Preventivka po dlhej dobe
Napsal: 15 úno 2015 19:43
Zdravím všetkých.
Prosím o preventívnu kontrolu. Nemám teraz nijak závažný problém s kompom, ale zdá sa mi, že je tam spustených príliš mnoho procesov a pritom mám zapnutý len net a v ňom 5 okien. Neviem či je to tak správne, nevyznám sa v tom.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-02-2015
Ran by Taťka (administrator) on HOME-COMPIK on 15-02-2015 19:37:25
Running from C:\Documents and Settings\Taťka\Plocha
Loaded Profiles: pc & UpdatusUser & Taťka (Available profiles: pc & UpdatusUser & Taťka)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
() C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
(Nero AG) C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
() C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\loggingserver.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
() C:\WINDOWS\VMSnap26.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
() C:\Program Files\AVG Web TuneUp\vprot.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\WINDOWS\system32\taskmgr.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2013-01-31] ()
HKLM\...\Run: [ArcSoft Connection Service] => C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM\...\Run: [VirtualCloneDrive] => C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM\...\Run: [BigDogPath326VMSnap] => C:\WINDOWS\VMSnap26.exe [90112 2007-07-06] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3667472 2014-12-18] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [vProt] => C:\Program Files\AVG Web TuneUp\vprot.exe [2662424 2014-10-06] ()
HKLM\...\Run: [BluetoothAuthenticationAgent] => rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\Run: [QIP Internet Guardian] => C:\Documents and Settings\pc\Data aplikací\QipGuard\QipGuard.exe [187776 2010-12-13] (QIP.ru)
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [139264 2006-11-16] (Nero AG)
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\Run: [Facebook Update] => C:\Documents and Settings\pc\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe [138096 2013-11-07] (Facebook Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2015\avgrsx.exe /sync /restart
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
URLSearchHook: [S-1-5-21-1078081533-1993962763-1644491937-1004] ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {3CD82338-0B21-4155-8478-CE218D485740} URL = http://www.bing.com/search?FORM=UP97DF& ... -SearchBox
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {5626B323-8039-4943-B9EE-65BF22C5276A} URL = http://search.yahoo.com/search?p={searc ... 8&fr=b1ie7
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\3.2.0\ViProtocol.dll (AVG Secure Search)
ShellExecuteHooks: - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No File [ ]
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Taťka\Data aplikací\Mozilla\Firefox\Profiles\f7z9wtlk.default-1421522225859
FF Homepage: https://www.seznam.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\3.2.0\\npsitesafety.dll No File
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nullsoft.com/winampDetector;version=1 -> C:\Program Files\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1078081533-1993962763-1644491937-1003: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Documents and Settings\pc\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKU\S-1-5-21-1078081533-1993962763-1644491937-1009: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Documents and Settings\Taťka\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF SearchPlugin: C:\Documents and Settings\Taťka\Data aplikací\Mozilla\Firefox\Profiles\f7z9wtlk.default-1421522225859\searchplugins\npovda-k-firefoxu.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\wtu-secure-search.xml
FF Extension: Adblock Plus - C:\Documents and Settings\Taťka\Data aplikací\Mozilla\Firefox\Profiles\f7z9wtlk.default-1421522225859\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-01-27]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-06-23]
Chrome:
=======
CHR Profile: C:\Documents and Settings\Taťka\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\Taťka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-09-15]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - No Path
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - No Path
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
ATTENTION: => Could not perform signature verification. Cryptographic Service is not running.
R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3432976 2014-12-18] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [298080 2014-12-18] (AVG Technologies CZ, s.r.o.)
R2 BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [110592 2005-04-06] ()
R2 InCDsrv; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [859136 2006-11-10] (Nero AG)
S2 vToolbarUpdater3.2.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\ToolbarUpdater.exe [1843736 2014-08-29] (AVG Secure Search)
S2 PEVSystemStart; No ImagePath
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.)
R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2297664 2004-11-17] (Realtek Semiconductor Corp.)
