015-10-24 20:43 - 00000000 ____D C:\AdwCleaner
2015-10-20 14:57 - 2015-10-20 14:57 - 00262144 _____ C:\WINDOWS\system32\config\elam
2015-10-20 14:57 - 2015-10-20 14:57 - 00001024 ____H C:\WINDOWS\system32\config\elam.LOG
2015-10-20 14:44 - 2015-10-20 14:44 - 00000000 ____D C:\Documents and Settings\All Users\Kaspersky Lab Setup Files
2015-10-20 14:41 - 2015-10-24 20:45 - 00130723 _____ C:\WINDOWS\setupapi.log
2015-10-19 23:21 - 2015-10-19 23:21 - 00000677 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Mozilla Firefox.lnk
2015-10-19 23:15 - 2015-10-24 20:45 - 00001826 _____ C:\Documents and Settings\Default User\Plocha\Google Chrome.lnk
2015-10-19 23:12 - 2015-10-24 20:45 - 00001044 _____ C:\WINDOWS\Tasks\jlDuqCFnZCIhMc8vOVNp1w.job
2015-10-19 23:12 - 2015-10-24 20:45 - 00001040 _____ C:\WINDOWS\Tasks\aCqaGhAReBSZ9VLVI0IZ.job
2015-10-19 23:11 - 2015-10-20 15:00 - 00000004 _____ C:\WINDOWS\system32\029B560A371F4E00AB32838EBC01B9E7
2015-10-19 23:11 - 2015-10-19 23:11 - 00000000 ____D C:\Program Files\677366c0-a514-4515-bfa3-5503f8439cd0
2015-10-19 22:59 - 2015-10-19 23:20 - 00000000 ____D C:\Program Files\a2 free
2015-10-16 20:35 - 2015-10-17 11:56 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-12 19:57 - 2015-10-12 19:57 - 00000788 _____ C:\Documents and Settings\Mirek\Plocha\Skřítci.lnk
2015-10-08 15:31 - 2015-10-19 23:21 - 00000000 ____D C:\Documents and Settings\Mirek\Nabídka Start\Programy\Hry.cz
2015-10-08 15:30 - 2015-10-19 23:22 - 00000000 ____D C:\Program Files\Hry.cz
2015-10-07 10:38 - 2015-10-07 10:50 - 00000000 ____D C:\Documents and Settings\Mirek\Plocha\cdauto
2015-10-06 21:55 - 2015-10-06 21:55 - 00328010 _____ C:\Documents and Settings\Mirek\Plocha\Pro Míru rozpis.xlsx
2015-09-29 13:45 - 2015-09-29 13:45 - 00001919 _____ C:\WINDOWS\epplauncher.mif
2015-09-29 13:44 - 2015-09-29 13:44 - 11475768 _____ (Microsoft Corporation) C:\Documents and Settings\Mirek\Plocha\MSEInstall_x86_cs_cz.exe
2015-09-26 11:56 - 2015-09-26 11:56 - 00306748 _____ C:\Documents and Settings\Mirek\Plocha\Pro Míru.xlsx

