Stránka 1 z 1

BSDO - prosba o kontrolu logu

Napsal: 17 pro 2015 16:47
od Carlos2
Dobrý den,

prosím o kontrolu vloženého logu. Počítač začal házet BSDO KERNEL_MODE_EXCEPTION_NOT_HANDLED 0x1000008e. Než budu pokračovat v pokusech o hledání příčin, rád bych vyloučil problém s havětí. Počítač býval firemní, stávající majitelka ho odkoupila. Stačí mi, když budu vědět, zda je tam s havětí problém nebo není. Pokud bude odpověď ano, nasměruji majitelku na placenou podporu k vyřešení.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:17-12-2015
Ran by dvorakova (administrator) on DVORAKOVANB (17-12-2015 16:33:17)
Running from C:\Documents and Settings\dvorakova\Plocha
Loaded Profiles: dvorakova (Available Profiles: uzivatel & sulekmichal & dvorakova & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 6 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
() C:\WINDOWS\system32\WLTRYSVC.EXE
(Dell Inc.) C:\WINDOWS\system32\BCMWLTRY.EXE
(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
(Microsoft Corporation) C:\WINDOWS\system32\scardsvr.exe
(Cisco Systems, Inc.) C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
() C:\Program Files\STMicroelectronics\AccelerometerP11\InstallFilterService.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Wave Systems Corp.) C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
(RealVNC Ltd.) C:\Program Files\RealVNC\VNC4\winvnc4.exe
(Dell Inc.) C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe
(Dell Inc.) C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Andrea Electronics Corporation) C:\WINDOWS\system32\AESTFltr.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Dell Inc.) C:\Program Files\Dell\Dell ControlPoint\Dell.ControlPoint.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Wave Systems Corp.) C:\Program Files\Wave Systems Corp\Services Manager\DocMgr\bin\WavXDocMgr.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Broadcom Corporation) C:\Program Files\Dell\Dell ControlPoint\Security Manager\BcmDeviceAndTaskStatusService.exe
(Dell Inc.) C:\WINDOWS\system32\WLTRAY.EXE
(Permeo Technologies Inc.) C:\Program Files\Permeo\e-Border Driver\s5credmgr.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Sony Ericsson Mobile Communications AB) C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Dell Inc.) C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgr.exe
(Broadcom Corporation.) C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
(Wave Systems Corp.) C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmNotify.exe
(forum.viry.cz) C:\Documents and Settings\dvorakova\Plocha\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [288112 2010-05-12] (Alps Electric Co., Ltd.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [495708 2010-04-05] (IDT, Inc.)
HKLM\...\Run: [AESTFltr] => C:\WINDOWS\system32\AESTFltr.exe [737280 2010-04-05] (Andrea Electronics Corporation)
HKLM\...\Run: [nwiz] => nwiz.exe /installquiet
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NVHotkey] => rundll32.exe nvHotkey.dll,Start
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation)
HKLM\...\Run: [DellControlPoint] => C:\Program Files\Dell\Dell ControlPoint\Dell.ControlPoint.exe [657920 2009-11-02] (Dell Inc.)
HKLM\...\Run: [WavXMgr] => C:\Program Files\Wave Systems Corp\Services Manager\Docmgr\bin\WavXDocMgr.exe [158592 2010-01-14] (Wave Systems Corp.)
HKLM\...\Run: [USCService] => C:\Program Files\Dell\Dell ControlPoint\Security Manager\BcmDeviceAndTaskStatusService.exe [34232 2010-01-14] (Broadcom Corporation)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\WINDOWS\system32\WLTRAY.exe [2670592 2010-02-03] (Dell Inc.)
HKLM\...\Run: [e-Border Credential] => C:\Program Files\Permeo\e-Border Driver\s5credmgr.exe [49152 2002-01-18] (Permeo Technologies Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [3154464 2012-07-04] (ESET)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime Alternative\qttask.exe [421888 2010-11-29] (Apple Inc.)
HKLM\...\Run: [TkBellExe] => C:\Program Files\Real\RealPlayer\update\realsched.exe [296096 2012-07-18] (RealNetworks, Inc.)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKU\S-1-5-21-2816804912-2046141374-3558518432-1010\...\Run: [Sony Ericsson PC Companion] => C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [774144 2009-12-08] (Sony Ericsson Mobile Communications AB)
HKU\S-1-5-21-2816804912-2046141374-3558518432-1010\...\MountPoints2: {5a40198a-7706-11e3-a8e2-a4d77af30eee} - E:\Startme.exe
Lsa: [Authentication Packages] msv1_0 wvauth
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [EnabledUnlockedFDEIconOverlay] -> {30D3C2AF-9709-4D05-9CF4-13335F3C1E4A} => C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmIconOverlay.dll [2009-11-24] (Wave Systems Corp.)
ShellIconOverlayIdentifiers: [UninitializedFdeIconOverlay] -> {CF08DA3E-C97D-4891-A66B-E39B28DD270F} => C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmIconOverlay.dll [2009-11-24] (Wave Systems Corp.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk [2010-07-09]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Cisco Systems VPN Client.lnk [2010-09-17]
ShortcutTarget: Cisco Systems VPN Client.lnk -> C:\Program Files\Cisco Systems\VPN Client\vpngui.exe (Cisco Systems, Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Správce systému Dell ControlPoint System Manager.lnk [2010-07-09]
ShortcutTarget: Správce systému Dell ControlPoint System Manager.lnk -> C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgr.exe (Dell Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\TdmNotify.lnk [2010-07-09]
ShortcutTarget: TdmNotify.lnk -> C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmNotify.exe (Wave Systems Corp.)
Startup: C:\Documents and Settings\uzivatel\Nabídka Start\Programy\Po spuštění\Partner Update.lnk [2010-09-01]
ShortcutTarget: Partner Update.lnk -> C:\Documents and Settings\uzivatel\Data aplikací\Microsoft\Installer\{A75AD72D-D114-41C7-9987-3CB2AF399550}\_294823.exe ()
Startup: C:\Documents and Settings\uzivatel\Nabídka Start\Programy\Po spuštění\Siebel QuickStart.lnk [2010-07-19]
ShortcutTarget: Siebel QuickStart.lnk -> C:\sea752\client\BIN\siebel.exe (Siebel Systems, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 04 C:\Program Files\Permeo\e-Border Driver\s5spi.dll [65536 2002-01-18] (Permeo Technologies Inc.)
Winsock: Catalog9 01 C:\Program Files\Permeo\e-Border Driver\s5spi.dll [65536 2002-01-18] (Permeo Technologies Inc.)
Winsock: Catalog9 02 C:\Program Files\Permeo\e-Border Driver\s5spi.dll [65536 2002-01-18] (Permeo Technologies Inc.)
Winsock: Catalog9 03 C:\Program Files\Permeo\e-Border Driver\s5spi.dll [65536 2002-01-18] (Permeo Technologies Inc.)
Winsock: Catalog9 04 C:\Program Files\Permeo\e-Border Driver\s5spi.dll [65536 2002-01-18] (Permeo Technologies Inc.)
Winsock: Catalog9 10 C:\Program Files\Permeo\e-Border Driver\s5spi.dll [65536 2002-01-18] (Permeo Technologies Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.108.10.108 10.108.10.109
Tcpip\..\Interfaces\{0DDEC888-77A8-4C64-93A2-46FA01A41C2F}: [DhcpNameServer] 10.108.10.108 10.108.10.109
Tcpip\..\Interfaces\{B17A1144-F18C-4F16-904E-C07C65A4721D}: [NameServer] 192.168.1.252,192.168.1.246

