"Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:44:55, on 2.11.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Toshiba TEMPRO\TemproTray.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
C:\Program Files\TOSHIBA\TECO\Teco.exe
C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe
C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
C:\Program Files\SDL\SDL MultiTerm\MultiTerm11\MultiTerm Widget.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
C:\Program Files\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Windows\system32\prevhost.exe
C:\Windows\system32\prevhost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE
C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe
C:\Program Files\SDL\SDL Trados Studio\Studio2\SDLTradosStudio.exe
C:\PROGRA~1\MICROS~1\Office12\POWERPNT.EXE
C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32Info.exe
C:\Program Files\Opera\opera.exe
C:\Windows\system32\taskmgr.exe
D:\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.3.107.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.3.107.0\BingExt.dll
O4 - HKLM\..\Run: [Toshiba TEMPRO] C:\Program Files\Toshiba TEMPRO\TemproTray.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [HWSetup] "C:\Program Files\TOSHIBA\Utilities\HWSetup.exe" hwSetUP
O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [SmartFaceVWatcher] %ProgramFiles%\Toshiba\SmartFaceV\SmartFaceVWatcher.exe
O4 - HKLM\..\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
O4 - HKLM\..\Run: [ToshibaServiceStation] C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe /hide:60
O4 - HKLM\..\Run: [Teco] "%ProgramFiles%\TOSHIBA\TECO\Teco.exe" /r
O4 - HKLM\..\Run: [TosWaitSrv] %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
O4 - HKLM\..\Run: [TosNC] %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe
O4 - HKLM\..\Run: [TosReelTimeMonitor] %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaReminder.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [zzzHPSETUP] E:\Setup.exe
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [TOSHIBA Online Product Information] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil10w_Plugin.exe -update plugin
O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [TOSHIBA Online Product Information] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe (User 'Default user')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: SDL MultiTerm 2011 Widget.lnk = C:\Program Files\SDL\SDL MultiTerm\MultiTerm9\MultiTerm Widget.exe
O4 - Global Startup: SDL MultiTerm 2014 Widget.lnk = C:\Program Files\SDL\SDL MultiTerm\MultiTerm11\MultiTerm Widget.exe
O4 - Global Startup: SDL Trados 2007 Speed Launcher.lnk = C:\Program Files\SDL International\SDL Trados Synergy 2007\Synergy.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: WebEx Service Host for Support Center (atashost) - Cisco WebEx LLC - C:\Windows\system32\atashost.exe
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Kilgray: memoQ update permissions manager. 979430. - Unknown owner - C:\Program Files\Kilgray\memoQ40\AUClient.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nalpeiron Control Service (NalServ) - Nalpeiron Ltd. - C:\Windows\system32\nalserv.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\system32\nlssrv32.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
dobry vecer, take prosim o kontrolu logu... predem dekuji
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: dobry vecer, take prosim o kontrolu logu... predem dekuj
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: dobry vecer, take prosim o kontrolu logu... predem dekuj
ufff.. je to dlouhý... pokud to půjde, moc děkujiScan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-10-2013
Ran by Eva (ATTENTION: The logged in user is not administrator) on NAMOL on 02-11-2013 22:41:23
Running from C:\Users\Eva\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Toshiba Europe GmbH) C:\Program Files\Toshiba TEMPRO\TemproTray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\Teco.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(CANON INC.) C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(TOSHIBA) C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
(SDL) C:\Program Files\SDL\SDL MultiTerm\MultiTerm11\MultiTerm Widget.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(Společnost TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
(Microsoft Corporation) C:\Windows\system32\prevhost.exe
(Microsoft Corporation) C:\Windows\system32\prevhost.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(SDL) C:\Program Files\SDL\SDL Trados Studio\Studio2\SDLTradosStudio.exe
(Microsoft Corporation) C:\PROGRA~1\MICROS~1\Office12\POWERPNT.EXE
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32Info.exe
(Opera Software) C:\Program Files\Opera\opera.exe
(Microsoft Corporation) C:\Windows\system32\taskmgr.exe
(forum.viry.cz) C:\Users\Eva\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Toshiba TEMPRO] - C:\Program Files\Toshiba TEMPRO\TemproTray.exe [1050000 2009-10-15] (Toshiba Europe GmbH)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2009-10-02] (Intel Corporation)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-09-08] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7858720 2009-10-21] (Realtek Semiconductor)
HKLM\...\Run: [SVPWUTIL] - C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe [352256 2009-08-12] (TOSHIBA)
HKLM\...\Run: [HWSetup] - C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [425984 2009-06-02] (TOSHIBA Electronics, Inc.)
