VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Eset asi neodstranil vše

https://forum.viry.cz:443/viewtopic.php?t=142459

Stránka 1 z 1

Eset asi neodstranil vše

Napsal: 16 led 2015 08:18
od Carlos2
Dobrý den,

prosím o kontrolu logu. Známé Eset něco našel a snad i odstranil, ale PC se nechová úplně dobře, takže log asi nebude preventivka.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-01-2015 01
Ran by Helena (administrator) on EDGE71 on 16-01-2015 08:13:25
Running from C:\Documents and Settings\Helena\Plocha
Loaded Profiles: Helena (Available profiles: Helena & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Wireless) C:\Program Files\TP-LINK\QSS\jswpbapi.exe
() C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\Sks8821.exe
(Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
(LITEON) C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\skdh8821.exe
(Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\System Update\SUService.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Software602) C:\Program Files\Software602\Print2PDF\Print2PDF.exe
(Roxio) C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
() C:\Program Files\TP-LINK\QSS\jswtrayutil.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\EuWatch.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\TrayNotify.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(LITE-ON TECHNOLOGY CORP.) C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\Skd8821.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(DOSPRN) C:\Program Files\Dosprn\DOSprn.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(TeamViewer GmbH) C:\DOCUME~1\Helena\LOCALS~1\Temp\TeamViewer\Version7\TeamViewer.exe
(TeamViewer GmbH) C:\DOCUME~1\Helena\LOCALS~1\Temp\TeamViewer\Version7\tv_w32.exe
(TeamViewer GmbH) C:\DOCUME~1\Helena\LOCALS~1\Temp\TeamViewer\Version7\TeamViewer_Desktop.exe
(forum.viry.cz) C:\Documents and Settings\Helena\Plocha\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [18782720 2009-10-12] (Realtek Semiconductor Corp.)
HKLM\...\Run: [TVT Scheduler Proxy] => C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe [487424 2008-03-04] (Lenovo Group Limited)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM\...\Run: [Print2PDF Print Monitor] => C:\Program Files\Software602\Print2PDF\Print2PDF.exe [220992 2011-10-04] (Software602)
HKLM\...\Run: [RoxioDragToDisc] => C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe [1695744 2005-02-04] (Roxio)
HKLM\...\Run: [OrderReminder] => C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [98304 2005-03-18] (Hewlett-Packard)
HKLM\...\Run: [jswtrayutil] => C:\Program Files\TP-LINK\QSS\jswtrayutil.exe [32871 2009-09-24] ()
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152 2008-03-25] (Hewlett-Packard)
HKLM\...\Run: [EaseUs Watch] => C:\Program Files\EaseUS\Todo Backup\bin\EuWatch.exe [70792 2011-12-22] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM\...\Run: [EaseUs Tray] => C:\Program Files\EaseUS\Todo Backup\bin\TrayNotify.exe [743560 2011-12-26] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [2219184 2011-01-12] (ESET)
HKLM\...\Run: [hpqSRMon] => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [81920 2008-03-13] (Hewlett-Packard)
HKLM\...\Run: [Skd8821] => C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\SKD8821.exe [286208 2010-06-01] (LITE-ON TECHNOLOGY CORP.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-57989841-1078081533-725345543-1003\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-57989841-1078081533-725345543-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
HKU\S-1-5-21-57989841-1078081533-725345543-1003\...\Run: [SifupUbolx] => regsvr32.exe "C:\Documents and Settings\All Users\Data aplikacĂ­\SifupUbolx\EijpAcule.ivz"