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriverl; C:\WINDOWS\System32\DRIVERS\avgidsdriverlx.sys [192792 2014-12-08] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [154904 2014-11-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [192792 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [230680 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [98584 2014-10-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [200984 2014-10-10] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [42784 2014-08-29] (AVG Technologies)
R3 BlueletAudio; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [20480 2005-08-31] (IVT Corporation)
R3 BlueletSCOAudio; C:\WINDOWS\System32\DRIVERS\BlueletSCOAudio.sys [20480 2005-08-31] (IVT Corporation)
R3 BT; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [10068 2006-01-19] (IVT Corporation)
S3 Btcsrusb; C:\WINDOWS\System32\Drivers\btcusb.sys [23000 2005-10-23] (IVT Corporation)
R0 BtHidBus; C:\WINDOWS\System32\Drivers\BtHidBus.sys [20616 2008-07-31] (IVT Corporation.)
R3 BTHidEnum; C:\WINDOWS\System32\DRIVERS\vbtenum.sys [11988 2005-07-29] ()
R0 BTHidMgr; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [28271 2005-04-30] (IVT Corporation)
S3 BTNetFilter; C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys [14312 2006-04-14] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [30616 2013-03-04] (Elaborate Bytes AG)
R3 FETNDIS; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. )
R3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-14] (Microsoft Corporation)
S3 GVCplDrv; C:\WINDOWS\system32\Drivers\GVCplDrv.sys [23040 2004-05-02] ()
R0 imagedrv; C:\WINDOWS\System32\Drivers\imagedrv.sys [5888 2005-08-15] (Ahead Software AG)
R0 imagesrv; C:\WINDOWS\System32\DRIVERS\imagesrv.sys [127488 2005-08-15] (Ahead Software AG)
R4 InCDfs; C:\WINDOWS\System32\drivers\InCDFs.sys [102912 2006-11-10] (Nero AG)
R1 InCDPass; C:\WINDOWS\System32\drivers\InCDPass.sys [31360 2006-11-10] (Nero AG)
U1 InCDrec; C:\WINDOWS\system32\Drivers\InCDrec.sys [10624 2006-11-10] (Nero AG)
R1 incdrm; C:\WINDOWS\System32\drivers\InCDRm.sys [33792 2006-11-10] (Nero AG)
S3 IvtBtBUs; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [26248 2008-07-02] (IVT Corporation.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2013-06-23] (Padus, Inc.)
R3 usbvm328; C:\WINDOWS\System32\Drivers\vmcam326av.sys [104960 2007-10-18] (Vimicro Corporation)
R3 VComm; C:\WINDOWS\System32\DRIVERS\VComm.sys [61312 2004-10-19] (IVT Corporation)
R3 VcommMgr; C:\WINDOWS\System32\Drivers\VcommMgr.sys [84836 2006-02-28] (IVT Corporation)
R0 VIAMRAID; C:\WINDOWS\System32\DRIVERS\viamraid.sys [117248 2008-08-08] (VIA Technologies inc,.ltd)
R3 vvftav326_a4; C:\WINDOWS\System32\drivers\vvftav326.sys [480128 2007-07-03] (Vimicro Corporation)
S4 IntelIde; No ImagePath
U5 lanmanserver; C:\WINDOWS\system32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-15 19:37 - 2015-02-15 19:38 - 00013943 _____ () C:\Documents and Settings\Taťka\Plocha\FRST.txt
2015-02-15 19:34 - 2015-02-15 19:37 - 00000000 ____D () C:\FRST
2015-02-15 19:32 - 2015-02-15 19:34 - 01125888 _____ (Farbar) C:\Documents and Settings\Taťka\Plocha\FRST.exe
2015-02-15 11:34 - 2015-02-15 18:39 - 00001090 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-15 11:34 - 2015-02-15 11:42 - 00001086 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-15 11:33 - 2015-02-15 11:36 - 00000000 ____D () C:\Program Files\GUM13.tmp
2015-02-12 22:12 - 2015-02-12 22:14 - 00000000 ____D () C:\Documents and Settings\Taťka\Local Settings\Data aplikací\Ahead
2015-02-05 21:47 - 2015-02-08 08:01 - 00000000 ____D () C:\Documents and Settings\Taťka\Plocha\Úspešnosť
2015-01-28 17:29 - 2015-02-15 09:42 - 00006699 _____ () C:\WINDOWS\setupapi.log
2015-01-27 17:44 - 2015-01-27 17:45 - 00000000 ____D () C:\Program Files\Mozilla Firefox
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-15 19:38 - 2013-06-15 15:15 - 00000000 ____D () C:\Documents and Settings\Taťka\Local Settings\Temp
2015-02-15 19:37 - 2013-06-15 15:15 - 00000000 ___RD () C:\Documents and Settings\Taťka\Plocha