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www1.euro.dell.com/content/default.aspx?c=cz&l=cs&s=bsd
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www1.euro.dell.com/content/default.aspx?c=cz&l=cs&s=bsd
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-2816804912-2046141374-3558518432-1010\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-2816804912-2046141374-3558518432-1010\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: HKU\S-1-5-21-2816804912-2046141374-3558518432-1010 - Modul přiřazení adres URL - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = hxxp://us.yhs.search.yahoo.com/avg/search?fr=yhs-avg-chrome&type=yahoo_avg_hs2-tb-web_chrome_us&p={searchTerms}
SearchScopes: HKLM -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = hxxp://us.yhs.search.yahoo.com/avg/search?fr=yhs-avg-chrome&type=yahoo_avg_hs2-tb-web_chrome_us&p={searchTerms}
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-07-18] (RealPlayer)
BHO: jZip Webmail plugin -> {647FD14A-C4F1-46F4-8FC3-0B40F54226F7} -> C:\Program Files\jZip\WebmailPlugin.dll [2009-03-02] (Discordia Limited)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-07-09] (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-07-09] (Sun Microsystems, Inc.)
Toolbar: HKLM - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKU\S-1-5-21-2816804912-2046141374-3558518432-1010 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2014-02-25] (Společnost Microsoft)
DPF: {253A9D23-F982-11D4-8BE4-00D0B7E61414} hxxp://localhost/16279/applets/siebelhtml.cab
DPF: {68CDB19A-6305-4589-8C35-41E3502CD451} hxxp://localhost/16279/applets/SiebelOptionPack.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab

FireFox:
========
FF ProfilePath: C:\Documents and Settings\dvorakova\Data aplikací\Mozilla\Firefox\Profiles\6su2xi8n.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-15] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=15.0.5.109 -> C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll [2012-07-18] (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=15.0.5.109 -> C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll [2012-07-18] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.5.109 -> C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll [2012-07-18] (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.5.109 -> C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2012-07-18] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=15.0.5.109 -> C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll [2012-07-18] (RealPlayer)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-08-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-08-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2012-07-18] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2004-10-27] (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2004-10-27] (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2004-10-27] (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2004-10-27] (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2004-10-27] (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprjplug.dll [2012-07-18] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll [2012-07-18] (RealPlayer)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-10-30] [not signed]
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2010-07-09] [not signed]
FF HKLM\...\Firefox\Extensions: [{C3949AC2-4B17-43ee-B4F1-D26B9D42404D}] - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: RealPlayer Browser Record Plugin - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-07-18] [not signed]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Endpoint Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013-03-25] [not signed]

Chrome:
=======
CHR Profile: C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-07]
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-07]
CHR Extension: (Disk Google) - C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-30]
CHR Extension: (YouTube) - C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-30]
CHR Extension: (Tabulky Google) - C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-07]
CHR Extension: (Dokumenty Google offline) - C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-23]
CHR Extension: (RealPlayer HTML5Video Downloader Extension) - C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk [2014-05-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-31]
CHR Extension: (Gmail) - C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2012-07-18]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 buttonsvc32; c:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe [278304 2009-11-20] (Dell Inc.)
R2 Credential Vault Host Control Service; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe [812448 2009-12-17] (Broadcom Corporation)
R2 Credential Vault Host Storage; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe [27040 2009-12-17] (Broadcom Corporation)
R2 CVPND; C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe [1504304 2006-11-10] (Cisco Systems, Inc.)
R2 dcpsysmgrsvc; c:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe [376608 2009-12-10] (Dell Inc.)
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [31056 2012-07-04] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [999704 2012-07-04] (ESET)
S3 ESHASRV; C:\Program Files\ESET\ESET NOD32 Antivirus\EShaSrv.exe [183944 2012-07-04] (ESET)
R2 InstallFilterService; C:\Program Files\STMicroelectronics\AccelerometerP11\InstallFilterService.exe [60928 2010-01-10] () [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2010-07-09] (Sun Microsystems, Inc.)
R2 MSSQL$PARTNER; c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 nvsvc; C:\WINDOWS\system32\nvsvc32.exe [168004 2010-04-17] (NVIDIA Corporation) [File not signed]
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [14848 2011-12-15] () [File not signed]
S3 SecureStorageService; C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe [1032192 2009-11-18] (Wave Systems Corp.) [File not signed]