HKLM\...\Run: [KeNotify] - C:\Program Files\TOSHIBA\Utilities\KeNotify.exe [34088 2009-01-13] (TOSHIBA CORPORATION)
HKLM\...\Run: [TPwrMain] - C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe [480608 2009-11-05] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] - C:\Program Files\TOSHIBA\TBS\HSON.exe [55160 2009-03-09] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] - C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe [521528 2009-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] - C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [738616 2009-11-10] (TOSHIBA Corporation)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1586472 2009-10-15] (Synaptics Incorporated)
HKLM\...\Run: [TWebCamera] - C:\Program Files\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2454840 2009-11-21] (TOSHIBA CORPORATION.)
HKLM\...\Run: [SmartFaceVWatcher] - C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatcher.exe [163840 2009-10-19] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [611672 2009-11-05] (TOSHIBA Corporation)
HKLM\...\Run: [ToshibaServiceStation] - C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [1294136 2009-10-06] (TOSHIBA Corporation)
HKLM\...\Run: [Teco] - C:\Program Files\TOSHIBA\TECO\Teco.exe [1328480 2009-09-28] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] - C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [611672 2009-11-10] (TOSHIBA Corporation)
HKLM\...\Run: [TosNC] - C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe [467304 2009-11-30] (TOSHIBA Corporation)
HKLM\...\Run: [TosReelTimeMonitor] - C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [29528 2009-11-30] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba Registration] - C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe [134032 2009-08-25] (Toshiba Europe GmbH)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2145000 2010-04-07] (ESET)
HKLM\...\Run: [zzzHPSETUP] - E:\Setup.exe
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE [2516296 2010-03-25] (CANON INC.)
HKLM\...\Run: [CanonSolutionMenuEx] - C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe [37296 2012-01-03] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-01-02] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKCU\...\Run: [TOSHIBA Online Product Information] - C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe [6203296 2009-08-12] (TOSHIBA)
HKCU\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\system32\Macromed\Flash\FlashUtil10w_Plugin.exe -update plugin [243360 2011-09-18] (Adobe Systems, Inc.)
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Eva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig/redirectdomain ... &bmod=TSEH
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain ... &bmod=TSEH
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {8A1D0881-51BA-44FC-BF28-7C419523155E} URL = http://www.amazon.co.uk/gp/search?ie=UT ... nkCode=ur2
SearchScopes: HKCU - {AE6295B3-6345-4DE9-89AF-831730D2D11A} URL = http://rover.ebay.com/rover/1/710-71511 ... earchTerms}
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.3.107.0\BingExt.dll (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.3.107.0\BingExt.dll (Microsoft Corporation.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\yn8wqlee.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF Plugin: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
FF Extension: Skype extension for Firefox - C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
========================== Services (Whitelisted) =================
R2 atashost; C:\Windows\system32\atashost.exe [136784 2013-03-04] (Cisco WebEx LLC)
R2 cfWiMAXService; C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe [185712 2009-10-27] (TOSHIBA CORPORATION)
R2 ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [46448 2009-03-10] (TOSHIBA CORPORATION)
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [33560 2010-04-07] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [810120 2010-04-07] (ESET)
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 Kilgray: memoQ update permissions manager. 979430.; C:\Program Files\Kilgray\memoQ40\AUClient.exe [696320 2012-08-28] ()
R2 lmhosts; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
R2 MSSQL$ACROSS; C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 NalServ; C:\Windows\system32\nalserv.exe [146032 2013-09-06] (Nalpeiron Ltd.)
R2 NlaSvc; C:\Windows\System32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
R2 TemproMonitoringService; C:\Program Files\Toshiba TEMPRO\TemproSvc.exe [116104 2009-10-15] (Toshiba Europe GmbH)
R3 TMachInfo; C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [51512 2009-10-06] (TOSHIBA Corporation)
R2 TOSHIBA eco Utility Service; C:\Program Files\TOSHIBA\TECO\TecoService.exe [185712 2009-09-28] (TOSHIBA Corporation)
R3 TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [111960 2009-11-05] (TOSHIBA Corporation)
R3 TPCHSrv; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [677232 2009-11-10] (TOSHIBA Corporation)
==================== Drivers (Whitelisted) ====================
R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [133512 2010-04-07] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [114984 2010-04-07] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [96896 2010-04-07] (ESET)
R0 LPCFilter; C:\Windows\System32\DRIVERS\LPCFilter.sys [36208 2009-07-30] (COMPAL ELECTRONIC INC.)