2015-02-15 19:25 - 2014-08-22 12:08 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-02-15 19:19 - 2013-06-15 07:21 - 00032366 _____ () C:\WINDOWS\SchedLgU.Txt
2015-02-15 19:19 - 2013-06-15 07:21 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-02-15 19:18 - 2013-06-15 08:11 - 00000178 ___SH () C:\Documents and Settings\UpdatusUser\ntuser.ini
2015-02-15 19:16 - 2013-06-15 07:21 - 00000272 ___SH () C:\Documents and Settings\pc\ntuser.ini
2015-02-15 19:16 - 2013-06-15 07:21 - 00000000 ____D () C:\Documents and Settings\pc\Local Settings\Temp
2015-02-15 19:16 - 2013-06-15 07:21 - 00000000 ____D () C:\Documents and Settings\pc
2015-02-15 18:43 - 2014-11-28 16:48 - 201147392 _____ () C:\Documents and Settings\Taťka\Dokumenty\archive.pst
2015-02-15 17:24 - 2014-11-08 14:24 - 00000000 ____D () C:\Documents and Settings\Taťka\Data aplikací\Skype
2015-02-15 17:10 - 2013-06-16 08:25 - 00000000 ____D () C:\Program Files\The KMPlayer
2015-02-15 14:51 - 2013-07-13 23:25 - 00000353 _____ () C:\WINDOWS\wiadebug.log
2015-02-15 13:12 - 2014-08-15 23:47 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\MFAData
2015-02-15 11:43 - 2013-06-15 07:21 - 00000000 ___HD () C:\Documents and Settings\pc\Local Settings\Data aplikací
2015-02-15 10:51 - 2013-06-25 16:47 - 00001112 _____ () C:\Documents and Settings\Taťka\intlname.ols
2015-02-15 00:00 - 2013-06-15 07:16 - 01817339 _____ () C:\WINDOWS\WindowsUpdate.log
2015-02-14 23:59 - 2013-07-13 23:25 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-02-14 23:59 - 2001-10-25 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-02-14 16:41 - 2013-06-15 15:15 - 00000272 ___SH () C:\Documents and Settings\Taťka\ntuser.ini
2015-02-12 22:12 - 2013-06-15 15:15 - 00000000 ___HD () C:\Documents and Settings\Taťka\Local Settings\Data aplikací
2015-02-12 20:08 - 2013-06-15 16:54 - 00022528 _____ () C:\Documents and Settings\Taťka\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-12 18:07 - 2014-08-21 16:14 - 00000000 ____D () C:\Documents and Settings\Taťka\Plocha\Nová složka
2015-02-12 14:42 - 2013-12-22 14:40 - 00000754 _____ () C:\WINDOWS\WORDPAD.INI
2015-02-08 19:40 - 2014-06-16 15:03 - 00000000 _____ () C:\WINDOWS\MEMORY.DMP
2015-02-06 17:55 - 2014-11-11 17:09 - 00031744 _____ () C:\Documents and Settings\Taťka\Plocha\Tabuľky.xls
2015-02-04 22:25 - 2014-08-22 12:08 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-02-04 22:25 - 2014-08-22 12:08 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-01-31 15:33 - 2013-06-15 07:21 - 00000000 ____D () C:\Documents and Settings\pc\Plocha
2015-01-28 16:14 - 2014-08-19 19:47 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-01-25 21:50 - 2013-08-03 20:29 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2015-01-17 20:17 - 2014-02-27 21:06 - 00000000 ____D () C:\Documents and Settings\Taťka\Plocha\Původní data aplikace Firefox
2015-01-17 20:09 - 2013-06-15 15:15 - 00000000 ____D () C:\Documents and Settings\Taťka
==================== Files in the root of some directories =======
2013-08-28 19:31 - 2007-01-16 22:37 - 0010684 ____R () C:\Program Files\ExportFormat.txt
2013-08-28 19:31 - 2007-02-22 20:08 - 0925696 _____ (GSpot Appliance Corp, a unit of GSp0t Heavy Industries) C:\Program Files\GSpot.exe
2013-08-28 19:31 - 2007-02-19 15:28 - 0117974 ____R () C:\Program Files\GSpot27.dat
2013-08-28 19:31 - 2007-01-16 22:37 - 0003615 ____R () C:\Program Files\license.txt
2013-08-09 12:04 - 2013-08-17 18:56 - 0000000 _____ () C:\Documents and Settings\Taťka\Data aplikací\Hybrid Chords
2013-08-09 12:05 - 2013-08-09 12:05 - 0000268 ___RH () C:\Documents and Settings\Taťka\Data aplikací\Hybrid Morph
2013-08-09 12:04 - 2013-08-09 12:04 - 0000268 ___RH () C:\Documents and Settings\Taťka\Data aplikací\Internet Services
2013-06-15 16:54 - 2015-02-12 20:08 - 0022528 _____ () C:\Documents and Settings\Taťka\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-30 03:40 - 2014-12-30 03:40 - 0005798 _____ () C:\Documents and Settings\Taťka\Local Settings\Data aplikací\recently-used.xbel
Some content of TEMP:
====================