S3 Slave; C:\WINDOWS\Slave.exe [105202 2007-03-14] (TWD Industries SAS) [File not signed]
S2 tcsd_win32.exe; C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [1273856 2008-11-12] () [File not signed]
R2 TdmService; C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe [1148264 2009-11-24] (Wave Systems Corp.)
R2 WinVNC4; C:\Program Files\RealVNC\VNC4\WinVNC4.exe [439248 2006-05-12] (RealVNC Ltd.)
R2 wltrysvc; C:\WINDOWS\System32\bcmwltry.exe [2404352 2010-02-03] (Dell Inc.) [File not signed]
S2 STacSV; c:\drivers\audio\r267815\payload\wdm\stacsv.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 abp480n5; C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS [23552 2001-08-18] (Microsoft Corporation)
R3 Acceler; C:\WINDOWS\System32\DRIVERS\Accelern.sys [42672 2010-01-18] (ST Microelectronics)
R3 AESTAud; C:\WINDOWS\System32\drivers\AESTAud.sys [113664 2010-04-05] (Andrea Electronics Corporation)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [2696448 2010-02-03] (Broadcom Corporation)
R3 btaudio; C:\WINDOWS\System32\drivers\btaudio.sys [556200 2010-03-04] (Broadcom Corporation.)
R3 BTDriver; C:\WINDOWS\System32\DRIVERS\btport.sys [37160 2010-03-04] (Broadcom Corporation.)
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [911400 2010-03-04] (Broadcom Corporation.)
S3 BTWDNDIS; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [118440 2010-03-04] (Broadcom Corporation.)
R3 btwmodem; C:\WINDOWS\System32\DRIVERS\btwmodem.sys [37032 2010-03-04] (Broadcom Corporation.)
R3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [47656 2010-03-04] (Broadcom Corporation.)
S3 CVirtA; C:\WINDOWS\System32\DRIVERS\CVirtA.sys [5315 2005-05-17] (Cisco Systems, Inc.)
R2 CVPNDRVA; C:\WINDOWS\system32\Drivers\CVPNDRVA.sys [305788 2006-11-10] (Cisco Systems, Inc.) [File not signed]
R3 cvusbdrv; C:\WINDOWS\System32\Drivers\cvusbdrv.sys [33832 2009-11-03] (Broadcom Corporation)
R3 dfmirage; C:\WINDOWS\System32\DRIVERS\dfmirage.sys [31896 2005-11-27] (DemoForge, LLC)
R3 DNE; C:\WINDOWS\System32\DRIVERS\dne2000.sys [126864 2006-09-21] (Deterministic Networks, Inc.)
S3 e1kexpress; C:\WINDOWS\System32\DRIVERS\e1k5132.sys [167080 2009-12-10] (Intel Corporation)
R1 eamon; C:\WINDOWS\System32\DRIVERS\eamon.sys [164464 2012-07-10] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [123760 2012-03-29] (ESET)
R1 epfwtdir; C:\WINDOWS\System32\DRIVERS\epfwtdir.sys [107280 2012-03-29] (ESET)
R1 EQDRV5; C:\WINDOWS\System32\DRIVERS\eqdrv5.sys [16000 2010-07-22] (Printing Communications Assoc., Inc. (EQUANT)) [File not signed]
S3 GtVUsb; C:\WINDOWS\System32\DRIVERS\GtVUsb.sys [5120 2006-11-21] (option) [File not signed]
S3 NAL; C:\WINDOWS\system32\Drivers\iqvw32.sys [30880 2009-10-14] (Intel Corporation )
R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [58600 2010-01-28] (NVIDIA Corporation)
R0 PBADRV; C:\WINDOWS\System32\DRIVERS\PBADRV.sys [26608 2008-06-04] (Dell Inc)
R2 risdpcie; C:\WINDOWS\System32\DRIVERS\risdpe86.sys [59904 2010-03-21] (REDC)
S3 s1039mdm; C:\WINDOWS\System32\DRIVERS\s1039mdm.sys [124016 2009-11-19] (MCCI Corporation)
R0 stdflt; C:\WINDOWS\System32\DRIVERS\stdfltn.sys [17072 2010-01-18] (ST Microelectronics)
R3 STHDA; C:\WINDOWS\System32\drivers\sthda.sys [1656499 2010-04-05] (IDT, Inc.)
R3 swivsp; C:\WINDOWS\System32\DRIVERS\swivspnt.sys [20352 2006-10-12] (Sierra Wireless Inc.)
R3 tap0901; C:\WINDOWS\System32\DRIVERS\tap0901.sys [26624 2011-12-15] (The OpenVPN Project) [File not signed]
S3 vsdatant; C:\WINDOWS\system32\vsdatant.sys [280344 2005-01-26] (Zone Labs LLC)
R2 WavxDMgr; C:\WINDOWS\System32\DRIVERS\WavxDMgr.sys [214656 2010-01-14] (Wave Systems Corp.)
S2 cis1284; \??\C:\WINDOWS\system32\drivers\cis1284.sys [X]
S2 Crypto; \??\C:\WINDOWS\system32\Drivers\Crypto.sys [X]
S3 PUMA; system32\DRIVERS\Puma.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-17 16:33 - 2015-12-17 16:34 - 00025979 _____ C:\Documents and Settings\dvorakova\Plocha\FRST.txt
2015-12-17 16:16 - 2015-12-17 16:33 - 00000000 ____D C:\FRST
2015-12-17 16:15 - 2015-12-17 16:13 - 01721344 _____ (Farbar) C:\Documents and Settings\dvorakova\Plocha\FRST.exe
2015-12-17 16:15 - 2015-12-17 16:13 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\dvorakova\Plocha\FRSTLauncher.exe
2015-12-15 13:56 - 2015-12-15 13:56 - 00106496 _____ C:\WINDOWS\Minidump\Mini121515-01.dmp
2015-12-09 20:17 - 2015-12-09 20:17 - 00106496 _____ C:\WINDOWS\Minidump\Mini120915-01.dmp