R3 PGEffect; C:\Windows\System32\DRIVERS\pgeffect.sys [24064 2009-06-22] (TOSHIBA Corporation)
R3 RTHDMIAzAudService; C:\Windows\System32\drivers\RtHDMIV.sys [157536 2009-05-20] (Realtek Semiconductor Corp.)
R2 TVALZFL; C:\Windows\System32\DRIVERS\TVALZFL.sys [12920 2009-06-19] (TOSHIBA Corporation)
R1 VBoxDrv; C:\Windows\System32\DRIVERS\VBoxDrv.sys [123856 2010-03-25] (Sun Microsystems, Inc.)
R3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp.sys [99728 2010-03-25] (Sun Microsystems, Inc.)
R3 VBoxNetFlt; C:\Windows\System32\DRIVERS\VBoxNetFlt.sys [110608 2010-03-25] (Sun Microsystems, Inc.)
R1 VBoxUSBMon; C:\Windows\System32\DRIVERS\VBoxUSBMon.sys [41680 2010-03-25] (Sun Microsystems, Inc.)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-02 22:40 - 2013-11-02 22:40 - 00000000 ____D C:\FRST
2013-11-02 22:39 - 2013-11-02 22:39 - 01089445 _____ (Farbar) C:\Users\Eva\Desktop\FRST.exe
2013-11-02 22:39 - 2013-11-02 22:39 - 00112128 _____ (forum.viry.cz) C:\Users\Eva\Desktop\FRSTLauncher.exe
2013-10-28 21:40 - 2013-10-28 21:40 - 01086295 _____ C:\Users\Eva\Downloads\source.split.zip
2013-10-18 06:06 - 2012-03-14 04:00 - 00311296 _____ (CANON INC.) C:\Windows\system32\CNMXLMAA.DLL
2013-10-17 21:41 - 2013-10-17 21:41 - 00000000 ____D C:\Canon Pixma MP280 ovladače
2013-10-14 13:45 - 2013-10-14 14:00 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2013-10-13 14:10 - 2013-10-22 11:05 - 00000000 ____D C:\Users\Eva\Documents\Studio 2014
2013-10-13 14:05 - 2013-10-13 14:05 - 00000000 ____D C:\Users\Admin\Documents\Studio 2014
2013-10-13 13:46 - 2013-10-13 13:46 - 00002096 _____ C:\Users\Public\Desktop\SDL Trados Studio 2014.lnk
2013-10-13 13:40 - 2013-10-13 13:40 - 00002078 _____ C:\Users\Public\Desktop\SDL MultiTerm 2014 Desktop.lnk
2013-10-13 13:38 - 2013-10-13 13:38 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-13 13:37 - 2013-10-13 13:37 - 00263592 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-13 13:37 - 2013-10-13 13:37 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-13 11:34 - 2013-10-13 11:54 - 339949736 _____ C:\Users\Eva\Downloads\SDLTradosStudio2014_3636.exe
2013-10-13 11:23 - 2013-10-13 11:29 - 120596992 _____ C:\Users\Eva\Downloads\SDLMultiTermDesktop2014_1052.exe
2013-10-13 11:22 - 2013-10-13 11:22 - 00018157 _____ C:\Users\Eva\Downloads\SDLTradosStudio2014Badges.zip
2013-10-09 07:49 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-09 07:49 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-09 07:49 - 2013-09-23 00:28 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-09 07:49 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-09 07:49 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-09 07:49 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-09 07:49 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-09 07:49 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-09 07:49 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-09 07:49 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-09 07:49 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-09 07:49 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-09 07:49 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-09 07:49 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-09 07:49 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-09 07:49 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-09 05:15 - 2013-09-14 01:48 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-09 05:15 - 2013-09-08 03:07 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-09 05:15 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-09 05:15 - 2013-09-04 02:15 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-09 05:15 - 2013-09-04 02:14 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-09 05:15 - 2013-09-04 02:14 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-09 05:15 - 2013-09-04 02:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-09 05:15 - 2013-09-04 02:14 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-09 05:15 - 2013-09-04 02:14 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-09 05:15 - 2013-09-04 02:14 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-09 05:15 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-10-09 05:15 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-09 05:15 - 2013-08-29 02:50 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-09 05:15 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-09 05:15 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-09 05:15 - 2013-08-28 02:04 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-09 05:15 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-09 05:15 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-09 05:15 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 05:15 - 2013-07-12 11:08 - 00146816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-09 05:15 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-09 05:15 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-09 05:15 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-09 05:15 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-09 05:15 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-09 05:15 - 2013-07-03 05:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-09 05:15 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-09 05:15 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-09 05:15 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-09 05:15 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-09 05:15 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-09 05:15 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-09 05:15 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-09 05:15 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-03 09:14 - 2013-10-03 09:14 - 00000000 ____D C:\Program Files\Qt Linguist
==================== One Month Modified Files and Folders =======
2013-11-02 22:40 - 2013-11-02 22:40 - 00000000 ____D C:\FRST
2013-11-02 22:39 - 2013-11-02 22:39 - 01089445 _____ (Farbar) C:\Users\Eva\Desktop\FRST.exe
2013-11-02 22:39 - 2013-11-02 22:39 - 00112128 _____ (forum.viry.cz) C:\Users\Eva\Desktop\FRSTLauncher.exe
2013-11-02 22:11 - 2010-11-05 12:18 - 00000938 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-02 19:52 - 2010-02-24 03:34 - 01450456 _____ C:\Windows\WindowsUpdate.log