C:\Documents and Settings\Taťka\Local Settings\Temp\SkypeSetup.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1
C:\WINDOWS\system32\winlogon.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea
C:\WINDOWS\system32\svchost.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\WINDOWS\system32\services.exe
[2008-04-14 07:52] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\WINDOWS\system32\User32.dll
[2008-04-14 07:52] - [2008-04-14 07:52] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53
C:\WINDOWS\system32\userinit.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\volsnap.sys
[2008-04-14 06:42] - [2008-04-14 06:42] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
==================== End Of Log ============================
Prosím o preventívnu kontrolu. Nemám teraz nijak závažný problém s kompom, ale zdá sa mi, že je tam spustených príliš mnoho procesov a pritom mám zapnutý len net a v ňom 5 okien. Neviem či je to tak správne, nevyznám sa v tom.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-02-2015
Ran by Taťka (administrator) on HOME-COMPIK on 15-02-2015 19:37:25
Running from C:\Documents and Settings\Taťka\Plocha
Loaded Profiles: pc & UpdatusUser & Taťka (Available profiles: pc & UpdatusUser & Taťka)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
() C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
(Nero AG) C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
() C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\loggingserver.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
() C:\WINDOWS\VMSnap26.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
() C:\Program Files\AVG Web TuneUp\vprot.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\WINDOWS\system32\taskmgr.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2013-01-31] ()
HKLM\...\Run: [ArcSoft Connection Service] => C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM\...\Run: [VirtualCloneDrive] => C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM\...\Run: [BigDogPath326VMSnap] => C:\WINDOWS\VMSnap26.exe [90112 2007-07-06] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3667472 2014-12-18] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [vProt] => C:\Program Files\AVG Web TuneUp\vprot.exe [2662424 2014-10-06] ()
HKLM\...\Run: [BluetoothAuthenticationAgent] => rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\Run: [QIP Internet Guardian] => C:\Documents and Settings\pc\Data aplikací\QipGuard\QipGuard.exe [187776 2010-12-13] (QIP.ru)
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [139264 2006-11-16] (Nero AG)
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\Run: [Facebook Update] => C:\Documents and Settings\pc\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe [138096 2013-11-07] (Facebook Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2015\avgrsx.exe /sync /restart
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
URLSearchHook: [S-1-5-21-1078081533-1993962763-1644491937-1004] ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {3CD82338-0B21-4155-8478-CE218D485740} URL = http://www.bing.com/search?FORM=UP97DF& ... -SearchBox
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {5626B323-8039-4943-B9EE-65BF22C5276A} URL = http://search.yahoo.com/search?p={searc ... 8&fr=b1ie7
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\3.2.0\ViProtocol.dll (AVG Secure Search)
ShellExecuteHooks: - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No File [ ]
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Taťka\Data aplikací\Mozilla\Firefox\Profiles\f7z9wtlk.default-1421522225859
FF Homepage: https://www.seznam.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\3.2.0\\npsitesafety.dll No File