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-17 16:34 - 2012-11-30 08:15 - 00000000 ____D C:\Documents and Settings\dvorakova\Local Settings\Temp
2015-12-17 16:33 - 2012-11-30 08:15 - 00000000 ____D C:\Documents and Settings\dvorakova\Plocha
2015-12-17 16:33 - 2010-07-09 08:22 - 00210141 _____ C:\WINDOWS\system32\nvModes.001
2015-12-17 16:16 - 2012-11-30 08:15 - 00000000 ___HD C:\Documents and Settings\dvorakova\Local Settings\Data aplikací
2015-12-17 16:16 - 2012-04-10 07:44 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-17 16:16 - 2008-05-07 17:43 - 00000000 ____D C:\WINDOWS
2015-12-17 15:50 - 2014-05-02 14:42 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-17 14:49 - 2015-02-11 13:25 - 00000286 _____ C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-2816804912-2046141374-3558518432-1010.job
2015-12-17 14:49 - 2014-05-02 14:42 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-17 14:49 - 2014-03-14 14:06 - 00000230 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-12-17 14:49 - 2012-11-30 08:15 - 00000000 _____ C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\WavXMapDrive.bat
2015-12-17 14:49 - 2012-07-18 11:17 - 00000290 _____ C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-2816804912-2046141374-3558518432-1006.job
2015-12-17 14:49 - 2012-06-26 12:26 - 00004880 _____ C:\WINDOWS\ModemLog_Modem Bluetooth.txt
2015-12-17 14:49 - 2010-07-22 10:51 - 00001964 _____ C:\WINDOWS\ModemLog_Sierra Wireless AirCard HSDPA Modem.txt
2015-12-17 14:49 - 2010-04-17 10:55 - 00247299 _____ C:\WINDOWS\system32\NvApps.xml
2015-12-17 14:49 - 2008-05-08 05:59 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-17 14:49 - 2008-05-08 05:59 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\Temp
2015-12-17 14:49 - 2008-05-08 00:42 - 00001158 _____ C:\WINDOWS\system32\wpa.dbl
2015-12-16 18:46 - 2008-05-08 05:59 - 00032496 _____ C:\WINDOWS\SchedLgU.Txt
2015-12-15 15:08 - 2014-12-11 09:08 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\tmp
2015-12-15 14:47 - 2014-05-02 14:43 - 00001815 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2015-12-15 14:16 - 2015-11-15 10:16 - 09498816 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2015-12-15 14:16 - 2012-04-10 07:44 - 00796864 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-12-15 14:16 - 2011-09-20 07:33 - 00142528 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-12-15 14:12 - 2010-08-30 13:48 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2015-12-15 14:08 - 2013-08-25 08:21 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-15 13:59 - 2010-07-30 07:08 - 137798368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-15 13:56 - 2010-09-01 11:28 - 00000000 __SHD C:\WINDOWS\CSC
2015-12-04 13:47 - 2012-11-30 08:15 - 00000178 ___SH C:\Documents and Settings\dvorakova\ntuser.ini
2015-12-04 11:58 - 2015-02-11 13:25 - 00000294 _____ C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-2816804912-2046141374-3558518432-1010.job
2015-11-18 19:56 - 2008-05-08 00:42 - 00550012 _____ C:\WINDOWS\system32\perfh005.dat
2015-11-18 19:56 - 2008-05-08 00:42 - 00123364 _____ C:\WINDOWS\system32\perfc005.dat
2015-11-18 19:56 - 2008-05-07 17:48 - 01356758 _____ C:\WINDOWS\system32\PerfStringBackup.INI