HKU\S-1-5-18\...\Policies\Explorer: [CDRAutoRun] 0
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\Helena\Nabídka Start\Programy\Po spuštění\DOSprn.lnk
ShortcutTarget: DOSprn.lnk -> C:\Program Files\Dosprn\DOSprn.exe (DOSPRN)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-57989841-1078081533-725345543-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKU\S-1-5-21-57989841-1078081533-725345543-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKU\S-1-5-21-57989841-1078081533-725345543-1003 -> {9A221867-893D-41E0-A38C-1AA7877D0BBC} URL = http://search.seznam.cz/?q={searchTerms ... chmodule_2
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
DPF: {2DAD3559-2923-4935-AD49-B673D2539944} http://support.lenovo.com/Resources/Len ... Detect.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 5763461156
DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.3.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Helena\Data aplikacĂ­\Mozilla\Firefox\Profiles\doumxqvh.default
FF Homepage: hxxp://www.seznam.cz/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-01-05]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2012-01-08]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012-01-10]
FF HKU\S-1-5-21-57989841-1078081533-725345543-1003\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Helena\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.102\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Documents and Settings\Helena\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.102\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\Helena\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.102\pdf.dll No File
CHR Plugin: (AVG Internet Security) - C:\Documents and Settings\Helena\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1901_0\plugins/avgnpss.dll No File
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Software602 Form Filler) - C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Profile: C:\Documents and Settings\Helena\Local Settings\Data aplikacĂ­\Google\Chrome\User Data\Default
CHR StartMenuInternet: Google Chrome - C:\Documents and Settings\Helena\Local Settings\Data aplikacĂ­\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe [61064 2011-12-22] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
S3 EhttpSrv; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [33584 2011-01-12] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [810144 2011-01-12] (ESET)
R2 Guard Agent; C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe [23176 2011-12-22] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2008-03-25] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [135168 2008-03-25] (Hewlett-Packard Co.) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-04-14] (Oracle Corporation)
R2 jswpbapi; C:\Program Files\TP-LINK\QSS\jswpbapi.exe [188416 2009-09-21] (Wireless) [File not signed]
S3 jswpsapi; C:\Program Files\TP-LINK\QSS\jswpsapi.exe [360529 2009-09-21] (wireless) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [38912 2005-01-13] () [File not signed]
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [43520 2008-02-28] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53248 2008-02-28] (Hewlett-Packard) [File not signed]
R2 Sks8821; C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\Sks8821.exe [125952 2010-05-04] () [File not signed]
R2 SUService; C:\Program Files\Lenovo\System Update\SUService.exe [28672 2011-07-25] (Lenovo Group Limited) [File not signed]
R2 TVT Scheduler; C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe [1122304 2008-03-04] (Lenovo Group Limited) [File not signed]
S3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{92D7FFB6-2BB8-4103-B6D4-FF7B70C4A120}