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nullsoft.com/winampDetector;version=1 -> C:\Program Files\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1078081533-1993962763-1644491937-1003: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Documents and Settings\pc\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKU\S-1-5-21-1078081533-1993962763-1644491937-1009: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Documents and Settings\Taťka\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF SearchPlugin: C:\Documents and Settings\Taťka\Data aplikací\Mozilla\Firefox\Profiles\f7z9wtlk.default-1421522225859\searchplugins\npovda-k-firefoxu.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\wtu-secure-search.xml
FF Extension: Adblock Plus - C:\Documents and Settings\Taťka\Data aplikací\Mozilla\Firefox\Profiles\f7z9wtlk.default-1421522225859\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-01-27]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-06-23]
Chrome:
=======
CHR Profile: C:\Documents and Settings\Taťka\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\Taťka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-09-15]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - No Path
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - No Path
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
ATTENTION: => Could not perform signature verification. Cryptographic Service is not running.
R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3432976 2014-12-18] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [298080 2014-12-18] (AVG Technologies CZ, s.r.o.)
R2 BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [110592 2005-04-06] ()
R2 InCDsrv; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [859136 2006-11-10] (Nero AG)
S2 vToolbarUpdater3.2.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\ToolbarUpdater.exe [1843736 2014-08-29] (AVG Secure Search)
S2 PEVSystemStart; No ImagePath
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.)
R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2297664 2004-11-17] (Realtek Semiconductor Corp.)
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriverl; C:\WINDOWS\System32\DRIVERS\avgidsdriverlx.sys [192792 2014-12-08] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [154904 2014-11-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [192792 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [230680 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [98584 2014-10-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [200984 2014-10-10] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [42784 2014-08-29] (AVG Technologies)
R3 BlueletAudio; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [20480 2005-08-31] (IVT Corporation)
R3 BlueletSCOAudio; C:\WINDOWS\System32\DRIVERS\BlueletSCOAudio.sys [20480 2005-08-31] (IVT Corporation)
R3 BT; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [10068 2006-01-19] (IVT Corporation)
S3 Btcsrusb; C:\WINDOWS\System32\Drivers\btcusb.sys [23000 2005-10-23] (IVT Corporation)
R0 BtHidBus; C:\WINDOWS\System32\Drivers\BtHidBus.sys [20616 2008-07-31] (IVT Corporation.)
R3 BTHidEnum; C:\WINDOWS\System32\DRIVERS\vbtenum.sys [11988 2005-07-29] ()
R0 BTHidMgr; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [28271 2005-04-30] (IVT Corporation)
S3 BTNetFilter; C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys [14312 2006-04-14] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [30616 2013-03-04] (Elaborate Bytes AG)
R3 FETNDIS; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. )
R3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-14] (Microsoft Corporation)
S3 GVCplDrv; C:\WINDOWS\system32\Drivers\GVCplDrv.sys [23040 2004-05-02] ()
R0 imagedrv; C:\WINDOWS\System32\Drivers\imagedrv.sys [5888 2005-08-15] (Ahead Software AG)
R0 imagesrv; C:\WINDOWS\System32\DRIVERS\imagesrv.sys [127488 2005-08-15] (Ahead Software AG)
R4 InCDfs; C:\WINDOWS\System32\drivers\InCDFs.sys [102912 2006-11-10] (Nero AG)
R1 InCDPass; C:\WINDOWS\System32\drivers\InCDPass.sys [31360 2006-11-10] (Nero AG)
U1 InCDrec; C:\WINDOWS\system32\Drivers\InCDrec.sys [10624 2006-11-10] (Nero AG)
R1 incdrm; C:\WINDOWS\System32\drivers\InCDRm.sys [33792 2006-11-10] (Nero AG)
S3 IvtBtBUs; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [26248 2008-07-02] (IVT Corporation.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2013-06-23] (Padus, Inc.)