==================== Files in the root of some directories =======

2012-11-30 09:01 - 2014-01-26 18:55 - 0000558 _____ () C:\Documents and Settings\dvorakova\Data aplikací\lastlog.BAK
2012-11-30 09:01 - 2015-11-15 09:24 - 0000590 _____ () C:\Documents and Settings\dvorakova\Data aplikací\lastlog.dbf
2012-11-30 09:01 - 2015-06-10 19:01 - 0005632 _____ () C:\Documents and Settings\dvorakova\Data aplikací\SIZEUSER.CDX
2012-11-30 09:01 - 2015-11-15 09:25 - 0024996 _____ () C:\Documents and Settings\dvorakova\Data aplikací\SIZEUSER.DBF
2014-01-05 19:02 - 2015-08-25 12:18 - 0013824 _____ () C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-11-30 08:15 - 2008-05-08 06:01 - 0000133 _____ () C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\fusioncache.dat
2012-11-30 08:15 - 2008-02-05 19:28 - 0000051 _____ () C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\setup.txt
2012-11-30 08:15 - 2015-12-17 14:49 - 0000000 _____ () C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\WavXMapDrive.bat
2014-06-30 10:03 - 2014-06-30 10:03 - 0000000 _____ () C:\Documents and Settings\dvorakova\Local Settings\Data aplikací\{119BD035-A057-4106-9F84-E3B114BDFF86}
2011-07-11 08:59 - 2011-07-11 08:59 - 0000000 _____ () C:\Documents and Settings\All Users\Data aplikací\NOCUSTOMER_11072011 095937.RVI
2011-06-21 10:46 - 2011-06-21 10:46 - 0000000 _____ () C:\Documents and Settings\All Users\Data aplikací\NOCUSTOMER_21062011 114643.RVI
2011-09-23 12:00 - 2011-09-23 12:00 - 0000000 _____ () C:\Documents and Settings\All Users\Data aplikací\NOCUSTOMER_23092011 010033.RVI
2011-09-23 12:12 - 2011-09-23 12:12 - 0000000 _____ () C:\Documents and Settings\All Users\Data aplikací\NOCUSTOMER_23092011 011259.RVI
2011-09-23 12:14 - 2011-09-23 12:14 - 0000000 _____ () C:\Documents and Settings\All Users\Data aplikací\NOCUSTOMER_23092011 011440.RVI
2011-09-23 11:57 - 2011-09-23 11:57 - 0000000 _____ () C:\Documents and Settings\All Users\Data aplikací\NOCUSTOMER_23092011 125748.RVI
2011-07-27 07:41 - 2011-07-27 07:41 - 0000000 _____ () C:\Documents and Settings\All Users\Data aplikací\NOCUSTOMER_27072011 084118.RVI
2006-10-10 08:04 - 2006-10-10 08:04 - 0000005 _____ () C:\Documents and Settings\All Users\Data aplikací\rtInf.exp

Some files in TEMP:
====================
C:\Documents and Settings\dvorakova\Local Settings\Temp\vlc-2.1.5-win32.exe
C:\Documents and Settings\dvorakova\Local Settings\Temp\vlc-2.2.1-win32.exe
C:\Documents and Settings\uzivatel\Local Settings\Temp\DriverInstaller.exe
C:\Documents and Settings\uzivatel\Local Settings\Temp\ose00000.exe
C:\Documents and Settings\uzivatel\Local Settings\Temp\setup.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (OS) (Fixed) (Total:149.01 GB) (Free:65.77 GB) NTFS ==>[drive with boot components (Windows XP)]
Drive d: (Město andělů) (CDROM) (Total:1.95 GB) (Free:0 GB) UDF

Available physical RAM: 2658.52 MB
Total physical RAM: 3317.82 MB
Percentage of memory in use: 19%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 149.1 GB) (Disk ID: 0AA8F2CC)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=149 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-2816804912-2046141374-3558518432-1006.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-2816804912-2046141374-3558518432-1010.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-2816804912-2046141374-3558518432-1006.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-2816804912-2046141374-3558518432-1010.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: ESET Endpoint Antivirus 5.0 (Enabled - Out of date) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\dvorakova\Plocha" je 15185 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
"C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS
"C:\Program Files\Messenger\msmsgs.exe" /background [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OrderReminder
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVDDXSrv
"C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task
"C:\Program Files\QuickTime Alternative\qttask.exe" -atboottime [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
"C:\Program Files\Real\RealPlayer\update\realsched.exe" -osboot [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nab�dka Start^Programy^Po spu�t�n�^Windows Search.lnk
C:\PROGRA~1\WINDOW~4\WINDOW~1.EXE /startup [x]