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 arusb(TP-LINK); C:\WINDOWS\System32\DRIVERS\arusb.sys [598528 2010-06-01] (Atheros Communications, Inc.)
R1 Cdr4_xp; C:\WINDOWS\system32\Drivers\Cdr4_xp.sys [44288 2005-02-04] (Roxio) [File not signed]
R1 Cdralw2k; C:\WINDOWS\system32\Drivers\Cdralw2k.sys [24832 2005-02-04] (Roxio) [File not signed]
R1 cdudf_xp; C:\WINDOWS\system32\Drivers\cdudf_xp.sys [291456 2005-02-04] (Roxio) [File not signed]
R1 DVDVRRdr_xp; C:\WINDOWS\system32\Drivers\DVDVRRdr_xp.sys [141184 2005-02-04] (Windows (R) 2000 DDK provider) [File not signed]
R3 dvd_2K; C:\WINDOWS\system32\Drivers\dvd_2K.sys [24064 2005-02-04] (Roxio) [File not signed]
R2 eamon; C:\WINDOWS\System32\DRIVERS\eamon.sys [141264 2010-12-21] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [115008 2010-12-21] (ESET)
R2 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [134000 2010-12-21] (ESET)
R3 Epfwndis; C:\WINDOWS\System32\DRIVERS\Epfwndis.sys [33120 2010-12-21] (ESET)
R1 epfwtdi; C:\WINDOWS\System32\DRIVERS\epfwtdi.sys [55256 2010-08-03] (ESET)
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [50312 2011-12-22] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [43784 2011-12-22] () [File not signed]
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [16008 2011-12-22] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [185864 2011-12-22] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2008-04-16] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2008-04-16] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2008-04-16] (HP)
R3 JSWSCIMD; C:\WINDOWS\System32\DRIVERS\jswscimd.sys [57440 2009-09-21] (Atheros Communications, Inc.)
R3 MEI; C:\WINDOWS\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Intel Corporation)
S3 mmc_2K; C:\WINDOWS\system32\Drivers\mmc_2K.sys [23808 2005-02-04] (Roxio) [File not signed]
R1 pwd_2k; C:\WINDOWS\system32\Drivers\pwd_2k.sys [117632 2005-02-04] (Roxio) [File not signed]
R1 UDFReadr; C:\WINDOWS\system32\Drivers\UDFReadr.sys [202368 2005-02-04] (Roxio) [File not signed]
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-16 08:13 - 2015-01-16 08:13 - 00017833 _____ () C:\Documents and Settings\Helena\Plocha\FRST.txt
2015-01-16 08:13 - 2015-01-16 08:13 - 00000000 ____D () C:\FRST
2015-01-16 08:11 - 2015-01-16 08:11 - 01116672 _____ (Farbar) C:\Documents and Settings\Helena\Plocha\FRST.exe
2015-01-16 08:11 - 2015-01-16 08:11 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Helena\Plocha\FRSTLauncher.exe
2015-01-14 23:45 - 2015-01-14 23:45 - 00000000 ____D () C:\Documents and Settings\Helena\Plocha\VZP
2015-01-14 18:48 - 2015-01-14 19:11 - 00000000 ____D () C:\Program Files\Mozilla Thunderbird
2015-01-13 21:45 - 2015-01-14 16:48 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikacĂ­\SifupUbolx
2015-01-12 21:42 - 2015-01-12 21:42 - 00001228 _____ () C:\MS2
2015-01-12 21:41 - 2015-01-12 21:41 - 00000682 _____ () C:\MS1
2015-01-10 10:05 - 2015-01-10 10:05 - 00001129 _____ () C:\MK1
2015-01-10 10:05 - 2015-01-10 10:05 - 00000875 _____ () C:\MK2
2015-01-10 10:05 - 2015-01-10 10:05 - 00000784 _____ () C:\MK3
2015-01-07 18:12 - 2015-01-07 18:12 - 00001215 _____ () C:\IM5
2015-01-07 18:12 - 2015-01-07 18:12 - 00001055 _____ () C:\IM6
2015-01-07 18:12 - 2015-01-07 18:12 - 00001055 _____ () C:\IM4
2015-01-07 18:11 - 2015-01-07 18:11 - 00001229 _____ () C:\IM3
2015-01-07 18:11 - 2015-01-07 18:11 - 00001000 _____ () C:\IM2
2015-01-07 18:11 - 2015-01-07 18:11 - 00001000 _____ () C:\IM1
2015-01-04 10:46 - 2015-01-04 10:46 - 00001228 _____ () C:\MD2
2015-01-04 10:46 - 2015-01-04 10:46 - 00000886 _____ () C:\MD3
2015-01-04 10:45 - 2015-01-04 10:45 - 00000718 _____ () C:\MD1
2014-12-30 10:13 - 2014-12-30 10:16 - 00000000 ____D () C:\Documents and Settings\Helena\Dokumenty\AniÄŤka