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-24 21:03 - 2014-03-26 12:03 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-24 21:03 - 2014-02-13 18:08 - 00000000 ____D C:\Documents and Settings\Mirek\Local Settings\Temp
2015-10-24 21:02 - 2014-10-17 14:37 - 00031250 _____ C:\WINDOWS\system32\nvAppTimestamps
2015-10-24 20:50 - 2013-03-06 14:14 - 00000000 ____D C:\Documents and Settings\Mirek\Data aplikací\Seznam.cz
2015-10-24 20:45 - 2014-03-26 12:03 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-24 20:45 - 2011-03-20 16:24 - 00000000 ____D C:\Documents and Settings\Mirek\Data aplikací\uTorrent
2015-10-24 20:44 - 2014-10-15 16:48 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-10-24 20:44 - 2014-10-15 16:48 - 00000050 _____ C:\WINDOWS\wiaservc.log
2015-10-24 20:44 - 2010-04-09 21:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-24 20:43 - 2014-10-15 16:48 - 00032456 _____ C:\WINDOWS\SchedLgU.Txt
2015-10-24 20:43 - 2014-10-15 14:02 - 01760984 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-24 20:43 - 2010-04-09 21:56 - 00000178 ___SH C:\Documents and Settings\Mirek\ntuser.ini
2015-10-24 20:14 - 2010-04-09 21:56 - 00000000 ____D C:\Documents and Settings\Mirek\Plocha
2015-10-24 20:03 - 2010-04-09 21:56 - 00000000 ___HD C:\Documents and Settings\Mirek\Local Settings\Data aplikací
2015-10-24 19:29 - 2010-04-09 21:56 - 00000000 ___RD C:\Documents and Settings\Mirek\Dokumenty
2015-10-24 19:13 - 2012-01-27 03:01 - 00000000 ____D C:\Documents and Settings\Mirek\Plocha\učení
2015-10-24 18:53 - 2001-10-25 18:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2015-10-23 18:52 - 2010-04-09 23:16 - 00000000 ___RD C:\Documents and Settings\Mirek\Plocha\mp3
2015-10-23 13:46 - 2010-04-09 23:21 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2015-10-23 13:46 - 2010-04-09 21:56 - 00000000 __RHD C:\Documents and Settings\Mirek\Data aplikací
2015-10-23 13:46 - 2010-04-09 21:56 - 00000000 ___RD C:\Documents and Settings\Mirek\Nabídka Start
2015-10-21 13:50 - 2013-02-09 22:26 - 00001984 _____ C:\WINDOWS\system32\d3d9caps.dat
2015-10-21 00:38 - 2010-04-11 11:41 - 04272558 ___SH C:\Documents and Settings\Mirek\Plocha\Thumbs.db
2015-10-20 15:32 - 2014-03-26 12:04 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2015-10-20 15:32 - 2012-01-16 14:01 - 00264294 ____C C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2015-10-20 15:32 - 2010-04-09 21:56 - 00000000 ___RD C:\Documents and Settings\Mirek\Nabídka Start\Programy
2015-10-20 15:32 - 2010-04-09 21:56 - 00000000 ____D C:\Documents and Settings\Mirek
2015-10-20 15:31 - 2014-03-24 14:34 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací
2015-10-20 15:05 - 2010-04-09 23:22 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-10-20 15:05 - 2010-04-09 23:22 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-10-20 15:00 - 2015-04-10 22:40 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Datamngr
2015-10-20 14:40 - 2014-03-24 14:34 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0
2015-10-20 14:40 - 2014-03-24 14:34 - 00000000 ____D C:\Documents and Settings\HelpAssistant
2015-10-20 14:40 - 2014-03-24 14:34 - 00000000 ____D C:\Documents and Settings\Guest
2015-10-20 14:40 - 2014-03-24 14:34 - 00000000 ____D C:\Documents and Settings\ASPNET
2015-10-20 14:40 - 2014-03-24 14:34 - 00000000 ____D C:\Documents and Settings\Administrator
2015-10-19 23:21 - 2010-04-09 21:56 - 00000000 ___RD C:\Documents and Settings\Mirek\Nabídka Start\Programy\Po spuštění
2015-10-19 23:15 - 2010-04-09 23:22 - 00000000 ____D C:\Documents and Settings\Default User\Plocha
2015-10-19 21:53 - 2015-08-10 20:06 - 00035328 ____H C:\Documents and Settings\Mirek\Dokumenty\~WRL0764.tmp
2015-10-19 20:34 - 2015-08-10 20:06 - 00034816 ____H C:\Documents and Settings\Mirek\Dokumenty\~WRL1050.tmp
2015-10-19 20:31 - 2015-08-10 20:06 - 00034816 ____H C:\Documents and Settings\Mirek\Dokumenty\~WRL2963.tmp
2015-10-19 20:30 - 2015-08-10 20:06 - 00034816 ____H C:\Documents and Settings\Mirek\Dokumenty\~WRL0004.tmp
2015-10-17 21:53 - 2013-12-26 22:11 - 00000000 ____D C:\Documents and Settings\Mirek\Data aplikací\vlc
2015-10-17 17:47 - 2015-06-17 13:45 - 00000284 _____ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2015-10-17 11:56 - 2015-01-13 00:02 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-14 22:55 - 2012-03-13 02:28 - 00000000 ____D C:\Documents and Settings\Mirek\Dokumenty\turk
2015-10-14 22:47 - 2010-04-09 23:15 - 00000000 ___RD C:\Documents and Settings\Mirek\Dokumenty\plocha stará
2015-10-14 14:14 - 2013-12-08 10:21 - 00216465 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2015-10-12 20:03 - 2014-11-12 14:00 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\SugarGames
2015-10-12 20:02 - 2014-02-16 14:22 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
2015-10-12 20:02 - 2010-04-09 23:22 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2015-10-09 23:52 - 2015-06-03 18:22 - 00000000 ____D C:\Documents and Settings\Mirek\Dokumenty\Evropské poháry 2015-2016
2015-10-06 23:56 - 2015-08-10 20:06 - 00034816 ____H C:\Documents and Settings\Mirek\Dokumenty\~WRL0002.tmp
2015-10-02 21:59 - 2011-10-27 15:04 - 00000000 ___HD C:\Documents and Settings\Mirek\Plocha\.picasaoriginals
2015-10-02 21:45 - 2014-07-01 22:21 - 00000000 ____D C:\Documents and Settings\Mirek\Local Settings\Data aplikací\Adobe
2015-10-02 20:58 - 2012-05-25 23:17 - 00780488 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-02 20:58 - 2012-05-25 23:17 - 00142536 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-10-01 12:42 - 2012-04-27 12:31 - 00000000 ___RD C:\Documents and Settings\Mirek\Plocha\propaganda
2015-09-28 16:57 - 2013-12-04 18:47 - 00000000 ____D C:\Documents and Settings\Mirek\Dokumenty\Stažené soubory

