Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-01-2015 02
Ran by User (administrator) on TOSHIBA-USER on 14-01-2015 10:19:13
Running from C:\Documents and Settings\User\Desktop
Loaded Profile: User (Available profiles: User & Administrator)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation ) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ABBYY) C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Agere Systems) C:\WINDOWS\system32\agrsmsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\ThpSrv.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\TODDSrv.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtSrv.exe
(Acute Angle Solutions Ltd) C:\Documents and Settings\All Users\Application Data\qEZfLs\YOVfsBE.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\ThpSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\Wireless Hotkey\TosHKCW.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\DDWMon.exe
(TOSHIBA Corp.) C:\WINDOWS\system32\TFNF5.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSServ.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(TOSHIBA) C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(UPEK Inc.) C:\Program Files\Protector Suite QL\psqltray.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(forum.viry.cz) C:\Documents and Settings\User\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [00THotkey] => C:\WINDOWS\system32\00THotkey.exe [258048 2006-07-06] (TOSHIBA Corporation)
HKLM\...\Run: [000StTHK] => C:\WINDOWS\system32\000StTHK.exe [24576 2001-06-23] ()
HKLM\...\Run: [ThpSrv] => C:\WINDOWS\system32\thpsrv /logon
HKLM\...\Run: [SmoothView] => C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe [159744 2007-04-10] (TOSHIBA Corporation)
HKLM\...\Run: [TOSDCR] => C:\WINDOWS\system32\TOSDCR.EXE [57344 2005-12-14] (TOSHIBA Corporation)
HKLM\...\Run: [TosHKCW.exe] => C:\Program Files\TOSHIBA\Wireless Hotkey\TosHKCW.exe [49152 2005-05-18] (TOSHIBA CORPORATION)
HKLM\...\Run: [NDSTray.exe] => NDSTray.exe
HKLM\...\Run: [DDWMon] => C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe [311296 2007-04-14] (TOSHIBA Corporation)
HKLM\...\Run: [TFNF5] => C:\WINDOWS\system32\TFNF5.exe [622592 2006-04-10] (TOSHIBA Corp.)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [196608 2004-03-24] (Alps Electric Co., Ltd.)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16125440 2007-03-12] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [IntelZeroConfig] => C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe [819200 2007-02-21] (Intel Corporation)
HKLM\...\Run: [IntelWireless] => C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [970752 2007-02-21] (Intel Corporation)
HKLM\...\Run: [TPSODDCtl] => C:\WINDOWS\system32\TPSODDCtl.exe [110592 2007-02-02] (TOSHIBA Corporation)
HKLM\...\Run: [TPSMain] => C:\WINDOWS\system32\TPSMain.exe [315392 2006-07-26] (TOSHIBA Corporation)
HKLM\...\Run: [PSQLLauncher] => C:\Program Files\Protector Suite QL\launcher.exe [30208 2006-05-05] (UPEK Inc.)
HKLM\...\Run: [CFSServ.exe] => CFSServ.exe -NoClient
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [979328 2010-08-30] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2007-05-20] (AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM\...\RunOnce: [20150107] => C:\Program Files\AVAST Software\Avast\setup\emupdate\cf905ba3-0704-418a-b0f2-aa41a25d98bd.exe [183232 2015-01-14] (AVAST Software)
Winlogon\Notify\psfus: C:\WINDOWS\system32\psqlpwd.dll (UPEK Inc.)