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-16 08:13 - 2012-01-05 12:26 - 00000000 ___HD () C:\Documents and Settings\Helena\Local Settings\Data aplikacĂ­
2015-01-16 08:13 - 2012-01-05 12:26 - 00000000 ____D () C:\Documents and Settings\Helena\Plocha
2015-01-16 08:13 - 2012-01-05 12:26 - 00000000 ____D () C:\Documents and Settings\Helena\Local Settings\Temp
2015-01-16 08:12 - 2012-01-06 10:02 - 00000000 ____D () C:\Documents and Settings\Helena\Dokumenty\Stažené soubory
2015-01-16 08:08 - 2012-01-06 09:57 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-01-16 07:50 - 2012-01-06 13:06 - 00000000 ____D () C:\Documents and Settings\Helena\Data aplikacĂ­\Skype
2015-01-16 07:17 - 2012-01-05 12:19 - 01699189 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-16 07:16 - 2012-01-06 12:33 - 00001997 _____ () C:\dosprn.log
2015-01-16 07:15 - 2013-12-19 21:02 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-16 07:15 - 2006-03-02 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-01-16 07:14 - 2014-03-07 16:30 - 00000224 _____ () C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-01-16 07:14 - 2012-01-05 13:11 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-01-16 07:14 - 2012-01-05 13:11 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-01-16 07:14 - 2012-01-05 12:23 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-16 00:29 - 2012-01-05 12:23 - 00032596 _____ () C:\WINDOWS\SchedLgU.Txt
2015-01-15 22:49 - 2012-01-05 12:26 - 00000000 ____D () C:\Documents and Settings\Helena
2015-01-15 20:32 - 2014-06-29 13:51 - 00000000 ____D () C:\Documents and Settings\Helena\Dokumenty\DanÄ›
2015-01-15 08:31 - 2012-01-05 12:26 - 00000178 ___SH () C:\Documents and Settings\Helena\ntuser.ini
2015-01-15 00:01 - 2013-07-16 21:42 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-15 00:00 - 2012-01-05 13:08 - 110348472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-01-14 23:27 - 2014-09-04 20:09 - 00001682 _____ () C:\Documents and Settings\Helena\Plocha\VZP.cer
2015-01-14 23:17 - 2012-01-06 12:45 - 00000000 ____D () C:\Documents and Settings\Helena\Dokumenty\Pracovní - účto
2015-01-14 23:07 - 2014-01-05 15:50 - 00000000 ____D () C:\UCET
2015-01-14 00:15 - 2013-12-19 21:02 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-01-14 00:15 - 2012-01-06 12:31 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-01-13 22:43 - 2012-01-06 10:34 - 00000000 ____D () C:\JUCET
2015-01-13 21:45 - 2012-01-05 13:08 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikacĂ­
2015-01-12 21:52 - 2014-12-02 17:48 - 00045035 _____ () C:\Documents and Settings\Helena\Plocha\Vyplneno_PVPOJ_v50_publikovano_5.11.2014.zfo
2015-01-12 21:47 - 2014-12-07 17:57 - 00002147 _____ () C:\out_filler.dat
2015-01-11 13:04 - 2013-10-18 20:14 - 00000000 ____D () C:\Documents and Settings\Helena\Plocha\DPH datová schránka
2015-01-11 12:07 - 2012-01-05 12:26 - 00000000 ___RD () C:\Documents and Settings\Helena\Dokumenty
2015-01-10 20:15 - 2012-01-06 12:46 - 00111616 _____ () C:\Documents and Settings\Helena\Dokumenty\KalkulackaDSL_viceLet (version 1).xls
2015-01-08 16:46 - 2012-01-05 12:26 - 00000000 ___RD () C:\Documents and Settings\Helena\Oblíbené položky
2015-01-08 16:16 - 2014-03-07 16:30 - 00000218 _____ () C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-01-04 11:53 - 2012-01-06 12:45 - 00000000 ____D () C:\Documents and Settings\Helena\Dokumenty\Moje naskenované obrázky
2015-01-04 11:24 - 2014-12-02 19:39 - 00045005 _____ () C:\Documents and Settings\Helena\Plocha\Vyplneno_PVPOJ_v50_publikovano_05.11.2014.zfo
2014-12-30 10:20 - 2012-01-06 12:43 - 00000000 ___RD () C:\Documents and Settings\Helena\Dokumenty\kris
2014-12-30 09:46 - 2012-02-04 15:58 - 00000000 ____D () C:\PSMZDY
2014-12-17 05:44 - 2012-01-05 13:08 - 01022012 _____ () C:\WINDOWS\system32\PerfStringBackup.INI