R3 usbvm328; C:\WINDOWS\System32\Drivers\vmcam326av.sys [104960 2007-10-18] (Vimicro Corporation)
R3 VComm; C:\WINDOWS\System32\DRIVERS\VComm.sys [61312 2004-10-19] (IVT Corporation)
R3 VcommMgr; C:\WINDOWS\System32\Drivers\VcommMgr.sys [84836 2006-02-28] (IVT Corporation)
R0 VIAMRAID; C:\WINDOWS\System32\DRIVERS\viamraid.sys [117248 2008-08-08] (VIA Technologies inc,.ltd)
R3 vvftav326_a4; C:\WINDOWS\System32\drivers\vvftav326.sys [480128 2007-07-03] (Vimicro Corporation)
S4 IntelIde; No ImagePath
U5 lanmanserver; C:\WINDOWS\system32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-15 19:37 - 2015-02-15 19:38 - 00013943 _____ () C:\Documents and Settings\Taťka\Plocha\FRST.txt
2015-02-15 19:34 - 2015-02-15 19:37 - 00000000 ____D () C:\FRST
2015-02-15 19:32 - 2015-02-15 19:34 - 01125888 _____ (Farbar) C:\Documents and Settings\Taťka\Plocha\FRST.exe
2015-02-15 11:34 - 2015-02-15 18:39 - 00001090 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-15 11:34 - 2015-02-15 11:42 - 00001086 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-15 11:33 - 2015-02-15 11:36 - 00000000 ____D () C:\Program Files\GUM13.tmp
2015-02-12 22:12 - 2015-02-12 22:14 - 00000000 ____D () C:\Documents and Settings\Taťka\Local Settings\Data aplikací\Ahead
2015-02-05 21:47 - 2015-02-08 08:01 - 00000000 ____D () C:\Documents and Settings\Taťka\Plocha\Úspešnosť
2015-01-28 17:29 - 2015-02-15 09:42 - 00006699 _____ () C:\WINDOWS\setupapi.log
2015-01-27 17:44 - 2015-01-27 17:45 - 00000000 ____D () C:\Program Files\Mozilla Firefox
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-15 19:38 - 2013-06-15 15:15 - 00000000 ____D () C:\Documents and Settings\Taťka\Local Settings\Temp
2015-02-15 19:37 - 2013-06-15 15:15 - 00000000 ___RD () C:\Documents and Settings\Taťka\Plocha
2015-02-15 19:25 - 2014-08-22 12:08 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-02-15 19:19 - 2013-06-15 07:21 - 00032366 _____ () C:\WINDOWS\SchedLgU.Txt
2015-02-15 19:19 - 2013-06-15 07:21 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-02-15 19:18 - 2013-06-15 08:11 - 00000178 ___SH () C:\Documents and Settings\UpdatusUser\ntuser.ini
2015-02-15 19:16 - 2013-06-15 07:21 - 00000272 ___SH () C:\Documents and Settings\pc\ntuser.ini
2015-02-15 19:16 - 2013-06-15 07:21 - 00000000 ____D () C:\Documents and Settings\pc\Local Settings\Temp
2015-02-15 19:16 - 2013-06-15 07:21 - 00000000 ____D () C:\Documents and Settings\pc
2015-02-15 18:43 - 2014-11-28 16:48 - 201147392 _____ () C:\Documents and Settings\Taťka\Dokumenty\archive.pst
2015-02-15 17:24 - 2014-11-08 14:24 - 00000000 ____D () C:\Documents and Settings\Taťka\Data aplikací\Skype
2015-02-15 17:10 - 2013-06-16 08:25 - 00000000 ____D () C:\Program Files\The KMPlayer
2015-02-15 14:51 - 2013-07-13 23:25 - 00000353 _____ () C:\WINDOWS\wiadebug.log
2015-02-15 13:12 - 2014-08-15 23:47 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\MFAData
2015-02-15 11:43 - 2013-06-15 07:21 - 00000000 ___HD () C:\Documents and Settings\pc\Local Settings\Data aplikací
2015-02-15 10:51 - 2013-06-25 16:47 - 00001112 _____ () C:\Documents and Settings\Taťka\intlname.ols
2015-02-15 00:00 - 2013-06-15 07:16 - 01817339 _____ () C:\WINDOWS\WindowsUpdate.log