HKU\S-1-5-21-3639932610-2605202925-3072062717-1008\...\Run: [TOSCDSPD] => C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [65536 2004-12-30] (TOSHIBA)
HKU\S-1-5-18\...\Run: [DWQueuedReporting] => c:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [437160 2007-02-26] (Microsoft Corporation)
Lsa: [Notification Packages] scecli psqlpwd
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-3639932610-2605202925-3072062717-1008\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.com.au/
HKU\S-1-5-21-3639932610-2605202925-3072062717-1008\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft.com/isapi/redir.dl ... r=iesearch
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKU\S-1-5-21-3639932610-2605202925-3072062717-1008 -> No Name - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - No File
Toolbar: HKU\S-1-5-21-3639932610-2605202925-3072062717-1008 -> No Name - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - No File
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\3rwtiqmx.default
FF DefaultSearchEngine: Google (avast)
FF DefaultSearchUrl:
https://www.google.com/search/?trackid=sp-006
FF SearchEngineOrder.1: Google (avast)
FF SelectedSearchEngine: Google (avast)
FF Homepage:
https://www.google.com/?trackid=sp-006
FF Keyword.URL:
https://www.google.com/search/?trackid=sp-006
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\3rwtiqmx.default\searchplugins\google-avast.xml
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF HKLM\...\Firefox\Extensions: [
wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-04-27]
Chrome:
=======
CHR Profile: C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-01-12]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-01-12]
CHR Extension: (Google Wallet) - C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-27]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2007-05-20]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2007-05-20] (AVAST Software)
R2 CFSvcs; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960 2005-01-17] (TOSHIBA CORPORATION) [File not signed]
R2 EvtEng; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [643072 2007-02-21] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
S3 NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [262144 2006-12-20] (Nero AG) [File not signed]
R2 RegSrvc; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [327680 2007-02-21] (Intel Corporation) [File not signed]
R2 S24EventMonitor; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [983040 2007-02-21] (Intel Corporation ) [File not signed]
R2 TODDSrv; C:\WINDOWS\system32\TODDSrv.exe [114688 2006-05-26] (TOSHIBA Corporation) [File not signed]
R2 YOVfsBE; C:\Documents and Settings\All Users\Application Data\qEZfLs\YOVfsBE.exe [2726256 2015-01-12] (Acute Angle Solutions Ltd)
S3 COMSysApp; C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{FBE82434-A940-4785-889D-E1C5C55A63B9}
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21425 2012-10-05] (Meetinghouse Data Communications) [File not signed]
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2007-05-20] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [70384 2007-05-20] (AVAST Software)
R1 AswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55240 2007-05-20] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2007-05-20] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [787800 2007-05-20] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [423784 2007-05-20] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57928 2007-05-20] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [206248 2007-05-20] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R2 FdRedir; C:\Program Files\Common Files\Protector Suite QL\Drivers\FdRedir.sys [13568 2006-05-05] (UPEK Inc.) [File not signed]
R2 FileDisk2; C:\Program Files\Common Files\Protector Suite QL\Drivers\filedisk.sys [33024 2006-05-05] (UPEK Inc.) [File not signed]
S3 IFXTPM; C:\WINDOWS\System32\DRIVERS\IFXTPM.SYS [35968 2005-06-11] (Infineon Technologies AG)
R3 IntcAzAudAddService; C:\WINDOWS\System32\drivers\RtkHDAud.sys [4486144 2007-03-12] (Realtek Semiconductor Corp.) [File not signed]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R2 Netdevio; C:\WINDOWS\System32\DRIVERS\netdevio.sys [12032 2003-01-29] (TOSHIBA Corporation.) [File not signed]
R3 NETw4x32; C:\WINDOWS\System32\DRIVERS\NETw4x32.sys [2203520 2007-02-25] (Intel Corporation)
S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-04] (Realtek Semiconductor Corporation)
R2 s24trans; C:\WINDOWS\System32\DRIVERS\s24trans.sys [12416 2007-02-21] (Intel Corporation) [File not signed]
R2 smihlp; C:\Program Files\Protector Suite QL\smihlp.sys [3456 2006-05-05] (UPEK Inc.) [File not signed]
R2 tdudf; C:\WINDOWS\System32\DRIVERS\tdudf.sys [105856 2007-03-27] (TOSHIBA Corporation)
R2 trudf; C:\WINDOWS\System32\DRIVERS\trudf.sys [134016 2007-02-20] (TOSHIBA Corporation)
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-14 10:19 - 2015-01-14 10:19 - 00017845 _____ () C:\Documents and Settings\User\Desktop\FRST.txt
2015-01-14 10:19 - 2015-01-14 10:19 - 00000000 ____D () C:\FRST
2015-01-14 10:17 - 2015-01-14 10:17 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\User\Desktop\FRSTLauncher.exe
2015-01-14 10:13 - 2015-01-14 10:13 - 01115648 _____ (Farbar) C:\Documents and Settings\User\Desktop\FRST.exe
2015-01-14 09:05 - 2015-01-14 09:05 - 00001878 _____ () C:\Documents and Settings\All Users\Desktop\Skype.lnk
2015-01-14 09:05 - 2015-01-14 09:05 - 00000000 ___RD () C:\Program Files\Skype
2015-01-14 09:05 - 2015-01-14 09:05 - 00000000 ____D () C:\Program Files\Common Files\Skype
2015-01-14 09:05 - 2015-01-14 09:05 - 00000000 ____D () C:\Documents and Settings\User\Local Settings\Application Data\Skype
2015-01-14 09:05 - 2015-01-14 09:05 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Skype
2015-01-14 08:47 - 2015-01-14 08:47 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Browser
2015-01-14 08:42 - 2015-01-14 08:42 - 00000000 __RSD () C:\Documents and Settings\User\My Documents\My Safe
2015-01-12 19:24 - 2015-01-12 19:24 - 00000839 _____ () C:\DelFix.txt
2015-01-12 17:49 - 2015-01-12 17:49 - 00000000 ____D () C:\WINDOWS\Sun
2015-01-12 17:41 - 2015-01-12 17:41 - 00146432 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2015-01-12 17:41 - 2015-01-12 17:41 - 00096680 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-01-12 17:41 - 2015-01-12 17:41 - 00000000 ____D () C:\Program Files\Common Files\Java
2015-01-12 17:41 - 2015-01-12 17:41 - 00000000 ____D () C:\Documents and Settings\User\Local Settings\Application Data\Sun
2015-01-12 17:41 - 2015-01-12 17:41 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Java
2015-01-12 17:41 - 2015-01-12 17:41 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Sun
2015-01-12 17:40 - 2015-01-12 17:40 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Oracle
2015-01-12 17:38 - 2015-01-12 17:38 - 00000000 ____D () C:\Documents and Settings\User\Application Data\Sun
2015-01-12 17:16 - 2015-01-12 17:16 - 00001553 _____ () C:\Documents and Settings\All Users\Desktop\iTunes.lnk
2015-01-12 17:16 - 2015-01-12 17:16 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
2015-01-12 17:15 - 2015-01-12 17:16 - 00000000 ____D () C:\Program Files\iTunes
2015-01-12 17:15 - 2015-01-12 17:16 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
2015-01-12 17:15 - 2015-01-12 17:15 - 00000000 ____D () C:\Program Files\iPod
2015-01-12 15:29 - 2015-01-12 15:30 - 00000000 ___SD () C:\Documents and Settings\All Users\Start Menu\Programs\OpenOffice.org 3.3
2015-01-12 15:29 - 2015-01-12 15:29 - 00000885 _____ () C:\Documents and Settings\All Users\Desktop\OpenOffice.org 3.3.lnk
2015-01-12 15:28 - 2015-01-12 15:29 - 00000000 ____D () C:\Program Files\OpenOffice.org 3
2015-01-12 15:19 - 2015-01-12 15:19 - 00000000 ____D () C:\Program Files\Common Files\Windows Live
2015-01-12 14:53 - 2015-01-12 14:53 - 00000000 ____D () C:\Documents and Settings\User\Application Data\WinRAR
2015-01-12 14:51 - 2015-01-12 14:51 - 00000000 ____D () C:\Program Files\WinRAR
2015-01-12 14:51 - 2015-01-12 14:51 - 00000000 ____D () C:\Documents and Settings\User\Start Menu\Programs\WinRAR
2015-01-12 14:51 - 2015-01-12 14:51 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR
2015-01-12 14:49 - 2015-01-14 10:17 - 00000000 ____D () C:\Documents and Settings\User\Local Settings\Application Data\SafeWeb
2015-01-12 14:48 - 2015-01-12 14:49 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\SafeWeb
2015-01-12 14:48 - 2015-01-12 14:49 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\qEZfLs
2015-01-12 14:38 - 2015-01-14 08:56 - 00000723 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
2015-01-12 14:38 - 2015-01-14 08:56 - 00000723 _____ () C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
2015-01-12 14:38 - 2015-01-12 17:37 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-01-12 14:38 - 2015-01-12 14:39 - 00000000 ____D () C:\Documents and Settings\User\Application Data\Mozilla
2015-01-12 14:38 - 2015-01-12 14:38 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-01-12 14:38 - 2015-01-12 14:38 - 00000000 ____D () C:\Documents and Settings\User\Local Settings\Application Data\Mozilla
2015-01-12 14:38 - 2015-01-12 14:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Mozilla
2015-01-12 14:19 - 2015-01-12 16:51 - 00001210 _____ () C:\WINDOWS\setupapi.log
2015-01-12 14:13 - 2015-01-12 14:13 - 00009409 _____ () C:\WINDOWS\KB2929961.log
2015-01-12 14:13 - 2015-01-12 14:13 - 00009032 _____ () C:\WINDOWS\KB2934207.log
2015-01-12 14:13 - 2015-01-12 14:13 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2934207$
2015-01-12 14:13 - 2015-01-12 14:13 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2929961$
2015-01-12 14:12 - 2015-01-12 14:13 - 00026822 _____ () C:\WINDOWS\iis6.log
2015-01-12 14:12 - 2015-01-12 14:13 - 00024731 _____ () C:\WINDOWS\FaxSetup.log
2015-01-12 14:12 - 2015-01-12 14:13 - 00011824 _____ () C:\WINDOWS\ocgen.log
2015-01-12 14:12 - 2015-01-12 14:13 - 00011284 _____ () C:\WINDOWS\tsoc.log
2015-01-12 14:12 - 2015-01-12 14:13 - 00008199 _____ () C:\WINDOWS\comsetup.log
2015-01-12 14:12 - 2015-01-12 14:13 - 00007594 _____ () C:\WINDOWS\msmqinst.log
2015-01-12 14:12 - 2015-01-12 14:13 - 00004974 _____ () C:\WINDOWS\ntdtcsetup.log
2015-01-12 14:12 - 2015-01-12 14:13 - 00004332 _____ () C:\WINDOWS\netfxocm.log
2015-01-12 14:12 - 2015-01-12 14:13 - 00001700 _____ () C:\WINDOWS\MedCtrOC.log
2015-01-12 14:12 - 2015-01-12 14:13 - 00001374 _____ () C:\WINDOWS\imsins.log
2015-01-12 14:12 - 2015-01-12 14:13 - 00001374 _____ () C:\WINDOWS\imsins.BAK
2015-01-12 14:12 - 2015-01-12 14:13 - 00001368 _____ () C:\WINDOWS\ocmsn.log
2015-01-12 14:12 - 2015-01-12 14:13 - 00001244 _____ () C:\WINDOWS\tabletoc.log
2015-01-12 14:12 - 2015-01-12 14:13 - 00001236 _____ () C:\WINDOWS\msgsocm.log
2015-01-12 14:12 - 2015-01-12 14:12 - 00009811 _____ () C:\WINDOWS\KB2930275.log
2015-01-12 14:12 - 2015-01-12 14:12 - 00002734 _____ () C:\WINDOWS\updspapi.log
2015-01-12 14:12 - 2015-01-12 14:12 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2930275$
2015-01-12 14:12 - 2015-01-12 14:12 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-01-12 14:12 - 2015-01-12 14:12 - 00000000 _____ () C:\WINDOWS\setupact.log
2015-01-12 14:11 - 2015-01-12 14:12 - 00011440 _____ () C:\WINDOWS\KB2936068-IE8.log
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-14 10:19 - 2012-10-05 09:10 - 00000000 ____D () C:\Documents and Settings\User\Local Settings\Temp
2015-01-14 09:54 - 2012-10-05 09:25 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-01-14 09:54 - 2012-10-05 09:25 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-01-14 09:54 - 2012-10-05 09:25 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-14 09:49 - 2007-04-23 06:15 - 01215792 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-14 09:25 - 2012-10-04 17:38 - 00000000 ____D () C:\Documents and Settings\User\Application Data\Skype
2015-01-14 09:05 - 2012-10-04 17:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
2015-01-14 08:47 - 2013-04-27 09:37 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-01-14 08:45 - 2007-04-22 23:12 - 00522638 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-14 08:41 - 2014-05-18 10:04 - 00000374 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.ics
2015-01-14 08:41 - 2007-04-23 06:20 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-14 08:41 - 2007-04-23 05:44 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-01-14 08:41 - 2007-04-22 23:13 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-01-14 08:41 - 2007-04-22 23:13 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-01-12 19:48 - 2012-10-05 09:10 - 00000178 ___SH () C:\Documents and Settings\User\ntuser.ini
2015-01-12 19:48 - 2007-04-23 06:20 - 00032436 _____ () C:\WINDOWS\SchedLgU.Txt
2015-01-12 19:17 - 2013-04-27 09:38 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Google Drive
2015-01-12 17:40 - 2007-04-23 07:00 - 00000000 ____D () C:\Program Files\Java
2015-01-12 17:28 - 2012-10-04 17:38 - 00000730 _____ () C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
2015-01-12 17:28 - 2012-10-04 17:38 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\VideoLAN
2015-01-12 17:15 - 2013-05-10 18:11 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Apple Computer
2015-01-12 17:15 - 2013-05-10 18:10 - 00000000 ____D () C:\Program Files\Common Files\Apple
2015-01-12 17:09 - 2013-05-10 18:10 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Apple
2015-01-12 16:56 - 2007-04-23 06:20 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Temp
2015-01-12 16:23 - 2013-08-27 12:04 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-12 16:12 - 2007-04-24 04:29 - 00073352 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2015-01-12 16:10 - 2007-04-22 23:11 - 00290888 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-01-12 16:08 - 2007-04-23 06:20 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\Temp
2015-01-12 16:06 - 2007-04-27 04:45 - 00000000 ____D () C:\Documents and Settings\User\Application Data\skypePM
2015-01-12 16:02 - 2012-10-05 09:10 - 00000000 ____D () C:\Documents and Settings\User\Local Settings\Application Data\Adobe
2015-01-12 14:12 - 2012-10-04 18:10 - 00000000 ____D () C:\WINDOWS\ie8updates
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (S3A6253D002) (Fixed) (Total:143.72 GB) (Free:130.94 GB) NTFS ==>[Drive with boot components (Windows XP)]
Available physical RAM: 804.92 MB
Total physical RAM: 2038.36 MB
Percentage of memory in use: 60%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows XP) (Size: 149.1 GB) (Disk ID: CD2D2FEF)
Partition 1: (Active) - (Size=143.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=5.3 GB) - (Type=1C)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Documents and Settings\User\Desktop" je 214 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"="C:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\\Program Files\\Epson Software\\Event Manager\\EEventManager.exe"="C:\\Program Files\\Epson Software\\Event Manager\\EEventManager.exe:*:Disabled:EEventManager Application"
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"="C:\\Program Files\\Bonjour\\mDNSResponder.exe:*:Enabled:Bonjour Service"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
Na zaklade e-mailove komunikace a problemu s lonelyplanet tema odemykam.
Sledujte, zda se nabidky na zrychleni internetu a prohlizece jeste objevi 