==================== Files in the root of some directories =======

2010-12-06 18:27 - 2010-12-06 18:27 - 0330467 ____C () C:\Program Files\GGT.zip
2010-10-13 09:41 - 2010-10-13 09:41 - 0000000 ____C () C:\Program Files\scconf.txt
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Documents and Settings\Mirek\Data aplikací\aCqaGhAReBSZ9VLVI0IZ
2014-02-21 14:55 - 2014-02-21 14:55 - 0105727 _____ () C:\Documents and Settings\Mirek\Data aplikací\crashdump-2014-02-21-13-55.dmp
2015-04-14 18:28 - 2015-04-14 18:28 - 0004387 _____ () C:\Documents and Settings\Mirek\Data aplikací\jlDuqCFnZCIhMc8vOVNp1w
2015-04-20 16:05 - 2015-04-20 16:05 - 1246720 _____ () C:\Documents and Settings\Mirek\Data aplikací\jlDuqCFnZCIhMc8vOVNp1w.exe
2014-02-20 15:21 - 2014-02-22 19:41 - 1499429 _____ () C:\Documents and Settings\Mirek\Data aplikací\log.sflog
2013-12-18 14:52 - 2013-12-18 14:52 - 0000052 _____ () C:\Documents and Settings\Mirek\Data aplikací\mbam.context.scan
2012-06-28 22:37 - 2012-06-28 22:37 - 0000203 ____C () C:\Documents and Settings\Mirek\Data aplikací\OpenSceneryX Installer.plist
2010-06-18 14:00 - 2015-09-14 16:49 - 0096256 _____ () C:\Documents and Settings\Mirek\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2005-07-27 23:24 - 2005-07-27 23:24 - 0000071 ____C () C:\Documents and Settings\Mirek\Local Settings\Data aplikací\FASTWiz.log
2015-08-11 13:58 - 2015-08-11 13:58 - 0003072 _____ () C:\Documents and Settings\Mirek\Local Settings\Data aplikací\file__0.localstorage
2014-03-24 13:05 - 2014-03-24 13:05 - 0000125 _____ () C:\Documents and Settings\Mirek\Local Settings\Data aplikací\fusioncache.dat

Some files in TEMP:
====================
C:\Documents and Settings\Mirek\Local Settings\Temp\amt_oursurfing.exe
C:\Documents and Settings\Mirek\Local Settings\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe
[2008-07-30 10:10] - [2008-07-30 10:10] - 1589760 ____A (Microsoft Corporation) DD7E25E20AEBD672DAE7E1D911C2D824

C:\WINDOWS\system32\winlogon.exe
[2008-07-30 10:17] - [2008-07-30 10:17] - 0557056 ____A (Microsoft Corporation) 12A799AD9415AE9C8ABCC5F75E9CF034

C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll
[2008-07-30 10:16] - [2008-07-30 10:16] - 0578560 ____A (Microsoft Corporation) CCB32D10C69A89822E9134C0C4894BE1

C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-861567501-842925246-682003330-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll => No File
BHO: No Name -> {EA837F48-5AD1-443e-AE34-FFE03CBF3099} -> No File
Toolbar: HKLM - No Name - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - No File
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKU\.DEFAULT\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => not found
FF HKU\S-1-5-21-861567501-842925246-682003330-1003\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => not found
CHR HKLM\...\Chrome\Extension: [mibfbmhijjgpkmobcfdlelpccpeafoom] - <no Path\update_url>
S2 Update Jotzey; "C:\Program Files\Jotzey\updateJotzey.exe" [X]
C:\Program Files\Jotzey
S2 Update Surftastic; "C:\Program Files\Surftastic\updateSurftastic.exe" [X]
C:\Program Files\Surftastic
S1 {a398d4bf-ac93-41b8-983d-d3185c8c4cc1}t; system32\drivers\{a398d4bf-ac93-41b8-983d-d3185c8c4cc1}t.sys [X]
C:\WINDOWS\Tasks\jlDuqCFnZCIhMc8vOVNp1w.job
C:\WINDOWS\Tasks\aCqaGhAReBSZ9VLVI0IZ.job
C:\WINDOWS\system32\029B560A371F4E00AB32838EBC01B9E7
C:\Program Files\677366c0-a514-4515-bfa3-5503f8439cd0
C:\Documents and Settings\Mirek\Data aplikací\aCqaGhAReBSZ9VLVI0IZ
C:\Documents and Settings\Mirek\Data aplikací\jlDuqCFnZCIhMc8vOVNp1w
C:\Documents and Settings\Mirek\Data aplikací\jlDuqCFnZCIhMc8vOVNp1w.exe
C:\Documents and Settings\Mirek\Local Settings\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Mirko]