Some content of TEMP:
====================
C:\Documents and Settings\Helena\Local Settings\Temp\difxapi.dll
C:\Documents and Settings\Helena\Local Settings\Temp\errfix.exe
C:\Documents and Settings\Helena\Local Settings\Temp\FP_PL_PFS_INSTALLER_32bit.exe
C:\Documents and Settings\Helena\Local Settings\Temp\hpzmsi01.exe
C:\Documents and Settings\Helena\Local Settings\Temp\hpzscr01.EXE
C:\Documents and Settings\Helena\Local Settings\Temp\jre-7u51-windows-i586-iftw.exe
C:\Documents and Settings\Helena\Local Settings\Temp\jre-7u55-windows-i586-iftw.exe
C:\Documents and Settings\Helena\Local Settings\Temp\setup_wm.exe
C:\Documents and Settings\Helena\Local Settings\Temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:465.75 GB) (Free:401.57 GB) NTFS ==>[Drive with boot components (Windows XP)]

Available physical RAM: 2188.4 MB
Total physical RAM: 2922.34 MB
Percentage of memory in use: 25%

==================== MBR and Partition Table ==================

2012-01-10 15:08 - 2011-12-22 23:08 - 00114312 _____ () C:\Program Files\EaseUS\Todo Backup\bin\ExchBackupSize.dll
Disk: 0 (Size: 465.8 GB) (Disk ID: 83795070)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: ESET Smart Security 4.2 (Disabled - Up to date) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall (Disabled) {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\Helena\Plocha" je 575 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe:*:Enabled:hposid01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\\Program Files\\Common Files\\HP\\Digital Imaging\\bin\\hpqPhotoCrm.exe"="C:\\Program Files\\Common Files\\HP\\Digital Imaging\\bin\\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpsapp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpsapp.exe:*:Enabled:hpqpsapp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpse.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpse.exe:*:Enabled:hpqpse.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqsudi.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqsudi.exe:*:Enabled:hpqsudi.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"="C:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe:*:Enabled:Instal tor AVG"
"C:\\Program Files\\Common Files\\soft602\\langserv.exe"="C:\\Program Files\\Common Files\\soft602\\langserv.exe:*:Enabled:Software602 Spell Checker"
"C:\\Program Files\\EaseUS\\Todo Backup\\bin\\Agent.exe"="C:\\Program Files\\EaseUS\\Todo Backup\\bin\\Agent.exe:*:Enabled:Agent.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe:*:Enabled:hposid01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\\Program Files\\Common Files\\HP\\Digital Imaging\\bin\\hpqPhotoCrm.exe"="C:\\Program Files\\Common Files\\HP\\Digital Imaging\\bin\\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpsapp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpsapp.exe:*:Enabled:hpqpsapp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpse.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpse.exe:*:Enabled:hpqpse.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqsudi.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqsudi.exe:*:Enabled:hpqsudi.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000


==================== End Of Log ==============================

Re: Eset asi neodstranil vše

Napsal: 16 led 2015 10:39
od JaRon
ahoj,
je to v podstate OK
- Velikost slozky "C:\Documents and Settings\Helena\Plocha" je 575 MB.
uprac plochu, aby to bolo menej ako 300MB
- vycisti PC s CCleanerom

Re: Eset asi neodstranil vše

Napsal: 19 led 2015 11:13
od Carlos2
Díky, ty hlášky, co se objevovaly po restartu byly asi důsledkem zabordelených registrů po odstranění toho nepořádku Esetem, po CCleaneru už je vše OK.
Plochu uklidila na 75 MB :) Jaký je důvod pro redukci objemu Plochy? Rychlejší vykreslování Plochy?

Re: Eset asi neodstranil vše

Napsal: 19 led 2015 11:18
od JaRon
objem plochy sa natahuje pri starte a ak je neumerne velky, predlzuje sa doba startu PC >> od zapnutia po nacitanie plochy :James008:
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz