VIRY.CZ

Dobrý den, po letech bych chtěl požádat o kontrolu logu. Počítač se chová nestandardně, často zamrzá a systém padá.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-11-2016
Ran by LuboĹˇ (administrator) on LUBOM-0652195B6 (24-11-2016 11:51:29)
Running from C:\Documents and Settings\LuboĹˇ\Plocha
Loaded Profiles: LuboĹˇ (Available Profiles: LuboĹˇ & Administrator)
Platform: SystĂ©m Microsoft Windows XP Professional Service Pack 3 (X86) Language: ÄŚeĹˇtina
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Comodo Security Solutions, Inc.) C:\Program Files\Common Files\COMODO\launcher_service.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
(Comodo) C:\Program Files\Comodo\Dragon\dragon_updater.exe
(Matsushita Electric Industrial Co., Ltd.) C:\WINDOWS\system32\DVDRAMSV.exe
(Comodo Security Solutions, Inc.) C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
() C:\WINDOWS\system32\atwtusb.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\WINDOWS\system32\WTMKM.exe
() C:\WINDOWS\system32\atwtusb.exe
(AdTrustMedia) C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Nikon Corporation) C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Akamai Technologies, Inc.) C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Akamai\netsession_win.exe
(Matsushita Electric Industrial Co., Ltd.) C:\WINDOWS\system32\RAMASST.exe
(Akamai Technologies, Inc.) C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Akamai\netsession_win.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Comodo Security Solutions, Inc.) C:\Program Files\Comodo\GeekBuddy\unit_manager.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cavwp.exe
(Comodo Security Solutions, Inc.) C:\Program Files\Comodo\GeekBuddy\unit.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Documents and Settings\LuboĹˇ\Plocha\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2602784 2013-12-19] ()
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [MacrokeyManager] => C:\WINDOWS\system32\WTMKM.exe [7134952 2010-12-24] ()
HKLM\...\Run: [PrivDogService] => C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe [662184 2014-06-17] (AdTrustMedia)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1361088 2015-08-10] (COMODO)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [96056 2015-02-16] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Nikon Transfer Monitor] => C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe [479232 2015-02-22] (Nikon Corporation)
HKLM\...\Run: [tvncontrol] => C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe [2485944 2016-03-29] (Comodo Security Solutions, Inc.)
HKU\S-1-5-21-57989841-1035525444-725345543-1003\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-57989841-1035525444-725345543-1003\...\Run: [Google Update] => C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.)
HKU\S-1-5-21-57989841-1035525444-725345543-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6628056 2016-02-06] (Piriform Ltd)
HKU\S-1-5-21-57989841-1035525444-725345543-1003\...\Run: [Akamai NetSession Interface] => C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Akamai\netsession_win.exe [4691384 2016-02-09] (Akamai Technologies, Inc.)
Startup: C:\Documents and Settings\All Users\NabĂdka Start\Programy\Po spuĹˇtÄ›nĂ\RAMASST.lnk [2008-08-02]
ShortcutTarget: RAMASST.lnk -> C:\WINDOWS\system32\RAMASST.exe (Matsushita Electric Industrial Co., Ltd.)
Startup: C:\Documents and Settings\All Users\NabĂdka Start\Programy\Po spuĹˇtÄ›nĂ\Start GeekBuddy.lnk [2016-11-09]
ShortcutTarget: Start GeekBuddy.lnk -> C:\Program Files\Comodo\GeekBuddy\launcher.exe (Comodo Security Solutions, Inc.)
Startup: C:\Documents and Settings\LuboĹˇ\NabĂdka Start\Programy\Po spuĹˇtÄ›nĂ\Adobe Gamma.lnk [2008-08-06]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Documents and Settings\LuboĹˇ\NabĂdka Start\Programy\Po spuĹˇtÄ›nĂ\Sledovat vĂ˝strahy inkoustu - HP Deskjet 3520 series (SĂĹĄ).lnk [2016-11-24]
ShortcutTarget: Sledovat vĂ˝strahy inkoustu - HP Deskjet 3520 series (SĂĹĄ).lnk -> C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{25E69404-793D-4115-813C-7BF45440F623}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-57989841-1035525444-725345543-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-57989841-1035525444-725345543-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.idnes.cz/
HKU\S-1-5-21-57989841-1035525444-725345543-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-57989841-1035525444-725345543-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-18] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-18] (Oracle Corporation)
BHO: PrivDog Extension -> {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} -> C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll [2014-06-17] (AdTrustMedia)