Fix result of Farbar Recovery Scan Tool (x86) Version:25-10-2015
Ran by Mirek (2015-10-25 15:20:13) Run:1
Running from C:\Documents and Settings\Mirek\Plocha
Loaded Profiles: Mirek (Available Profiles: Mirek & Administrator)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-861567501-842925246-682003330-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll => No File
BHO: No Name -> {EA837F48-5AD1-443e-AE34-FFE03CBF3099} -> No File
Toolbar: HKLM - No Name - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - No File
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKU\.DEFAULT\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => not found
FF HKU\S-1-5-21-861567501-842925246-682003330-1003\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => not found
CHR HKLM\...\Chrome\Extension: [mibfbmhijjgpkmobcfdlelpccpeafoom] - <no Path\update_url>
S2 Update Jotzey; "C:\Program Files\Jotzey\updateJotzey.exe" [X]
C:\Program Files\Jotzey
S2 Update Surftastic; "C:\Program Files\Surftastic\updateSurftastic.exe" [X]
C:\Program Files\Surftastic
S1 {a398d4bf-ac93-41b8-983d-d3185c8c4cc1}t; system32\drivers\{a398d4bf-ac93-41b8-983d-d3185c8c4cc1}t.sys [X]
C:\WINDOWS\Tasks\jlDuqCFnZCIhMc8vOVNp1w.job
C:\WINDOWS\Tasks\aCqaGhAReBSZ9VLVI0IZ.job
C:\WINDOWS\system32\029B560A371F4E00AB32838EBC01B9E7
C:\Program Files\677366c0-a514-4515-bfa3-5503f8439cd0
C:\Documents and Settings\Mirek\Data aplikací\aCqaGhAReBSZ9VLVI0IZ
C:\Documents and Settings\Mirek\Data aplikací\jlDuqCFnZCIhMc8vOVNp1w
C:\Documents and Settings\Mirek\Data aplikací\jlDuqCFnZCIhMc8vOVNp1w.exe
C:\Documents and Settings\Mirek\Local Settings\Temp
End
*****************

"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully.
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
"HKU\S-1-5-21-861567501-842925246-682003330-1003\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}" => key removed successfully.
"HKCR\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443e-AE34-FFE03CBF3099}" => key removed successfully.
HKCR\CLSID\{EA837F48-5AD1-443e-AE34-FFE03CBF3099} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{1EA00BE1-6E54-4E2A-8099-680300BF23E1} => value removed successfully.
HKCR\CLSID\{1EA00BE1-6E54-4E2A-8099-680300BF23E1} => key not found.
HKLM\Software\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => value removed successfully.
HKU\.DEFAULT\Software\Mozilla\Firefox\Extensions\\{e4f94d1e-2f53-401e-8885-681602c0ddd8} => value removed successfully.
HKU\S-1-5-21-861567501-842925246-682003330-1003\Software\Mozilla\Firefox\Extensions\\{e4f94d1e-2f53-401e-8885-681602c0ddd8} => value removed successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\mibfbmhijjgpkmobcfdlelpccpeafoom" => key removed successfully.
Update Jotzey => service removed successfully.
"C:\Program Files\Jotzey" => not found.
Update Surftastic => service removed successfully.
"C:\Program Files\Surftastic" => not found.
{a398d4bf-ac93-41b8-983d-d3185c8c4cc1}t => service removed successfully.
C:\WINDOWS\Tasks\jlDuqCFnZCIhMc8vOVNp1w.job => moved successfully
C:\WINDOWS\Tasks\aCqaGhAReBSZ9VLVI0IZ.job => moved successfully
C:\WINDOWS\system32\029B560A371F4E00AB32838EBC01B9E7 => moved successfully
C:\Program Files\677366c0-a514-4515-bfa3-5503f8439cd0 => moved successfully
C:\Documents and Settings\Mirek\Data aplikací\aCqaGhAReBSZ9VLVI0IZ => moved successfully
C:\Documents and Settings\Mirek\Data aplikací\jlDuqCFnZCIhMc8vOVNp1w => moved successfully
C:\Documents and Settings\Mirek\Data aplikací\jlDuqCFnZCIhMc8vOVNp1w.exe => moved successfully
C:\Documents and Settings\Mirek\Local Settings\Temp => moved successfully

==== End of Fixlog 15:20:15 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[Mirko]

Zatím to neblbne. Děkuji moc Opravdu to dělal ten chrome, který v tu chvíli byl ve správci souborů asi 4x najednou... Přitom spuštěn nebyl. Nevíte, čím to?