2015-02-14 23:59 - 2013-07-13 23:25 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-02-14 23:59 - 2001-10-25 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-02-14 16:41 - 2013-06-15 15:15 - 00000272 ___SH () C:\Documents and Settings\Taťka\ntuser.ini
2015-02-12 22:12 - 2013-06-15 15:15 - 00000000 ___HD () C:\Documents and Settings\Taťka\Local Settings\Data aplikací
2015-02-12 20:08 - 2013-06-15 16:54 - 00022528 _____ () C:\Documents and Settings\Taťka\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-12 18:07 - 2014-08-21 16:14 - 00000000 ____D () C:\Documents and Settings\Taťka\Plocha\Nová složka
2015-02-12 14:42 - 2013-12-22 14:40 - 00000754 _____ () C:\WINDOWS\WORDPAD.INI
2015-02-08 19:40 - 2014-06-16 15:03 - 00000000 _____ () C:\WINDOWS\MEMORY.DMP
2015-02-06 17:55 - 2014-11-11 17:09 - 00031744 _____ () C:\Documents and Settings\Taťka\Plocha\Tabuľky.xls
2015-02-04 22:25 - 2014-08-22 12:08 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-02-04 22:25 - 2014-08-22 12:08 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-01-31 15:33 - 2013-06-15 07:21 - 00000000 ____D () C:\Documents and Settings\pc\Plocha
2015-01-28 16:14 - 2014-08-19 19:47 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-01-25 21:50 - 2013-08-03 20:29 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2015-01-17 20:17 - 2014-02-27 21:06 - 00000000 ____D () C:\Documents and Settings\Taťka\Plocha\Původní data aplikace Firefox
2015-01-17 20:09 - 2013-06-15 15:15 - 00000000 ____D () C:\Documents and Settings\Taťka
==================== Files in the root of some directories =======
2013-08-28 19:31 - 2007-01-16 22:37 - 0010684 ____R () C:\Program Files\ExportFormat.txt
2013-08-28 19:31 - 2007-02-22 20:08 - 0925696 _____ (GSpot Appliance Corp, a unit of GSp0t Heavy Industries) C:\Program Files\GSpot.exe
2013-08-28 19:31 - 2007-02-19 15:28 - 0117974 ____R () C:\Program Files\GSpot27.dat
2013-08-28 19:31 - 2007-01-16 22:37 - 0003615 ____R () C:\Program Files\license.txt
2013-08-09 12:04 - 2013-08-17 18:56 - 0000000 _____ () C:\Documents and Settings\Taťka\Data aplikací\Hybrid Chords
2013-08-09 12:05 - 2013-08-09 12:05 - 0000268 ___RH () C:\Documents and Settings\Taťka\Data aplikací\Hybrid Morph
2013-08-09 12:04 - 2013-08-09 12:04 - 0000268 ___RH () C:\Documents and Settings\Taťka\Data aplikací\Internet Services
2013-06-15 16:54 - 2015-02-12 20:08 - 0022528 _____ () C:\Documents and Settings\Taťka\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-30 03:40 - 2014-12-30 03:40 - 0005798 _____ () C:\Documents and Settings\Taťka\Local Settings\Data aplikací\recently-used.xbel
Some content of TEMP:
====================
C:\Documents and Settings\Taťka\Local Settings\Temp\SkypeSetup.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1
C:\WINDOWS\system32\winlogon.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea
C:\WINDOWS\system32\svchost.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\WINDOWS\system32\services.exe
[2008-04-14 07:52] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\WINDOWS\system32\User32.dll
[2008-04-14 07:52] - [2008-04-14 07:52] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53
C:\WINDOWS\system32\userinit.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\volsnap.sys
[2008-04-14 06:42] - [2008-04-14 06:42] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
==================== End Of Log ============================