2013-11-02 16:20 - 2010-11-05 12:18 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-31 22:59 - 2011-12-29 20:01 - 00000000 ____D C:\Users\Eva\.wf_workspace
2013-10-31 17:33 - 2011-12-12 15:53 - 00000000 ____D C:\ProgramData\CanonIJPLM
2013-10-31 10:31 - 2013-03-02 08:30 - 00000000 ____D C:\Users\Eva\AppData\Roaming\FileZilla
2013-10-28 21:40 - 2013-10-28 21:40 - 01086295 _____ C:\Users\Eva\Downloads\source.split.zip
2013-10-24 17:51 - 2009-07-14 05:34 - 00017504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-24 17:51 - 2009-07-14 05:34 - 00017504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-24 17:44 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-24 17:44 - 2009-07-14 05:39 - 00079209 _____ C:\Windows\setupact.log
2013-10-24 17:36 - 2013-03-02 14:11 - 00002096 _____ C:\Users\Public\Desktop\SDL Trados Studio 2011.lnk
2013-10-24 08:33 - 2012-03-12 15:22 - 00000000 ____D C:\Users\Eva\AppData\Local\Canon Easy-PhotoPrint EX
2013-10-24 08:33 - 2009-07-14 05:52 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-10-22 11:05 - 2013-10-13 14:10 - 00000000 ____D C:\Users\Eva\Documents\Studio 2014
2013-10-18 06:06 - 2012-08-27 13:17 - 00000000 ____D C:\Users\Admin\AppData\Roaming\SDL
2013-10-17 21:41 - 2013-10-17 21:41 - 00000000 ____D C:\Canon Pixma MP280 ovladače
2013-10-17 06:29 - 2012-03-20 22:29 - 00000000 ____D C:\wordfast latest
2013-10-15 19:40 - 2009-12-09 14:24 - 01708412 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-14 14:00 - 2013-10-14 13:45 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2013-10-14 06:09 - 2010-05-27 13:07 - 00000000 ____D C:\Users\Eva\AppData\Roaming\SDL
2013-10-14 06:09 - 2010-05-27 12:10 - 00000000 ____D C:\ProgramData\SDL
2013-10-13 14:05 - 2013-10-13 14:05 - 00000000 ____D C:\Users\Admin\Documents\Studio 2014
2013-10-13 14:00 - 2010-04-10 15:28 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-10-13 13:57 - 2013-03-02 12:42 - 00000000 ____D C:\Users\Admin\AppData\Local\SDL
2013-10-13 13:46 - 2013-10-13 13:46 - 00002096 _____ C:\Users\Public\Desktop\SDL Trados Studio 2014.lnk
2013-10-13 13:46 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Globalization
2013-10-13 13:41 - 2013-03-02 14:06 - 00000000 ____D C:\Program Files\Common Files\SDL
2013-10-13 13:40 - 2013-10-13 13:40 - 00002078 _____ C:\Users\Public\Desktop\SDL MultiTerm 2014 Desktop.lnk
2013-10-13 13:38 - 2013-10-13 13:38 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-13 13:37 - 2013-10-13 13:37 - 00263592 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-13 13:37 - 2013-10-13 13:37 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-13 13:37 - 2013-03-04 15:01 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-13 13:37 - 2013-03-04 15:01 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-13 13:37 - 2013-03-04 15:01 - 00000000 ____D C:\Program Files\Java
2013-10-13 13:37 - 2012-10-17 11:51 - 00867240 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-10-13 13:37 - 2012-08-27 13:16 - 00789416 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-10-13 11:54 - 2013-10-13 11:34 - 339949736 _____ C:\Users\Eva\Downloads\SDLTradosStudio2014_3636.exe
2013-10-13 11:29 - 2013-10-13 11:23 - 120596992 _____ C:\Users\Eva\Downloads\SDLMultiTermDesktop2014_1052.exe
2013-10-13 11:22 - 2013-10-13 11:22 - 00018157 _____ C:\Users\Eva\Downloads\SDLTradosStudio2014Badges.zip
2013-10-09 16:15 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2013-10-09 09:34 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-10-09 08:04 - 2009-07-14 05:33 - 00418896 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-09 08:03 - 2009-12-09 15:08 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-09 07:56 - 2009-12-09 15:03 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-09 07:54 - 2013-07-16 05:29 - 00000000 ____D C:\Windows\system32\MRT
2013-10-09 07:52 - 2010-04-11 15:25 - 78106760 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-03 09:14 - 2013-10-03 09:14 - 00000000 ____D C:\Program Files\Qt Linguist
ZeroAccess:
C:\Users\Eva\AppData\Local\Data aplikací
Some content of TEMP:
====================
C:\Users\Admin\AppData\Local\Temp\13v2qqi1.dll
C:\Users\Admin\AppData\Local\Temp\4m4x-jgv.dll
C:\Users\Admin\AppData\Local\Temp\6ksxolzm.dll
C:\Users\Admin\AppData\Local\Temp\9vboodka.dll
C:\Users\Admin\AppData\Local\Temp\cxrfkvo1.dll
C:\Users\Admin\AppData\Local\Temp\emordfek.dll
C:\Users\Admin\AppData\Local\Temp\fhnrskyd.dll
C:\Users\Admin\AppData\Local\Temp\gl50ieun.dll
C:\Users\Admin\AppData\Local\Temp\huzpnoyv.dll
C:\Users\Admin\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
C:\Users\Admin\AppData\Local\Temp\jrolymib.dll
C:\Users\Admin\AppData\Local\Temp\k4ou-mb8.dll
C:\Users\Admin\AppData\Local\Temp\lhb-owjr.dll
C:\Users\Admin\AppData\Local\Temp\ln_tfxlz.dll
C:\Users\Admin\AppData\Local\Temp\maohu2bm.dll
C:\Users\Admin\AppData\Local\Temp\mctzz2o8.dll
C:\Users\Admin\AppData\Local\Temp\MSETUP4.EXE
C:\Users\Admin\AppData\Local\Temp\pz0wznju.dll
C:\Users\Admin\AppData\Local\Temp\qkvhut2q.dll
C:\Users\Admin\AppData\Local\Temp\tihwb-wi.dll
C:\Users\Admin\AppData\Local\Temp\vext6pv8.dll
C:\Users\Admin\AppData\Local\Temp\w2h0ebuo.dll
C:\Users\Admin\AppData\Local\Temp\wvy7ghtx.dll
C:\Users\Admin\AppData\Local\Temp\ynagfq8z.dll
C:\Users\Admin\AppData\Local\Temp\zqylm2l2.dll
C:\Users\Eva\AppData\Local\Temp\FlashPlayerUpdate.exe
C:\Users\Eva\AppData\Local\Temp\ha3dygii.dll
C:\Users\Eva\AppData\Local\Temp\jna1986658586770650077.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna2013054957940102119.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna2391702738298447220.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna2581010541319266017.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna2950863199130029236.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna3157848250642978252.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna3180111791284858271.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna3589115757069538832.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna3646299077797516711.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna4205878558364066224.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna4437694516783174433.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna4730772812085047213.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna4800586592663235650.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna489889604941961485.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna4921486589685737139.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna496984402450921664.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna5217157003443543547.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna5223434702467869017.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna5250393690456399603.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna5482803402627374177.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna5758642968090580808.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna581107759385114454.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna5827072657855723850.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna6185252898760638881.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna6213731730674942781.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna6301050290684603891.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna6514258625261192392.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna6719654878629615396.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna6812919272679304169.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna6889178744164322973.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna7099260357933738031.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna7157459169013484547.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna7256817763612620849.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna7279014514198901054.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna7351579142658682326.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna7464925483186464112.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna7521886363440733548.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna7572864330443593510.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna8090672232534821259.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna809544085710272356.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna8118861515671195622.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna8355968863989447492.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna8786015169958211577.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jna8803144233898032871.hunspell-win-x86-32.dll
C:\Users\Eva\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Eva\AppData\Local\Temp\mxihzusg.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1051886014848087937.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1144460815599014657.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1169708062469692328.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1198532332588526446.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary120617606529570144.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1240377079463337581.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1354742866079814495.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1413109888677071193.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1418462300160026415.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1551588940302405066.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1582049862827772702.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1591551452952640064.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1627150514295565672.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1661294763830781590.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1674506266323908608.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1718463862484526435.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1929430327591071542.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1936290661760593354.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary1964418683995054043.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2138427061232726304.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2226839257295368014.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2229470418231817153.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2261722598431639982.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2424792542338477257.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2443716226454283896.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2460306059425873079.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2483054911989271667.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2497585988940038253.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2502317468552476323.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2506197993383644731.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2531998945397369088.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2538617951178165337.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary264489589673890587.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2689018887551724599.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2795125207177766731.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2799054310411487707.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2877826338774017751.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2882343620884421604.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2965721951539149603.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary2965858395707699057.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3020064542017448895.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3053610299054545366.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3084736842911357665.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3121534626440107981.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3179745232290719302.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary321640421620555336.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3345091834896395997.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary342045597226429408.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3424675135608601242.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3444724530028810834.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3446875447164352672.