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\IreIKE.exe"="C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\IreIKE.exe:*:Enabled:IreIke"
"C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\ViewLog.exe"="C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\ViewLog.exe:127.0.0.1/255.255.255.255:Enabled:ViewLog"
"C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\CmonApp.exe"="C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\CmonApp.exe:127.0.0.1/255.255.255.255:Enabled:CMonApp"
"C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\vpn.exe"="C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\vpn.exe:127.0.0.1/255.255.255.255:Enabled:VPN Connection Manager"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\sea752\\client\\BIN\\siebel.exe"="C:\\sea752\\client\\BIN\\siebel.exe:*:Enabled:Siebel Mobile Client"
"C:\\Program Files\\Equant\\Dialer\\dialer.exe"="C:\\Program Files\\Equant\\Dialer\\dialer.exe:*:Enabled:Business Everywhere"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\IreIKE.exe"="C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\IreIKE.exe:*:Enabled:IreIke"
"C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\ViewLog.exe"="C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\ViewLog.exe:127.0.0.1/255.255.255.255:Enabled:ViewLog"
"C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\CmonApp.exe"="C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\CmonApp.exe:127.0.0.1/255.255.255.255:Enabled:CMonApp"
"C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\vpn.exe"="C:\\Program Files\\CoSine Communications\\IPSec Dial Client\\vpn.exe:127.0.0.1/255.255.255.255:Enabled:VPN Connection Manager"
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox"
"C:\\Program Files\\RealVNC\\VNC4\\winvnc4.exe"="C:\\Program Files\\RealVNC\\VNC4\\winvnc4.exe:*:Enabled:WinVNC-program"
"C:\\Program Files\\OpenVPN\\bin\\openvpn.exe"="C:\\Program Files\\OpenVPN\\bin\\openvpn.exe:*:Enabled:openvpn"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"5985:TCP"="5985:TCP:*:Disabled:Vzd�len� spr�va syst�mu Windows "
"80:TCP"="80:TCP:*:Disabled:Vzd�len� spr�va syst�mu Windows - re�im kompatibility (HTTP-In) "
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"
"5022:TCP"="5022:TCP:*:Enabled:WinVNC-port"


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000


==================== End Of Log ==============================

Re: BSDO - prosba o kontrolu logu

Napsal: 17 pro 2015 17:51
od Rudy
Zdravím!
Otevřte adresář c:Qwindows\minidump, jeho obsah zabalte do raru a přiložte k vašemu příštímu postu.

Zároveň přesouvám vlákno do správné sekce.

Re: BSDO - prosba o kontrolu logu

Napsal: 18 pro 2015 08:35
od Carlos2
Díky, přikládám.
Ještě mám doplňující dotaz: je tam nainstalován Eset 5.0, který je ale nakonfigurován na instalaci z firemního serveru a ten je už pro počítač nedostupný a Eset je hodně zastaralý. Odinstalace je chráněna heslem, které je mi nedostupné. Dostanu ho v téhle konfiguraci z PC Eset removerem?

Re: BSDO - prosba o kontrolu logu

Napsal: 18 pro 2015 19:27
od Rudy
Není v PC něco přetaktováno? K Avastu. Remover zkuste, pokud ale bude chtít heslo, bude to k ničemu. S placeným Avastem nemám, bohužel, zkušenost.

Re: BSDO - prosba o kontrolu logu

Napsal: 19 pro 2015 14:30
od Carlos2
Já o tom počítači vůbec nic nevím, tedy ani o přetaktování. Nejspíš zkusím majitelku odkázat na it firmy, kde to koupila.

Re: BSDO - prosba o kontrolu logu

Napsal: 19 pro 2015 17:25
od Rudy
Tak to základní nedostatek. Problém může být způsoben i vadnou RAMkou, ale abychom se nehonili za chimérami, musím se vyptat na tyto základní věci. Stejný problém může dělat i přetaktovaná RAMka.

Re: BSDO - prosba o kontrolu logu

Napsal: 07 led 2016 16:09
od Carlos2
Omlouvám se, že reaguju až teď, teprve dneska se mi povedlo zjistit, že k přetaktování počítače by nemělo dojít, resp. technici firmy, kde to odkoupila, to vylučují a ona sama určitě nic takového nedělala.

Re: BSDO - prosba o kontrolu logu

Napsal: 07 led 2016 17:42
od Rudy
ESET remover jste zkusil? Budete muset provést test RAM: http://forum.viry.cz/viewtopic.php?f=53&t=106788 .