Toolbar: HKU\.DEFAULT -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} hxxp://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install/installer.exe
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2011-11-03] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Mozilla\Firefox\Profiles\6ti99htx.default [2016-11-24]
FF SearchEngineOrder.1: C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Mozilla\Firefox\Profiles\6ti99htx.default -> Ask.com
FF SelectedSearchEngine: C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Mozilla\Firefox\Profiles\6ti99htx.default -> Ask.com
FF Homepage: C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Mozilla\Firefox\Profiles\6ti99htx.default -> hxxp://www.svetnicka.webnode.cz/
FF Extension: (Avira Browser Safety) - C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Mozilla\Firefox\Profiles\6ti99htx.default\Extensions\abs@avira.com.xpi [2016-11-24]
FF Extension: (Battlefield Play4Free) - C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Mozilla\Firefox\Profiles\6ti99htx.default\Extensions\battlefieldplay4free@ea.com [2013-04-18] [not signed]
FF Extension: (Firefox Hotfix) - C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Mozilla\Firefox\Profiles\6ti99htx.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-09]
FF Extension: (PrivDog) - C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Mozilla\Firefox\Profiles\6ti99htx.default\Extensions\PrivDog@AdTrustMedia.com [2014-04-03] [not signed]
FF Extension: (PrivDog) - C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Mozilla\Firefox\Profiles\6ti99htx.default\Extensions\PrivDog@AdTrustMedia.com.xpi [2014-06-20] [not signed]
FF Extension: (Microsoft .NET Framework Assistant) - C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Mozilla\Firefox\Profiles\6ti99htx.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-06-29] [not signed]
FF Extension: (Java Console) - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2016-11-16] [not signed]
FF Extension: (Java Console) - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2016-11-16] [not signed]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-10-20] [not signed]
FF HKU\S-1-5-21-57989841-1035525444-725345543-1003\...\Firefox\Extensions: [PrivDog@AdTrustMedia.com] - C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Mozilla\Firefox\Profiles\6ti99htx.default\extensions
FF Extension: (No Name) - C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Mozilla\Firefox\Profiles\6ti99htx.default\extensions [2016-11-24] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-16] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1168638.dll [2012-10-04] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-12-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-12-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @ngm.nexoneu.com/NxGame -> C:\Documents and Settings\All Users\Data aplikacĂ\NexonEU\NGM\npNxGameEU.dll [2016-02-09] (Nexon)
FF Plugin: @real.com/nppl3260;version=6.0.11.2321 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll [2006-01-28] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.1483 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll [2006-01-28] (RealNetworks, Inc.)
FF Plugin: @virtools.com/3DviaPlayer -> C:\Program Files\Virtools\3D Life Player\npvirtools.dll [2012-04-05] (Dassault SystĂ¨mes)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-57989841-1035525444-725345543-1003: @kb-ext.cz/PKIComponent -> C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll [2013-09-26] (KomerÄŤnĂ banka, a.s.)
FF Plugin HKU\S-1-5-21-57989841-1035525444-725345543-1003: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-07] (Google Inc.)
FF Plugin HKU\S-1-5-21-57989841-1035525444-725345543-1003: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-07] (Google Inc.)
FF Plugin HKU\S-1-5-21-57989841-1035525444-725345543-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Unity\WebPlayer\loader\npUnity3D32.dll [2014-07-02] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Chrome\Application\49.0.2623.112\gcswf32.dll => No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll => No File
CHR Plugin: (Native Client) - C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Chrome\Application\49.0.2623.112\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Chrome\Application\49.0.2623.112\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll => No File
CHR Plugin: (MicrosoftÂ® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (MicrosoftÂ® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Google Update) - C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Update\1.3.21.99\npGoogleUpdate3.dll => No File
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll => No File
CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Profile: C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default [2016-11-24]
CHR Extension: (YouTube) - C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-30]
CHR Extension: (PrivDog) - C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja [2014-10-03] [UpdateUrl: hxxp://privdog.com/updates/1123/googlechrome/update.xml] <==== ATTENTION
CHR Extension: (VyhledĂˇvĂˇnĂ Google) - C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (FormApps Chrome Extension) - C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2016-08-19]
CHR Extension: (Platby InternetovĂ©ho obchodu Chrome) - C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-05]
CHR Extension: (Gmail) - C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-57989841-1035525444-725345543-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [cmaiofennmphjldldcpphcechfnnohja] - C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\AdTrustMedia\PrivDog\PrivDog_chrome.crx [2014-04-08]
StartMenuInternet: Google Chrome - C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 6to4; C:\WINDOWS\System32\6to4svc.dll [100864 2010-02-12] (Microsoft Corporation)
S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2008-08-06] (Adobe Systems) [File not signed]
R2 CLPSLauncher; C:\Program Files\Common Files\COMODO\launcher_service.exe [76944 2016-11-09] (Comodo Security Solutions, Inc.)
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [4353840 2015-09-08] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1664704 2015-08-10] (COMODO)
R2 DragonUpdater; C:\Program Files\Comodo\Dragon\dragon_updater.exe [2060848 2016-02-06] (Comodo)
R2 DVD-RAM_Service; C:\WINDOWS\system32\DVDRAMSV.exe [110592 2004-08-27] (Matsushita Electric Industrial Co., Ltd.) [File not signed]
R2 GeekBuddyRSP; C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe [2485944 2016-03-29] (Comodo Security Solutions, Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2015-02-22] (Macrovision Corporation) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2013-12-18] (Oracle Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 WTService; C:\WINDOWS\system32\atwtusb.exe [870120 2011-01-26] () [File not signed]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ActivHidSerMini; C:\WINDOWS\System32\DRIVERS\activhidsermini.sys [57088 2008-06-16] (Promethean) [File not signed]
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21035 2013-08-01] (Meetinghouse Data Communications) [File not signed]
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 CFRMD; C:\WINDOWS\System32\DRIVERS\CFRMD.sys [36112 2014-12-25] (Windows (R) Win 7 DDK provider)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [15808 2015-11-18] (COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [632256 2015-11-18] (COMODO)
R1 cmdHlp; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [30144 2015-08-05] (COMODO)
R0 DwProt; C:\WINDOWS\System32\drivers\dwprot.sys [131192 2010-11-22] (Doctor Web, Ltd.)
S3 ENTECH; C:\WINDOWS\system32\DRIVERS\ENTECH.SYS [20400 1999-10-21] (EnTech Taiwan) [File not signed]
R1 HMD; C:\WINDOWS\System32\DRIVERS\hmd.sys [14272 2014-06-26] ()
R0 Inspect; C:\WINDOWS\System32\DRIVERS\inspect.sys [105664 2015-08-05] (COMODO)
R1 meiudf; C:\WINDOWS\System32\Drivers\meiudf.sys [102320 2005-02-24] (Matsushita Electric Industrial Co.,Ltd.) [File not signed]
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R3 moufiltr; C:\WINDOWS\System32\DRIVERS\moufiltr.sys [6144 2009-03-08] (Windows (R) Codename Longhorn DDK provider)
S3 nm; C:\WINDOWS\System32\DRIVERS\NMnt.sys [40320 2008-04-13] (Microsoft Corporation)
S3 pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [47360 2010-04-05] (VSO Software) [File not signed]
S3 rtl8185; C:\WINDOWS\System32\DRIVERS\rtl8185.sys [823936 2009-10-06] (Realtek Semiconductor Corporation )
R2 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [13120 2015-06-09] ()
R1 Tcpip6; C:\WINDOWS\System32\DRIVERS\tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)
R3 vhidmini; C:\WINDOWS\System32\DRIVERS\walvhid.sys [6144 2009-08-20] (Windows (R) Win 7 DDK provider)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys [X]
S3 EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys [X]
S4 IntelIde; no ImagePath
S3 prmvmouse; system32\DRIVERS\activmouse.sys [X]
S1 SBRE; \??\C:\WINDOWS\system32\drivers\SBREdrv.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-24 11:51 - 2016-11-24 11:51 - 00023534 _____ C:\Documents and Settings\LuboĹˇ\Plocha\FRST.txt
2016-11-24 11:50 - 2016-11-24 11:51 - 00000000 ____D C:\FRST
2016-11-24 11:41 - 2016-11-24 11:42 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\LuboĹˇ\Plocha\FRSTLauncher.exe
2016-11-24 11:41 - 2016-11-24 11:41 - 01761280 _____ (Farbar) C:\Documents and Settings\LuboĹˇ\Plocha\FRST.exe
2016-11-23 13:23 - 2016-11-23 13:23 - 06501463 _____ C:\Documents and Settings\LuboĹˇ\Plocha\certifikat.pdf
2016-11-23 11:01 - 2016-11-23 11:02 - 00008594 _____ C:\Documents and Settings\LuboĹˇ\Plocha\stropnicky.txt
2016-11-16 14:52 - 2016-11-24 11:11 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-11-16 09:45 - 2016-11-17 09:48 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-11-09 12:21 - 2016-11-09 12:21 - 00001780 _____ C:\Documents and Settings\All Users\Plocha\GeekBuddy.lnk
2016-10-26 13:23 - 2016-10-27 11:23 - 00005220 _____ C:\Documents and Settings\LuboĹˇ\Plocha\cyber.txt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-24 11:51 - 2014-02-18 22:22 - 00000000 ____D C:\Documents and Settings\LuboĹˇ\Local Settings\temp
2016-11-24 11:51 - 2008-08-01 23:35 - 00000000 ____D C:\Documents and Settings\LuboĹˇ\Plocha
2016-11-24 11:50 - 2008-08-01 23:35 - 00000000 ___HD C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ
2016-11-24 11:49 - 2014-01-08 10:27 - 00008966 _____ C:\WINDOWS\system32\nvAppTimestamps
2016-11-24 11:42 - 2009-10-18 07:36 - 00000000 ____D C:\Documents and Settings\LuboĹˇ\Dokumenty\StaĹľenĂ© soubory
2016-11-24 11:33 - 2014-07-04 21:52 - 00000222 _____ C:\WINDOWS\Tasks\PĹ™ihlĂˇĹˇenĂ k oznamovĂˇnĂ konce poskytovĂˇnĂ sluĹľeb pro Microsoft Windows XP.job
2016-11-24 11:33 - 2014-04-03 13:08 - 00000440 _____ C:\WINDOWS\Tasks\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59}.job
2016-11-24 11:33 - 2014-02-18 16:27 - 00000440 _____ C:\WINDOWS\Tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job
2016-11-24 11:33 - 2008-08-02 01:16 - 00000000 RSHDC C:\WINDOWS\system32\dllcache
2016-11-24 11:33 - 2008-08-01 23:35 - 00032598 _____ C:\WINDOWS\SchedLgU.Txt
2016-11-24 11:33 - 2008-08-01 23:35 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-24 11:33 - 2004-08-18 13:00 - 00001374 _____ C:\WINDOWS\system32\wpa.dbl
2016-11-24 11:33 - 2004-08-18 13:00 - 00000617 _____ C:\WINDOWS\win.ini
2016-11-24 11:32 - 2012-09-15 05:37 - 00000178 ___SH C:\Documents and Settings\LuboĹˇ\ntuser.ini
2016-11-24 11:29 - 2014-04-11 05:36 - 00001026 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-57989841-1035525444-725345543-1003UA.job
2016-11-24 11:24 - 2008-08-01 23:35 - 00000000 ____D C:\Documents and Settings\LuboĹˇ
2016-11-24 10:58 - 2016-09-29 07:31 - 00033163 _____ C:\Documents and Settings\LuboĹˇ\Plocha\ISLAND.txt
2016-11-24 10:11 - 2014-03-30 19:55 - 00000452 _____ C:\WINDOWS\Tasks\At1.job
2016-11-24 10:09 - 2010-03-17 09:52 - 00000466 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{4D1DB19F-50B6-475F-A537-015A6E441331}.job
2016-11-24 09:42 - 2011-10-19 16:22 - 00000000 ____D C:\Documents and Settings\LuboĹˇ\Plocha\fotky k zaĹ™azenĂ
2016-11-23 14:01 - 2014-03-30 19:55 - 00000452 _____ C:\WINDOWS\Tasks\At4.job
2016-11-23 13:24 - 2008-08-02 00:17 - 00000000 ____D C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Adobe
2016-11-23 10:46 - 2009-05-19 18:10 - 00000000 ____D C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Media Player Classic
2016-11-23 10:44 - 2015-10-16 10:29 - 00050694 _____ C:\Documents and Settings\LuboĹˇ\Plocha\TRIDENT.txt
2016-11-21 18:29 - 2014-04-11 05:36 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-57989841-1035525444-725345543-1003Core.job
2016-11-21 08:43 - 2012-08-09 18:37 - 00000000 ____D C:\Documents and Settings\LuboĹˇ\Plocha\Petrin
2016-11-19 20:41 - 2014-03-30 19:55 - 00000452 _____ C:\WINDOWS\Tasks\At2.job
2016-11-19 17:26 - 2012-04-25 11:30 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-11-16 14:52 - 2014-07-05 09:57 - 00000000 ____D C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Adobe
2016-11-16 14:52 - 2012-05-25 05:48 - 00796352 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-11-16 14:52 - 2011-05-18 08:04 - 00142528 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-11-16 14:52 - 2008-08-01 23:30 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-14 20:56 - 2014-03-30 19:55 - 00000452 _____ C:\WINDOWS\Tasks\At3.job
2016-11-09 12:21 - 2016-03-29 15:23 - 00000000 ____D C:\Program Files\Common Files\COMODO
2016-11-09 12:21 - 2014-02-18 16:21 - 00000000 ____D C:\Documents and Settings\All Users\NabĂdka Start\Programy\Comodo
2016-11-09 12:21 - 2008-08-02 01:24 - 00000000 ___RD C:\Documents and Settings\All Users\NabĂdka Start\Programy\Po spuĹˇtÄ›nĂ
2016-11-09 12:21 - 2008-08-02 01:24 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2016-11-08 15:00 - 2014-07-04 21:52 - 00000216 _____ C:\WINDOWS\Tasks\MÄ›sĂÄŤnĂ oznamovĂˇnĂ konce poskytovĂˇnĂ sluĹľeb pro Microsoft Windows XP.job
2016-11-04 13:19 - 2015-03-14 13:20 - 00000290 _____ C:\WINDOWS\Tasks\Defraggler Volume C Task.job
2016-11-03 11:01 - 2016-09-23 14:03 - 00000000 ____D C:\Documents and Settings\LuboĹˇ\Plocha\lidovky
2016-11-01 15:47 - 2014-06-05 16:20 - 00000000 ____D C:\Documents and Settings\LuboĹˇ\Plocha\akreditace Afghan

==================== Files in the root of some directories =======

2004-07-09 09:13 - 2004-07-09 09:13 - 0703080 _____ () C:\Program Files\BDA.cab
2004-07-19 22:58 - 2004-07-19 22:58 - 1156363 _____ () C:\Program Files\BDANT.cab
2004-07-19 22:53 - 2004-07-19 22:53 - 0976020 _____ () C:\Program Files\BDAXP.cab
2004-07-09 09:13 - 2004-07-09 09:13 - 15493481 _____ () C:\Program Files\DirectX.cab
2004-07-09 03:03 - 2004-07-09 03:03 - 0062976 _____ (Microsoft Corporation) C:\Program Files\DSETUP.dll
2004-07-09 04:08 - 2004-07-09 04:08 - 2242560 _____ (Microsoft Corporation) C:\Program Files\dsetup32.dll
2004-07-09 14:17 - 2004-07-09 14:17 - 13265040 _____ () C:\Program Files\dxnt.cab
2004-07-09 04:08 - 2004-07-09 04:08 - 0472576 _____ (Microsoft Corporation) C:\Program Files\dxsetup.exe
2009-09-17 19:13 - 2009-09-17 19:13 - 1709160 _____ (Microsoft Corporation) C:\Program Files\instmsia.exe
2009-09-17 19:13 - 2009-09-17 19:13 - 1822848 _____ (Microsoft Corporation) C:\Program Files\instmsiw.exe
2004-07-22 10:51 - 2004-07-22 10:51 - 3432656 _____ () C:\Program Files\ManagedDX.CAB
2009-09-17 19:17 - 2009-09-17 19:17 - 124448152 _____ () C:\Program Files\openofficeorg1.cab
2009-09-17 19:12 - 2009-09-17 19:12 - 9795072 _____ () C:\Program Files\openofficeorg31.msi
2008-08-01 23:52 - 1998-05-24 14:26 - 0351232 _____ () C:\Program Files\SALAMAND.EXE
2009-09-17 19:12 - 2009-09-17 19:12 - 0000336 _____ () C:\Program Files\setup.ini
2011-07-25 20:59 - 2011-07-25 21:00 - 4182178 _____ (The Public) C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Avisynth.exe
2011-07-25 21:01 - 2011-07-25 21:02 - 5243208 _____ ( ) C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\AvsP.exe
2014-08-15 15:46 - 2015-06-09 12:09 - 0000462 _____ () C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\burnaware.ini
2011-07-25 21:01 - 2011-07-25 21:01 - 4284535 _____ (ffdshow ) C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\ffdshow.exe
2011-07-25 21:00 - 2011-07-25 21:01 - 5514668 _____ (LIGHTNING UK!) C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Imgburn.exe
2010-04-05 15:58 - 2010-04-05 16:05 - 0087608 _____ () C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\inst.exe
2010-04-05 15:58 - 2010-04-05 16:05 - 0007887 _____ () C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\pcouffin.cat
2010-04-05 15:58 - 2010-04-05 16:05 - 0001144 _____ () C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\pcouffin.inf
2010-04-05 15:58 - 2010-04-05 16:05 - 0000033 _____ () C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\pcouffin.log
2010-04-05 15:58 - 2010-04-05 16:05 - 0047360 _____ (VSO Software) C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\pcouffin.sys
2015-02-22 16:25 - 2015-02-22 16:25 - 0000268 ___RH () C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\Plugins
2011-07-25 21:02 - 2011-07-25 21:02 - 7760687 _____ (Boraxsoft) C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\SetupGFD.exe
2010-04-05 15:59 - 2010-04-05 16:04 - 0001057 _____ () C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\vso_ts_preview.xml
2011-07-25 21:01 - 2011-07-25 21:01 - 0642685 _____ (Xvid team ) C:\Documents and Settings\LuboĹˇ\Data aplikacĂ\xvid.exe
2011-06-14 11:42 - 2011-06-14 11:49 - 0014564 ___SH () C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\6p1y74r53jbtl0yjdr4j1n4sr42tx2173526sl
2014-02-18 08:55 - 2014-02-25 17:02 - 0000346 ___SH () C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\70149b02515b3bb20dd492.47983420
2009-10-17 20:27 - 2009-10-17 20:27 - 0017624 _____ () C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\amihyjecy.inf
2008-09-15 17:27 - 2016-10-24 15:39 - 0020480 _____ () C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2009-10-17 20:27 - 2009-10-17 20:27 - 0016910 _____ () C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\dunikofyw.com
2009-01-18 21:24 - 2009-01-18 21:24 - 0000125 _____ () C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\fusioncache.dat
2009-10-17 20:27 - 2009-10-17 20:27 - 0018508 _____ () C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\inyma.dat
2009-10-17 20:27 - 2009-10-17 20:27 - 0011153 _____ () C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\kymud.ban
2009-10-17 20:27 - 2009-10-17 20:27 - 0015930 _____ () C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\qyvuz.dl
2011-06-14 11:42 - 2011-06-14 14:27 - 0014462 ___SH () C:\Documents and Settings\All Users\Data aplikacĂ\6p1y74r53jbtl0yjdr4j1n4sr42tx2173526sl
2014-03-30 19:54 - 2014-03-30 19:54 - 0000057 _____ () C:\Documents and Settings\All Users\Data aplikacĂ\Ament.ini
2009-10-17 20:27 - 2009-10-17 20:27 - 0012190 _____ () C:\Documents and Settings\All Users\Data aplikacĂ\eduvo.pif
2009-10-17 20:27 - 2009-10-17 20:27 - 0019111 _____ () C:\Documents and Settings\All Users\Data aplikacĂ\hijisy._sy
2015-02-22 16:25 - 2015-03-13 17:40 - 0000020 ____H () C:\Documents and Settings\All Users\Data aplikacĂ\PKP_DLdu.DAT
2015-02-22 16:25 - 2015-02-22 16:25 - 0000268 ___RH () C:\Documents and Settings\All Users\Data aplikacĂ\PreferencePane
2009-01-18 19:17 - 2009-01-18 19:17 - 0000013 ____H () C:\Documents and Settings\All Users\Data aplikacĂ\ĂťĹ®Ä‚Ă„3113â€ş.sys

Files to move or delete:
====================
C:\Windows\Tasks\At1.job
C:\Windows\Tasks\At2.job
C:\Windows\Tasks\At3.job
C:\Windows\Tasks\At4.job

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\At1.job => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe
Task: C:\WINDOWS\Tasks\At2.job => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe
Task: C:\WINDOWS\Tasks\At3.job => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe
Task: C:\WINDOWS\Tasks\At4.job => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe
Task: C:\WINDOWS\Tasks\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59}.job => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: C:\WINDOWS\Tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: C:\WINDOWS\Tasks\Defraggler Volume C Task.job => C:\Program Files\Defraggler\df.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-57989841-1035525444-725345543-1003Core.job => C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-57989841-1035525444-725345543-1003UA.job => C:\Documents and Settings\LuboĹˇ\Local Settings\Data aplikacĂ\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\MÄ›sĂÄŤnĂ oznamovĂˇnĂ konce poskytovĂˇnĂ sluĹľeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\PĹ™ihlĂˇĹˇenĂ k oznamovĂˇnĂ konce poskytovĂˇnĂ sluĹľeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{4D1DB19F-50B6-475F-A537-015A6E441331}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

FW: COMODO Firewall (Disabled) {043803A3-4F86-4ef6-AFC5-F6E02A79969B}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\Luboç\Plocha" je 2331 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\NVIDIA Corporation\\NetService\\NvNetworkService.exe"="C:\\Program Files\\NVIDIA Corporation\\NetService\\NvNetworkService.exe:*:Enabled:NVIDIA Network Service TCP Exception (HTTPS)"
"C:\\Program Files\\HP\\HP Deskjet 3520 series\\Bin\\DeviceSetup.exe"="C:\\Program Files\\HP\\HP Deskjet 3520 series\\Bin\\DeviceSetup.exe:LocalSubNet:Enabled:Instalace zaýˇzenˇ HP (HP Deskjet 3520 series)"
"C:\\Program Files\\HP\\HP Deskjet 3520 series\\Bin\\HPNetworkCommunicator.exe"="C:\\Program Files\\HP\\HP Deskjet 3520 series\\Bin\\HPNetworkCommunicator.exe:LocalSubNet:Enabled:Sˇśově komunikaźnˇ program HP (HP Deskjet 3520 series)"
"C:\\Program Files\\HP\\HP Deskjet 3520 series\\Bin\\HPNetworkCommunicatorCom.exe"="C:\\Program Files\\HP\\HP Deskjet 3520 series\\Bin\\HPNetworkCommunicatorCom.exe:LocalSubNet:Enabled:Sˇśově komunikaźnˇ program HP COM (HP Deskjet 3520 series)"
"C:\\Documents and Settings\\Luboç\\Local Settings\\Data aplikacˇ\\Google\\Chrome\\Application\\chrome.exe"="C:\\Documents and Settings\\Luboç\\Local Settings\\Data aplikacˇ\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"
"C:\\Documents and Settings\\All Users\\Data aplikacˇ\\NexonEU\\NGM\\NGM.exe"="C:\\Documents and Settings\\All Users\\Data aplikacˇ\\NexonEU\\NGM\\NGM.exe:*:Enabled:Nexon Game Manager"
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox (C:\\Program Files\\Mozilla Firefox)"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"5340:TCP"="5340:TCP:*:Disabled:warrock"
"5330:TCP"="5330:TCP:*:Disabled:warrock"
"5350:UDP"="5350:UDP:*:Disabled:warrock"
"5351:UDP"="5351:UDP:*:Disabled:warrock"
"1092:TCP"="1092:TCP:*:Enabled:Akamai NetSession Interface"
"5000:UDP"="5000:UDP:*:Enabled:Akamai NetSession Interface"

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

==================== End Of Log ==============================

ahoj,
- Velikost slozky "C:\Documents and Settings\Luboç\Plocha" je 2331 MB. poupratuj, aby nebolo viac ako 300MB
- Vycisti PC s ADWCleanerom

Tady je zatím log z ADWCleaneru

# AdwCleaner v6.030 - Log soubor vytvořen 24/11/2016 na 12:08:00
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-10-18.1 [Místní]
# Operační systém : Microsoft Windows XP Service Pack 3 (X86)
# Uživatelské jméno : Luboš - LUBOM-0652195B6
# Beží od : C:\Documents and Settings\Luboš\Plocha\adwcleaner_6.030.exe
# Mod: Čištění
# Podpora : hxxps://www.malwarebytes.com/support

***** [ Služby ] *****

***** [ Adresáře ] *****

[-] Adresář smazán:C:\Documents and Settings\All Users\Data aplikací\AdTrustMedia
[-] Adresář smazán:C:\Documents and Settings\All Users\Data aplikací\apn
[-] Adresář smazán:C:\Program Files\AdTrustMedia

***** [ Soubory ] *****

***** [ DLL ] *****

***** [ WMI ] *****

***** [ Zástupce ] *****

***** [ Plánovač úloh ] *****

***** [ Registry ] *****

[-] Klíč smazán:HKU\.DEFAULT\Software\Classes\TypeLib\{006AD7B2-968A-11DE-88C9-5BDE55D89593}
[-] Klíč smazán:HKU\S-1-5-21-57989841-1035525444-725345543-1003\Software\Classes\TypeLib\{006AD7B2-968A-11DE-88C9-5BDE55D89593}
[#] Klíč smazán po restartování:HKU\S-1-5-18\Software\Classes\TypeLib\{006AD7B2-968A-11DE-88C9-5BDE55D89593}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[#] Klíč smazán po restartování:HKCU\Software\Classes\TypeLib\{006AD7B2-968A-11DE-88C9-5BDE55D89593}
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
[-] Klíč smazán:HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
[-] Hodnota smazána:HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
[-] Klíč smazán:HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Klíč smazán:HKU\.DEFAULT\Software\AskToolbar
[-] Klíč smazán:HKU\S-1-5-21-57989841-1035525444-725345543-1003\Software\APN
[-] Klíč smazán:HKU\S-1-5-21-57989841-1035525444-725345543-1003\Software\eSupport.com
[#] Klíč smazán po restartování:HKU\S-1-5-18\Software\AskPartnerNetwork
[#] Klíč smazán po restartování:HKU\S-1-5-18\Software\AskToolbar
[#] Klíč smazán po restartování:HKCU\Software\APN
[#] Klíč smazán po restartování:HKCU\Software\eSupport.com
[-] Klíč smazán:HKLM\SOFTWARE\APN
[-] Klíč smazán:HKLM\SOFTWARE\Solvusoft
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D8011310B2622942868A458964FFDC5
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C63F7979DCC2154CB9591969A5CB89D
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6DD31E6C1A73B334383DF186676F4D20
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C81E33A400B6F814E90C7A3354E2A3A5
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EDBF68C5F16790341B7C6FD7C7F8E4FC
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Activities\Search\ask.com
[-] Hodnota smazána:HKCU\Software\Mozilla\Firefox\Extensions [PrivDog@AdTrustMedia.com]
[#] Hodnota smazána po restartování:HKCU\Software\Mozilla\Firefox\Extensions [PrivDog@AdTrustMedia.com]
[#] Hodnota smazána po restartování:HKCU\Software\Mozilla\Firefox\Extensions [PrivDog@AdTrustMedia.com]
[-] Klíč smazán:HKCU\Software\Google\Chrome\Extensions\cmaiofennmphjldldcpphcechfnnohja

***** [ Prohlížeče ] *****

*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [4694 Bajtů] - [24/11/2016 12:08:00]
C:\AdwCleaner\AdwCleaner[R0].txt - [10502 Bajtů] - [18/02/2014 15:27:20]
C:\AdwCleaner\AdwCleaner[S0].txt - [10411 Bajtů] - [18/02/2014 15:31:27]
C:\AdwCleaner\AdwCleaner[S1].txt - [5074 Bajtů] - [24/11/2016 12:06:49]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [4992 Bajtů] ##########

OK, potom napis, ci je to lepsie

Stroj se mírně zrychlil při běžném provozu. Plochu jsem uklidil. neustále na mě vyskakuje ale pořád COMODO GeekBuddy o kritických chybách systému.

vycisti registre CCleanerom
osobne by som Comodo nahradil Avastom

Vycisteno CC. Dam na doporuceni a nebo zase koupim licenci ESETu, jestli to má smysl. Chtel jsem se jeste zeptat, jestli existuje nejaky zpusob, jak system opravit, evidentne uz neni, to co byval. Nemam CD, system instalovan primo prodejcem, mam jen nalepku s klicem na bedne.

- s príkazového riadku spust preventivne chldsk /r a naplanuj kontrolu pri dalsom starte
- s príkazového riadku spust sfc /scannow k tomuto kroku je potrebne CD WinXP
Prip. pozri ci nie je zaneseny chladic CPU - povysavat
tot vsio

Dekuji mnohokrat za pomoc, budu se revansovat. Pekny den

rado sa stalo - aj Tebe prajem pekny den

VIRY.CZ

Moc prosím o kontrolu logu

Moc prosím o kontrolu logu

Re: Moc prosím o kontrolu logu

Re: Moc prosím o kontrolu logu

Re: Moc prosím o kontrolu logu

Re: Moc prosím o kontrolu logu

Re: Moc prosím o kontrolu logu

Re: Moc prosím o kontrolu logu

Re: Moc prosím o kontrolu logu

Re: Moc prosím o kontrolu logu

Re: Moc prosím o kontrolu logu