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3510956841958152354.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary352326928607991057.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3532445350203041686.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3592604539834945341.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3645866478538746994.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary367329557376906115.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3682123172750629942.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3821991447294731728.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary3855794357798386607.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4011087607816866358.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4036304643781685881.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4050522548251486457.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4062220819553432902.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4132840083673579866.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4142448768991041157.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4184842641018491689.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4298089873427874621.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4316521120837205046.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4345052145815242354.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4455200405420205992.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4538607072455337394.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4560042353775404573.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary457325288289432150.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4623213438380955657.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4672216231722124001.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary473204349070154772.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4754606219755450727.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4769614919801977093.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary486332611316963387.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary4960156826442802774.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5080886494191723090.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5122764853507670400.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary512722301359609691.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5129176612136464632.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5272238761698188668.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5305375630615354617.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5365276312340859553.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5435869935193258965.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5443572752103467074.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5470908963277142344.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5507052256342018457.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary551500246826633448.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary555522131111711881.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5573841222449648894.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5650343962480907466.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5700090384039003634.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5749723364414793249.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5753010564085686708.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5838223294473241446.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary5846756587171700137.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6012806487619186270.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6041224625741978346.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6063172574079689264.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6113288338399140353.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6169051385763773421.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6205383572578536088.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6262677551951669265.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6265216339100566179.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6327080260197186323.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary638881642497164062.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6447860358471234537.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6503867641582811777.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6632562301982970046.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6692799149909463921.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6700278968129548527.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6728085623537537109.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6819457764383954098.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6847730949220262457.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary697318947300124580.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary6982752022535259677.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7001881393564422749.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7012180657923528706.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7085746933214359413.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary709096483935115730.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary722823427385332306.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7239551479584553400.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7253720568770259758.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7256038662187203746.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary728764336778644466.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7387502172240678689.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7391235057406987588.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7402260418312680258.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7429342109770452081.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7525820018324822133.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7566979940380724284.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7586353851085963516.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7609421820950895339.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7702544305734887789.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7708539756122715061.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7725362579825660989.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7750306110279497890.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7821232797739004750.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7822852084218625254.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7828305702489635883.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary7948896131366775525.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary8025900235204628311.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary8091640670690880335.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary8154410494120004980.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary8272863496451197865.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary8276051528736917468.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary8351350335684848903.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary847702050504660157.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary849211761116792008.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary8523265784718517278.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary872413077352386621.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary8772916826838548735.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary8798438823086906357.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary8807374418283338907.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary8887145013858057453.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary8905988319849776824.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary905875218308213894.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary9113313680332817123.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary9127902792446829631.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary9175215473223247002.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary9214462141659903651.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary922602464555960517.dll
C:\Users\Eva\AppData\Local\Temp\nativelibrary953969773779049122.dll
C:\Users\Eva\AppData\Local\Temp\rdwlkucr.bfg
C:\Users\Eva\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Eva\AppData\Local\Temp\~13B8.exe
C:\Users\Eva\AppData\Local\Temp\~F010.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (WINDOWS) (Fixed) (Total:465.95 GB) (Free:390.61 GB) NTFS
Drive d: (Data) (Fixed) (Total:465.17 GB) (Free:421.1 GB) NTFS
Drive e: (Acronis Media) (CDROM) (Total:0.29 GB) (Free:0 GB) CDFS
Available physical RAM: 994.37 MB
Total physical RAM: 3061.61 MB
Percentage of memory in use: 67%
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\Windows:AstInfo
AlternateDataStreams: C:\Windows:netNLSPreferences
AlternateDataStreams: C:\Windows:nlsPreferences
==================== Security Center ==================
AV: ESET NOD32 Antivirus 4.2 (Enabled - Up to date) {CB0F8167-5331-BA19-698E-64816B6801A5}
AS: ESET NOD32 Antivirus 4.2 (Enabled - Up to date) {706E6083-750B-B597-533E-5FF310EF4B18}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 28_09_2013 (06)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Eva\Desktop" je 21 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Re: dobry vecer, take prosim o kontrolu logu... predem dekuj
Na ten antivir NOD32 mate zakoupenou licenci?? Zda se mi nejaky zastaraly 
Pro provedeni oprav bude potreba mit ucet s administratorskymi opravnenimi
Ran by Eva (ATTENTION: The logged in user is not administrator)
Tvorba fixlistu pro FRST
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
Start HKLM\...\Run: [zzzHPSETUP] - E:\Setup.exe HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe [37296 2012-01-03] (Adobe Systems Incorporated) HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-01-02] (Adobe Systems Incorporated) HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation) HKCU\...\Run: [TOSHIBA Online Product Information] - C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe [6203296 2009-08-12] (TOSHIBA) HKCU\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\system32\Macromed\Flash\FlashUtil10w_Plugin.exe -update plugin [243360 2011-09-18] (Adobe Systems, Inc.) Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk Startup: C:\Users\Eva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig/redirectdomain ... &bmod=TSEH HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain ... &bmod=TSEH SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKCU - {8A1D0881-51BA-44FC-BF28-7C419523155E} URL = http://www.amazon.co.uk/gp/search?ie=UTF8&keywords={searchTerms}&tag=tochibauk-win7-ie-search-21&index=blended&linkCode=ur2 SearchScopes: HKCU - {AE6295B3-6345-4DE9-89AF-831730D2D11A} URL = http://rover.ebay.com/rover/1/710-71511 ... 4?satitle={searchTerms} Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ? Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ? AlternateDataStreams: C:\Windows:AstInfo AlternateDataStreams: C:\Windows:netNLSPreferences AlternateDataStreams: C:\Windows:nlsPreferences Hosts: End- Ulozte vytvoreny TXT jako fixlist.txt
- Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
- Kliknete na Fix
- Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: dobry vecer, take prosim o kontrolu logu... predem dekuj
momentálně mám platnou licenci na Eset... co tam dělá NOD, to tak úplně nevím, myslím, že jsem ho měla dřív...........................jinak šmankote, snad ten postup zvládnu; asi to risknu do zítřka kvůli té nutnosti restartu... děkuji za práci dosud věnovanou, doufám, že zítra budu zpět i s logem Eva M.
šmankote, snad ten postup zvládnu; asi to risknu do zítřka kvůli té nutnosti restartu... děkuji za práci dosud věnovanou, doufám, že zítra budu zpět i s logem Eva M.Re: dobry vecer, take prosim o kontrolu logu... predem dekuj
ESET je jmeno firmy, NOD32 je jmeno produktu (antiviru, ktery tam mate). Akorat mate verzi 4.2 a ona uz je vydana verze 6 Zvladnete, je to jednoduche 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?